Privacy Policy

Last updated: April 2024

We are very pleased that you are interested in our company. Jentis GmbH (hereinafter “JENTIS”) develops software solutions for website tracking based on a unique twin-server technology. JENTIS offers software as a service (“SaaS”) to businesses and operates this  website to showcase its products and tell its story. The URL of the website is: https://jentis.com (“JENTIS Website”). 

This Privacy Policy describes the types of personal data collected, how that data is used and your rights and choices regarding the processing of your personal data when you visit and interact with the JENTIS website. The website is not intended for children and we do not knowingly collect data from children. This Privacy Policy  does not apply to third party websites, services or applications, even if they are accessible through the JENTIS website. 

Name and contact information of the controller

The website is operated by JENTIS. JENTIS acts as data controller within the meaning of the General Data Protection Regulation (“GDPR”) and other data protection laws applicable in the Member States of the European Union:

Jentis GmbH

Schönbrunner Street 231

1120 Vienna

Austria

Phone: +439974354

Email:  privacy@jentis.com

Website: www.jentis.com

Company registration number: FN 529675i

Competent court: Commercial Court of Vienna

Contact details of the data protection officer:

Our data protection officer can be reached at:

DataCo GmbH

Dachauer Street 65

80335 Munich

Germany

Phone: +49 89 7400 45840

Website: www.dataguard.de

General information on data processing

Scope of the processing of personal data:

As a matter of principle, we process personal data of our users only insofar as this is necessary for the provision of a functional website as well as our contents and services. The processing of personal data of our users is regularly only carried out with the consent of the user. An exception applies in those cases where obtaining prior consent is not possible for actual reasons and the processing of the data is required by legal regulations.

Legal basis for the processing of personal data:

Insofar as we obtain the consent of the data subject for processing operations of personal data, Art. 6 (1) p. 1 lit. a GDPR serves as the legal basis.

When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) p. 1 lit. b GDPR serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.

Insofar as processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6 (1) sentence 1 lit. c GDPR serves as the legal basis.

In the event that vital interests of the data subject or another natural person make it necessary to process personal data, Article 6 (1) sentence 1 lit. d GDPR serves as the legal basis.

If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not override the former interest, Art. 6 (1) p. 1 lit. f GDPR serves as the legal basis for the processing.

Data erasure and storage period:

The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may take place beyond this if this is required  by the European or national legislator in Union regulations, laws or other provisions to which the controller is subject. Data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or performance of a contract.

Provision of the website and creation of log files

Scope of data processing:

The term “personal data” is defined in the GDPR as any information relating to an identified or identifiable natural person (“data subject”). Personal data means any data by which you can be identified or which can be associated with you. 

We collect and process personal data that you voluntarily provide to us, as well as information that your browser or mobile device automatically provides when you visit the JENTIS website.

Typically, we may collect and process the following categories of data:

• Your first and last name;
• Your contact information, such as phone and email address;
• Your business information, such as company name and type of business;
• Your consent form to receive our marketing materials, such as promotions and newsletters;
• Your IP address;
• Operating system; 
• Browser type;
• Browser version;
• Browser  configuration;
• Other  relevant information about your computer and internet connection, to identify the type of device you are using, to connect to the website, to exchange data with your (mobile) device or to ensure proper use of the website;
• The URL and IP address of the website from which you access the JENTIS website or from which you are redirected to our website, including date and time;
• Any pages of the JENTIS website that you click on during your visit and any links on our website that you click on, including the date and time;
• The entire Uniform Resource Locator (URL) clickstream to, through and from the website, including date and time;
• Information collected through cookies or similar technologies (as explained below);
• Other similar data and information that may be used in the event of cyber-attacks on our information technology systems.

This data is stored in the log files of our system. Storage of this data together with other personal data of the user does not take place.

Purpose of data processing:

The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s computer. For this purpose, the user’s IP address must remain stored for the duration of the session.

The storage in log files is done to ensure the functionality of the website. In addition, we use the data to optimise the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

These purposes are also our legitimate interest in data processing according to Art. 6 para. 1 p. 1 lit. f GDPR.

Legal basis for data processing:

The legal basis for the temporary storage of the data and the log files is Art. 6 para. 1 p. 1 lit. f GDPR.

Duration of storage:

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

In the case of storage of data in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.

Right to object and erasure:

The collection of data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Consequently, there is no right to object or erasure on the part of the user.

Cookies that we use

Cookies are text files that are stored on a computer system via an Internet browser.

Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters by which websites and servers can be assigned to the specific Internet browser in which the cookie was stored. This enables visited websites and servers to distinguish the individual browser of the data subject from other Internet browsers that contain other cookies. A specific internet browser can be recognized and identified via the unique cookie ID.

We exclusively use 1st party cookies. These are two types of cookies:

Essential cookies

We currently set a cookie as part of our Consent Management Platform to ensure that when you return to our website, we know which cookie option you selected on your previous visit. This enables us to fulfil our legal obligation to document your consent. 

We also store your language settings so that you do not have to reset your language preferences every time you visit our website.

Additionally, we use cookies to store strictly necessary information for the operation of our online shop so you are able to purchase our products and services via the website.

On our documentation site, we use JENTIS first-party cookies, which are necessary to perform limited reach measurement and ensure the user-friendliness of our documentation library for site visitors. In this way, we obtain anonymous and aggregated traffic and performance statistics without sharing any personal information with third parties.

Statistics cookies

We use our own JENTIS first-party cookie. This allows JENTIS to retain full control over the data collected, which is processed on the JENTIS server and owned by JENTIS.

We use the JENTIS cookie to collect non-personally identifiable aggregate statistics about your visit. You can see below what information we collect about your visit.

If you do not make a selection in the banner, only essential cookies will be set and the banner will be displayed again each time you visit our website. 

By means of a cookie (if you allow it), the information and offers on our website can be optimised in terms of the user. Cookies allow us to recognise the users of our website. The purpose of this recognition is to make it easier for the user to use our website. For example, the user of the website that uses cookies does not have to enter access data each time the website is called up, as this data is taken from the website and the cookie is stored on the user’s computer system.  

You can prevent the setting of cookies by our website at any time by means of an appropriate setting of the internet browser used and thus permanently object to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time using an internet browser or other software programs. This is possible in all common internet browsers. If you deactivate the setting of cookies in the internet browser used, it may not be possible to use all the functions of our website to their full extent. 

How we use personal data

Statistical analyses

Purpose: 

We process data of our website users in order to measure the reach of our website, analyse visitor numbers, the success of our marketing campaigns via online platforms (Google, Linkedin) as well as improve the website usability and optimise its content. We measure interactions on our website, such as filling out a form, registering for an event or downloading content, after an ad or a social media post has been viewed or clicked on.

The following personal data is processed: 

IP address, geographical location, browser type and version, operating system, referral source, length of visit, page views and website navigation paths, as well as information about the timing, frequency and pattern of your use.

All personal data is processed first on the JENTIS Twin Server (proxy server) under JENTIS’ control and then forwarded to the third party providers listed below in accordance with your selection in the website cookie settings. We receive aggregated statistical reports without drawing conclusions about individual website visitors. By using the JENTIS server-side solution, we pursue the goal of ensuring an optimal level of protection for the personal data we process. 

Legal basis:

The data processing is based on your consent in accordance with Article 6 (1) lit. a GDPR. 

Third party involved: 

In accordance with your selection in the website cookie settings, the following third party services are used:  

• LinkedIn Conversion API provided by LinkedIn Ireland Unlimited Company (Wilton Place, Dublin 2, Ireland)

The above mentioned data is collected via the JENTIS Software and forwarded to LinkedIn for aggregated reports about the success rate of our marketing campaigns. 

For more information on how LinkedIn processes the data, please click here: https://www.linkedin.com/legal/privacy-policy

• Google Analytics provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the representative in the Union Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland 

When using this Google service, we apply pseudonymisation via our own JENTIS server-side solution that automatically truncates IP addresses by the last digit, making it impossible to identify a specific European visitor by IP address alone. In addition, other identifiers from analytics providers are deleted and are replaced by randomly generated numbers so that website visitors cannot be singled out or re-identified.

Right to withdraw consent and erasure

You can revoke your consent at any time by clicking on the button in the lower right corner of the website. If you wish to  request the erasure of your personal data or have any questions about our use of your personal data, please contact us via email (here). 

Limited reach measurement on documentation page

When you visit our documentation page docs.jentis.com, we perform a limited reach measurement without transferring personal data to third parties, based on our legitimate interest (Art. 6(1)(f) GDPR) in optimising the usability and usefulness of the documentation library for our website visitors. In this process, we process your IP address and browsing behavior via the JENTIS software without storing or transmitting this data to third parties, using the de-identification mechanism on our JENTIS Twin server to remove any identifiers and replace them with randomly generated numbers. In this way, we measure the reach and/or analyse the number of visitors to our documentation library in order to improve its usability and increase the relevance of its content. 

You have the right to object to this data processing at any time without giving reasons by sending a short message to privacy@jentis.com.

Targeted advertising

We use Google Ads to advertise our products and services. If a visitor on our website gives us consent, we use Google Ads to target groups of users who have not visited our website but have similar interests as our website visitor. For this purpose, Google processes the user’s activity (e.g.  which pages have been visited and which elements have been clicked on), device and browser information (e.g. the IP address and the operating system), data about the advertisements displayed (e.g. which advertisements were displayed and whether the user has clicked on them).

In addition, we pass on the email address of our customers and event participants to Google Ads in order to recognise comparable customer groups and show them relevant advertising. 

Legal basis

The analysis of the user’s activities on the website is based on consent pursuant to Art. 6 para. 1 lit. a GDPR. The forwarding of the e-mail address to Google Ads is based on our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR.

Here you can find out more about how Google processes your data: https://policies.google.com/technologies/partner-sites

Right to withdraw consent and object

You can revoke your consent at any time by clicking on the button in the lower right corner of the website.

You may prevent the collection and processing of your personal data by Google by preventing the storage of cookies by third parties on your computer, by using the “Do Not Track” function of a supporting browser, by deactivating the execution of script code in your browser or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

Company-related tracking

Purpose: 

Success analysis of marketing campaigns, improvement of website usability, content optimisation 

The following personal data is processed: 

Name, origin and industry of the visiting company, source/referent of the visiting company, search term, visitor behaviour (e.g. (sub)pages visited, time of visit, duration of visit)

Third party involved: 

SalesViewer GmbH Huestraße 30, 44787 Bochum, Germany

We collect company-related data from our visitors through the use of Salesviewer in order to optimise our website content and marketing campaigns.

No cookies or similar files are stored on your terminal device. Instead, Salesviewer only identifies visiting companies by matching them with generally available information. For this purpose, the website visitor’s identification features are encrypted using a one-way function that cannot be calculated in retrospect (so-called hashing) and processed in pseudonymised form after a preselection that filters out private accesses. The identification features are matched by Salesviewer with a database limited to company-related data on an EU-based server.

Insofar as company-related accesses can be identified as part of this process, we are provided with corresponding company-related data of the website visit.

Legal basis: 

Legitimate interest in relation to our services, Art. 6 para. 1 lit. f) GDPR.

Should processing of personal data nevertheless occur, it will be based on our legitimate interests in optimising the website and marketing campaigns. Our overriding legitimate interest stems from the limited processing purpose, the pseudonymous data processing, the low intensity of intervention due to the limitation to company data, and the provision of information on the website in accordance with Art. 13 GDPR and the easy possibility to object (opt-out).

Right to object and erasure:

You can object to the use of Salesviewer here. In this case, all personal data that was stored during the registration process will be deleted. 

Website resources (Events, Case Studies & Whitepapers)

Purpose: 

Provision of the services – event organisation/provision of resources, sending of relevant information about the JENTIS services

We regularly provide free events in the form of webinars as well as case studies and whitepapers as part of our service offering. Over the course of registering for these resources, you provide your personal data which we process to provide these resources and relevant information in this context. If an event is jointly organised by JENTIS and an event partner, we will share the data you provide with the event partner to the extent necessary for the organisation of the event. We also process your contact information to provide you with relevant information and offers regarding similar services offered by JENTIS that are related to the resources available on the website. This includes information about comparable events, materials, or the JENTIS software that we would like to send to you via email  

The following personal data is processed: 

First and last name, email address, job title, company.

Third party involved: 

For the hosting of our webinars, we use the web conference software Livestorm, which is provided by the French company Livestorm (60, rue François 1er 75008, Paris, France).  

More information regarding the processing of your data you can find in the Privacy Policy of Livestorm at livestorm.co/privacy-policy. 

Legal basis: 

Insofar as your data is required for the provision of the above-mentioned resources, the data processing is based on our legitimate interests (Art. 6 (1)(f) GDPR) to inform you in the context of the provision of the service. If we contact you with information and offers about similar JENTIS services, the data processing is based on our legitimate interests to promote similar JENTIS services to the users of the above-mentioned resources. In this context, we take into account your expectations as a user, when you register for events or download materials provided by JENTIS, and always aim at providing relevant information and offerings.

As part of the registration process, you can give us your consent (Art. 6(1)(a) GDPR) to send you the JENTIS e-mail newsletter. In addition, you can consent to your data being shared with our event partners so that you can receive information about their services. You will find the relevant consent options in the registration form. 

Right to object, revoke your consent and erasure:

You may revoke your consent at any time without reason by directly clicking the “unsubscribe” button in the newsletter email or sending us a short message (here). If you change your decision, this will not affect the lawfulness of the processing based on consent prior to its withdrawal. All personal data stored during the registration process will be deleted in this case. 

You have the right to object to the processing of your data based on our legitimate interests. If you do not wish to be contacted via JENTIS services, you can let us know at any time and without reason by simply replying informally to the email you receive or by sending us a short message (here). We will immediately remove you from our mailing list. 

Photo and video recordings at events

Purpose:

Documentation of our events and communication of our activities to the public

Regularly, photos and video recordings are taken at our events for the purpose of public relations and are published on our website, our social media channels, or on other publicly accessible websites.

Personal data used:

Photo and video recordings

Legal basis:

The creation and processing of event recordings are based on our legitimate interests within the meaning of Art. 6 para. 1 lit. f GDPR, unless the interests or fundamental rights and freedoms of the data subject requiring the protection of personal data prevail.

Duration of storage:

The storage period is purpose-bound. Generally, image and video materials are deleted at the end of the second calendar year after the recording. Deletion on websites or social media platforms is done within the scope of technical possibilities.

Right to object and removal options:

We respect the desire not to appear in photos or video recordings, especially in individual shots. You have the right to object to this data processing for personal reasons. To exercise this right, please contact us via email (here).

All personal data stored as part of these recordings will be deleted in this case.

Newsletter

Purpose: 

Communication of relevant information about JENTIS services and events.The purpose of collecting the user’s email address is to deliver the newsletter.The collection of other personal data as part of the registration process serves to prevent misuse of the services or the email address used. 

Third party involved: 

HubSpot, Inc., Two Canal Park, Cambridge, MA 02141 USA  

The following personal data is processed: 

First and last name, email address, organisation

Legal basis: 

Consent in accordance with Art. 6 (1) a) GDPR

Duration of storage:

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. Accordingly, your email address will be stored as long as the subscription to the newsletter is active.

The other personal data collected during the registration process is usually deleted after a period of seven days.

Right to revocation of consent and erasure:

You can cancel your subscription to the newsletter at any time. For this purpose, you will find a corresponding link in each newsletter.

This also allows you to revoke your consent to the storage of personal data collected during the registration process. 

Application process

Purpose: 

Processing your application

The following personal data is processed: 

Salutation, first name, last name, address, telephone / mobile phone number, e-mail address, salary requirement, details of training and schooling, language skills, curriculum vitae, certificates, photo.

You can send us your application by email. In doing so, we collect your email address and the data you provide in the email.

Legal basis: 

Implementation of pre-contractual measures that are carried out at the request of the data subject, Art. 6 para. 1 p.1 lit. b) Alt. 1 GDPR 

Duration of storage:

After completion of the application process, the data will be stored for up to six months. Your data will be deleted at the latest after the six months have expired. In the event of a legal obligation, the data will be stored within the framework of the applicable provisions.

Right to object and erasure: 

The applicant has the option to object to the processing of personal data at any time. In such a case, the application can no longer be considered.Data subjects may communicate their request for modification or erasure of their data at any time via email (here). All personal data stored in the course of electronic applications will be deleted in this case.

E-Mail contact/contact form

Purpose: 

Contacting and processing communication with website visitors.

Our website features a contact form that enables users to contact JENTIS quickly and electronically and to communicate with us directly. If a user takes advantage of this option, the data entered in the input mask is transmitted to us and stored.

The following personal data is processed: 

At the time the message is sent, the following data is stored: email address, surname, first name, telephone / mobile phone number, IP address of the calling computer, date and time of contact, message, company name. 

Alternatively, it is possible to contact us via the email address provided. In this case, the personal data of the user transmitted with the email will be stored.

The data is used exclusively for processing the conversation.

Legal basis for data processing:

For the processing of the data, your consent is obtained during the sending process and reference is made to this privacy policy.

The legal basis for the processing of the data, if the user has given his consent, is Art. 6 para. 1 p. 1 letter a) GDPR.

The legal basis for the processing of data transmitted in the course of sending an email is Art. 6 para. 1 p. 1 lit. f) GDPR. 

If the email contact aims at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 p. 1 letter b) GDPR.

Duration of storage:

The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. For the personal data from the input mask of the contact form and those sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when it is clear from the circumstances that the matter in question has been conclusively clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

Right to object, revoke your consent and erasure:

The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by email, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued.

Data subjects can communicate their revocation of consent and objection to storage at any time here.

All personal data stored in the course of contacting us will be deleted in this case.

Scheduling

Purpose: 

If you select an appointment for an initial consultation with one of our experts via the website, the contact details you enter into the form, will be processed for the purpose of arranging the  appointment and processing your enquiry and follow-up questions.

The following personal data is processed: 

Preferred date, first name, last name, email address, company details (especially company name, website, country, industry, number of employees), IP address, session-related data (especially session URL, web application URL, screen resolution, name of all sessions), timestamp of registration, communication data (especially logs of software usage and changes made to data) 

Third party involved: 

Demodesk GmbH, Franz-Joseph-Str. 9, 80801 München

Your contact details are transmitted to the Demodesk platform and processed exclusively on our behalf. For more information about the Demodesk Privacy Policy, please visit https://demodesk.com/legal/privacy-policy-platform.

Legal basis for data processing:

The data entered in the contact form is processed exclusively on the basis of your consent (Art. 6 para.1 lit. a GDPR). 

Right to object, revoke your consent and erasure: 

You can revoke your consent to data processing at any time. For this, an informal communication by email to us is sufficient. The lawfulness of the data processing operations carried out until the revocation remains unaffected by the revocation. The data you entered in the appointment form will remain with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after processing your request has been completed). Mandatory legal provisions – in particular retention periods – remain unaffected by this.

You can prevent the collection and processing of your personal information by Demodesk Scheduling by disabling the storage of third-party cookies on your computer, using the “Do Not Track” feature of a supporting browser, disabling the execution of script code in your browser, or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. For more information about objection and removal possibilities compared to Demodesk Scheduling, please see: https://demodesk.com/legal/privacy-policy 

Business Card Information

Purpose: 

Initiation and processing of communication with business card holders.

Upon receipt of a business card, the information contained on the business card is stored and processed by us. This data is used exclusively for communication and business purposes. 

The following personal data is processed: 

At the time of receipt of the business card, the following data may be stored: first name, last name, email address, telephone/mobile number, company name, position in the company, business address. 

Legal basis for data processing: 

The legal basis for processing the data is Article 6 (1) sentence 1 lit. f GDPR. If the contact is aimed at the conclusion or execution of a contract, an additional legal basis for processing is Article 6 (1) sentence 1 lit. b GDPR. 

Duration of storage: 

The data is deleted as soon as it is no longer necessary for the purpose of its collection. This is the case when communication with the affected person has been completed and it can be inferred from the circumstances that the matter in question has been finally clarified. In any case, a review of the necessity of data retention takes place every two years. 

Possibility to object, revoke and remove: 

The holder of the business card has the right to object to the processing of his personal data at any time. In such a case, communication cannot continue. 

Affected individuals can assert their objection to processing at any time here. All personal data that was stored during the receipt of the business card will be deleted in this case. 

Customer Relationship Management

Purpose: 

We use the cloud-based customer relationship management platforms Salesforce and Hubspot to maintain customer relationships, facilitate our sales and marketing processes and business communication. 

The following personal data is processed: 

We store information in Salesforce and Hubspot about our business contacts. In particular, the following personal data is processed by Salesforce and Hubspot: last name, first name, job title, company name, email address, phone number, company address.

Third parties involved: 

• HubSpot, Inc., Two Canal Park, Cambridge, MA 02141 USA  
• Salesforce.com, Inc., 415 Mission Street, CA 94105 San Francisco, United States (and their representative in the European Union, salesforce.com Germany GmbH, Erika-Mann-Straße 31, 80636, Munich, Bavaria, Germany)

Please note that the third party providers have their own privacy policies, where you can find more information in respect to the handling of data we provide to them as part of the customer relationship management: 

Hubspot: https://legal.hubspot.com/privacy-policy

Salesforce: https://www.salesforce.com/company/privacy

The data is transferred to Salesforce servers in the U.S. which employ robust security measures to protect your data. Salesforce has adopted Binding Corporate Rules to facilitate the transfer of personal data from the EU and the EEA to locations outside of the EU and EEA. You can find Salesforce’s Binding Corporate Rules at https://compliance.salesforce.com/en/salesforce-bcrs. 

Legal basis for data processing: 

The legal basis for the data processing is generally the user’s consent in accordance with Art. 6 para. 1 s.1 lit.a GDPR. In addition, the processing may be necessary for the initiation or execution of contractual relationships in accordance with Art. 6 para.1 s.1 lit.b GDPR. If there are legitimate interests of our company or that of a third party to process the data and the fundamental rights and freedoms of the data subject do not outweigh the interest of the former (e.g. service-related communication with existing customers), Art. 6 (1) (f) GDPR will serve as the legal basis for the processing of data.

Duration of storage: 

Your personal information will be stored for as long as it is necessary to fulfil the purposes described in this Privacy Policy or as required by law, e.g., for tax and accounting purposes. 

Possibility to object, revoke and remove: 

You have the right to revoke your consent at any time. Revoking the consent does not affect the legality of the processing that took place based on the consent up to the point of revocation. 

For more information on revocation and deletion options with regard to Salesforce, please visit: https://www.salesforce.com/de/company/privacy/ 

Data transfer to third countries

JENTIS may transfer your personal data outside the EU/EEA, including to third-party companies (contracted service providers) to the extent necessary for the data processing activities described in this Policy. When JENTIS engages in international data transfers of personal data, it relies on:

• Adequacy Decisions, as adopted by the European Commission (“EC”), based on Article 45 of Regulation (EU) 2016/679 (GDPR) – for more information, and to access the full list of countries deemed adequate to date, please visit https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions, or
• the EC’s Standard Contractual Clauses (“SCCs”) supplemented by additional security measures as recommended by the European Data Protection Board. 

If the level of data protection in a particular country is lower than in the EU/EEA, we conclude EU standard contractual clauses for the transfer of personal data to third countries with such providers to ensure that the level of protection for your personal data in the third country is equivalent to that in the EU due to technical and organisational measures. JENTIS continually monitors the circumstances surrounding such transfers to ensure that these maintain, in practice, a level of protection that is essentially equivalent to the one guaranteed by the EU/EEA data protection laws.

Length of storage of personal data

Your personal data will be stored for as long as necessary to achieve the defined processing purposes. After this period has expired, the corresponding data is routinely deleted, provided that it is no longer required to initiate or fulfil a contract. If the purpose of storage no longer applies, or if a storage period prescribed by applicable European or national laws expires, the personal data will be deleted routinely and in accordance with the statutory provisions.

Data exchange with third parties 

We use a select number of trusted third-party service providers for certain technical data analysis, processing and/or storage services (e.g., IT and related services).  We may also enlist the help of third parties to improve our website and certain tools for our marketing. These third-party service providers are carefully selected and meet high privacy and security standards. We contractually require them to keep all information we share with them confidential and to process personal data only in accordance with our instructions. The legal basis for such processing would be legitimate interest under Art.6 (1) (f) GDPR.

In addition to service providers, other categories of third party service providers may include:

• Suppliers/Public Entities. To the extent necessary to use certain services that require specialised expertise (e.g. legal, accounting or auditing services), we may disclose personal data to suppliers of such services or to public bodies providing such services (e.g. courts). The legal basis for this data processing is Art.6 (1) (f) GDPR.
• Disclosure in case of organisational changes. We may disclose Personal Data to facilitate a change in ownership of JENTIS (including, but not limited to, an acquisition by or merger with another company, a financing due diligence, reorganisation, bankruptcy, receivership, purchase or sale of assets, or transfer of services to another provider) and the related transfer of all such information to the new owner, in which case all information will remain protected in accordance with this Privacy Policy. The legal basis for this data processing is Art.6 (1) (f) GDPR.

Except in the cases mentioned above, we will only disclose your personal data to third parties if we consider this necessary for the initiation/fulfilment of the contract with you, if we have received explicit consent in accordance with Art.6 (1) (a) GDPR or if we are obliged to do so by law or by order of a public authority or court.

Use of company presence in social networks 

LinkedIn

Scope of data processing:

We use the possibility of company presence on the career-oriented network LinkedIn (LinkedIn, Unlimited Company Wilton Place, Dublin 2, Ireland).

On our site, we provide information and offer users the opportunity to communicate. The company website is used for job applications, information/PR and active sourcing. We do not have any information on the processing of your personal data by the companies jointly responsible for the corporate presence. For more information, please refer to the privacy policy of:

LinkedIn: https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv

If you carry out an action on our company website (e.g. comments, posts, likes, etc.), you may make personal data (e.g. clear name or photo of your user profile) public.

Legal basis for data processing:

The legal basis for the processing of your data in connection with the use of our corporate presence is Art.6 para.1 p.1 letter f) GDPR.

Purpose of the data processing:

Our corporate presence serves us to inform users about our services. In doing so, each user is free to publish personal data through activities.

Joint controllership:

We are jointly responsible for data processing with LinkedIn and enter into a corresponding Joint Controller Agreement (JCA), which sets out and allocates the respective rights and obligations of the joint controllers, in particular in the case of data subject requests.

Duration of storage:

We store your activities and personal data published via our corporate presence until you revoke your consent. In addition, we comply with the statutory retention periods.

Right to object and erasure:

You can object at any time to the processing of your personal data that we collect in the course of your use of our corporate presence and assert your data subject rights as stated under Point 12. of this Privacy Policy. To do so, send us an informal email here.

You can find more information on objection and erasure options here: https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv

Youtube

Scope of data processing:

We use the possibility of company presence on the video platform YouTube (YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, United States). 

On our company page we provide information and offer YouTube – users the possibility of communication. If you perform an action on our YouTube corporate site (e.g. comments, likes, etc.), you may make personal data (e.g. clear name or photo of your user profile) public. However, since we generally or to a large extent have no influence on the processing of your personal data by YouTube, the company jointly responsible for our company presence on the platform, we cannot provide any binding information on the purpose and scope of the processing of your data.

Purpose:

Our corporate presence on social networks is used for communication and information exchange with (potential) customers. In particular, we use the corporate presence for communication and information exchange with (potential) customers.

Publications on the company website may contain the following content: Information about services, advertising, customer contact, information about our events; current industry-specific news.

Each user is free to publish personal data through activities.

Joint controllership:

We are jointly responsible for data processing with YouTube and enter into a corresponding Joint Controller Agreement (JCA), which sets out and allocates the respective rights and obligations of the joint controllers, in particular in the case of data subject requests.

Legal basis for data processing: 

The legal basis for the data processing is Art. 6 para.1 p.1 lit. f GDPR.

The data generated by the company presence is not stored in our own systems.

Right to object and erasure:

You can object at any time to the processing of your personal data that we collect in the course of our company presence and assert your data subject rights stated under Point 12. of this Privacy Policy. To do so, send us an informal email(here). For more information on the processing of your personal data by YouTube and the corresponding objection options, please click here: https://policies.google.com/privacy?gl=DE&hl=de

Facebook 

Scope of data processing: 

We use the possibility of company appearances on the social network Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA and its representative in the Union Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal H , D2 Dublin, Ireland (hereinafter: Facebook).

On our company page, we provide information and offer Facebook users the opportunity to communicate. If you carry out an action on our Facebook company page (e.g. comments, posts, likes, etc.), it may be that you make personal data (e.g. clear name or photo of your user profile) public. However, as we generally or to a large extent have no influence on the processing of your personal data by Facebook, the company jointly responsible for the JENTIS GmbH corporate presence, we cannot provide any binding information on the purpose and scope of the processing of your data.

Purpose:

Our corporate presence in social networks is used for communication and information exchange with (potential) customers. In particular, we use the company website for communication and the exchange of information with (potential) customers.

The publications on the company website may contain the following content: Information about services, advertising, customer contact, information about our events and current industry-specific news. Every user is free to publish personal data through activities.

Joint Controllership:

We share responsibility for data processing with Facebook and aim for a corresponding agreement on joint responsibility (Joint Controllership Agreement), which defines and distributes the respective rights and obligations of those jointly responsible, particularly in the case of requests from affected individuals. 

Legal basis for data processing: 

The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR.

The data generated by the company website is not stored in our own systems.

Right to object and erasure:

You can object at any time to the processing of your personal data that we collect in the course of your use of our Facebook corporate presence and assert your data subject rights as stated in this Privacy Policy.  To do so, send us an informal email (here).  You can find more information on the processing of your personal data by Facebook and the corresponding objection options here: https://de-de.facebook.com/policy.php

Hosting

Scope of data processing: 

Our website is hosted on servers by a service provider commissioned by us.

The servers automatically collect and store information in so-called server log files, which your browser automatically transmits when you visit the website. 

The following personal data is processed: 

Browser type and browser version, operating system used, Referrer URL, host name of the accessing computer, date and time of the server request, IP address.

This data is not merged with other data sources.

Legal basis for data processing:

The collection of this data is based on our legitimate interests pursuant to Art. 6 (1) (f) GDPR in the technically error-free presentation and optimisation of the website – for this purpose, the server log files must be collected.

The location of the website’s server is geographically in the European Union (EU) or the European Economic Area (EEA).

Third parties involved:

The website jentis.com is hosted on servers provided by Host Europe GmbH (Hansestraße 111 , 51149 Cologne, Germany).

Our documentation page docs.jentis.com is hosted on servers provided by Atlassian (Pty Ltd Level 6, 341 George Street Sydney NSW 2000, Australien).

Right to object and erasure:

You can object at any time to this processing of this personal data by sending us an informal email. However, this could impede the correct functioning of our website.

Plug-ins

Use of LinkedIn

Scope of the processing of personal data:

We use functions of the LinkedIn network. The provider is LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland (subsequently referred to as: LinkedIn). Each time one of our pages containing LinkedIn functions is accessed, a connection to LinkedIn servers is established. LinkedIn is informed that you have visited our web pages with your IP address. If you click the “Recommend button” of LinkedIn and are logged into your account at LinkedIn, it is possible for LinkedIn to assign your visit to our website to you and your user account. Personal data can thus be stored and evaluated, especially the user’s activity (in particular, which pages have been visited and which elements have been clicked on) and device and browser information (in particular, the IP address and operating system).

We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by LinkedIn. Further information on the processing of data by LinkedIn can be found here:

https://www.linkedin.com/legal/privacy-policy

Purpose of data processing:

The use of the LinkedIn plugin serves the user-friendliness of our online presence.

Legal basis for the processing of personal data:

The legal basis for the processing of users’ personal data is basically the user’s consent pursuant to Art. 6 para. 1 p.1 lit. a GDPR.

Duration of storage:

Your personal information will be stored for as long as necessary to fulfil the purposes described in this Privacy Policy or as required by law, e.g. for tax and accounting purposes.

Right to revocation of consent and erasure:

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

You can prevent the collection as well as the processing of your personal data by LinkedIn by preventing the storage of third-party cookies on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. Furthermore, the transmission can be prevented by logging out of your LinkedIn account before calling up our website.

You can deactivate the use of your personal data by LinkedIn using the following links:

https://www.linkedin.com/psettings/guest-controls

For more information on objection and erasure options vis-à-vis LinkedIn, please visit:

https://www.linkedin.com/legal/privacy-policy

Use of X

 Scope of the processing of personal data:

We use the social plugins of X Corp. (previously “Twitter”), 1355 Market Street, Suite 900, San Francisco, CA 94103, USA (hereinafter referred to as: X).

With this plugin, we can integrate content from X (in particular tweets, or moments) or links to the platform of X (in particular tweet or follow button) on our online presence. Personal data can be stored and evaluated, especially the activity of the user (in particular which pages have been visited and on which elements have been clicked) as well as device and browser information (in particular the IP address and the operating system).

By using X and the “Re-Tweet” function, the online presences you visit are connected to your X account and disclosed to third parties. We receive no information about the content of the transmitted data and its use by X.

For more information on the processing of data by X, please click here:  https://twitter.com/de/privacy

Purpose of data processing:

The integration of the X plug-in serves to improve user-friendliness. Content from X can be displayed embedded and users of the X service can use functions of X.

Legal basis for the processing of personal data: 

The legal basis for the processing of users’ personal data is generally the user’s consent pursuant to Art. 6 (1) p.1 lit. a GDPR.

Duration of storage:

Your personal information will be stored for as long as necessary to fulfil the purposes described in this Privacy Policy or as required by law.

Right to revocation of consent and erasure:

You have the right to revoke your consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

You can prevent the collection as well as the processing of your personal data by X by preventing the storage of third-party cookies on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

For more information on objection and erasure options vis-à-vis X, please visit:

https://twitter.com/de/privacy

Use of Facebook

Scope of the processing of personal data:

We use functions of the social network Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA and its representative in the Union Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal H , D2 Dublin, Ireland (hereinafter: Facebook). We use this plugin to enhance the functionality of our online presence. With the social plugins, we can integrate content from Facebook or links to the platform of Facebook (in particular the “share” button) on our online presence. Personal data can be stored and evaluated, especially the activity of the user (in particular which pages have been visited and on which elements have been clicked) as well as device and browser information (in particular the IP address and the operating system) .

By using Facebook and the “Share” function, the online presences you visit are connected to your Facebook account and disclosed to third parties. We receive no information about the content of the transmitted data and its use by Facebook.

Further information on the processing of data by Facebook can be found here:

https://de-de.facebook.com/policy.php

Purpose of data processing:

The use of the Facebook plug-in serves to improve the user-friendliness of our online presence. We use this plug-in to enable our users to easily share the content of our website on social media.

Legal basis for the processing of personal data:

The legal basis for the processing of users’ personal data is generally the user’s consent in accordance with Art. 6 para. 1 p.1 lit. a GDPR.

Duration of storage:

Your personal information will be stored for as long as necessary to fulfil the purposes described in this Privacy Policy or as required by law, e.g. for tax and accounting purposes.

Right of revocation of consent and erasure:

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

You can prevent the collection as well as the processing of your personal data by Facebook by preventing third-party cookies from being stored on your computer, by using the “Do Not Track” function of a supporting browser, by disabling the execution of script code in your browser or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

For more information on objection and erasure options vis-à-vis Facebook, please visit:

https://de-de.facebook.com/policy.php

Use of Youtube Videos

Scope and purpose of processing

We use the Youtube plugin to embed videos from YouTube on the website and so to improve the user-friendliness and presentation of our online presence.

The plugin is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as Google). 

When you visit a page on our website that includes a Youtube video, you may consent to the transfer of your user activity data, device and browser information (including IP address and operating system) to Google and the storage of this information on Google’s servers. By interacting with the YouTube video, your browser connects to Google’s servers and your information is sent directly to and stored by Google. If you are logged in to your YouTube account during your visit, Google may associate your visit with that account. 

Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is generally the user’s consent in accordance with Art. 6 (1) (a) GDPR.

Right of revocation of consent and erasure:

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

You can prevent the collection and processing of your personal data by Google by preventing the storage of third-party cookies on your computer, by using the “Do Not Track” function of a supporting browser, by deactivating the execution of script code in your browser or by using a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. You can deactivate the use of your personal data by Google with the following link: https://adssettings.google.de.

For more information on objection and removal options vis-à-vis Google, please visit: https://policies.google.com/privacy?gl=DE&hl=de

Data security

We take great care to establish internal procedures that ensure your personal information is both accurate and protected from accidental loss, unauthorised access, unauthorised use, unauthorised modification, and unauthorised disclosure. JENTIS has implemented technical and organisational measures to ensure the most complete protection of personal data processed through the website. Nevertheless, internet-based data transmissions can always have security vulnerabilities, so that absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us by alternative means, e.g. by post.

Rights of the data subject

Subject to mandatory legal provisions or conflicting obligations, you may request from us at any time and free of charge information about your personal data processed by us, the correction of any errors in your personal data, the termination of the processing of your personal data or the erasure of your personal data. 

In particular, if you qualify as  the  “data subject” under the terms  of the GDPR, you have the right to:

• request information about the personal data we process about you, in accordance with Art. 15; 
• in accordance with Art. 16, to request without undue delay the rectification of inaccurate data or the completion of incomplete personal data stored by us;
• in accordance with Art. 17, to request the erasure of your personal data stored by us, unless the processing of the data is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise or defence of legal claims;
• in accordance with Art. 18, to request the restriction of the processing of your personal data, insofar as the accuracy of the data is contested by you or the processing is unlawful;
• in accordance with Art. 20, to receive your personal data processed by us in a structured, commonly used and machine-readable format or to request its transfer to another controller;
• in accordance with Art. 7 (3), to withdraw the consent you have given us at any time. As a result, we will no longer be able to continue the data processing based on this consent; 
• in accordance with Art. 77, the right to lodge a complaint with a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or the legal address of JENTIS for this purpose.
• if the processing of your personal data is processed on the basis of legitimate interests pursuant to Art. 6 (1 )(f), object to the processing of your personal data pursuant to Art. 21, provided that there are grounds based on your particular situation or the objection is directed against direct marketing. In the latter case, you have a general right to object, which will be implemented by us without any indication of a specific situation.

If you wish to exercise these rights, please send us your request to privacy@jentis.com, if possible, with information about the data processing to which you are referring. Please provide any information that will help us identify you in our database, such as your full name and email address.

Changes to the Privacy Policy

We may need to make changes to this Privacy Policy. The privacy legislation is constantly evolving, and governmental authorities  issue guidelines and updates on a regular  basis. We may need to change our Privacy Policy to ensure that we implement such recommendations, or if we change the way we sell our products or provide our services. We will notify you of any non-trivial changes to this Privacy Policy by email if that option is available to us.

Contact

Please address any questions or requests in connection with this Privacy Policy by contacting us at any time by letter or email at: 

Jentis GmbH 

Schönbrunner Straße 231

1120 Vienna 

Austria 

Phone: +43 1 997 43 54

Email: privacy@jentis.com 

Website: www.jentis.com 

Company Registration Number: FN 529675j 

Responsible Court: Commercial Court of Vienna 

We are available to you for any inquiries and concerns regarding data protection.