Thank you for visiting our website www.novomind.com and for your interest in our company. The protection of your personal data, such as date of birth, name, telephone number, address, etc., is an important concern for us. The purpose of this privacy policy is to inform you about the processing of your personal data that we collect from you when you visit our website. Our data protection practices comply with the statutory provisions of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). The following privacy policy serves to fulfil the information obligations arising from the GDPR. These can be found, for example, in Art. 13 and Art. 14 ff. GDPR.
The controller within the meaning of Art. 4 No. 7 GDPR is the person who alone or jointly with others determines the purposes and means of the processing of personal data.
With regard to our website, the responsible person is:
novomind AG
Bramfelder Chaussee 45
22177 Hamburg
Germany
E-mail: info@novomind.com
Phone: +49 40 808071 0
Fax: +49 40 808071 100
We have appointed a data protection officer in accordance with Art. 37 GDPR. You can reach our data protection officer using the following contact details:
Bramfelder Chaussee 45
22177 Hamburg, Germany
Germany
E-mail: datenschutzbeauftragter@novomind.com
Phone: +49 40 8080 71 0
Fax: +49 40 8080 71 100
Each time our website is accessed, our system automatically collects data and information from the accessing device (e.g. computer, mobile phone, tablet, etc.).
(1) Information about the browser type and the version used;
(2) The operating system of the accessing device;
(3) Host name of the accessing computer;
(4) The IP address of the retrieval device;
(5) Date and time of access;
(6) Websites and resources (images, files, other page content) that were accessed on our website;
(7) Websites from which the user’s system accessed our website (referrer tracking);
(8) Message as to whether the retrieval was successful;
(9) amount of data transferred
This data is stored in the log files of our system. This data is not stored together with the personal data of a specific user, so that individual site visitors cannot be identified.
Art. 6 para. 1 lit. f GDPR (legitimate interest). Our legitimate interest is to ensure the fulfilment of the purpose described below.
The temporary (automated) storage of the data is necessary for the course of a website visit in order to enable the website to be delivered. Personal data is also stored and processed to maintain the compatibility of our website for as many visitors as possible and to combat misuse and troubleshooting. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. We also use the data to optimise the website and to generally ensure the security of our IT systems.
The aforementioned technical data is deleted as soon as it is no longer required to ensure the compatibility of the website for all visitors, but no later than 3 months after our website is accessed.
You can object to the processing at any time in accordance with Art. 21 GDPR and request the erasure of data in accordance with Art. 17 GDPR. You can find out which rights you are entitled to and how to assert them at the bottom of this privacy policy.
Our website offers you various functions that collect, process and store personal data when you use them. Below we explain what happens to this data:
We will process the data you enter in our contact forms, which you have entered in the input mask of the contact form, to fulfil the purpose stated below.
Art. 6 para. 1 lit. a GDPR (consent by clear affirmative action or behaviour).
We will only use the data collected via our contact form or via our contact forms to process the specific contact enquiry received via the contact form.
After your enquiry has been processed, the data collected will be deleted immediately, provided there are no statutory retention periods.
The cancellation and deletion options are based on the general regulations on the right of cancellation and deletion under data protection law described below in this data protection declaration.
The use of the contact forms is voluntary and is neither contractually nor legally required. You are not obliged to contact us via the contact form, but can also use the other contact options provided on our website. If you wish to use our contact form, you must complete the fields marked as mandatory. If you do not fill in the required information on the contact form, you will either not be able to send the enquiry or we will unfortunately not be able to process your enquiry.
By registering for the newsletter on our website, we receive the email address you enter in the registration field and, if applicable, other contact details, provided you give us these via the newsletter registration form.
Art. 6 para. 1 lit. a GDPR (consent by clear affirmative action or behaviour).
The data entered in the registration form for our newsletter will be used by us exclusively for sending our newsletter, in which we provide information about all our services and news. After registration, we will send you a confirmation e-mail containing a link that you must click on to complete your registration for our newsletter (double opt-in).
You can unsubscribe from our newsletter at any time by clicking on the unsubscribe link, which is also included in every newsletter. Your data will be deleted by us immediately after cancellation. We will also delete your data immediately if you do not complete your registration. We reserve the right to delete your data without giving reasons and without prior or subsequent notification.
You can withdraw your consent at any time in accordance with Art. 7 (3) GDPR. However, the processing carried out up to the time of revocation remains unaffected by this. With regard to further rights, please refer to the overview at the end of this privacy policy.
If you would like to use our newsletter, you must fill in the fields marked as mandatory and confirm your e-mail address by clicking on the double opt-in link. The newsletter registration details are neither required to enter into a contract with us nor are they legally binding. It is used exclusively for sending our newsletter. If you do not fill in the required information, we will unfortunately not be able to provide you with our newsletter service.
If you wish to conclude a contract with us, we reserve the right to carry out exclusively automated processing of your personal data in order to check your creditworthiness. We are also authorised to make such an automated decision in accordance with Art. 22 para. 2 a GDPR. Whether or not the contract can be concluded depends on the result of the automated credit check. During a credit check, statistical probabilities of a payment default are calculated. The credit report may contain probability values (score values) that are calculated on the basis of scientifically recognised mathematical-statistical procedures. A large number of characteristics, such as income, address data, occupation, marital status and previous payment behaviour, are used to determine the customer’s future risk of non-payment. The result is expressed in the form of a payment value (score). The information obtained in this way forms the basis of our decision on the establishment, execution or termination of a contractual relationship. If you believe that you have been wrongly excluded from concluding a contract due to the credit check, you are welcome to explain your point of view to us by email. We will then review the automated decision on a case-by-case basis in accordance with Art. 22 para. 3 GDPR. In order to be able to carry out the credit check, we may store and process your personal data in accordance with Art. 6 para. 1 lit. b GDPR.
We transmit your data to the following provider(s) on the basis of the contract in the cases listed below:
Our company regularly checks your creditworthiness when concluding contracts and, in certain cases where there is a legitimate interest, also for existing customers. For this purpose, we work together with Creditreform Hamburg von der Decken KG, Wandalenweg 8-10, 20097 Hamburg, Germany (https://www.creditreform.de/hamburg), from whom we receive the necessary data. On behalf of Creditreform Hamburg von der Decken KG, we are providing you with the following information in advance in accordance with Art. 14 EU GDPR: Creditreform Hamburg von der Decken KG is a consumer credit agency. It operates a database in which creditworthiness information about private individuals is stored. On this basis, Creditreform Hamburg von der Decken KG issues creditworthiness information to its customers. Customers include, for example, credit institutions, leasing companies, insurance companies, telecommunications companies, receivables management companies, mail order, wholesale and retail companies as well as other companies that supply goods or services. In accordance with legal requirements, some of the data in the information database is also used to supply other company databases, including for address trading purposes. In the database of Creditreform Hamburg von der Decken KG, information is stored in particular about the name, address, date of birth, e-mail address if applicable, payment behaviour and shareholdings of persons. The purpose of processing the stored data is to provide information about the creditworthiness of the person in question. The legal basis for the processing is Art. 6 para. 1f EU GDPR. Accordingly, information about this data may only be provided if a customer can credibly demonstrate a legitimate interest in knowing this information. If data is transferred to countries outside the EU, this is done on the basis of the so-called “standard contractual clauses”, which you can find under the following link: http://eur-lex.europa.eu/legal-content/DE/TXT/PDF/?uri=CELEX:32001D0497&from=DE or have them sent to you from there. The data is stored for as long as it is necessary for the fulfilment of the purpose of storage. As a rule, knowledge is required for an initial storage period of three years. After expiry, it is checked whether storage is still necessary, otherwise the data is deleted to the day. If a matter is settled, the data is deleted to the day three years after settlement. Entries in the debtor register are deleted to the day in accordance with Section 882e ZPO after three years from the date of the entry order. Legitimate interests within the meaning of Art. 6 para. 1f EU GDPR may be: credit decision, business initiation, shareholding relationships, claims, credit assessment, insurance contract, enforcement information. You have the right to obtain information from Creditreform Hamburg von der Decken KG about the personal data stored about you. If the data stored about you is incorrect, you have the right to have it corrected or deleted. If it cannot be determined immediately whether the data is incorrect or correct, you have the right to block the respective data until clarification. If your data is incomplete, you can request that it be completed. If you have given your consent to the processing of the data stored by Creditreform Hamburg von der Decken KG, you have the right to revoke this consent at any time. The revocation does not affect the legality of the processing of your data carried out on the basis of your consent prior to any revocation. If you have any objections, requests or complaints regarding data protection, you can contact the data protection officer of Creditreform Hamburg von der Decken KG at any time. He will help you quickly and confidentially in all matters relating to data protection. You can also complain about the processing of data by Creditreform Hamburg von der Decken KG to the state data protection officer responsible for your federal state. The data that Creditreform Hamburg von der Decken KG has stored about you comes from publicly accessible sources, from debt collection agencies and from their customers. In order to describe your creditworthiness, Creditreform Hamburg von der Decken KG calculates a score for your data. The score value includes data on age and gender, address data and, in some cases, payment history data. This data is included in the score calculation with different weightings. Creditreform Hamburg von der Decken KG customers use the score values as an aid when making their own credit decisions.
The data stored by Creditreform Hamburg von der Decken KG is processed for compelling legitimate grounds of creditor and credit protection which regularly outweigh your interests, rights and freedoms or for the establishment, exercise or defence of legal claims. You can only object to the processing of your data for reasons that arise from your particular situation and must be proven. If such special reasons can be proven, the data will no longer be processed. If you object to the processing of your data for advertising and marketing purposes, the data will no longer be processed for these purposes. Creditreform Hamburg von der Decken KG, Wandalenweg 8-10, 20097 Hamburg, Germany (https://www.creditreform.de/hamburg) is responsible within the meaning of Art. 4 No. 7 EU GDPR. You can reach Creditreform Hamburg von der Decken KG regarding all questions under the following contact details Tel.: +49 (0) 40 23604 – 100, Fax: +49 (0) 40 23604 – 195, E-Mail: info@hamburg.creditreform.de
You can reach the responsible data protection officer at the following contact details: Creditreform Hamburg von der Decken KG, Data Protection Officer, Wandalenweg 8-10, 20097 Hamburg, Germany, https://www.creditreform.de/hamburg.
We collect, process and store the following data when this website or individual files on the website are accessed: IP address, website from which the file was retrieved, name of the file, date and time of retrieval, amount of data transferred and notification of the success of the retrieval (so-called web log). We use this access data exclusively in a non-personalised form for the continuous improvement of our website and for statistical purposes. We also use the following web trackers to analyse visits to this website:
We use the Custom Audiences service of Meta Platforms Ireland Ltd, Merrion Road, D04 X2K5 Dublin 4, Ireland, e-mail: impressum-support@support.facebook.com, website: http://facebook.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website. Facebook Custom Audience is an advertising tool from Facebook that can be used to target advertising campaigns to site visitors. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://www.facebook.com/about/privacy. The provider also offers an opt-out option at https://www.facebook.com/about/privacy.
We use the Facebook Connect service of Meta Platforms Ireland Ltd, Merrion Road, D04 X2K5 Dublin 4, Ireland, e-mail: impressum-support@support.facebook.com, website: http://www.facebook.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website. Facebook Connect allows users to use their Facebook profile to simplify logging in to other web services.
You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://www.facebook.com/about/privacy. The provider also offers an opt-out option at https://www.facebook.com/about/privacy.
We use the Google service of Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website. We use Google to be able to load additional Google services on the website. The service is used to provide additional Google services, such as the required data processing for the provision of streams and fonts and relevant Google search content. It is technically required in order to be able to exchange the site visitor’s information already available to Google between the Google services and to be able to provide the site visitor with customised content adapted to their Google account. The service or we collect the following data for processing: Background data stored in the Google user account or with other Google services about the site visitor, background data for the provision of Google services such as streaming data or advertising data, data about the site user’s use of Google search, information about the end device used, the IP address and the user’s browser and other data from Google services for the provision of Google services related to our website. If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the required data. As part of order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using the Google service on our website, Google may transmit and process information from other Google services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be transferred to the Google services Google Apis, Doubleclick, Google Cloud, Google Ads and Google Fonts in accordance with the Google Privacy Policy. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://policies.google.com/privacy. The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de.
We use the Google Ads service provided by Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, email: support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website. Google Ads is an advertising system with which we can place adverts on external websites on the Internet to inform our customers about our services. Google Ads displays adverts on external websites that are individually tailored to our clientele and lead to our website according to parameters set by us. If the site visitor clicks on the Google Ads advert, they are taken to our website. In order to be able to measure the success and remuneration of Google Ads advertisements, Google Ads measures the success of the advertising measure when our website is accessed. Our website processes the data provided by Google Ads in order to be able to analyse and improve our advertising measures and to calculate any remuneration that may be due. For the processing itself, the service or we collect the following data: Data on the advertising interests of site visitors, interactions of site visitors with adverts relating to our website, data on visits to our website by site visitors who have previously clicked on Google Ads adverts and reached our website, data on the end device used, the IP address and the user’s browser and other data from Google services for the provision and refinement of Google adverts relating to our website. If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the required data. As part of order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When Google Ads are used on our website, Google may transmit and process information from other Google services in order to provide background services for the improvement and individualisation of Google advertising. For this purpose, data may also be processed by other Google services such as Google Apis, Google Cloud, Google Ads, Google Analytics, Google Tag Manager, Google Marketing Platform and Google Fonts in accordance with the Google Privacy Policy under Google’s own data protection responsibility. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://policies.google.com/privacy. The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de.
We use the Google Analytics service provided by Google Ireland Ltd, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
Google Analytics is a web tracker that analyses the behaviour of site visitors and their interactions with our website and provides us with evaluations and forecasts about the content and products on our website and their popularity (so-called tracking). We have integrated Google Analytics so that the service can compile an analysis of the surfing behaviour of site users. For this purpose, Google collects the page interactions of page visitors with our website and, if applicable, existing information resulting from the reading of cookies or other storage technologies and prepares it statistically for us. Google Analytics uses data processing technologies that make it possible to track individual site visitors and their interaction with other Google services, such as the Google Ads advertising network. Data from other Google services is also used to close data gaps using machine learning technologies, modelled statistics and forecasting functions and to compile comprehensive statistics on the content of our website. If Google Analytics is activated on our website, the data collected by Google Analytics is transferred to servers of Google Ireland Limited. As part of order processing, personal data may also be transferred to the servers of the parent company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. We carry out the analysis using Google Analytics in order to constantly optimise our website and make it more readily available. This is a so-called reach measurement. For the processing itself, the service or we collect the following data: Data on the interactions of site visitors with the content of the website, data on the handling of the services displayed on our website, data from external Google services, insofar as they interact with our website, such as advertising data or data on behaviour in relation to advertising, data on the rough geographical origin, the browser used, operating system and other information on the end device used. Google Analytics will store the data relevant for the provision of web tracking for as long as it is necessary to fulfil the booked web service. Data collection and storage is anonymised. Insofar as individual interactions of site visitors make it possible to subsequently establish a personal reference to specific actions, we will delete the collected data when the purpose has been achieved. The data will be deleted at the latest when it is not subject to any statutory retention obligations. As a rule, we will delete this data after 12 months at the latest. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://policies.google.com/privacy. The provider also offers an opt-out option at https://tools.google.com/dlpage/gaoptout?hl=de.
We use the Google Analytics (Google Signals) service provided by Google Ireland Ltd, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website. Google Analytics is a web tracker that analyses the behaviour of site visitors and their interactions with our website and provides us with evaluations and forecasts about the content and products on our website and their popularity (so-called tracking). We have integrated Google Analytics so that the service can compile an analysis of the surfing behaviour of site users. For this purpose, Google collects the page interactions of page visitors with our website and, if applicable, existing information resulting from the reading of cookies or other storage technologies and prepares it statistically for us. Google Analytics uses data processing technologies that make it possible to track individual site visitors and their interaction across devices and sessions with other Google services such as the Google Ads advertising network. Data from other Google services is also used to close data gaps using machine learning technologies, modelled statistics and forecasting functions and to compile comprehensive statistics on the content of our website. If Google Analytics is activated on our website, the data collected by Google Analytics is transferred to servers of Google Ireland Limited. As part of order processing, personal data may also be transferred to the servers of the parent company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. Personal data is also transferred to the USA. We carry out the analysis using Google Analytics in order to constantly optimise our website and make it more accessible. This is a so-called reach measurement. For the processing itself, the service or we collect the following data: Data on the interactions of site visitors with the content of the website, data on the handling of the services displayed on our website, data from external Google services, insofar as they interact with our website, such as advertising data or data on behaviour in relation to advertising, data on the rough geographical origin, the browser used, operating system and other information on the end device used, if necessary across devices and regardless of the session. Google Analytics will store the data relevant for the provision of web tracking for as long as it is necessary to fulfil the booked web service. Data collection and storage is anonymised. Insofar as individual interactions of site visitors make it possible to subsequently establish a personal reference to specific actions, we will delete the collected data when the purpose has been achieved. The data will be deleted at the latest when it is not subject to any statutory retention obligations. As a rule, we will delete this data after 12 months at the latest. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://policies.google.com/privacy. The provider also offers an opt-out option at https://tools.google.com/dlpage/gaoptout?hl=de.
We use the Google Tag Manager service of Google Ireland Ltd, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website. Google Tag Manager provides a technical platform for executing and controlling other web tools and web tracking programmes in a bundled manner by means of so-called “tags”. In this context, Google Tag Manager stores cookies on your computer and, if web tracking tools are executed using Google Tag Manager, analyses your surfing behaviour (so-called “tracking”). The data generated by the tags is collated, stored and processed by Google Tag Manager under a standardised user interface. All integrated “tags” are listed separately in this privacy policy. When using our website with activated integration of “tags” from Google Tag Manager, data such as your IP address and your user activities are transmitted to Google servers. The tracking tools used in Google Tag Manager ensure that the IP address is anonymised by Google Tag Manager before transmission by anonymising the IP address in the source code. Tag Manager can be used to link and analyse measurement values from different service providers (Google and third-party providers) on the basis of so-called tag management. Google Tag Manager helps us to compile reports on website activity and to control the web tools on our website. For the processing itself, the service or we collect the following data: Cookies, web tracking data, outgoing or incoming links, information generated by Google Tag Manager and the web tools triggered by Google Tag Manager when JavaScript code is integrated and activated on the website. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://policies.google.com/privacy. The provider also offers an opt-out option at https://policies.google.com/privacy.
We use the New Relic service of New Relic International Limited, 31-36 Golden Lane , 8 Dublin, Ireland, e-mail: privacy@newrelic.com, website: https://newrelic.com/ on our website. The transfer of personal data takes place exclusively to servers in the European Union. The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website. New Relic uses various tracking mechanisms to control the data transfers taking place on the website and analyses them for the website provider. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://newrelic.com/privacy. The provider also offers an opt-out option at https://newrelic.com/privacy.
On our website, we use the usercentrics service of the company Usercentrics GmbH, Rosental 4, 80331 Munich, Germany, e-mail: contact@usercentrics.com, website: https://usercentrics.com/. Personal data is transmitted exclusively to servers in the European Union. The legal basis for the processing is Art. 6 para. 1 lit. c GDPR. The use of the service helps us to fulfil our legal obligations. By integrating Usercentrics, we fulfil our legal obligation with regard to the consent management required for cookies. The rights to which you are entitled with regard to processing can be found at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://usercentrics.com/de/datenschutzerklaerung/. The provider also offers an opt-out option at https://usercentrics.com/de/datenschutzerklaerung/.
We use active content from external providers, so-called web services, on our website. By accessing our website, these external providers may receive personal information about your visit to our website. This may result in data being processed outside the EU. You can prevent this by installing an appropriate browser plugin or deactivating the execution of scripts in your browser. This may result in functional restrictions on websites that you visit. We use the following external web services:
We use the Akamaihd / Akamaized service of Akamai Technologies GmbH, Parkring 22, 85748 Garching, Germany on our website. Personal data is transmitted exclusively to servers in the European Union. The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website. Various adverts and content from other providers are loaded onto our site via the Akamai advertising network. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://www.akamai.com/content/dam/site/de/documents/akamai/akamai-privacy-statement.pdf.
We use the HubSpot Forms by HubSpot service from HubSpot, Inc, 25 First Street, 2141 Cambridge, United States, e-mail: privacy@hubspot.com, website: https://www.hubspot.de/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website. With the help of hsforms, we can easily provide you with surveys and forms on our website. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://legal.hubspot.com/de/privacy-policy.
We use the Hubspot service of HubSpot, Inc, 25 First Street, 2141 Cambridge, United States, e-mail: hubspotgermany@hubspot.com, website: https://www.hubspot.de/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer. The legal basis for the processing of personal data is our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in achieving the purpose described below. HubSpot is a CRM platform for marketing, sales and service. The service provides us with tools for social media marketing, content management, web analytics, customer service and search engine optimisation, among other things. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. With regard to the processing, you have the right to object listed in Art. 21. Further information can be found at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://legal.hubspot.com/de/privacy-policy.
We use the Hubspot cookie banner service provided by Hubspot, Inc, 25 First Street, 2141 Cambridge, United States, e-mail: privacy@hubspot.com. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer. The legal basis for the processing is Art. 6 para. 1 lit. c GDPR. The use of the service helps us to fulfil our legal obligations. The service integrates a cookie banner on our website with which we fulfil our legal obligations. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. The rights to which you are entitled with regard to processing can be found at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://legal.hubspot.com/de/privacy-policy.
We use the LinkedIn service of LinkedIn Ireland Unlimited Company, Wilton Place, 2 Dublin, Ireland, e-mail: info_impressum@cs.linkedin.com, website: https://www.linkedin.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website. When using the Linkedin plugin, we establish a connection to the Linkedin platform in order to give logged-in members of Linkedin the opportunity to interact with us. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy. The provider also offers an opt-out option at https://www.linkedin.com/help/linkedin/answer/68763?lang=de.
We use the legal text snippet service and modules of the company Website-Check GmbH, Beethovenstraße 24, 66111 Saarbrücken, Germany, e-mail: support@website-check.de, website: https://www.website-check.de/ on our website. The transfer of personal data takes place exclusively to servers in the European Union. The legal basis for the processing is Art. 6 para. 1 lit. c GDPR. The use of the service helps us to fulfil our legal obligations. With the help of the service, the contents of our legal texts are reloaded onto our website. The current legal texts are reloaded via the integration on our site. Further technical modules with regard to the legal texts or legally required elements can also be reloaded via this integration. The rights to which you are entitled with regard to processing can be found at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://www.website-check.de/datenschutzerklaerung/.
We use the Vimeo service of Vimeo, Inc., 555 West 18th Street, 10011 New York, United States, e-mail: Privacy@vimeo.com, website: http://www.vimeo.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website. Videos from the Vimeo platform are integrated on our website via the Vimeo service. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://vimeo.com/privacy. The provider also offers an opt-out option at https://vimeo.com/privacy.
We use the Website-Check Siegel service of the company Website-Check GmbH, Beethovenstraße 24, 66111 Saarbrücken, Germany, e-mail: support@website-check.de, website: https://www.website-check.de/. Personal data is transmitted exclusively to servers in the European Union. The legal basis for the processing of personal data is our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in achieving the purpose described below. The Website-Check GmbH script is the technical integration of the Website-Check seal. With this seal, we want to show that we take the issue of data protection very seriously. Data is transmitted to Website-Check GmbH for the purpose of delivering and displaying the seal on our website. With regard to the processing, you have the right to object listed in Art. 21. Further information can be found at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://www.website-check.de/datenschutzerklaerung/.
On our website, we have integrated a social plug-in of the social network “Facebook by META”, which is operated by Meta Platforms Ireland Ltd, Merrion Road, D04 X2K5 Dublin 4, Ireland, e-mail: impressum-support@support.facebook.com, website: http://www.facebook.com/ (“Facebook by META”). When you access a page that contains such a plug-in, your browser automatically establishes a background connection to the Facebook by META servers. The content of the plug-in is transmitted by Facebook by META directly to your browser and only integrated into our site. Through this integration, Facebook by META receives the information that your browser has loaded a specific page of our website. This also applies if you do not have a Facebook by META profile or are not currently logged in to Facebook by META. This information (including your IP address) is transmitted by your browser directly to a Facebook by META server in Ireland and stored there. If you are logged in to Facebook by META, Facebook by META can directly associate your visit to our website with your Facebook by META profile. If you interact with the plug-ins, for example by clicking the “Like” button or leaving a comment, this information is also transmitted directly to a Facebook by META server and stored there. The information is also published on your Facebook by META profile and displayed to your Facebook by META contacts that you have activated for this purpose.
Art. 6 para. 1 lit. a GDPR (if you have registered with “Facebook by META”) and Art. 6 para. 1 lit. f GDPR (if you have not registered with Facebook by META). Insofar as processing is carried out on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR, the legitimate interest of the website operator is to enable users to interact with the website operator’s content on Facebook by META.
The primary purpose of data collection is to offer you a social interaction option linked to Facebook by META and thus to make our website interactive. The scope of the data collection and the further processing and use of the data you leave behind by Facebook by META as well as your rights in this regard and setting options for protecting your privacy can be found in Facebook by META’s data protection information: https://www.facebook.com/about/privacy
Facebook by META will store the data relevant for the provision of the web service for as long as necessary. If the data is subject to statutory retention obligations, it will be deleted after the retention obligation has expired.
If you do not want the Facebook by META social plug-in to be executed, you can also prevent it from being executed by installing a corresponding add-on or script blocker. If you do not want Facebook by META to assign the data collected via our website to your Facebook by META profile, you must log out of Facebook by META before visiting our website. The objection and removal options are otherwise based on the general provisions on the right to object and the right to erasure under data protection law described below in this privacy policy.
We integrate and use cookies on various pages to enable certain functions of our website and to integrate external web services. Cookies are small text files that your browser can store on your access device. These text files contain a characteristic string of characters that uniquely identifies the browser when you return to our website. The process of saving a cookie file is also referred to as “setting a cookie”. Cookies can be set both by the website itself and by external web services. The cookies are set by our website or the external web services in order to maintain the full functionality of our website, to improve user-friendliness or to pursue the purpose stated with your consent. Cookie technology also enables us to recognise individual visitors by means of pseudonyms, e.g. individual or random IDs, so that we can offer more personalised services. Details are listed in the table below.
Insofar as the cookies are processed on the basis of consent pursuant to Art. 6 para. 1 lit. a GDPR, this consent is also deemed to be consent within the meaning of Section 25 para. 1 TTDSG for the setting of the cookie on the user’s terminal device. Insofar as another legal basis is stated in accordance with the GDPR (e.g. to fulfil a contract or to fulfil legal obligations), the storage or setting takes place on the basis of an exception in accordance with Section 25 (2) TTDSG. This is the case “if the sole purpose of storing information in the end user’s terminal equipment or the sole purpose of accessing information already stored in the end user’s terminal equipment is to carry out the transmission of a communication over a public telecommunications network” or “if the storage of information in the end user’s terminal equipment or access to information already stored in the end user’s terminal equipment is strictly necessary to enable the provider of a telemedia service to provide a telemedia service expressly requested by the user”. The relevant legal basis can be found in the cookie table listed later in this section.
The cookies are set by our website or the external web services in order to maintain the full functionality of our website, to improve user-friendliness or to pursue the purpose stated with your consent. Cookie technology also enables us to recognise individual visitors by means of pseudonyms, e.g. individual or random IDs, so that we can offer more personalised services. Details are listed in the table below.
Our cookies are stored until they are deleted in your browser or, if it is a session cookie, until the session has expired. Details are listed in the following table.
You can set your browser according to your wishes so that the setting of cookies is generally prevented. You can then decide on a case-by-case basis whether to accept cookies or to accept cookies in principle. Cookies can be used for various purposes, e.g. to recognise that your access device is already connected to our website (permanent cookies) or to save recently viewed offers (session cookies). If you have expressly given us permission to process your personal data, you can revoke this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
| Cookie name | Server | Provider | Purpose | Legal basis | Storage duration | Type |
|---|---|---|---|---|---|---|
| AnalyticsSyncHistory | .linkedin.com | The cookie used assigns an ID to the site visitor and determines statistical data on the site visitor’s website visits. This is used to personalise the advertising that is displayed to the user.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 30 days | Marketing | |
| JSESSIONID | .nr-data.net | New Relic | We use the “JSESSIONID” cookie to manage the user session on our website. The purpose of this cookie is to provide a unique identifier for a user’s session as they browse our website. It allows us to track the state of the session and ensure that the server can correctly identify the user to ensure a smooth interaction with the website.
| Art. 6 para. 1 lit. f GDPR (legitimate interests) | Session | Comfort |
| UserMatchHistory | .linkedin.com | This cookie assigns an ID to the website visitor. This ID is used to collect data on visitor behaviour on several websites in order to display individual advertising to the site visitor.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 30 days | Marketing | |
| __hssc | .novomind.com | Hubspot | This cookie stores the domain, the number of visitors and the time at which the visits began. It thus determines whether the number of sessions needs to be increased.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 31 minutes | Analytics |
| __hssrc | .novomind.com | Hubspot | This cookie measures whether the visitor has restarted their browser and thus determines whether a new website visit has taken place.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| __hstc | .novomind.com | Hubspot | This cookie stores the domain, the user token, the time of the first, last and current visit, as well as the number of sessions on the site.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 6 months | Analytics |
| _cfuvid | .hsforms.com, .hubspot.com | Hubspot | This cookie is part of the services offered by Cloudflare – including load balancing, delivery of website content and provision of DNS connections for website operators. It is used for rate limiting to distinguish individual users who share the same IP address.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| _cfuvid | .hsforms.com | HubSpot Forms by HubSpot | This cookie is part of the services offered by Cloudflare – including load balancing, delivery of website content and provision of DNS connections for website operators. It is used for rate limiting to distinguish individual users who share the same IP address.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| _dc_gtm_UA- | novomind.com | Google Analytics | This cookie is the Google Analytics tracking cookie. This cookie stores a unique visitor ID, the date and time of the first visit, the start time of the active visit and the number of all page visitors to our website.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 2 minutes | Analytics |
| _fbp | .com, .novomind.com | Facebook Connect | Facebook uses this cookie to display advertising products and assign advertising clicks to a user.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 3 months | Marketing |
| _ga | novomind.com | Google Analytics | This cookie assigns an ID to a user so that the web tracker can summarise the user’s actions under this ID.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 24 months | Analytics |
| _ga | novomind.com | Google Analytics | This cookie assigns an ID to a user so that the web tracker can summarise the user’s actions under this ID.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 24 months | Analytics |
| _ga_ | novomind.com | Google Analytics | This cookie stores a unique ID for a website visitor in connection with Google Analytics or Google Tag Manager and tracks how the visitor uses the website.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 24 months | Analytics |
| _gat_UA-229746-1 | novomind.com | Google Analytics | This cookie enables us to save individual comfort settings selected by you and to retain them for your current and future visits to the site.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 2 minutes | Configuration |
| _gcl_au | novomind.com | Google Tag Manager | This cookie is used by Google AdSense to increase the efficiency of advertising.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 3 months | Marketing |
| _gid | novomind.com | Google Analytics | This cookie assigns an ID to a user so that the web tracker can summarise the user’s actions under this ID.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 24 hours | Analytics |
| aka_debug | .akamaized.net | Akamaihd / Akamaized | This cookie assigns an ID to the site visitor and determines statistical data on the site visitor’s website visits. This is used to personalise the advertising that is displayed to the user.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Marketing |
| bscookie | .linkedin.com | The cookie used assigns an ID to the site visitor and determines statistical data on the site visitor’s website visits. This is used to personalise the advertising that is displayed to the user.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 12 months | Marketing | |
| bscookie | .www.linkedin.com | The cookie used assigns an ID to the site visitor and determines statistical data on the site visitor’s website visits. This is used to personalise the advertising that is displayed to the user.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 12 months | Marketing | |
| cf_bm | .vimeo.com | Vimeo | This cookie is used to confirm that the visitor comes from a known computer. In this way, security barriers can be overcome and loading times accelerated.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 30 minutes | Configuration |
| cf_bm | .hubspot.com | Hubspot | This cookie is used to confirm that the visitor comes from a known computer. In this way, security barriers can be overcome and loading times accelerated.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 31 minutes | Configuration |
| hubspotutk | .novomind.com | Hubspot | HubSpot uses this cookie to track visitors to the website.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 6 months | Analytics |
| lang | www.novomind.com | Webseitenbetreiber | Saves the language version of a website selected by the user
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| li_gc | .linkedin.com | This cookie is used to store the consent of guests to the use of non-mandatory cookies.
| Art. 6 para. 1 lit. c GDPR (fulfilment of a legal obligation) | approx. 6 months | Cookie banner | |
| li_sugr | .linkedin.com | This cookie is used to store browser data in order to personalise future advertising and tailor it to the country of the website visitor.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 3 months | Marketing | |
| lidc | .linkedin.com | This cookie assigns an ID to the website visitor. This ID is used to collect data on visitor behaviour on several websites in order to display individual advertising to the site visitor.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 24 hours | Marketing | |
| nabAlternative | www.novomind.com | Webseitenbetreiber | This cookie enables us to save individual comfort settings selected by you and to retain them for your current and future visits to the site.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| nabCheckWritePermission | www.novomind.com | Webseitenbetreiber | This cookie enables us to save individual comfort settings selected by you and to retain them for your current and future visits to the site.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| nabExperimentsWithPageViews | www.novomind.com | Webseitenbetreiber | This cookie enables us to save individual comfort settings selected by you and to retain them for your current and future visits to the site.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| nabIsStagingSite | www.novomind.com | Webseitenbetreiber | This cookie enables us to save individual comfort settings selected by you and to retain them for your current and future visits to the site.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| nabIsUserLoggedIn | www.novomind.com | Webseitenbetreiber | This cookie enables us to save individual comfort settings selected by you and to retain them for your current and future visits to the site.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| nabIsVisitorExcluded | www.novomind.com | Webseitenbetreiber | This cookie enables us to save individual comfort settings selected by you and to retain them for your current and future visits to the site.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| nabParticipation | www.novomind.com | Webseitenbetreiber | This cookie enables us to save individual comfort settings selected by you and to retain them for your current and future visits to the site.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| nabSegmentation | www.novomind.com | Webseitenbetreiber | This cookie enables us to save individual comfort settings selected by you and to retain them for your current and future visits to the site.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| nabSessionChecksum | www.novomind.com | Webseitenbetreiber | This cookie enables us to save individual comfort settings selected by you and to retain them for your current and future visits to the site.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| nabUniqueViews | www.novomind.com | Webseitenbetreiber | This cookie enables us to save individual comfort settings selected by you and to retain them for your current and future visits to the site.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | Session | Configuration |
| nelioTestingAccepted | www.novomind.com | Google Tag Manager | This cookie enables us to save individual comfort settings selected by you and to retain them for your current and future visits to the site.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 30 days | Configuration |
| player | .vimeo.com | Vimeo | The cookie saves the user’s preferences when playing embedded videos from Vimeo on our website.
| Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 12 months | Configuration |
| vuid | .vimeo.com | Vimeo | Collects data about the user’s visits to the website, such as which videos have been viewed. | Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) | approx. 24 months | Analytics |
Your personal data is protected by technical and organisational measures during collection, storage and processing in such a way that it is not accessible to third parties. In the case of unencrypted communication by e-mail, we cannot guarantee complete data security on the transmission path to our IT systems, so we recommend encrypted communication or the postal service for information requiring a high level of confidentiality.
We would like to expressly point out that our mail system has an automated archiving process. All incoming and outgoing emails are digitally archived in an audit-proof manner.
Art. 6 para. 1 lit. c GDPR (legal obligation). The legal obligation consists of compliance with tax and commercial law requirements (e.g. Sections 146, 147 AO, Sections 238, 257 HGB).
The purpose of archiving is to comply with tax law (e.g. Sections 146, 147 of the German Fiscal Code (AO) – obligation to retain e-mails relevant to tax law) and commercial law (e.g. Sections 238, 257 of the German Commercial Code (HGB) – obligation to archive business correspondence).
Our e-mail communication is stored until the expiry of retention obligations under tax and commercial law. The retention period can be up to 10 years.
You can object to the processing at any time in accordance with Art. 21 GDPR and request the erasure of data in accordance with Art. 17 GDPR. You can find out which rights you are entitled to and how to assert them at the bottom of this privacy policy.
If you have any questions regarding our e-mail archiving system, please contact our data protection officer. We would also like to point out that we only consider application documents in PDF file form. Zipped files (WinZip, WinRAR, 7Zip, etc.) are filtered out by our security systems and will not be delivered. We do not consider applications in Word file format and other file formats and delete them unread. Please note that unencrypted application documents sent by e-mail may be opened by third parties before they reach our IT systems. We assume that we may also reply to unencrypted application emails in unencrypted form. If you do not wish this to happen, please let us know in your application e-mail.
You have the right to request confirmation as to whether we are processing your personal data. If this is the case, you have a right of access to the information specified in Art. 15 para. 1 GDPR, provided that the rights and freedoms of other persons are not affected (cf. Art. 15 para. 4 GDPR). We will also be happy to provide you with a copy of the data.
In accordance with Art. 16 GDPR, you have the right to have any incorrect personal data stored by us (e.g. address, name, etc.) corrected at any time. You can also request the completion of the data stored by us at any time. A corresponding adjustment will be made immediately.
In accordance with Art. 17 (1) GDPR, you have the right to demand that we erase the personal data collected about you if
Pursuant to Art. 17 (3) GDPR, the right does not exist if
Pursuant to Art. 18 (1) GDPR, you have the right in individual cases to request the restriction of the processing of your personal data. This is the case if
If you have given us your express consent to the processing of your personal data (Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR), you can revoke this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of the consent until revocation.
In accordance with Art. 21 GDPR, you have the right to object at any time to the processing of personal data concerning you that has been collected on the basis of Art. 6 para. 1 lit. f (in the context of a legitimate interest). You only have this right if there are special circumstances that speak against the storage and processing.
You can exercise your rights at any time by contacting us using the contact details below:
novomind AG
Bramfelder Chaussee 45
22177 Hamburg, Germany
Germany
E-mail: info@novomind.com
Phone: +49 40 808071 0
Fax: +49 40 808071 100
In accordance with Art. 20 GDPR, you have the right to receive the personal data concerning you. We will provide the data in a structured, commonly used and machine-readable format. The data can be sent either to you yourself or to a controller named by you. We will provide you with the following data upon request in accordance with Art. 20 para. 1 GDPR:
We will transfer the personal data directly to a controller of your choice insofar as this is technically feasible. Please note that we may not transfer data that interferes with the freedoms and rights of other persons in accordance with Art. 20 para. 4 GDPR.
If you suspect that your data is being processed unlawfully on our website, you can of course seek legal clarification of the issue at any time. You also have every other legal option available to you. Irrespective of this, you have the option of contacting a supervisory authority in accordance with Art. 77 para. 1 GDPR. The right to lodge a complaint pursuant to Art. 77 GDPR is available to you in the EU Member State of your place of residence, your place of work and/or the place of the alleged infringement, i.e. you can choose the supervisory authority to which you turn from the above-mentioned places. The supervisory authority with which the complaint has been lodged will then inform you of the status and outcome of your complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.
Created by:
© DURY LEGAL Attorneys at Law – www.dury.de
© Website-Check GmbH – www.website-check.de
Let’s get in touch
Select your region
regionDo you have any questions? Are you interested in our company and services? The novomind team is available to assist you through the channel of your choice.
Back
We look forward to your email!
We look forward to your WhatsApp message!
We look forward to your call!
Back
We look forward to your email!
We look forward to your WhatsApp message!
We look forward to your call!
Singapore:
Hong Kong:
Back
We look forward to your email!
We look forward to your WhatsApp message!
We look forward to your call!
Singapore:
Hong Kong:
Back
We look forward to your email!
We look forward to your WhatsApp message!
We look forward to your call!
Back
We look forward to your email!
We look forward to your WhatsApp message!
We look forward to your call!
Back
We look forward to your email!
We look forward to your WhatsApp message!
We look forward to your call!
Customer focused Technology
Products
Digital Commerce
Customer Service
Services
More novomind
Other / Legal
How can we help?
