Privacy Policy

Last updated: February 2023

We are very pleased that you are interested in our company. JENTIS GmbH (hereinafter “JENTIS”) develops software solutions for website tracking based on a unique twin-server technology. JENTIS offers software as a service (“SaaS”) to businesses and operates this website to showcase its products and tell its story. The URL of the website is: https://jentis.com (“JENTIS Website”).

The data controller within the meaning of the General Data Protection Regulation (“GDPR”), other data protection laws applicable in the Member States of the European Union and other provisions on data protection is JENTIS, which operates the JENTIS Website.

This Privacy Policy describes the types of personal data collected, how that data is used and your rights and choices regarding the processing of your personal data when you visit and interact with the JENTIS website. The website is not intended for children and we do not knowingly collect data from children. This Privacy Policy does not apply to third party websites, services or applications, even if they are accessible through the JENTIS website.

Name and address of the person responsible

The responsible party within the meaning of the General Data Protection Regulation (GDPR) and other data protection regulations is:

JENTIS GmbH

Schönbrunner Street 231

1120 Vienna

Austria

+439974354

privacy@jentis.com

www.jentis.com

Company register: FN 529675i

Commercial Court of Vienna

Contact details of the data protection officer:

The data protection officer of the responsible party is:

DataCo GmbH

Dachauer Street 65

80335 Munich

Germany

+49 89 7400 45840

www.dataguard.de

1. General information on data processing

Scope of the processing of personal data

As a matter of principle, we process personal data of our users only insofar as this is necessary for the provision of a functional website as well as our contents and services. The processing of personal data of our users is regularly only carried out with the consent of the user. An exception applies in those cases where obtaining prior consent is not possible for actual reasons and the processing of the data is required by legal regulations.

Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for processing operations of personal data, Art. 6 (1) p. 1 lit. a GDPR serves as the legal basis.

When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) p. 1 lit. b GDPR serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.

Insofar as processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6 (1) sentence 1 lit. c GDPR serves as the legal basis.

In the event that vital interests of the data subject or another natural person make it necessary to process personal data, Article 6 (1) sentence 1 lit. d GDPR serves as the legal basis.

If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not override the former interest, Art. 6 (1) p. 1 lit. f GDPR serves as the legal basis for the processing.

Data erasure and storage period

The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may take place beyond this if this is required by the European or national legislator in Union regulations, laws or other provisions to which the controller is subject. Data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or performance of a contract.

2. Provision of the website and creation of log files

Scope of data processing

The term “personal data” is defined in the GDPR as any information relating to an identified or identifiable natural person (“data subject”). Personal data means any data by which you can be identified or which can be associated with you.

We collect and process personal data that you voluntarily provide to us, as well as information that your browser or mobile device automatically provides when you visit the JENTIS website.

Typically, we may collect and process the following categories of data:

Your first and last name;
Your contact information, such as phone and email address;
Your business information, such as company name and type of business;
Your consent form to receive our marketing materials, such as promotions and newsletters;
Your IP address;
Operating system;
Browser type;
Browser version;
Browser configuration;
Other relevant information about your computer and internet connection, to identify the type of device you are using, to connect to the website, to exchange data with your (mobile) device or to ensure proper use of the website;
The URL and IP address of the website from which you access the JENTIS website or from which you are redirected to our website, including date and time;
Any pages of the JENTIS website that you click on during your visit and any links on our website that you click on, including the date and time;
The entire Uniform Resource Locator (URL) clickstream to, through and from the website, including date and time;
Information collected through cookies or similar technologies (as explained below);
Other similar data and information that may be used in the event of cyber-attacks on our information technology systems.

This data is stored in the log files of our system. Storage of this data together with other personal data of the user does not take place.

Purpose of data processing

The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s computer. For this purpose, the user’s IP address must remain stored for the duration of the session.

The storage in log files is done to ensure the functionality of the website. In addition, we use the data to optimise the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

These purposes are also our legitimate interest in data processing according to Art. 6 para. 1 p. 1 lit. f GDPR.

Legal basis for data processing

The legal basis for the temporary storage of the data and the log files is Art. 6 para. 1 p. 1 lit. f GDPR.

Duration of storage

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

In the case of storage of data in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.

Right to object and erasure

The collection of data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Consequently, there is no right to object or erasure on the part of the user.

3. Cookies that we use

Cookies are text files that are stored on a computer system via an Internet browser.

Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters by which websites and servers can be assigned to the specific Internet browser in which the cookie was stored. This enables visited websites and servers to distinguish the individual browser of the data subject from other Internet browsers that contain other cookies. A specific internet browser can be recognized and identified via the unique cookie ID.

We exclusively use 1st party cookies. These are two types of cookies:

Essential cookies:

We currently set a cookie as part of our Consent Management Platform to ensure that when you return to our website, we know which cookie option you selected on your previous visit. This enables us to fulfill our legal obligation to document your consent.

Statistics cookies:

We use our own JENTIS first-party cookie. This allows JENTIS to retain full control over the data collected, which is processed on the JENTIS server and owned by JENTIS.

We use the JENTIS cookie to collect non-personally identifiable aggregate statistics about your visit. You can see below what information we collect about your visit.

If you do not make a selection in the banner, only essential cookies will be set and the banner will be displayed again each time you visit our website.

By means of a cookie (if you allow it), the information and offers on our website can be optimized in terms of the user. Cookies allow us to recognize the users of our website. The purpose of this recognition is to make it easier for the user to use our website. For example, the user of the website that uses cookies does not have to enter access data each time the website is called up, as this data is taken from the website and the cookie is stored on the user’s computer system.

You can prevent the setting of cookies by our website at any time by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time using an Internet browser or other software programs. This is possible in all common Internet browsers. If you deactivate the setting of cookies in the Internet browser used, it may not be possible to use all the functions of our website to their full extent.

4. How we use personal data

4.1 Statistical analyses

Purpose: Measuring reach and/or analyzing visitor numbers, analysing the success of marketing campaigns, improving website usability, optimising content.

The following personal data is used: Browser cookie, device information, IP address, surfing behavior.

All personal data is processed in a pseudonymized form on the JENTIS Twin Server (proxy server). In doing so, JENTIS does not draw any conclusions about the individual visitors to the website.

Legal basis: legitimate interest in relation to our services, Art. 6 (1) lit. f GDPR;

Third party involved: Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland.

We use Google Analytics as part of our own JENTIS server-side solution to create aggregated statistical reports without personal data about the reach of our website.

In addition, we use Google Ads to serve ads and we create aggregated statistical report without personal data about the success rate of our advertising campaigns, i.e. the total number of users who responded to our ad. These aggregated statistics include the origin of visitors, their time spent on individual pages, and the use of search engines, thus allowing us to optimize our content.

Pseudonymisation of all identifiers:

Through the JENTIS server-side solution, we apply a de-identification mechanism on our JENTIS Twin Server that automatically truncates IP addresses by the last digit, making it impossible to identify a specific European visitor by IP address alone. All identifiers from analytics providers are deleted. Instead, randomly generated numbers are passed on that do not allow re-identification.

The JENTIS server-side solution therefore does not pass on any personal data to third parties and, accordingly, not to any third country. The anonymous data of the server log files is stored separately from any personal data of the data subject. By using the JENTIS server-side solution, we pursue the goal of ensuring an optimal level of protection for the personal data we process.

4.2 Company-related tracking

Purpose: Success analysis of marketing campaigns, improvement of website usability, content optimisation.

The following data is used: Name, origin and industry of the visiting company, source/referent of the visiting company, search term, visitor behavior (e.g. (sub)pages visited, time of visit, duration of visit).

Third party involved: SalesViewer GmbH Huestraße 30, 44787 Bochum, Germany.

We collect company-related data from our visitors through the use of Salesviewer in order to optimize our website content and marketing campaigns.

No cookies or similar files are stored on your terminal device. Instead, Salesviewer only identifies visiting companies by matching them with generally available information. For this purpose, the website visitor’s identification features are encrypted using a one-way function that cannot be calculated in retrospect (so-called hashing) and processed in pseudonymized form after a preselection that filters out private accesses. The identification features are matched by Salesviewer with a database limited to company-related data on an EU-based server.

Insofar as company-related accesses can be identified as part of this process, we are provided with corresponding company-related data of the website visit.

Legal basis: legitimate interest in relation to our services, Art. 6 para. 1 lit. f) GDPR.

Should processing of personal data nevertheless occur, it will be based on our legitimate interests in optimising the website and marketing campaigns. Our overriding legitimate interest stems from the limited processing purpose, the pseudonymous data processing, the low intensity of intervention due to the limitation to company data, the provision of information on the website in accordance with Art. 13 GDPR and the easy possibility to object (opt-out).

Right to object and erasure:

You can object to the use of Salesviewer here.

4.3 Webinars

Purpose: Conducting the webinar/sending relevant information about services and events.

We organise regular free events in the form of webinars as part of our service. If you register for one of our webinars, you can provide us with additional personal data. In order to conduct the webinar, we will process the information you share with us, such as your first and last name or organisation. We will use your email to communicate relevant information about the webinar.

The following personal data will be used: First and last name, email address, organisation.

Third party involved: GoToWebinar (GoTo Technologies Ireland Unlimited Company, 10 Hanover Quay Dublin 2, D02R573 Ireland).

We use the software solution GoToWebinar to conduct online seminars. Your data is processed on servers hosted by GoTo Technologies in the EU and in the USA and within the scope of the GDPR. We have also concluded appropriate data protection agreements with GoTo Technologies (among other things, in accordance with the EU standard data protection clauses), with which we oblige the provider to process the data of our visitors strictly in accordance with instructions, to protect them and not to pass them on to third parties. GoTo Technologies takes further technical precautions to protect personal data. Personal data is not transferred to third parties in the sense of Art. 4 No. 10 GDPR.

Legal basis: legitimate interest in relation to our services, Art. 6 para. 1 lit. f) GDPR / consent according to Art. 6 para. 1 lit. a) GDPR.

Insofar as your data is necessary for the implementation of the webinar, we base the data processing on our legitimate interest.

If you give us your consent to do so, we may additionally use your data to send you relevant information about JENTIS services and events by email. Furthermore, you may consent to your data being shared with our marketing partners who may send you information about their services and events. You will see the consent options in the registration form.

Right to object, revoke your consent and erasure:

You may freely give or refuse consent and/or object to the processing of your data based on our legitimate interest. You may change your decision at any time by sending us an email.

If you change your decision, this will not affect the lawfulness of the processing based on consent prior to its withdrawal.

4.4 Newsletter

Purpose: Communication of relevant information about JENTIS services and events.

The purpose of collecting the user’s email address is to deliver the newsletter.The collection of other personal data as part of the registration process serves to prevent misuse of the services or the email address used.

Third party involved: CleverReach GmbH & Co. KG, Schafjückenweg 2, 26180 Rastede, Germany

The following personal data is used: First and last name, email address, organisation.

Legal basis: consent in accordance with Art. 6 (1) a) GDPR.

Duration of storage:

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. Accordingly, your email address will be stored as long as the subscription to the newsletter is active.

The other personal data collected during the registration process is usually deleted after a period of seven days.

Right to revocation of consent and erasure:

You can cancel your subscription to the newsletter at any time. For this purpose, you will find a corresponding link in each newsletter.

This also allows you to revoke your consent to the storage of personal data collected during the registration process.

4.5 Online store

Purpose: To carry out orders of the JENTIS SaaS.

The following personal data will be used: Name, email address, emergency contact information, billing address and payment method, payment information and billing information.

Third party involved:

Woocommerce, a plugin for WordPress provided by Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, United States.

In addition, we may use third-party payment processors, such as Stripe, to process your payment. Please note that these payment processors may collect and process your payment information, and their use of your data is governed by their respective privacy policies.

Legal basis: performance of pre-contractual measures that are carried out at the request of the data subject, Art. 6 (1) (b) GDPR.

When you place an order in our online store, you initiate a contract for the use of the JENTIS SaaS with us. We use Woocommerce, a cloud-based platform, to take the actions necessary for the conclusion of the contract and to process your order. Please note that Woocommerce is a U.S.-based company, so placing an order through our online store results in an international data transfer to the United States. We have entered into appropriate data protection agreements with Woocommerce (including in accordance with the EU standard data protection clauses), with which we obligate the provider to process our visitors’ data strictly in accordance with instructions, to protect it and not to pass it on to third parties. Woocommerce takes further technical safeguards to protect personal data.

Detailed information about Woocommerce’s data processing operations and sub-processors can be found in the Woocommerce Privacy Policy.

4.6 Application

Purpose: Processing your application.

The following personal data will be used: Salutation, first name, last name, address, telephone / mobile phone number, e-mail address, salary requirement, details of training and schooling, language skills, curriculum vitae, certificates, photo.

You can send us your application by email. In doing so, we collect your email address and the data you provide in the email.

Third party involved: none

Legal basis: Implementation of pre-contractual measures that are carried out at the request of the data subject, Art. 6 para. 1 p.1 lit. b) Alt. 1 GDPR

Duration of storage:

After completion of the application process, the data will be stored for up to six months. Your data will be deleted at the latest after the six months have expired. In the event of a legal obligation, the data will be stored within the framework of the applicable provisions.

Right to object and erasure:

The applicant has the option to object to the processing of personal data at any time. In such a case, the application can no longer be considered.

Data subjects may communicate their request for modification or erasure of their data at any time here.

All personal data stored in the course of electronic applications will be deleted in this case.

4.7 Email contact/contact form

Purpose: Contacting and processing communication with website visitors.

Our website features a contact form that enables users to contact JENTIS quickly and electronically and to communicate with us directly. If a user takes advantage of this option, the data entered in the input mask is transmitted to us and stored.

The following personal data is used:

At the time the message is sent, the following data is stored: email address, surname, first name, telephone / mobile phone number, IP address of the calling computer, date and time of contact, message, company name.

Alternatively, it is possible to contact us via the email address provided. In this case, the personal data of the user transmitted with the email will be stored.

The data is used exclusively for processing the conversation.

Legal basis for data processing:

For the processing of the data, your consent is obtained during the sending process and reference is made to this privacy policy.

The legal basis for the processing of the data, if the user has given his consent, is Art. 6 para. 1 p. 1 letter a) GDPR.

The legal basis for the processing of data transmitted in the course of sending an email is Art. 6 para. 1 p. 1 lit. f) GDPR.

If the email contact aims at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 p. 1 letter b) GDPR.

Duration of storage:

The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. For the personal data from the input mask of the contact form and those sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when it is clear from the circumstances that the matter in question has been conclusively clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

Right to object, revoke your consent and erasure:

The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by email, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued.

Data subjects can communicate their revocation of consent and objection to storage at any time here.

All personal data stored in the course of contacting us will be deleted in this case.

4.8 Tracking Checker

Purpose:

To provide a tool to check the tracking implementation of websites; to communicate relevant information about JENTIS services and events.

Our Tracking Checker checks the tracking implementation of websites and detects whether and which third-party tools are used. It also determines whether the third party providers are based in the European Economic Area (EEA) or in a third country and whether tracking is carried out according to the cookie options selected by website visitors. This information will be provided to you as a report.

The following personal data is used:

Name, company, country, email address, position.

It is in our prevailing legitimate interest to process the data you provide in order to measure and improve the reach and functionality of the Tracking Checker. If you give us the appropriate consent to do so, we will send you relevant information about JENTIS services and events.

Legal basis:

The legal basis for the collection of the data you provide in the course of registration is Art. 6 para. 1 p. 1 lit. f) GDPR.

The legal basis for data processing for purposes that go beyond improving the Tracking Checker, if the user has given consent, is Art. 6 para. 1 p. 1 lit. a) GDPR.

4.9 Scheduling

Purpose:

If you select an appointment for an initial consultation with one of our experts via the website, the contact details you enter into the form, will be processed for the purpose of arranging the appointment and processing your enquiry and follow-up questions.

The following personal data will be used:

First name, last name, email address

Third party involved:

Demodesk GmbH, Franz-Joseph-Str. 9, 80801 München

Your contact details are transmitted to the Demodesk platform and processed exclusively on our behalf. For more information about the Demodesk Privacy Policy, please visit https://demodesk.com/legal/privacy-policy-platform.

Legal basis for data processing:

The data entered in the contact form is processed exclusively on the basis of your consent (Art. 6 para.1 lit. a GDPR).

Right to object, revoke your consent and erasure:

You can revoke your consent to data processing at any time. For this, an informal communication by email to us is sufficient. The lawfulness of the data processing operations carried out until the revocation remains unaffected by the revocation. The data you entered in the appointment form will remain with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after processing your request has been completed). Mandatory legal provisions – in particular retention periods – remain unaffected by this.

5. Data transfer to third countries

We are entitled to transfer your personal data outside the EU/EEA, including to third-party companies (contracted service providers), insofar as this is expedient for the data processing described in this Privacy Policy. The recipients are obliged to protect your data to the same extent as we do. If the level of data protection in a particular country is lower than in the EU, we will ensure that this is not the case by concluding EU standard contractual clauses for the transfer of personal data to third countries, which ensure that the level of protection for your personal data in the third country is equivalent to that in the EU due to technical and organisational measures.

6. Length of storage of personal data

Your personal data will be stored for as long as necessary to achieve the defined processing purposes. After this period has expired, the corresponding data is routinely deleted, provided that it is no longer required to initiate or fulfill a contract. If the purpose of storage no longer applies, or if a storage period prescribed by the European Directive and Ordinance or another competent legislator expires, the personal data will be deleted routinely and in accordance with the statutory provisions.

7. Data exchange with third parties

We use a select number of trusted third-party service providers for certain technical data analysis, processing and/or storage services (e.g., IT and related services). We may also enlist the help of third parties to improve our website and certain tools for our marketing. These third-party service providers are carefully selected and meet high privacy and security standards. We contractually require them to keep all information we share with them confidential and to process personal data only in accordance with our instructions. The legal basis for such processing would be legitimate interest under Art.6(1)(f) GDPR.

In addition to service providers, other categories of third party service providers may include:

Suppliers/Public Entities. To the extent necessary to use certain services that require specialized expertise (e.g. legal, accounting or auditing services), we may disclose personal data to suppliers of such services or to public bodies providing such services (e.g. courts). The legal basis for this data processing is Art.6(1)(f) GDPR.
Disclosure in case of organisational changes. We may disclose Personal Data to facilitate a change in ownership of JENTIS (including, but not limited to, an acquisition by or merger with another company, a financing due diligence, reorganisation, bankruptcy, receivership, purchase or sale of assets, or transfer of services to another provider) and the related transfer of all such information to the new owner, in which case all information will remain protected in accordance with this Privacy Notice. The legal basis for this data processing is Art.6(1)(f) GDPR.

Except in the cases mentioned above, we will only disclose your personal data to third parties if we consider this necessary for the initiation/fulfillment of the contract with you, if we have received explicit consent in accordance with Art.6(1)(a) GDPR or if we are obliged to do so by law or by order of a public authority or court.

8. Use of company presence in social networks

8.1 LinkedIn

Scope of data processing

We use the possibility of company presence on the career-oriented network LinkedIn (LinkedIn, Unlimited Company Wilton Place, Dublin 2, Ireland).

On our site, we provide information and offer users the opportunity to communicate. The company website is used for job applications, information/PR and active sourcing. We do not have any information on the processing of your personal data by the companies jointly responsible for the corporate presence. For more information, please refer to the privacy policy of:

LinkedIn: https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv

If you carry out an action on our company website (e.g. comments, posts, likes, etc.), you may make personal data (e.g. clear name or photo of your user profile) public.

Legal basis for data processing

The legal basis for the processing of your data in connection with the use of our corporate presence is Art.6 para.1 p.1 letter f) GDPR.

Purpose of the data processing

Our corporate presence serves us to inform users about our services. In doing so, each user is free to publish personal data through activities.

Joint controllership

We are jointly responsible for data processing with LinkedIn and enter into a corresponding Joint Controller Agreement (JCA), which sets out and allocates the respective rights and obligations of the joint controllers, in particular in the case of data subject requests.

Duration of storage

We store your activities and personal data published via our corporate presence until you revoke your consent. In addition, we comply with the statutory retention periods.

Right to object and erasure

You can object at any time to the processing of your personal data that we collect in the course of your use of our corporate presence and assert your data subject rights as stated under Point 12. of this Privacy Policy. To do so, send us an informal email.

You can find more information on objection and erasure options here: https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv

8.2. Youtube

Scope of data processing

We use the possibility of company presence on the video platform YouTube (YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, United States).

On our company page we provide information and offer YouTube – users the possibility of communication. If you perform an action on our YouTube corporate site (e.g. comments, likes, etc.), you may make personal data (e.g. clear name or photo of your user profile) public. However, since we generally or to a large extent have no influence on the processing of your personal data by YouTube, the company jointly responsible for our company presence on the platform, we cannot provide any binding information on the purpose and scope of the processing of your data.

Purpose

Our corporate presence on social networks is used for communication and information exchange with (potential) customers. In particular, we use the corporate presence for communication and information exchange with (potential) customers*.

Publications on the company website may contain the following content: Information about services, advertising, customer contact, information about our events; Current industry-specific news.

Each user is free to publish personal data through activities.

Joint controllership

We are jointly responsible for data processing with YouTube and enter into a corresponding Joint Controller Agreement (JCA), which sets out and allocates the respective rights and obligations of the joint controllers, in particular in the case of data subject requests.

Legal basis for data processing

The legal basis for data processing is Art. 6 para.1 p.1 lit. f GDPR.

The data generated by the company presence is not stored in our own systems.

Right to object and erasure

You can object at any time to the processing of your personal data that we collect in the course of our company presence and assert your data subject rights stated under Point 12. of this Privacy Policy. To do so, send us an informal email.. For more information on the processing of your personal data by YouTube and the corresponding objection options, please click here: https://policies.google.com/privacy?gl=DE&hl=de

8.3 Facebook

Scope of data processing

We use the possibility of company appearances on the social network Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA and its representative in the Union Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal H , D2 Dublin, Ireland (hereinafter: Facebook).

On our company page, we provide information and offer Facebook users the opportunity to communicate. If you carry out an action on our Facebook company page (e.g. comments, posts, likes, etc.), it may be that you make personal data (e.g. clear name or photo of your user profile) public. However, as we generally or to a large extent have no influence on the processing of your personal data by Facebook, the company jointly responsible for the JENTIS GmbH corporate presence, we cannot provide any binding information on the purpose and scope of the processing of your data.

Purpose

Our corporate presence in social networks is used for communication and information exchange with (potential) customers. In particular, we use the company website for communication and the exchange of information with (potential) customers.

The publications on the company website may contain the following content: Information about services, advertising, customer contact, information about our events and current industry-specific news. Every user is free to publish personal data through activities.

Joint Controllership

Facebook assumes primary responsibility for the processing of Insights Data within the framework of shared responsibility within the meaning of Art. 26 GDPR and complies with all obligations under the GDPR with regard to the processing of Insights Data (including Art.12 and 13 GDPR, Art. 15-22 GDPR and Art. 32-34 GDPR). In this regard, Facebook provides data subjects with a Page Insights Supplement. (the corresponding “Page Insights Controller Addendum” can be found here: https://de-de.facebook.com/legal/terms/page_controller_addendum). This is a joint responsibility agreement pursuant to Art. 26 GDPR.

Legal basis for data processing

The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR.

The data generated by the company website is not stored in our own systems.

Right to object and erasure

You can object at any time to the processing of your personal data that we collect in the course of your use of our Facebook corporate presence and assert your data subject rights as stated in this Privacy Policy. To do so, send us an informal email.. You can find more information on the processing of your personal data by Facebook and the corresponding objection options here: https://de-de.facebook.com/policy.php

9. Hosting

Scope of data processing

The website is hosted on servers by a service provider commissioned by us.

Our service provider is: Host Europe GmbH, Hansestraße 111 , 51149 Cologne, Germany.

The servers automatically collect and store information in so-called server log files, which your browser automatically transmits when you visit the website.

The information stored is: Browser type and browser version, Operating system used, Referrer URL, Host name of the accessing computer, Date and time of the server request, IP address.

This data is not merged with other data sources.

Legal basis for data processing

The collection of this data is based on our legitimate interests pursuant to Art. 6 (1) (f) GDPR in the technically error-free presentation and optimisation of the website – for this purpose, the server log files must be collected.

The location of the website’s server is geographically in the European Union (EU) or the European Economic Area (EEA).

Right to object and erasure

You can object at any time to this processing of this personal data by sending us an informal email. However, this could impede the correct functioning of our website.

10. Plug-ins

Our website contains social media features, such as share buttons from Facebook, Twitter and LinkedIn.

10.1. Use of LinkedIn

Scope of the processing of personal data

We use functions of the LinkedIn network. The provider is LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland /Subsequently referred to as: LinkedIn). Each time one of our pages containing LinkedIn functions is accessed, a connection to LinkedIn servers is established. LinkedIn is informed that you have visited our web pages with your IP address. If you click the “Recommend button” of LinkedIn and are logged into your account at LinkedIn, it is possible for LinkedIn to assign your visit to our website to you and your user account. Personal data can thus be stored and evaluated, especially the user’s activity (in particular, which pages have been visited and which elements have been clicked on) and device and browser information (in particular, the IP address and operating system).

We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by LinkedIn. Further information on the processing of data by LinkedIn can be found here:

https://www.linkedin.com/legal/privacy-policy

Purpose of data processing

The use of the LinkedIn plugin serves the user-friendliness of our online presence.

Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is basically the user’s consent pursuant to Art. 6 para. 1 p.1 lit. a GDPR.

Duration of storage

Your personal information will be stored for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, e.g. for tax and accounting purposes.

Right to revocation of consent and erasure

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

You can prevent the collection as well as the processing of your personal data by LinkedIn by preventing the storage of third-party cookies on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. Furthermore, the transmission can be prevented by logging out of your LinkedIn account before calling up our website.

You can deactivate the use of your personal data by LinkedIn using the following links:

https://www.linkedin.com/psettings/guest-controls

For more information on objection and erasure options vis-à-vis LinkedIn, please visit:

https://www.linkedin.com/legal/privacy-policy

10.2. Use of Twitter

Scope of the processing of personal data

We use the social plugins of Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA (hereinafter referred to as: Twitter).

With the social plugins, we can integrate content from Twitter (in particular tweets, or moments) or links to the platform of Twitter (in particular tweet or follow button) on our online presence. Personal data can be stored and evaluated, especially the activity of the user (in particular which pages have been visited and on which elements have been clicked) as well as device and browser information (in particular the IP address and the operating system).

By using Twitter and the “Re-Tweet” function, the online presences you visit are connected to your Twitter account and disclosed to third parties. We receive no information about the content of the transmitted data and its use by Twitter.

For more information on the processing of data by Twitter, please click here: https://twitter.com/de/privacy

Purpose of data processing

The integration of the Twitter plug-in serves to improve user-friendliness. Content from Twitter can be displayed embedded and users of the Twitter service can use functions of Twitter.

Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is generally the user’s consent pursuant to Art. 6 (1) p.1 lit. a GDPR.

Duration of storage

Your personal information will be stored for as long as necessary to fulfill the purposes described in this privacy policy or as required by law.

Right to revocation of consent and erasure

You have the right to revoke your consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

You can prevent the collection as well as the processing of your personal data by Twitter by preventing the storage of third-party cookies on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

For more information on objection and erasure options vis-à-vis Twitter, please visit:

https://twitter.com/de/privacy

Should you use these features, they may be able to collect your IP address, which page you are visiting on our website and they may set a cookie in order for the feature to work properly. You may exercise your rights with respect to the use of this data as further indicated in the “Rights of the data subject” section below. Your interactions with these features are subject to the rules of the Privacy Policy of the third party company that provides them.

10.3. Use of Facebook

Scope of the processing of personal data

We use functions of the social network Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA and its representative in the Union Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal H , D2 Dublin, Ireland (hereinafter: Facebook). We use this plugin to enhance the functionality of our online presence. With the social plugins, we can integrate content from Facebook or links to the platform of Facebook (in particular the “share” button) on our online presence. Personal data can be stored and evaluated, especially the activity of the user (in particular which pages have been visited and on which elements have been clicked) as well as device and browser information (in particular the IP address and the operating system) .

By using Facebook and the “Share” function, the online presences you visit are connected to your Facebook account and disclosed to third parties. We receive no information about the content of the transmitted data and its use by Facebook.

Personal data may be stored and evaluated as a result, especially the user’s activity (in particular, which pages have been visited and which elements have been clicked on) as well as device and browser information (in particular, the IP address and the operating system). We have no information about the exact scope of the collection of personal data.

Further information on the processing of data by Facebook can be found here:

https://de-de.facebook.com/policy.php

Purpose of data processing

The use of the Facebook plug-in serves to improve the user-friendliness of our online presence. We use this plug-in to enable our users to easily share the content of our website on social media.

Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is basically the user’s consent in accordance with Art. 6 para. 1 p.1 lit. a GDPR.

Duration of storage

Your personal information will be stored for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, e.g. for tax and accounting purposes.

Right of revocation of consent and erasure

You can prevent the collection as well as the processing of your personal data by Facebook by preventing third-party cookies from being stored on your computer, by using the “Do Not Track” function of a supporting browser, by disabling the execution of script code in your browser or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

For more information on objection and erasure options vis-à-vis Facebook, please visit:

https://de-de.facebook.com/policy.php

11. Data security

We take great care to establish internal procedures that ensure your personal information is both accurate and protected from accidental loss, unauthorized access, unauthorized use, unauthorized modification, and unauthorized disclosure. JENTIS has implemented technical and organisational measures to ensure the most complete protection of personal data processed through the website. Nevertheless, internet-based data transmissions can always have security vulnerabilities, so that absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us by alternative means, e.g. by post.

12. Rights of the data subject

Subject to mandatory legal provisions or conflicting obligations, you may request from us at any time and free of charge information about your personal data processed by us, the correction of any errors in your personal data, the termination of the processing of your personal data or the erasure of your personal data.

In particular, if you qualify as the “data subject” under the terms of the GDPR, you have the right to:

Request information about the personal data we process about you, in accordance with Art. 15;
in accordance with Art. 16, to request without undue delay the rectification of inaccurate data or the completion of incomplete personal data stored by us;
in accordance with Art. 17, to request the erasure of your personal data stored by us, unless the processing of the data is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise or defense of legal claims;
in accordance with Art. 18, to request the restriction of the processing of your personal data, insofar as the accuracy of the data is contested by you or the processing is unlawful;
in accordance with Art. 20, to receive your personal data processed by us in a structured, commonly used and machine-readable format or to request its transfer to another controller;
in accordance with Art. 7(3), to withdraw the consent you have given us at any time. As a result, we will no longer be able to continue the data processing based on this consent;
in accordance with Art. 77, the right to lodge a complaint with a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or the legal address of JENTIS for this purpose.
if the processing of your personal data is processed on the basis of legitimate interests pursuant to Art. 6(1)(f), object to the processing of your personal data pursuant to Art. 21, provided that there are grounds based on your particular situation or the objection is directed against direct marketing. In the latter case, you have a general right to object, which will be implemented by us without any indication of a specific situation.

If you wish to exercise these rights, please send us your request to privacy@jentis.com, if possible, with information about the data processing to which you are referring. . Please provide any information that will help us identify you in our database, such as your full name and email address.

13. Changes to the Privacy Policy

We may need to make changes to this Privacy Policy. The privacy legislation is constantly evolving, and governmental authorities issue guidelines and updates on a regular basis. We may need to change our Privacy Policy to ensure that we implement such recommendations, or if we change the way we sell our products or provide our services. We will notify you of any non-trivial changes to this Privacy Policy by email if that option is available to us.

14. Contact

Please address any questions or requests in connection with this Privacy Policy by contacting us at any time by letter or email at:

JENTIS GmbH

Schönbrunner Straße 231

1120 Vienna

Austria

Phone: +43 1 997 43 54

Email: privacy@jentis.com

Website: www.jentis.com

Business Register: FN 529675j

Commercial Court of Vienna