Privacy Policy
-
You are using our Haiilo Cloud or our Haiilo Apps and would like to have a look into our privacy policy for these products?
-
You are using our Haiilo Cloud and would like to sign an agreement for contract data processing?
If you have any further questions about the general data protection regulation that are not answered here, you can contact our data protection officer at [email protected].
Note:
If you have any questions regarding Haiilo’s security, you can ask them directly at [email protected].
§ 1 Information related to the collection of personal data
(1) Below, we provide information on the collection of personal data when using this website. Personal data are all data that are personally referable to you, such as, for example, name, address, email addresses and user behavior.
(2) The controller, that means the entity responsible for the processing of personal data, in accordance with Article 4 para. 7 of the General data protection regulation (GDPR) adopted in the European Union is Haiilo GmbH, Gasstraße 6, 22761 Hamburg / Germany (see our legal information). You can contact our data protection officer at [email protected] or our postal address with the addition “the data protection officer”.
We will erase the data collected in this context after its storage is no longer required. This is the case when the matter you contacted us about is resolved. We will otherwise limit the further processing of your personal data if we are required by law to continue retaining it.
(3) In case we employ contracted service providers for individual functions of our offer or would like to use your data for advertising purposes, we will inform you in detail about the respective processes. We also specify the defined criteria for the storage period.
§ 2 Your rights
(1) You have the following rights towards us regarding your personal data:
– Right to access,
– Right to rectification or erasre,
– Right to restriction of processing,
– Right to object to processing,
– Right to data portability.
(2) You also have the right to file a complaint with a data protection supervisory authority concerning our processing of your personal data.
§ 3 Collection of personal data when visiting our website
(1) If you use the website for information purposes only, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which are technically necessary for us to display our website to you and to guarantee stability and security (legal basis is § 25 Para. 2 No. 2 Telecommunication Telemedia Data Protection Act (Telekommunikation-Telemedien-Datenschutz-Gesetz – TTDSG) and Art. 6 para. 1 p. 1 lit. f GDPR):
– IP address
– Date and time of request
– Time zone difference from Greenwich Mean Time (GMT)
– Content of the request (concrete page)
– Access Status/HTTP status code
– Respective volume of data transferred
– The website making the request
– Browser
– Operating system and device
– Language and version of browser software.
The above-mentioned data will also be stored in the log files of our systems. There will be no storage of this data in combination with your other personal data.
The data will be deleted as soon as it is no longer necessary for the purposes for which it was collected. In case of the storage of your data in log files, this will be the case after seven days. Storage beyond this is possible. In this case, your IP address will be deleted or alienated so that it no longer can be assigned to a user.
(2) In addition to the aforementioned data, cookies are stored on your computer when you use our website, if you have given us your consent. Cookies are small text files that are stored on your hard disk in association with the browser you’re using and by which the body which sets the cookie (in this case, us), transmits certain information. Cookies cannot run programs or deliver viruses to your computer. They serve to make our site more user-friendly and effective.
(3) Use of cookies:
(a) This website and our services use the following types of cookies, the scope and functionality of which are explained below:
– Transient cookies (see b)
– Persistent cookies (see c).
(b) Transient cookies are automatically deleted when you close the browser. These especially include session cookies. These store a session ID which assigns the various requests made by your browser during the joint session. This allows your computer to be recognized when you return to the site. Session cookies are deleted when you log out or close the browser.
(c) Persistent cookies are automatically deleted after a specified period, which may differ depending on the cookie in question. You can delete cookies at any time in the security settings of your browser.
(d) Although we only set non-essential cookies if you have given us your explicit consent, you can also configure your browser settings as desired and refuse to accept third-party or any cookies. Please note that you may not be able to use all functions of this website.
(e) The Flash cookies used are not recorded by your browser, but by your Flash plug-in. We also use HTML5 storage objects that are stored on your mobile device. These objects store the required data independently of your browser and do not have an automatic expiry date. If you do not wish the Flash cookies to be processed , you must install an appropriate add-on, e.g. “Better Privacy” for Mozilla Firefox www.haiilo.com (https://addons.mozilla.org/de/firefox/addon/betterprivacy/) or the Adobe Flash killer cookie for Google Chrome. You can prevent the use of HTML5 storage objects by using private mode in your browser. We also recommend that you regularly delete your cookies and your browser history manually.
Change cookie preferences
(4) The first time you visit our website, you will be asked to choose your privacy setting and select or deselect the various tags/tracker or analysis tools. Only the tools marked as “essential” are required to be able to display the website to you, which is also our legitimate interest. The legal basis for the use of those tools is § 25 para. 2 no. 2 TTDSG, Art. 6 para. 1 lit. f GDPR. If you agree to the use of any other tools in this respect, the legal basis for data processing is governed by § 25 para. 1 TTDSG, Art. 6 para. 1 lit. a GDPR.
§4 Further features and offers on our website
(1) In addition to the purely informational use of our website, we offer various services that you can use if interested. For this purpose, you must provide further personal data which we use to provide the respective service and to which the aforementioned data processing principles apply.
(2) In some cases, we use external service providers to process your data. These have been carefully selected and commissioned by us, are bound by our instructions and are regularly checked.
(3) Furthermore, we may disclose your personal data to third parties if we offer promotions, competitions, contracts or similar services together with partners. For more information, please provide your personal data or see the description of the offer below.
(4) If our service providers or partners are located in a country outside the European Economic Area (EEA), in the description of the offer we will inform you of the consequences of this circumstance.
§ 5 Newsletter
(1) With your consent you can subscribe to our newsletter, with which we inform you about our current interesting offers. The goods and services to be advertised will be named in the consent form.
(2) To register for our newsletter, we use the “double opt-in” procedure. This means that after your registration we will send you an e-mail to the specified e-mail address in which we ask you to confirm that you would like the newsletter to be sent. If you do not confirm your registration within [24 hours], your information will be blocked and automatically deleted after one month. In addition, we store your IP addresses and the time of registration and confirmation. The purpose of the procedure is to be able to prove your registration and, if necessary, to clarify a possible misuse of your personal data.
(3) The only required information for sending the newsletter is your email address. The indication of further, separately marked data is voluntary and is used to be able to address you personally. After your confirmation we will save your e-mail address for the purpose of sending you the newsletter. The legal basis is art. 6 para. 1 p. 1 lit. a GDPR
(4) You can revoke your consent to receive the newsletter at any time and unsubscribe from the newsletter. You can declare your revocation by clicking on the link provided in every newsletter email, by sending an email or by contacting us in one of the ways listed in the legal notice.
(5) We would like to point out that we evaluate your user behavior when sending the newsletter. For this analysis, the e-mails sent contain so-called web beacons or tracking pixels, which are stored on our website. For evaluation purposes, we link the above data (para. 3) and web beacons to your e-mail address and an individual ID. Links included in the newsletter also contain this ID. With the data obtained in this way, we create a user profile to tailor the newsletter to your individual interests. This means we can record when you read our newsletter, which links you click on in it, and keep track of your personal interests. We link these data with the way how you will use our website.
You can object to this tracking at any time by contacting us. The information is stored for as long as you have subscribed to the newsletter. After a cancellation we store the data purely statistically and anonymously. Such tracking is also not possible if you have deactivated the display of images in your email program by default. In this case the newsletter will not be displayed completely and you may not be able to use all functions. If you display the images manually, the above-mentioned tracking will occur.
§ 6 Contact form and email contact
There is a contact form on our website which can be used to contact us electronically. When you contact us via e-mail or via that contact form, the data you provide (your e-mail address and your message to us, and if applicable your name, your telephone number, your company and the reason for contacting us) will be transmitted to and stored by us in order to answer your questions.
Furthermore, when you hit the “Submit” button in the contact form, the following data will be submitted and stored:
– your IP address,
– the date and time of the registration.
Your consent will be obtained for the processing of the data during the sending process and reference to this privacy policy will be made.
In this context, data will not be passed on to third parties. The data will only be used to process the conversation.
The legal basis for processing the above data is Art. 6 para. 1 lit. a GDPR if you have given us your consent. The legal basis for the processing of the data transmitted in the course of sending an email is Art. 6 para. 1 lit. f GDPR. If the email contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.
The processing of the personal data from the contact form serves us solely to process the contact. If contact is made by email, this is also the necessary legitimate interest in the processing of the data. The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our systems.
The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. For the personal data from the input mask of the contact form and those sent by email, this is the case when the respective conversation with the user has ended. This is the case when it can be inferred from the circumstances that the matter you contacted us in, could be resolved. The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.
§ 7 Objection or revocation against the processing of your data
(1) If you have given your consent to the processing of your data, you can revoke this at any time. If you exercise this right, this will affect our ability to process your personal data after you have already given it to us.
(2) Insofar as we base the processing of your personal data on our legitimate interest, you may object to the processing. When exercising such objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will examine the situation and either stop or adjust data processing or point out to you our compelling reasons and interests worthy of protection, on the basis of which we will continue processing.
(3) Of course, you may object to the processing of your personal data for advertising and data analysis purposes at any time. You can inform us of your advertising objection at the following contact details: [email protected]
§ 8 Web analytsics
1. Use of Google Analytics
(1) This website uses Google Analytics, if you have given us your consent, a web analysis service of Google Inc. (“Google”). Google Analytics uses “cookies”, text files that are stored on your computer and that enable your use of the website to be analyzed. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, if IP anonymization is enabled on this website, your IP address will first be truncated by Google within the Member States of the European Union or other parties to the agreement on the European Economic Area.
Only in exceptional cases will the full IP address be transferred to a Google server in the USA and truncated there. Google will use this information on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity, and to provide other services regarding website activity and internet usage for the website operator.
(2) The IP address transmitted by your browser within Google Analytics is not merged with other Google data.
(3) You can also prevent cookies from being stored by selecting the appropriate settings in your browser; however, we wish to point out that by doing so, you may not be able to enjoy the full functionality of this website. You can also prevent the data generated by cookies concerning your use of the website (incl. your IP address) from being passed to Google, and the processing of these data by Google, by downloading and installing the browser plugin available at the following link:
http://tools.google.com/dlpage/gaoptout?hl=de
(4) This website uses Google Analytics with the extension “_anonymizeIp()”. As a result, IP addresses are further processed in truncated form, so that reference to individuals can be ruled out. If the data collected about you is personally identifiable, it will be blocked immediately and the personal data deleted as soon as possible.
(5) We use Google Analytics to analyses and regularly improve the use of our website. We can improve our offer and make it more interesting for you as a user. The legal basis for the use of Google Analytics is § 25 para. 1 TTDSG, Art. 6 para. 1 lit. a of the GDPR.
(6) Third party provider information: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. User conditions: http://www.google.com/analytics/terms/de.html, Overview of data Security:
– http://www.google.com/intl/de/analytics/learn/privacy.html and the Privacy Policy:
– http://www.google.de/intl/de/policies/privacy
(7) This website also uses Google Analytics for an analysis of visitor flows across all devices that is carried out via a user ID (Google Universal Analytics). You can disable the device cross-analysis of your use in your account under “My data”, “personal data”.
2. Use of Hubspot
Haiilo uses Hubspot, a service of Hubspot Inc. 25 First Street, Cambridge MA 02141 USA, on its website for analysis purposes, if you have given us your consent. So-called “web beacons” are used here and “cookies” are also set, which are stored on your computer and enable us to analyze your use of the website. Hubspot evaluates the recorded information (e.g. IP address, geographical location, type of browser, duration of the visit and pages accessed) on our behalf in order to generate reports on the visit and the pages visited. If you subscribe to our newsletter as described under § 5, as well as download other documents, we can use Hubspot to record your visits to our website with your additional information (above all your name/email address) and, if necessary, to inform you specifically about your preferred topics.
If you generally do not want Hubspot to collect data, you can also prevent cookies from being stored at any time using your browser settings (see § 3 of the data protection declaration). For more information on how Hubspot works, please refer to the Hubspot Inc. privacy policy: http://legal.hubspot.com/de/privacy-policy
Furthermore, we use the services of Hubspot to gather the feedback of our customers. This is essential for us in order to make our services more attractive. In this context, we will send surveys to our customers and ask them to give us their opinion on different aspects related to our products, services and overall performance.
If you choose to participate in the survey, your name and email address will be collected and stored at Hubspot’s metabase for the duration of five years.
Your participation in the survey is voluntary. By sending the completed survey to us, you consent to the processing of your personal data as described above. The legal basis is Art. 6 para. 1 lit. a GDPR.
3. Use of Bing Universal Event Tracking
If you have given us your consent, our website uses Bing Ads technology to collect and store data from which user profiles are created using pseudonyms. This is a service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. This service enables us to track the activities of users on our website when they arrive via Bing Ads. If you enter our website via such an ad, a cookie is placed on your computer. A Bing UET tag is integrated into our website. This is a code that is used in conjunction with the cookie to store some non-personal information about your use of the site. This includes, but is not limited to, the time spent on the website, which areas of the website have been accessed and the ad which was used to access the website. Information about your identity is not collected.
The legal basis is § 25 para. 1 TTDSG, Art. 6 para. 1 lit. a GDPR.
The information collected is transferred to Microsoft servers in the USA and stored there for a maximum of 180 days. You can also prevent the collection of data generated by the cookie and related to your use of the website and the processing of this data by deactivating the use of cookies. This may limit the functionality of the website under certain circumstances.
In addition, Microsoft may use cross-device tracking to track your usage patterns across multiple electronic devices, enabling Microsoft to display personalized advertisements on Microsoft Web sites and apps. You can disable this behavior at https://choice.microsoft.com/de-de/opt-out.
For more information about Bing’s analytics services, please visit the Bing Ads website (https://help.bingads.microsoft.com/#apex/3/de/53056/2).
For more information about Microsoft’s and Bing’s privacy practices, see Microsoft’s Privacy Policy (https://privacy.microsoft.com/de-de/privacystatement).
4. Use of LinkedIn Insight
On our website we use the “LinkedIn Insight Tag”, if you have given us your consent. It is a tracking technology of the platform LinkedIn, an offer of LinkedIn Ireland, Wilton Plaza, Wilton Place, Dublin 2 (Ireland). LinkedIn’s above technology allows you to view more relevant advertisements based on your interests. LinkedIn also provides us with aggregated and anonymous reports of advertising activity and information about how you interact with our website.
LinkedIn uses cookies to do this. The information collected through the cookie is used to compile the aforementioned anonymous statistics and reports and to play advertisements based on your interests. The legal basis for this is § 25 para. 1 TTDSG, Art. 6 para. 1 lit. a GDPR.
For more information about LinkedIn’s privacy practices, please visit LinkedIn:
https://www.linkedin.com/legal/privacy-policy
You may opt-out of LinkedIn’s analysis of your usage patterns and of the display of interest-based recommendations under the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
6. LuckyOrange
We use the LuckyOrange analysis service on our website to improve usability and customer experience, if you have given us your consent. Mouse clicks as well as mouse and scroll movements can be recorded. Keystrokes can also be recorded on this website. However, the recording is not personalized and therefore remains anonymous. LuckyOrange does not record this data on pages that do not use the LuckyOrange system. You can deactivate the LuckyOrange service at https://www.luckyorange.com/disable.php.
The legal basis is § 25 para. 1 TTDSG.
6. Hotjar
The Website also uses the Hotjar web analytics service (Hotjar Limited, Level 2, St Julian’s Business Centre, 3, Elia Zammit Street, St Julian’s STJ 1000, Malta). If you have given us your consent, cookies are used for web analysis and analysis of customer behavior. You can find further information at
https://www.hotjar.com/legal/policies/cookie-information
The legal basis is § 25 para. 1 TTDSG, Art. 6 para. 1 lit. a GDPR.
7. Gong.io
We use the services of Gong.io Ltd., 265 Cambridge Ave, Suite, 60717, Palo Alto, CA 94306, USA to record and analyze our sales calls, if you have given us your consent. Besides the record of the call (audio & video), the name, email address, time of the call, Internet Protocol (IP) address, and the web browser type used for this conversation will be processed and stored for 12 months. Cookies are used here, to help us attribute recordings and details that we collect to the relevant individuals.
For more information on how Gong.io works, please refer to the Gong.io Ltd. privacy policy: https://www.gong.io/privacy-policy/
The legal basis is § 25 para. 1 TTDSG, Art. 6 para. 1 lit. a GDPR.
§ 9 Social media
1. Use of social media plug-ins
(1) If you have given us your consent, we use the following social media plug-ins: Facebook, Google+, Twitter, Xing, T3N, LinkedIn, Flattr, Instagram. We use the so-called two-click solution. This means that if you visit our site, initially no personal data will be passed on to the providers of these plug-ins. You can recognize the provider of the plug-in by the marking on the box above its initial letter or the logo. We offer you the possibility to communicate directly with the provider of the plug-in via the button. Only if you click on the marked field and thereby activate it, the plug-in provider receives the information that you have accessed the corresponding website of our online offer. In addition, the data mentioned under section § 3 of this declaration will be transmitted. In the case of Facebook and Xing, the IP address is anonymized immediately after collection, according to the respective provider in Germany. By activating the plug-in, data is automatically transmitted to the respective plug-in provider and stored there (US providers in the USA). Since the plug-in provider collects data mainly via cookies, we recommend you to delete all existing cookies before clicking on the grayed-out box using your browser’s security settings.
(2) We have no influence on the data collected and data processing processes, nor are we aware of the full extent of data collection, the purposes of processing, the storage periods. We also have no information on the deletion of the data collected by the plug-in provider.
(3) The plug-in provider stores the data collected about you as user profiles and uses these for the purposes of advertising, market research and/or demand-oriented design of its website. Such evaluation is also made for users who are not logged in, to display customized advertising and to inform other users of the social network about activities on our website. You have a right to object to the creation of these user profiles. You must contact the respective plug-in provider to exercise this right. Through the plug-ins we offer you the possibility to interact with social networks and other users, so that we can improve our offer and make it more interesting for you as a user. The legal basis for the use of the plug-ins is § 25 para. 1 TTDSG, Art. 6 para. 1 lit. a GDPR.
(4) The data is passed on regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in with the plug-in provider, your data collected with us will be directly assigned to your existing account with the plug-in provider. When activating the activated button and link the page, for example, the plug-in provider also stores this information in your user account and communicates this to your contacts in public. We recommend that you log out regularly after using a social network, especially before activating the button, as this way you can avoid being assigned to your profile with the plug-in provider.
(5) For more information on the purpose and extent of the data collection and its processing by the plug-in provider, please refer to the privacy statements of these providers provided below. Here, you will also find further information on your rights and settings options for protecting your privacy.
(6) Addresses of the respective plug-in providers and URL with their data protection information:
(a) Facebook Inc, 1601 S California Ave, Palo Alto, California 94304, USA;
http://www.facebook.com/policy.php; further information on data collection:
http://www.facebook.com/help/18632566808508,
http://www.facebook.com/about/privacy/your-info-on-other#applications and
http://www.facebook.com/about/privacy/your-info#everyoneinfo.
(b) Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA;
https://www.google.com/policies/privacy/partners/?hl=de.
(c) Twitter, Inc., 1355 Market St, Suite 900, San Francisco, California 94103, USA.
(d) Xing AG, Gänsemarkt 43, 20354 Hamburg, DE; http://www.xing.com/privacy.
(e) T3N, yeebase media GmbH, Kriegerstr. 40, 30161 Hanover, Germany; https://t3n.de/store/page/datenschutz
(f) LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043, United States;
http://www.linkedin.com/legal/privacy-policy
(g) Instagram LLC., 1601 Willow Road, Menlo Park, CA 94025, USA:
https://help.instagram.com/155833707900388
2. Inclusion of YouTube videos
(1) We have included YouTube videos in our online offering, which are stored on http://www.YouTube.com and are directly playable from our website. These are all integrated and embedded in the “Extended Privacy Mode”, i.e. no data about you as user is transferred to YouTube if you do not play the videos.
(2) Only after the display of external content has been acknowledged you can play the videos and the data referred to in paragraph 2 will be transmitted. This takes place regardless of whether YouTube makes available a user account via which you are logged in or no user account exists. We have no influence on this data transfer. If you are logged in to Google, your information will be directly associated with your account. If you do not wish to be associated with your profile when using YouTube, you must first log out before clicking the button. YouTube stores your data as usage profiles and uses them for the purposes of advertising, market research and/or requirements-oriented design of its website. Such evaluation also takes place (even for users who are not logged in) for the purposes of providing customized advertising and to inform other social network users about activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right.
The legal basis is your consent according to Art. 6 para. 1 lit. a GDPR.
(3) For more information on the purpose and scope of data collection and processing by YouTube, please refer to the privacy policy. There you will also find further information on your corresponding rights and settings options for protecting your privacy: http://www.google.de/intl/de/policies/privacy.
3. Integration of Vimeo videos
Only after the display of external content has been acknowledged you can play the videos and the data referred to below will be transmitted. If you have given your consent, plugins of the video portal Vimeo of Vimeo, LLC, 555 West 18th Street, New York, NewYork 10011, USA are included on our website. Each time you visit a site that offers one or more Vimeo video clips, a direct connection is established between your browser and a Vimeo server in the USA. Information about your visit and your IP address is stored there. By interacting with the Vimeo plugins (e.g. clicking the start button), this information is also transmitted to Vimeo and stored there.
If you have a Vimeo account and do not want Vimeo to collect information about you through this website and link to your membership information stored on Vimeo, you must log out of Vimeo before visiting this website. You can find the Vimeo privacy policy with more detailed information on the collection and use of your data by Vimeo at http://vimeo.com/privacy.
Vimeo also calls up the tracker Google Analytics via an iFrame in which the video is called. This is Vimeo’s own tracking system to which we have no access. You can stop tracking by Google Analytics by using the opt-out tools that Google offers for some Internet browsers. You can also prevent the data generated by cookies about your use of the website (incl. your IP address) from being passed to Google, and the processing of these data by Google, by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en
§ 10 Online publicity
1. Use of Google Ads conversion tracking
(1) If you have given us your consent, we use the offer of Google Ads to draw attention to our attractive offers with the help of advertising materials (so-called Google Ads) on external websites. We can determine how successful the individual advertising measures are in relation to the data from the advertising campaigns. We are interested in showing you advertisements which are of interest to you, in making our website more interesting for you and achieving a fair calculation of advertising costs.
(2) This advertising media is delivered by Google via “AdServers”. For this purpose, we use ad server cookies, through which certain parameters for measuring success can be measured, such as the display of advertisements or of clicks by users. If you access our website via a Google ad, Google Ads will store a cookie on your device. These cookies usually expire after 30 days and are not used with the intention of personally identifying you. The unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (a mark that the user no longer wishes to be addressed) are usually stored as analysis values for this cookie.
(3) These cookies enable Google to recognize your Internet browser. If a user visits certain pages of an Ads customer’s website and the cookie stored on their computer has not expired, both Google and the customer are able to recognize that the user has clicked on the ad and has been redirected to this page. Each Ads customer is assigned a different cookie. Thus, cookies cannot be tracked using the website of an Ads advertiser. We do not process any personal data ourselves in the aforementioned advertising measures. We only receive statistical evaluations from Google. We are able to recognize which of the advertising measures are particularly effective on the basis of these evaluations. We do not receive any further data from the use of advertising material; in particular, we cannot identify users on the basis of this information.
(4) Due to the marketing tools used, your browser is automatically able to establish a direct connection to the Google server. We have no influence on the extent and the further use of the data which are collected by Google’s use of this tool, and we therefore inform you according to our knowledge: By integrating Ads conversion Google receives the information that you accessed the relevant part of our online presence or clicked on one of our advertisements. If you are registered with a Google service, Google may associate your visit to our website with your account. Even if you are not registered with Google or have not logged in, it is possible that the provider may obtain and store your IP address.
(5) You can prevent participation in this tracking process in various ways: a) by setting your browser software accordingly, in particular by suppressing third-party cookies, you will not receive any ads from third-party providers; b) by deactivating cookies for conversion tracking, by setting your browser to block cookies from the domain “www.googleadservices.com”, https://www.google.de/settings/ads, this setting being deleted when you delete your cookies; c) by deactivating the interest-based ads of providers that are part of the “About Ads” self-regulation campaign via the link http://www.aboutads.info/choices, this setting being deleted when you delete your cookies; d) by permanently deactivating Firefox, Internet Explorer or Google Chrome in your browsers under the link http://www.google.com/settings/ads/plugin. Please note that in this case you may not be able to use all functions of this offer in full.
(6) The legal basis for processing is your consent under § 25 Abs. 1 TTDGS, Art. 6 para. 1 a GDPR. Further information on data protection at Google can be found here:
http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html.
Alternatively, you can visit the website of the Network Advertising Initiative (NAI) at http://www.networkadvertising.org.
2. Remarketing
In addition to Ads Conversion, if you have given us your consent, we use the Google Remarketing application. This is a process we would like to use to contact you again. This application allows us to show you our advertisements after you have visited our website whilst you continue to use the Internet. This is done using cookies stored in your browser, which record and evaluate your usage behavior when Google visits various websites. This is how Google can determine your previous visit to our website. Google does not, according to its own statements, combine the data collected in the context of remarketing with your personal data, which may be stored by Google. According to Google, in particular, Google AdWords Remarketing uses pseudonymization. The legal basis is § 25 para. 1 lit. a TTDSG, Art. 6 para. 1 lit. a GDPR.
3. Doubleclick by Google
(1) If you have given us your consent, this website continues to use the online marketing tool DoubleClick by Google. DoubleClick uses cookies to serve ads relevant to users, improve campaign performance reports, or to prevent a user from seeing the same ads more than once. Google uses a cookie ID to track which ads are displayed in which browser and to prevent them from being displayed more than once. In addition, DoubleClick may use cookie IDs to collect conversions related to ad requests. This is the case, for example, when a user sees a DoubleClick ad and later visits the advertiser’s website with the same browser and buys something there. According to Google, DoubleClick cookies do not contain any personal information.
(2) Due to the marketing tools used, your browser is automatically able to establish a direct connection to the Google server. We have no influence on the extent and the further use of the data which are collected by Google’s use of this tool, and we therefore inform you according to our knowledge: By integrating Ads conversion Google receives the information that you accessed the relevant part of our online presence or clicked on one of our advertisements. If you are registered with a Google service, Google may associate your visit to our website with your account. Even if you are not registered with Google or have not logged in, it is possible that the provider may obtain and store your IP address.
(3) You can prevent participation in this tracking process in various ways: a) by setting your browser software accordingly, in particular by suppressing third-party cookies, you will not receive any ads from third-party providers; b) by deactivating cookies for conversion tracking, by setting your browser to block cookies from the domain “www.googleadservices.com”, https://www.google.de/settings/ads, this setting being
deleted if you delete your cookies; c) by deactivating the interest-based ads of providers that are part of the “About Ads” self-regulation campaign via the link http://www.aboutads.info/choices, this setting being deleted if you delete your cookies; d) by permanently deactivating Firefox, Internet Explorer or Google Chrome in your browsers under the link http://www.google.com/settings/ads/plugin. Please note
that in this case you may not be able to use all functions of this offer in full.
(4) The legal basis for processing is your consent under § 25 para. 1 TTDSG, Art. 6 para. 1 lit. a GDPR. For more information about DoubleClick by Google, please visit https://www.google.de/doubleclick and
http://support.google.com/adsense/answer/2839090, and Google’s privacy policy in general:
https://www.google.de/intl/en/policies/privacy. Alternatively, you can visit the website of the Network
Advertising Initiative (NAI) at http://www.networkadvertising.org.
4. Facebook custom audiences
(1) Furthermore, if you have given us your consent, the website uses the remarketing function “Custom Audiences” of Facebook Inc. (“Facebook”). This allows users of the website to see interest-based advertisements (“Facebook ads”) when visiting the social network Facebook or other websites that also use the process. We are interested in showing you advertisements that are of interest to you in order to make our website more interesting for you.
(2) Due to the marketing tools used, your browser is automatically able to establish a direct connection to the Google server. We have no influence on the extent and the further use of the data which are collected by Google’s use of this tool, and we therefore inform you according to our knowledge: By integrating Ads conversion Google receives the information that you accessed the relevant part of our online presence or clicked on one of our advertisements. If you are registered with a Google service, Google may associate your visit to our website with your account. Even if you are not registered with Google or have not logged in, it is possible that the provider may obtain and store your IP address.
(3) The “Facebook Custom Audiences” function can be deactivated [here and] for logged in users at https://www.facebook.com/settings/?tab=ads#_.
(4) The legal basis for processing is your consent under § 25 para. 1 lit. a TTDSG, Art. 6 para. 1 lit. a GDPR. For more information about how Facebook processes your information, visit https://www.facebook.com/about/privacy.
5. BING Ads
Our online services also use conversion tracking from Microsoft (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA). Microsoft Bing Ads will set a cookie on your computer if you came to our website via a Microsoft Bing ad. Microsoft Bing and we can thus recognize that someone has clicked on an ad, been redirected to our site, and reached a predetermined destination page (conversion page). We only know the total number of users who clicked on an ad and were redirected to the conversion page. No personal information about the identity of the user is disclosed. If you do not wish to participate in the tracking process, you can also refuse to accept cookies – for example, by changing your browser settings to disable automatic cookies. For more information about Microsoft Bing’s privacy policy and cookies, please visit the Microsoft website at
https://privacy.microsoft.com/de-de/privacystatement
6. Taboola
If you have given us your consent, this website uses the service of the Taboola advertising platform (Taboola Europe Limited, 1115 Broadway, 7th Floor, New York, New York 10010, USA) to increase user engagement. The use of cookies (see § 3 above) makes it possible to recommend content that matches your interests. The protocol and device-related data collected for this purpose do not allow any conclusions to be drawn about the person of the website visitor. The legal basis is § 25 para. 1 lit. a TTDSG, Art. 6 para. 1 lit. a GDPR.
Further information on data protection at Taboola can be found under
www.taboola.com/privacy-policy
§ 11 Data transfer to the U.S.
Please note that, when giving us your consent, personal data may be transferred to the United States of America, which the competent supervisory authorities currently deem to be a third country, which means a country without an adequate level of data protection.
Although we select our service providers carefully and try to make sure that they provide for safeguards regarding all personal data they receive, it cannot be ruled out that secret services and criminal prosecution authorities in the United States can access personal data and that the concerned data subjects do not have any possibility to seek legal remedies.
§ 12 Processing of (personal) data by the entity in charge of the online application process
1. General information
This data privacy statement, which refers exclusively to data collected as part of the online application process, is to inform you about how your personal data that is collected as part of the online application process is handled at our end.
2. The controller
The controller under data protection law is:
Haiilo GmbH
Gasstraße 6a
22761 Hamburg
Germany
Tel.: +49 / 40 609 4000-70
Commercial register entry number: HRB 113327
Registration Court: Amtsgericht Hamburg
Data Protection Officer contact: [email protected]
3. Personal data collected as part of the application process
Personal data means any information concerning the personal or material circumstances of an identified or identifiable individual. This includes information such as, for example, your name, address, telephone number and date of birth, but also data relating to your specific career etc. by reference to which a specific individual can be identified with reasonable effort. However, information which cannot be (in)directly associated with your real-life identity is not personal data.
4. Fundamentals and purposes of processing personal data collected from application documents and during the application process
If you apply to us electronically, i.e. via e-mail or using our online form, we will collect and process your personal data for the purpose of executing the application process and preparing contracts.
By submitting an application via our recruitment website, you express your interest in taking up work with us. In this context, you transmit personal data, which we will use and store exclusively for the purpose of your job search / application process.
In particular, the following data is collected during this process:
● name (first and last names)
● e-mail address
● phone number
● channel through which you found us
Furthermore, you can choose to upload expressive documents such as a cover letter, your CV and reference letters. These may contain additional personal data such as date of birth, address etc.
Only authorized HR staff and/or staff involved in the application process have access to your data.
The personal data is stored, as a rule, exclusively for the purpose of filling the vacancy for which you have applied.
Your data will be stored for a period of 90 days after the application process has been concluded. This is usually done to fulfill legal requirements and/or defending ourselves against any claims arising from legal provisions. After this period, we are obligated to delete or anonymize your data. In case of anonymization, the data will only be available to us in the form of so-called metadata, without any direct personal reference, for statistical analysis (for example, share of male and/or female applicants, number of applications per specified period of time etc.).
Furthermore, we reserve the right to store your data for 365 days after the application process has been concluded for the purpose of adding it to our Talent Pool in order to identify any other vacancies that may be of interest to you. This includes, for example, applications for apprenticeships or internships. By accepting via a separate box, you consent to the storage of your data as well as its inclusion in our Talent Pool.
Should you be offered and accept a position with us during the application process, we will store the personal data collected as part of the application process for at least the duration of your employment.
5. Disclosure of data to third parties
Data transmitted as part of your application will be transferred using TLS encryption and stored in a database. This database is operated by Personio GmbH, which offers a human resource and applicant management software solution (https://www.personio.com/legal-notice/). In this context, Personio is our processor under article 28 of the GDPR. In this case, the processing is based on an agreement for the processing of orders between us as the controller and Personio.
6. Rights of data subjects
If we as the controller process personal data, you as the data subject have certain rights under Chapter III of the EU General Data Protection Regulation (GDPR), depending on the legal basis and the purpose of the processing, in particular the right of access (article 15 of the GDPR) and the rights to rectification (article 16 of the GDPR), erasure (article 17 of the GDPR), restriction of processing (article 18 of the GDPR), and data portability (article 20 of the GDPR), as well as the right to object (article 21 of the GDPR). If the personal data is processed with your consent, you have the right to withdraw this consent under article 7 III of the GDPR.
To assert your rights as a data subject in relation to the data processed during this online application process, please refer to our Data Protection Officer (see item 2).
7. Concluding provisions
We reserve the right to adjust this data privacy statement at any point in time to ensure that it is in line with the current legal requirements at all times, or in order to accommodate changes in the application process or other processes. In this case, the new data privacy statement applies to any later visit of this recruitment website or any later job application.
In addition to this data privacy statement, please the Personio GmbH general data privacy https://www.personio.com/privacy-policy/.
Version: August 15, 2022