datenschutz_

Privacy policy

1. General

The protection of personal data is of particular concern to INNOVATIONEERS. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

Data protection at INNOVATIONEERS is based on the 7 guiding principles established by Article 5 of the GDPR to ensure compliance in the handling of personal data:

– Legality

– Earmarking

– Data minimization

– Correctness

– Memory limitation

– Integrity and confidentiality

– Accountability

The following information provides an overview of the type of data we collect when you visit our website, how we handle this data, and the measures we use to protect our website visitors.

In paragraphs 4 and 5, we provide information on the use of MS Teams and Zoom as part of our project work, online meetings, video conferences and webinars.

1.1 Who is responsible for data processing?

Responsible for data processing on this website

INNOVATIONEERS GmbH

Field mountain view 4

65527 Niedernhausen

Phone: +49 6127 997716

E-mail: kontakt@innovationeers.de

Data protection officer required by law

Jürgen Heimann

Phone: +49 152 285 211 28

E-mail: datenschutz@innovationeers.de

1.2 What rights do you have?

You have the right,

a) to request information on the categories of data processed, the purposes of processing, any recipients of the data, the planned storage period (Art. 15 DSGVO);

b) to demand the correction or completion of incorrect or incomplete data (Art. 16 DSGVO);

c) revoke a given consent at any time with effect for the future (Art. 7 para. 3 DSGVO);

d) object to data processing that is to be carried out on the basis of a legitimate interest for reasons arising from your particular situation (Art. 21 (1) DSGVO);

e) in certain cases, within the framework of Art. 17 DSGVO, to demand the deletion of data – in particular insofar as the data is no longer required for the intended purpose or is processed unlawfully, or you have revoked your consent in accordance with (c) above or declared an objection in accordance with (d) above;

f) under certain conditions, to demand the restriction of data, insofar as deletion is not possible or the obligation to delete is disputed (Art. 18 DSGVO);

g) to data portability, i.e. you can receive your data that you have provided to us in a common machine-readable format such as CSV and, if necessary, transfer it to others (Art. 20 DSGVO);

h) complain to the competent supervisory authority about the data processing.

1.3 Who does INNOVATIONEERS share your data with?

In the course of using our website, your data will not be forwarded.

In the course of our activities as management consultants, it may be necessary to forward personal data to processors, i.e. companies that we commission with the processing of data within the scope provided by law, pursuant to Art. 28 DSGVO (service providers, vicarious agents). We commission companies in the following areas in particular: IT, marketing, finance, human resources, logistics, printing.

Furthermore, personal data may be forwarded to cooperation partners who provide services for you or in connection with your relationship with INNOVATIONEERS on their own responsibility. This is the case if you order services of such partners from us or if you consent to the involvement of the partner or if we involve the partner on the basis of a legal permission.

In certain cases, we are required by law to transfer personal data to a legitimate, governmental agency upon request.

The provision of personal data by INNOVATIONEERS is always for a specific purpose and out of necessity for the performance of contracts with our potential and existing customers (Art. 6 para. 1 lit. b DSGVO), as well as in the interest of safe, fast, efficient and professional service provision (Art. 6 para. 1 lit. f DSGVO).

 Any use of personal data by INNOVATIONEERS will be made only with the express consent of the party concerned. INNOVATIONEERS remains responsible for the protection of your data even in that case.

1.4 Where is my data processed?

Your data will generally be processed in Germany and in other European countries.

If, in exceptional cases, your data is also processed in countries outside the European Union (i.e. in so-called third countries), this is done insofar as you have expressly consented to this or it is necessary for our provision of services to you or it is provided for by law (Art. 49 DSGVO).

In addition, your data will only be processed in third countries if certain measures ensure that an adequate level of data protection exists (e.g. adequacy decision of the EU Commission or so-called appropriate safeguards, Art. 44 et seq. DSGVO).

2. notes for all users of this website

2.1 External Hosting and Content Delivery Network (CDN)

This website is hosted by an external service provider (hoster). The data collected on this website is stored on the hoster’s servers.

The hoster is used for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 para. 1 lit. b DSGVO) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f DSGVO). Our hoster will only process your data to the extent necessary to fulfill its service obligations and follow our instructions regarding this data.

To ensure data protection-compliant processing, we have concluded an order processing contract with our hoster, taking into account all applicable data protection aspects.

2.2 Collection of technical characteristics during the provision of the website

When you visit our websites, the web server temporarily records so-called server log information (browser type and version, operating system used, referrer URL, host name of the accessing computer, time of the server request, IP address). A combination of this data with other data sources is excluded.

The logged data is used as such exclusively for data security purposes, in particular to defend against attempted attacks on our web server. They are neither used for the creation of individual user profiles nor passed on to third parties and are deleted after 7 days at the latest.

We reserve the right to statistically evaluate anonymized data records (pursuant to Art. 6 para. 1 lit. f DSGVO, legitimate interest) (cf. analysis of the usage behavior of our website).

Additional personal data, such as your name, address, telephone number or e-mail address, is not collected.

2.3 Analysis of the usage behavior of our websites

We want you to enjoy using our website and making use of our services. We have an economic interest in this.

This website uses the WordPress analytics plugin WP Statistics from the developer team Verona Labs. With WP Statistics you can create statistics about the reach, number of visitors and structure of our website. The protection of your privacy and personal data is paramount when using WP Statistics. WP Statistics itself does not collect any personal data from visitors. Rather, WP Statistics anonymizes visitors’ IP addresses before storing them. For this purpose, no usage profiles are created and no cookies are set. A personal identification of a visitor is therefore not possible, even afterwards.

The purpose of data collection and analysis is always and exclusively to improve our website and its content.

2.4 Data security

For security reasons and to protect the transmission of confidential content, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

2.5 Plug-ins and tools

This site uses so-called WebFonts, which are provided by Google, for the uniform display of fonts. To ensure the DSGVO-compliant use of Google Fonts, the Google Fonts are hosted and integrated locally by us. Thus, no connection to Google servers is established in the course of using our website and no user-specific data is transmitted to Google.

If your browser does not support web fonts, a default font is used by your computer. For more information about Google Web Fonts, see Google’s privacy policy https://policies.google.com/privacy?hl=de, and https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.

The use of WebFonts is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the uniform presentation of the typeface on his website.

Our websites do not use social media plug-ins. Pictograms of a social media network have a simple link function. By clicking on the pictogram, you will be directed to the company page on the respective social media platform and leave the website of INNOVATIONEERS GmbH. The social media platforms that can be reached via the pictograms provide the processing of your data under their own responsibility.

3. Notes for applicants

We offer you the opportunity to apply to us (by e-mail or post). For data protection reasons, we have deliberately not included an application function via contact form on our website.

In the following, we inform you about the scope, purpose and use of your personal data collected as part of the application process. We assure you that the collection, processing and use of your data will be carried out in accordance with applicable data protection law and all other legal provisions and that your data will be treated in strict confidence.

3.1 Scope and purpose of data processing

If you send us an application, we will process your associated personal data (e.g. contact and communication data, application documents, notes taken during interviews, etc.) insofar as this is necessary to decide on the establishment of an employment relationship. The legal basis for this is Section 26 BDSG-neu under German law (initiation of an employment relationship), Art. 6 (1) lit. b DSGVO (general contract initiation) and – if you have given your consent – Art. 6 (1) lit. a DSGVO.

The consent can be revoked at any time. Your personal data will only be passed on within our company to persons who are involved in processing your application.

If the application is successful, the data submitted by you will be stored in our data processing systems on the basis of Section 26 BDSG-neu and Art. 6 (1) lit. b DSGVO for the purpose of implementing the employment relationship.

3.2 Retention period for applicant data

If we are unable to make you a job offer, if you reject a job offer, or if you withdraw your application, we reserve the right to retain the data you have provided on the basis of our legitimate interests (Art. 6 Para. 1 lit. f DSGVO) for up to 6 months from the end of the application process (rejection or withdrawal of the application). Subsequently, the data will be deleted and the physical application documents destroyed.

Retention serves in particular for purposes of proof in the event of a legal dispute. If it is evident that the data will be required after the 6-month period has expired (e.g. due to an impending or pending legal dispute), the data will not be deleted until the purpose for continued storage no longer applies.

A longer storage can also take place if you have given a corresponding consent (Art. 6 para. 1 lit. a DSGVO) or if legal storage obligations oppose the deletion.

3.3 Inclusion in the applicant pool

If we are unable to make you an immediate job offer, we may be able to include you in our applicant pool. In the event of inclusion, all documents and details from the application will be transferred to the applicant pool in order to contact you in the event of suitable vacancies.

Inclusion in the applicant pool takes place exclusively on the basis of your express consent (Art. 6 para. 1 lit. a DSGVO). The submission of the consent is voluntary and is not related to the current application process.

The data subject may revoke his/her consent at any time. In this case, the data from the applicant pool will be irrevocably deleted, unless there are legal reasons for retention. The data from the applicant pool will be irrevocably deleted no later than two years after consent has been given.

4. Use of MS Teams

Information according to Art. 13 DSGVO for online meetings, telephone conferences and webinars via “Microsoft Teams

4.1 Designation of the processing activity

With this privacy notice we inform you about the processing of your personal data in the context of our project work, online meetings, video conferences, webinars using the video conferencing solution “Microsoft Teams”.

4.2 Purposes and legal bases of processing

We use the tool “Microsoft Teams” to conduct project work, telephone conferences, video conferences and/or webinars.

“Microsoft Teams” is a service of Microsoft Corporation.

Microsoft Ireland Operations Limited
One Microsoft Place
South County Business Park
Leopardstown
Dublin 18D18 P521
Ireland

As part of project work on the Microsoft Teams platform, project content is shared in various file formats (Word, PDF, etc.) and is visible to all members of the respective team. No personal data of third parties will be placed on the platform as content of documents, as well as no confidential content, especially content that is subject to professional or business secrecy.

Incidentally, the legal basis for data processing when conducting webinars and project work is Art. 6 (1) lit. b) DSGVO, insofar as the meetings are conducted in the context of contractual relationships. Should there be no contractual relationship, the legal basis is Art. 6 para. 1 lit. f) DSGVO. Here, too, our interest is in the effective implementation of webinars and project work.

In principle, no recording is made. In exceptional cases, recording will only take place with your consent.

4.3 Recipients or categories of recipients of the personal data

The following personal data are subject to processing:

User information: e.g., display name (“Display name”), email address. Profiling information.

Meeting metadata: e.g. date, time, meeting ID, phone numbers, location

Text, audio and video data: You may have the option of using the chat function in an “online meeting”. To this extent, the text entries you make are processed in order to display them in the “online meeting”. In order to enable the display of video and the playback of audio, the data from the microphone of your terminal device and from any video camera of the terminal device will be processed accordingly for the duration of the meeting. You can turn off or mute the camera or microphone yourself at any time via the “Microsoft Teams” applications.

Personal data that is processed in connection with participation in webinars and project work is generally not disclosed to third parties unless it is specifically intended for disclosure. Please note that content from webinars, as well as from face-to-face meetings, is often used to communicate information with customers, prospects, or third parties and is therefore intended for disclosure.

Other recipients: The provider of “Microsoft Teams” necessarily receives knowledge of the above-mentioned data, insofar as this is provided for in the context of our order processing agreement with “Microsoft Teams”.

4.4 Duration of the storage of personal data

As a matter of principle, we delete personal data if there is no need for further storage. A requirement may exist in particular if the data is still needed to fulfill contractual services, to check and grant or defend against warranty and, if applicable, guarantee claims. In the case of statutory retention obligations, deletion will only be considered after expiry of the respective retention obligation.

A user can read the chat history afterwards and without participating in a meeting, as long as the meeting was invited from a team and one is part of this team. The chat history of meetings can therefore be read after the fact .

5. Use of zoom

Information according to Art. 13 DSGVO for online meetings, telephone conferences and webinars via “Zoom

5.1 Designation of the processing activity

With this privacy policy we inform you about the processing of your personal data in the context of our project work, online meetings, video conferences, webinars using the video conferencing solution “Zoom”.

5.2 Purposes and legal bases of processing

We use the “Zoom” tool to conduct project work, conference calls, video conferences and/or webinars.Zoom is a service of Zoom Video Communications, Inc. which is based in the USA.
Processing of personal data thus also takes place in a third country. We have concluded an order processing agreement with the provider of “Zoom”, which complies with the requirements of Art. 28 DSGVO.As part of project work on the Zoom platform, project content is shared in various file formats (Word, PDF, etc.) and is visible to all members of the respective team. No personal data of third parties will be placed on the platform as content of documents, as well as no confidential content, especially that which is subject to professional or business secrecy. Incidentally, the legal basis for data processing when conducting webinars and project work is Art. 6 (1) lit. b) DSGVO, insofar as the meetings are conducted in the context of contractual relationships. Should there be no contractual relationship, the legal basis is Art. 6 para. 1 lit. f) DSGVO. Here, too, our interest is in the effective implementation of webinars and project work. In principle, no recording is made. In exceptional cases, recording will only take place with your consent.

5.3 Recipients or categories of recipients of the personal data

The following personal data are subject to processing:
User details: e.g. display name (“Display name”), email address. Profiling information. Meeting metadata: e.g. date, time, meeting ID, phone numbers, locationText, audio and video data: You may have the option of using the chat function in an “online meeting”. To this extent, the text entries you make are processed in order to display them in the “online meeting”. In order to enable the display of video and the playback of audio, the data from the microphone of your terminal device and from any video camera of the terminal device will be processed accordingly for the duration of the meeting. You can turn off or mute the camera or microphone yourself at any time via the “Zoom” applications.Personal data that is processed in connection with participation in webinars and project work is generally not disclosed to third parties unless it is specifically intended for disclosure. Please note that content from webinars, as well as from face-to-face meetings, is often used to communicate information with customers, prospects, or third parties and is therefore intended for disclosure. Other recipients: The provider of “Zoom” necessarily obtains knowledge of the above data to the extent provided for in our order processing agreement with “Zoom”.

5.4 Duration of the storage of personal data

As a matter of principle, we delete personal data if there is no need for further storage. A requirement may exist in particular if the data is still needed to fulfill contractual services, to check and grant or defend against warranty and, if applicable, guarantee claims. In the case of statutory retention obligations, deletion will only be considered after expiry of the respective retention obligation.

A user can read the chat history afterwards and without participating in a meeting, as long as the meeting was invited from a team and you yourself are part of this team. The chat history of meetings can therefore always be read.

Innovationeers GmbH in May 2023