Privacy Policy

Privacy Policy for customers

Privacy Policy for customers

We, the eoda GmbH, Universitätsplatz 12, 34127 Kassel, Germany, phone: +49 561 202724-40, E-Mail: info@eoda.de, set out below which of your data we process on this website. Should you have any questions relating to data protection, our data protection officer would be happy to respond at eoda@dsb-moers.de. Further contact details can be found at https://dsb-moers.de.

Purpose, legal basis, categories of recipients, storage period for the data processing

Purpose: Presentation of the company and provision of services and/or sale of products, as well as communication through the Internet

The purpose of data processing on this website is to provide information about the products and services of our company, combined with the opportunity for users to be able to make contact with the appropriate contact person in house.

In providing our website, we comply with the requirements of the EU General Data Protection Regulation (GDPR), the Federal Data Protection Act (FDPA), the German Digital Services Act (DDG) and the Telecommunications Digital Services Data Protection Act (TDDDG). We process personal data in particular in accordance with the following legal bases:

  • 6 (1)(a) GDPR for the processing of personal data with the consent of the data subject.
  • 6 (1)(b) GDPR for the processing of personal data necessary for the performance of a contract with the data subject, as well as for taking appropriate steps prior to entering into a contract.
  • 6 (1)(c) GDPR for the processing necessary for compliance with a legal obligation to which we are subject in accordance with applicable EU law or in accordance with the applicable law of a country in which the GDPR is applicable in whole or in part.
  • 6 (1)(f) GDPR for the processing of personal data necessary to protect the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject. Legitimate interests are, in particular, our commercial interest to be able to provide our website, the security of information, the enforcement of our own legal claims and the compliance with further legislation.

To this end, in the context of service provision, we use service providers that have been separately bound to maintain confidentiality and to protect data. These include IT service providers and external consultants. Data shall only be disclosed to a third party in the existence of overriding statutory provisions.

When you visit the website, a connection is established with your browser. The information collected, which is listed below, is stored in temporary system files and recorded automatically: IP address of your device, data and time of access, name and URL of files accessed, website from which access is initiated or from which you are directed to our site (referrer URL), browser used and, where applicable, the operating system of your device, as well as the name of your provider.

The data specified is processed by us for the purpose of seamlessly establishing a connection and for system security. The connection data created is automatically deleted is and is not retained for more than seven days. If the website is used improperly, log files, which need to be retained for evidence purposes, are saved until the incident is clarified.

Use of storage technologies on your device

This website uses storage technologies (“cookies” and/or your browser’s memory) to enable storage of your use of the website. The information generated by cookies about your usage behaviour on this website is used to evaluate information about your use of this website as well as your visiting behaviour and to improve our information offering.

If the use of cookies on your end device is necessary for the functionality of the website, we use this technology on the basis of our legitimate interests in improving our information offering and ensuring the functionality of the website as well as information security on the website. The legal basis for data processing is then Art. 6 (1) (f) GDPR (legitimate interest) in conjunction with Section 25 (2) no. 2 TDDDG.

Should cookies be used that are not necessary for the operation of the website, we ask for your consent in advance. The legal basis for data processing is then Art. 6 (1) (a) GDPR in conjunction with Section 25 (1) TDDDG (consent).

The cookies will be deleted after two years at the latest. You may refuse the use of cookies by selecting the appropriate settings on your browser, however, please note that if you do this you may not be able to use the full functionality of this website. The data collection is anonymised; the collected data cannot be related to you personally.

Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). The legal basis for this processing is your consent according to Art. 6 (1) (a) GDPR.

Google Analytics also uses “cookies”, which are text files placed on your computer, to enable an analysis of the use of the website. The possibility that the data generated by the cookie about your use of this website might be transmitted to a Google server in the USA and stored there cannot be excluded. Data transfer to the USA only occurs if the requirements of Art. 44 et seq. GDPR are fulfilled. According to the European Commission, personal data transferred from the EU to US companies participating in the EU-U.S. Data Privacy Framework (DPF), including Google Inc., has been deemed reasonably secure. The IP address transmitted by your browser as part of Google Analytics will not be combined with other Google data. The user data will be deleted after 24 months at the latest.

You can revoke your consent at any time with effect for the future and prevent the use of data by Google if you download and activate the available browser plugin: https://tools.google.com/dlpage/gaoptout?hl=en-GB.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however, please note that if you do this you may not be able to use the full functionality of this website. Further information on data protection by Google can be found at: https://policies.google.com/privacy?hl=en-GB.

Google Tag Manager

This website uses the Google Tag Manager, a service of Google Ireland Ltd (Gordon House, Barrow Street, Dublin 4, Ireland; hereinafter “Google”). The legal basis for data processing is your consent in accordance with Art. 6 para. 1 lit. a GDPR, which you can revoke at any time with effect for the future via our data protection settings.

This allows us to manage website tags via an interface. The Google Tag Manager tool itself is a cookie-less domain and does not collect any personal data. The Google Tag Manager provides for the triggering of other tags, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation has been made at domain or cookie level, this remains in place for all tracking tags implemented with Google Tag Manager. For more information about the collection and processing of your data by Google, as well as your data subject rights in this regard, please refer to Google’s privacy policy at: https://policies.google.com/privacy?hl=de

It is possible that personal data may be transferred to Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) in the course of using this Google service. In this case, Google has concluded corresponding standard contractual clauses that regulate the protection of personal data transferred from the European Union to the USA. You can find more information at: https://policies.google.com/privacy/frameworks

Integration of YouTube Videos

We use YouTube, a service for embedding videos provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). The legal basis for this processing is your consent according to Art. 6 (1) (a) GDPR. The YouTube content is only loaded after your approval. The YouTube videos are embedded with deactivated tracking functions in its code. Further information on this can be found in Google’s detailed privacy policy at: https://policies.google.com/privacy?hl=en-GB. Opt-Out: https://adssettings.google.com/authenticated. The possibility that data might be transmitted to a Google server in the USA cannot be excluded. Data transfer to the USA only occurs if the requirements of Art. 44 et seq. GDPR are fulfilled. When using this service, YouTube’s terms of use apply. They can be found at: https://www.youtube.com/static?template=terms.

Integration of Microsoft® Bookings

For appointment bookings, we use the Microsoft Bookings service, a service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA, with which we have concluded an order processing agreement within the meaning of Art. 28 GDPR. Information on the processing of your data by Microsoft can be found at https://privacy.microsoft.com/de-de/privacystatement#maincookiessimilartechnologiesmodule. Microsoft sets cookies when you use the scheduling function. If these are not absolutely necessary for functionality, consent within the meaning of Art. 6 para. 1 lit. a GDPR is obtained. A description from Microsoft of why the “Clientid” and “OIDC” cookies are required can be found here: https://learn.microsoft.com/de-de/entra/identity-platform/v2-oauth2-auth-code-flow.

In connection with the initial contact and your appointment booking via Microsoft Bookings, we process your data to process your request and for the purpose of coordinating appointments. The legal basis for the transmission to us is your consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future. The data will then be deleted.

If you are already in a business relationship with us and make an appointment with us, the data agreement for the purpose of executing the contract is based on Art. 6 para. 1 lit. b GDPR.

Your data will be stored for the duration of the appointment planning and execution; after the appointment has taken place, the data will remain in the digital calendars of the conversation partners and will be deleted in accordance with the regular deletion periods for e-mail archiving, unless your request results in a retention obligation (e.g. in the case of an order).

Contact Form
Should you wish to write to us using our contact from, your data from the form is processed to deal with your concern. The legal basis for the transmission of data to us is art. 6 (1) (a) GDPR. You may withdraw your consent under data protection law at any time with effect for the future. The data is then removed. If there is no legal obligation to retain data arising from your enquiry (e.g. an order), the data is removed after three years. Your data is transmitted internally to the competent contact person to process your enquiry. Data is not transmitted to a third party without your approval.

Newsletter & Blog-Subscription
The purpose of sending the newsletter is to inform about new products and services of our company. To receive the newsletter your consent is required. The legal basis for data processing is art. 6 (1) (a) GDPR. The data will not be passed on to third parties. When registering for the newsletter, the so-called Double-Opt-In procedure is used, the request for the newsletter must be actively confirmed by you by clicking on the link in the e-mail sent to you. It is possible to unsubscribe at any time by clicking on the “Unsubscribe” link. You can also send us a cancellation request via e-mail to the above address. Data will only be transferred to the USA if the requirements of art. 44 ff. GDPR are fulfilled.

Your right to information, rectification, erasure, object and data portability

You may avail yourself of your right to information, rectification and erasure of data at any time. Simply contact us using one of the methods described above. Should you require data to be deleted, which we are still legally obligated to retain, access to your data will be restricted (blocked). The same applies in terms of yor right to object. You may avail yourself of your right to data portability if the recipient and ourselves have the technical means.

Right of appeal

You have the option at any time to lodge an appeal with a data protection supervisory authority.

Data security / encryption

This website uses “Hypertext Transfer Protocol Secure” (https). The connection between your browser and our server is encrypted.

Currency of and changes to this privacy statement

We reserve the right to change the content of this privacy statement at any time. This is usually done if the services used are subject to further development or adaptation. You can view the current privacy statement on our website.

Date of this statement: 17.09.2024

Data protection information website

Data protection information website

We, eoda GmbH, Universitätsplatz 12, 34127 Kassel, Germany, phone: +49 561 202724-40, E-Mail: info@eoda.de set out below which of your data we process on this website. Should you have any questions relating to data protection, our data protection officer would be happy to respond at eoda@dsb-moers.de. Further contact details can be found at https://dsb-moers.de.

Purpose, legal basis, categories of recipients, storage period for the data processing

Purpose: Presentation of the company and provision of services and/or sale of products and communication via the Internet.

The purpose of data processing on this website is to provide information about our company’s products and services, combined with the possibility for users to get in touch with be able to make contact with the appropriate contact person in our company.
We process personal data in accordance with the following legal bases:

  • 6 (1)(a) GDPR for the processing of personal data with the consent of the data subject.
  • 6 (1)(b) GDPR for the processing of personal data necessary for the performance of a contract with the data subject, as well as for taking appropriate steps prior to entering into a contract.
  • 6 (1)(c) GDPR for the processing necessary for compliance with a legal obligation to which we are subject in accordance with applicable EU law or in accordance with the applicable law of a country in which the GDPR is applicable in whole or in part.
  • 6 (1)(f) GDPR for the processing of personal data necessary to protect the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject. Legitimate interests are, in particular, our commercial interest to be able to provide our website, the security of information, the enforcement of our own legal claims and the compliance with further legislation.

To this end, in the context of service provision, we use service providers that have been separately bound to maintain confidentiality and to protect data. Data shall only be disclosed to a third party in the existence of overriding statutory provisions.

When you visit the website, a connection is established with your browser. The information collected, which is listed below, is stored in temporary system files and recorded automatically: IP address of your device, data and time of access, name and URL of files accessed, website from which access is initiated or from which you are directed to our site (referrer URL), browser used and, where applicable, the operating system of your device, as well as the name of your provider.

The data specified is processed by us for the purpose of seamlessly establishing a connection and for system security. The connection data created is automatically deleted is and is not retained for more than seven days. If the website is used improperly, log files, which need to be retained for evidence purposes, are saved until the incident is clarified.

Privacy information for recipients of our direct mailings

We, eoda GmbH, Universitätsplatz 12, 34127, Kassel, Germany, Tel.: +49 561 87948-300, info@eoda.de, would like to explain to you below which data of yours we process and how. If you have any questions about data protection, please contact our data protection officer at datenschutz@eoda.de.

We use address data (title, first name, surname, official address) for direct advertising by letter post or postcards.

Use of Cookies
This website uses so-called “cookies”, or text files, which are stored on your computer and which enable your use of the website to be analysed. The information produced by the cookie about the way you use this website is used to analyse visitor behaviour on the website and to improve our information offering. The legal basis for data processing is art. 6 (1) (f) GDPR (legitimate interests). The optimisation of the web presence constitutes such a legitimate interest. The information gained is only used for internal statistical analysis and is not passed on to third parties. The cookies are removed after 2 years. You can prevent cookies from being saved by changing the appropriate setting in your browser software; however, we would like to point out that in this case you would not be able to use all the features of this website to their full extent. Data is collected anonymously; the data collected cannot be related to you.

Google Analytics
This website uses Google Analytics, a web analysis service provided by Google Ireland Ltd, Gordon House, 4 Barrow Street, Dublin, D04 E5W5, Ireland (“Google”). The legal basis for this processing is your consent pursuant to art. 6 (1) (a) GDPR.

Google Analytics also uses “cookies”, which are text files placed on your computer, to help the website analyze how users use the site. It is not excluded that the information generated by the cookie about your use of this website may be transmitted to and stored by Google on servers in the United States. IP anonymisation is activated on this website and your IP address is abbreviated by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to and truncated by Google on servers in the United States. Google is certified in the USA under the Privacy-Shield agreement and assures to comply with the European data protection law. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, compile reports on website activity and provide other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser through Google Analytics is not combined with other data from Google. The user data is deleted after 14 months.

You can revoke your consent at any time with effect for the future and prevent the use of data by Google by downloading the available browser plug-in and activating: http://tools.google.com/dlpage/gaoptout?hl=de=en.
You can also prevent the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all the functions of this website to their full extent.
Further information on data protection at Google can be found at https://policies.google.com/privacy.

Google Tag Manager
This website uses the Google Tag Manager, a service of Google Ireland Ltd (Gordon House, Barrow Street, Dublin 4, Ireland; hereinafter “Google”). The legal basis for data processing is your consent in accordance with Art. 6 para. 1 lit. a GDPR, which you can revoke at any time with effect for the future via our data protection settings.

This allows us to manage website tags via an interface. The Google Tag Manager tool itself is a cookie-less domain and does not collect any personal data. The Google Tag Manager provides for the triggering of other tags, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation has been made at domain or cookie level, this remains in place for all tracking tags implemented with Google Tag Manager. For more information about the collection and processing of your data by Google, as well as your data subject rights in this regard, please refer to Google’s privacy policy at: https://policies.google.com/privacy?hl=de

It is possible that personal data may be transferred to Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) in the course of using this Google service. In this case, Google has concluded corresponding standard contractual clauses that regulate the protection of personal data transferred from the European Union to the USA. You can find more information at: https://policies.google.com/privacy/frameworks

Contact Form
Should you wish to write to us using our contact from, your data from the form is processed to deal with your concern. The legal basis for the transmission of data to us is art. 6 (1) (a) GDPR. You may withdraw your consent under data protection law at any time with effect for the future. The data is then removed. If there is no legal obligation to retain data arising from your enquiry (e.g. an order), the data is removed after three years. Your data is transmitted internally to the competent contact person to process your enquiry. Data is not transmitted to a third party without your approval.
Newsletter & Blog-Subscription

The purpose of sending the newsletter is to inform about new products and services of our company. To receive the newsletter your consent is required. The legal basis for data processing is art. 6 (1) (a) GDPR. The data will not be passed on to third parties. When registering for the newsletter, the so-called Double-Opt-In procedure is used, the request for the newsletter must be actively confirmed by you by clicking on the link in the e-mail sent to you. It is possible to unsubscribe at any time by clicking on the “Unsubscribe” link. You can also send us a cancellation request via e-mail to the above address. Data will only be transferred to the USA if the requirements of art. 44 ff. GDPR are fulfilled.

Integration of Microsoft® Bookings

For appointment bookings, we use the Microsoft Bookings service, a service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA, with which we have concluded an order processing agreement within the meaning of Art. 28 GDPR. Information on the processing of your data by Microsoft can be found at https://privacy.microsoft.com/de-de/privacystatement#maincookiessimilartechnologiesmodule.

Microsoft sets cookies when you use the scheduling function. If these are not absolutely necessary for functionality, consent within the meaning of Art. 6 para. 1 lit. a GDPR is obtained. A description from Microsoft of why the “Clientid” and “OIDC” cookies are required can be found here: https://learn.microsoft.com/de-de/entra/identity-platform/v2-oauth2-auth-code-flow.

In connection with the initial contact and your appointment booking via Microsoft Bookings, we process your data to process your request and for the purpose of coordinating appointments. The legal basis for the transmission to us is your consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future. The data will then be deleted.

If you are already in a business relationship with us and make an appointment with us, the data agreement for the purpose of executing the contract is based on Art. 6 para. 1 lit. b GDPR.

Your data will be stored for the duration of the appointment planning and execution; after the appointment has taken place, the data will remain in the digital calendars of the conversation partners and will be deleted in accordance with the regular deletion periods for e-mail archiving, unless your request results in a retention obligation (e.g. in the case of an order).

 

Integration of YouTube
We use YouTube, a service of Google Ireland Ltd, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland, for video embedding. The connection to YouTube is only established after clicking on “View Video”. The legal basis for data processing is your consent according to art. 6 (1) (a) GDPR. The consent is only valid for the loading and display process of the video. If you visit the site again, you will be asked for your consent again. The terms of use of YouTube (https://www.youtube.com/static?gl=DE&template=terms&hl=de) apply. A data transfer to the USA will only take place if the requirements of art. 44 ff. GDPR are fulfilled. Further information on data protection can be found in the detailed privacy policy of Google https://www.google.com/policies/privacy/.

Your right to information, rectification, erasure, object and data portability
You may avail yourself of your right to information, rectification and erasure of data at any time. Simply contact us using one of the methods described above. Should you require data to be deleted, which we are still legally obligated to retain, access to your data will be restricted (blocked). The same applies in terms of yor right to object. You may avail yourself of your right to data portability if the recipient and ourselves have the technical means.

Right of appeal
You have the option at any time to lodge an appeal with a data protection supervisory authority.

Data security / encryption
This website uses “Hypertext Transfer Protocol Secure” (https). The connection between your browser and our server is encrypted.
Currency of and changes to this privacy statement
We reserve the right to change the content of this privacy statement at any time. This is usually done if the services used are subject to further development or adaptation. You can view the current privacy statement on our website.

Date of this statement: 09th December 2022.

Privacy Notice for Visitors of our X Presence

Privacy Notice for Visitors of our XPresence

Privacy Policy about our X Account

We, the eoda GmbH, Universitätsplatz 12, 34127 Kassel (Germany), phone: +49 561 87948300, E-Mail: info@eoda.de, set out below which of your data we process, acting as processor of our X account. In case of any questions relating to data protection, our data protection officer would be happy to respond at eoda@dsb-moers.de. Further contact details can be found at www.dsb-moers.de.

X is a service provided by X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103 U.S.A.

If we process data with X, this is done based on the purpose and legal basis outlined below. There is no transfer of data to X, such as IP addresses, due to the embedding of tweets on homepages or similar.

However, we may retweet tweets from you, reply to tweets from you or write tweets that refer to you or your X account. In this respect, your public data on X may be made available to followers of our site.

The purpose of data processing on our X site is to provide information about products, services and news, combined with the possibility for users to interact with us in a targeted manner. The legal basis for the data processing is our legitimate interest (Art. 6 (1) f GDPR) on sharing information with our users and being able to communicate with them.

If we publish images of individuals, this is done via consent (legal basis: Art. 6 (1) a GDPR), based on a contractual agreement (legal basis: Art. 6 (1) b GDPR), and in exceptional cases based on legitimate interests (legal basis: Art. 6 (1) f. GDPR) to publish information about our services and events.

Personal data processed by X

We have no influence on the type and scope of the data processed by X Corp. or the transfer of the data to third parties. Furthermore, there are no control options for us.

In this context, we would like to point out that you use the services provided by X Corp. and all associated functions (e.g., sharing and rating content) takes place on your own responsibility. Information about the data processing carried out by X Corp. and the corresponding purposes pursued can be found in the data protection guidelines of X Corp. here: https://twitter.com/en/privacy

It is possible for you to restrict the processing of your data by X. For that purpose, you can open the general settings of your X account and change your privacy settings.

You can control and customize your privacy settings here:

https://twitter.com/settings/your_twitter_data

Information and further assistance on this can be found at this link:

https://help.twitter.com/de/forms/privacy

You can also change certain settings for your mobile devices (e.g., smartphones, tablets, etc.) so that X only has limited access to your contact data, location data, calendar data or photos. These setting options differ depending on the operating system used on your mobile device.

For more information and assistance, please refer to the following links: https://help.x.com/en/personalization-data-settings

To view the processed data, obtain information about their use and download the corresponding data as an archive, you can follow this link. https://help.x.com/en/managing-your-account/accessing-your-X-data

To contact X, you can follow this link: https://help.x.com/en/forms/privacy

Data transfer to third countries

It is not excluded that data from users is processed on systems outside the European Union. Retrieval of public tweets is possible worldwide.

Your right to information, rectification, deletion, object and data portability

You may avail yourself of your right to information, rectification and deletion of data at any time. Simply contact us using one of the methods described above. Should you require data to be deleted, which we are still legally obligated to retain, access to your data will be restricted (blocked). You may avail yourself of your right to data portability if the recipient and ourselves have the technical means.

In case you require to assert your rights towards X Corp., we shall pass your concerns on to X Corp.

Right of appeal

If you have any objections or complaints with the way in which we process your personal data, you have the right to lodge a complaint with the relevant data protection supervisory authority.

Changes to this privacy policy

We reserve the right to change the content of this privacy policy at any time. This is usually done if the services used are subject to further development or adaptation. In addition to this privacy policy, you can always consult the current privacy policy of our website https://www.eoda.de/en/privacy-policy/.

This version dates from 30.08.2023.

Privacy Notice for Visitors of our Instagram Presence

Privacy Notice for Visitors of our Instagram Presence

We, the eoda GmbH, Universitätsplatz 12, 34127 Kassel (Germany), phone: +49 561 87948300, E-Mail: info@eoda.de, set out below which of your data we process, acting as processor of our Instagram presence. Should you have any questions relating to data protection, our data protection officer would be happy to respond at eoda@dsb-moers.de. Further contact details can be found at www.dsb-moers.de.

Joint Controllers

Instagram is a service provided by Meta Platforms Ireland Ltd. With Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland a Joint Control Agreement has been completed, which you have access to on:
https://www.facebook.com/legal/terms/dataprocessing
https://www.facebook.com/legal/terms/page_controller_addendum
Meta Platforms Irland Ltd. assumes the primary responsibility acc. to the European Data Protection Regu-lation (GDPR).

To learn more about the Meta Platforms Irland Ltd. privacy statement, please visit:
https://help.instagram.com/155833707900388/?helpref=hc_fnav&bc[0]=Instagram-Hilfe&bc[1]=Datenschutz%20und%20Sicherheitsbereich

Purpose

Purpose of the data processing of our Instagram presence page is to provide information on our products and services and simultaneously allowing users a targeted interaction with us. The data processing is le-gally based on Art. 6 (1) f GDPR. Our legitimate interest is, in particular, our economic interest, the ex-change of information with our users and to communicate with them.

Data disclosure to authorities requires the existence of overriding statutory provisions.
If we are going to publish pictures of persons, this will be done with consent (legal basis: Art. 6 (1) a GDPR), basing on a written contractual agreement (legal basis: Art. 6 (1) b GDPR); in exceptional cases based on legitimate interest (legal basis: Art. 6 (1) f GDPR) in conjunction with § 23 paragraph 1 N° 3 Art Copyright Act).
Use of Instagram-Insights
We operate online advertisement on Instagram and use Instagram Insights in order to evaluate the be-haviour of our target group resulting from interaction with our website. The precise target group advertising is a legitimate interest of our company. Instagram users are informed; the main responsibility for such data collection lies with Meta Platforms Irland Ltd. Conflicting interests of users are not overrid-ing (publication of individual target group optimized advertising). Our legal basis is Art. 6 (1) f GDPR.

Transfer to third countries

It is not excluded that data may be processed by systems outside the European Economic Area. A data transfer to systems outside the EU only takes place if the requirements of Art. 44 ff. GDPR are observed.

Your right to information, rectification, deletion, object and data portability

You may avail yourself of your right to information, rectification and deletion of data at any time. Simply contact us using one of the methods described above. Should you require data to be deleted, which we are still legally obligated to retain, access to your data will be restricted (blocked). The same applies to an ap-peal. You may avail yourself of your right to data portability if the recipient and ourselves have the technical means.

In case you require to assert your rights towards Meta Platforms Ireland ltd. we shall pass your concerns on to Meta Platforms Ireland Ltd.

Right of appeal

You have the option at any time to lodge an appeal with a data protection supervisory authority.

Currency of and changes to this privacy statement
We reserve the right to change the content of this privacy policy at any time. This is usually done if the services used are subject to further development or adaptation. In addition to this privacy policy, you can always consult the current privacy policy of our website.

Date of this statement: 30.11.2022

 

Data protection information for visitors to our Facebook-Fanpage

Data protection information for visitors to our Facebook-Fanpage

We, the eoda GmbH, Universitätsplatz 12, 34127 Kassel (Germany), phone: +49 561 87948300, E-Mail: info@eoda.de, explain below which of your data we process operating our Facebook-Fanpage. Should you have any questions relating to data protection, you can contact us by email at eoda@dsb-moers.de at any time, our data protection officer would be happy to respond. Further contact details can be found at www.dsb-moers.de.
Joint controllers

With Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, a Joint Control Agreement has been completed, which you have access to on
https://www.facebook.com/legal/terms/dataprocessing
https://www.facebook.com/legal/terms/page_controller_addendum
Meta Platforms Ireland Ltd. assumes the primary responsibility acc. to the European Data Protection Reg-ulation (GDPR).

To learn more about the Facebook privacy statement, please visit https://www.facebook.com/privacy/ex-planation
Purpose: Presentation of the company as well as interaction with our users

The purpose of data processing on our fan page is to provide information on our products and services and simultaneously allowing users a targeted interaction with us. The data processing is legally based on Art. 6 paragraph 1 lit. f GDPR. Our legitimate interest is in particular our economic interest, the exchange of information with our users and to communicate with them.

Data disclosure to authorities requires the existence of overriding statutory provisions.
If pictures are published; this is done via consent (legal basis: Art. 6 paragraph 1 lit. a GDPR), on basis of a contractual agreement (legal basis: Art. 6 paragraph 1 lit. b GDPR) and, in exceptional cases, on basis of legitimate interests. Legal basis: Art. 6 paragraph 1 lit. f GDPR in conjunction with § 23 paragraph 1 N° 3 of the law on copyright in works of art and photography.

Use of Facebook-Insights

We operate online advertisement on Facebook and use Facebook Insights in order to evaluate the behav-iour of our target group resulting from interaction with our website. The precise target group advertising is a legitimate interest of our company. Facebook users are informed; the main responsibility for such data collection lies with Meta Platforms Ireland Ltd. Conflicting interests of users are not overriding (pub-lication of individual target group optimized advertising). Our legal basis is Art. 6 paragraph 1 lit. f GDPR.

Transfer to third countries

It is not excluded that data may be processed by systems outside the European Economic Area. A data transfer to third countries will only take place if the requirements of Art. 44 ff. GDPR are met.

Your right to information, rectification, deletion, object and data portability

You may avail yourself of your right to information, rectification and deletion of data at any time. Simply contact us using one of the methods described above. Should you require data to be deleted, which we are still legally obligated to retain, access to your data will be restricted (blocked). The same applies to an ap-peal. You may avail yourself of your right to data portability if the recipient and ourselves have the technical means.
In case you require to assert your rights towards Meta Platforms Ireland Ltd., we shall pass your concerns on to Meta Platforms Ireland Ltd.

Right of appeal

You have the option at any time to lodge an appeal with a data protection supervisory authority.

Currency of and changes to this privacy statement

We reserve the right to update our privacy statement at any time. This is usually done if the services used are subject to further development or adaptation. You can view the current privacy statement on our website.

Date of this statement: 30.11.2022

Privacy Notice for Visitors of our XING Presence

Privacy policy for visitors to our XING presence

We, the eoda GmbH, Universitätsplatz 12, 34127 Kassel, Tel.: +49 561 87948300, E-Mail: info@eoda.de, set out below which of your data we process, acting as processor of our XING presence. Should you have any questions relating to data protection, our data protection officer would be happy to respond eoda@dsb-moers.de. Further contact details can be found at www.dsb-moers.de.

We use our XING presence to provide information about our company, products and services, combined with the opportunity for users to interact with us in a targeted manner. We are processing personal data basing on Art. 6 para. 1 lit. f GDPR. Our legitimate interest is, in particular, our business interest in sharing information with our users and being able to communicate with them.

Before we publish pictures of people, we ask for your consent (legal basis: Art. 6 para. 1 lit. a GDPR), or we make a written contractual agreement with your (legal basis: Art. 6 para. 1 lit. b GDPR). In exceptional cases, we may publish pictures based on our legitimate interest for making information about our company available (legal basis: Art. 6 para. 1 lit. f GDPR).

Data disclosure to authorities requires the existence of overriding statutory provisions.

We process personal data ourselves via our XING account, and at the same time data is processed by New Work SE. In the case of the comment function, the legal basis is consent in accordance with Art. 6 para. 1 lit. a GDPR.

Duration of data storage and deletion

Your data is stored for the duration of the processing of your request. Usually, the data is forwarded to the designated channels outside of XING. The data is checked regularly in XING by our social media team and deleted when the purpose expires.

Data processing by XING

When visiting our XING presence, XING collects personal data of the users by using cookies. This data collection by XING may also occur for visitors which are not logged in or registered to XING.

Details of, which data is processed by New Work SE, and for what purposes it is used, can be found in XING’s data privacy policy: https://privacy.xing.com/en/privacy-policy

Furthermore, you have the possibility to request information via the XING privacy form or the archive requests: www.XING.com/settings/privacy/data/disclosure

It is not excluded, however, that data from users will be processed on systems outside the European Union. XING is committed to comply with EU data protection standards. A data transfer to systems outside the EU only will take place if the requirements of Art. 44 et seqq. GDPR are complied with. You can find more about this at: https://privacy.xing.com/en/privacy-policy/who-may-receive-information-about-you/third-countries

Your data will only be passed on to the authorities in the case of overriding statutory regulations.

Usage of your data by us

We receive anonymous statistics on the usage and use of the website based on our contract with New Work SE as well as legitimate interest of New Work SE. Following information will be provided:

  • Follower: Number of people following us – including increases and development over a defined time frame.
  • Range: Number of people who see a specific post and number of interactions on a specific post. This allows us to determine, for example, which content is better accepted by the community than others.
  • Advertising performance: That shows how many people were reached or interacted with a post or paid ad.

We use these statistics, from which we cannot identify individual users, to constantly improve our online offering on XING and to better respond to the interests of our users. We cannot link the statistical data with the profile data of our users. You can choose the form in which targeted advertising is displayed to you via your XING settings.

We receive personal data via XING if you communicate this to us actively via a personal message on XING (e.g., via a possible chat function). We use your data (e.g., first name, surname) to respond to your request in our customer service.

Furthermore, we also receive personal data via XING if you use a form with pre-filled fields with data from your profile to submit the data to us and send the data to us actively by clicking on a button.

Your right to information, rectification, deletion, object, and data portability

You may avail yourself of your right to information, rectification, and deletion of data at any time. Simply contact us using one of the methods described above. Should you require data to be deleted, which we are still legally obligated to retain, access to your data will be restricted (blocked). The same applies to an appeal. You may avail yourself of your right to data portability if the recipient and ourselves have the technical means.

In case you require to assert your rights towards XING, we shall pass your concern on to XING. For more information regarding your rights against XING to access and control your personal data, please visit: https://privacy.xing.com/en/privacy-policy/what-rights-can-you-assert

Right of appeal

You have the option at any time to lodge an appeal with a data protection supervisory authority.

Profiling

Profiling is not applied by us within the framework of this processing.

Currency of and changes to this privacy policy

We reserve the right to change the content of this privacy policy at any time. This is usually done if the services used are subject to further development or adaptation. You can view the current privacy policy on our website.

Date of this privacy policy: 12.12.2023

Privacy Notice for Visitors of our LinkedIn Presence

Privacy Notice for Visitors of our LinkedIn Presence

Privacy Policy for Visitors of our LinkedIn Presence

We, the eoda GmbH, Universitätsplatz 12, 34127 Kassel (Germany), phone: +49 561 87948300, E-Mail: info@eoda.de, set out below how we process your data acting as processor of our LinkedIn presence. Should you have any questions relating to data protection, our data protection officer would be happy to respond at eoda@dsb-moers.de. Further contact details can be found at www.dsb-moers.de .

We use our LinkedIn Company Page to provide information about our company, our products and services, combined with the opportunity for users to interact directly with us. The legal basis is our legitimate interest pursuant to Art. 6 (1) (f) GDPR. Our legitimate interest consists primarily in our business interest in sharing information about our company with customers, interested parties, applicants and third parties as well as being able to contact them.

If we publish images of persons, this is done with their consent (legal basis: Art. 6 (1) (a) GDPR) or on the basis of a contractual assignment of the rights of use (legal basis: Art. 6 (1) (b) GDPR).

We process personal data through our LinkedIn Company Page for the purpose of establishing contact, publicising our company and providing information. Our company processes your personal data when you use the messaging, commenting and posting functions. Your data will only be provided to authorities if there are overriding legal provisions.

When using LinkedIn, each user enters a direct contractual relationship with LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. How LinkedIn processes user data can be viewed in their data protection information: https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy. Please note that the possibility of user data being processed on systems outside the European Union cannot be ruled out. LinkedIn has undertaken to comply with EU data protection standards. Data will only be transferred to systems outside the EU if the requirements of Art. 44 et seq. GDPR are complied with. You can find out more at: https://www.linkedin.com/help/linkedin/answer/a1343190?trk=microsites-frontend_legal_privacy-policy&lang=en-us&intendedLocale=und.

Use of Insight Data

When a LinkedIn user visits, follows or engages with our LinkedIn page, LinkedIn processes personal data in order to make the page views available to us. In particular, LinkedIn processes data that the user has provided to LinkedIn in their profile, such as the position, country, industry, period of employment, company size and employment status. In addition, LinkedIn processes information about how a user has interacted with our company page, e.g. whether a user is a follower. Data processing is carried out on the basis of our legitimate interests in customising our company profile for specific target groups. Conflicting legitimate interests of users (display of individual target group-optimised advertising) are not overriding.

Together with LinkedIn, we are a joint controller for the Page Insights in accordance with Art. 26 GDPR. LinkedIn users are informed of this; the responsibility for data collection lies primarily with LinkedIn. A Joint Controller Addendum has been concluded with LinkedIn, which you can find here: https://legal.linkedin.com/pages-joint-controller-addendum.

Cold outreach via lemlist (LEMPIRE SAS)

For cold outreach via LinkedIn, we use the tool lemlist, a service provided by LEMPIRE SAS, 128 rue La Boétie, 75008 Paris, France. LEMPIRE SAS is involved in this processing on the basis of an order processing contract (https://www.lemlist.com/de/lemlist-dpa) and is bound by instructions in this context. In addition, LEMPIRE SAS is subject to a contractual obligation to ensure an adequate level of data protection. Further information on data processing via Lemlist can be found here: https://www.lemlist.com/de/privacy-policy

Cold calling via professional social media channels is in our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR in contacting new potential applicants and providing information about us as an employer in professional social media channels. You have the right to object to this processing; you can inform us of your objection at any time by sending an email to info@eoda.de. In this case, we will no longer contact you.

 

Your right to information, rectification, deletion, object and data portability

You can exercise your right to information, rectification, and erasure of data at any time. To do so, please contact us using the contact details provided above. If you request data erasure but we are still legally obliged to retain it, access to your data will be restricted (blocked). The same applies in the event of an objection. You can exercise your right to data portability insofar as the technical possibilities are available to the recipient and to us.

If your rights need to be asserted against LinkedIn, we will forward your request to LinkedIn. For more information on exercising your data subject rights towards LinkedIn, please refer to LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy.

Further information on how you can assert or implement your data subject rights directly against LinkedIn (e.g. account settings, downloads or requests) can be found at: https://www.linkedin.com/help/linkedin/answer/a1339364?trk=microsites-frontend_legal_privacy-policy&lang=en.

Right of appeal

You have the option at any time to lodge an appeal with a data protection supervisory authority.

Currency of and changes to this privacy statement

We reserve the right to change the content of this privacy statement at any time. This is usually done if the services used are subject to further development or adaptation. You can view the current privacy statement on our website.

Date of this statement: 30.08.2024

Privacy Policy for third parties

Privacy Policy for third parties

We, the eoda GmbH, Universitätsplatz 12, 34127 Kassel, Germany, phone: +49 561 87948300, E-Mail: info@eoda.de out be-low which of your data we process. Should you have any questions concerning data protection, just contact our data protec-tion officer at eoda@dsb-moers.de. Further contact information can be found here: www.dsb-moers.de.

Purpose of the data processing If you contact us for other matters than the initiation of a contract, we are processing your data based on our legitimate in-terest to conduct our business operations pursuant to Art. 6 para. 1 lit. f GDPR. We do not process any data without prevail-ing legitimate interest, e.g. when coordinating with other suppliers of our customers.

Categories of recipients In the context of the provision of services for special sectors, we use service providers that have been contractually obligated to maintain confidentiality and protect data in the event that access to personal data cannot be excluded. This Categories of recipients include external consultants (tax advisor, external data protection officer), hosting service provider, newsletter service provider and the provider of our financial accounting software. Data disclosure to authorities requires the existence of overriding statutory provisions. No data is transferred to third countries.

Storage period and deletion of data Your data will be stored for the duration of the necessary processing. If communication takes place, we are obliged to retain the tax-relevant documents for 10 years after the annual accounts and calendar year end. Subsequently, the data will be de-leted.

Your right to information, rectification, erasure, object and data portability You may avail yourself of your rights to access, rectification and erasure of data at any time. Simply contact us using one of the methods described above. Should you require data to be deleted, which we are still legally obligated to retain, access to your data will be restricted (blocked). The same applies to your right to object. You may avail yourself of your right to data portability if the recipient and ourselves have the technical means.

Right to lodge a complaint

You have the option at any time to lodge a complaint with a data protection supervisory authority.

Provision obligation

Without providing correct data, the conclusion of a contract may not be possible.

Privacy Policy for applicants

Privacy Policy for applicants

We, the eoda GmbH, Universitätsplatz 12, 34127 Kassel, Germany, phone: +49 561 87948300, E-Mail: info@eoda.de, set out below which of your data we process. Should you have any questions concerning data protection, just contact our data pro-tection officer at eoda@dsb-moers.de. Further contact information can be found here: www.dsb-moers.de.

Purpose of the data processing Purpose of the data processing is the initiation of employment on the basis of Art. 88 paragraph 1, Art. 6 paragraph 1 b) GDPR, § 26 FDPA. There will be no data transfer to other companies.
Categories of recipients Applicants personal data will not be transferred to third parties. If we use service providers in this context, these have been contractually obligated to maintain confidentiality and protect data in the event that access to personal data cannot be ex-cluded. Categories of recipients, except of internal management and personnel management, are hosting and support service providers and external consultants. Data disclosure to authorities requires the existence of overriding statutory provisions. There is no transmission of data to other countries.

Storage period and deletion of data

Your data will be stored for the duration of the application process; once you start working for us, your application data will be stored for the duration of your employment. In case the decision about your application results in a rejection, we shall retain your data on legal basis for further 6 months and subsequently delete it; in case of unsolicited applications or your consent to store the data for a longer period for a possible potential employment, we shall retain your data until withdrawal, however, no longer than two years.

Your right to information, rectification, erasure, object and data portability

You may avail yourself of your rights to access, rectification and erasure of data at any time. Simply contact us using one of the methods described above. Should you require data to be deleted, which we are still legally obligated to retain, access to your data will be restricted (blocked). The same applies to your right to object. You may avail yourself of your right to data portability if the recipient and ourselves have the technical means.

Right to lodge a complaint

You have the option at any time to lodge a complaint with a data protection supervisory authority.

Provision obligation

Without providing correct data, the execution of the application process may not be possible. The result may be that your application cannot be considered in the application process.

Privacy Policy for suppliers

Privacy Policy for suppliers

We, the eoda GmbH, Universitätsplatz 12, 34127 Kassel, Germany, phone: +49 561 87948300, E-Mail: info@eoda.de set out below which of your data we process. Should you have any questions concerning data protection, just contact our data pro-tection officer at eoda@dsb-moers.de. Further contact information can be found here: www.dsb-moers.de.

Purpose of the data processing Purpose of the data processing is the contract initiation and contract execution on basis of Art. 6 Abs. 1 lit. b GDPR.

Categories of recipients In the context of the provision of services for special sectors we use service providers that have been contractually obligated to maintain confidentiality and protect data in the event that access to personal data cannot be excluded. This Categories of recipients include external consultants (tax advisor, external data protection officer), hosting service provider, newsletter service provider and the provider of our financial accounting software. Data disclosure to authorities requires the existence of overriding statutory provisions. No data is transferred to third countries.

Storage period and deletion of data Your data will be stored for the duration of the contract; at the end of the contractual relationship, we are obliged to retain the tax-relevant documents for 10 years after the annual accounts and calendar year end. Subsequently, the data will be deleted.

Sanction list screening We are legally obliged by Regulation (EC) No. 881/2002, Regulation (EC) No. 753/2011 and Regulation (EC) No. 2580/2001 to carry out a sanction list screening. The legal basis for data processing is Art. 6 para. 1 lit. c GDPR. For this purpose, your con-tact data (name and address) will be transmitted to a service provider, who is separately bound to maintain confidentiality and protect data, for comparison with the sanctions lists of the EU. Your data will only be processed for the purpose of the sanction lists screening and will be deleted after the statutory retention period has expired.

Your right to information, rectification, erasure, object and data portability

You may avail yourself of your rights to access, rectification and erasure of data at any time. Simply contact us using one of the methods described above. Should you require data to be deleted, which we are still legally obligated to retain, access to your data will be restricted (blocked). The same applies to your right to object. You may avail yourself of your right to data portability if the recipient and ourselves have the technical means.

Right to lodge a complaint

You have the option at any time to lodge a complaint with a data protection supervisory authority.

Provision obligation

Without providing correct data, the conclusion of a contract may not be possible.

Data protection information for visitors to https://app.guinan.ai/ and for Guinan users

Data protection information for visitors to https://app.guinan.ai/ and for Guinan users

Data protection information for visitors to https://app.guinan.ai/ and for Guinan users

We, the eoda GmbH, Universitätsplatz 12, 34127 Kassel, Germany, phone: +49 561 202724-40, E-Mail: info@eoda.de, set out below how we process your data on https://app.guinan.ai and as a Guinan-user. Should you have any questions relating to data protection, our data protection officer would be happy to respond at eoda@dsb-moers.de. Further contact details can be found at https://dsb-moers.de.

  1. GENERAL INFORMATION ON DATA PROCESSING

1.1. Purposes and legal bases of data processing

The purpose of data processing on our website is the provision of services, initiation and fulfillment of contracts, fulfillment of legal obligations, provision of information about products and services of our company combined with the possibility for users to contact the contact persons in the company in a targeted manner.

We process personal data in particular in accordance with the following legal bases:

  • 6 (1)(a) GDPR for the processing of personal data with the consent of the data subject.
  • 6 (1)(b) GDPR for the processing of personal data necessary for the performance of a contract with the data subject, as well as for taking appropriate steps prior to entering into a contract.
  • 6 (1)(c) GDPR for the processing necessary for compliance with a legal obligation to which we are subject in accordance with applicable EU law or in accordance with the applicable law of a country in which the GDPR is applicable in whole or in part.
  • 6 (1)(f) GDPR for the processing of personal data necessary to protect the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject. Legitimate interests are, in particular, our commercial interest to be able to provide our website, the security of information, the enforcement of our own legal claims and the compliance with further legislation.

1.2. Recipients of data

As part of the provision of the service for special areas, we use service providers who are separately bound to confidentiality and data protection and for whom access to personal data cannot be excluded. These categories of recipients are IT and hosting service companies and external consultants. We have concluded corresponding data protection contracts with our business partners to ensure an appropriate level of data protection. Personal data will only be passed on to authorities if there are overriding legal provisions. Data is only transferred to third countries in compliance with the requirements of Art. 44 et seq. GDPR.

1.3. Storage period and deletion of personal data

We only process personal data for as long as necessary to achieve the purpose. If the purpose of processing no longer applies, we delete the data in accordance with the provisions of Art. 17 GDPR. Once the purpose of processing no longer applies, we store the data in accordance with the statutory retention periods. Any further storage will only take place if there is an exception in accordance with Art. 17 (3) GDPR.

1.4. Your right to information, rectification, erasure, object and data portability

You may avail yourself of your right to information, rectification and erasure of data at any time. Simply contact us using one of the methods described above. Should you require data to be deleted, which we are still legally obligated to retain, access to your data will be restricted (blocked). The same applies in terms of yor right to object. You may avail yourself of your right to data portability if the recipient and ourselves have the technical means.

1.5. Right of appeal

You have the option at any time to lodge an appeal with a data protection supervisory authority.

1.6. Currency of and changes to this privacy statement

We reserve the right to change the content of this privacy statement at any time. This is usually done if the services used are subject to further development or adaptation. You can view the current privacy statement on our website.

 

  1. DATA PROTECTION INFORMATION FOR DATA PROCESSING ON https://app.guinan.ai/

The purpose of data processing on this website is to provide information about our company’s products/services, combined with the possibility for you to get in touch with the contact persons in the company in a targeted manner.

When you visit https://app.guinan.ai/, a connection is established with your browser. The information collected, which is listed below, is stored in temporary system files and recorded automatically: IP address of your device, data and time of access, name and URL of files accessed, website from which access is initiated or from which you are directed to our site (referrer URL), browser used and, where applicable, the operating system of your device, as well as the name of your provider.

The data specified is processed by us for the purpose of seamlessly establishing a connection and for system security. The connection data created is automatically deleted is and is not retained for more than seven days. If the website is used improperly, log files, which need to be retained for evidence purposes, are saved until the incident is clarified.

  1. DATA PROTECTION INFORMATION FOR GUINAN USERS

Guinan is a system that combines a language model with external data so that users can ask questions in natural language and receive accurate answers from their own data.

The purpose of data processing is the execution of the contract based on Art. 6 (1) (b) GDPR, in the case of employees in conjunction with § 26 FDPA (execution of the employment relationship).

If Guinan is provided to you as a user by your employer (platform customer), your employer is the controller and we are the processor within the meaning of the EU General Data Protection Regulation; for information on the use of Guinan in your company, please contact your management or your data protection officer.

If you create your own customer account, the regulations below apply.

3.1. Customer account / contractual services

As part of your registration and if you order products and/or services via the website, we process the data you provide for the purpose of performing the contract. The legal basis for data processing is Art. 6 (1) (b) GDPR. Registration and the use of Guinan are not possible without correct information from you.

The data will only be passed on to third parties if this is necessary for the purpose of the contract.

Stripe

This website allows you to use the online payment service Stripe (Stripe Inc., 510 Townsend Street San Francisco California 94103/Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland). We offer various payment options to enable the secure processing of online payments. The personal data collected in this context belong to the following data categories: inventory data, payment data, usage data, communication data. The processing and transfer of the listed data categories only takes place for the fulfilment of contractual or pre-contractual measures within the meaning of Art. Art. 6 (1) (b) GDPR. Data may be transferred to third countries; the applicable requirements of data protection law (Art. 44 et seq. GDPR) are taken into account. We have concluded a corresponding data processing agreement with Stripe to secure and carry out the processing activities described. This can be viewed at: https://stripe.com/de/legal/dpa. Further information on the use of Stripe can be found at: https://stripe.com/en-gb-de/privacy.

3.2 Duration of storage and deletion of data

Your data in the user account will be stored for the duration of the contract; after the end of the contractual relationship, your data will be deleted, unless overriding legal provisions prevent this in individual cases or the controller issues a different instruction.

Tax-relevant data will be deleted after expiry of the tax periods of 10 years after the annual financial statements and the end of the calendar year.