1. Data protection at a glance
The following information provides a simple overview of what happens to your personal data when you visit our website. “Personal data” are all data with which you can be personally identified, e.g. name, address, telephone number, e-mail address.
SSL and TLS encryption
This site uses SSL and TLS encryption for security reasons and to protect the transmission of confidential content, such as a request that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Who is responsible for data processing?
The entity responsible for the data processing on this website is:
Data Virtuality GmbH
Katharinenstraße 15
04109 Leipzig
Phone: +49 341 264 37217
E-Mail: datenschutz@datavirtuality.de
How do we collect your data?
On the one hand, your data are collected by you communicating them to us. This can be data that you enter in a contact form, for example.
Other data are automatically collected by our IT systems when you visit the website. These are mainly technical data (e.g. Internet browser, operating system or time of the visit). These data are collected automatically as soon as you visit our website.
What do we use your data for?
Some of the data are collected to ensure that the website is error-free. Other data may be used to analyse your user behavior. You will find more detailed information about this below.
What rights do you have with regard to your data?
According to the EU General Data Protection Regulation (GDPR) you have the following rights with regard to your personal data:
- Right of access
- Right to rectification
- Right to erasure
- Right to restrict processing
- Right to data portability
- Right to object
If you wish to exercise your rights, please contact our data protection officer (for contact details, see “Who is our data protection officer?”).
You also have the right to complain to a data protection supervisory authority about our processing of your personal data.
The competent supervisory authority is:
Saxony Data Protection Commissioner
P.O. Box 12 00 16
01001 Dresden
Phone: +49 351 854 71101
Fax: +49 351 8547 1109
Internet: www.datenschutz.sachsen.de
Email: saechsdsb@slt.sachsen.de
Who is our data protection officer?
You can reach our data protection officer Mr. Marco Tessendorf from procado Consulting, IT- & Medienservice GmbH, Warschauer Str. 58a, 10243 Berlin, by e-mail at datenschutz@datavirtuality.de.
Hosting by Hetzner Online GmbH
For data processing, we use servers of the Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, which are used by us as a platform for hosting. Hetzner’s data centers are located in data center parks in Nuremberg and Falkenstein. Hetzner also operates a data center in Helsinki, Finland.
Hetzner Online is certified in accordance with DIN ISO/IEC 27001. The certificate documents adequate security management, the security of the data, the confidentiality of the information and the availability of the IT systems. As part of our cooperation, we do not pass on any personal data about your visit to our website directly to Hetzner. However, it may happen that Hetzner has at least potential access to personal data, e.g. during maintenance work. Since such cases also involve data processing pursuant to Article 28 GDPR, we have concluded a data protection agreement with Hetzner in accordance with that provision. This also ensures the protection of your personal data.
2. Data collection on our website
Server log files
(1) Description of data processing
If you only use our website for information purposes, i.e. if you do not actively provide us with information, our system automatically collects data and information that your browser transmits to our server (“access data”):
- IP address,
- date and time of your visit,
- time zone difference to Greenwich Mean Time (GMT),
- website from which you accessed our website,
- browser used,
- operating system used.
The data are stored in the log files of our system. These data are not stored together with other personal data of the user.
(2) Legal basis for data processing
The legal basis for the temporary storage of data and log files is Article 6 para.1, sentence 1, litera f) GDPR (legitimate interest).
(3) Purpose of data processing
The temporary storage of data by the system is necessary to provide you our website. For this purpose, the user’s IP address in particular must remain stored for the duration of the session.
The data are stored in log files to ensure the functionality of the website. In addition, the data help us to ensure the security of our IT systems. No evaluation of the data for marketing purposes takes place in this context.
These purposes also include our legitimate interest in data processing pursuant to Article 6 para.1, sentence 1, litera f) GDPR.
(4) Duration of storage
The data are deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. If data are collected for the provision of the website, the data will be deleted when the respective session has ended. If the data are stored in log files, they are deleted after 7 days at the latest.
(5) Possibility to object
The collection of data for the provision of the website and the storage of data in log files are mandatory for the operation of the website. There is therefore no possibility on the part of the website user to object.
HubSpot CDN
(1) Description of data processing
We use the CDN-services of HubSpot, Inc. 25 First Street, 2nd Floor, Cambridge, MA 02141, United States of America. A CDN is a content delivery network that ensures that our website can be made available to all users quickly. For this purpose, HupSpot CDN may process personal data, e.g. your IP-address.
(2) Legal basis for data processing
The legal basis for the temporary storage of your data is Article 6 para.1, sentence 1, litera f) GDPR (legitimate interest).
(3) Purpose of data processing
We use the HubSpot CDN in order to provide you our website in a quick and user-friendly way. These purposes also include our legitimate interest in data processing pursuant to Article 6 para.1, sentence 1, litera f) GDPR.
(4) Third country transfers
Your personal data may be transferred to third countries that do not provide an adequate level of data protection. Therefore, to ensure the security and privacy of your data, we entered into an agreement including the Standard Contractual Clauses with HubSpot, Inc. These Clauses are an appropriate safeguard following Art. 46 para. 2 litera c) GDPR.
(5) Possibility to object
The use of the HubSpot CDN and the associated data processing are mandatory for the operation of the website. There is therefore no possibility on the part of the website user to object.
Use of cookies
(1) Description of the general data processing
This website uses cookies. Cookies are small text files that are assigned to the browser you are using and stored on your hard drive, and through which certain information flows to the entity that sets the cookie (in this case, through us). Cookies cannot execute programs or transmit viruses to your computer.
In addition to cookies, we use local storage technology (local storage) and session storage technology. Here, information is stored locally in the cache (“buffer memory”) of your browser and can be read. This technique is also called web storage technique.
Furthermore, the techniques used on this website include so-called pixels. A pixel is a small amount of code on a web page that is typically used in conjunction with cookies to identify users and track user behavior. We use pixels, for example, to find out whether you have interacted with certain website content. This allows us to measure and improve our services.
For better readability, we refer to cookies, pixels and webstorage technology together as “cookies” in the following. You can find out what types of cookies and other web storage technologies this website uses, what they do and how they work in the following section.
Essential cookies
The use of web storage technology on this website is technically necessary to enable us to manage consents for the use of cookies requiring consent. We use the Consent Management Tool of Usercentrics GmbH (“Usercentrics”) to obtain and document consents for data processing by the services we use. Furthermore, we use other essential cookies in order to provide you a secure and user-friendly website. You can read further details about this in the following sections.
The legal basis for the use of the essential cookies and the associated data processing is § 25 para. 2 Nr. 2 TTDSG combined with Art. 6 para. 1 litera f) GDPR (legitimate interests). Our legitimate interest is to provide you with a functional website and a user-friendly consent management tool.
Functional cookies
Functional cookies are used to analyze how our website is used. For example, we use these cookies to determine the number of visitors to this website. We use the information to optimize our website and adapt it to the needs of users. The legal basis for the use of functional cookies and the associated data processing is consent pursuant to § 25 para. 1 TTDSG combined with Art. 6 para 1 litera a) GDPR.
Content cookies
Content cookies are used to show you content (videos). They are used to provide useful functions on our website. The legal basis for the use of these cookies and the associated data processing is consent pursuant to § 25 para. 1 TTDSG combined with Art. 6 para 1 litera a) GDPR.
Marketing cookies
Marketing cookies are used to show you personalized promotional content that is relevant to your interests. This is done not only on this website, but also on other advertising partner websites (third-party providers). This is referred to as retargeting. Marketing cookies help us to display relevant advertising content for you. The legal basis for the use of marketing cookies and the associated data processing is consent pursuant to § 25 para. 1 TTDSG combined with Art. 6 para 1 litera a) GDPR.
(2) Tools that use these cookie-technologies
In the following, we describe the services for which we use the technologies described above on this website. Further information is described for you in the consent management platform of Usercentrics.
Usercentrics Consent Management Platform
Usercentrics is a consent management system that automatically blocks all cookies and pixels that are not technically necessary until the user has given their consent. We use Usercentrics to comply with legal obligations and to store your consent for certain functions. Thus, when visiting this website, you have the option to set the cookies and pixels according to your pre-selection. Further information is described for you in Usercentrics.
HubSpot Forms
HubSpot Forms is a tool that helps us creating online forms. We use HubSpot Forms from HubSpot, Inc., 25 First Street, 2nd Floor, Cambridge, MA 02141 USA to enable interested parties to contact us, for example, by submitting a request for a product demonstration via a HubSpot Form. In addition, HubSpot Forms are used to provide access to exclusive content, such as whitepapers or on-demand webinars. Further information is described for you in Usercentrics.
Google Analytics
To analyze website usage, this website uses the Google Analytics services of Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). We use the anonymization extension “_anonymizeIp()” to anonymize the IP address. Further information is described for you in Usercentrics.
Google Tag Manager
This website uses the Google Tag Manager. Through this service, third-party website tags can be managed on our website (e.g. Google Analytics) via an interface. Further information is described for you in Usercentrics.
Google Ads, Conversion Linker
This website uses the service Google Ads. Through this service, we are able to track conversions and deliver advertisements. Further information is described for you in Usercentrics.
Conversion Linker
This website uses the service “Conversion Linker” from Google. With the help of this tool, we can effectively measure the conversions of our website. Further information is described for you in Usercentrics.
HubSpot
We use HubSpot from HubSpot, Inc., 25 First Street, 2nd Floor, Cambridge, MA 02141 USA as our central CRM-system. Embedded functions are analytics, ads, site optimization and live chat. Further information is described for you in Usercentrics.
Vimeo
We use the video service “Vimeo” of Vimeo LLC, 555 West 18th Street, New York, New York 10011, United States of America to show you videos on our website. Further information is described for you in Usercentrics.
YouTube
We use the video service “YouTube”, which belongs to Google. We have activated the extended data protection mode, i.e. videos are not accessed via youtube.com, but via youtube-nocookie.com. Further information is described for you in Usercentrics.
LinkedIn Insight Tag, LinkedIn Ads
We also use the LinkedIn Insight Tag and the products of LinkedIn Ads in order to track the conversions from our website and for retargeting purposes. The service is provided by LinkedIn Ireland Unlimited Company
Wilton Place, Dublin 2, Ireland. Further information is described for you in Usercentrics.
Facebook-Pixel, Facebook Ads
We also use the Facebook-Pixel and the products of Facebook Ads in order to track the conversions from our website and for retargeting purposes. The service is provided Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. Further information is described for you in Usercentrics.
(3) Third country transfers
Data processing in connection with the above-mentioned services partly takes place outside the EU or the EEA. An adequate level of data protection pursuant to Art. 46 para. 2 litera c) GDPR can be assumed through the use of standard contractual clauses. Please note: There is a data transfer to the USA, a country without a sufficient level of data protection, when using the services described here. Please refer to the description of the individual services in Usercentrics to find out which other third countries are involved.
(4) Right to withdraw
Once you have given your consent, you can revoke it at any time and without giving reasons with effect for the future. The revocation can be carried out at any time by changing the settings in Usercentrics.
Forms and e-mail contact
(1) Description and scope of data processing
You will find various forms on our website. What data are collected in the process is determined by the respective form. These data are collected for the following purposes:
- REQUEST FOR CUSTOMISED DEMO: To be able to offer you a free, customised demo of Data Virtuality. If you request an appointment for a demo, then we will use your data to contact you, determine your needs and schedule an appointment together with you to meet.
- 14-DAY TRIAL To provide you with our services free of charge for 14 days for testing. If you ask for our 14-DAY TRIAL, we will use your data to contact you, determine your needs and arrange an appointment with you.
- FREE E-BOOKS: To provide you our free documents (white papers, guides). If you download these documents, we will contact you about our products and services.
If you request an INDIVIDUAL DEMO, a 14-DAY TRIAL or FREE E-BOOKS or WHITEPAPERS online, we may also use the personal information you provide us through the form for sales/marketing communications. By such communications we mean:
- telephone contact (follow-up after INDIVIDUAL DEMO REQUEST, 14-DAY-TRIAL, FREE E-BOOKS or WHITEPAPERS) as well as
- contact by e-mail to draw your attention to our newsletter or our products and services, or direct contact by e-mail.
Our website also gives users the opportunity to contact us via the e-mail addresses provided. In this case, the personal data of the user transmitted with the e-mail are stored.
(2) Legal basis for data processing
The legal basis for the processing of the data is Article 6 para. 1, sentence 1, litera a) GDPR (consent).
(3) Duration of storage
We store your data We store your data until you revoke your consent.. In case we are legally obliged not to delete data (e.g. documents that must be kept in accordance with tax and commercial law) or require data to safeguard legitimate interests, for example to assert claims, we may store information for a longer period.
(4) Possibility to withdraw a consent
You can withdraw your consent at any time via the “Unsubscribe”-link in our e-mails or by sending an e-mail to datenschutz@datavirtuality.de to request the deletion from the database of the personal data you have transmitted to us via the online form.
(5) Disclosure of data
In order to achieve the intended purposes, it is necessary for data to be passed on to third parties. The legal basis for disclosure is Article 6 para. 1, sentence 1, litera f) GDPR (legitimate interest). It is based on our legitimate interest in the efficient provision of our services. We only work with third parties who offer sufficient guarantees that appropriate technical and organisational measures will be taken to ensure adequate protection of your rights.
The forms on our website are linked to HubSpot. Voluntarily provided personal data are processed with the HubSpot CRM system for the purpose of establishing contact and/or sending information.
We use HubSpot also as a marketing analysis service that enables us to maintain, measure, expand our web offering and marketing communications and optimise our website content. Data are processed in HubSpot on our behalf through the use of cookies.
(6) Provider information:
HubSpot, Inc.
25 First Street, 2nd Floor
Cambridge, MA 02141 USA
The personal data you provide us in the course of registering for the services and products will also be processed in the United States for the purpose of sending the mailings and for marketing purposes. In order to secure these transfers, we have concluded a data processing agreement with HubSpot. This is a contract in which HubSpot agrees to protect our users’ information and to process it on our behalf in accordance with its privacy policies. Since we cannot exclude that the use of HubSpot may result in a transfer of data to insecure third countries, in particular the U.S., we have concluded Standard Contractual Clauses with HubSpot pursuant to Art. 46 para. 2 litera c) GDPR.
(7) Analysis and success measurement
We would like to point out that we evaluate your user behaviour when sending e-mails. For this evaluation, the e-mails sent contain web beacons and/or tracking pixels that are stored externally. For the evaluations, we link the above server log data and the web beacons to your e-mail address and an individual ID. Links received in the newsletter also contain this ID. With the data obtained in this way, we create a user profile in order to tailor the newsletter to your individual interests. We record when you read our newsletters, which links you click in them and infer your personal interests from this. We link these data to actions you take on our website.
The use of the pixel and the measurement of the success of the e-mails are based on your consent (Art. 6 para. 1 sentence 1, litera a) GDPR, § 25 para 1 TTDSG). You can revoke this consent at any time. Unfortunately, an independent revocation of the consent to the performance measurement is not possible. However, you can revoke your consent to receive the mailings.
3. Online applications
When you apply online on our website, we store your name, email, address, telephone number and how you learned about the job you are applying for. In addition, we store your electronic letter of motivation and your electronic resume. In addition, we store additional data if you voluntarily upload them for us via the Upload/Resume field.
By way of your application, you represent that the information you have provided is true. Please note that any false statement or deliberate omission may constitute a reason for rejection or subsequent termination.
We do not need information from you that is not usable under the General Equal Treatment Act (race, ethnic origin, gender, religion or belief, disability, age or sexual identity). We also do not ask for information on diseases, pregnancy, ethnic origin, political beliefs, philosophical or religious convictions, trade union membership, physical or mental health or sex life. This also applies to content that is suitable for violating the rights of third parties (e.g. copyrights, press rights or general rights of third parties).
Your personal data will only be processed if they relate to your interest in current or future employment with us and the processing of your application. The data will not be passed on to third parties. If your application is successful, the data provided may be used for administrative purposes within the framework of your employment. The legal basis is § 26 para. 1 of the German Federal Data Protection Act (Bundesdatenschutzgesetz, BDSG).
Your online application will only be processed and acknowledged by the relevant contact persons at our company. All employees entrusted with data processing are obliged to maintain the confidentiality of your data. Under no circumstances will third parties be made aware of your details. The processing of the data takes place exclusively in Germany.
If we are unable to offer you employment, we will retain the data you have provided for up to 6 months for the purpose of answering questions relating to your application and rejection based on a statutory retention obligation. The legal basis for the storage obligations is Article 6 para. 1 litera c GDPR (legal obligation).
Your data are transmitted in encrypted form and then stored in a database. All systems in which your personal data are stored are protected against access and only accessible to a certain group of persons responsible for personnel.
4. Our social media sites
(1) Data processing through social networks
We maintain publicly accessible profiles on social networks. The social networks we use in detail can be found below.
Social networks such as Facebook, Google+, etc. can usually analyse your user behavior comprehensively when you visit their website or a website with integrated social media content (e.g. like buttons or advertising banners). Visiting our social media sites triggers numerous processing operations relevant to data protection. In particular:
If you are logged into your social media account and visit our social media presence, the operator of the social media portal can attribute this visit to your user account. However, your personal data may also be collected if you are not logged in or do not have an account with the respective social media portal. In this case, this data collection takes place, for example, via cookies that are stored on your terminal device or by recording your IP address.
With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, interest-related advertising can be displayed inside and outside the respective social media presence. If you have an account with the relevant social network, interest-based advertising can be displayed on all devices on which you are logged in or were logged in.
Please also note that we cannot track all processing on the social media portals. Depending on the provider, the operators of the social media portals may be able to carry out further processing operations. Details can be found in the terms of use and data protection policies of the respective social media portals.
(2) Legal basis
Our social media sites are designed to ensure the most comprehensive presence on the Internet possible. This is a legitimate interest in the terms of Article 6 para. 1 litera f GDPR. The analysis processes initiated by the social networks may have different legal bases, which must be stated by the operators of the social networks (e.g. consent in the terms of Article 6 para. 1 litera a GDPR).
(3) Data controller and assertion of rights
If you visit one of our social media sites (e.g. Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during your visit. You can assert your rights (information, rectification, erasure, restriction of processing, data portability and complaint) both against us and against the operator of the respective social media portal (e.g. against Facebook).
Please note that despite our joint responsibility with the social media portal operators, we do not have full control over the data processing operations of the social media portals. Our possibilities depend to a large extent on the corporate policy of the respective provider.
(4) Storage period
The data collected directly by us via the social media presence are deleted from our systems as soon as the purpose for their storage no longer applies, you request us to delete them or revoke your consent to storage. Stored cookies remain on your device until you delete them. Mandatory legal provisions – in particular retention periods – are not prejudiced hereby.
We have no influence on the storage period of your data, which are stored by the operators of the social networks for their own purposes. For details, please contact the operators of the social networks directly (e.g. in their privacy policy, see below).
(5) Social networks in detail
We have a profile on Facebook. The provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Irland.
You can adjust your advertising settings independently in your user account. To do this, click on the following link and log in. Details can be found in the Facebook Privacy Policy.
We use the Twitter text messaging service. The provider is Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland.
You can adjust your Twitter privacy settings independently in your user account. To do this, click on the following link and log in. Details can be found in the Twitter Privacy Policy .
We have a profile at Instagram. The provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Irland. Details on how we handle your personal data can be found in the Instagram Privacy Policy.
We have a profile at Pinterest. The operator is Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland (“Pinterest”). Details on how we handle your personal data can be found in the Pinterest Privacy Policy.
We have a profile on XING. The provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. Details on how we handle your personal data can be found in the XING Privacy Policy.
We have a profile at LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn uses advertising cookies.
Details on how we handle your personal data can be found in the LinkedIn Privacy Policy.
Version: June 2022
