Privacy Social Media

(Status: 19.02.2025)

 

We maintain online presences on various social networks and platforms. In the following, we would like to inform you about the data collected by these and by us, their purposes, the legal basis, recipients and your rights.

 

  1. NOTE IN ADVANCE

We would like to point out that you use our content and the interactive functions provided (e.g. commenting, sharing, rating) on your own responsibility. Alternatively, you can also find the information/products etc. offered within our social networks on our website at www.allmatic.de. You can also contact us at any time for further information by info@allmatic.de.

 

  1. CONTROLLER AND DATA PROTECTION OFFICER

Joint controllers within the meaning of Article 26 of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations for our social platforms are

Allmatic-Jakob Spannsysteme GmbH

Jägermühle 10

87647 Unterthingau

Phone: 08377 929-0

Mail: info@allmatic.de

www.allmatic.de

 

The data protection officer of the controller is.

ALLMATIC-Jakob Spannsysteme GmbH
Mrs Sina Schäfler
Jägermühle 10
87647 Unterthingau
Telephone: 08377 929-126
E-mail: s.schaefler@allmatic.de

 

and the company named below for the respective network

 

Facebook: Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland. The supervisory authority is the Data Protection Commission, 21 Fitzwilliam Square South, Dublin 2, D02 RD28, Ireland, https://www.dataprotection.ie.

 

Instagram: Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland. The supervisory authority is the Data Protection Commission, 21 Fitzwilliam Square South, Dublin 2, D02 RD28, Ireland, https://www.dataprotection.ie.

 

Xing: New Work SE, Dammtorstraße 30, 20457 Hamburg, Deutschland, Phone: +49 40 419 131-0, E-mail: info@xing.com. The data protection officer is Felix Lasse, Am Strandkai 1, 20457 Hamburg, https://www.xing.com/support/contact/security/data_protection. The supervisory authority is the Hamburg Commissioner for Data Protection and Freedom of Information, Ludwig-Erhard-Str. 22, 20459 Hamburg, www.datenschutz-hamburg.de.

 

YouTube: Google Ireland Ltd., Gordon House, Barrow St., Dublin 4, Irland. The supervisory authority is the Data Protection Commission, 21 Fitzwilliam Square South, Dublin 2, D02 RD28, Ireland, https://www.dataprotection.ie/.

 

LinkedIn: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2. The data protection officer can be contacted at https://www.linkedin.com/help/linkedin/ask/TSO-DPO. The supervisory authority is the Data Protection Commission, 21 Fitzwilliam Square South, Dublin 2, D02 RD28, Ireland, https://www.dataprotection.ie.

 

  1. GENERALLY COLLECTED DATA

When you visit our website on the respective social network, your IP address and other information is stored. The other information results from the data mentioned in Section 4 that we process and from the data that the respective network processes (for more information, see Section 6). Some of the data is stored on your end device using cookies. Cookies are small text files that are sent to your browser by a web server as soon as you visit a website and are stored locally on your end device (PC, notebook, tablet, smartphone, etc.) and saved on your computer and provide the user (i.e. us) with certain information. Cookies do not cause any damage to the computer and do not contain viruses. Each cookie contains a characteristic string of symbols (so-called cookie ID) that enables the browser to be uniquely identified when the website is called up again.

If you wish to avoid data being used by the social network, you should log out of the social network or deactivate the “stay logged in” function, delete the cookies on your device and close and restart your browser. You can then visit our fan page without revealing your own ID. Please note, however, that you will then not be able to use any interactive functions, as you would have to log in again to do so.

You can also deactivate or restrict the use of cookies by selecting the appropriate settings in your browser software. In this case, however, you may not be able to access our page on the social network.

 

  1. DATA PROCESSED BY US IN THE SOCIAL NETWORKS
    • Facebook
      • PageInsights

We ourselves use the respective statistical evaluations (PageInsights) that the social network makes available to us. We are currently unable to turn this off or modify it. We collect the following data as a result:

  • Statistical figures on people’s actions: including visits to our site, viewing posts, subscribing to pages, marking, recommending, commenting, sharing, type of reactions, performance of posts, clicks, negative feedback, conversations, views of our store or interactions there, our events (ticket sales, clicks, registrations, guest contributions) or interactions there (link usage, tickets sold, people reached), use of the website, telephone number, plan route buttons or other buttons on our site.
  • Statistical data on the actions themselves and the persons who carried out the actions or on their browsers/apps used: access times, location (estimated from the IP address or, for logged-in users, from the user profile), language code (from the http header of the browser and/or the language setting); age/gender data (from the user profile; only for logged-in users); previously visited website (from the http header of the browser); use of a computer or mobile device (from the browser user agent or the app attributes); Facebook user ID (only for logged-in users).
  • If we post events, live videos, stories or other items, the performance data is also evaluated, i.e. the number of views or the duration of the views, the number of interactions, the demographic target group, etc.

We receive the evaluations of the data mentioned in this paragraph anonymously, whereas Facebook receives the data without anonymization.

Cookies are used to determine whether someone is logged in to Facebook (see cookie policy at https://www.facebook.com/policies/cookies). Most actions are not possible without a login.

The legal basis for the collection of the above-mentioned data by us for statistical purposes is Art. 89 GDPR and, as far as sensitive data is concerned, § 27 BDSG in conjunction with. Art. 9 para. 1 in conjunction with. Art. 22 para. 2 sentence 2 GDPR. The data is only processed by us in anonymized form. Another legal basis for this is Art. 6 para. 1 lit. a) GDPR; this applies in particular to the marketing purposes also pursued with the PageInsights. We also have a legitimate interest in this. By anonymizing the data, your rights are largely safeguarded.

Purpose: We use the data to find out which posts visitors interact with (or not). We can use the results to build and expand our target group, provide them with interesting events, information etc. tailored to their target group and optimize our content. The reach and contribution statistics allow us to recognize which contributions have received the most attention; the action and contribution statistics allow us to recognize how we can motivate people to interact more; the call statistics allow us to address the content to specific target groups.

Deletion: The statistical data will be deleted after 90 days at the latest. As already stated, the statistical data is collected without us currently having the option of opting out. If you do not want this, you can configure this under Settings. Otherwise, please contact the social network directly at the addresses given in section 2.

  • Interactions/messages

We collect content, communications and other information that you provide when you visit our fan page and interact with us via it, see above. Based on this, we collect and process the content you communicate and the way in which you interact. We process the content of the message and the time in each case.

We would like to point out that if you have a Facebook profile yourself, we are also able to track your networks (groups, connected pages) and connections and view the information you have posted there (photos, posts, information, etc.) based on your interaction. In doing so, you may also disclose sensitive data in accordance with Art. 9 GDPR. If we collect this data, we will only collect and evaluate it anonymously without the possibility of drawing conclusions about a person. This serves to learn more about our target customer group and to better tailor our advertising/products to our customers. We use the data to find out which posts and information you interact with (or not). With the help of the results, we can build and expand our target group and provide them with interesting events, information etc. tailored to their target group and optimize our content. We also recognize which contributions have received the most attention. In addition, we want to know which visitors view our profile and how this came about. This also helps us to find out more about our target customer group and to better tailor our advertising/products to you.

We would like to point out that the data can be viewed not only by us and Facebook, but also by their affiliated partners/companies and by all subscribers, fans, contributors, commentators and other persons who click on our page or surf on the pages of our subscribers, fans, contributors and commentators.

The legal basis for the collection of the aforementioned data is Art. 6 para. 1 lit. a) GDPR. Subscribers, fans, contributors and commenters give their consent to the collection by voluntarily interacting with our fan page in conjunction with their acceptance of Facebook’s terms of use.

The data is usually removed when our site is deleted or temporarily removed when deactivated. You can also delete your connections to us by deactivating the Like buttons again. If we receive a revocation and we have the option of deleting your data (e.g. comments on our pinboard etc.), we will take the necessary steps to do so. The revocation does not affect the legality of the processing of your data carried out on the basis of your consent until any revocation. Alternatively, we ask you to contact the social network directly at the addresses given in section 2, as we cannot trace which data originates from you due to the extensive anonymization of the data. You can prevent the collection of your data by selecting the appropriate privacy settings on Facebook.

You can also send us messages via the social network. In this case, the personal data transmitted with the message (name/user name; profile picture) will be stored. In this case, you agree that we may also contact you via this communication channel in order to answer your request. No data will be passed on to third parties in this context. The data will be used exclusively for processing the conversation. The legal basis for the processing of data transmitted in the course of sending a message is Art. 6 para. 1 lit. f) GDPR. The legitimate interest lies in processing your request. If the message/contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b) GDPR. The data from the message will be deleted when the respective conversation has ended. However, if the conversation is aimed at concluding a contract, the data will be deleted in accordance with the statutory retention periods; this is usually 10 years. A revocation option exists if the message does not serve the preparation or execution of a contract. Please note that the request may not be processed in this case.

  • Events

We also use the “Events” tool on Facebook. If you have liked our fan page, we can invite you to events. You can like, share, comment on or be interested in the events or take part in them. You can also ask us questions about the event at any time. You can post contributions as part of our events, provided we grant this authorization. We statistically record the number of participants and the associated interactions.

The purpose of data processing is to learn more about our participants and interested parties and to better tailor our events to you. Facebook also makes it easier for us to plan the event and to register participants.

The information can be seen by the host of the event, i.e. by us, and possibly by all persons on and outside of Facebook. Incidentally, the data will only be passed on to any co-organizers.

If you book participation in the event (free of charge or for a fee), the legal basis for the processing is Art. 6 para. 1 lit. b) GDPR. If you interact with us in the context of or due to the events (in particular liking, commenting, recommending, contributions, etc.), the legal basis is Art. 6 para. 1 lit. a) GDPR, whereby you give your consent by implication with the respective interaction. If you show interest in our event or ask questions in the context of this event, the legal basis for the processing of the data processed in this way is Art. 6 para. 1 lit. f) GDPR, as this enables us to plan the event better or to evaluate the interest in the topic of the event etc. in order to align our event marketing with this in the future. In addition, this event only has added value for you if you contact us. This is also our legitimate interest.

The data is stored by Facebook and then automatically deleted. Insofar as the legal basis is your consent, you can revoke this at any time. If we receive a revocation and we have the option of deleting your data (e.g. comments on our pinboard, etc.), we will take the necessary steps to do so. The revocation does not affect the legality of the processing of your data carried out on the basis of your consent prior to any revocation.

  • Facebook stories

We also use the “Stories” tool on Facebook. You can like, share and comment on these and otherwise interact with us and others. As a result, we collect and process the content you communicate (hashtags, messages, etc.) and the way in which you interact. In each case, we process the content of any message and the time. The purpose of collecting data is to learn more about our fans and to better tailor our advertising/products to them.

Only we as the authors see your comments and reactions to the stories. However, we would like to point out that the data is also processed by Facebook.

The legal basis for the collection of the aforementioned data is Art. 6 para. 1 lit. a) GDPR. You give your consent to the collection by voluntarily interacting with our story in connection with the acceptance of Facebook’s terms of use.

If we receive a revocation and we have the option of deleting your data (e.g. messages), we will take the necessary steps to do so. The revocation does not affect the legality of the processing of your data based on your consent prior to any revocation. You can also delete your connections to us by deactivating the interaction buttons again.

  • Call-to-action buttons

You can use the button to contact us directly, obtain further information or conclude a contract. The legal basis for processing the data transmitted in the course of sending a message is Art. 6 para. 1 lit. f) GDPR. The legitimate interest lies in processing your request. If this is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b) GDPR. The personal data collected will be stored until the end of the statutory retention period for merchants (6, 8 or 10 years after the end of the calendar year in which the contractual relationship was terminated) and then deleted. By way of exception, this does not apply if we are obliged to store the data for a longer period due to tax or commercial law retention obligations (in accordance with the German Commercial Code (HGB), German Criminal Code (StGB) or German Fiscal Code (AO)) or if you have consented to storage beyond this period. If the legal basis is your consent, you can also withdraw it. The withdrawal of consent does not affect the lawfulness of the processing of your data based on your consent prior to its withdrawal.

  • Meta Business Suite

We use Meta BusinessSuite to create evaluations of advertising strategies, plan our advertising, create and maintain our store, place and evaluate advertisements, provide advertising reports, manage our media library and page settings, plan contributions and settle advertising accounts, manage events and manage forms. We can also define our target groups.

The legal basis for this is Art. 6 para. 1 lit. f) GDPR, as this is the only way we are able to use the social network in a way that makes business sense, plan budgets sensibly and define our customer strategy.  Any use of the target group settings is based on Art. 6 para. 1 lit. f) GDPR, as we only select those interested parties for whom we are potentially interesting and other people are not even bothered about this. This is in our interest and in the interest of all persons. In all other respects, the same applies as stated in sections 4.1.1 and 4.1.2.

 

  • Instagram

Instagram is an offer from Meta. However, to avoid confusion, we always use the term Instagram below, even when referring to the operator.

  • Page Insights

We ourselves use the respective statistical evaluations (page insights) that the social network makes available to us. We are currently unable to turn this off or modify it. We collect the following data as a result:

  • Statistical figures on people’s actions: Viewing our profile, our website, our post, clicks on our buttons or the route planner, interactions with our posts and the type of interaction/reaction.
  • Interactions are, depending on the type of post, tags, comments, sharing or saving our content, negative feedback such as reporting as spam or hiding, like clicks, leaving or clicks on next stories, clicks on links.
  • Statistical payments by the way: Reaching new subscribers through our posts, reach, average percentage of a video content viewed.

Data on our target group is also collected: Top locations, average age, gender, most active times, interests, etc.

According to Instagram, no insights are created in the EU in connection with messages.

If we post live videos, stories or other content, the performance data is also evaluated according to the above-mentioned data.

We receive the evaluations of the data mentioned in this paragraph anonymously, whereas Instagram receives the data without anonymization. Cookies are used to determine whether someone is logged in to Instagram (see cookie policy at https://www.facebook.com/policies/cookies). Most actions are not possible without a login. It is only possible to visit a page or click on a photo/video to view it.

The legal basis for the collection of the above-mentioned data by us for statistical purposes is Art. 89 GDPR and, as far as sensitive data is concerned, § 27 BDSG in conjunction with. Art. 9 para. 1 in conjunction with. Art. 22 para. 2 sentence 2 GDPR. The data is only collected by us in anonymized form. Another legal basis for the collection of the aforementioned data is Art. 6 para. 1 lit. a) GDPR. You give your consent to the collection by accepting the terms of use of the respective social network and the posts based on them.

Purpose: We use the data to find out which posts you interact with (or not). With the help of the results, we can build and expand our target group and provide them with interesting events, information etc. tailored to their target group and optimize our content. The reach and contribution statistics allow us to recognize which contributions have received the most attention; the action and contribution statistics allow us to recognize how we can motivate people to interact more; the call statistics allow us to address the content to specific target groups.

Deletion: This data is made available for up to 90 days in each case. As already stated, the statistical data is collected without us currently being able to opt out. If you do not want this, you can configure this under Settings. Otherwise, please contact the social network directly at the addresses given in section 2.

  • Interactions/messages

We collect content, communications and other information that you provide when you visit our fan page and interact with us via it, see above. Based on this, we collect and process the content you communicate (hashtags, messages, etc.) and the nature and type of interactions. We process the content of the message and the time in each case. Please note that if you have an Instagram profile yourself, your interaction also enables us to track your networks (subscriptions) and connections and to view the information you have posted there (posts, etc.). In doing so, you may also disclose sensitive data in accordance with Art. 9 GDPR.

If we do this, it helps us to learn more about our target customer group and to better tailor our advertising/products to you. We may mention and show your name, posts and interactions in a post (story, etc.), e.g. because your post or interaction serves as a review for us.

We use the option of a QR code provided by Instagram. This is a QR code. If you scan it, you will follow our Instagram profile. When you scan this QR code, you transmit the same data as when you follow our profile.

We would like to point out that the data can be viewed not only by us and Instagram, but also by their affiliated partners/companies as well as by all subscribers, contributors, commentators and other persons who click on our site or surf on the pages of our subscribers, contributors and commentators.

The legal basis for the collection of the aforementioned data is Art. 6 para. 1 lit. a) GDPR. Subscribers, contributors and commenters give their consent to the collection by voluntarily interacting with our fan page in conjunction with their acceptance of Instagram’s terms of use.

The data is usually removed when our site is deleted or temporarily removed when deactivated. You can also delete your connections to us by deactivating the Like buttons again. If we receive a revocation and we have the option of deleting your data, we will take the necessary steps to do so. The revocation does not affect the legality of the processing of your data based on your consent until any revocation. The data will be stored in our Instagram statistics for a period of up to 24 months in some cases and then automatically deleted. This also applies in the following, unless we inform you otherwise. You can prevent the collection of your data by selecting the appropriate privacy settings on Instagram.

You can also send us messages via the social network. In this case, the personal data transmitted with the message (name/user name; profile picture) will be stored; if you send us videos, voice messages or pictures, the information transmitted in this way will also be processed by Instagram and possibly by us (image, voice, etc.). In this case, you agree that we may also contact you via this communication channel in order to respond to your request. No data will be passed on to third parties in this context. The data will be used exclusively for processing the conversation. The legal basis for the processing of data transmitted in the course of sending a message is Art. 6 para. 1 lit. f) GDPR. The legitimate interest lies in processing your request. If the message/contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b) GDPR. The data from the message will be deleted when the respective conversation has ended. However, if the conversation is aimed at concluding a contract, the data will be deleted in accordance with the statutory retention periods; this is usually 10 years. A revocation option exists if the message does not serve the preparation or execution of a contract. Please note that the request may not be processed in this case.

  • Instagram posts, stories, reels and guides

We also use stories, reels and guides on Instagram. You can like, share and comment on these and otherwise interact with us and others. As a result, we collect and process the content you communicate (hashtags, messages, etc.) and the way in which you interact. In each case, we process the content of any message and the time. We use this data to learn more about our fans and to better tailor our advertising/products to them.

Instagram Stories with Swipe Up function: From a certain number of followers, we can provide stories with a swipe-up link and post it. If you use this link, this will be recorded statistically (reach, number of link clicks). We use this data to learn more about our fans and to better tailor our advertising/products to them.

Only we as the authors see your comments and reactions to the stories. However, we would like to point out that the data is also processed by Instagram. We can also link our stories to various functions. If you use the functions, we can see your details, opinions, etc.

We can integrate call-to-action buttons on our profile and in posts (call and SMS or email button). If you click on these, you can contact us via the selected media or carry out other actions (e.g. reservations etc.).

The legal basis for the collection of the aforementioned data is Art. 6 para. 1 lit. a) GDPR. You give your consent to the collection by voluntarily interacting with our story in connection with the acceptance of Instagram’s terms of use. The legal basis for the processing of data transmitted in the course of sending a contact is Art. 6 para. 1 lit. f) GDPR. The legitimate interest lies in processing your request. If the contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b) GDPR.

If we receive a revocation and we have the option of deleting your data (e.g. messages), we will take the necessary steps to do so. The revocation does not affect the legality of the processing of your data based on your consent prior to any revocation. The data from a message will be deleted when the respective conversation has ended. However, if the conversation is aimed at the conclusion of a contract, the data will be deleted in accordance with the statutory retention periods; this is usually 10 years. A revocation option exists if the message does not serve the preparation or execution of a contract. Please note that the request may not be processed in this case.

  • Meta Business Suite

We use Meta BusinessSuite to create evaluations of advertising strategies, plan our advertising, create and maintain our store, place and evaluate advertisements, provide advertising reports, manage our media library and page settings, plan contributions and settle advertising accounts, manage events and manage forms. We can also define our target groups.

The legal basis for this is Art. 6 para. 1 lit. f) GDPR, as this is the only way we are able to use the social network in a way that makes business sense, plan budgets sensibly and define our customer strategy.  Any use of the target group settings is based on Art. 6 para. 1 lit. f) GDPR, as we only select those interested parties for whom we are potentially interesting and other people are not even bothered about this. This is in our interest and in the interest of all persons. In all other respects, the above applies to sections 4.2.1 and 4.2.2.

 

  • Xing
    • Interactions, statistics, messages

We ourselves use functions that the social network makes available to us as well as other information that you provide when you visit our fan page or interact with us via it. As a result, we collect and process the following data: among others Publicly viewable contact data of other users; Reactions of other users to the posts and/or comments posted/shared/commenting by us ; Notifications from Xing about birthdays etc.; Anonymized statistical information about visitors; Messages (especially about who read them and when); Contact paths through which you may be connected. If we create surveys and you take part in them, we will also receive the results of your answers.

We would like to point out that if you have a Xing profile yourself, we are also able to track your networks and connections and view the information you have posted there (photos, posts, information about you personally, etc.) based on your interaction. In doing so, you may also disclose sensitive data in accordance with Art. 9 GDPR. If we collect this data, we will only collect and evaluate it anonymously without any possibility of drawing conclusions about a person.

We use the data to find out which posts and information our visitors interact with (or not). With the help of the results, we can build and expand our target group and provide them with interesting events, information etc. tailored to their target group and optimize our content. We also recognize which posts have received the most attention. In addition, we want to know which visitors view our profile and how this came about. This also helps us to learn more about our target customer group and to better tailor our advertising/products to our customers.

You can prevent the collection of your data by selecting the appropriate privacy settings.

We would like to point out that the data can be viewed not only by us and Xing, but also by their affiliated partners/companies and by all subscribers, contributors, commentators and other persons who click on our site or surf on the pages of our subscribers, contributors and commentators.

Insofar as this is purely statistical and therefore anonymous data, the legal basis is Art. 89 GDPR. Another legal basis for the collection of the aforementioned data is Art. 6 para. 1 lit. a) GDPR. You give your consent to the collection by accepting the terms of use of the respective social network and the posts based on them.

Deletion: The statistical data is deleted after 90 days (information about visitors). The other data is usually deleted when our site is deleted or temporarily removed when deactivated. You can also delete your connections to us by deactivating the Like buttons again. If we receive a revocation and we have the option of deleting your data, we will take the necessary steps to do so. The revocation does not affect the legality of the processing of your data carried out on the basis of your consent until any revocation. In addition, the user can set the extent to which some data should be visible to others.

You can also send us messages via the social network. In this case, the personal data transmitted with the message (name/user name; profile picture, message) will be stored. In this case, you agree that we may also contact you via this communication channel in order to respond to your request. No data will be passed on to third parties in this context. The data will only be used to process the conversation. The legal basis for the processing of the data transmitted in the course of sending a message is Art. 6 para. 1 sentence 1 lit. f) GDPR. The legitimate interest lies in processing your request. If the message/contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 sentence 1 lit. b) GDPR. The data from the message will be deleted when the respective conversation has ended. However, if the conversation is aimed at concluding a contract, the data will be deleted in accordance with the statutory retention periods; this is usually 10 years. A revocation option exists if the message does not serve the preparation or execution of a contract. Please note that the request may not be processed in this case.

 

  • YouTube

We post videos on our YouTube channel. To evaluate these videos, we use the respective statistical evaluations that YouTube makes available to us. We are currently unable to deactivate or modify this. As a result, we collect the following data, among others Number of views and subscribers, access sources, interactions, target group information (number of viewers; times, age gender, countries, languages, etc.) We receive these evaluations anonymously in each case.

We also collect data from our fans, non-fans and people who have commented on or shared something. For this purpose, we learn the name (or just the user name), (if available) the profile picture, the time and the rating and, in turn, the information made publicly available by the persons, in particular about their own YouTube activities. If you subscribe to our channel, you will receive a notification from YouTube about new videos posted by us and will also see these in your subscription field. This data is the only way for us to find out which measures are worthwhile on our part and whether our videos are well received by the audience. This allows us to optimize our content.

The legal basis for the collection of the aforementioned data is Art. 6 para. 1 lit. a) GDPR. You give your consent to the collection by accepting the terms of use of the respective social network and the posts based on them.

The statistical data and comments are collected and processed by us. In addition, this data is processed by the social network and its associated partners/companies etc. The public comments and ratings of a video as well as the subscription to our channel/video can be viewed not only by us and the social network and its associated partners/companies, but also by all subscribers, contributors, commentators and other persons who click on our video.

We can also use a target group selection to ensure that our videos are played directly to our target group. However, the allocation is carried out by YouTube. The legal basis for this is Art. 6 para. 1 lit. f) GDPR, as this is the only way we can determine whether the effort involved in creating such a video is worthwhile and, if necessary, to make our videos more target customer-oriented.

The statistical, anonymized data can be accessed in accordance with YouTube’s unchangeable settings for the duration specified by YouTube. The remaining interaction data is irrevocably removed when our site is deleted.

As already communicated, the statistical data is collected without us currently being able to opt out. For this reason, we cannot comply with your right to object for technical reasons. We therefore ask you to contact the social network directly at the addresses given in section 2. You also have the option to object to comments as follows: We can delete comments on request, but also if we consider their content to be unlawful. With regard to further interactions, we ask you to contact YouTube yourself, as we also have no influence on this. Furthermore, if you do not wish your data to be collected, you can set your privacy settings accordingly at https://myaccount.google.com/privacycheckup?utm_source=pp&utm_medium=Promo-in-product&utm_campaign=pp_intro&hl=de.

 

  • LinkedIn
    • Statistics

We ourselves use the respective statistical evaluations that the social network makes available to us. We are currently unable to turn this off or modify it. We collect the following data as a result:

  • We collect the following statistics on our personal page: Number of profile visitors, companies and industries of visitors, job titles of individuals.
  • With regard to our company website, we collect statistics as follows:
  • For visitors in general: page views, visitors, clicks on buttons, demographic data (areas of activity, location, career level, company size, industry) and their activities (inquiries, comments, mentions, posts, shares, reactions). The retention period is 30 days.
  • For updates: Impressions, clicks, reactions, comments, shares, engagement rate (the number of interactions plus the number of clicks and followers gained, divided by the number of impressions), followers; for videos, the minutes viewed and the number of viewers, if viewed for longer than 3 seconds. The retention period is 1 year.
  • For followers: number; newly added followers over a certain period of time; data on how followers were acquired via ads and sponsored content, list of current followers, demographic data from a statistical perspective (location, field of activity, career level, industry, company size). The retention period is 1 year.

The data is regularly collected if you are logged in to LinkedIn when you visit our profile. Cookies are used to determine whether someone is logged in to LinkedIn. Most actions are not possible without a login.

Purpose: We use the data to find out which posts you interact with (or not). With the help of the results, we can build and expand our target group and provide them with interesting information etc. tailored to their target group, optimize our content and gain more followers. We also recognize which posts have received the most attention. In addition, we want to know which visitors view our profile and how this came about. This also helps us to learn more about our target customer group and to better tailor our advertising/products to our customers. The statistics allow us to recognize which posts have received the most attention and how we can address the content to specific target groups.

The legal basis for the collection of the above-mentioned data by us for statistical purposes is Art. 89 GDPR. Another legal basis for the collection of the aforementioned data is Art. 6 para. 1 lit. a) GDPR. You give your consent to the collection by accepting the terms of use of the respective social network and the posts based on them.

The statistical data is collected and processed by us. In addition, this data is processed by the social network and its associated partners/companies etc.

As already stated, the statistical data is collected without us currently having the option to opt out. If you do not want this, you can configure this under Settings. Otherwise, please contact the social network directly at the addresses given in section 2.

Contact synchronization: We have the option of synchronizing the contacts from our address book. The legal basis for this is Art. 6 para. 1 lit. a) GDPR, i.e. we only synchronize your contact if you consent to this.

We can also export data (articles, address book contacts, invitations, recommendations, messages, profiles, etc.). If this involves personal data, the legal basis is Art. 6 para. 1 lit. a) GDPR. You give your consent by accepting the LinkedIn terms of use.

You have the option to revoke your consent for the future at any time.

  • Interactions, messages, invitations

We also collect data from our followers and from people who have interacted with our website (networking, liking, commenting, sharing, etc.). For this purpose, we learn the name (possibly the user name of the account), the profile picture and, in turn, the information made publicly available by the persons. We also learn something about the opinion or you yourself via the comments. Please note that if you have a LinkedIn profile yourself, your interaction also enables us to track your networks (groups, connected pages) and connections and to view the information you have posted there (photos, posts, information about you personally, etc.). In doing so, you may also disclose sensitive data in accordance with Art. 9 GDPR. If we collect this data, we will only collect and evaluate it anonymously without drawing conclusions about a person.

We use the data to find out which posts and information you interact with (or not). With the help of the results, we can build and expand our target group and provide them with interesting events, information etc. tailored to their target group and optimize our content. We also recognize which contributions have received the most attention. In addition, we want to know which visitors view our profile and how this came about. This also helps us to learn more about our target customer group and to better tailor our advertising/products to you.

LinkedIn Stories with swipe up function: When we post stories, we can provide them with a swipe-up link. If you use this link, this is recorded statistically (reach, number of link clicks). This helps us to learn more about our fans and to better tailor our advertising/products to them.

The legal basis for the collection of the aforementioned data is Art. 6 para. 1 lit. a) GDPR. You give your consent to the collection by accepting the terms of use of the respective social network and the posts based on them or through your interaction.

The data can be viewed not only by us and the social network and its associated partners/companies, but also by all subscribers, fans, contributors, commentators and other persons who click on our page or surf on the pages of our subscribers, fans, contributors and commentators.

You can also send us messages via the social network. In this case, the personal data transmitted with the message (name/user name; profile picture, time of the message) will be stored. In this case, you agree that we may also contact you via this communication channel in order to respond to your request. No data will be passed on to third parties in this context. The data will only be used to process the conversation. The legal basis for the processing of the data transmitted in the course of sending a message is Art. 6 para. 1 sentence 1 lit. f) GDPR. The legitimate interest lies in processing your request. If the message/contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 sentence 1 lit. b) GDPR. The data from the message will be deleted when the respective conversation has ended. However, if the conversation is aimed at concluding a contract, the data will be deleted in accordance with the statutory retention periods; this is usually 10 years. A revocation option exists insofar as the message does not serve the preparation or execution of a contract. Please note that the request may not be processed in this case.

In addition, we may send you an invitation to follow us. You are free to decide whether or not to accept the invitation. If you are not yet a LinkedIn member, we will of course only send you an invitation if we have your consent in accordance with Art. 6 para. 1 lit. a) GDPR. If you are already a LinkedIn member, you have consented to receiving invitations by agreeing to the terms of use. In the event of acceptance, we will see that you have accepted and the time of acceptance.

You can prevent the collection of your data by declining our invitations/messages and not interacting with them. The data is usually removed when our account is deleted or temporarily removed when it is deactivated. You can also delete your connections to us by deactivating the interaction buttons again. If we receive a revocation and we have the option of deleting your data (e.g. comments on our pinboard etc.), we will take the necessary steps to do so. The revocation does not affect the legality of the processing of your data carried out on the basis of your consent until any revocation. Alternatively, we ask you to contact the social network directly at the addresses given in section 2, as we cannot trace which data originates from you due to the extensive anonymization of the data. You can also partially prevent the collection of your data by selecting the appropriate privacy settings on LinkedIn.

  • LinkedIn Ads

We use LinkedIn Ads with the aim of getting more profile views, more website visitors, more messages and to use campaigns in a more targeted way. Through targeted advertising, we can also lead potential interested parties to our website, draw attention to our profile and advertise job advertisements and/or events. Ads are targeted to specific audiences based on location, job function/title, field of study, years in the profession, language, location, career level, industry, company size. As soon as LinkedIn members see an ad or interact with it, we receive a statistical report on this, for example, which states that 30% of the selected target groups are from Munich. Otherwise, LinkedIn does not pass on any personal data as part of the ads, only demographic data (i.e. job title, company, location, etc.). We only receive data if the viewer of the ad contacts us (see section 4.6.2).

When you click on a text ad, you are taken to a website selected by us. TextAds are target group-based. We combine these with conversion tracking.

We use this to send message ads or conversion ads, which are linked to an action button (link, etc.). With message ads, we receive demographic reports (activity, company, type of response). We combine these ads with conversion tracking.

We also use conversion tracking by inserting a LinkedIn Insight tag or an event-specific pixel on our website to process how you get from LinkedIn to our website. We can link this tracking to goals (visit to our website, purchase, downloads, registration, other actions). This tag sets a browser cookie in your browser and enables the collection of IP address, time and page events (e.g. page views). You can find more information on this at https://de.linkedin.com/legal/l/cookie-table?#authentication. According to LinkedIn, the data collected by the cookie is shortened and pseudonymized and deleted after 180 days. We only receive information from Instagram about the website target group and ad performance. We then receive statistics from LinkedIn on downloads, registrations, runs, views, clicks, interactions, demographic data (job title, company, industry, country), participation in conversations.

In addition, we use the LinkedIn Audience Network, through which our advertisements are also presented on third-party websites.

The purpose of the ads and LinkedIn Audience Network is to find out which campaigns and information are well received. This allows us to optimize our content and marketing. This also helps us to better tailor our advertising/products to you. It also serves to measure the effectiveness and distribution of the advertisements.

The legal basis for the collection of data in the context of advertising and conversion ads and LinkedIn Audience Network is Art. 6 para. 1 lit. a) GDPR. You give your consent to the collection by voluntarily activating the tools or contacting us via them, in conjunction with accepting LinkedIn’s terms of use. Insofar as a contract is concluded as a result, the legal basis is Art. 6 para. 1 lit. b) GDPR. The processing of statistical data is based on Art. 6 para. 1 lit. f) GDPR; the legitimate interest lies in the stated purpose.

We would like to point out that the data can be viewed not only by us and LinkedIn, but also by their affiliated partners/companies. The website on which our advertisements appear due to the use of LinkedIn Audience Network does not receive any data.

You can prevent the collection of your data by, for example, not accessing our website via LinkedIn and not clicking on any buttons or following any links or, alternatively, deactivating any connection (e.g. likes). The data is usually removed when our LinkedIn account is deleted or temporarily removed if deactivated. If we receive a revocation and we have the option of deleting your data, we will take the necessary steps to do so. The revocation does not affect the legality of the processing of your data based on your consent until any revocation. Alternatively, we ask you to contact the social network directly at the addresses given in section 2, as we cannot trace which data originates from you due to the extensive anonymization of the data. You can also partially prevent the collection of your data by selecting the appropriate privacy settings on LinkedIn.

  • Lead Gen Form

We use the Lead Gen Form tool, which is linked to advertisements. With Lead Gen Forms, we create forms to generate leads for our company and evaluate them. The leads also extend to our product pages (service pages). This involves processing the data that is automatically filled out from your profile and transmitted to us in accordance with our created form (e.g. profile information such as contact, profession, etc., demographic data, education, contact data and data requested individually by us) as soon as you click the send button. We can address the forms to specific target groups with regard to location, job function/title, fields of study, years of professional experience as well as language, location, career level, industry, company size.

We receive leads with conversion rates via the forms. This allows us to find out what you think of us and our company, who our potential target customers are or to draw attention to certain services.

The legal basis for this is Art. 6 para. 1 lit. a) GDPR. You declare your consent by ticking the checkboxes or clicking the button. The target group settings are used on the basis of Art. 6 para. 1 lit. f) GDPR, as we only select those interested parties for whom our live video is potentially interesting and other people are not even bothered about this. This is in our interest and in the interest of all persons.

To create the forms, we can use our CRM platform, which we can use to integrate the forms. According to LinkedIn, the member profile data is stored for 90 days. Statistical analyses and performance indicators (but only anonymized) are also stored in accordance with LinkedIn’s retention periods (currently up to 365 days). You can revoke your consent at any time. If we receive a revocation and we have the option of deleting your data, we will take the necessary steps to do so. The revocation does not affect the legality of the processing of your data carried out on the basis of your consent until any revocation. Alternatively, we ask you to contact the social network directly at the addresses given in section 2, as we cannot trace which data originated from you due to the extensive anonymization of the data.

  • LinkedIn Talent Solutions- LinkedIn Jobs

We publish job advertisements on LinkedIn. You can apply accordingly by message and/or via the website www.allmatic.de. If you apply via the website www.allmatic.de, we refer you to the privacy policy mentioned there.

If you apply to us, we process the information that we receive from you as part of the application process, i.e. information from the

  • Correspondence (in particular from a possible letter of application, attachments, in particular certificates, as well as the CV)
  • Profile details of the person on LinkedIn (e.g. slogan, location, professional background, education, telephone number)

If you apply via message, we will also process

  • e-mail adress
  • Information from the suitability questions asked of you, insofar as we ask such questions
  • Any other information that is transmitted via the message

We can view and manage (in particular filter, evaluate and categorize) the applications submitted via LinkedIn centrally via LinkedIn. LinkedIn sometimes uses this to learn which applicants we are looking for in order to suggest people who match our criteria. For this purpose, LinkedIn collects statistics with the following data: location, position, candidate flow, qualification level, education.

If you send us a photo of yourself, information on your racial or ethnic origin may be derived from it. We would like to point out that we do not have the photos explicitly examined with regard to such information, biometric data or health data, but sometimes clues can be obtained simply by looking at the picture.

Your data will initially be processed exclusively for the purpose of carrying out the application procedure. If your application is successful, the data will become part of your personnel file and may be used to carry out and terminate the employment relationship. If we are currently unable to offer you employment, we will process your data in order to defend ourselves against any legal claims, in particular due to alleged discrimination in the application process. If you receive cost reimbursements, the corresponding accounting documents will be processed to fulfill the retention obligations under commercial and tax law. The legal basis for data processing is therefore Art. 6 para. 1 lit. b) GDPR, insofar as the data processing serves to decide on the establishment of an employment relationship and insofar as the data is then included in the employment relationship. If the storage serves to safeguard claims, the legal basis is Art. 6 para. 1 lit. f) GDPR; the same applies to the central administration by LinkedIn. The legitimate interest here is the receipt of evidence documents for possible defense. With regard to administration, the legitimate interest is that we want to focus on suitable and interested persons. In this way, we also ensure that you are not confronted with requests even though the position does not suit you. We process information and documents that are not required for the aforementioned purposes on the basis of your implied consent pursuant to Art. 6 para. 1 lit. a) GDPR, which you have given us by sending it to us. Insofar as you receive cost reimbursements from us, the legal basis is Art. 6 para. 1 lit. c) GDPR. The legal basis for the statistics is Art. 89 GDPR and Art. 6 para. 1 lit. f) GDPR.

We store the data required for the successful application and for the employment relationship until the end of the employment relationship and for a period of up to 3 years thereafter. We process the data relating to an application that we had to reject for a period of 6 months after sending the rejection in order to safeguard our legitimate interests. If claims are made against us as part of a process, we store the data until the process is completed. This also applies accordingly to data received voluntarily. If you receive cost reimbursements, the corresponding accounting documents will be stored until a maximum of March 31 of the eleventh calendar year after payment in order to comply with commercial and tax law retention obligations; in the case of commercial and business letters and other tax-relevant documents, the seventh calendar year after their creation.

 

  1. RIGHTS OF THE DATA SUBJECT VIS-À-VIS US

We would like to inform you of your rights below. Please note that we are unfortunately only able to provide limited information because we receive the data collected by the social network in anonymized form, i.e. we only collect anonymized data in this sense. Therefore, we cannot assign a request to a person.  However, we can assign your identity and guarantee your rights to the extent that we collect your data directly, e.g. on the basis of a request, a like, etc.

  • Rights towards us

You have the right to request information from us at any time about the personal data we have stored about you (Art. 15 GDPR). This also applies to the recipients or categories of recipients to whom this data is disclosed and the purpose of storage.

In addition, you have the right to request the correction of incorrect or incomplete data under the conditions of Art. 16 GDPR and/or the deletion of stored data under the conditions of Art. 17 GDPR. Deletion is only possible if the processing is not required to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.

You have the right to demand the restriction of processing under the conditions of Art. 18 GDPR if you dispute the accuracy of your data, if the processing is unlawful and we refuse to delete it, if you need the data to assert legal claims or if you have lodged an objection to the processing.

Furthermore, you can request a data transfer at any time under the conditions of Art. 20 GDPR.

If the data collection is based on consent, you can revoke your consent to us at any time. As a result, we may no longer process this data in the future.

If personal data is processed for the performance of tasks carried out in the public interest (Art. 6 para. 1 sentence 1 lit. e GDPR) or to safeguard legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR), you can object to the processing of your personal data at any time with effect for the future. In the event of an objection, we must refrain from any further processing of your data for the aforementioned purposes, unless

  • there are compelling legitimate grounds for the processing which override your interests, rights and freedoms, or
  • the processing is necessary for the establishment, exercise or defense of legal claims.

For further information, please refer to the full text of the GDPR.

Please send all requests for information, requests for information, revocations or objections to data processing by e-mail to our data protection officer in accordance with Section 2 or to the person responsible named under Section 2. You also have the option of complaining to the competent supervisory authority about data protection issues. The authority responsible for us is the Bavarian State Office for Data Protection Supervision, Promenade 27, 91522 Ansbach.

In addition, we refer below to the special features of the respective social networks:

  • Facebook

In accordance with the agreement between Facebook Ireland and us on the processing of Insights data, Meta Platforms Ireland Ltd. is responsible for providing information on the processing of the aforementioned Page Insights in response to inquiries. We will therefore forward your request with name and e-mail address to Meta Platforms Ireland Ltd. which will assist us in answering or implementing the request.

Meta Platforms Ireland Ltd. has also assumed primary responsibility for the processing of Insights data in accordance with Section 2 (1) and has undertaken to fulfill all obligations regarding the processing of data, in particular the rights of data subjects. Accordingly, further data subject rights to rectification, portability, erasure and objection must also be asserted with Meta Platforms Ireland Ltd (see section 2). The Irish Data Protection Commission, see https://www.dataprotection.ie/, has been declared responsible for complaints against Meta Platforms Ireland Ltd. and us regarding the processing of data for Page Insights. Insofar as the legal basis for data processing is Art. 6 para. 1 lit. c) or e) GDPR, the supervisory authority named in Section 5.1 is responsible for complaints.

  • Other networks

Furthermore, the social networks have not taken any explicit implementation measures for the rights of data subjects under data protection law, so that we can currently only advise you to assert the following rights against the social network. As far as data that you disclose to us is concerned, we will also implement this as far as technically possible.

 

  1. PROCESSING OF DATA BY THE SOCIAL NETWORK AND FORWARDING OF DATA

The social network collects various information from you. Unfortunately, we cannot tell you for what purposes, to what extent, for how long, in what way and to which recipients the data is processed by the respective social network. We therefore refer you to the privacy policy of the respective network with regard to the data and the purposes for which the data is collected and the recipients of this data.

The rights of the GDPR are also available to you vis-à-vis the social network:

  • You have the right to request information about the personal data stored about you at any time (Art. 15 GDPR). This also applies to the recipients or categories of recipients to whom this data is disclosed and the purpose of storage.
  • In addition, you have the right to demand rectification under the conditions of Art. 16 GDPR and/or deletion under the conditions of Art. 17 GDPR and/or restriction of processing under the conditions of Art. 18 GDPR.
  • Furthermore, you can request data transfer at any time under the conditions of Art. 20 GDPR.
  • For more information, please refer to the full text of the GDPR.
  • If personal data is processed for the performance of tasks carried out in the public interest (Art. 6 para. 1 sentence 1 lit. e GDPR) or to safeguard legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR), you can object to the processing of your personal data at any time with effect for the future. In the event of an objection, any further processing of your data for the aforementioned purposes must be discontinued unless there are compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is necessary for the establishment, exercise or defense of legal claims.

Please send all requests for information, requests for information, revocations or objections to data processing by e-mail to the address of the social network mentioned under point 2. You also have the option of complaining to the competent supervisory authority named there about data protection issues. These are also listed – if known – under Section 2.

Furthermore, you can revoke your consent to the processing of certain data or object to it in the social networks by making the appropriate settings. However, we refer you to the providers for this:

  • Facebook

You can find more information on data protection at  http://de-de.facebook.com/about/privacy and https://www.facebook.com/policies/cookies. However, since Facebook also stores information about users’ end devices, Facebook is able to assign IP addresses to individual users. In addition, Facebook is able to track that you have visited our site and how you have used it.

Meta Platforms Ireland Ltd. is based in the USA. This means that the data is also transferred to the USA. We have entered into various agreements with Meta regarding Facebook for the protection of personal data,

Meta Platforms Inc. is also certified under the Data Privacy Framework, see https://www.dataprivacyframework.gov/s/participant-search.

Settings and objections to the use of data for advertising purposes are possible within the profile settings at https://www.facebook.com/settings?tap=ads.

  • Instagram

You can find more information on data protection at https://help.instagram.com/519522125107875 and https://help.instagram.com/1896641480634370?ref=ig. We would also like to point out the following:

Instagram as part of Meta Platforms Ireland Ltd. is based in the USA. This means that the data is also transferred to the USA. We have concluded a contract with Meta regarding Instagram in accordance with the standard contractual clauses of the European Commission.

Furthermore, Meta Platforms Inc. is certified under the Data Privacy Framework, see https://www.dataprivacyframework.gov/s/participant-search.

Settings and objections to the use of data for advertising purposes are possible within the profile settings under https://www.instagram.com/accounts/privacy_and_security/.

  • Xing

You can find more information on data protection at https://privacy.xing.com/de/datenschutzerklaerung.

Settings and objections to the use of data for advertising purposes are possible within the profile settings at https://www.xing.com/settings.

  • YouTube

You can find more information on data protection at https://policies.google.com/privacy?hl=de DSE and https://policies.google.com/technologies/product-privacy?hl=de.

Google is based in the USA. This means that data is also transferred to the USA. We have entered into the following agreements with Google to protect personal data: https://business.safety.google/adsprocessorterms/sccs/.

Google is also certified under the Data Privacy Framework, see https://www.dataprivacyframework.gov/s/participant-search.

Settings and objections to the use of data for advertising purposes are possible within the profile settings under https://myaccount.google.com/privacycheckup?utm_source=pp&utm_medium=Promo-in-product&utm_campaign=pp_intro&hl=de.

  • LinkedIn

You can find more information on data protection at https://de.linkedin.com/legal/privacy-policy and https://de.linkedin.com/legal/cookie-policy and under https://de.linkedin.com/legal/l/dpa.

LinkedIn is based in the USA. This means that the data is also transferred to the USA. We have entered into the following agreements with LinkedIn to protect personal data:  https://de.linkedin.com/legal/l/dpa

Settings and objections to the use of data for advertising purposes are possible within the profile settings under https://www.linkedin.com/psettings/.

 

  1. CHANGES TO THE PRIVACY POLICY

We reserve the right to change our data protection practices and these provisions in order to adapt them to changes in relevant laws, regulations, case law or requirements of the data protection authorities or to better meet your needs. Possible changes to our data protection practices will be announced here. Please note the current version date of the privacy policy.