Introduction
Thank you for your interest in our website. The protection of your personal data is important to us. Below you will find information about how we handle your data that is collected through your use of our website. Your data will be processed in accordance with the legal data protection regulations.
Controller within the meaning of data protection law
Link11 GmbH
Lindleystraße 12
60314 Frankfurt am Main
+49(0)69264929799
Data Protection Officer
Hopp + Flaig PartG mbB / www.hopp-flaig.de
Data Protection Officer
Neue Weinsteige 69/71
70180 Stuttgart
Definitions
Our privacy policy should be simple and understandable for everyone. For this reason, our privacy policy generally uses the official terms of the General Data Protection Regulation (GDPR). The official definitions are explained in Art. 4 GDPR.
Web Hosting
This website is hosted by an external service provider (hoster). This website is hosted in Frankfurt am Main. Personal data collected on this website is stored on the hoster’s servers. This may include, but is not limited to, IP addresses, contact requests, meta and communication data, web page accesses and other data generated by a website.
We have concluded a Data Processing Agreement with the provider in accordance with the requirements of Art. 28 GDPR, in which we commit him to protect the data of our customers and not to pass them on to third parties.
Server- Logfiles
Once you visit our website, it is technically necessary that data is transmitted to our web server via your internet browser. The following data is recorded during an active connection for communication between your internet browser and our web server
- Date and time of the request
- Name of the requested file
- Page from which the file was requested
- Access status
- Web browser used and operating system used
- (Full) IP address of the requesting computer
- Transmitted amount of data
We collect the listed data in order to guarantee a frictionless connection establishment and to enable a comfortable use of our website by the users. The log file also serves for evaluating system security and stability as well as administrative purposes. The legal basis for the temporary storage of data or log files is Art. 6 para. 1 lit. f GDPR.
For reasons of technical security, in particular to prevent attempts to attack our web server, we may temporarily store this data. It is not possible for us to draw conclusions about individual persons on the basis of this data. This data is not evaluated in anonymous form except for statistical purposes. This data is not combined with data from other data sources.
Cookies
Our website uses so-called “cookies”. Cookies are small text files that are either temporarily stored on your end device for the duration of a session (session cookies) or permanently (permanent cookies). Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your terminal device until you delete them yourself or an automatic solution is provided by your web browser.
Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g. the shopping basket function or language settings). Other cookies are used to evaluate user behavior or display advertising.
Technically necessary cookies are stored on the basis of Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in the storage of cookies for the technically error-free and optimised presentation of our services. Other cookies are only stored with your consent on the basis of Art. 6 para. 1 lit. a GDPR. This consent can be withdrawn at any time for the future. The legal basis may also result from Art. 6 para. 1 lit. b GDPR if the processing is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures taken at the request of the data subject.
Insofar as cookies are used for analysis purposes, we will inform you of this separately within the framework of this privacy policy and obtain your consent.
You can set your browser to
- be informed about the setting of cookies,
- only allow cookies in individual cases,
- exclude the acceptance of cookies for certain cases or generally,
- activate the automatic deletion of cookies when the browser is closed.
The cookie settings can be managed under the following links for each browser:
You can also manage cookies of many companies and functions used for advertising individually. To do this, use the appropriate user tools, available at https://www.aboutads.info/choices/ or http://www.youronlinechoices.com/uk/your-ad-choices.
Most browsers also offer a so-called “do-not-track function”. When this feature is enabled, the browser tells ad networks, websites, and applications that you do not want to be “tracked” for behavioral advertising and the like.
For information and instructions on how to edit this feature, please refer to the links below, depending on your browser provider:
Additionally, you can prevent the loading of so-called scripts by default. “NoScript” allows the execution of JavaScripts, Java and other plug-ins only at trusted domains of your choice. Information and instructions on how to edit this function can be obtained from the provider of your browser (e.g. for Mozilla Firefox at: https://addons.mozilla.org/de/firefox/addon/noscript/).
Please note that if you disable cookies, the functionality of our website may be limited.
Usercentrics Consent Management Platform
This is a consent management service.
Processing Company
Usercentrics GmbH
Sendlinger Str. 7, 80331 Munich, Germany
Data Purposes
This list represents the purposes of the data collection and processing. A consent is only valid for the stated purposes. The collected data can’t be used or stored for any other purpose than the purposes listed below.
- Compliance with legal obligations
- Storage of Consent
Technologies Used
- Local storage
- Cookies
Data Collected
This list represents all (personal) data that is collected by or through the use of this service.
- Browser Information
- Opt-in and opt-out data
- Request URLs of the webpage
- Page path of the webpage
- Geographic location
- Date and time of visit
- Device information
Legal Basis
In the following the required legal basis for the processing of data is listed.
- Art. 6 Abs. 1 s. 1 lit. c DSGVO
Location of Processing
European Union (Consent database is located in Belgium)
Retention Period
The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.
The consent data (given consent and revocation of consent) are stored for three years. The data will then be deleted immediately or given to the person responsible on request in the form of a data export.
Data Recipients
- Usercentrics GmbH
Data Protection Officer of Processing Company
Below you can find the email address of the data protection officer of the processing company.
Click here to read the privacy policy of the data processor
https://usercentrics.com/privacy-policy/
Click on Privacy Settings to grant or revoke appropriate consents or to object to certain processing of your data. If you have given us consent here, you can revoke it at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
External links
On our website Social Media is solely embedded as a link to the respective service (i.e. Facebook, Twitter, LinkedIn, Xing). After clicking on the embedded text/image-link you will be directed to the website of the respective provider. User information will be only transferred after the redirection to the respective provider. Information regarding the use of your personal data through the use of the website can be found in the privacy policies of the visited websites.
Contact form and contact by email
If you send us requests via our contact form or email, your details from the contact form or email, including the contact data you have provided there, will be stored for the purpose of processing your request and in the event of follow-up questions. Under no circumstances will we pass on this data without your consent. The legal basis for processing the data is our legitimate interest in responding to your request pursuant to Art. 6 para. 1 lit. f GDPR and, if applicable, Art. 6 para. 1 lit. b GDPR, provided that your request is aimed at concluding a contract. Your data will be deleted after final processing of your request, provided that there are no legal storage obligations to the contrary. You can object to the processing of your personal data at any time in the case of Art. 6 para. 1 lit. f GDPR.
Emergency request form
If you contact us via our form for emergency requests, your details from the contact form, including the contact data you have provided there, will be stored for the purpose of processing your request and in the event of follow-up questions. Under no circumstances will we pass on this data without your consent. The legal basis for processing the data is our legitimate interest in responding to your request pursuant to Art. 6 para. 1 lit. f GDPR and, if applicable, Art. 6 para. 1 lit. b GDPR, provided that your request is aimed at concluding a contract. Your data will be deleted after final processing of your request, provided that there are no legal storage obligations to the contrary. You can object to the processing of your personal data at any time in the case of Art. 6 para. 1 lit. f GDPR.
Quote request form
If you contact us via form or email to request an offer, your details from the form or email, including the contact data you have provided there, will be stored for the purpose of processing your request and in the event of follow-up questions. Under no circumstances will we pass on this data without your consent. The legal basis for processing the data is our legitimate interest in responding to your request pursuant to Art. 6 para. 1 lit. f GDPR and, if applicable, Art. 6 para. 1 lit. b GDPR, provided that your request is aimed at concluding a contract. Your data will be deleted after final processing of your request, provided that there are no legal storage obligations to the contrary. You can object to the processing of your personal data at any time in the case of Art. 6 para. 1 lit. f GDPR.
Newsletter
If you would like to receive the newsletter offered on our website with regular information about our offers and products, we need your email address as a mandatory information. We use the so-called double opt-in procedure for sending the newsletter. This means that we will not send you our newsletter by email until you have expressly confirmed that you agree to the dispatch of newsletters. In the first step, you will receive an email with a link to confirm that you, as the owner of the corresponding email address, would like to receive the newsletter in the future. With the confirmation you give us your consent according to Art. 6 para. 1 lit. a GDPR that we may use your personal data for the purpose of the desired newsletter dispatch.
When registering for the newsletter, in addition to the email address required for sending the newsletter, we store the IP address via which you have registered for the newsletter as well as the date and time of registration and confirmation so that we can trace any possible misuse at a later point in time.
You can cancel the newsletter at any time via the link inserted in each newsletter or by sending an email to the above-mentioned responsible party. After your cancellation, your email address will be deleted from our newsletter distribution list immediately, unless you have explicitly consented to continued use of the data collected or continued processing is otherwise legally permissible.
Downloads
We offer our business customers free information for download. For this purpose, we collect your e-mail address for sending the download. Further details such as name, telephone number and company we may use to provide you with further information on the requested downloads. If you consent to the further use of your data, e.g. for sending you our newsletter, the double opt-in procedure will be applied.
The legal basis for this is our legitimate interest in accordance with Art. 6 Para. 1 lit. f) GDPR and, if applicable, your consent in accordance with Art. 6 Para. 1 lit. a) GDPR.
Job Application
If you apply for a job at our company via contact form or by email, we collect personal data. This includes, in particular, your contact details (such as first and last name, telephone number and email address of the user) as well as other data provided by you regarding your background (e.g. CV, qualifications, degrees and work experience) and your person (e.g. cover letter, personal interests). This may also include special categories of personal data (e.g. information on a severe disability). Your personal data ordinarily is collected directly from you during the application process and is encrypted during electronic transmission. The primary legal basis for this is Art. 6 para. 1 lit. b GDPR in conjunction with § 26 para. 1 BDSG. In addition, consent in accordance with Art. 6 para. 1 lit. a, 7 GDPR in conjunction with § 26 para. 2 BDSG can be used as a data protection permission regulation. If the processing of your data is based on consent, you have the right to revoke your consent at any time with effect for the future.
Within our company, only those persons and positions (e.g. human resources) have access to your personal data which absolutely need to carry out the application procedure or to fulfil our legal obligations. Your applications will be forwarded to the responsible person for examination. Under no circumstances will your personal data be passed on to third parties without authorisation.
Your data for an application for a specific job advertisement will be stored and processed by us during the ongoing application process. Once the application process has been completed (e.g. in the form of an acceptance or rejection), the application process including all personal data will be deleted from the system no later than six months after the application process has been completed. The data of selected applicants will be stored securely for up to 2 years, provided that the applicants have given their consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future. For this purpose, an informal e-mail to the contact details of the person responsible listed above is sufficient. If you are accepted, your application documents will be transferred to the personnel file.
Registration for our webinars (GotoWebinar)
General:
On our website we offer you the possibility to register for our free webinars. The webinars themselves are hosted on the GotoWebinar platform (see LogMeIn’s privacy policy at https://www.logmeininc.com/de/legal/privacy for details). GotoWebinar is operated by LogMeIn Ireland Limited, Bloodstone Building Block C, 70 Sir John Rogerson’s Quay Dublin 2, Ireland.
We have a data processing agreement with LogMeIn in place in which we commit them to protect our customers’ information and not to share it with third parties.
The integration of GotoWebinar ensures that the webinar will be conducted in a technically sound manner using professional tools. This represents a legitimate interest in the sense of Art. 6 para. 1 lit. f GDPR.
Registration for free webinars:
If you register for a free webinar on our website, you must provide your e-mail address and your first and last name. By registering for a webinar, you also automatically agree to subscribe to our newsletter, which will keep you informed about regular products and events. The legal basis is your previously given consent in accordance with Art. 6 Para. 1 lit. a GDPR.
To participate in the webinar you have to click on the webinar link sent to you and you will be forwarded to GotoWebinar. Please also note their privacy policy. On the website of GotoWebinar you have to enter an e-mail address and an alias name again before you can participate in the webinar.
You can unsubscribe from the webinar at any time. After the webinar you can still unsubscribe from the newsletter.
Registration for exclusive customer webinars:
When you register for our exclusive customer webinars on GotoWebinar you will need to enter your e-mail address and your first and last name. The legal basis is your previously given consent according to Art. 6 para. 1 lit. a GDPR.
To participate in the webinar you have to click on the webinar link sent to you and will then be forwarded to GotoWebinar. Please also note their privacy policy. On the website of GotoWebinar you need to enter an e-mail address and an alias name again before you can participate in the webinar.
You can unsubscribe from the webinar at any time. With the end of the webinar all your data will be deleted.
Answering customer enquiries through Salesforce and Pardot
In order to be able to process user requests faster and more efficiently, we use the services of Salesforce and Pardot (salesforce.com Germany GmbH, Erika-Mann-Str. 31, 80636 Munich). This is a legitimate interest within the meaning of Art. 6 para. 1 lit. f. GDPR. We have agreed standard data protection clauses with Salesforce and Pardot in order to guarantee an appropriate level of data protection when transferring data to third countries. Salesforce uses the users’ data only for the technical processing of the enquiries and does not pass them on to third parties. If users do not agree to data collection via and storage of data in salesforce’s external system, we offer them alternative contact options for submitting service requests by e-mail, telephone, fax or post. For more information about this CRM system and the provider, please visit https://www.salesforce.com/de/company/privacy/.
Pardot
Personal data entered by visitors to one of the forms on our website is processed in a privacy-compliant manner using the Pardot software from Salesforce.com Inc.
Description of the Pardot service
Pardot is a CRM software system that provides solutions for sales, customer service and marketing.
Processing Company
Salesforce.com, Inc.
Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, United States of America
Purpose of the data
This list represents the purposes of data collection and processing.
– Advertising
– Marketing
– Optimization
Technologies used
This list includes all technologies used by this service to collect data. Typical technologies are cookies and pixels placed in the browser.
– Cookies
– web beacons
– Log file
Collected data
This list contains all (personal) data collected by or through the use of this service.
– Browser type
– device identifier
– Device operating system
– IP address
– Log file data
– Number of page views
– Third party information
– Usage data
Legal basis
The following is the required legal basis for the processing of data.
Art. 6 para. 1 p. 1 lit. a DSGVO
Place of processing
This is the primary location where the collected data is processed. If the data is also processed in other countries, you will be informed separately.
European Union
Retention period
The retention period is the length of time that the collected data is stored for processing.
We delte the data as soon as it is no longer needed for the processing purposes.
Data Recipients
The following is a list of the recipients of the data collected.
– Salesforce.com, Inc.
– Third-party social media and advertising networks
– Contracted service providers
Click here to read the privacy policy of the data processor: https://www.salesforce.com/eu/gdpr/pardot/
Calendly
You can make appointments with us on our website. We use the “Calendly” tool for booking appointments. The provider is Calendly LLC, 271 17th St NW, 10th Floor, Atlanta, Georgia 30363, USA (hereinafter “Calendly”).
To book an appointment, enter the requested data and the desired date in the screen provided. The data entered will be used for planning, executing and, if necessary, for the follow-up of the appointment. The appointment data is stored for us on the servers of Calendly, whose privacy policy can be viewed here: https://calendly.com/de/pages/privacy.
The data you have entered will remain with us until you ask us to delete it, revoke your consent for storage or the purpose for which the data was stored ceases to apply. Mandatory legal provisions, in particular retention periods, remain unaffected.
The legal basis for data processing is Art. 6(1)(f) GDPR. The website operator has a justified interest in making appointments with interested parties and customers in as uncomplicated a manner as possible. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time.
The data transfer to the USA is based on the standard contractual clauses of the European Commission. Details can be found here: https://calendly.com/pages/dpa.
Data processing
We have concluded a data processing agreement (DPA) with the above-mentioned provider. This is a contract mandated by data privacy laws that guarantees that they process personal data of our website visitors only based on our instructions and in compliance with the GDPR.
Online-based Audio and Video Conferences (Conference tools)
We use online conference tools, among other things, for communication with our customers. The tools we use are listed in detail below. If you communicate with us by video or audio conference using the Internet, your personal data will be collected and processed by the provider of the respective conference tool and by us. The conferencing tools collect all information that you provide/access to use the tools (email address and/or your phone number). Furthermore, the conference tools process the duration of the conference, start and end (time) of participation in the conference, number of participants and other “context information” related to the communication process (metadata).
Furthermore, the provider of the tool processes all the technical data required for the processing of the online communication. This includes, in particular, IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or loudspeaker and the type of connection.
Should content be exchanged, uploaded, or otherwise made available within the tool, it is also stored on the servers of the tool provider. Such content includes, but is not limited to, cloud recordings, chat/ instant messages, voicemail uploaded photos and videos, files, whiteboards, and other information shared while using the service.
Please note that we do not have complete influence on the data processing procedures of the tools used. Our possibilities are largely determined by the corporate policy of the respective provider. Further information on data processing by the conference tools can be found in the data protection declarations of the tools used, and which we have listed below this text.
Purpose and legal bases
The conference tools are used to communicate with prospective or existing contractual partners or to offer certain services to our customers (Art. 6(1)(b) GDPR). Furthermore, the use of the tools serves to generally simplify and accelerate communication with us or our company (legitimate interest in the meaning of Art. 6(1)(f) GDPR). Insofar as consent has been requested, the tools in question will be used on the basis of this consent; the consent may be revoked at any time with effect from that date.
Duration of storage
Data collected directly by us via the video and conference tools will be deleted from our systems immediately after you request us to delete it, revoke your consent to storage, or the reason for storing the data no longer applies. Stored cookies remain on your end device until you delete them. Mandatory legal retention periods remain unaffected.
We have no influence on the duration of storage of your data that is stored by the operators of the conference tools for their own purposes. For details, please directly contact the operators of the conference tools.
Microsoft Teams
We use Microsoft Teams. The provider is Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. For details on data processing, please refer to the Microsoft Teams privacy policy: https://privacy.microsoft.com/en-us/privacystatement.
Data processing
We have concluded a data processing agreement (DPA) with the above-mentioned provider. This is a contract mandated by data privacy laws that guarantees that they process personal data of our website visitors only based on our instructions and in compliance with the GDPR.
Matomo
We use the web analysis tool “Matomo” to design our websites according to demand. Matomo creates usage profiles based on pseudonyms. For this purpose, permanent cookies are stored on your terminal device and read by us. In this way, we are able to recognize and count returning visitors. We also use the heatmap & session recording modules. Matomo’s heatmap service shows us the areas of our website where the mouse is most often moved or clicked. The session recording service records individual user sessions. We can replay recorded sessions and thus analyze the use of our website. Data entered in forms is not recorded and is not visible at any time.
Data processing is based on your consent pursuant to Section 25 (1) TTDSG, Art. 6 (1) lit. a DSGVO, provided you have given your consent via our banner. You can revoke your consent at any time. Please make the appropriate settings via our banner.
For more information on Matomo’s terms of use and data protection regulations, please visit: https://matomo.org/privacy/
Data Transfer and Recipients
Your personal data is not transferred to third parties, unless
- we have explicitly pointed this out in the description of the respective data processing.
- you have given your explicit consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR,
- the transfer pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR is necessary for the assertion, exercise or defence of legal claims and our legitimate interests are not overridden by your fundamental rights and freedoms.
- there is a legal obligation to transfer data pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR, and
- required by Art. 6 para. 1 sentence 1 lit. b GDPR for the execution of contractual relationships with you.
In addition, we use external service providers for the processing of our services, whom we have carefully selected and commissioned in writing. They are bound by our instructions and are regularly monitored by us. Required data processing agreements pursuant to Art. 28 GDPR are concluded before the commission. In particular, these contracts concern web hosting services, the dispatch of emails and IT updates and maintenance. Your personal data will not be transferred to third parties by our service providers.
Storage period
The period for which the personal data will be stored is determined by the relevant statutory storage periods (e.g. from commercial law and tax law). The corresponding data is deleted routinely upon expiry of the respective period. If data is required for the fulfilment of a contract or contract initiation, or if we have a legitimate interest in further storage, the data will be deleted if they are no longer required for these purposes or if you make use of your right of withdrawal or objection.
Your Rights
In the following, you will find information about your data subject rights, which the current data protection law grants you against the controller concerning the processing of personal data:
The right, pursuant to Art. 15GDPR, to obtain information about your personal data processed by us. In particular, you may request information about the purposes of processing, the categories of personal data concerned, the categories of recipients to whom your data has been or will be disclosed, the envisaged period for which the data will be stored, the existence of the right to request from the controller rectification or erasure or personal data or restriction of processing of personal data concerning you or to object such processing, the existence of a right to lodge a complaint with a supervisory authority, the origin of your data, if these have not been collected by us, and the existence of automated decision-making including profiling and, if applicable, meaningful information about the logic involved, as well as the significance and the envisaged consequences.
The right to obtain without undue delay the rectification of inaccurate personal data concerning you. in accordance with Art. 16 GDPR.
The right to request the erasure of your personal data stored by us in accordance with Art. 17 GDPR, unless the processing is necessary to exercise the right of freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.
The right, pursuant to Art. 18 GDPR, to demand the restriction of the processing of your personal data if the accuracy of the data is contested by you, the processing is unlawful, but you oppose the erasure and we no longer need the data for the purposes of processing, but they are required by you for the establishment, exercise or defence of legal claims or you have filed an objection against the processing pursuant to Art. 21 GDPR.
The right, in accordance with Art. 20 GDPR, to receive the personal data concerning you, which you have provided to us in in a commonly used and machine-readable format and the right to transmit those data to another controller.
The right to withdraw your given consent pursuant to Art. 7 para. 3 GDPR with effect in the future at any time.
The right to lodge a complaint with a supervisory authority pursuant to Art. 77 GDPR, in particular in the Member State of your habitual residence, place of work.
The right to withdraw your given consent pursuant to Art. 7 para. 3 GDPR: You have the right to withdraw your given consent concerning the processing of your personal data with effect for the future at any time. In the event of withdrawal, we will delete the data concerned without delay, unless further processing can be based on a legal basis for processing without consent. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal
Right to object
If your personal data is processed by us based on legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR, you have the right, pursuant to Art. 21 GDPR, to object at any time to the processing of your personal data on grounds relating to your particular situation. If the objection is directed against the processing of personal data for the purpose of direct marketing, you have a general right of objection without the requirement of stating a particular situation.
If you wish to exercise your right of withdrawal, objection or any of your other rights, simply send an e-mail to info@link11.com
Subject to change
We reserve the right to adapt or update this privacy policy, if necessary, in compliance with the applicable data protection regulations. In this way, we can adapt it to the current legal requirements and take account of changes to our services, e.g. the introduction of new services. The most current version applies to your visit.
Status of this privacy policy: September 10, 2021