Privacy Policy

Revocation of Consent

You can withdraw your consent at any time. All you need to do is send us an informal notification by e-mail (datenschutz(at)dotsource.de). The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to Lodge a Complaint

In the event of breaches of data protection law, you have the right to lodge a complaint with the competent supervisory authority. The competent supervisory authority for data protection issues is the state data protection officer of the federal state in which our company is based. A list of data protection officers and their contact details can be found here.

Data Transfer

You have the right to have data that we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a commonly used, machine-readable format. If you request the direct transfer of the data to another controller, this will only take place if it is technically feasible.

Note on Data Transfer Outside the EU/EEA

If we store your data in a third country outside the EU/EEA, this will only take place if suitable guarantees for the protection of your personal data in accordance with Art. 44 et seq. GDPR are provided.

Security Measures

This website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content. You can recognise an encrypted connection by the fact that the address line of the browser changes from »http://« to »https://« and by the lock symbol in your browser line. When SSL or TLS encryption is activated, the data transmitted cannot be read by third parties.

Right to Information

You have the right to receive information about your stored personal data, its origin and recipients and the purpose of the data processing at any time and free of charge within the framework of the applicable legal provisions.

Right to Correction, Restriction of Processing or Deletion

If the legal requirements are met, you have the right to correction, restriction of processing or deletion of your personal data stored by us. You can contact us at any time at the address given above or at datenschutz(at)dotsource.de if you have any further questions on the subject of personal data.

Website Access

We collect the following data about access to the website and store it as »server log files« on the website server:

• Websites visited
• Time at the time of access
• Browser used
• Operating system used
• IP address used (anonymised)

The server log files are stored for a maximum of 14 days and then deleted. The data is stored for security reasons, e.g. to be able to clarify cases of misuse. We host our website with Strato. The provider is Strato AG, Otto-Ostrowski-Straße 7, 10249 Berlin, Germany (hereinafter »Strato«).

For details, please refer to Strato's privacy policy. This data is used to ensure the error-free provision of the website and is analysed to improve it. The legal basis for data processing is Art. 6 para. 1 lit. f GDPR.

The legitimate interest arises from the purposes of data collection listed below:

• Trouble-free connection establishment
• Trouble-free and easy use (e.g. user-friendly optimisation of the website)
• Security of the system and system stability

Duration of Storage

Unless expressly stated in this privacy policy, the data stored by us will be deleted immediately as soon as it is no longer required for its intended purpose and the deletion does not conflict with any statutory retention obligations.

If the data is not deleted because it is required for other and legally permissible purposes, its processing will be restricted.

This means that the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax law reasons.

Forms

If you enter personal data in the forms available on our website, this data will be used by us to process your enquiry and stored until you withdraw your consent. The data entered will only be used internally. All data entered by you in the forms is provided voluntarily. The processing is therefore carried out exclusively on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time informally by e-mail to us (datenschutz(at)dotsource.de).

This does not affect the lawfulness of the data processing carried out up to the point of withdrawal.

If we store your data in a third country outside the EU/EEA, this will only take place if suitable guarantees for the protection of your personal data in accordance with Art. 44 et seq. GDPR are provided.

Our forms are linked to TYPO3 and Marketing Cloud Account Engagement (formerly Salesforce Pardot or Pardot). For more information about TYPO3 and Marketing Cloud Account Engagement, please read the relevant section on TYPO3 and Marketing Cloud Account Engagement.

Our website uses cookies. These are small text files that your browser stores locally on your computer. Session cookies, which are necessary for the optimal and convenient functionality of our website, are deleted when you leave the website. Other cookies are deleted after a certain period of time and enable us to recognise you the next time you visit our website.

The duration of storage can be found in the overview in the cookie settings of your web browser. The legal basis for the use of cookies is Art. 6 para. 1 lit. f GDPR, as they enable us to provide our customers with an optimised, error-free and convenient service. If we use cookies that, for example, analyse your surfing behaviour on our website, these are dealt with separately in this privacy policy.

Newsletters

If you subscribe to a newsletter on our website, you will be added to our newsletter mailing list. The data you enter will be processed exclusively on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time, e.g. via the unsubscribe link in the newsletter or by sending an e-mail to datenschutz(at)dotsource.de.

If you withdraw your consent, we will delete your e-mail address from the newsletter mailing list. In addition, we use Marketing Cloud Account Engagement (formerly Salesforce Pardot or Pardot) to send newsletters. For more information about Marketing Cloud Account Engagement, please read the relevant section on Marketing Cloud Account Engagement.

If you have entered your e-mail address and any other optional data to receive our free newsletter, we will only use the data to send you information in accordance with the newsletter registration.

When you register for the newsletter, we store your IP address and the date and time of registration. This storage serves solely as proof in the event that a third party misuses an e-mail address and registers to receive the newsletter without the knowledge of the authorised person. By agreeing to receive our newsletter, you also consent to us carrying out newsletter tracking and analysing your interaction with our newsletter. As part of the analysis, we find out who has opened our newsletter and which of the links contained therein have been clicked on. This enables us to recognise your interests and to send you a newsletter tailored to your interests in the future. We process the following data as part of newsletter tracking:

• Opening rate
• Click rate
• Subscribe/unsubscribe
• Delivery status

The legal basis for the processing of your personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR.

TYPO3

We connect our forms with TYPO3. TYPO3 sends a message to our internal system when you enter the data in the form. This optimises our communication. TYPO3 collects the following data:

• IP address
• Log data
• Data provided by you in forms

We store this data anonymously and need this data to protect ourselves against attacks on our website (Art. 6 para. 1 lit. f GDPR). When we use TYPO3 products, we conclude a contract with TYPO3 GmbH, Emanuel-Leutze-Straße 11, 40547 Düsseldorf, Germany. The data is collected exclusively in accordance with Art. 6 para. 1 lit. f GDPR.

Lead Forensics

For optimisation purposes, this website uses products and services from Lead Forensics. Lead Forensics' head office is located at Communication House, 26 York Street, London, W1U 6PZ, United Kingdom. Lead Forensics uses the imprint to determine details of your organisation (including phone number, web address, SIC code and a description of the company).

Lead Forensics shows the actual history of your visit to this website, including all the pages you have visited and viewed and how long you have spent on them. Under no circumstances will the data be used to personally identify an individual visitor. If IP addresses are collected, they are anonymised immediately after collection.

On behalf of the operator of this website, Lead Forensics will use the information collected to analyse your visit to the website, to compile reports on website activity and to provide the website operator with other services relating to website activity and Internet usage. If you do not agree to this, you can object to the collection, processing and storage of data at any time with effect for the future by clicking here.

LeadForensics is used on the basis of Art. 6 para. 1 lit. f GDPR. You can find more information on what data Lead Forensics collects in the privacy policy.

Meta (Facebook) Pixel

We process your personal data to use the Facebook pixel in order to display adverts. This website uses the Facebook pixel of Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, D2 Dublin, Ireland. This enables users of this website to be tracked via other websites that use the Facebook pixel.

This serves to analyse and optimise our online offering, in particular retargeting, i.e. the renewed advertising approach on our and other websites and the assignment to target groups for Facebook Ads.

The Meta pixel collects the following data: ads viewed, browser information, content viewed, device information, geographic location, interaction with ads, services and products, IP address, marketing information, non-confidential user-defined data, pixel ID, referrer URL, success of marketing campaigns, usage data, user behaviour, Facebook user ID.

We disclose your personal data to Facebook (Meta). Facebook stores your personal data for as long as is necessary for the use of the Facebook pixel for the display of adverts. Facebook processes your personal data in the USA. There is an adequacy decision by the European Commission (Data Privacy Framework) for the USA. The use of Meta (Facebook) Pixel is based on Art. 6 para. 1 lit. f GDPR.

X (Twitter) Plug-In

Functions of the X (Twitter) service are integrated on our website. These functions are offered by Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland.

By using X (Twitter) and the »Re-Tweet« function, the websites you visit are linked to your X (Twitter) account and made known to other users. Data is also transmitted to X (Twitter).

You can find more information on what data is collected by X (Twitter) for this purpose in the company's privacy policy.

You can change your data protection settings on X (Twitter) in the account settings. The use of the X (Twitter) plug-in is based on Art. 6 para. 1 lit. f GDPR.

LinkedIn Insight Tag

Our website uses functions of the LinkedIn network. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. LinkedIn Insight Tag collects the following data: ads viewed, advertising ID, articles viewed, device ID, device information, IP address, information about the operating system, websites visited, search terms, connections, followers, information provided on the profile, user agent data, videos viewed.

Each time you visit one of our websites that contains LinkedIn functions, a connection to LinkedIn servers is established. LinkedIn is informed that you have visited our website with your IP address.

If you click on the LinkedIn »Recommend« button and are logged into your LinkedIn account, LinkedIn is able to associate your visit to our website with you and your user account.

Further information on this can be found in LinkedIn's privacy policy. The use of LinkedIn Insight Tag is based on Art. 6 para. 1 lit. f GDPR.

Piwik PRO Tag Manager and Piwik PRO Analytics Suite (together »Piwik PRO«)

We use Piwik PRO Tag Manager on our website. The provider of Piwik PRO is Piwik PRO GmbH, Knesebeckstraße 62/63, 10719 Berlin, Germany. Piwik PRO Tag Manager allows website tags to be managed via an interface. Piwik PRO Tag Manager itself does not set cookies, but only tags and does not collect any personal data. The service triggers other tags, which in turn may collect data. Piwik PRO Analytics Suite is used to collect data for the needs-based design of our website and for the statistical evaluation of visitor flows for marketing and optimisation purposes.

Pseudonymised user profiles are also created. Cookies are used for this purpose, which are stored on your computer and enable your use of our website to be analysed. The IP address is truncated immediately after collection and before it is stored. Piwik PRO is hosted on Microsoft Azure in the EU.

More information on Piwik PRO's privacy policy can be found here. For more information about cookies that can be created by Piwik PRO, please click here and here. We collect the following data about website visitors:

• Operating system
• URL of the previously visited website
• URL of the page you access on the website
• IP address of the accessing device
• Name and URL of the requested file
• Amount of data transferred
• Browser type/version

Piwik PRO creates user profiles based on browsing history and calculates metrics related to website usage, such as bounce rate, intensity of visits, page views. The use of Piwik PRO is based on Art. 6 para. 1 lit. f GDPR.

Piwik Heatmap and Clickmap Tracking

We use Piwik heatmap and clickmap tracking on our website to statistically analyse the use of our website. The provider of Piwik heatmap and clickmap tracking is Piwik PRO GmbH, Knesebeckstraße 62/63, 10719 Berlin, Germany.

A heatmap is a graphical representation of data that uses a system of colour coding to represent different values. Heatmaps are used in various forms of analysis, but are most commonly used to represent user behaviour on websites and in mobile applications.

A heatmap uses colour codes to visually represent how a user interacts with a website. The colour scale ranges from blue (least interaction) to red (most interaction). Heatmaps allow us to assess which website elements users click on and scroll through or which they ignore.

The use of Piwik heatmap and clickmap tracking is based on Art. 6 para. 1 lit. f GDPR. You can find more information about Piwik PRO's privacy policy here.

Google Analytics and Google Remarketing

This website uses Google Analytics and Google Remarketing. These are services provided by the company Google Inc. (»Google«). Google uses cookies, which are text files placed on your computer, to help analyse how users use the website. The information generated by cookies about your use of this website is usually transferred to a Google server in the USA and stored there.

This website uses the AnonymizeIP() function, whereby your IP address is shortened by Google and thus made unrecognisable. The de-identification takes place before your IP address is further analysed as part of the services.

Google will use the information to analyse your use of the website. Reports on website activity are created for the website operator and other services associated with website and Internet usage are made possible. Google may transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf.

Google and third-party providers will use the data stored when you use this website to place adverts on websites. You can object to the collection and storage of data at any time with effect for the future. You can deactivate the use and storage of cookies by Google by downloading and installing the browser plug-in available here.

It is also possible to prevent Google Analytics and Remarketing from collecting data by clicking on the link below. This will set an opt-out cookie in your browser, which will prevent the future collection of your data generated when you visit this website.

Alternatively, you can deactivate the use of cookies by third-party providers by visiting the deactivation page of the Network Advertising Initiative.

If you object to the use of cookies, we would like to point out that you may not be able to use all functions of this website to their full extent.

You can learn more about the use of Google Analytics tools and the data collection and data processing that takes place via them here. Further information on Google's provisions can be found here.

The use of Google Analytics and Google Remarketing serves the purpose of the needs-based design and optimisation of our website on the basis of Art. 6 para. 1 lit. f GDPR.

Microsoft Bing Ads

On our website, we use conversion tracking from Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. Microsoft Bing Ads stores a cookie on your computer if you have reached our website via a Microsoft Bing advert. This way, Microsoft Bing and we can recognise that someone has clicked on an ad, has been redirected to our website and has reached a predetermined target page (conversion page). We can only see the total number of users who clicked on a Bing advert and were then forwarded to the conversion page.

No personal information about the identity of users is communicated. If you do not want information about your behaviour to be used by Microsoft as explained above, you can refuse the setting of a cookie required for this - for example by using a browser setting that generally deactivates the automatic setting of cookies.

You can also prevent the collection of data generated by the cookie and related to your use of the website and the processing of this data by Microsoft by explaining your objection here.

Further information on data protection and the cookies used by Microsoft and Bing Ads can be found here. Further information on the handling of user data can be found here. The use of Microsoft Bing Ads is based on Art. 6 para. 1 lit. f GDPR.

YouTube Plug-In

Our website uses plug-ins from YouTube operated by Google. The operator of the pages is YouTube, LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA. When you visit one of our websites equipped with a YouTube plug-in, a connection to the YouTube servers is established.

This tells the YouTube servers which of our websites you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account.

The use of YouTube is in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

Further information on the handling of user data can be found here.

Adobe Target

We use the Adobe Target software solution from Adobe Systems Software Ireland Limited (»Adobe«), based at 4–6 Riverwalk, Citywest Business Campus, Dublin 24, Ireland. The software solution enables us to carry out A/B tests or multivariate tests on the website. To do this, the software solution runs a modified version of the website compared to the original version (e.g. with a different design and content). By comparing the two variants, we can then determine which presentation our website visitors prefer and thus make our website more user-friendly.

Adobe Target records user behaviour using quantitative methods. The complete IP address or data that allows conclusions to be drawn about individual persons is not recorded or processed. Adobe uses session cookies and permanent cookies. The former are only stored temporarily for the duration of your use of our website. Permanent cookies are used to store information about visitors who repeatedly access our website.

You can find more information about the functions of Adobe Target here.

The use of Adobe Target is based on Art. 6 para. 1 lit. f GDPR. If, in individual cases, data is also accessed by Adobe Inc. (USA), the necessary precautions are taken in accordance with Art. 44 ff. GDPR to ensure an adequate level of data protection in the recipient country. Click here for the data protection information on Adobe Target.

Our website uses the Pardot marketing automation system from the company Salesforce.com Germany GmbH, Erika-Mann-Straße 31, 80636 Munich, Germany. Pardot is a special software solution for recording and analysing the movement profiles of website visitors. This tracks visitor behaviour using a cookie and ultimately displays reports in Marketing Cloud Account Engagement (Salesforce Pardot). When you visit our website, Pardot records your click path and uses this to create an individual user profile using a pseudonym. Cookies are used for this purpose, which enable your browser to be recognised.

The following data is processed when you visit our website:

• IP address
• Host name
• Information about the website from which you came to us
• Information about the search engine queries that brought you to us
• Number of your visits to our website
• Number of pages you have visited on our website
• Date of your first visit to our website
• Date of your last visit to our website
• Information about the campaign that brought you to us
• Information such as the name and location of the company you work for

As far as Salesforce.com personal data is processed, the processing is carried out exclusively on our behalf and in accordance with our instructions. Salesforce.com holds itself responsible for its services, for Salesforce.com as a data processor, to the EU-US Privacy Framework Agreement. The current Privacy Framework Agreement of Salesforce can be found here.

You can prevent the storage of cookies at any time by configuring your Internet browser so that cookies from the domain »pardot.com« are not accepted. However, this may lead to certain restrictions in the functions and user-friendliness of our services. The data processed as part of the communication is stored on the Salesforce servers.

In this context, personal data may also be transferred to the parent company of Salesforce.com Germany GmbH – Salesforce.com Inc., Salesforce Tower, 415 Mission Street, San Francisco, CA 94105, USA.

The use of Marketing Cloud Account Engagement is based on Art. 6 para. 1 lit. f GDPR.

Salesforce Chatbot

We use the chatbot of the company Salesforce.com Germany GmbH, Erika-Mann-Straße 31, 80636 Munich, Germany (hereinafter »Salesforce«). As part of the interaction with you, Salesforce Chatbot processes all data entered and other available data, such as contact details (e.g. e-mail address and phone number), order data, order histories, previous customer enquiries, customer numbers and other identifiers. The legal basis for the use of chatbots is Art. 6 para. 1 lit. b GDPR, provided that the chatbot is used to initiate a contract or in the context of contract fulfilment.

In all other cases, the use is based on our legitimate interest in the most effective customer communication possible (Art. 6 para. 1 lit. f GDPR). The data processed as part of the communication is stored on the Salesforce servers. Personal data may also be transferred to the parent company of Salesforce.com Germany GmbH – Salesforce.com Inc., Salesforce Tower, 415 Mission Street, San Francisco, CA 94105, USA.

Salesforce.com holds itself responsible for its services, for Salesforce.com as a data processor, to the EU-US Privacy Framework Agreement. The current Privacy Framework Agreement of Salesforce can be found here.

You can find Salesforce's privacy policy here.

Wistia Plug-In

Videos from the online video provider Wistia are integrated on our website. Wistia is a service of Wistia Inc., 17 Tudor Street, Cambridge, MA 02139, USA. The integration requires that Wistia can recognise the IP address of the user. The IP address is required to be able to send the content to the user's browser. The use of Wistia is in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. We have concluded a data processing agreement with Wistia Inc. in accordance with the provisions of the GDPR.

Further information on data protection and the cookies used can be found here.

Data Processing

We have concluded a data processing agreement (DPA) with the above-mentioned providers. This is an agreement required by data protection law, which ensures that these providers only process the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.