Data Privacy

Data Privacy


General Information


ASEUS takes the protection of its staff, customers, partners and their data very seriously.

It is possible to make basic use of our website without providing any personal data. However, making use of particular services may require personal data to be collected and processed. Whenever the collection and processing of personal is necessary with no legal basis for requiring such data, then we will generally request the consent of the data subject.

Personal data (e.g. names, addresses, email addresses, IP addreses etc.) will always be handled in accordance with the General Data Protection Regulations (GDPR) and other data protection legislation included the German Data Protection Act (BDSG) and the Telemedia Act (TMG).

This privacy policy is intended to inform you about the type, scope and purpose of our collection, use and processing of personal data. Furthermore, data subjects are informed by means of this data protection declaration about the rights to which they are entitled.

As a data processor, ASEUS has implemented a range of measures in order to ensure your data remains secure. Despite this, security holes cannot be entirely ruled out when transferring data over the Internet, meaning that absolute protection cannot be guaranteed. You therefore also have the option to provide us with your personal data via alternative means, such as by telephone.


Cookies


Our website uses cookies. Cookies are text files created by web browsers and stored on your computer.

Many cookies contain what is known as a “cookie ID”. A cookie ID uniquely identifies a particular cookie. These can be used to identify a particular computer or data subject, to differentiate these from others and recognise repeat visits. Using cookies allows us to provide you with certain user-friendly services which would otherwise be impossible to implement.

Further information on the usage of cookies can be found in our CookieStatement (Link within the site footer).

The data subject can prevent cookies from being set by our website by clicking on “cookies” in the footer of our website. Furthermore, any cookies that have already been set can be deleted via your web browser. Please be aware that disabling cookies may render some or all of the features on our website unusable.

  • Collection of general data and information
    When you consent to the use of cookies via your web browser and/or by confirming as such on the cookie banner that appears on our website, we will collect a range of general data and information. This information is stored in the log files on our server. We may collect, for example:
  • the browser and operating system being used
  • the Internet site from which you reached our site (known as the “referrer”)
  • the sub-pages accessed on our site
  • the date and time of your visit as well as an anonymised/shortened form of your Internet Protocol Address (IP address)
  • your Internet service provider (e.g. Deutsche Telekom)

any other data and information that could be useful to us in the event of an attack on our systems


  • ASEUS infers nothing about the data subject through the use of this general data and information. Rather, this data is required in order to:
  • deliver and optimise the content of our Internet site
  • ensure the ongoing functionality of our IT systems and website
  • provide the necessary information to the prosecuting authorities in the event of a cyber attack


This anonymous and pseudonymous information is statically evaluated by us. The server log files are stored separately from all personal data provided by a data subject and are deleted after a period of 6 months.


Legal Basis for Data Processing


Whenever we receive your consent for a particular processing purpose, this consent falls under Article 6 Paragraph 1 Item a of the GDPR. If personal data must be processed in order to fulfil a contract to which you are party (e.g. delivery of goods), then such processing will fall under Article 6 Paragraph 1 Item b of the GDPR.

Whenever ASEUS has a legal obligation to process data, such as to meet tax related obligations, then such processing will fall under Article 6 Paragraph 1 Item c of the GDPR.

In rare cases, personal data may need to be processed in order to protect the life of the data subject or another natural person, e.g. if a visitor to our business were to get injured and their personal data needed to be passed on to a doctor, hospital or other third party. In these cases, processing falls under Article 6 Paragraph 1 Item d of the GDPR.

Most data processing activities fall under Article 6 Paragraph 1 Item f of the GDPR. This states that the documented legitimate interests of ASEUS (e.g. notification of our services) are a sufficient basis for data processing, provided that the interests, fundamental rights and basic freedoms of data subjects are not infringed upon. Legitimate interests particularly include our ability to carry out business activities to ensure the wellbeing of our staff and partners.


Processing purpose


The personal data collected via our website serves a range of purposes, some of which make use of external service providers (see below). The primary purposes (unless otherwise stated below) are:

  • Web analysis/tracking:
  • Optimisation of our website for the benefit of its visitors
  • To provide evidence of possible attacks against the website and to provide information for prosecution
  • Contact form:
  • To enable simple and fast contact with the company
  • To provide a means to contact relevant departments


Data recipients


ASEUS makes use of certain services from external providers who may be based outside of the EU. Such providers include:

  • Google Inc (for Google Analytics, Google Maps, Google Tag Manager, Google Google ReCaptcha – USA)
  • Vimeo LLC (Videos - USA)
  • LinkedIn Ireland Unlimited Company (Tracking - Ireland)

For more detailed information about these recipients, please see below.

Personal data will not be forwarded to third parties without your consent unless ASEUS is legally obligated to do so.


Rights of data subjects


When your personal data is processed by ASEUS, you have the following rights as a data subject. If you would like to exercise one of these rights, you may contactus at any time.


1. Right to access
All data subjects are entitled to request information from the data controller at any time about whether or not their personal data is being processed, free of charge. Furthermore, a data subject may request to see the personal information held on them and receive a copy of this. This copy of the personal data contains information on:

  • the processing purpose
  • the categories of personal data
  • the recipients or categories of recipients, particularly where recipients are based abroad
  • the intended retention period, or where this cannot be given, the criteria used to determine the retention period
  • an explanation of the rights of the data subject, particularly with regard to the right to rectify, delete or restrict their data and the right to withdraw consent
  • the existence of a right to legal appeal by a regulating authority
  • the source of the data (if data was not received from the data subject)
  • the existence of an automated decision-making process including profiling and detailed information about the logic and weightings involved, if applicable
  • information about the appropriate measures taken to ensure data is protected (when transferring data abroad)


2. Right to rectification
If the data held about you contains errors, you are entitled to have any incorrect personal data immediately rectified. This also applies to having missing data added, with supplementary consent given where necessary.

Right to deletion (right to be forgotten) and right to restrict processing

All data subjects are entitled to request the immediate deletion of their personal data by the data controller, provided that such a request is based upon one of the following reasons and insofar as processing is not required:

  • The processing purpose no longer applies, and the data is no longer required
  • Consent has been withdrawn and there is no other legal basis for processing
  • An objection to processing has been submitted and there are no overriding reasons why the objection should not be accepted
  • Data has been processed unlawfully

The data protection officer will review the request with regard to its legitimacy and the existence of any overriding obligations (e.g. minimum retention periods for tax reasons) and inform any data recipients of the request for deletion. If it is not possible to delete the data, you will be informed of the reasons why.

Whenever the purpose for processing no longer applies, but legal retention periods have not expired, or the data is required in order to make or defend against legal claims, then it is possible for your data to be restricted.


3. Right to data portability

You are entitled to receive a copy of the personal data you have provided us with in a structured, common and machine-readable format. This data can then be made available to another provider or service, or you may ask us to send this data directly to them. This right applies insofar as you have given us consent to process your data. This includes automatically collected data which does not infringe upon the rights and freedoms of other persons and where this is technically possible.


4.Right to object

Data subjects are entitled to object to their personal data being processed for reasons resulting from their particular circumstances at any time. This also applies to profiling performed according to these conditions. The data will then no longer be processed unless we can demonstrate compelling reasons to do so that outweigh your interests. The right to object applies in particular to the use of personal data for advertising purposes.

Automated decision making for individual cases including profiling

You are entitled to not be submitted to an exclusively automated decision-making process, including profiling, that has legal consequences for you or otherwise impacts you in a negative and significant way. This applies insofar as this automated decision-making process is not necessary for the conclusion of a contract between you and ASEUS and you have not given your explicit consent to automated decision-making.


5. Right to withdraw consent

European lawmakers guarantee data subjects the right to withdraw consent to the processing of their personal data at any time.

Data subjects who would like to exercise this right can contact our data protection officer or one of the data controller’s staff at any time.


6. Right to lodge a complaint with supervisory authority

Data subjects whose data is processed by ASEUS are entitled to lodge a complaint against the data controller. This applies in particular if you believe that ASEUS has processed your data in breach of data protection regulations or you have not received a prompt response to an enquiry, or the response contained incorrect information. An overview of supervisory authorities for non-public sectors (e.g. businesses) can be found at

https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html


Routine deletion and blocking of personal data


Personal data held about a data subject is stored only for the period necessary for the processing purpose, or for a legally required retention period. When the processing purpose no longer applies and/or legal retention periods have expired, personal data is routinely blocked or deleted in accordance with legal requirements.

  • With regard to the tracking of visitors to the ASEUS and Pitch-CX.com website, the period is generally a maximum of six months.
  • For applications that do not lead to employment or inclusion in the talent pool, a period of six months also applies.
  • Inquiries via the contact form will be deleted after six months at the earliest, provided that the processing of the inquiry has been completed.
  • All other deadlines are based on tax and commercial law requirements.


Our data controller can provide you with information about the specific ways in which your data is processed.


Contact options via the Internet site


Our website provides information on how you can get in touch with us via email and telephone as well as an online contact form. This fulfils the legal regulations relating to the provision of a fast, electronic method of contact as all data is sent to a central email address and therefore enters a self-hosted ticket system.

When you choose to contact us via e-mail or via the contact form, the personal data you send to us will be stored. Data collected in this way is used for the purposes of handling your enquiry or getting back in touch with you. This data will not be sent to any third parties.

Should any further contact take place after the initial contact, e.g. making an appointment to meet, this data will be forwarded to the appropriate member of staff and processed.


Use of Google Analytics


ASEUS has integrated the Google Analytics component (with an anonymisation feature) into this website for the purposes of web analytics. A web analytics service collects various data including the Internet site from which a data subject used to access another site (known as the “referrer”), which of our sub-pages were accessed and how often and for how long. This information can be used to optimise the Internet site. We use the suffix “_gat._anonymizeIp” for our web analytics. This suffix means that the IP address will be shortened and anonymised.

  1. Google Analytics is operated by Google LLC., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. (European representation: Gordon House, Barrow Street, Dublin 4, Ireland).
  2. Google uses the data it collects for a variety of purposes. These include evaluating how our website is used in order to generate online reports for us and in order to provide further services associated with the use of our Internet site.
  3. Google Analytics cookies are stored on your computer for this purpose. This cookie enables Google to analyse the use of our Internet site. By doing so, Google receive personal data such as your IP address. Data is therefore sent to Google in the United States of America every time you visit our website. Google may pass on this data to third parties.
  4. Processing by Google is based on appropriate safeguards. This means that a processing agreement has been concluded with Google. This is based on the standard contractual clauses issued by the European Commission.
  5. You can prevent cookies from being set, as described, at any time using the relevant settings in your browser. Furthermore, any cookies that have already been set by Google Analytics can be deleted via your web browser or other software programmes at any time. You also have the option to install a browser add-on (https://tools.google.com/dlpage/gaoptout). This is installed on your computer and prevents web analytics. The add-on uses JavaScript.
  6. Further information and Google’s current data privacy policy can be found at https://www.google.de/intl/de/policies/privacy and http://www.google.com/analytics/terms/de.html. Google Analytics is described in more detail at the following link: https://www.google.com/intl/de_de/analytics.


Use of Vimeo


ASEUS uses videos on its website that are hosted by the Vimeo portal. The purpose of this is to ensure content is transported more effectively and is made easier to understand, while also improving website performance by not hosting videos locally.

Vimeo is operated by Vimeo LLC at 555 West 18th Street, New York, New York 10011, USA.

A data processing contract has been made with Vimeo to ensure an appropriate level of data privacy. The contract is based upon the standard data privacy clauses set down by the EU.

When you visit one of our pages equipped with a Vimeo plugin, a connection to the Vimeo servers is established. This tells the Vimeo server which of our pages you have visited. In addition, Vimeo obtains your IP address. This also applies if you are not logged in to Vimeo or do not have an account with Vimeo. The information collected by Vimeo is transmitted to the Vimeo server in the USA. If you are logged into your Vimeo account, you enable Vimeo to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your Vimeo account.

Processing by Vimeo is based on appropriate safeguards. This means that a processing agreement has been concluded with Vimeo. This is based on the standard contractual clauses issued by the European Commission
For more information on the handling of user data, please see Vimeo's privacy policy at: https://vimeo.com/privacy.


Use of LinkedIn Insight Tag


We use the LinkedIn Insight Tag for conversion tracking on our website. The provider is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. LinkedIn Ireland is a subsidiary of LinkedIn Corp (USA).

LinkedIn uses the data obtained to evaluate the use of our website, to compile online reports for us and to provide other services related to the use of our website.

For this purpose, cookies are placed on your computer by LinkedIn. By setting the cookie, LinkedIn is able to analyze the use of our website. As part of this, LinkedIn gains knowledge of personal data, such as the IP address. Every time you visit our website, data is transmitted to LinkedIn in the United States of America. LinkedIn may share this data with third parties or use the data for behavioral advertising. However, the data is encrypted and anonymized.

Processing by LinkedIn is based on appropriate safeguards. This means that a processing agreement has been concluded with LinkedIn. This is based on the standard contractual clauses issued by the European Commission.

As shown, you can prevent the setting of cookies at any time by setting your browser accordingly. In addition, a cookie already set by LinkedIn can be deleted via the internet browser or other software programs. An opt-out of tracking is also possible at any time, provided you call up the following page: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out?trk=microsites-frontend_legal_cookie-policy

Further information and the applicable data protection regulations of LinkedIn can be found at https://www.linkedin.com/legal/privacy-policy.


Name & Address of the Data Controller


The data controller according to the applicable data protection regulations is:

ASEUS, Markus Stauffenberg

Hohlstraße 2
65510 Hünstetten
Germany

Phone: +49 151 48845402
Email:info@pitch-cx.com
Website: www.pitch-cx.com

Share by: