F24 Schweiz AG data protection declaration
Welcome to our website! Thank you for your interest in our company. Protecting your personal data is a matter we take very seriously. We therefore undertake to handle your personal data in a responsible manner. It goes without saying that we comply with the legal requirements of the Swiss Federal Act on Data Protection (FADP); the Swiss Ordinance to the Federal Act on Data Protection (OFADP); the Swiss Telecommunications Act (FMG) and other Swiss data protection legislation. As regards processing of the personal data of data subjects who are located in the EU, we will, furthermore, comply with the provisions of the EU General Data Protection Regulation (GDPR). With the help of this data protection declaration it is our aim to provide you with comprehensive information concerning how your personal data is processed by F24 Schweiz AG and what your rights are. This data protection declaration covers both the gathering of personal data in the online and the off-line areas and includes personal data which we have received from a variety of sources such as customers, suppliers, business partners, websites, blogs, third-party social networks and events.
Personal data is defined as any information which makes it possible to identify a natural person. This includes in particular their name, date of birth, address, telephone number, email address or IP address.
Anonymous data is defined as data which does not contain any personally identifiable data relating to the data subject.
Local contact:
F24 Schweiz AG
Samstagernstrasse 45
CH-8832 Wollerau
Switzerland
+41 44 787 30 70 | [email protected]
Data controller and data protection officer as well as EU representative
F24 AG
Ridlerstrasse 57
D-80339 Munich
Germany
+49 89 232 363 80 | [email protected]
Your rights as a data subject
To begin with, we would like to inform you about your rights as a data subject. These rights are regulated by Art. 15 – 22 GDPR and include:
§ The right to information (Art. 15 GDPR),
§ The right to rectification (Art. 16 GDPR),
§ The right to erasure (Art. 17 GDPR),
§ The right to restriction of processing (Art. 18 GDPR),
§ The right to data portability (Art. 20 GDPR),
§ The right to object to data processing (Art. 21 GDPR).
To exercise these rights, please contact: [email protected]. This address can also be used if you have any questions concerning data processing by our company or wish to withdraw any consent you have given. Should you believe that processing of your personal data infringes data protection law or that your data protection-related claims have been infringed in any other way, you also have the option of complaining to the relevant supervisory authority. In Switzerland this is the Federal Data Protection and Information Commissioner (EDÖB).
Rights to object
Please note the following with regard to your rights to object – if we are processing your personal data for direct marketing purposes, you have the right to object to this data processing at any time without giving reasons. This also applies to profiling, insofar as it is connected to direct marketing. Should you object to processing for direct marketing purposes, then we will no longer process your personal data for such purposes. You may object free of charge and without any formal requirements by sending an email to: [email protected] or [email protected].
In the event we are processing your personal data in order to safeguard legitimate interests you may object to this processing at any time on grounds relating to your personal situation; the same also applies to profiling which is based on these provisions. We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing which override your interests, rights and freedoms or processing serves to establish, exercise or defend legal claims.
Categories, sources and origin of data
What data we process depends on the relevant context. This depends on whether you have, for example, placed an order online or submitted an enquiry via our contact form; whether you are sending us a job application or are making a complaint. Please note that, where applicable, we also provide information regarding special processing situations at appropriate locations.
When you visit our website we will gather and process the following data:
§ Name of the Internet service provider
§ Information about the website from which you came
§ The web browser and operating system which you are using
§ The IP address assigned to you by your Internet service provider
§ Requested files, transmitted data volume, downloads /file export
§ Information about the websites which you request when visiting our website including date and time
If you make a contact enquiry about eCall and/or for FACT24 we will gather and process the following data:
§ Salutation, title
§ Name, first name
§ Telephone number
§ Email address* (mandatory)
§ Country
§ Company/Organization
§ Function/Position
§ Industry
§ Street/House number/Postcode/Place
§ Information about the initial contact with FACT24
§ Contact message*
If you request a demonstration for FACT24 we will gather and process the following data:
§ Salutation, title
§ Name, first name
§ Telephone number
§ Email address* (mandatory)
§ Country
§ Company/Organization
§ Function/Position
§ Industry
§ Street/House number/Postcode/Place
§ Information about the initial contact with FACT24
If we set up a test account for eCall we will gather and process the following data:
§ Email address* (mandatory)
§ Mobile telephone number* (mandatory)
§ Salutation, title
§ Name, first name
§ Country
§ Company/Organization
§ Street/House number/Postcode/Place
If you submit a support request for FACT24 we will gather and process the following data:
§ Salutation, title
§ Name, first name
§ Org. ID* (mandatory field)
§ Contractual partner* (Drop-Down) (mandatory field)
§ Telephone number
§ Mobile telephone number* (mandatory field)
§ Email address* (mandatory field)
§ Company/organization
§ Contact message* (mandatory field)
If you download a user report we will gather and process the following data:
§ Salutation
§ Name, first name
§ Email address* (mandatory)
§ Company/organization
§ Telephone number
If you download a white paper, eCall Prepaid Pricelists, eCall Product-Flyer, eCall mTAN-Product-Flyer we will gather and process the following data:
§ Salutation
§ Name, first name
§ Email address* (mandatory)
§ Company/organization
§ Telephone number
If you submit a webinar registration form we will gather and process the following data:
§ Name, first name
§ Email address* (mandatory field)
If you set up a subscription to F24 News (Newsletter) we will gather and process the following data:
§ Salutation
§ Name, first name
§ Email address* (mandatory field)
§ Company/organization
§ Land
If you set up a subscription to the blog we will gather and process the following data:
§ Salutation
§ Name, first name
§ Email address* (mandatory field)
§ Company/organization
§ Land
If you submit a job application we will gather and process the following data
§ Personal information
§ The documents included with the job application (such as letter of motivation, CV and references)
§ Postal and contact addresses
In addition to this, applicants may also provide us with voluntary additional information.
Purposes and legal basis of data processing
When processing your personal data we will, insofar as applicable, comply with the provisions of the GDPR and all other valid data protection legislation, in particular the FADP and the OFADP. The legal basis for data processing in accordance with European data protection law arises, in particular, from Art. 6 GDPR. We will process your data to establish a business relationship; to comply with contractual and legal obligations; to perform any contract between us; to process job applications; to respond to contact, demonstration or support enquires; within the scope of a blog; to process webinar registrations; within in the scope of subscription to our newsletter; when white papers or user reports are downloaded; to offer products and services and to consolidate the customer relationship, which may also include analysis for marketing purposes and direct marketing. Your consent to data processing may also represent a data protection law-related permission instruction. In such cases we will, before you provide your consent, inform you regarding the purpose of data processing and your right of withdrawal.
Should the consent also apply to processing of special categories of personal data, then we will specifically inform you of this on the consent form. Under the provisions of Art. 9 GDPR or Art. 3 (c) DSG, processing of special categories of personal data may only take place if this is legally required and there is no reason to suppose that your legitimate interest in exclusion of processing overrides.
Transfer to third parties
We will only pass on your data to third parties within the framework of the legal regulations or with the appropriate consent. A transfer based on your consent can be made to the respective providers, especially in connection with the use of cookies requiring consent. Otherwise, your data will not be passed on to third parties, unless we are obliged (passing on to external bodies such as supervisory authorities or law enforcement agencies) or entitled to do so by mandatory legal provisions. In any case, we conclude the necessary data protection contracts or use other suitable instruments as a basis.
Data recipients / Categories of recipients
Within our company we ensure that access to your personal data is given only to individuals who require it to perform contractual and legal obligations.
In many cases, our technical departments make use of the support of service providers to carry out their tasks. The required data protection law-related contracts have been concluded with all services providers.
We will disclose your personal data to the following categories of recipients:
• Company shareholders (cf. legal disclaimer)
• Service operators
• Logistics partners
• Call centres
• Marketing services
• Public authorities
Third-country transfers / Third-country transfer intent
We can submit your data to a service provider or to affiliates outside the European Economic Area; Of course, the legal regulations for the transfer of personal data to third parties are complied with. A transfer of data to third countries (outside the European Union and/or the European Economic Area (EEA)) will only take place insofar as this is required to perform a contractual obligation; is required by law or you have given us your consent to do so. We may transfer your data to a service provider or affiliated company outside the EEA; when doing so we will, of course, comply with the legal regulations for the transfer of personal data to third parties. If the level of data protection in a country in which the data is processed does not correspond to the applicable data protection regulations, then we will ensure by means of a contract that protection of your personal data corresponds to that in Switzerland and/or the EEA at all times.
We may transfer your data to a service provider or to group companies outside the European Economic Area: Switzerland, USA. Compliance with data protection is ensured by an adequacy finding of the European Commission (Switzerland) or the conclusion of EU standard contractual clauses on data protection in accordance with the model of the European Commission.
Length of data storage period
We will store your data for as long as it is required for the relevant processing purpose. Please note that there are numerous legal archiving and documentation obligations which mean that data may (have to) be stored for a longer period. This applies in particular to commercial or tax law obligations (e.g. the Commercial Code, Tax Code, etc.). Insofar as there are no further archiving and documentation obligations, data will routinely be erased after the purpose has been completed. In addition to this, we may store data if you have given us your permission to do so or if a legal dispute arises and we use evidence within the scope of the statute of limitations.
We will, furthermore, erase your personal data if you request us to do so by sending an email to [email protected] and we are not subject to legal or contractual archiving and documentation or other security obligations with regard to this data.
Secure transfer of your data
We implement appropriate technical and organizational security measures to ensure the best possible protection of the data which we store against accidental or intentional manipulation, loss, destruction or the access of unauthorized persons. The level of security is assessed on an on-going basis in cooperation with security experts and revised in line with new security standards. The exchange of data from and to our website is encrypted. We offer HTTPS as the transfer protocol for our web presence, in each case using the current encryption protocols. In addition to this, within the scope of contact forms and job applications we offer our users a content encryption option. Only we are able to decrypt this data. Users also have the option of using alternative communication methods (e.g. postal mail).
Automated individual decision-making
We do not use any fully automated decision-making processing processes.
Links to other providers
Our website also includes links – which are clearly identified – to the Internet offerings of other companies. Where links to other providers’ websites are offered, we have no influence over their content. We cannot thus accept any liability or give any guarantee for this content. The relevant provider or operator of the site is always responsible for its content. Linked sites were checked for possible legal infringements and obvious legal violations at the time the link was established. Unlawful content was not obvious at the time the link was established. Permanent checking of linked sites cannot, however, be reasonably expected without any concrete indication that a legal violation has taken place. Should legal violations become known, then such links will be removed without delay.
Cookies
Our Internet sites use so-called cookies in several places. Cookies serve to make our offering more user-friendly, effective and secure. Cookies are small text files which are automatically installed on your computer and stored by your browser (locally on your hard drive). The cookies which use only store pseudonymized data. When a cookie is activated, it will be assigned an identification number. No assignment of personal data to this identification number is carried out. Your name, IP address or similar data which could allow the cookie to be directly assigned to you are not stored in the cookie. These cookies allow us to analyse how users use our website and design website content in line with user needs. In addition to this, cookies also allow us to measure the effectiveness of a specific ad and to place it, for example, in line with users’ specific interests. This also represents our legitimate interest in data processing (Art. 6 Para. 1 (f) GDPR / Art. 6 Para. 1 (a) GDPR following consent). Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Persistent cookies are automatically deleted from your computer when their period of validity (generally six months) expires or if you delete them yourself before the period of validity expires. Most web browsers accept cookies automatically. You can, however, usually change your browser’s settings if you do not wish to transmit this information. If you do so, you will, however, still be able to use our website’s offering without any restrictions (with the exception of configurators). We use cookies to make our offering more user-friendly, effective and secure. In addition to this, we use cookie which allow us to analyse how users use our website and design website content in line with user needs. Cookies also allow us to measure the effectiveness of a specific ad and to place it, for example, in line with users’ specific interests. Cookies are stored on the user’s computer, which transmits information to us.
We use the following types of cookie:
Transient cookies
We use transient cookies. They store a so-called “session ID” which is used to assign various requests made by your browser to the session. This allows your computer to be recognized when you return to the website.
Persistent cookies
In addition to this, we use persistent cookies which remain on your computer after the individual session. When you re-visit the website it will automatically recognize that you have already visited us and what your preferred entries and settings are. These cookies are stored on your hard drive and automatically erase themselves after a pre-defined period of time. These files allow us to show you information which is specifically tailored to your interests when you visit the site.
Non-personal cookies
Non-personal cookies do not transmit any personal data to us. They include statistics cookies and help us to understand how visitors interact with the website by gathering and reporting information anonymously.
Third-party cookies
In addition to this, we use the features offered by a number of web analysis services which help us to make our Internet offering and website more interesting for you. For this purpose when you visit our website cookies from partner companies (so-called third-party cookies) will also be installed on your hard drive. For more information about the use of third-party cookies see the “Analysis tools” section below.
As the user you thus also have full control over the use of cookies. By changing your Internet browser’s settings you can deactivate or restrict the transmission of cookies. Any cookies which have already been installed can also be deleted at any time using an Internet browser or other software programme. All standard Internet browsers offer this option.
· Explorer: support.microsoft.com/en-gb/windows/delete-and-manage-cookies-168dab11-0753-043d-7c16-ede5947fc64d
· Firefox: support.mozilla.org/en-US/kb/enhanced-tracking-protection-firefox-desktop
· Google Chrome: support.google.com/chrome/answer/95647
· Safari: support.apple.com/en-gb/guide/safari/sfri11471/mac
· Opera: help.opera.com/en/latest/web-preferences/
User profiles / Web tracking procedures
We would like to tailor the content of our website as closely to your interests as possible, thus improving our offering. In order to identify your usage preferences and particularly popular areas of websites we use the following analysis tools:
Google Analytics Universal
This website uses Google Analytics, a web analysis service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, resp. if you have your ordinary residence in the EEA or in Switzerland Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland. (“Google”). On the basis of legitimate interest (Art. 6 Para. 1 (f) GDPR) we use Google Analytics including Universal Analytics features. Universal Analytics allows us to analyse activities on our site across multiple devices (e.g. access from a laptop and then later from a tablet). Doing so makes it possible to assign data, sessions and interactions from multiple devices to one pseudonymized user ID and thus analyse the user’s activities across multiple devices.
Google Analytics uses so-called “cookies”, text files which are stored on your computer and allow your use of the website to be analysed. The information generated by the cookie concerning your use of this website is usually transmitted to a Google server in the USA, where it is stored.
We use Google Analytics only with the activated IP anonymization. Herewith Google will abbreviate your IP address within the EU or other states party to the Agreement of EEA before transferring the data. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. Google will, on our behalf, use this information to evaluate your use of the website; to compile reports on website activities and to provide other services relating to the website and Internet use for the website operator. Google will not link the IP address transmitted by your browser within the scope of Google Analytics to any other Google data. You can prevent the installation of cookies by selecting the corresponding settings in your browser software; please however be aware that should you do so, you may not be able to use all the functions offered by this website to their full extent. Over and above this, you can block the collection of data generated by the cookie and relating to your use of the website (incl. your IP address) by Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link. The current link is https://tools.google.com/dlpage/gaoptout?hl=en
Google Ads
On the basis of our legitimate interest we use the Google Marketing Services online advertising programme “Google Ads”.
When doing so, Google Ads installs a cookie on your computer (“conversion cookie”) insofar as you came to our website via a Google ad. These cookies expire after 30 days; contain no personal data and are thus not used for personal identification. When you visit certain sites and the cookie is still valid, Google and we can identify that you clicked the ad and were taken to this site. Each Google Ads customer is given a different cookie. It is thus impossible for cookies can be tracked across the websites of Ads customers. The information gathered with the help of the conversion cookie is used to compile conversion statistics for Ads customers who have decided to use the conversion tracking service. We do not receive any information which could be used to identify you personally.
The information gathered by the cookie about your use of our website is usually transmitted to a Google server in the USA, where it is stored. It is used to assign interest-relevant categories to your browser. These categories are used to display interest-relevant advertising.
The Google remarketing feature allows us to address users who have already visited our website. We can thus present our advertising to target groups who are already interested in our products or services.
Google Ads Conversion-Tracking
This website uses „Google Ads“, a online-advertising technic, as well as the Conversion-tracking of Google LLC., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA („Google“). We are using Google Ads to promote our services on external websites by advertising instruments (so called Ads). This allows us to identify the effectivity of our campaigns in regard of our campaign´s parameters. Our intent is to show you ads which might be of your interest and to optimize your browsing experience.
The conversion-tracking cookie is placed as soon as you have clicked an „Ads“-ad placed by Google. Cookies are small text files which are stored on your device. These cookies use to be valid for a period of 30 days and are not designed to identify you personally. Should you visit certain areas of our website during the cookie´s period of activity, Google and us may identify that you have clicked the ad and have been routed to our website. Each Google-Ads-customer, that is each company using Google-Ads on its websites, is provided an own individual cookie. Therefore, your behavior as a user may not be identified by us beyond our own website. The information we collect by se of this cookie is meant to provide for statistics over the use of our website. We may get the total number of users who have clicked our ads and have been routed to a website equipped with a Conversion-Tracking-Tag. However, we are not provided any data allowing for a personal identification of yours. If you should not want wo participate in that tracking, you may block it by deactivating the Google Ads Conversion-Tracking in your browser settings. We are using Google Ads inclusively of the Google Ads Conversion-Tracking based on your consent, Art. 6 I 1 EUGDPR.
Google LLC, which is US-based, provides so called EU-Standard Contractual Clauses for data protection which, again, provide for a processing of personal data on an adequate level of data protection. Further information on Google´s privacy policy may be obtained from https://policies.google.com/privacy. You may deactivate cookies on a permanent basis by preventing cookies from being placed by according browser settings or by downloading and installing the browser-plugin provided here: https://support.google.com/ads/answer/7395996. Please note, that certain functions of our website may not be used or may be subject to restricted use in case you have deactivated cookies.“
Google Tag Manager
In addition to this, we use the “Google Tag Manager” to integrate Google analysis and marketing services into our website and to manage these services. Google’s Tag Manager is a solution which allows us to manage website tags via a user interface. The Tag Manager tool, which implements the tag, is a cookie-less domain and does not gather personal data. The tool does, however, trigger other tags which can, in certain circumstances, gather data. Google Tag Manager does not, itself, access this data. If domain- or cookie-level deactivation has been carried out, then this will apply to all tracking tags implemented by Google Tag Manager. For more information see the service’s use guidelines.
For more information on Google data use for marketing purposes, visit the following site map: https://policies.google.com/technologies/ads?hl=en-GB. Google’s data protection declaration can be viewed at https://policies.google.com/privacy?hl=en
If you would like to object to interest-related advertising by Google Marketing Services, then use the setting and opt-out options provided by Google at: https://adssettings.google.com/anonymous
Google Optimize
In order to improve the usability and the corresponding user behaviour, we use the A/B testing tool Google Optimize. This tool is integrated into Google Analytics. No additional data is collected by Google Optimize in addition to the data from Google Analytics.
If you wish to object to interest-based advertising by Google marketing services, you can use the setting and opt-out options provided by Google: https://adssettings.google.com/anonymous
Google reCAPTCHA – Description and purpose of data processing
On parts of this website, especially on our registration and login pages, the reCAPTCHA function (reCAPTCHA v3) of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”) is used.If you are a resident of the European Economic Area (EEA) or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the controller of your data – collected in these procedures. You can recognize on which pages the service is active by the reCAPTCHA logo on the right-hand side of the screen.
This function is used in particular to distinguish whether a particular electronic input is made by a natural person or improperly by machine and automated processing. For this purpose, a JavaScript code in the background analyzes your interaction with the website (e.g. mouse movements, operating system, web browser used, IP address browser settings). Based on this analysis, the reCAPTCHA service will identify you as a human user or prevent improper automated execution. The query includes the sending of the IP address and possibly other data required by Google for the reCAPTCHA service to Google. A third country transmission takes place. The data is transferred to Google servers in the USA. Further information on the processing of data collected by Google on the basis of this tool can be viewed at https://www.google.com/recaptcha/about/ he legal basis for the processing is Art. 6 I 1 f DSGVO, our legitimate interest in the security of our website and in preventing misuse, manipulation and spam. Within the scope of the reCAPTCHA service, we do not store any of your data. For more information about Google reCAPTCHA and Google’s privacy policy, please see the following links: https://policies.google.com/privacy and https://www.google.com/recaptcha/about/.
LinkedIn Insight Tag
Our website uses „LinkedIn Insight Tag“, a cookies of the LinkedIn Ireland Unlimited Company. The use is based on your consent, Art. 6 I 1 a EU-GDPR. The tool places a cookie within your web-browser which uses to collecting the following data: Your IP-Address, device- and browser-settings and website events (e.g. sites visited). The data is encrypted and subject to anonymization within seven days. Within ninety days from its collection, the personal data is deleted. LinkedIn does not share personal data with F24, but moreover provides anonymized reports on how our website content has been browsed as well as reports concerning the target groups we reached or could reach with our content. Additionally, the Insight Tag enables us to perform a so called retargeting. Retargeting means that we receive information on whether our ads are of any impact on the users and of interest for the users. That, again, enables us to place targeted ads beyond our own website without identifying you personally as a user. Information on LinkedIn´s data protection efforts may be obtained from https://www.linkedin.com/legal/privacy-policy.
If you are operating a LinkedIn-account yourself as a member to their network, you may define how LinkedIn makes use of your personal data for advertising purposes by respective settings in your profile. To deactivate the Insight Tag on our website, („Opt-out“), just klick https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
Pardot Marketing Automation System (“Pardot MAS”)
We use the Pardot Marketing Automation System (“Pardot MAS”), a special software for collecting and evaluating the use of a website by website visitors and for sending newsletters.
When visiting this website, the Pardot MAS captures your click path and creates an individual usage profile using a pseudonym. For this purpose, cookies are used, which allow recognition of your browser.
To make use of Pardot also for Forms (e.g. the one you may use to subscribe to our newsletters) and “framed content” (delimitable independent content, such as e.g. a text) on our website, it is required to having Pardot placing a separate Pardot cookie per form/ framed content you access. In our consent-management, we have grouped the Pardot-cookies under the common heading “Pardot”. We therefore mention that you may accept Pardot inclusively of its cookies for forms and framed content by choosing to accept all cookies or by choosing to accept Pardot. Should you decide to decline all cookies or to decline Pardot, no Pardot-cookie is active at all – neither with forms, nor with framed content”.
However, you can deactivate the creation of pseudonymised user profiles at any time by configuring your Internet browser so that cookies of the domain “pardot.com” are not accepted. However, this may result in some limitations in the features and usability of our offering. In order to provide you with an offer or product information that is as interesting as possible and to the extent your consent to it, it is possible to merge your personal data with the data of a pseudonymised user profile via the set cookies, if you – for example by ordering a newsletter or completing a form – provide personal information. You may opt-out to this use of your personal information, such as name and address information, in writing or by e-mail at [email protected] or [email protected] at any time. You can revoke your consent at any time with effect for the future.
Newsletters sent with Pardot MAS contain so-called web beacons. These are smallest graphics that allow user behavior, such as opening and reading emails and clicking links to analyze. This allows us to make our content offered more relevant and interesting to you.
Our “CrispChat” live chat function
On our site you can contact us directly via chat and ask our experts live questions about our products, services and events.
To do this, we use the Crisp solution, a service provided by Crisp IM SARL, 149 Rue Pierre Semard, 29200 Brest, France (“Crisp”). When you contact us through the chat, the data technically necessary to provide the solution, such as your IP address, the content of your messages, your last activity and its timing, are collected through our website in order to respond to your request. If you provide them, your email address and/ or phone number will also be processed. Crisp may, by means of its “Enrich” service, link your data with other publicly available data, e.g. from social networks such as first and last name, avatar and company, and bases this on your consent to the respective terms of use of the respective networks – we have and have no influence on this.
For the use of Crisp, a temporary cookie is placed on your terminal device that is active for 6 months and is only renewed if you use the chat function again before the end of this period. If you use our site without chatting with us via Crisp, but have accepted the cookie, the session will be deleted after 30 minutes. If you chat with us via Crisp, the chat will remain stored until we delete it – this occurs after we have closed the session, we no longer need your data to fulfill any tasks from the chat and there is no longer an obligation to store your data. The storage takes place on Crisp’s servers, which are located in the EU.
The legal basis for processing your data when chatting with us via Crisp is your consent Art. 6 I 1 a DSGVO. For further information on data protection, please refer to Crisp’s privacy policy at https://crisp.chat/en/privacy/, you can access Crisp’s terms of use at https://crisp.chat/en/terms/ – there you will find in particular information on the extent to which Crisp processes your data (IP address) under applicable French law for legal and security reasons. If you have any questions about data protection at Crisp, you may also contact Crisp’s data protection officer directly at [email protected].
Cloudflare Content Delivery Network
To make our services permanently, globally and in a comfortable manner, we are using the content delivery network Cloudflare (Cloudflare). Cloudflare is a service of Cloudflare Germany GmbH, Rosental 7, c/o Mindspace, 80331 Munich, Germany, a subsidiary of Cloudflare Inc., 101 Townsend St, San Francisco, CA 94107, USA. A content delivery network is composed of a multitude of servers located around the globe, which is able to provide web-content securely and at high speed. As a consequence, you can access our content globally without delay. This, however, uses to require the data -which is also user data- to be stored on servers of the content delivery network, which here is Cloudflare, at least for a short period of time. Your data, however, is processed by use of Pardot (which also is described in our privacy statement – the information on Pardot-tracking you may obtain there is not applicable on Cloudflare). This processing is realized by use of i-framing technologies. This means that your personal data cannot be accessed by Cloudflare or third parties during this processing. It is only us, who can process your data in plain, which is something not even Cloudflare or Pardot can do (where Pardot may do so if you have consented in the use of Pardot as a tracking technology before), as the i-framing does allow for accessing the data it delivers (processes) from our own domain only. The legal basis of this processing is our legitimate interest to securely operate and to deliver our content at a user-friendly high pace. Should you be interested in how Cloudflare is processing data -in the underlying case anonymous data without any link to you as a person- you may obtain additional information from https://www.cloudflare.com/privacypolicy/.
Zapier
We are using „Zapier“, a solution provided by Zapier Inc., 548 Market St #62411, San Francisco, CA 94104-5401, USA, to transfer the basic Data of users newly registering with our services into our e-mail-systems. The use of Zapier may include the processing of the following data: Name, surname, e-mail-address, company, account-status, account number, date and time of your registration, data and time of your most recent login, data of your last order (sending an SMS), country of origin of your request and preferred language as well as the information whether your use is of private or professional nature. The legal basis for this processing is your declaration of consent, Art. 6 I 1 a EU-GDPR, where we allow to mention that your consent is also related to the following aspect: When using Zapier, personal user data is transferred to the US, where no EU-adequate level of data protection is present. To provide for the best possible and closest to the EU-standard of your personal data under these circumstances, we have entered into adequate data protection agreements with Zapier, which includes so called standard contractual clauses for data protection. However, US-authorities may still be able to request Zapier for access to your data leaving you without (effective) legal remedies in such case. Information on how Zapier is handling personal data may be obtained through https://zapier.com/privacy.
Use of social media plugins
We use social media plugins on our website. Plugins are small programmes or programme packages which can be used to edit and expand software in line with personal needs.The basic versions of applications such as web browsers, programs for processing graphic content or programs for playing media help to ensure that functions needed by the user can be executed.
Our website includes links to our social media profiles on the following social media networks:
• Twitter Inc.,1355 Market Street, Suite 900, San Francisco, CA 94103, USA
• LinkedIn Inc., 2029 Stierlin Ct, Mountain View, CA 94043, USA
• Xing SE, Dammtorstrasse 30, 20354 Hamburg, Germany
When you visit our website and use one of the social plugins included on the site, your browser will establish a direct connection to the social media network’s server. This provides the network with the information that you have visited our website using your IP address and clicked the link. If you click a link to a network while logged on to your account with that network, then our site content can be linked to your profile with the network. This means that the network can directly assign your visit to our website to your user account, thus providing us with your personal data such as name, email, location, list of friends and profile picture. This data allows us to offer certain features on our site. If you would like to prevent this, then you should log off before you click any such links. An assignment will definitely take place if you log on to the relevant network after clicking the link.
If you are logged on to a social network via your user account when visiting our website, then the relevant provider can also assign the visit to the site to your user account. If you interact with a plugin the corresponding information will also be sent directly to the relevant operator’s servicer in the USA, where it will be stored. The information will also be published on the relevant social network via your user account and shown to your contacts.
Even if you are not logged on to plugin provider’s network when visiting our website, the data gathered by the plugins may, in certain circumstances, be assigned to your corresponding user account. Plugins install a cookie with an identifier every time the website is visited. Since your browser transmits this cookie unrequested to the relevant provider’s server every time you connect to the server, the social networks could, in theory, use this information to create a profile which shows which website the user to whom the identifier applies visited. It could then be possible to subsequently assign the identifier – for example when the user later logs on with the provider – to an individual.
Over and above this, you can use the “Block third-party cookies” option in your browser settings to prevent your browser from sending cookies to the relevant social network server. If you use this setting it may, under circumstances, be the case that not only the plugin no longer functions but also other cross-site features of other providers.
For more information about the purpose and scope of data gathering and about further processing and use of your personal data see the relevant provider’s privacy information. It also includes more detailed information on your corresponding rights and settings options to protect your privacy as well as on your rights to object to the creation of user profiles:
• https://twitter.com/en/privacy
• https://policies.google.com/privacy
• www.linkedin.com/legal/privacy-policy
• https://privacy.xing.com/en/privacy-policy
Social media presence
We maintain social media profiles on Facebook, Twitter, LinkedIn and Xing.
The data which you submit to our social media profiles are published by the social media platform and are at no other time used or processed by us for other purposes. We do, however, reserve the right to erase content where necessary. If need be we will communicate with you via the social media platform. The basis for this is your and our legitimate interest in communicating by these means.
Please be aware that the operators of the social media platform use web tracking methods. Web tracking, over which we have no influence, may take place independent of whether you are logged onto or registered with the social media platform.
For more information on data processing by the providers of social media platforms see the relevant provider’s data protection declaration:
• https://twitter.com/en/privacy
• https://policies.google.com/privacy
• www.linkedin.com/legal/privacy-policy
• https://privacy.xing.com/en/privacy-policy
Contact form / Establishment of contact via email
Our website offers a contact form which can be used to contact us electronically. Should you contact us via the form then we will process the data which you provided on the form to contact you and to answer your questions and requests. When doing so, we will take the principles of data minimization and data avoidance into consideration by only asking you to provide the data which we must have to make contact with you. This information is your email address and the message itself. In addition to this, your IP address will be processed out of technical necessity and for legal protection purposes. All other data fields are voluntary and data may be provided optionally (e.g. for the individual answering of your questions). If you contact us by email then we will use the personal data provided in the email solely for the purpose of processing your enquiry. If you do not use the contact forms offered, then no further data gathering will take place.
The basis for processing of your personal data is our legitimate interest in processing your enquiry (Art. 6 Para. 1 (f) GDPR). If the contact request serves to perform a contract which you are party to or to carry out measures prior to concluding a contract, then this is an additional basis for processing your personal data(Art. 6 Para. 1 (b) GDPR).
Newsletter / F24 News
Our website provides an option to subscribe to a free newsletter (F24 News). The email address provided when registering for the newsletter and your name will be used to transmit the personalized newsletter. When doing so, the principles of data minimization and data avoidance will be taken into consideration, since the only mandatory field is the email address (where applicable, also name for the personalized newsletter). The mandatory information is required to send you the newsletter. Voluntary provision of further data allows us to provide you with more focused information. Out of technical necessity and for legal protection purposes your IP address will also be processed when registering for the newsletter.
The basis for processing of your personal data following registration for our newsletter is the existence of your consent (Art. 6 Para. 1 (a) GDPR). In order to process your personal data we thus obtain your consent during the registration process and refer to this data protection declaration.
When sending out newsletters by email we use the so-called “double opt-in procedure”. This means that we will only send you the newsletter if you have specifically confirmed in advance that we should activate the newsletter service. This is carried out by sending you a confirmation email asking you to click a corresponding link in the email to confirm that you wish to receive our newsletter to that email address. You can, of course, unsubscribe at any time by using the unsubscribe option provided in the newsletter, thus withdrawing your consent.
- Notice from our provider Newsletter Sendinblue GmbH, Köpenicker Strasse 126, 10179 Berlin – since 2023 Brevo
If you would like to receive the newsletter offered on the website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the specified e-mail address and agree to receive the newsletter.
We use the so-called double opt-in procedure to ensure that the newsletter is sent with your consent. In the course of this, the potential recipient allows himself to be included in a distribution list. Subsequently, the user is given the opportunity to confirm the registration in a legally secure manner by means of a confirmation e-mail. Only if the confirmation is received, the address will be actively included in the distribution list.
We use this data exclusively for sending the requested information and offers.
Sendinblue GmbH is used as the newsletter software. Your data will be transmitted to Brevo. Brevo is prohibited from selling your data and using it for purposes other than sending newsletters. Bervo is a German, certified provider, which was selected in accordance with the requirements of the General Data Protection Regulation and the Federal Data Protection Act.
You can find more information here: https://www.brevo.com/information-for-email-recipients/ or https://www.brevo.com/legal/privacypolicy/
You can revoke your consent to the storage of data, the e-mail address and their use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter.
The data protection measures are always subject to technical updates, for this reason we ask you to inform yourself about our data protection measures at regular intervals by consulting our privacy policy.
Demo enquiry, support enquiry, user report & white paper download, webinar form
Our website offers you the option of sending us a demo enquiry or a support enquiry; downloading our reports or white papers or having webinar recordings sent to you. If you fail to provide us with all the mandatory information required we will not, unfortunately, be able to respond. In such cases you can make use of our alternative communication channels. Providing us with the mandatory information only will not result in any legal disadvantages for you.
The basis for processing of your personal data is our legitimate interest in processing your enquiry (Art. 6 Para. 1 (f) GDPR).
The data submitted to carry out each action will be processed solely for the purpose of carrying out the relevant action which you initiated. When doing so, the principle of data minimization will be taken into consideration. Out of technical necessity and for legal protection purposes your IP address will also be processed when carrying out each action.
Advertising purposes for existing customers
F24 Schweiz AG and F24 are interested in maintaining good customer relations with you and providing you with information and offers regarding our products / services (product-related promotion campaigns; product updates; invitations to webinars and events). We will thus process your data in order to send you corresponding information and offers by email. The basis for this is our legitimate interest (Art. 6 Para. 1 (f) GDPR). If you do not wish this, then you can object at any time to the use of your personal data for direct marketing purposes; the same also applies for profiling, insofar as it is connected to direct marketing.
Should you object to processing for direct marketing purposes, then we will no longer process your personal data for such purposes. You may object without giving reasons; free of charge and without any formal requirements. Where possible please send an email to F24 Marketing, [email protected] or a letter to F24 AG, Ridlerstrasse 57, D-80339 Munich, Germany.
Online job applications
When you apply for a job with us we will process your personal data to evaluate your application. Within the scope of the application procedure we will, in addition to information about your person, also process information about your training; professional experience and skills; postal and contact addresses; and the documents included with the job application such as letter of motivation, CV and references. Applicants may also voluntarily provide additional information. This data will be stored, evaluated, processed or internally forwarded solely within the scope of your job application. It may also be processed for statistical purposes (e.g. reporting). In such cases it will not be possible to draw conclusions about individual persons.
Processing may also be carried out electronically. This will, in particular, be the case if you submit corresponding application documents to us using electronic means such as email.
Your application details will be stored separately from the other user data and not be amalgamated with it.
The basis for processing of your personal data is our legitimate interest in processing of your job application (Art. 6 Para. 1 (f) GDPR).
You may object to this data processing at any time. Please send your objection to the contact person named in the job advertisement or to the email address [email protected]. In such cases we will not evaluate your application any further and will return the documents to you or erase them.
Should we conclude an employment contract with you, then the data submitted will be stored for the purpose of carrying out the working relationship in line with legal regulations.
Should the application procedure be unsuccessful, then your personal data will be stored for a further 6 months for documentation purposes, following which it will be erased insofar as you have not consented to our using your data for further job application procedures and, in conjunction with this, to our contacting you again. You may at any time withdraw this consent retroactively. You can send your withdrawal to the email address [email protected] or to the email address given in the job advertisement.
Tracking with fusedeck
This Website uses “fusedeck”, a tracking solution provided by Capture Media AG (hereinafter referred to as “Capture Media”). Capture Media is a Swiss company having its registered office in Zurich which, on behalf of its customers, measures website usage in the context of engagements and events. Tracking is anonymous so that it is impossible to attribute any information gained to any identified or identifiable persons. For more information on data protection and the rights which data subjects have in connection with “fusedeck”, including their right to “opt out” (right to object), please refer to the Privacy Policy and the Information on the Right to Object. https://privacy.fusedeck.net/en/Day5nhU62H
Use of the website by minors
The website is aimed at adults. Minors, in particular children under 16 years of age, are forbidden to submit personal data to us or to register for a service without the consent and/or agreement of their parents or guardians. Should we establish that such data has been submitted to us, then it will be erased. The parents (or the legal representative) of the child can contact us and request erasure or unsubscription. To do so we will require a copy of an official document which identifies you as a parent or guardian.
Supplementary note on the data security of our website; our data processing infrastructure and our 4 products – security principles which relate to more than just processing of personal data via our website:
Our website also gives you the opportunity to order our FACT24 and eCall products. In this respect, in addition to our respective product information, we would like to draw your attention to our security principles, which we base both the operation of our website and our data processing infrastructure in general on and which are also applied in relation to our products: The protection of your data is very important to us. In order to protect the security and confidentiality of your data in the best possible way, we implement appropriate data security measures. In order to protect the data of our employees/customers/suppliers stored with us against accidental or intentional manipulation, loss, destruction or access by unauthorised persons, we have taken appropriate technical and organisational measures. The security levels are continuously reviewed in cooperation with security experts and adapted to new security standards. We guarantee all necessary precautions to protect your data from misuse and unauthorised access. The systems are secured by constantly updated virus scanners and firewalls. It goes without saying that we comply with data protection regulations, both internally and externally, and with individual agreements. As an application service provider, the IT/TC infrastructure and its smooth functioning are the focus of our quality management. This guarantees the availability of our services (99.90 %) even in the event of maintenance or malfunctions and meets the high security standards we demand.
Amendment of the data protection declaration
The company may supplement or amend this data protection declaration at any time. All amendments and supplements are at the sole discretion of the company. The current valid version dates from Mai 2023.
