We use cookies to enhance your experience. You can opt out of certain cookies. For more information, please refer to our privacy policy.
The Notch GmbH operates this website.
It is very important to us to handle and protect the data of our website visitors in a trustworthy manner. For this reason, we make every effort to comply with the requirements of the GDPR.
In the following, we explain how we process your data on our website. We use clear and transparent language to ensure that you understand what happens to your data.
Data protection applies to the processing of personal data. Personal data refers to any data that can personally identify you. For example, the IP address of the device (PC, laptop, smartphone, etc.) you are currently using. Such data is processed when "something happens" with it. For example, the IP address is transmitted from the browser to our provider and automatically stored there. This constitutes processing (according to Art. 4 No. 2 GDPR) of personal data (according to Art. 4 No. 1 GDPR).
These and other legal definitions can be found in Art. 4 GDPR.
The scope of data protection is regulated by laws. In this case, these are the GDPR (General Data Protection Regulation) as a European regulation and the BDSG (Federal Data Protection Act) as a national law.
In addition, the TTDSG supplements the provisions of the GDPR regarding the use of cookies.
The data controller responsible for the processing of data on this website is the data controller within the meaning of the GDPR. This is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data.
You can reach the data controller at:
Notch GmbH
Eifflerstraße 43, 22769 Hamburg
As we have already determined, there are data (e.g., IP address) that are automatically collected. This data is primarily required for the technical provision of the homepage. If we use or collect personal data or other data beyond that, we will inform you or ask for your consent.
You consciously provide us with other personal data.
You will find detailed information on this below.
The GDPR grants you comprehensive rights. These include, for example, free information about the origin, recipient, and purpose of your stored personal data. You can also request the correction, blocking, or deletion of this data or file a complaint with the responsible data protection supervisory authority. You can revoke your consent at any time.
You can find detailed information on these rights and how to exercise them in the last section of this privacy policy.
Data protection is more than just an annoying duty for us! Personal data has great value, and handling this data carefully should be a matter of course in our digitized world. Furthermore, as a website visitor, you should be able to decide for yourself what, when, and by whom your data is "happening." Therefore, we commit ourselves to comply with all legal provisions, collect only the data necessary for us, and treat it confidentially.
Disclosure and deletion of data are also important and sensitive issues. Therefore, we would like to inform you briefly in advance about our general approach to this.
Disclosure of data only occurs based on a legal basis and only when necessary. This may particularly be the case if it involves a so-called data processor, and a data processing agreement according to Art. 28 GDPR has been concluded.
We delete your data when the purpose and legal basis for processing.
This website is hosted externally. The personal data collected on this website is stored on the servers of the hosting provider. This includes both the automatically collected and stored log files (more details below) and any other data provided by website visitors.
External hosting is done for the purpose of securely, quickly, and reliably providing our website and is necessary for the performance of the contract with our potential and existing customers.
The legal basis for the processing is Art. 6(1)(a), (b), and (f) of the GDPR, as well as § 25(1) of the TTDSG, to the extent that consent includes the storage of cookies or access to information on the end device of the website visitor or user within the meaning of the TTDSG.
Our hosting provider processes only the data necessary to fulfill its service obligations and acts as our data processor, meaning that it is subject to our instructions. We have concluded a corresponding contract for order processing with our hosting provider.
We use the following hosting providers:
Webflow
Webflow, Inc., 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA.
https://webflow.com/legal/eu-privacy-policy
Amazon Web Services, Inc.
Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, L-1855, Luxembourg.
https://aws.amazon.com/privacy/?nc1=f_pr
The processing of personal data always requires a legal basis. The GDPR provides the following options in Article 6(1)(a) to (f):
In the following sections, we will provide you with the specific legal basis for each processing activity.
By visiting our website, we process personal data from you.
To protect this data from unauthorized access by third parties, we use SSL or TLS encryption. You can recognize this encrypted connection by the "https://" or lock symbol in your browser's address bar.
The following sections explain what data is collected when you visit our website, for what purpose, and on what legal basis.
When you access the website, certain information is automatically stored in server log files. This information includes:
This data is temporarily needed to display our website to you permanently and without problems. In particular, this data serves the following purposes:
Data Processing According to Art. 6(1)(f) of the GDPR and for our legitimate interest in processing this data, particularly in the functionality and security of the website.This data is stored pseudonymously whenever possible and deleted after achieving its respective purpose.
If server log files allow for the identification of the data subject, the data will be stored for a maximum period of 14 days. An exception applies when a security-related event occurs. In this case, the server log files will be stored until the elimination and final clarification of the security-related event.
Furthermore, no merging of this data with other data takes place.
CookiesGeneralThis website uses cookies. These are data records, information stored in your browser on your device, and related to our website.
Setting cookies can facilitate website navigation for visitors.
In our cookie consent tool, you will find all the information about the cookies we use on our website (if applicable, after your consent).
Declining CookiesYou can manage all cookies that are not technically necessary directly through our cookie consent tool.
Additionally, you can prevent the setting of cookies by adjusting your browser settings.
Here are the relevant links for commonly used browsers:
Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-und-website-daten-in-firefox-loschen
Google Chrome: https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=de
Microsoft Edge: https://support.microsoft.com/de-de/windows/löschen-und-verwalten-von-cookies-168dab11-0753-043d-7c16-ede5947fc64d
Safari: https://support.apple.com/de-de/guide/mdm/mdmf7d5714d4/web and https://support.apple.com/de-de/guide/safari/sfri11471/mac
If you use a different browser, it is recommended to enter the name of your browser and 'delete and manage cookies' into a search engine and follow the official link to your browser.
Alternatively, you can manage your cookie settings at www.aboutads.info/choices/ or www.youronlinechoices.com.
However, please note that comprehensive blocking/deletion of cookies may impair your use of the website.
Technically Necessary CookiesWe use technically necessary cookies on this website to ensure that our website works flawlessly and in accordance with applicable laws. They help make the website user-friendly. Some features of our website cannot be displayed without the use of cookies.
The legal basis for this is, depending on the individual case, Article 6(1)(b), (c), and/or (f) of the GDPR.
Technically Non-Necessary CookiesAdditionally, we use cookies on our website that are not technically necessary. These cookies serve, among other things, to analyze the website visitor's browsing behavior or provide functions of the website that are not technically essential.
The legal basis for this is your consent according to Article 6(1)(a) of the GDPR.
Technically non-necessary cookies are only set with your consent, which you can revoke at any time in the cookie consent tool.
Data Processing through User InputOwn Data CollectionWe offer the following service on our website: Booking our software service.
For this, we collect the following data: Email, Name, Company Name, job title, company size.
The legal basis for this data processing is Article 6(1)(b) of the GDPR.
The data will be deleted as soon as the respective purpose is fulfilled and it is legally possible.
When you contact us via email, we process your email address and, if applicable, other data contained in the email. This information is stored on the mail server and, in part, on the respective devices. Depending on the nature of the inquiry, the legal basis for this processing is typically Article 6(1)(f) or Article 6(1)(b) of the GDPR. The data will be deleted as soon as the respective purpose is fulfilled and it is legally possible.
We provide a contact form for contacting our company. This form is used to facilitate communication with our company.
In this form, we typically process your first and last name, your phone number, your email address, a postal address, and the content of the message. The data is stored on our web server and internally forwarded to the respective email addresses responsible for handling the inquiries.
We integrate the contact form from HubSpot, Inc., 25 First Street, 2nd Floor, Cambridge, MA 02141, United States of America, available at https://legal.hubspot.com/privacy-policy?_ga=2.80487636.2109353776.1547219595-1840724365.1539588495, on our website.
Depending on the nature of the inquiry, the legal basis for processing is usually Art. 6(1)(f) of the General Data Protection Regulation (GDPR) or Art. 6(1)(b) of the GDPR. The data is deleted as soon as the respective purpose ceases to exist and it is permissible according to legal requirements.
To respond to inquiries, we use chatbots. The chat is conducted without human assistance. The data provided in the chat is analyzed, and additional data (such as name, email address, customer number, etc.) and metadata are collected. This data is stored on the servers of the chatbot provider.
User profiles can be created from this data. If consent is given, this data can also be used for targeted advertising based on interests.
Furthermore, this data can be used to improve the functionality of the chatbot (machine learning).
This data is stored until the data subject requests deletion, revokes consent for storage, or the purpose of storage is no longer applicable. Mandatory statutory retention periods remain unaffected.
If the inquiry is related to the fulfillment of a contract or necessary for the fulfillment of pre-contractual obligations, the legal basis for processing this data is Art. 6(1)(b) of the GDPR. Otherwise, the legal basis for processing is Art. 6(1)(f) of the GDPR. We have a legitimate interest in effectively and immediately processing inquiries on our website to optimize our services and presentation.
To schedule an appointment with us, we integrate the features of Calendly on our website. This service is provided by Calendly LLC, 271 17th St NW, 10th Floor, Atlanta, Georgia 30363, USA.
The data requested for this purpose is used for scheduling, conducting, and follow-up of the appointment and stored on Calendly's servers.
Calendly uses cookies for data collection and storage on our website. These cookies are only set with your consent. You can revoke your consent and manage it at any time in our Cookie Consent Tool. The legal basis for this is Art. 6(1)(a) of the GDPR and § 25(1) of the German Telemedia Act (TTDSG), to the extent that this consent includes access to information on the user's device or the storage of cookies within the meaning of the TTDSG.
Furthermore, the legal basis for the use of Calendly is Art. 6(1)(f) of the GDPR, as we have a legitimate interest in engaging in direct communication with customers, potential customers, and other interested parties and processing inquiries immediately and as quickly as possible.
The data is stored until the data subject requests deletion, revokes consent for storage, or the purpose of storage is no longer applicable. Mandatory statutory retention periods remain unaffected.
In the case of data transfer to the USA, the standard contractual clauses (SCC) of the EU Commission apply.
You can find more information here:
https://calendly.com/de/pages/privacy
https://calendly.com/pages/dpa.
On our website, we use Typeform, a service provided by TYPEFORM SL, C/Bac de Roda, 163, 08018 Barcelona, Spain, for creating online forms and surveys.
This service allows us to create and embed online forms on our website for capturing messages, inquiries, or other inputs.
Typeform receives the data you provide in the form on our website. We have entered into a data processing agreement with Typeform according to Art. 28 of the GDPR.
Typeform uses cookies for data collection and storage on our website. These cookies are only set with your consent. You can revoke your consent and manage it at any time in our Cookie Consent Tool. The legal basis for this is Art. 6(1)(a) of the GDPR and § 25(1) of the German Telemedia Act (TTDSG), to the extent that this consent includes access to information on the user's device or the storage of cookies within the meaning of the TTDSG.
Furthermore, the legal basis for using Typeform is Art. 6(1)(f) of the GDPR. We have a legitimate interest in creating and integrating functional online forms on our website. To the extent that the data processing through the form serves the provision of our contractual services, the legal basis is Art. 6(1)(b) of the GDPR.
The data entered by the website visitor in the form is stored on Typeform's servers until the website visitor requests deletion, revokes the consent for storage, or the purpose of storing the data no longer exists. Mandatory statutory retention periods remain unaffected.
For more information on the data processing by Typeform, please refer to:
https://admin.typeform.com/to/dwk6gt/.
To ensure that only cookies for which there is a legal basis are set on our website, we use the consent management tool Cookiebot, provided by Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark.
This service is used to obtain and document the consent of the website visitor for storing certain cookies in their browser or for the use of specific technologies in compliance with data protection regulations.
When this website is accessed, the consent or withdrawal of consent given by the website visitor is stored as a Cookiebot cookie in the visitor's browser. This involves establishing a connection to Cookiebot's servers.
The legal basis is Art. 6(1)(c) of the GDPR. Cookiebot is used to obtain the legally required consent for the use of cookies.
The collected data will be stored until the website visitor requests deletion, Cookiebot itself deletes the data, or the purpose of storing the data no longer exists. Mandatory statutory retention periods remain unaffected.
We use Webflow, a service provided by Webflow, Inc., 398 11th Street, 2nd Floor San Francisco, CA 94103, United States of America, to create our website.
Webflow is a website builder system that allows us to design our website according to our preferences and meet our goal of user-friendliness.
Webflow uses cookies for secure browsing and to prevent cross-site request forgery (session cookies), as well as for secure transactions.
The service is technically necessary for displaying our website. The legal basis for processing is Art. 6(1)(f) of the GDPR.
Webflow also processes data in the USA. We have entered into standard contractual clauses (SCCs) with Webflow.
For more information, please visit:
https://webflow.com/legal/privacy.
We use Customer.io to provide you with our newsletter. This service is provided by Peaberry Software Inc D/b/a Customer.io, 9450 SW Gemini Dr, Suite 43920, Beaverton, Oregon 97008-7105.
Through this service, the sending of newsletters can be organized and analyzed. The data entered to receive the newsletter is stored on Customer.io's servers.
With the help of Customer.io, interactions with the newsletter can be analyzed. In addition, conversion rates can be determined and the users of the newsletter can be categorized in order to adapt the newsletter to the different target groups.
This analysis can be objected to.
The legal basis for the processing is Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG. The consent can be revoked at any time by unsubscribing from the newsletter. The lawfulness of the processing already carried out remains unaffected by any revocation.
The data will be deleted at the end of the contract between us and Customer.io, unless the website visitor revokes his/her consent beforehand. If this is the case, the data will be deleted from the distribution list.
In addition, after unsubscribing from the newsletter, the e-mail address is stored on a blacklist separately from other data for an indefinite period of time. The legal basis for this is Art. 6 para. 1 lit.f DSGVO. It serves the interest of the website visitor as well as our interest to use/operate a newsletter according to the legal requirements.
In the case of data transfer to the USA, the standard contractual clauses (SCC) of the EU Commission apply.
More details:
https://customer.io/legal/privacy-policy/
We use SendGrid as a mailing service. This service is provided by Twilio Inc, 889 Winslow St, Redwood City, California 94063, USA.
It is a service for e-mail delivery.
With the help of SendGrid, interactions can be analyzed.
The legal basis for the processing is Art. 6 (1) lit. b DSGVO, as the services used serve customer administration and the fulfillment of our contractual performance.
The data will be deleted at the end of the contract between us and SendGrid.
In the case of data transfer to the USA, the standard contractual clauses (SCC) of the EU Commission apply.
More details:
https://sendgrid.com/resource/general-data-protection-regulation-2/.
We use Google Analytics on this website. Google Analytics is a web analytics service. This service is provided by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Analytics uses cookies to recognize the user and thus analyze usage behavior. These cookies are only set with consent. Consent can be revoked at any time and managed in our cookie consent tool.
The legal basis for the processing is Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG.
The information collected here is usually transferred to a Google server in the USA and stored there.
The standard contractual clauses (SCC) of the EU Commission apply to the data transfer to the USA.
Through the use of Google Analytics, IP anonymization takes effect. The IP address of the respective user is shortened within the member states of the EU (or the European Economic Area) in such a way that it is no longer possible to trace it back to a natural person. In addition, Google is committed to appropriate data protection via the Google Ads data processing terms and creates an evaluation of website usage and website activity and provides the services associated with usage. The Google Ads Data Processing Terms apply to companies subject to the European Economic Area (EEA) EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), or similar regulations.
An additional browser plugin can be used to prevent the information collected (such as the IP address) from being sent to and used by Google. The plugin and more information about it can be found at https://tools.google.com/dlpage/gaoptout?hl=de.
Otherwise, the storage period depends on the type of data processed. Each customer can choose how long Google Analytics stores data before it is automatically deleted.
You can also find more information about Google's data usage at https://support.google.com/analytics/answer/6004245?hl=de. For all other queries, you can also contact support-deutschland@google.com
On this website we use Google Tag Manager. Google Tag Manager is a web analytics service. This service is offered by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
The Google Tag Manager does not store cookies and does not analyze independently. It only serves to manage the tools integrated via it. However, the IP address of the website visitor is recorded, which can be transferred to the parent company of Google in the USA.
The legal basis for the processing is Art. 6 para. 1 lit. f DSGVO. We have a legitimate interest in uncomplicatedly integrating and managing various tools on its website.
More details:
https://policies.google.com/privacy?hl=en.
We use Google Ads on this website. Google Ads is an online advertising program provided by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
The service enables us to link advertisements in the Google search engine to certain key words and to place targeted advertisements based on existing user data. Cookies are used for conversion tracking.
The legal basis for the processing is Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG. The consent can be revoked at any time.
In the case of data transfer to the USA, the standard contractual clauses (SCC) of the EU Commission apply.
More details:
https://privacy.google.com/businesses/controllerterms/mccs/.
We use Google AdSense on this website. Google AdSense is a service that embeds advertisements into a website. This service is offered by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
When selecting advertisements, the so-called "context information" (e.g. location, content of the website) is used in the non-personalized mode. Google AdSense uses cookies to be able to take action against fraud and abuse.
The legal basis for the processing is Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG. The consent can be revoked at any time.
In the case of data transfer to the USA, the standard contractual clauses (SCC) of the EU Commission apply.
Further details:
https://privacy.google.com/businesses/controllerterms/mccs/
https://adssettings.google.com/authenticated
https://policies.google.com/technologies/ads
https://www.google.de/intl/de/policies/privacy/
We use Hotjar on this website. Hotjar is a web analytics service. This service is provided by Hotjar Ldt, Level 2, St Julians Business Centre,3, Elia Zammit Street, St Julians STJ 1000, Malta.
We can analyze user behavior on the corresponding website with the help of Hotjar. Hotjar creates so-called heatmaps that help us to understand which areas of the website are viewed preferentially by the website visitor(s). In addition, it is determined how long the website visitor stayed on the website and when he/she left it.
Hotjar uses cookies to recognize the website visitor and to analyze user behavior.
The legal basis for the processing is Art. 6 para. 1 lit. a DSGVO and Section 25 para. 1 TTDSG, insofar as this consent includes access to information in the user*s terminal device or the storage of cookies within the meaning of the TTDSG.
Further details:
https://www.hotjar.com/policies/do-not-track/
https://www.hotjar.com/privacy.
We use Clarity on this website. Clarity is a web analytics service. This service is provided by Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland.
With the help of Clarity, we can analyze user behavior on our website. For this purpose, graphical representations of mouse movements are created (heat maps). In addition, videos can be recorded which document page usage.
Clarity uses cookies to recognize the website visitor and to analyze user behavior. These cookies are only set with consent. The consent can be revoked at any time.
The legal basis for the processing is Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as this consent includes access to information in the end device of the user* or the storage of cookies within the meaning of the TTDSG.
The collected information is stored on Microsoft servers (Microsoft Azure Cloud Service) in the USA.
In the case of data transfer to the USA, the standard contractual clauses (SCC) of the EU Commission apply.
https://docs.microsoft.com/en-us/clarity/faq.
More information on data processing by Microsoft: https://privacy.microsoft.com/de-de/privacystatement
We use Facebook Conversion API on this website. Facebook Conversion API is a web analytics service provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.
With the help of Facebook Conversion API, we can capture and transmit the interaction of the website visitor to Facebook in order to optimize advertising performance on Facebook.
The collected data is also transferred to the USA and other third countries.
For data transfers to the USA, the Standard Contractual Clauses (SCCs) of the European Commission are applied.
https://www.facebook.com/legal/EU_data_transfer_addendum
https://www.facebook.com/help/566994660333381.
The legal basis for processing is Art. 6(1)(a) of the GDPR and § 25(1) of the German Telemedia Act (TTDSG). Consent can be revoked at any time.
If personal data is collected and transmitted to Facebook using meta pixels on this website, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland are joint controllers for data processing according to Art. 26 of the GDPR. This joint responsibility is limited to the collection and transmission of data to Facebook. There is an agreement on joint processing:
https://www.facebook.com/legal/controller_addendum.
We are responsible for providing privacy information when using the Facebook tool and ensuring its secure integration in accordance with data protection laws on the respective website. However, Facebook is responsible for the security of its products. Therefore, data subjects' rights regarding the data processed by Facebook should be exercised directly with Facebook.
For further details, please visit:
https://www.facebook.com/about/privacy/.
Facebook Custom AudiencesWe use Facebook Custom Audiences on this website. Facebook Custom Audiences is a web analytics service provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.
When using the online offering, personal data of the website visitor is collected. If the website visitor has given us consent to use Facebook Custom Audiences, this data will be transmitted to Facebook to display targeted advertising to the website visitor and define target audiences.
The legal basis for processing is Art. 6(1)(a) of the GDPR and § 25(1) of the German Telemedia Act (TTDSG). Consent can be revoked at any time.
For data transfers to the USA, the Standard Contractual Clauses (SCCs) of the European Commission are applied.
https://www.facebook.com/legal/terms/customaudience
https://www.facebook.com/legal/terms/dataprocessing.
We use LinkedIn Insight Tag on this website. LinkedIn Insight Tag is a web analytics service provided by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.
With the help of LinkedIn Insight Tag, we receive information about visitors to our website. If a website visitor is registered with LinkedIn, we can analyze their professional details to tailor our website content to the target audience. For the purpose of targeted advertising, cross-device conversion tracking and retargeting may also occur. Additionally, LinkedIn Insight Tag collects log files, with the IP address being anonymized.
LinkedIn Insight Tag uses cookies to recognize the website visitor and analyze user behavior.
The legal basis for processing is Art. 6(1)(a) of the GDPR and § 25(1) of the German Telemedia Act (TTDSG), to the extent that this consent includes access to information on the user's device or the storage of cookies as defined by the TTDSG.
Direct identifiers of LinkedIn members are deleted after seven days, while the remaining pseudonymized data is deleted within 180 days by LinkedIn.
The collected data is also transferred to the USA and other third countries.
For data transfers to the USA, the Standard Contractual Clauses (SCCs) of the European Commission are applied.
For further details, please visit:
https://www.linkedin.com/legal/l/dpa
https://www.linkedin.com/legal/l/eu-sccs
https://www.linkedin.com/legal/l/cookie-table.
Third-Party ContentClearbitWe use clearbit on this website. This service is provided by API Hub, Inc., 548 Market St. #95879, San Francisco, CA 94104, USA.
Clearbit has developed a business intelligence API that helps companies gather more information about their customers to increase revenue and reduce fraud. Clearbit collects your IP address to improve our website.
The legal basis for processing is Art. 6(1)(a) of the GDPR and § 25(1) of the German Telemedia Act (TTDSG), to the extent that this consent includes access to information on the user's device or the storage of cookies as defined by the TTDSG.
For data transfers to the USA, the Standard Contractual Clauses (SCCs) of the European Commission are applied.
For further details, please visit:
https://clearbit.com/privacy-policy.
StorylaneWe use storylane.io on this website. This service is provided by Storylane Inc., Akash Bansal - 2261 Market Street #4813, San Francisco, CA 94114, USA.
With the help of Storylane, we present interactive videos on our website. When using these videos, Storylane processes personal data related to the usage of the videos.
The legal basis for processing is Art. 6(1)(a) of the GDPR and § 25(1) of the German Telemedia Act (TTDSG), to the extent that this consent includes access to information on the user's device or the storage of cookies as defined by the TTDSG.
For data transfers to the USA, the Standard Contractual Clauses (SCCs) of the European Commission are applied.
For further details, please visit: https://www.storylane.io/privacy-policy.
We use Zoom for communication with customers. Zoom is an online conferencing tool provided by Zoom Communications Inc., San Jose, 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA.
When using this tool for video or audio conferences, personal data is processed by us and the tool provider. The collected data includes all information you provide while using the tool. Additionally, metadata regarding the conference is processed. Furthermore, technical information necessary for the functioning of online communication is processed. Files shared within the tool are also stored on the servers of the tool provider.
Zoom may also set cookies. These cookies are only set with consent, which can be revoked at any time. The legal basis for this processing is Art. 6(1)(a) of the GDPR.
Furthermore, the legal basis for processing data by Zoom is Art. 6(1)(b) of the GDPR. The communication is related to the fulfillment of a contract or necessary for the fulfillment of pre-contractual obligations. Additionally, this tool is used to simplify communication with our company, which represents a legitimate interest according to Art. 6(1)(f) of the GDPR.
This data is stored until the data subject requests deletion, consent for storage is revoked, or the purpose for storage ceases to exist. Cookies remain on the end device until deleted by the user. Mandatory statutory retention periods remain unaffected.
For data transfers to the USA, the Standard Contractual Clauses (SCCs) of the European Commission are applied.
For more information, please visit:
We use Google Meet for communication with customers. Google Meet is an online conferencing tool provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
When using this tool for video or audio conferences, personal data is processed by us and the tool provider. The collected data includes all information you provide while using the tool. Additionally, metadata regarding the conference is processed. Furthermore, technical information necessary for the functioning of online communication is processed. Files shared within the tool are also stored on the servers of the tool provider.
Google Meet may also set cookies. These cookies are only set with consent, which can be revoked at any time. The legal basis for this processing is Art. 6(1)(a) of the GDPR.
Furthermore, the legal basis for processing data by Google Meet is Art. 6(1)(b) of the GDPR. The communication is related to the fulfillment of a contract or necessary for the fulfillment of pre-contractual obligations. Additionally, this tool is used to simplify communication with our company, which represents a legitimate interest according to Art. 6(1)(f) of the GDPR.
This data is stored until the data subject requests deletion, consent for storage is revoked, or the purpose for storage ceases to exist. Cookies remain on the end device until deleted by the user. Mandatory statutory retention periods remain unaffected.
For further details, please visit:
https://policies.google.com/privacy?hl=en.
We use Stripe on this website. Stripe provides technology for operating online payment systems. This service is provided by Stripe Payments Europe Limited, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, D02 H210, Ireland.
For the purpose of payment processing, the payment data of the website visitor is processed by Stripe once a contractual relationship is established through this website. The respective contractual and privacy provisions of Stripe apply to each transaction.
Stripe also uses cookies to collect data. These cookies are only set with your consent, which can be revoked at any time. The legal basis for this processing is Art. 6(1)(a) of the GDPR.
Furthermore, the legal basis for processing by Stripe is Art. 6(1)(b) of the GDPR. The data is processed for the purpose of fulfilling contractual obligations.
We also have a legitimate interest in processing this data in accordance with Art. 6(1)(f) of the GDPR in order to ensure a fast and reliable payment process.
The data will be deleted as soon as it is no longer necessary for data processing.
For more details, please visit:
Finally, we would like to provide you with detailed information about your rights and how you will be informed about changes to data protection requirements.
You have the right to obtain information about whether personal data concerning you is being processed. If that is the case, you can request further information about the nature and processing of the data. A detailed list can be found in Art. 15(1)(a) to (h) of the GDPR.
This right includes the correction of incorrect data and the completion of incomplete personal data.
This so-called "right to be forgotten" gives you the right to request the erasure of personal data by the data controller under certain conditions. This is generally the case when the purpose of the data processing no longer exists, consent has been revoked, or the original processing was conducted without a legal basis. A detailed list of reasons can be found in Art. 17(1)(a) to (f) of the GDPR. This "right to be forgotten" also corresponds to the obligation of the data controller under Art. 17(2) of the GDPR to take appropriate measures to achieve the general erasure of the data.
This right is subject to the conditions set out in Art. 18(1)(a) to (d) of the GDPR.
This establishes the general right to receive your own data in a commonly used format and to transmit it to another controller. However, this only applies to data processing based on consent or contract under Art. 20(1)(a) and (b) and to the extent that this is technically feasible.
You have the right to object to the processing of your personal data in general. This applies in particular when your interest in objecting outweighs the legitimate interest of the data controller in processing, and when the processing relates to direct marketing and/or profiling.
You generally have the right not to be subject to a decision based solely on automated processing (including profiling) that produces legal effects concerning you or similarly significantly affects you. However, this right is subject to limitations and additional provisions under Art. 22(2) and (4) of the GDPR.
The GDPR includes comprehensive rights to inform third parties about whether or how they have exercised their rights under Art. 16, 17, 18 of the GDPR. However, this is only possible or feasible with reasonable effort.
At this point, we would like to remind you again of your right to revoke your consent under Art. 7(3) of the GDPR. This does not affect the lawfulness of the processing carried out up to that point.
We would also like to draw your attention to your rights under Sections 32 et seq. of the German Federal Data Protection Act (BDSG), which are largely identical to the rights described above.
You also have the right to lodge a complaint with a supervisory authority if you believe that the processing of personal data concerning you violates this regulation.
The current status of this privacy policy is June 1, 2023. As soon as we change this privacy policy, we will inform you on our website.