Skip to content

Privacy Policy

Privacy notice of the quantilope group

Valid as of  August 16th, 2024 

In this privacy notice you'll be informed about the processing of personal data by the quantilope Group (quantilope GmbH, quantilope Inc., UAB quantilope as well as quantilope Ltd) according to GDPR and other applicable data protection regulations.

  1. Introduction
  2. Contact details
  3. Privacy notice for website users
  4. Privacy notice for survey participants
  5. Privacy notice for for applicants
  6. Privacy notice for customers and other contact persons
  7. Further processing activities and further erasure periods
  8. Processing of your data outside of the EU/EAA
  9. Automated decision-making in individual cases
  10. Rights as data subjects

1. Introduction

Like any active company, we, quantilope GmbH and its subsidiaries quantilope Inc. UAB quantilope and  quantilope Ltd, also process personal data. We handle your personal data according to the legal data protection regulations. In the following entries  we have summarized all of the data privacy information which is relevant for the processing of your personal data.

We reserve the right to update this privacy notice at any time as necessary, for example to reflect changes in our use of cookies, or for other operational, legal or regulatory purposes. We therefore recommend that you check this privacy notice regularly. The date shown above indicates the date of the last update.

2. Contact Details

Within the meaning of the GDPR, the controller of the website (www.quantilope.com including any subdomains) is quantilope GmbH.

Generally, the company who conducts a survey is the data controller of said survey. If the survey is conducted directly by quantilope, the responsible body is the company of the quantilope Group that conducts the survey. If you take part in a survey through a panel provider, please contact the respective panel provider directly if you have any questions or want to exercise your rights.  

If you are an applicant, a representative of a customer or an other contact person, the controller responsible for your data is the company of the quantilope Group with which you are in direct contact with.

Please address all inquiries regarding data privacy at quantilope Group to:

quantilope GmbH

Charlottenstraße 26 

D-20257 Hamburg

E-Mail: privacy (at) quantilope.com

Internet: www.quantilope.com

You can also contact our data protection officer:

Harald Eul

HEC Harald Eul Consulting GmbH

Datenschutzbeauftragter quantilope GmbH

Auf der Höhe 34

D-50321 Brühl

E-Mail: Datenschutz-Quantilope (at) he-c.de

3. Privacy notice for website users

For the use of our website it is generally not necessary to provide personal data (e.g. name, address, e-mail etc.).

a. Information transmitted by your browser

When you visit our website, your browser automatically sends information to our server and temporarily stores it in a so-called log file. 

In this context we collect and process the following information and personal data in particular:

  • Date and time of access to the website
  • Time zone difference to Greenwich Mean Time (GMT)
  • Browser type and browser settings
  • Language and version of the browser software
  • Operating system 
  • Content of the request (concrete page)
  • the last page  visited by the user (referral) 
  • the amount of data transferred
  • Access status/HTTPS status code
  • IP address 
  • Device

The legal basis of the processing is Art. 6 (1) (f) GDPR, our legitimate interest. The information and personal data collected is required for the purpose of correctly delivering and optimizing the contents of the website, optimizing advertising for the website, as well as ensuring network and information security and protecting the website from attacks, disruptions and damage. In addition, the data is statistically evaluated for the purpose of increasing data protection and data security and to ensure a level of protection for the personal data that is being processed by quantilope. 



In general, your IP address will no longer  be processed once the respective session (the visit to our website) has ended. Your visit will only be recorded if your IP address is assigned to a previous interaction with our website, i.e. if you have previously filled in a form with your data.

Furthermore, we use cookies and analysis services within the website. You will find information about these below.

b. Registration for our newsletter

If you have expressly consented in accordance with Art. 6 (1) (a) GDPR, we will use your data (in particular the e-mail address) to send you our newsletter on a regular basis. To receive the newsletter, it is usually sufficient to provide an e-mail address. You can unsubscribe at any time via a link at the end of each newsletter.

c. Contact forms

We offer you the possibility to contact us via forms made available on the website. To do so, it is necessary to provide a valid business e-mail address and in some cases, a telephone number so we know who the enquiry comes from and can answer it.

The data processing is carried out for the purpose of contacting us and is based on your voluntarily given consent in accordance with Art. 6 (1) (a) GDPR.

i. Use and disclosure of personal data

Your personal data (which we collect in the processes described above) will not be transferred to third parties for purposes other than those listed below.

We transfer your data, if:

  • You gave us your consent according to Art. 6 (1) (a) GDPR;
  • the disclosure pursuant to Art. 6 (1) (f) GDPR is necessary for the enforcement, execution or defense of legal claims and there is no reason to assume that you have an overriding interest requiring nondisclosure;
  • there is a legal obligation to disclose your data under Art. 6 (1) (c) GDPR; 
  • the disclosure is permitted by law and is required for the fulfilment of contractual relationships in accordance with Art. 6 (1) (b) GDPR

d. Cookies

We use cookies on our website. Cookies  are small files automatically created by your browser and stored on your end device (laptop, tablet, smartphone or similar) when you visit our site. Cookies do not cause any damage to your end  device, do not contain viruses, Trojans or other malware.

The cookie stores information that is related to the specific end  device used. This does not mean, however, that we necessarily obtain direct knowledge of your identity.

On one hand, cookies are used  to improve your experience on our website.. We use so-called session cookies to recognize that you have already visited individual pages of our website. These cookies are automatically deleted after leaving our website

In addition, we also use temporary cookies which are stored on your end  device for a defined period of time. Temporary cookies are used to automatically recognize that you have already visited our site  and which entries and settings you have made so that you do not have to enter them again.

On the other hand, we use cookies to statistically record and evaluate how users engage with our  website  for the purpose of optimizing it for you. These cookies enable us to automatically recognize that you have already been with us when you visit our site again. These cookies are automatically deleted after a defined time.

The data processed by cookies is required for the purposes mentioned above to safeguard our legitimate interests and those of third parties in accordance with Art. 6 (1) (f) GDPR. Most browsers automatically accept cookies. However, you can configure your browser in a way that no cookies are stored on your device or that a message always appears before a new cookie is created. However, the complete deactivation of cookies may mean that you will not be able to use all the functions of our website.

f. Analysis and tracking tools

The tracking measures used by us are carried out on the basis of Art. 6 (1) (f) GDPR. With the tracking measures used, we want to ensure that our website is designed to meet the needs of our customers and is continuously optimized. Furthermore, we use the tracking measures to record the use of our website statistically and evaluate it for the purpose of optimizing the experience for you. These interests are to be considered legitimate in the sense of the above-mentioned regulation. The respective data processing purposes and data categories can be taken from the following information on the respective tracking tools.

g. Information on the individual services

 

Cloudflare

Description of Service

This is a service providing increased security and performance for websites. Cloudflare offers for example a content delivery network („CDN“) to improve the loading times of the website. The use of a CDN enables the user to make content available for retrieval more quickly with the help of regionally or internationally distributed servers.

Processing company

Cloudflare Inc.

101 Townsend St., San Francisco, CA 94107, United States of America

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

privacyquestions@cloudflare.com, legal@cloudflare.com

Data Purposes

This list represents the purposes of the data collection and processing.

  • Optimization
  • Website security
  • Improvement of service
  • Reducing bandwidth usage

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • IP address
  • System configuration information
  • Name of website
  • Date and time of request
  • Name and URL of the accessed file
  • Amount of data transferred
  • Status Information
  • Device operating system
  • Referrer URL
  • Requesting provider
  • Device type
  • Time of the server request

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. f GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

United States of America,European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

Data will be deleted as soon as they are no longer needed for the processing purposes.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • United States of America
  • Singapore
  • Australia
  • United Arab Emirates

Data Recipients

In the following the recipients of the data collected are listed.

  • Cloudflare Group

Click here to read the privacy policy of the data processor

https://www.cloudflare.com/privacypolicy/

Click here to read the cookie policy of the data processor

https://www.cloudflare.com/cookie-policy/

Stored Information

  • Name: __cf_bm; This is used for the bot protection solution provided by Cloudflare.; Type: cookie; Duration: 30 minutes;
  • Name: cf_clearance; This cookie is used to store the proof of challenge passed. It is used to no longer issue a challenge if present. It is required to reach an origin server.; Type: cookie; Duration: 30 minutes;
  • Name: _cfuvid; This cookie is used for rate limiting rules.; Type: cookie; Duration: 7 days;
  • Name: cf_chl_cc_XXX, cf_chl_rc_i, cf_chl_rc_ni; The cookie is used by Cloudflare for the execution of challenges. It is not used for tracking or beyond the scope of the challenge.; Type: cookie; Duration: Session;
  • Name: __cflb; This is used to return an end user to the same customer origin for a specific period of time configured by the customer. ; Type: cookie; Duration: 1 day;

HubSpot

Description of Service

This is a marketing, content management, web analytics and search engine optimization service.

Processing company

HubSpot, Inc.

25 First Street, 2nd Floor, Cambridge, MA 02141, United States of America

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

privacy@hubspot.com

Data Purposes

This list represents the purposes of the data collection and processing.

  • Marketing
  • Statistics
  • Analytics
  • Optimization

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Aggregated usage
  • Browser type
  • Device identifiers
  • Device model
  • Device operating system
  • Domain name
  • Files viewed
  • Frequency of use of mobile application
  • Geographic location
  • Internet service provider
  • IP address
  • Length of page visit
  • Mobile application information
  • OS version
  • Performance data
  • Referrer URL
  • Time of access or retrieval
  • Where the application was downloaded from
  • Clickstream data
  • Events occurring within application
  • Navigational information
  • Pages viewed

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. f GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union,United States of America

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be deleted as soon as they are no longer needed for the processing purposes.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • United States of America

Data Recipients

In the following the recipients of the data collected are listed.

  • Service providers
  • Hubspot partners

Click here to read the privacy policy of the data processor

https://legal.hubspot.com/privacy-policy

Storage Information

  • Maximum age of cookie storage: 1 year, 1 month

Stored Information

  • Name: _hssc; Used to collect information about how visitors use site. This information helps improve the site.; Type: cookie; Duration: Session;
  • Name: _hssrc; Used to collect information about how visitors use site. This information helps improve the site.; Type: cookie; Duration: Session;
  • Name: _hstc; Used to collect information about how visitors use site. This information helps improve the site.; Type: cookie; Duration: 1 year, 1 month;

Usercentrics Consent Management Platform

Description of Service

This is a consent management service. Usercentrics GmbH is used on websites and apps as a processor for the purpose of consent management.

Processing company

Usercentrics GmbH

Sendlinger Str. 7, 80331 Munich, Germany

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

datenschutz@usercentrics.com

Data Purposes

This list represents the purposes of the data collection and processing.

  • Compliance with legal obligations
  • Consent storage

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Local storage
  • Pixel

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Opt-in and opt-out data
  • Referrer URL
  • User agent
  • User settings
  • Consent ID
  • Time of consent
  • Consent type
  • Template version
  • Banner language
  • IP address
  • Geographic location

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. c GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The consent data (given consent and revocation of consent) are stored for one year. The data will then be deleted immediately.

Data Recipients

In the following the recipients of the data collected are listed.

  • Usercentrics GmbH

Click here to read the privacy policy of the data processor

https://usercentrics.com/privacy-policy/

Stored Information

  • Name: uc_settings and/or ucString; This holds the ControllerID and SettingsID, the language, settings version and services with their consent history.; Type: web; Domain: usercentrics.com;
  • Name: uc_user_interaction; This is used to signal whether a user has already given consent.; Type: web;
  • Name: ucData (optional); This holds information about the Google Consent Mode.; Type: web;
  • Name: uc_ui_version; This key states the UI version used by the clients; Type: web;
  • Name: uc_user_country; This is used to recognize the location of the user and show the correct version of the CMP.; Type: web;

Clickcease

Description of Service

Used to filter spam submissions from paid media.

Facebook Pixel

Description of Service

This is a Tracking technology offered by Facebook and used by other Facebook services. It is used to track interactions of visitors with websites ("Events") after they have clicked on an ad placed on Facebook or other services provided by Meta ("Conversion").

Processing company

Meta Platforms Ireland Ltd.

4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

https://www.facebook.com/help/contact/1650115808681298

Data Purposes

This list represents the purposes of the data collection and processing.

  • Analytics
  • Marketing
  • Retargeting
  • Advertisement
  • Conversion Tracking
  • Personalisation

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies
  • Pixel

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Ads viewed
  • Content viewed
  • Device information
  • Geographic location
  • HTTP-header
  • Interactions with advertisement, services, and products
  • IP address
  • Items clicked
  • Marketing information
  • Pages visited
  • Pixel ID
  • Referrer URL
  • Usage data
  • User behaviour
  • Facebook cookie information
  • Facebook user ID
  • Usage/click behaviour
  • Browser information
  • Device operating system
  • Device ID
  • User agent
  • Browser type

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

User’s interactions tracked on websites will not be stored longer than for two years. However, the data will be deleted as soon as they are no longer needed for the processing purposes.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • Singapore
  • United States of America
  • United Kingdom

Data Recipients

In the following the recipients of the data collected are listed.

  • Meta Platforms Ireland Ltd., Meta Platforms Inc.

Click here to read the privacy policy of the data processor

https://www.facebook.com/privacy/explanation

Click here to read the cookie policy of the data processor

https://www.facebook.com/policies/cookies

Storage Information

  • Maximum age of cookie storage: 1 year

Stored Information

  • Name: messaging_plugin_#; Type: cookie; Duration: - ;
  • Name: fr; Type: cookie; Duration: - ;
  • Name: _fbp; Type: cookie; Duration: - ;
  • Name: pxcelBcnLcy; Type: cookie; Duration: - ;
  • Name: _fbp; Type: web;

G2 (Crowd)

Description of Service

G2 (formerly G2 Crowd)

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • IP address
  • browser data

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 paragraph 1 lit. a GDPR

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • United States of America

Data Recipients

In the following the recipients of the data collected are listed.

  • G2, 100S Wacker Dr #600, Chicago, IL 60606, 847-748-7559

Gong.io

Description of Service

Gong.io Ltd. offers a conversation analysis service. Quantilope uses Gong in connection with the "Zoom" video conferencing software to evaluate conversations with customers or test subjects and thus improve service quality.

Processing company

EMEA Office

1 Grand Canal Street Upper, Dublin D04 Y7R5, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

privacy@gong.io

Data Purposes

This list represents the purposes of the data collection and processing.

  • Providing the service to our customers
  • Personalization of the service
  • Improvement of services

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Audio evaluation
  • Video evaluation

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Duration of the visit
  • IP address
  • Evaluation of language
  • Video evaluation
  • Date and time of visit
  • Device Information
  • Browser information

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 paragraph 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be deleted as soon as they are no longer required for the purposes of processing.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • United States of America

Click here to read the privacy policy of the data processor

https://www.gong.io/privacy-policy/

Google Ads

Description of Service

This is an advertising service. This service can be used to show personalised or non-personalised advertisement to users.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow Street, Dublin D04 E5W5, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

https://support.google.com/policies/contact/general_privacy_form

Data Purposes

This list represents the purposes of the data collection and processing.

  • Advertisement
  • Analytics
  • Providing Service
  • Statistics

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies
  • Tracking Pixel

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Ads viewed
  • Cookie ID
  • Date and time of visit
  • Device information
  • Geographic location
  • IP address
  • Search terms
  • Ads shown
  • Client ID
  • Impressions
  • Online identifiers
  • Browser information
  • Referrer URL
  • Interaction data

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be deleted as soon as they are no longer needed for the processing purposes. Log data is anonymized after 9 months and cookie information is anonymized after 18 months.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • Chile
  • Singapore
  • Taiwan
  • United States of America

Data Recipients

In the following the recipients of the data collected are listed.

  • Alphabet Inc., Google LLC, Google Ireland Limited

Click here to read the privacy policy of the data processor

https://business.safety.google/privacy/?hl=en

Click here to read the cookie policy of the data processor

https://policies.google.com/technologies/cookies?hl=en

Click here to opt out from this processor across all domains

https://safety.google/privacy/privacy-controls/

Storage Information

  • Maximum age of cookie storage: 1 year

Stored Information

  • Name: NID; This is used to provide advertisements or retargeting.; Type: cookie; Duration: 6 months;
  • Name: __gads; This is used to provide advertisements or retargeting.; Type: cookie; Duration: 1 year, 1 month;
  • Name: pm_sess; This is used to make sure that requests come from a user.; Type: cookie; Duration: 30 minutes;
  • Name: ANID; This is used to show advertisements on websites outside of Google.; Type: cookie; Duration: 1 year, 1 month;
  • Name: _gcl_au; This is used to store and track conversions.; Type: cookie; Duration: 2 months, 29 days;
  • Name: FPGCLAW; This cookie is used to track campaign related information on the user.; Type: cookie; Duration: 2 months, 29 days;
  • Name: FPGCLGB; This cookie is used to track campaign related information on the user.; Type: cookie; Duration: 2 months, 29 days;
  • Name: _gcl_gb; This cookie is used to track campaign related information on the user.; Type: cookie; Duration: 2 months, 29 days;
  • Name: _gac_gb_<wpid>; This cookie is used to track campaign related information on the user.; Type: cookie; Duration: 2 months, 29 days;
  • Name: _gcl_aw; This cookie is set when a user arrives at the website via a click on a Google ad.; Type: cookie; Duration: 2 months, 29 days;
  • Name: YSC; This is used to store and track interaction.; Type: cookie; Duration: Session;
  • Name: 1P_JAR; This is used to collect information about how the end user uses the website and any advertising that the end user may have seen before visiting the said website.; Type: cookie; Duration: 30 days;
  • Name: AID; This is used to link activities on other devices the user has previously logged into with a Google account. ; Type: cookie; Duration: 1 year, 1 month;
  • Name: FPAU; This is used to collect information about the users and their activity on the website through embedded elements with the purpose of analytics and reporting.; Type: cookie; Duration: 2 months, 29 days;

Google Ads Conversion

Description of Service

This is a Conversion Marketing Service for the success measurement of ad campaigns.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

https://support.google.com/policies/contact/general_privacy_form

Data Purposes

This list represents the purposes of the data collection and processing.

  • Advertisement
  • Conversion Tracking

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies
  • Tracking Pixel

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Cookie ID
  • Date and time of visit
  • Device information
  • IP address
  • Operating system information
  • Referrer URL
  • Web request
  • Browser information

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be deleted as soon as they are no longer needed for the processing purposes.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • Chile
  • Singapore
  • Taiwan
  • United States of America

Data Recipients

In the following the recipients of the data collected are listed.

  • Alphabet Inc.
  • Google LLC
  • Google Ireland Limited

Click here to read the privacy policy of the data processor

https://business.safety.google/privacy/?hl=en-US

Click here to read the cookie policy of the data processor

https://policies.google.com/technologies/cookies?hl=en-US

Storage Information

  • Maximum age of cookie storage: 1 year

Stored Information

  • Name: test_cookie; Set as a test to check whether the browser allows cookies to be set. Does not contain any identification features.; Type: cookie; Duration: 15 minutes; Domain: doubleclick.net;
  • Name: IDE; Contains a randomly generated user ID. Using this ID, Google can recognize the user across different websites across domains and display personalized advertising.; Type: cookie; Duration: 1 year; Domain: doubleclick.net;

Subservices

Below you can find all the services that are subordinate to this service. The current consent status of this service applies to all subservices.

Google Enhanced Conversions

Description of Service

This is a Google's feature that can improve the accuracy of the conversion measurement and unlock more powerful bidding.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow Street, Dublin D04 E5W5, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

https://support.google.com/policies/troubleshooter/7575787?hl=en
Data Purposes

This list represents the purposes of the data collection and processing.

  • Conversion Tracking
  • Conversion optimization
  • Measurement Partner - Ensure security
Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • E-mail address
  • First name
  • Last name
  • Address
  • Telephone number
  • Subscription Service credentials
  • Purchase information
Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR
Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be deleted as soon as they are no longer needed for the processing purposes. Log data is anonymized after 9 months and cookie information is anonymized after 18 months.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • Chile
  • Singapore
  • United States of America
  • Taiwan
Data Recipients

In the following the recipients of the data collected are listed.

  • Alphabet Inc., Google LLC, Google Ireland Limited
Click here to read the privacy policy of the data processor
https://business.safety.google/privacy/?hl=en
Click here to read the cookie policy of the data processor
https://policies.google.com/technologies/cookies?hl=en
Click here to opt out from this processor across all domains
https://safety.google/privacy/privacy-controls/

Google Ads Conversion Tracking

Description of Service

This is a conversion tracking service. This service records what happens after a click on an ad placed by us via Google Ads when users subsequently visit the website. In conversions, we measure whether users, after clicking on an ad placed by us via Google Ads, perform a certain action specified by us on the website (e.g., whether services are ordered). This allows the user to track which keywords, ads, ad groups or campaigns lead to the desired interaction of the users.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

https://support.google.com/policies/troubleshooter/7575787?hl=en

Data Purposes

This list represents the purposes of the data collection and processing.

  • Conversion Tracking
  • Analytics
  • Measuring the success of marketing campaigns

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies
  • Tracking Pixel
  • Tracking code

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Browser language
  • Browser type
  • Clicked advertisements
  • Cookie ID
  • Date and time of visit
  • IP address
  • Referrer URL
  • Web request
  • User behaviour

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be deleted as soon as they are no longer needed for the processing purposes.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • Singapore
  • Taiwan
  • Chile
  • United States of America

Data Recipients

In the following the recipients of the data collected are listed.

  • Google Ireland Limited, Google LLC, Alphabet Inc

Click here to read the privacy policy of the data processor

https://business.safety.google/privacy/?hl=en

Click here to read the cookie policy of the data processor

https://policies.google.com/technologies/cookies?hl=en

Click here to opt out from this processor across all domains

https://safety.google/privacy/privacy-controls/

Storage Information

  • Maximum age of cookie storage: 1 year

Stored Information

  • Name: test_cookie; Set as a test to check whether the browser allows cookies to be set. Does not contain any identification features.; Type: cookie; Duration: 15 minutes; Domain: doubleclick.net;
  • Name: IDE; Contains a randomly generated user ID. Using this ID, Google can recognize the user across different websites across domains and display personalized advertising.; Type: cookie; Duration: 1 year; Domain: doubleclick.net;
  • Name: _gcl_aw; This cookie is set when a user clicks on a Google ad to reach the website. It contains information about which ad was clicked, so that successes achieved, such as orders or contact requests, can be assigned to the ad.; Type: cookie; Duration: 2 months, 29 days;
  • Name: _gcl_dc_; This cookie is set when a user clicks on a Google ad to reach the website. It contains information about which ad was clicked, so that successes achieved, such as orders or contact requests, can be assigned to the ad.; Type: cookie; Duration: 2 months, 29 days;

Subservices

Below you can find all the services that are subordinate to this service. The current consent status of this service applies to all subservices.

Google Enhanced Conversions

Description of Service

This is a Google's feature that can improve the accuracy of the conversion measurement and unlock more powerful bidding.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow Street, Dublin D04 E5W5, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

https://support.google.com/policies/troubleshooter/7575787?hl=en
Data Purposes

This list represents the purposes of the data collection and processing.

  • Conversion Tracking
  • Conversion optimization
  • Measurement Partner - Ensure security
Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • E-mail address
  • First name
  • Last name
  • Address
  • Telephone number
  • Subscription Service credentials
  • Purchase information
Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR
Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be deleted as soon as they are no longer needed for the processing purposes. Log data is anonymized after 9 months and cookie information is anonymized after 18 months.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • Chile
  • Singapore
  • United States of America
  • Taiwan
Data Recipients

In the following the recipients of the data collected are listed.

  • Alphabet Inc., Google LLC, Google Ireland Limited
Click here to read the privacy policy of the data processor
https://business.safety.google/privacy/?hl=en
Click here to read the cookie policy of the data processor
https://policies.google.com/technologies/cookies?hl=en
Click here to opt out from this processor across all domains
https://safety.google/privacy/privacy-controls/

Google Ads Remarketing

Description of Service

This is a remarketing service. With Remarketing, the user can display ads to users of the website based on their interests on other websites within the Google Displaying Network (e.g. in Google Search or on YouTube). For this purpose, the users' interactions are analyzed, e.g. regarding the products and services a user is interested in. This enables the user to display targeted advertising to the user on other websites even after the visit to the website.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

https://support.google.com/policies/contact/general_privacy_form

Data Purposes

This list represents the purposes of the data collection and processing.

  • Remarketing
  • Advertisement
  • Tracking users' actions

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies
  • Tracking Pixel

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Duration of visit
  • IP address
  • Pages visited
  • Content user is interested in
  • Website use
  • Referrer URL
  • Advertising identifier
  • Date and time of visit
  • Device information
  • Browser information

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be deleted as soon as they are no longer needed for the processing purposes.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • Singapore
  • Taiwan
  • Chile
  • United States of America

Data Recipients

In the following the recipients of the data collected are listed.

  • Google Ireland Limited
  • Google LLC
  • Alphabet Inc.

Click here to read the privacy policy of the data processor

https://business.safety.google/privacy/?hl=en

Click here to read the cookie policy of the data processor

https://policies.google.com/technologies/cookies?hl=en

Storage Information

  • Maximum age of cookie storage: 1 year

Stored Information

  • Name: IDE; Contains a randomly generated user ID. Using this ID, Google can recognize the user across different websites across domains and display personalized advertising.; Type: cookie; Duration: 1 year; Domain: doubleclick.net;
  • Name: test_cookie; Set as a test to check whether the browser allows cookies to be set. Does not contain any identification features.; Type: cookie; Duration: 15 minutes; Domain: doubleclick.net;
  • Name: NID; This is used to provide advertisements or retargeting.; Type: cookie; Duration: 6 months;
  • Name: __gads; This is used to provide advertisements or retargeting.; Type: cookie; Duration: 1 year, 1 month;
  • Name: pm_sess; This is used to make sure that requests come from a user.; Type: cookie; Duration: 30 minutes;
  • Name: ANID; This is used to show advertisements on websites outside of Google.; Type: cookie; Duration: 1 year, 1 month;
  • Name: _gcl_au; This is used to store and track conversions.; Type: cookie; Duration: 2 months, 29 days;
  • Name: _gcl_gb; This is used to register a unique ID and identify a user. ; Type: cookie; Duration: 3 months;
  • Name: _gcl_aw; This is used to provide ad delivery or retargeting. ; Type: cookie; Duration: 3 months;

Google Analytics

Description of Service

This is a web analytics service. With this, the user can measure the advertising return on investment "ROI" as well as track user behavior with flash, video, websites and applications.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

https://support.google.com/policies/contact/general_privacy_form

Data Purposes

This list represents the purposes of the data collection and processing.

  • Marketing
  • Analytics

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies
  • Pixel
  • JavaScript

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Click path
  • Date and time of visit
  • Device information
  • Location information
  • IP address
  • Pages visited
  • Referrer URL
  • Browser information
  • Hostname
  • Browser language
  • Browser type
  • Screen resolution
  • Device operating system
  • Interaction data
  • User behaviour
  • Visited URL
  • Cookie ID

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The Retention Period depends on the type of the saved data. Each user can choose how long Google Analytics retains data before automatically deleting it.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • United States of America
  • Singapore
  • Chile
  • Taiwan

Data Recipients

In the following the recipients of the data collected are listed.

  • Google Ireland Limited, Alphabet Inc., Google LLC

Click here to read the privacy policy of the data processor

https://business.safety.google/privacy/?hl=en

Click here to read the cookie policy of the data processor

https://policies.google.com/technologies/cookies?hl=en

Click here to opt out from this processor across all domains

https://tools.google.com/dlpage/gaoptout?hl=de

Storage Information

  • Maximum age of cookie storage: 2 years

Stored Information

  • Name: __utmb; This cookie is used to track the time of the visit.; Type: cookie; Duration: Session;
  • Name: _ga; This cookie is used to distinguish between users.; Type: cookie; Duration: 2 years;
  • Name: _gid; This cookie is used to identify the user.; Type: cookie; Duration: 1 day;
  • Name: __utma; This cookie is used to record the time and date of the first visit, the total number of visits and the start time of the current visit. ; Type: cookie; Duration: Session;
  • Name: __utmz; This cookie is used to record where the visitor came from. ; Type: cookie; Duration: Session;
  • Name: IDE; This is used to show personalised ads. ; Type: cookie; Duration: 1 year, 1 month;
  • Name: CONSENT; This is used to store the consent choices of the user. ; Type: cookie; Duration: 2 years;
  • Name: __utmt; This is used to throttle the request rate. ; Type: cookie; Duration: 10 minutes;
  • Name: _gat; This is used to read and filter requests from bots.; Type: cookie; Duration: 1 minute;
  • Name: __utmc; This is used to store the time of the visit.; Type: cookie; Duration: 30 minutes;
  • Name: FPID; This is used to store a value used for setting the Client ID in the request to Google's servers.; Type: cookie; Duration: 2 years;
  • Name: FPLC; This is used to register a unique ID that is used to generate statistical data about how the visitor uses the website.; Type: cookie; Duration: 20 hours;

Google Analytics 4

Description of Service

This is service enables the user to measure traffic and engagement across their websites and mobile apps using customizable reports.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

https://support.google.com/policies/contact/general_privacy_form

Data Purposes

This list represents the purposes of the data collection and processing.

  • Marketing
  • Analytics

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Tracking code
  • Cookies

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Device information
  • Geographic location
  • Browser information
  • Device operating system
  • Screen resolution
  • Referrer URL
  • Interaction data
  • Date and time of visit
  • User behaviour
  • Pages visited
  • Online identifiers
  • Shortened IP Address
  • User ID
  • Advertising identifier

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The client can choose how long Google Analytics retains data. The maximum amount of retention period is 14 months.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • United States of America
  • Singapore
  • Taiwan
  • Chile

Data Recipients

In the following the recipients of the data collected are listed.

  • Alphabet Inc., Google LLC, Google Ireland Limited

Click here to read the privacy policy of the data processor

https://business.safety.google/privacy/?hl=en

Click here to read the cookie policy of the data processor

https://policies.google.com/technologies/cookies?hl=en

Click here to opt out from this processor across all domains

https://tools.google.com/dlpage/gaoptout?hl=de

Storage Information

  • Maximum age of cookie storage: 2 years

Stored Information

  • Name: Google; Used to distinguish users.; Type: cookie; Duration: 2 years;
  • Name: Google; Used to persist session state.; Type: cookie; Duration: 2 years;

Google Tag Manager

Description of Service

This is a tag management system. Via Google Tag Manager, tags can be integrated centrally via a user interface. Tags are small sections of code that can track activities. Script codes of other tools are integrated via the Google Tag Manager. The Tag Manager allows to control when a particular tag is triggered.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

https://support.google.com/policies/contact/general_privacy_form

Data Purposes

This list represents the purposes of the data collection and processing.

  • Tag Management

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Website tags

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Aggregated data about tag firing

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be deleted as soon as they are no longer needed for the processing purposes.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • Singapore
  • Taiwan
  • Chile
  • United States of America

Data Recipients

In the following the recipients of the data collected are listed.

  • Alphabet Inc., Google LLC, Google Ireland Limited

Click here to read the privacy policy of the data processor

https://business.safety.google/privacy/?hl=en

Click here to read the cookie policy of the data processor

https://policies.google.com/technologies/cookies?hl=en

LinkedIn Analytics

Description of Service

This is an analytics service.

Processing company

LinkedIn Ireland Unlimited Company

Wilton Place, Dublin 2, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

https://www.linkedin.com/help/linkedin/ask/TSO-DPO

Data Purposes

This list represents the purposes of the data collection and processing.

  • Analytics

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Add-ons information
  • Browser information
  • Device identifiers
  • IP address
  • ISP/Connection speed
  • Operating system information
  • Referrer URL

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

Data will be deleted as soon as they are no longer needed for the processing purposes.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • Singapore
  • United States of America

Data Recipients

In the following the recipients of the data collected are listed.

  • LinkedIn Ireland Unlimited Company
  • LinkedIn Inc.

Click here to read the privacy policy of the data processor

https://www.linkedin.com/legal/privacy-policy

Click here to read the cookie policy of the data processor

https://www.linkedin.com/legal/cookie_policy

Click here to opt out from this processor across all domains

https://www.linkedin.com/help/linkedin/answer/62931/manage-advertising-preferences?lang=en

Storage Information

  • Maximum age of cookie storage: 1 year

Stored Information

  • Name: lms_analytics; Used to identify LinkedIn Members in the Designated Countries for analytics.; Type: cookie; Duration: 30 days;
  • Name: AnalyticsSyncHistory; Used to store information about the time a sync took place with the lms_analytics cookie; Type: cookie; Duration: 30 days; Domain: linkedin.com;
  • Name: queryString; Used to persist marketing tracking parameters ; Type: cookie; Duration: 30 days;
  • Name: SID; Used to determine what a visitor is doing before they convert on a LinkedIn microsite; Type: cookie; Duration: Session; Domain: linkedin.com;
  • Name: VID; ID associated with a visitor to a LinkedIn microsite which is used to determine conversions for lead gen purpose; Type: cookie; Duration: 1 year; Domain: linkedin.com;
  • Name: s_plt; Tracks the time that the previous page took to load ; Type: cookie; Duration: Session; Domain: linkedin.com;

LinkedIn Insight Tag

Description of Service

This is a conversion tracking and retargeting service.

Processing company

LinkedIn Ireland Unlimited Company

Wilton Place, Dublin 2, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

https://www.linkedin.com/help/linkedin/ask/TSO-DPO

Data Purposes

This list represents the purposes of the data collection and processing.

  • Marketing
  • Retargeting
  • Analytics

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies
  • Pixel

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Device information
  • IP address
  • Referrer URL
  • Timestamp
  • Browser information

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

Singapore,European Union,United States of America

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be deleted after 90 days.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • Singapore
  • United States of America

Data Recipients

In the following the recipients of the data collected are listed.

  • LinkedIn Ireland Unlimited Company

Click here to read the privacy policy of the data processor

https://www.linkedin.com/legal/privacy-policy?src=li-other&veh=www.linkedin.com

Click here to read the cookie policy of the data processor

https://www.linkedin.com/legal/cookie_policy?src=li-other&veh=www.linkedin.com

Click here to opt out from this processor across all domains

https://www.linkedin.com/legal/privacy-policy?src=li-other&amp;veh=www.linkedin.com

Storage Information

  • Maximum age of cookie storage: 6 months

Stored Information

  • Name: BizographicsOptOut; This cookie is used to determine whether a user has rejected targeted advertising.; Type: cookie; Duration: 10 years;
  • Name: UserMatchHistory; Used by the LinkedIn Insight tag to provide detailed campaign reporting and discover new business demographics by layering LinkedIn data with website visitor data.; Type: cookie; Duration: 30 days;
  • Name: U; This is a browser Identifier for users outside EU/EEA.; Type: cookie; Duration: 2 months, 29 days;
  • Name: li_sugr; Used to make a probabilistic match of a user's identity outside the EU/EEA.; Type: cookie; Duration: 2 months, 29 days;
  • Name: bscookie; This is used for remembering that a logged in user is verified by two factor authentication.; Type: cookie; Duration: 2 years;
  • Name: bcookie; Browser Identifier cookie to uniquely identify devices accessing LinkedIn to detect abuse.; Type: cookie; Duration: 2 years;

Marketo

Description of Service

This is a marketing automation service.

Processing company

Adobe Systems Software Ireland Limited

4-6 Riverwalk, Citywest Business Campus, Dublin 24, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

DPO@Adobe.com

Data Purposes

This list represents the purposes of the data collection and processing.

  • Analytics
  • Marketing
  • Optimization
  • Remarketing
  • Retargeting

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • IP address
  • Usage data
  • Clicked E-Mails
  • Contact information
  • Browser information
  • Device information
  • Date and time of visit

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data is retained as long as necessary to fulfill the purpose(s) for which it was collected.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • Worldwide

Data Recipients

In the following the recipients of the data collected are listed.

  • Adobe Systems Software Ireland Limited, Adobe Inc.

Click here to read the privacy policy of the data processor

https://www.adobe.com/privacy/policy.html

Storage Information

  • Maximum age of cookie storage: 2 years

Stored Information

  • Name: _mkto_trk; This is used to allow a website to track visitor behavior and link a visitor to the recipient of an email marketing campaign to measure campaign effectiveness. ; Type: cookie; Duration: 2 years; Domain: marketo.com;

Personio

Description of Service

This is a human resource and applicant management software solution.

Processing company

Personio GmbH

Rundfunkplatz 4, 80335 Munich, Germany

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

datenschutz@personio.de

Data Purposes

This list represents the purposes of the data collection and processing.

  • Job application
  • Optimization

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • First name
  • Last name
  • E-mail address
  • Telephone number
  • Social media profile
  • Date of birth
  • Postal address
  • Browser information
  • Operating system information
  • Referrer URL
  • IP address
  • Timestamp

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be stored for a period of 60 days after the application process has been concluded.

Data Recipients

In the following the recipients of the data collected are listed.

  • Personio GmbH

Click here to read the privacy policy of the data processor

https://www.personio.com/privacy-policy/

Reddit Advertising

Description of Service

This is an advertising service.

Processing company

Reddit UK Limited

5 New Street Square, London, EC4A 3TW, United Kingdom

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

Reddit Ireland Limited, c/o Matheson, Attn: Reddit EU Data Inquiries, 70 Sir John Rogerson's Quay, Dublin 2, Ireland, eurepresentative@reddit.com

Data Purposes

This list represents the purposes of the data collection and processing.

  • Analytics
  • Market research
  • Advertisement

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Ads viewed
  • IP address
  • Geographic location
  • Browser information
  • Device information
  • Advertising identifier
  • Clicked advertisements
  • Referrer URL
  • Hashed version of email address

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

United States of America

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be retained for as long as necessary for the purpose for which it was originally collected.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • United States of America

Click here to read the privacy policy of the data processor

https://www.reddit.com/policies/privacy-policy

Salesloft

Description of Service

This is a web analytics service. This allows the website operator to track user activities and interactions.

Processing company

Salesloft, Inc.

180 West Peachtree Street NW, Suite 2400, Atlanta, GA 30309 USA

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

privacy@salesloft.com

Data Purposes

This list represents the purposes of the data collection and processing.

  • Analytics
  • Marketing

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Click path
  • Date and time of visit
  • Device information
  • IP address
  • Pages visited
  • User-Agent
  • User behaviour
  • browser information
  • Device information
  • E-mail address
  • Name
  • Telephone number

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 paragraph 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

United States of America

Data Recipients

In the following the recipients of the data collected are listed.

  • Salesloft, Inc.

Click here to read the privacy policy of the data processor

https://salesloft.com/platform-privacy-notice/

Vidyard

Description of Service

This is an online video platform built for business. It helps to generate more leads, close more deals, and prove the impact of video.

Processing company

Buildscale, Inc.

8 Queen St. N, Unit #1 Kitchener, ON, Canada

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

dpo@vidyard.com

Data Purposes

This list represents the purposes of the data collection and processing.

  • Communication
  • Improvement of service
  • Providing Service

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Contact information
  • E-mail address
  • Mailing address
  • Name entered
  • Payment information
  • Photos or videos
  • Telephone number
  • User account information
  • Business information
  • Technical information

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

Canada, United States of America

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be deleted as soon as they are no longer needed for the processing purposes.

Data Recipients

In the following the recipients of the data collected are listed.

  • Buildscale, Inc.

Click here to read the privacy policy of the data processor

https://www.vidyard.com/privacy/

Click here to read the cookie policy of the data processor

https://www.vidyard.com/cookies/

YouTube Video

Description of Service

This is a video player service. It can be used by user to watch, like, share, comment and upload videos.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.

https://support.google.com/policies/contact/general_privacy_form

Data Purposes

This list represents the purposes of the data collection and processing.

  • Displaying Videos

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Cookies (if Privacy-Enhanced Mode is not activated)

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Device information
  • IP address
  • Referrer URL
  • Videos viewed

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 para. 1 s. 1 lit. a GDPR

Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

European Union

Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be deleted as soon as they are no longer needed for the processing purposes.

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • Chile
  • United States of America
  • Taiwan
  • Singapore

Data Recipients

In the following the recipients of the data collected are listed.

  • Alphabet Inc.
  • Google LLC
  • Google Ireland Limited

Click here to read the privacy policy of the data processor

https://business.safety.google/privacy/?hl=en

Click here to read the cookie policy of the data processor

https://policies.google.com/technologies/cookies?hl=en

Click here to opt out from this processor across all domains

https://safety.google/privacy/privacy-controls/

Storage Information

  • Maximum age of cookie storage: 8 months

Stored Information

  • Name: __sak; This is used to store information about the visitor's video preferences.; Type: web;
  • Name: LAST_RESULT_ENTRY_KEY; This is used to save the user settings when retrieving a Youtube video integrated on other web pages.; Type: web;
  • Name: yt-player-bandaid-host, yt-player-bandwidth, yt-player-headers-readable; This is used to determine the optimal video quality based on the visitor's device and network settings.; Type: web;
  • Name: yt-remote-cast-installed, yt-remote-connected-devices, yt-remote-device-id, yt-remote-fast-check-period, yt-remote-session-app, yt-remote-session-name; This is used to store the user's video player preferences using embedded YouTube video.; Type: web;
  • Name: YEC; This is used to store the user's video player preferences using embedded YouTube video.; Type: cookie; Duration: 1 year, 1 month;
  • Name: CONSENT; This is used to detect if the visitor has accepted the marketing category in the cookie banner. ; Type: cookie; Duration: 2 years;
  • Name: DEVICE_INFO; This is used to track user’s interaction with embedded content.; Type: cookie; Duration: 5 months, 26 days;
  • Name: remote_sid; This is used for the implementation and functionality of YouTube video content on the website.; Type: cookie; Duration: Session;
  • Name: test_cookie; This is a test for cookie setting permissions in user's browser.; Type: cookie; Duration: 1 day;
  • Name: VISITOR_INFO1_LIVE; This is used to measure the users bandwidth to determine whether they get the new or old player interface.; Type: cookie; Duration: 6 months;
  • Name: YSC; This is set by the YouTube video service on pages with embedded YouTube videos.; Type: cookie; Duration: Session;
  • Name: PREF; This is used to store information such as your preferred page configuration and playback settings such as explicit autoplay options, random mix, and player size.; Type: cookie; Duration: 8 months;
  • Name: pm_sess; This is used to maintain your browsing session.; Type: cookie; Duration: 30 minutes;
  • Name: CGIC; This is used to provide search results by auto-completing search queries based on a user's initial input.; Type: cookie; Duration: 6 months;
  • Name: UULE; This is used to determine the users geographic location. ; Type: cookie; Duration: 6 hours;
  • Name: _Secure-YEC; This is used to store the user's video player preferences using embedded YouTube videos.; Type: cookie; Duration: 1 year, 1 month;

Zoominfo

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • IP address
  • browser data

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • Art. 6 paragraph 1 sentence 1 lit. a GDPR

Transfer to Third Countries

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the provider's privacy policy or contact the provider directly.

  • United States of America

Data Recipients

In the following the recipients of the data collected are listed.

  • Zoom Information Inc., Vancouver, WA, US (HQ) 805 Broadway St

 

h. Additional privacy notice on our Facebook fan page 

Within the context of our Facebook fan page (available at: https://www.facebook.com/quantilope/ and https://www.facebook.com/quantilopeUS/ you also have the possibility to inform yourself about our services or to contact and interact with us. Our Facebook fan page is provided on the basis of the agreement concluded with Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) on the joint processing of personal data in accordance with Art. 26 GDPR ("Page Insights Controller Addendum "). According to this agreement, we ourselves cannot make and implement any decisions regarding the processing of Insights data. The primary responsibility pursuant to the GDPR for the processing of Insights data as well as the fulfilment of all obligations under the GDPR with regard to the processing of Insights data is held by Facebook.

We would like to point out that when you visit the Facebook fan page, your data as a user may be processed outside the EU. Facebook, Inc., which is involved in this process, has committed itself as a Privacy-Shield certified US provider to comply with the data protection standards of the EU: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active (Status: January 27, 2020).

Your data may be processed for market research and advertising purposes, for example by creating user profiles based on the interests arising from your usage behaviour and using them to place advertisements. For this purpose, cookies are usually stored on your computer.

The Page Insights feature allows us to access Facebook statistics from various categories related to the Facebook fan page usage, such as total number of page views, "Like" information, page activity, post interactions, video views, post reach, comments, shared content, responses, proportion of men and women, origin related to country and city, language, shop views and clicks, clicks on route planners, and clicks on phone numbers. We use this information to make our pages more attractive and more appropriate to your needs (e.g. by finding the right time to publish a content).

Within the context of the Facebook fan page, the processing of users' personal data is carried out in order to safeguard our legitimate interests in tailoring our information offerings and communications with users to meet their needs and target groups (legal basis: Art. 6 (1) (f) GDPR). If you are asked by Facebook (as the provider of the platform) to give your consent to  specific data processing, the processing will be carried out in this respect on the legal basis of Art. 6 (1) (a) GDPR.

With regard to the exercise of data subjects' rights and requests for information, we would like to point out that the most effective way to assert these rights is directly at Facebook (see https://www.facebook.com/legal/terms/information_about_page_insights_data). 

Further information on the processing and use of data, as well as on the rights and settings options for protecting your privacy, including the option to object (opt-out), can be found in Facebook's data policy at https://www.facebook.com/about/privacy/ and in the "Information about Page Insights Data" at https://www.facebook.com/legal/terms/information_about_page_insights_data 

Opt-Out: https://www.facebook.com/settings?tab=ads or http://www.youronlinechoices.com 

4. Privacy notice for survey participants

A survey participant is someone who  visits one of our subdomains (https://survey.quantilope.com/*) and takes part in a study or survey.


a. Information transmitted by your browser


When you visit our website, your browser automatically sends information to our server and temporarily stores it in a so-called log file. 

In this context, we collect and process the following information and personal data in particular:

 

  • Date and time of access to the website
  • Browser type and browser settings
  • Language and version of the browser software
  • Operating system 
  • Content of the request (concrete page)
  • the last page  visited by the user (referral) 
  • the amount of data transferred
  • Access status/HTTPS status code
  • IP address 
  • Device

The legal basis of the processing is Art. 6 (1) (f) GDPR, our legitimate interest. The information and personal data collected are required for the purpose of correctly delivering and optimizing the contents of the website, ensuring network and information security and protecting the website from attacks, disruptions and damage. In addition, the data is statistically evaluated for the purpose of increasing data protection and data security in order to ensure a level of protection for the personal data processed by us that is adequate to the risk.

Information about  the date and time of the website retrieval, browser type, version of the browser software as well as the operating system and device is stored together with the response data and used for the evaluation of the survey. The remaining log data (especially the IP) is processed separately from the response data. Therefore, retracing to your identity is not possible.

Beyond that, we do not use cookies in surveys.

quantilope uses the following analysis services in the surveys.

(1) Cloudflare

Cloudflare is a service that increases the security and performance of websites and web-based services.

Cloudflare is a product of Cloudflare, Inc.(https://www.cloudflare.com/de-de/privacypolicy/), which is based in the USA.

Data processing by Cloudflare is carried out on the basis of a contract for the processing of personal data on behalf of the controller in accordance with Art. 28 para. 3 GDPR, including appropriate guarantees in accordance with Art. 46 GDPR.

Cloudflare is a participant in the EU-US Data Privacy Framework.

An adequate level of data protection is ensured by the conclusion of an order processing contract that meets the requirements of Art. 28 GDPR.

The legal basis for data processing for the use of Cloudflare is Art. 6 para. 1 lit. f) GDPR.

Our legitimate interest in using Cloudflare is to ensure the optimisation and security of the service used by survey participants to take part in a study or survey.

The following personal data and information may be processed by Cloudflare in this context

  • IP address
  • Log file data
  • Information about the system configuration

You can find Cloudflare's privacy policy here: https://www.cloudflare.com/de-de/privacypolicy/

(2) Research Defender /SEARCH

Research Defender /SEARCH is a "fraud detection" service used by quantilope to exclude bots, fraudulent persons or duplicates from participating in surveys. 

Research Defender is a product of Rep Data Inc.(https://researchdefender.com/privacy-policy-2/), which is based in the USA.

The "Controller-Controller" module of the EU Commission's standard contractual clauses of 4 June 2021 (2021/914) was concluded between Research Defender and quantilope.

The legal basis for data processing with regard to the use of Research Defender is Art. 6 para. 1 lit. f) GDPR.

Our legitimate interest is to optimise the services we offer, to prevent fraudulent participation in quantilope surveys and to offer our customers the most meaningful surveys possible.

The following personal data and information may be processed by Research Defender in this context

  • Name
  • E-mail address
  • Browser Information
  • IP address
  • Log file data
  • Device Information, including information about the system configuration

You can find Research Defender‘s privacy policy here: https://researchdefender.com/privacy-policy-2/

The legal basis of the processing is Art. 6 (1) (f) GDPR, our legitimate interest. The information and personal data collected are required for the purpose of correctly delivering and optimizing the contents of the website, ensuring network and information security and protecting the website from attacks, disruptions and damage. In addition, the data is statistically evaluated for the purpose of increasing data protection and data security in order to ensure a level of protection for the personal data processed by us that is adequate to the risk.

Information about  the date and time of the website retrieval, browser type, version of the browser software as well as the operating system and device is stored together with the response data and used for the evaluation of the survey. The remaining log data (especially the IP) is processed separately from the response data. Therefore, retracing to your identity is not possible.

Beyond that, we do not use cookies and analysis services in surveys.

b. Local Storage

quantilope uses the so-called local storage. In this technique, data is stored locally in the cache of your browser. This data remains available and is accessible after closing the browser window (as long as you do not delete the local storage).

The local storage ensures that if you interrupt the survey, you will continue at the point where you interrupted it when you access it again. In addition, multiple participation can be prevented.

In addition, in cases where multiple participation in a survey is desired, we use the so-called session storage. The session storage  function corresponds to the described local storage, except that the corresponding data is automatically removed immediately after closing the browser.

The legal basis for the use of the local storage is the legitimate interest of us and our customers, Art. 6 (1) (f) GDPR. It allows us to make a fully functional offer.

If you do not want data to be stored in your local storage, you can prevent this in the settings of your browser. We would like to point out that this may lead to certain malfunctions.

c. Studies conducted by quantilope

If we conduct a study we may ask for various characteristics in the survey, such as your age or gender. Together with your answers to the study topic, a raw data set is formed. We will always carry out the surveys in such a way that no conclusions about your identity should be possible. However, depending on the combination of the characteristics being surveyed, traceability can never be completely excluded.

We process data you provide to us in surveys only on the basis of your consent in accordance with Art. 6 (1) (a) GDPR, for the purpose of market and opinion research.

The data will be stored and deleted after reaching the above-mentioned purposes. In some cases we may remove possible personal references by aggregating the data The erasure time limits are based on the principle of necessity.

d. Studies conducted by our customers

In most cases, studies are not conducted by ourselves, but by companies that are our customers.

In these cases, the respective customer is the controller of the processing of personal data. The privacy notice of that company applies to the processing of the data collected in the study.

e. Surveys in which you participate via a panel provider

If you take part in a survey conducted with the quantilope platform via a panel provider, we will collect the User-ID assigned to you by the panel provider at the beginning of the survey. At the end of the survey the User-ID is reported back to the panel provider. The purpose of this collection and feedback is to inform the panel provider whether you participated in the survey or whether you were excluded from participation, e.g. because the quota to which you belong has already been fulfilled. This feedback is necessary so that the panel provider can subsequently credit you with your incentive. The legal basis for the processing is the fulfilment of a contract, Art. 6 (1) (b) GDPR.

5. Privacy notice for applicants

You can find the privacy notice for applicants here https://quantilope-gmbh.jobs.personio.de/privacy-policy?language=en

6. Privacy notice for customers and other contact persons

The following privacy notice is relevant for you if your company has a contractual or pre-contractual relationship with us and you are a contact person of this company or you are in any other form a contact person for quantilope (e.g. press representatives).

a. Data categories and processing purposes

Relevant categories of processed personal data in these cases may include:

  • Personal identifiable information (form of address, title, full name and professional title)
  • Contact data (employer’s address, business email address, business telephone number, business fax number and similar data)
  • Project data (projects with quantilope in which you are involved and the position(s) you hold in these projects)
  • Usage data (i.e. where you found out about us or whether we are providing you with further material)
  • Payment data (business payment methods, invoicing details and similar data)
  • Other data (i.e. statements or sound and video recordings) which you provide to us on a voluntary basis and with consent
  • Survey data on customer satisfaction surveys that you voluntarily provide to us

In addition to the  data that we collect directly from you, we process personal data rightfully obtained from other companies or other third parties (e.g. credit agencies, directory publishers) insofar as it is necessary for us to carry out our services. We also process personal data that we have rightfully taken, obtained or acquired from publicly accessible sources (e.g. phone directories, trade and association registries, resident registries, lists of debtors, press, career networks, the Internet and other media).

The purpose of processing is to implement pre-contractual measures and to fulfill our contracts, including the services, measures and activities required for this purpose. The legal basis for this processing is Art. 6 (1) (b) GDPR

This data includes, in particular,

  • pre-contractual and contractual communication with you, 
  • access to our Help Center, 
  • the traceability of transactions, orders and other agreements, as well as quality control through appropriate documentation, 
  • goodwill procedures, 
  • measures to control and optimize business processes, and for the fulfillment of general obligations of due diligence, 
  • governance and control by affiliated companies (e.g. parent company); 
  • statistical analysis for management control, cost accounting and controlling,
  • reporting, 
  • internal and external communication, 
  • emergency management,
  • invoicing and tax assessments relating to operational services, 
  • risk management,
  • the assertion of legal claims and defense in litigation;
  • guarantee of IT security (including system and plausibility tests) and general safety, including building and plant safety, safeguarding and exercising the right to grant or deny access (e.g. via access controls);
  • guaranteeing the integrity, authenticity and availability of data,
  • prevention and solving of crimes;
  • monitoring by supervisory committees or control bodies (e.g. audits).

Furthermore, like everyone involved in economic activity, quantilope too is subject to a number of legal obligations. For this reason, it may be necessary to process personal data in accordance with Art. 6 (1) (c) GDPR (to fulfill statutory requirements) or Art. 6 (1) (e) GDPR (on grounds of public interest). Primarily, these are statutory requirements (e.g. commercial and tax law), but there may also be obligations imposed by supervisory and other public authorities. 

The purposes of processing may include, in certain cases, identity and age verification, fraud and money-laundering prevention, the prevention, fighting and clearing up of terrorism financing and crimes endangering property, comparisons of European and international anti-terror lists, fulfilling tax law control and reporting obligations and the archiving of data for the purpose of data protection and data security, and for the purpose of auditing by tax and other public authorities. It may also be necessary to disclose personal data for purposes of collecting evidence, prosecuting or enforcing civil claims in the event of any official or judicial measures.

In addition to the actual fulfillment of the contract or pre-contract, we may process your data as necessary to safeguard our legitimate interests or the legitimate interests of third parties based on Art. 6 (1) (f) GDPR, especially in regards to:

  • Advertising,market research, or opinion polling in connection to the services used by you (product update newsletter, etc.);
  • Obtaining information and for the exchange of data with credit agencies insofar as this exceeds our economic risk;
  • Reviewing and optimizing procedures for assessing needs;
  • Improving services and products as well as existing systems and processes;
  • Disclosing personal data as part of a due diligence review in corporate sales negotiations;
  • Enriching our data, including through the use or searches of publicly accessible data;
  • Statistical analyses or market analyses;
  • Benchmarking;
  • Asserting legal claims and defending against litigation that is not directly attributable to the contractual relationship
  • Limiting the storage of data if the erasure of data is not possible or possible only with disproportionate effort due to the unique kind of data storage;
  • Developing scoring systems or automated decision-making processes;
  • Preventing and solving crimes, provided this is not exclusively to fulfill statutory requirements;
  • Building and facility safety (e.g. access controls and video monitoring) insofar as it exceeds the general duties of care;
  • Internal and external inspections, security checks;
  • After consent is given, possibly listening in on or recording telephone conversations for quality control and training purposes;
  • Receiving and maintaining certifications of a private or official nature;
  • Publishing information on our website or our social media channels after consent is given or after prior notification.

Finally, processing is also possible on the basis of your consent pursuant to Art. 6 (1) (a) GDPR. The purposes of processing are, for example, the performance of customer satisfaction surveys or advertising with statements or images. You will be informed about the specific purposes at the time you give your consent.

b. Use and disclosure of personal data

Inside our company, your data is disclosed only to those internal offices or organizational units that require this data to fulfill our (pre-)contractual or statutory obligations or as part of the processing and enforcement of our legitimate interest. Your data will be disclosed to external parties only:

  • in relation to the contract performance;
  • for the purposes of complying with statutory requirements according to which we are obliged to provide information, ensure registration or disclose data;
  • Insofar as external service providers process data on our behalf as data processors or they have been commissioned with a function (e.g. CRM provider, Help Center, external computer centers, support/maintenance of EDP/IT applications, archiving, invoice processing, call center services, compliance services, controlling, data screening for anti-money-laundering purposes, data validation or plausibility tests, data destruction, purchasing/procurement, customer care, letter shops, marketing, media technology, research, risk controlling, invoicing, telephone services, website management, audit services, banking institutions, print shops or companies providing data disposal, courier services, logistics);
  • due to our legitimate interest or the legitimate interest of the third party for the specified purposes (e.g. to authorities, credit agencies, collection agencies, lawyers, courts, surveyors, affiliated companies and committees and supervisory bodies);
  • if you have given your consent to disclose  to third parties.

Who receives what data is largely dependent on the respective role defined in the contractual relationship and the purpose of the processing. 

The data will be stored and deleted after reaching the above-mentioned purposes. The erasure time limits are based on the principle of necessity.

c. Additional information on conducting conference calls, online meetings, video conferences and/or webinars

(i) Services used to conduct conference calls, online meetings, video conferences and/or webinars

The following services are used to conduct conference calls, online meetings, video conferences and/or webinars.

1. Zoom

Zoom is a product of Zoom Video Communications, Inc. (https://zoom.us/docs/de-de/privacy-and-legal.html) which has its headquarters in the USA. Zoom is Privacy Shield certified (https://www.privacyshield.gov/list).

An adequate level of data protection is ensured by the conclusion of an agreement for order processing which complies with the requirements of Art. 28 GDPR.

In the context of a contractual relationship, the legal basis for data processing when conducting "online meetings" is Art. 6 (1) (b) GDPR

The following personal data are processed, if specified:

  • Information on the user
  • Meeting metadata
  • For recordings (optional): MP4 file of all video, audio and presentation recordings, M4A file of all audio recordings, text file of online meeting chat.
  • When dialing in by phone: information on incoming and outgoing phone number, country name, start and end time. If necessary, further connection data, such as the IP address of the device, can be saved.
  • Text, audio and video data: The microphone and video camera can be deactivated at any time

2. Microsoft Teams

Microsoft Teams is a product of the Microsoft Corporation (https://privacy.microsoft.com/en-us/privacystatement), which is based in the USA.

Data is transferred to Microsoft on the basis of a contract for the processing of personal data on behalf of Microsoft in accordance with Art. 28 para. 3 GDPR, including suitable guarantees in accordance with Art. 46 GDPR.

Microsoft is a participant in the EU-US Data Privacy Framework.

An adequate level of data protection is ensured by the conclusion of a contract for order processing that meets the requirements of Art. 28 GDPR.

In the context of a contractual relationship, the legal basis for data processing when conducting "online meetings" is Art. 6 para. 1 lit. b) GDPR.

The following personal data is processed, if specified

  • Profile Data (e.g. e-mail address, profile picture and telephone number)
  • Call History
  • Content of the online meeting or similar (meetings, chats, voicemails, recordings, transcripts and shared data)
  • Call Quality data
  • Support/Feedback data
  • Diagnostic and service data

(ii) Additional information on Gong

In connection with the above-mentioned services used to conduct conference calls, online meetings, video conferences and/or webinars, quantilope uses the service "Gong", a service of Gong.io Ltd, to evaluate conversations with customers or test subjects and thus improve service quality.

Gong.io Ltd.

Description of Service

Gong.io Ltd. offers a conversation analysis service. quantilope uses Gong in connection with the services set out in Sec. 6 lit. c. (i) to evaluate conversations with customers or test subjects and thus improve service quality.

Processing company

Gong.io Ltd.
EMEA Office
1 Grand Canal Street Upper, Dublin D04 Y7R5, Ireland

Data Protection Officer of Processing Company

Below you can find the email address of the data protection officer of the processing company.
privacy@gong.io

Data Purposes

This list represents the purposes of the data collection and processing. 

  • Providing the service to our customers
  • Personalization of the service
  • Improvement of services

Technologies Used

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.

  • Audio evaluation
  • Video evaluation 

Data Collected

This list represents all (personal) data that is collected by or through the use of this service.

  • Duration of the visit
  • IP address
  • Evaluation of language
  • Video evaluation
  • Date and time of visit
  • Device Information
  • Browser information 

Legal Basis

In the following the required legal basis for the processing of data is listed.

  • 6 paragraph 1 lit. a GDPR


Location of Processing

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately.

  • European Union


Retention Period

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.

The data will be deleted as soon as they are no longer required for the purposes of processing. 

Transfer to Third Countries

This service may forward the collected data to a different country. Below you can find a list of countries to which the data is being transferred. Insofar as there is no decision by the EU-Commission on an adequate level of data protection for the third country in question or for specific sectors in the third country, corresponding contracts (such as EU standard contracts) and additional measures can be used as a basis for the transfer.

  • United States of America

Click here to read the privacy policy of the data processor

https://www.gong.io/privacy-policy/

d. Additional information quantilope Academy [powered by WorkRamp]

WorkRamp is used to provide a learning platform for customers and interested persons of quantilope. This learning platform (the “quantilope Academy”) enables quantilope to offer a range of specific, quantilope-related courses, and tests for its customers.

The quantilope Academy is powered by WorkRamp (https://www.workramp.com/about/privacy-policy/) which has its headquarters in the USA.

An adequate level of data protection is ensured by the conclusion of an agreement on the processing of personal data which complies with the requirements of Art. 28 GDPR, as well as the conclusion of respective standard contractual clauses.

In the context of a contractual relationship, the legal basis for data processing when offering access to the “quantilope Academy” is Art. 6 (1) (b) GDPR.

The following personal data are processed, if specified:

  • Name
  • E-mail address
  • Survey data
  • Test results

7. Further processing activities and further erasure periods

Due to the legal obligations to which quantilope is also subject, it may become necessary to process personal data in accordance with Art. 6 (1) (c) GDPR (to fulfill statutory requirements) or Art. 6 (1) (e) GDPR (on grounds of public interest). Primarily, these are statutory requirements (e.g. commercial and tax law), but there may also be obligations imposed by supervisory and other public authorities. The purposes of processing may include, in certain cases, identity and age verification, fraud and money-laundering prevention, the prevention, fighting and clearing up of terrorism financing and crimes endangering property, comparisons of European and international anti-terror lists, fulfilling tax law control and reporting obligations and the archiving of data for the purpose of data protection and data security, and for the purpose of auditing by tax and other public authorities. It may also be necessary to disclose personal data for purposes of collecting evidence, prosecuting or enforcing civil claims in the event of any official or judicial measures.

Unless otherwise specified for the individual processing activities, personal data is generally erasured based on the principle of necessity.

Like everyone involved in economic activity, we too are subject to a number of different legal obligations concerning storage and documentation. The deadlines specified in the applicable laws stipulate storage and documentation for up to ten years after the business relationship or the pre-contractual legal relationship has terminated.

In addition, special statutory provisions may require a longer storage period, such as the preservation of evidence in connection with statutes of limitations. 

Data is regularly erased once it is no longer required for contractual or legal obligations and rights unless said data is – for a limited period – required for processing to fulfill the respective purposes specified due to an overriding legitimate interest. An overriding legitimate interest also exists, for example, if the erasure of data is not possible or possible only with disproportionate effort due to the special kind of data storage, and processing of this data for other purposes is prevented by appropriate technical and organizational measures.

8. Processing of your data outside of EU/EAA

Data is transmitted to parties in countries outside the European Union (EU) or European Economic Area (EEA), otherwise known as third countries, whenever such is necessary to meet an order/contractual obligation towards or with you, such is required by law (e.g. reporting obligations under tax law), or where such is in our legitimate interest or the legitimate interest of a third party, or if you have issued us with consent.

Your data may be simultaneously processed in a third country, including the involvement of service providers for the processing of an order. If no decision has been issued by the EU Commission regarding the presence of an appropriate level of data protection for the respective country, we warrant that your rights and freedoms will be reasonably protected and guaranteed in accordance with EU data protection requirements through contractual agreements to this effect. Upon request, we can provide you with relevant detailed information.

9. Automated decision-making in individual cases

We do not make use of a purely automated decision-making process as referred to in Art. 22 GDPR. If we should in the future use such a process in individual cases, we will inform you separately, provided that it is required by law.

10. Rights as  data subject

You may assert data protection rights against us in certain circumstances:

  • You have the right to obtain information from us about your stored data in accordance with the provisions set forth in Art. 15 GDPR (possibly subject to restrictions in accordance with Section 34 BDSG or other applicable laws).
  • At your request, we will rectify your stored data in accordance with Art. 16 GDPR if it is inaccurate or incorrect.
  • At your request, we will erase your data in accordance with Art. 17 GDPR if doing so does not conflict with other statutory regulations (e.g. statutory storage obligations or restrictions in accordance with Section 35 BDSG) or an overriding interest on our part (e.g. to defend our rights and claims).
  • Based on the requirements set forth in Art. 18 GDPR, you can request that we restrict the processing of your data.
  • In addition, you may object to the processing of your data according to Art. 21 GDPR, on the basis of which we must end the processing of your data. However, this right to object applies only if special circumstances exist with regard to your personal situation, whereby rights of our company may outweigh your right of objection.
  • You also have the right to receive your data in a structured, common and machine-readable format under the provisions stipulated in Art. 20 GDPR, or to transmit them to a third party.
  • Furthermore, you have the right to withdraw the consent you have given to the processing of personal data at any time with effect for the future. Should you object, we shall no longer process your personal data unless we can establish compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or unless the processing is for the purposes of asserting, exercising or defending legal claims.
  • In addition, you have the right to file a complaint with the data protection supervisory authority (Art. 77 GDPR). However, we recommend that any complaint be directed to our data protection officer first.

Please address all inquiries regarding data protection at the quantilope Group to:


quantilope GmbH

Charlottenstraße 26 

D-20257 Hamburg

E-Mail: privacy (at) quantilope.com

 

quantilope Inc.

25 Broadway, 10th Floor

New York, NY 10004

E-Mail: privacy (at) quantilope.com

 

UAB quantilope

Užupio g. 30

01203 Vilnius

E-Mail: privacy (at) quantilope.com

 

quantilope Limited
Birchin Court, 5th Floor

19-25 Birchin Lane

London, United Kingdom

EC3V 9DU

E-Mail: privacy (at) quantilope.com