Privacy Policy

1. Privacy notice in the context of executive search | candidates | EU

The protection of your personal data is a very important concern for us. Below we would like to inform you in accordance with article 13 GDPR, 14 GDPR for what purpose Heads! International GmbH & Co. KG processes your personal data.

2. Privacy notice in the context of executive search | client | EU

The protection of your personal data is a very important concern for us. Below we would like to inform you in accordance with article 13 GDPR, 14 GDPR for what purpose Heads! International GmbH & Co. KG processes your personal data.

3. Privacy notice in the context of executive search | candidates | CH

We attach great importance to protecting your data. In the following, we would like to inform you about the purposes for which Heads! International AG processes your personal data.

4. Privacy notice in the context of executive search | client | CH

We attach great importance to protecting your data. In the following, we would like to inform you about the purposes for which Heads! International AG processes your personal data.

5. Privacy notice in the context of executive search | candidates | UK

6. Privacy notice in the context of executive search | client | UK

7. Private policy | website | EU

The operator of this website takes the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with data protection legislation and this Privacy Policy. Whenever you use this website, we collect various personal data. We explain in this Privacy Policy, which data we collect and what they are used for. It also clarifies how and for what purpose this is done. 

We draw your attention to the fact that data transmission over the Internet (e.g. when communicating by e-mail) may involve security gaps. It is not possible to protect such data completely against access by third parties.

Data collection on our website

Who is responsible for collecting data on this website?
The data collected on this website are processed by the website operator. The operator’s contact details can be found in the legal notice.

How do we collect your data?
On the one hand, we collect data that you provide us with. This could, for example, be data you enter on a contact form.

Other data are collected automatically by our IT systems when you visit the website. These data are primarily technical data such as the browser and operating system you are using or when you accessed the page. These data are collected automatically as soon as you enter our website.

What do we use your data for?
Part of the data is collected to ensure the proper functioning of the website. Other data can be used to analyze how visitors use the site.

What is the legal basis for processing personal data?
The legal basis for processing personal data as described above is Art. 6 (1) (f) of the EU General Data Protection Regulation (GDPR). Processing this data is necessary to provide the website and serves to uphold the legitimate interest of our company.

Insofar as you have completed the contact form, the legal basis is Art. 6(1) (b) GDPR. The reason for this is that your personal data are necessary to fulfill a contract. This also applies to processing operations required for measures preliminary to a contract.

Where processing of personal data is required to meet a legal obligation to which our company is subject, the legal basis is Art. 6(1) (c) GDPR.

Where the processing of personal data is necessary to protect the vital interests of the affected person or that of another natural person, the legal basis is Art. 6(1) (d) GDPR.

Insofar as we have your consent for processing personal data, the legal basis is Art. 6(1) (a) GDPR.

Deletion and retention period
As soon as the data used to display the website are no longer required, they are deleted. The collection of data to provide a website and the storage of data in log files is essential for the operation of the website. Users do not have any option for objecting to this. The data may also be stored in individual cases where this is specified by law. Data may also be blocked or deleted once a legally defined storage period has expired, unless there is a need to continue storing the data for the conclusion or fulfillment of a contract.

General and compulsory information

Information on the Controller

The Controller responsible for processing data on this website is:

Heads! International GmbH & Co. KG
Prinz-Ludwig-Palais
Türkenstr. 7
D-80333 Munich

Phone: +49-89-51 55 59-0
Fax: +49-89-5155 59-22
Website: www.headsinternational.com

Managing Partners:
Gil Alon, Adrian Fischer, Armin Gerneth, Barbara Hartmann, Dr. Wilhelm-Christian Helkenberg, Matthias Herkner, Christoph Zeiss, Alexander Zimmermann

What are your general rights regarding your data?
You have the right to obtain information at any time free of charge about the origin, recipients and purpose of your stored personal data. You also have the right to demand that your data be corrected, blocked or deleted. In addition, you have the right to restrict the processing of your personal data, the right of portability of your data and the right to notification.

Furthermore, you have the right to object to the processing of personal data relating to you at any time on grounds relating to your particular situation based on Art. 6(1) (e) or (f) GDPR; this also applies to profiling based on these provisions.

Moreover, we would like to point out the following:

Withdrawal of your consent to the processing of data
Many data processing operations are only possible with your express consent. You may at any time withdraw consent you have already given by sending us an informal notification by e-mail to the following address: datenschutz(at)headsinternational.com. Please note that this will not affect the processing of personal data obtained prior to the withdrawal of your consent.

Right to lodge a complaint with the responsible supervisory authorities
If there has been a breach of data protection legislation, you may lodge a complaint with the responsible regulatory authorities. The responsible supervisory authority for matters related to data protection legislation is the data protection officer of the German state in which our company is headquartered. A list of data protection officers and their contact data can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

Right to data portability
You have the right to have data which we process based on your consent or automatically in fulfillment of a contract delivered to yourself or to a third party in a standard, machine-readable format. If you require the direct transfer of data to another responsible party, this will only be done to the extent technically feasible.

SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as orders or inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar.
If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.

Information, blocking, deletion
As permitted by law, you have the right to be provided at any time with information free of charge about any of your personal data that is stored as well as its origin, the recipient and the purpose for which it has been processed. You also have the right to have this data corrected, blocked or deleted. You can contact us at any time using the address given in our legal notice if you have further questions on the topic of personal data.

Objections to promotional e-mails
We hereby expressly prohibit the use of contact data published in the context of website legal notice requirements for the purpose of sending promotional and informational materials not expressly requested. The website operator reserves the right to take specific legal action if unsolicited advertising material, such as email spam, is received.

Data protection officer

Legally prescribed data protection officer
The data protection officer designated by our company is:

Dr. Karsten Kinast, LL.M.
KINAST Rechtsanwaltsgesellschaft mbH
Hohenzollernring 54
D-50672 Cologne

Phone: +49-221-222 183-0
Email: mail(at)kinast-partner.de

Data collection on our website

Analytics and third-party tools
When visiting our website, statistical analyses may be made of your surfing behavior. This is done primarily using cookies and analytics. The analysis of your surfing behavior is usually anonymous, i.e. we will not be able to identify you from this data. You can object to this analysis or prevent it by not using certain tools. Detailed information can be found in the following privacy policy.

You can object to this analysis. We will inform you below about how to exercise your options in this regard.

Cookies
Some of our web pages use cookies. Cookies do not harm your computer and do not contain any viruses. Cookies help make our website more user-friendly, efficient, and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies.” They are automatically deleted after your visit. Other cookies remain in your device’s memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site.

You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser. Disabling cookies may limit the functionality of this website.

Cookies which are necessary to allow electronic communications or to provide certain functions you wish to use (such as the shopping cart) are stored pursuant to Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in the storage of cookies to ensure an optimized service provided free of technical errors. If other cookies (such as those used to analyze your surfing behavior) are also stored, they will be treated separately in this privacy policy

Server log files
The website provider automatically collects and stores information that your browser automatically transmits to us in “server log files”. These are:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Host name of accessing computer
  • Time of server request
  • IP address

These data are not combined with other data sources.

The legal basis for data processing is Art. 6(1) (f) GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.

Plugins und Tools

WP Statistics

This website uses the WP Statistics analysis tool to evaluate visitor accesses statistically. The provider is Veronalabs, ARENCO Tower, 27th Floor, Dubai Media City, Dubai, Dubai 23816, UAE (https://veronalabs.com).

WP Statistics can be used to analyze the use of our website. In doing so, WP Statistics records, among other things, log files (IP address, referrer, browser used, origin of the user, search engine used) and actions that the website visitors have taken on the site (e.g. clicks and views).

The data collected with WP Statistics is stored exclusively on our own server.

The use of this analysis tool is based on Art. 6(1)(f) GDPR. We have a legitimate interest in the anonymized analysis of user behavior in order to optimize both our websites and our advertising. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time.

Wordfence

We have included Wordfence on this website. The provider is Defiant Inc, Defiant, Inc, 800 5th Ave Ste 4100, Seattle, WA 98104, USA (hereinafter “Wordfence”).

Wordfence is designed to protect our website from unwanted access or malicious cyberattacks. To accomplish this, our website establishes a permanent connection with Wordfence’s servers, which check and block their databases against access to our website.

The use of Wordfence is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the most effective protection of his website against cyberattacks. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time.

Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.wordfence.com/help/general-data-protection-regulation/.

Data processing

We have concluded a data processing agreement (DPA) with the above-mentioned provider. This is a contract mandated by data privacy laws that guarantees that they process personal data of our website visitors only based on our instructions and in compliance with the GDPR.

WPML

Our website uses the language plugin WPML from OnTheGoSystems Limited, 22/F 3 Lockhart Road, Wanchai, Hong Kong, to provide a German and an English language version of the website. WPML cookies – these are used by the WPML plugin to identify the preferred user’s language as our site is multilingual. WPML stores only those cookies that are important for it to function properly. You can find detailed information about the browser cookies stored by WPML at https://wpml.org/documentation/support/browser-cookies-stored-wpml.

Vimeo

This website uses plug-ins of the video portal Vimeo. The provider is Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.

If you visit one of the pages on our website into which a Vimeo video has been integrated, a connection to Vimeo’s servers will be established. As a consequence, the Vimeo server will receive information as to which of our pages you have visited. The information recorded by Vimeo will be transmitted to Vimeo’s server in the United States.

The Vimeo videos on this website are embedded with a “Do Not Track” parameter (dnt=1) to block the player from tracking any session data, including all cookies and analytics.

If you are logged into your Vimeo account, you enable Vimeo to directly allocate your browsing patterns to your personal profile. You can prevent this by logging out of your Vimeo account.

Vimeo uses cookies or comparable recognition technologies (e.g. device fingerprinting) to recognize website visitors.

The use of Vimeo is based on our interest in presenting our online content in an appealing manner. Pursuant to Art. 6(1)(f) GDPR, this is a legitimate interest. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time.

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission and, according to Vimeo, on “legitimate business interests”. Details can be found here: https://vimeo.com/privacy.

For more information on how Vimeo handles user data, please consult the Vimeo Data Privacy Policy under: https://vimeo.com/privacy.

8. Private policy | website | UK

This Privacy Policy, sets out the basis on which personal data that you provide to us in the course of visiting our website (or that we collect from or about you) will be processed by Heads! International Limited (company no. 13164917) (referred to as Heads!, we, us and our in this Privacy Policy). We are committed to ensuring that your privacy is protected, so please read this Privacy Policy carefully to understand how your personal data will be processed by us. 

If you are an existing, potential or previous candidate in respect of whom we have acquired personal data in connection with any candidate related services offered by us, please refer to our Executive Search Privacy Policy:

  1. Privacy notices in the context of Executive Search

  Download PDF  

  1. Privacy Policy for this website

The information set out in this Privacy Policy is provided in compliance with our obligations under the Data Protection Act 2018 and the UK General Data Protection Regulation 2016/679 (GDPR).

  1. Data controller details

We are the data controller in relation to the processing of the personal information that you provide to us. Our contact details are as follows:

    1. Address: 42 Berkeley Square, Mayfair, London W1J 5AW.
    2. Telephone: +44 773 7773 120.
    3. Website: headsinternational.com
  1. What is personal data 
    1. For the purposes of this Privacy Policy, personal data or personal information means any information relating to a living individual who can be identified from that information (or from that information and other information in our possession). Personal data may be factual (e.g. name, address, date of birth) or it can be an opinion about that person, their action or behaviours.
    2. There are special categories of more sensitive personal information which require a higher level of protection. These include information about a person’s racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic and biometric data, physical or mental health or condition or sexual life.
  2. How do we collect your information
    1. Generally, the information we hold about you comes from the way that you engage with us, for example by:
      1. engaging with us via our website;
      2. entering information within our contact form; and
      3. contacting us offline, for example by telephone, email or by post.
    2. Other personal data is collected automatically by our IT systems when you visit the website. This data is primarily technical data such as the browser and operating system you are using or when you accessed the page and is collected automatically as soon as you enter our website.
  3. Purpose and legal basis for data processing

What do we use your data for?

    1. The personal data is collected to ensure the proper functioning of the website, to analyse how visitors use the site (see further below) and for insight purposes e.g. to monitor market trends and demographics and to improve the user experience within our website; and to ensure that content from our website is presented in the most effective manner for you and for your computer.

What is the legal basis for processing personal data?

    1. The legal basis for processing personal data as described above is Art. 6 (1) (f) of the GDPR. Processing this data is necessary to provide the website and serves to uphold the legitimate interest of our company.
    2. Insofar as you have completed the contact form, the legal basis is Art. 6(1) (b) GDPR. The reason for this is that your personal data are necessary to fulfill a contract. This also applies to processing operations required for measures preliminary to a contract.
    3. Where processing of personal data is required to meet a legal obligation to which our company is subject, the legal basis is Art. 6(1) (a) GDPR.

SSL or TLS encryption

    1. This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as orders or inquiries you send to us as the site operator. You can recognise an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar.
    2. If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.

Objections to promotional e-mails

    1. We hereby expressly prohibit the use of contact data published in the context of website legal notice requirements for the purpose of sending promotional and informational materials not expressly requested. The website operator reserves the right to take specific legal action if unsolicited advertising material, such as email spam, is received.
  1. Cookies and technical log data

Analytics and third-party tools

    1. When visiting our website, statistical analyses may be made in respect of your surfing behavior. This is carried our primarily using cookies and web-analytics. The analysis of your surfing behavior is usually anonymous, i.e. we will not be able to identify you from this data.
    2. You can object to this analysis or prevent it by not using certain tools. Further information can be found below in this regard.

What are cookies

    1. A cookie is a small, often encrypted text file that is stored on your device. Cookies contain information that is transferred to your computer’s hard drive. Cookies allow a web application to tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences. Cookies help make our website more user-friendly, efficient, and secure. They do not harm your computer and do not contain any viruses.
    2. Some of our web pages use cookies. Our cookies do not store private information, such as your address or phone number. They simply store encrypted information.
    3. You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of our website.
    1. We may use the following types of cookies:
      1. Strictly necessary cookies: these are cookies that are required for the operation of our website. They include, for example, cookies that enable you to log into secure areas of our website.
      2. Analytical or performance cookies: these types of cookies allow us to recognise and count the number of visitors and to see how visitors move around our website when they are using it. This helps us to improve the way our website works, for example, by ensuring that users are finding what they are looking for easily.
      3. Functionality cookies: these are used to recognise you when you return to our website. This enables us to personalise our content for you, greet you by name and remember your preferences (for example, your choice of language or region).
      4. Targeting cookies. These cookies record your visit to our website, the pages you have visited and the links you have followed. We will use this information to make our website and the advertising displayed on it more relevant to your interests.
    2. Generally, the strictly necessary cookies and some performance and functionality cookies expire when you close the Website: these are known as ‘session cookies’. The functionality cookies and some targeting and performance cookies will last for a longer period of time: these are known as ‘persistent cookies’.
    3. Most of the cookies we use are so-called “session cookies.” Other cookies remain in your device’s memory until you delete them. These cookies make it possible to recognise your browser when you next visit the site.
    4. You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser.  Disabling cookies may limit the functionality of this website.
    5. Cookies which are necessary to allow electronic communications or to provide certain functions you wish to use (such as the shopping cart) are stored pursuant to Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in the storage of cookies to ensure an optimised service provided free of technical errors. If other cookies (such as those used to analyse your surfing behavior) are also stored, they will be treated separately in this privacy policy.

Server log files

    1. The website provider automatically collects and stores information that your browser automatically transmits to us in “server log files”. These are:
      1. Browser type and version
      2. Operating system used
      3. Referrer URL
      4. Host name of accessing computer
      5. Time of server request
      6. IP address
    2. This data is not combined with other data sources.
    3. The legal basis for data processing is Art. 6(1) (f) GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.

Analytics and advertising Google Analytics

    1. This website uses functions of Google Analytics, a web analytics service provided by Google, Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
    2. Google Analytics uses so-called cookies, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of this website is generally transmitted to a server in the United States by Google and stored there.
    3. Google Analytics cookies are stored on the basis of Art. 6(1) (f)GDPR. The website operator has a legitimate interest in analysing user behaviour to optimise both its website and its advertising.

IP anonymisation

    1. We have activated the IP anonymisation function within this website. This means that your IP address will be truncated by Google within the UK and the EU or in other states that are party to the Agreement on the European Economic Area before being transmitted to the United States. In exceptional cases only, the full IP address will transmitted to a Google server in the United States and abbreviated there. Google will use this information on behalf of the website operator to analyse your use of the website, compile reports on website activities and provide additional services to the website operator in connection with use of the website and Internet usage. The IP address that is transmitted by Google Analytics will not be combined with other data held by Google.

Browser plug-ins

    1. You can prevent these cookies from being stored by enabling the relevant setting in your browser software. Please note, however, that this may prevent you from using all the functions available on this website. In addition, you can prevent the information about your use of the website that is generated by the cookie (including your IP address) being passed on to Google and from being processed by Google by downloading and installing the browser plug-in available at https://tools.google.com/dlpage/gaoptout?hl=de (https://tools.google.com/dlpage/gaoptout?hl=de).

Objection to data collection

    1. You can prevent your data from being tracked by Google Analytics by clicking on the following link. An opt-out cookie is placed, which will prevent your data from being collected during future visits to this website: Disable Google Analytics.
    2. More information on how user data is handled by Google Analytics is available in Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=de (https://support.google.com/analytics/answer/6004245?hl=de).

Contract data processing

    1. We have signed an agreement with Google to process contract data and fully implement the strict provisions of the UK data protection authorities relating to the use of Google Analytics.

Plug-ins and tools – WPML

    1. Our website uses the language plugin WPML from OnTheGoSystems Limited, 22/F 3 Lockhart Road, Wanchai, Hong Kong, to provide a German and an English language version of the website. WPML cookies – these are used by the WPML plugin to identify the preferred user’s language as our site is multilingual. WPML stores only those cookies that are important for it to function properly. You can find detailed information about the browser cookies stored by WPML at https://wpml.org/documentation/support/browser- cookies-stored-wpml (https://wpml.org/documentation/support/browser-cookies-stored- wpml).
  1. Transmission to third parties
    1. Please note that personal information we are holding about you may be shared with and processed by:
      1. any group company within our organisation for management and administration purposes, including for the purpose of assisting with placements or execution of our contract with our clients;
      2. our service providers and agents (including their subcontractors) or third parties which process information on our behalf (e.g. internet service and payment providers, search engine, advertising and marketing providers) so that they may help us to provide you with services and information you have requested. If we use such third-party subcontractors, we will take appropriate legal precautions (for example, by entering into a data processing contract where appropriate);
      3. regulators, fraud prevention agencies or other third parties for the purposes of monitoring and/or enforcing our compliance with any legal and regulatory obligations, including statutory or regulatory reporting, or the detection or prevention of unlawful acts;
      4. any third party in the context of actual or threatened legal proceedings, provided we can do so lawfully (for example in response to a court order);
      5. other parties and/or their professional advisers involved in a matter where required as part of the conduct of the services;
      6. our own professional advisers and auditors for the purpose of seeking professional advice or to meet our audit responsibilities; and
      7. any other  organisation to whom we may transfer our agreement with you or if we sell or buy (or negotiate to sell or buy) our business or any of our assets (provided that adequate protections and safeguards are in place).
  2. International transfers
    1. The personal data that we collect from you may be transferred to and stored at a destination within the EU by a member of the Heads! group for administration and management purposes, where our data hosting servers may be located.
    2. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and we will not transfer personal data relating to you to any third party outside the UK unless one of the following scenarios under the GDPR applies:
      1. the country or recipient is covered by an adequacy decision under GDPR Article 45;
      2. appropriate safeguards have been put in place which meet the requirements of GDPR Article 46 (for example using the Information Commissioner’s Office’s (ICO) approved Standard Model Clauses for transfers of personal data outside the UK); or
      3. one of the derogations for specific situations under GDPR Article 49 is applicable to the transfer. These include (in summary):
        1. the transfer is necessary to perform, or to form, a contract to which we are a party:
          1. with you; or
          2. with a third party where the contract is in your interests;
        2. the transfer is necessary for the establishment, exercise or defence of legal claims;
        3. you have provided your explicit consent to the transfer; or
        4. the transfer is of a limited nature, and is necessary for the purpose of our compelling legitimate interests.
  3. Deletion and retention period
    1. As soon as the data used to display the website is no longer required, it is deleted.
    2. The collection of data to provide a website and the storage of data in log files is essential for the operation of the website. Users do not have any option for objecting to this. The data may also be stored in individual cases where this is specified by law. Data may also be blocked or deleted once a legally defined storage period has expired, unless there is a need to continue storing the data for the conclusion or fulfillment of a contract.
  4. Your rights in respect of your personal data
    1. You have certain rights under existing data protection laws, including the right to (upon written request) access a copy of your personal data that we are processing. In accordance with the Data Protection Act 2018 and the GDPR:
      1. you will have the following rights:
        1. right to access: the right to request certain information about, access to and copies of the personal information about you that we are holding (please note that you are entitled to request one copy of the personal information that we hold about you at no cost, but for any further copies, we reserve the right to charge a reasonable fee based on administration costs); and
        2. right to rectification: the right to have your personal information rectified if it is inaccurate or incomplete; and
      2. in certain circumstances, you will also have the following rights:
        1. right to erasure/“right to be forgotten”: the right to withdraw your consent to our processing of the data (if the legal basis for processing is based on your consent) and the right to request that we delete or erase your personal information from our systems (however, this will not apply if we are required to hold on to the information for compliance with any legal obligation or if we require the information to establish or defend any legal claim);
        2. right to restriction of use of your information: the right to stop us from using your personal information or limit the way in which we can use it;
        3. right to data portability: the right to request that we return any information you have provided in a structured, commonly used and machine-readable format, or that we send it directly to another company, where technically feasible; and
        4. right to object: the right to object to our use of your personal information including where we use it for our legitimate interests or for marketing purposes.
    2. If you have subscribed to marketing communications from us, you have the right, at any time, to instruct us by email not to process your personal data for marketing purposes.
    3. Many data processing operations are only possible with your express consent. Please note that you may contact us at any time to withdraw consent you have already provided. Please note that this will not affect the processing of personal data obtained prior to the withdrawal of your consent, however, if you withdraw your consent to the use of your personal information for purposes set out in our Privacy Policy, we may not be able to provide you with access to all or certain parts of our site.
    4. If there has been a breach of data protection legislation or if you consider our use of your personal data to be unlawful, you may lodge a complaint with the UK’s supervisory authority, the ICO. Please see further information on their website: www.ico.org.uk.
  5. Automatic decision making

We do not make decisions based solely on automated data processing, including profiling.

  1. Security 
    1. We keep your information protected by taking appropriate technical and organisational measures to guard against unauthorised or unlawful processing, accidental loss, destruction or damage. For example, we will store all the personal information you provide within our secure servers.
    2. However, while we will do our best to protect your personal information, we cannot guarantee the security of your information which is transmitted via an internet or similar connection.
    3. It is important that all details of any username, password and/or other identification information created to access or interact with our servers are kept confidential by you and should not be disclosed to or shared with anyone.
  2. Amendments to and versions of this Privacy Policy 

We may amend this Privacy Policy from time to time, for example to keep it up to date, to implement minor technical adjustments and improvements or to comply with legal requirements. We will always update this Privacy Policy on our site, so please try to read it when you visit the site.

Plugins und Tools

WP Statistics

This website uses the WP Statistics analysis tool to evaluate visitor accesses statistically. The provider is Veronalabs, ARENCO Tower, 27th Floor, Dubai Media City, Dubai, Dubai 23816, UAE (https://veronalabs.com).

WP Statistics can be used to analyze the use of our website. In doing so, WP Statistics records, among other things, log files (IP address, referrer, browser used, origin of the user, search engine used) and actions that the website visitors have taken on the site (e.g. clicks and views).

The data collected with WP Statistics is stored exclusively on our own server.

The use of this analysis tool is based on Art. 6(1)(f) GDPR. We have a legitimate interest in the anonymized analysis of user behavior in order to optimize both our websites and our advertising. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time.

Wordfence

We have included Wordfence on this website. The provider is Defiant Inc, Defiant, Inc, 800 5th Ave Ste 4100, Seattle, WA 98104, USA (hereinafter “Wordfence”).

Wordfence is designed to protect our website from unwanted access or malicious cyberattacks. To accomplish this, our website establishes a permanent connection with Wordfence’s servers, which check and block their databases against access to our website.

The use of Wordfence is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the most effective protection of his website against cyberattacks. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time.

Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.wordfence.com/help/general-data-protection-regulation/.

Data processing

We have concluded a data processing agreement (DPA) with the above-mentioned provider. This is a contract mandated by data privacy laws that guarantees that they process personal data of our website visitors only based on our instructions and in compliance with the GDPR.

WPML

Our website uses the language plugin WPML from OnTheGoSystems Limited, 22/F 3 Lockhart Road, Wanchai, Hong Kong, to provide a German and an English language version of the website. WPML cookies – these are used by the WPML plugin to identify the preferred user’s language as our site is multilingual. WPML stores only those cookies that are important for it to function properly. You can find detailed information about the browser cookies stored by WPML at https://wpml.org/documentation/support/browser-cookies-stored-wpml.

Vimeo

This website uses plug-ins of the video portal Vimeo. The provider is Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.

If you visit one of the pages on our website into which a Vimeo video has been integrated, a connection to Vimeo’s servers will be established. As a consequence, the Vimeo server will receive information as to which of our pages you have visited. The information recorded by Vimeo will be transmitted to Vimeo’s server in the United States.

The Vimeo videos on this website are embedded with a “Do Not Track” parameter (dnt=1) to block the player from tracking any session data, including all cookies and analytics.

If you are logged into your Vimeo account, you enable Vimeo to directly allocate your browsing patterns to your personal profile. You can prevent this by logging out of your Vimeo account.

Vimeo uses cookies or comparable recognition technologies (e.g. device fingerprinting) to recognize website visitors.

The use of Vimeo is based on our interest in presenting our online content in an appealing manner. Pursuant to Art. 6(1)(f) GDPR, this is a legitimate interest. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time.

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission and, according to Vimeo, on “legitimate business interests”. Details can be found here: https://vimeo.com/privacy.

For more information on how Vimeo handles user data, please consult the Vimeo Data Privacy Policy under: https://vimeo.com/privacy.