The protection of your personal data is the declared goal of Build38 GmbH (hereinafter referred to as Build38). Data protection is of a particularly high priority for Build38 and is carried out in accordance with the relevant legal provisions.
With this declaration, we would like to inform you about the processing of your personal data at Build38 in order to fulfil our information obligations under Articles 12 et seq. of the General Data Protection Regulation (GDPR).

1) Responsible body

The controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the Member States as well as other data protection regulations is:

Managing Director: Dr. Christian Schläger.

Contact details of the data protection officer. You can contact our data protection officer as follows:

2) General information on data processing

1. Scope of the processing of personal data

We process the personal data of our users only insofar as this is necessary to provide a functional website as well as our content and services. The processing of the personal data of our users takes place regularly only with the consent of the user. An exception applies in cases where prior consent cannot be obtained for factual reasons and the processing of the data is required by law.

2. Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for the processing of personal data, Art. 6 para. 1 sentence 1 lit. a GDPR serves as the legal basis.

For the processing of personal data necessary for the performance of a contract to which the data subject is a party, Art. 6 para. 1 sentence 1 lit. b GDPR serves as the legal basis. This also applies to processing operations that are necessary to carry out pre-contractual measures.

Insofar as the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 para. 1 sentence 1 lit. c GDPR serves as the legal basis. In the event that the vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 sentence 1 lit. d GDPR serves as the legal basis. If the processing is to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 para. 1 sentence 1 lit. f GDPR serves as the legal basis for the processing.

3. Data deletion and storage duration

The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may also take place if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the person responsible is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.

3) Your rights

You have the following rights vis-à-vis us with regard to the data concerning you:

  • Right to information about your stored personal data, their origin and possible recipients and the purpose of data processing (Art. 15 GDPR),
  • Right to rectification of incorrect data or deletion of processed data (Art. 16 and 17 GDPR), provided that there are no statutory retention periods,
  • Right to restriction of processing (Art. 18 GDPR),
  • Right to withdraw your consent. We will then no longer continue the processing based on this consent in the future. The legality of the processing carried out on the basis of the consent until the revocation is not affected by the revocation. (Art. 7 GDPR),
  • Right to data portability (Art. 20 GDPR),
  • Right to object within the framework of legal requirements. If the data processing by us is carried out on the basis of legitimate interests, you have the right to object to the processing of your data at any time for reasons arising from your particular situation. You can object to the processing of your data for direct marketing purposes at any time, even without giving reasons (Art. 21 GDPR).

You have the right to revoke your consent to us at any time (Art. 7 para. 3 GDPR). As a result, we will no longer continue the data processing based on this consent in the future. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.

Insofar as we process your data on the basis of legitimate interests, you have the right to object to the processing of your data at any time for reasons arising from your particular situation. If it concerns an objection to data processing for direct marketing purposes, you have a general right of objection, which will also be implemented by us without giving reasons.

If you would like to exercise your right of revocation or objection, an informal message to the above-mentioned contact details is sufficient. To exercise your rights, please send us an informal message (see responsible body).

4) Right to lodge a complaint

Data protection and data security are important to us. We are always interested in working with you in a spirit of trust and will continuously take your feedback into account in order to improve our service and adapt it to your needs. If you have any questions about this privacy policy or procedures on this website, or if you would like to share your suggestions with us, please contact us using the contact details listed above.

We would like to point out that, pursuant to Article 77 GDPR, you have the right to complain to the supervisory authority if you believe that your personal data is not lawfully processed by us.
The supervisory authority responsible for Build38 GmbH is the State Office for Data Protection Supervision in Bavaria (www.lda.bayern.de ).

5) Provision of the website (hosting) and creation of error logs

1. Description and scope of data processing

This website (www.build38.com) is hosted by an external service provider (hoster). The personal data collected on this website may be stored on the servers of the host. This includes but is not limited to, IP addresses, contact requests, metadata and messages, contract information, contact information, names, website views and other data generated through a website.

For the purpose of error identification and correction, so-called error logs are created. Our hoster will only process your data to the extent necessary to fulfil its performance obligations and to follow our instructions with regard to this data. Our hoster will only process your data to the extent necessary to fulfil its performance obligations and to follow our instructions with regard to this data.

We use the following hoster: Cloudflare Inc., 665 3rd St. 200, San Francisco, CA 94107, hereinafter referred to as Cloudflare. Further information on the processing of data by Cloudflare can be found here: https://www.cloudflare.com/de-de/privacypolicy/

Part of the order processing contract with CloudFlare is the so-called EU standard data protection clauses (Art. 46 para. 2 sentence 1 lit. c GDPR). These are to be classified as an appropriate guarantee for the protection of the transfer and processing of personal data outside the EU.

2. Purpose of data processing

The website is hosted by Cloudflare and uses the features of Cloudflare. These serve to protect the website and its optimization. For this purpose, page views are routed through Cloudflare servers.

The data processing of this connection data is strictly necessary to enable the visit of the website or the platform, to ensure the permanent integrity, confidentiality and availability of our systems, to maintain our systems administratively in general and for support, billing and fraud prevention purposes. For the purposes described above, the connection data is temporarily stored in internal log files and limited to the bare minimum.

3. Legal basis for data processing

The Hoster is used for the purpose of fulfilling a contract with our potential and existing customers (Art. 6(1)(b) GDPR) and in the interest of a secure, fast and efficient provision of our online services by a professional provider (Art. 6(1)(f) GDPR).

4. Duration of storage, the possibility of objection and removal

For the purposes described above, the connection data is temporarily stored in internal log files and limited to the bare minimum. Exceptionally, individual log files and IP addresses are stored longer in order to prevent further attacks from this IP address in the event of cyber-attacks and/or to take action against the attackers by way of criminal prosecution.

There is no right of objection.

6) Cookies

1. Description and scope of data processing

In some cases, so-called cookies are used on the site. These are small text files that are stored on the device you use to access the website. We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change. The following data is stored and transmitted in the cookies:

  • Language
  • Log-in information
  • Cookie settings
  • Keywords
  • Other information necessary for the provision of the website

The user data collected in this way is pseudonymised by technical precautions. The data is not stored together with other personal data of the users. We also use cookies on our website that enable an analysis of the surfing behaviour of users. The following data is stored and transmitted in the analysis cookies:

  • User behaviour on our website
  • Other information used for marketing purposes

Further information on our use of analysis cookies can be found in this data protection declaration under the chapter “Plugins and tools used”.

In summary, different categories of cookies are used — essential cookies, functional cookies, cookies for the provision of external media and marketing cookies.

  • Essential cookies are necessary to ensure the core functionality of the website.
  • Functional cookies are cookies that are used to record user behaviour on our website so that the functionality of the website can be improved.
  • Marketing cookies are cookies that we use to serve interest-based advertising.
  • External media: Any cookies used here serve the purpose of displaying external media (such as videos or maps).

2. Purpose of data processing

The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For this, it is necessary that the browser is recognized even after a page change.

The user data collected by technically necessary cookies are not used to create user profiles.

Analysis cookies are used for the purpose of improving the quality of our website and its content. Through the analysis cookies, we learn how the website is used and can thus constantly optimize our offer.

3. Legal basis for data processing

The legal basis for the use of essential cookies is Art. 6 para. 1 lit. f GDPR — a legitimate interest. Our legitimate interest in the use of essential cookies is to be able to provide a functioning website.

The legal basis for the other cookies is Art. 6 para. 1 lit. a GDPR — your consent. No non-essential cookies are set without your consent. You can revoke your consent at any time with effect for the future. You can revoke your consent via the consent tool.

4. Duration of storage, the possibility of objection, and removal

Cookies are stored on the user’s computer and transmitted to our site. Therefore, as a user, you also have full control over the use of cookies.

By changing the settings in your Internet browser, you can disable or restrict the transmission of cookies, for example by using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript (https://noscript.net) or Ghostery (https://www.ghostery.com) in your browser.

Cookies that have already been stored can be deleted at any time. This can also be done automatically. If cookies are deactivated from our website, it may no longer be possible to use all functions of the website to their full extent.

7) Newsletter

1. Description and scope of data processing

If you subscribe to our newsletter, we store your e-mail address and use it to send the newsletter. Your e-mail address will not be published or passed on to third parties.

Data collected: e-mail address, first name, surname, title, job title, country.

In connection with the data processing for the dispatch of newsletters, the data is passed on to the service provider:

HubSpot Ireland, Ltd., Dublin (European HQ) Address 1 Sir John Rogerson’s Quay, Dublin 2; WEBSITE: https://www.hubspot.com/.

Further information on the processing of data by HubSpot can be found here: https://legal.hubspot.com/privacy-policy 

Part of the order processing contract with HubSpot is so-called EU standard data protection clauses (Art. 46 para. 2 sentence 1 lit. c GDPR). These are to be classified as an appropriate guarantee for the protection of the transfer and processing of personal data outside the EU.

2. Purpose of data processing

The collection of the user’s e-mail address serves to deliver the newsletter.

3. Legal basis for data processing

The legal basis for the processing of the data after registration for the newsletter by the user is Art. 6 para. 1 sentence 1 lit. a GDPR if the user has given his consent.

4. Duration of storage

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. The user’s e-mail address is therefore stored as long as the subscription to the newsletter is active.

5. Possibility of revocation and removal

The subscription to the newsletter can be terminated by the user concerned at any time. For this purpose, there is a corresponding link in each newsletter.

8) Contact

1. Scope of the processing of personal data

You have various ways to contact us, for example by e-mail, telephone, or via the contact form on our website. In this context, we process the data that you provide when contacting us (e.g. e-mail address, mobile phone number, address) exclusively for the purpose of communicating with you by means of a CRM. In connection with data processing by CRM, the data is passed on to the service provider:

HubSpot Inc., 2nd Floor, 25 First Street, Cambridge, MA 02141, USA (hereinafter: HubSpot). For more information on HubSpot CRM’s data processing, please visit https://legal.hubspot.com/de/privacy-policy .

According to HubSpot, your data is hosted within the European Union.

2. Purpose of data processing

HubSpot CRM allows us, among other things, to manage existing and potential customers as well as customer contacts and to organize sales and communication processes. The use of the CRM system also enables us to analyze and optimize our customer-related processes. Customer data is stored on HubSpot’s CRM’s servers.

3. Legal basis for data processing

The legal basis for this processing is Art. 6 para. 1 lit. b GDPR, insofar as your details are required to answer your request or to initiate or execute a contract, and otherwise Art. 6 para. 1 lit. f GDPR due to our legitimate interest in answering inquiries to us.

4. Duration of storage

The data sent by you to us via contact requests will remain with us until you request deletion, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected.

9) Application by e-mail and application form

1. Scope of the processing of personal data

There is an application form on our website, which can be used for electronic applications. To provide the application form, we use the recruiting page of the personnel and applicant management software Personio of the service provider Personio SE & Co. KG, Seidlstraße 3, 80335 Munich, Germany.

If an applicant makes use of this option, the data entered in the input mask will be transmitted to Personio and stored. Further information can be found in Personio’s privacy policy: https://www.personio.de/datenschutzerklaerung/

If an applicant makes use of this option, the data entered in the input mask will be transmitted to us and stored. These data are:

  • Forename
  • Name
  • Sex
  • Phone/mobile number
  • E-mail address
  • Availability
  • Link to LinkedIn profile
  • Curriculum vitae
  • Other documents: certificates, cover letter, etc.
  • Other personal data that is voluntarily communicated in the application process (e.g. salary expectations)

For the processing of your data, a confirmation of acknowledgement of this data protection declaration will be obtained as part of the sending process. Alternatively, you can also send us your application by e-mail. In this case, we collect your e-mail address and the data provided by you in the e-mail.

After sending your application, you will receive a confirmation of receipt of your application documents by e-mail from us. The data will be used exclusively for the processing of your application.

2. Purpose of data processing

The processing of personal data from the application form serves us solely to process your application. In the case of contact by e-mail, this also constitutes the necessary legitimate interest in the processing of the data.

3. Legal basis for data processing

The legal basis for the processing of your data is the initiation of a contract at the request of the data subject, Art. 6 para. 1 sentence 1 lit. b Alt. 1 DSGVO and § 26 para. 1 sentence 1 BDSG.

4. Duration of storage

After completion of the application process, the data will be stored for up to six months. Your data will be deleted at the latest after six months. In the event of a legal obligation, the data will be stored within the framework of the applicable regulations.

5. Possibility of objection and removal

The applicant has the possibility to object to the processing of personal data at any time (Art. 7 para. 3 GDPR). If the applicant contacts us (see above), he can object to the storage of his personal data at any time. In such a case, the application can no longer be considered. All personal data stored in the course of electronic applications will be deleted in this case.

10) Online presence in social networks

1. Scope of the processing of personal data

We maintain an online presence in social networks in order to communicate with customers and interested parties and to inform them about our products and services. The data of the users are usually processed by the respective social networks for market research and advertising purposes. In this way, user profiles can be created based on the interests of the users. For this purpose, cookies and other identifiers are stored on the computers of the data subjects. On the basis of these usage profiles, advertisements are then placed within social networks but also on third-party websites.

2. Purpose of data processing

As part of the operation of our online presence, we may be able to access information such as statistics on the use of our online presence provided by social networks. These statistics are aggregated and may include, in particular, demographic information (e.g., age, gender, region, country) as well as data on the interaction with our online properties (e.g., likes, subscription, sharing, viewing images and videos) and the posts and content distributed through them. These can also provide information about the interests of users and which content and topics are particularly relevant to them. This information may also be used by us to adapt the design and our activities and content on the online presence and to optimize them for our audience. For details and links to the data of the social networks to which we as operators of the online presences can access, please refer to the list below. The collection and use of these statistics is usually a shared responsibility. Where applicable, the relevant contract is listed below.

3. Legal basis for data processing

The legal basis for data processing is Art. 6 para. 1 lit. f GDPR, based on our legitimate interest in effective information and communication with users, or Art. 6 para. 1 lit. b GDPR in order to stay in contact with our customers and to inform them as well as to carry out pre-contractual measures with interested parties.

4. Duration of storage

If you have an account with the social network, we may be able to see your publicly available information and media when we visit your profile. In addition, the social network may allow us to contact you. This can be done, for example, via direct messages or posted posts. The content communication via the social network and the processing of the content data is subject to the responsibility of the social network as a messenger and platform service.

The legal basis of the data processing carried out by the social networks on their own responsibility can be found in the data protection information of the respective social network. Under the following links, you will also find further information on the respective data processing and the possibilities of objection.

We would like to point out that data protection requests can be made most efficiently to the respective provider of the social network, as only these providers have access to the data and can directly take appropriate measures.  You can also contact us with your request. In this case, we will process your request and forward it to the provider of the social network.

Below is a list of information about the social networks on which we operate online presences:

YouTube (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland)

Twitter (Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07 Ireland)

LinkedIn (LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland)

Xing (New Work SE, Am Strandkai 1, 20457 Hamburg) Privacy Policy / Opt-Out: https://privacy.xing.com/de/datenschutzerklaerung

11) Use of plug-ins and Third-party tools

By using our plugins and third-party tools, some of your personal data will be transferred to the USA or other third countries outside the EU. In order to ensure appropriate guarantees for the protection of the transfer and processing of personal data outside the EU, the transmission of data to and the processing of data by our plugin operators is based on suitable guarantees in accordance with Art. 46 et seq. GDPR, in particular through the conclusion of so-called standard data protection clauses pursuant to Art. 46 para. 2 lit. c GDPR. We use plugins for various purposes.
The plugins used are listed below:

A) Use of Google Analytics incl. Google Analytics Remarketing.

1. Scope of processing of personal data

We use Google Analytics, a web analysis service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: Google).

Google Analytics examines, among other things, the origin of visitors, their length of stay on individual pages and the use of search engines and thus allows a better success control of advertising campaigns. Google places a cookie on your computer. As a result, personal data can be stored and evaluated, including:

  • the user’s activity (in particular which pages have been visited and which elements have been clicked on),
  • Device and browser information (in particular the IP address and operating system),
  • data about the advertisements displayed (in particular which advertisements were displayed and whether the user clicked on them) and
  • Data from advertising partners (in particular pseudonymised user IDs).

We use Google Analytics to evaluate your use of our online presence, to compile reports on your activities and to use other Google services related to the use of our online presence and the Internet.

In addition, we use Google Analytics Remarketing, whereby the data collected and evaluated about you is used to display targeted advertising to you. In order to use this service from Google, we also combine the data with our Google Ads or Display & Video 360 accounts. Google Ads and Display & Video 360 are also provided by Google.

We have requested the anonymization of IP addresses, whereby Google shortens your IP address as soon as technically possible. Only in exceptional cases will your full IP address be transmitted to a Google server in the USA and shortened there.

Google transfers your personal data to Google affiliates and other processors. Further information on the processing of data by Google can be found here: https://policies.google.com/privacy?gl=DE&hl=de

2. Purpose of data processing

The use of Google Analytics, including Google Analytics Remarketing, serves us to evaluate the use of our online presence and the targeted display of advertising to persons who have already expressed an initial interest through their site visit.

3. Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is generally the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, e.g. for tax and accounting purposes. Advertising data in server logs is anonymized by Google deleting parts of the IP address and cookie information after 9 and 18 months, respectively.

5. Revocation, the possibility of objection, and removal

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.

You can prevent the collection and processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript (https://noscript.net) or Ghostery (https://www.ghostery.com) in your browser. Further information on objection and removal options vis-à-vis Google can be found at: https://policies.google.com/privacy?gl=DE&hl=de

You can also prevent the collection of the data generated by the cookie and related to your use of the online presence (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=de

With the following link you can deactivate the use of your personal data by Google: https://adssettings.google.de

B) Use of Hotjar

1. Scope of the processing of personal data

We use the web analysis service Hotjar of Hotjar Ltd., Level 2, St Julian’s Business Centre, 3, Elia Zammit Street, St Julian’s STJ 1000, Malta (hereinafter: Hotjar). Hotjar uses, among other things, cookies, i.e. small text files that are stored locally in the cache of your web browser on your device and that enable an analysis of your use of our online presence. As a result, personal data can be stored and evaluated, in particular the user’s activity (in particular which pages have been visited and which elements have been clicked on), device and browser information (in particular the IP address and the operating system) and a tracking code (pseudonymised user ID). The information collected in this way is transmitted by Hotjar to a server in Ireland and stored there anonymously.

Further information on the processing of data by Hotjar can be found here:

https://www.hotjar.com/legal/policies/privacy

2. Purpose of data processing

The use of the Hotjar plug-in serves to better understand the needs of our users and to optimize the offer on this online presence.

3. Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is generally the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law.

5. Possibility of revocation, objection, and removal

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.

You can prevent the collection and processing of your personal data by Hotjar by preventing the storage of third-party cookies on your computer, using the “Do Not Track” function of a supporting browser, deactivating the execution of script code in your browser or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

With the following link, you can deactivate the use of your personal data by Hotjar: https://www.hotjar.com/legal/compliance/opt-out

Further information on objection and removal options vis-à-vis Hotjar can be found at: https://www.hotjar.com/legal/policies/privacy

C) Using HubSpot

1. Scope of the processing of personal data

We use functions of the CMS Hubspot of HubSpot Inc., 2nd Floor, 25 First Street, Cambridge, MA 02141, USA (hereinafter: HubSpot). This is an integrated software solution with which we cover various aspects of our online marketing. These include: email marketing (newsletters and automated mailings, e.g. to provide downloads), social media publishing & reporting, reporting (especially traffic sources, accesses, etc. …), contact management (especially user segmentation & CRM), landing pages and contact forms. HubSpot places a cookie on your computer. As a result, personal data can be stored and evaluated, in particular the activity of the user (in particular which pages have been visited and which elements have been clicked on), device and browser information (in particular the IP address and the operating system), data about the advertisements displayed (in particular which advertisements were displayed and whether the user clicked on them) and also data from advertising partners (in particular pseudonymised  User IDs).

Other recipients of the data processed by Hubspot are in particular:

  • Amazon Web Services, Inc.
  • Google, Inc.
  • Cloudflare, Inc.
  • Twilio, Inc.
  • Message Systems, Inc.
  • SendGrid, Inc.
  • Snowflake, Inc.
  • HubSpot, Inc.
  • HubSpot Ireland, Ltd.
  • HubSpot Germany GmbH
  • HubSpot Australia Pty. Ltd.
  • HubSpot Asia Pte. Ltd.
  • HubSpot Japan KK
  • HubSpot Latin America, S.A.S
  • HubSpot Sweden

Further information on the processing of data by HubSpot can be found here:

https://legal.hubspot.com/de/privacy-policy

In the course of contact management, company data transmitted by Albacross (e.g. website domain, company address, company size) is compared with the generated HubSpot data. For more information, see Section XVIII.

2. Purpose of data processing

The use of the HubSpot plug-in serves us to optimize our website and marketing activities.

3. Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is generally the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, e.g. for tax and accounting purposes.

5. Possibility of revocation, objection, and removal

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.

You can prevent HubSpot from collecting and processing your personal data by preventing third-party cookies from being stored on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser, or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

For more information about objection and removal options vis-à-vis HubSpot, please visit: https://legal.hubspot.com/de/privacy-policy 

D) Use of LinkedIn Insight Tag

1. Scope of the processing of personal data

We use functionalities of the marketing plugin LinkedIn Insight Tag of LinkedIn Corporation, 1000 W. Maude Ave., 94085, Sunnyvale, California, United States (hereinafter: LinkedIn).

The LinkedIn Insight Tag helps us measure interactions on our website, such as filling out a form or downloading content after viewing or clicking on an ad.

The Insight Tag works by creating a cookie in visitors’ web browsers when our website is visited. These “deadline party” cookies help us determine which members see our ads to in order to improve campaign results and provide detailed campaign reporting.

A first-party cookie is a small piece of code that a web browser stores in a file on the viewer’s computer to remember their activity on a website, such as when a viewer has visited a page or downloaded an article from a website. A first-party cookie originates from the domain (or website) that the member is browsing. The consent to use this feature is collected by means of our cookie banner.

Further information on the cookies used can be found here: https://www.linkedin.com/legal/cookie-policy

In particular, the following personal data is processed by LinkedIn:

  • URL
  • Referrer URL
  • IP address truncated or hashed
  • Device and browser properties (user agent) and timestamps

LinkedIn does not share any personal data with us, but only provides aggregated reports about the audience and advertisements. LinkedIn also offers a remarketing function that allows us to show you targeted personalized advertising outside our website without knowing your identity.

Data may be transmitted to LinkedIn servers in the USA.

Further information on the processing of data by LinkedIn can be found here: https://www.linkedin.com/legal/privacy-policy?_l=de_DE

2. Purpose of data processing

The use of LinkedIn Insight Tag serves us to collect information about visitors to our website.

3. Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is generally the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of storage

The direct identifiers of the members are removed within seven days in order to pseudonymize the data. This remaining pseudonymised data will then be deleted within 180 days.

5. Possibility of revocation, objection, and removal

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.

You can prevent the collection and processing of your personal data by LinkedIn by preventing the storage of third-party cookies on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

Further information on objection and removal options vis-à-vis LinkedIn can be found at: https://www.linkedin.com/legal/privacy-policy?_l=de_DE

E) Use of Google Tag Manager

1. Scope of the processing of personal data

We use the Google Tag Manager of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: Google). With Google Tag Manager, tags of Google and third-party services can be managed and bundled on an online presence. Tags are small code elements on an online presence that are used, among other things, to measure visitor numbers and behavior, to record the impact of online advertising and social channels, to use remarketing and target group targeting, and to test and optimize online presences. When a user visits the online presence, the current tag configuration is sent to the user’s browser. It contains instructions on which tags to fire. Google Tag Manager triggers other tags, which in turn may collect data. Information on this can be found in the passages on the use of the corresponding services in this data protection declaration. Google Tag Manager does not access this data.

Further information about Google Tag Manager can be found  at  https://www.google.com/intl/de/tagmanager/faq.html and in Google’s privacy policy: https://policies.google.com/privacy?hl=de

2. Purpose of data processing

The purpose of the processing of personal data is the aggregated and clear management and efficient integration of third-party services.

3. Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is generally the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law. Advertising data in server logs is anonymized by Google deleting parts of the IP address and cookie information after 9 and 18 months, respectively.

5. Possibility of revocation, objection, and removal

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.

You can prevent the collection and processing of your personal data by Google by preventing third-party cookies from being stored on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

You can also prevent the collection of the data generated by the cookie and related to your use of the online presence (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plug-in available under the following link:
https://tools.google.com/dlpage/gaoptout?hl=de

With the following link you can deactivate the use of your personal data by Google: https://adssettings.google.de

Further information on objection and removal options vis-à-vis Google can be found at: https://policies.google.com/privacy?gl=DE&hl=de 

F) Use of Twitter Ads

1. Scope of the processing of personal data

We use functionalities of the conversion tracking tool Twitter Ads of Twitter Inc., 1355 Market Street, Suite 900 San Francisco, 94103 California, USA (hereinafter: Twitter). Twitter stores a cookie on your computer if you have reached our online presence via a Twitter Ads ad. As a result, personal data can be stored and evaluated, in particular the user’s activity (in particular which pages have been visited and which elements have been clicked on), device and browser information (in particular the IP address and the operating system), data about the advertisements displayed (in particular which advertisements were displayed and whether the user clicked on them) and also data from advertising partners. We only learn the total number of users who clicked on a Twitter ad and were then redirected to the conversion page.

Further information on the processing of data by Twitter can be found here:

https://twitter.com/de/privacy

2. Purpose of data processing

We use functionalities of Twitter Ads for marketing and optimization purposes, in particular for the analysis of the use of our website and the improvement of the functions and services offered.

3. Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is generally the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, e.g. for tax and accounting purposes.

5. Possibility of revocation, objection, and removal

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.

You can prevent the collection and processing of your personal data by Twitter by preventing the storage of third-party cookies on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

With the following link, you can deactivate the use of your personal data by Twitter: https://twitter.com/personalization

Further information on objection and removal options vis-à-vis Twitter can be found at: https://twitter.com/de/privacy 

G) Use of Ninja Forms

1. Scope of the processing of personal data

Users contacting us through this website are required to provide explicit consent to our recording and storage of any such personal details requested. Your personal information is kept private and stored securely until a time it is no longer required or has no use. The personal details we may collect through our website contact forms are: Name, Email and telephone number. All personal information submitted through our contact forms is also sent and stored in email messages within our business domain.

The information we receive through these contact forms submissions is to fulfill a specific request that the person of interest is aware of. We use a third-party provider, Ninja Forms (Ninja Forms HQ, PO Box 406, Cleveland, Tennessee, 37364, United States), to process and store our contact form submissions. For further information, please visit https://ninjaforms.com/gdpr-compliance-wordpress-forms/.

2. Purpose of data processing

The collection of the users’ contact data serves to deliver the requested information or to get in touch with the user.

3. Legal basis for data processing

The legal basis for data processing is Art. 6 para. 1 lit. f GDPR, based on our legitimate interest in effective information and communication with users, or Art. 6 para. 1 lit. b GDPR in order to stay in contact with our customers and to inform them as well as to carry out pre-contractual measures with interested parties.

4. Duration of storage

The data sent by you to us via contact requests will remain with us until you request deletion, revoke your consent to storage or the purpose for data storage no longer applies. Mandatory statutory provisions – in particular statutory retention periods – remain unaffected. Name, Email, and telephone number.

We use a third-party provider, Ninja Forms, to process and store our contact form submissions. For further information, please visit Ninja Forms’ privacy policy.

H) Use of Moove

1. Scope of processing of personal data

We use the GDPR Cookie Compliance Plugin for WordPress of Moove Agency Ltd, 35 Kingsland Road, London, E2 8AA, United Kingdom (hereinafter: Moove). Moove enables us to obtain, manage and document users’ consent to data processing in a legally compliant manner. For this purpose, Moove places cookies on the user’s device.

The “Strictly Necessary Cookies”, sometimes also called Essential Cookies, are cookies that are necessary for the proper functioning of your website. For example, we use “Strictly Necessary Cookies” to store information about which cookies the user has consented to. We do not store any sensitive or personal data there, the cookie file contains only one of the following strings:

  • Deactivation status: Strict: 1, Third party: 0, Advanced: 0
  • Enabled State: Strict: 1, Third Party: 1, Advanced: 1

Further information on the processing of data by Moove can be found here:
https://www.mooveagency.com/privacy-policy/

2. Purpose of data processing

The processing of personal data serves to comply with the legal obligations of the GDPR and the BDSG.

3. Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest lies in the purposes mentioned under.

4. Duration of storage

Your personal information will be stored for as long as necessary to fulfill the purposes described in this Privacy Policy, consent to storage has been withdrawn or as required by law.

5. Possibility of objection and removal

You can prevent Moove from collecting and processing your personal data by preventing third-party cookies from being stored on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser or using a script blocker such as NoScript (https://noscript.net/) or Ghostery ( https://www.ghostery.com) in your browser. Further information on objection and removal options vis-à-vis Moove can be found at: https://www.mooveagency.com/privacy-policy/

Changes to this Privacy Policy

From time to time, we update this Privacy Policy, for example, if we adapt our website, our app, or our services or if legal or regulatory requirements change.

Version: March 2023

Imprint  | Privacy Policy ©2024 Build38 Mobile Security