Privacy policy

We manage our websites according to the principles regulated below: We undertake to comply with the statutory provisions on data protection and endeavor to always take into account the principles of data avoidance and data minimization.

1. Name and address of the responsible person and the data protection officer

a) The responsible person

 

The responsible person within the meaning of the General Data Protection Regulation and other national data protection laws of the member states of the European Union as well as other data protection regulations is:

reev GmbH

Sandstraße 3
80335 München

Tel: +49 (0) 89 21538970

Email: legal@reev.com

Website: https:reev.com

 

b) The data protection officer

The data protection officer of the controller is:

SiDIT GmbH
Langgasse 20
97261 Güntersleben
Email: info@sidit.de
Website: https://sidit.de/

2. Definitions of terms

We have designed our privacy policy according to the principles of clarity and transparency. However, if there are any ambiguities regarding the use of different terms, the corresponding definitions can be seen here.

3. Legal basis for the processing of personal data

We process your personal data such as, for example. Your name and first name, your email address and IP address, etc. only if there is a legal basis for this. Here, the following regulations in particular come into consideration according to the General Data Protection Regulation:

  • 6 para. 1 p. 1 lit. a GDPR: The data subject has given his/her consent to the processing of personal data concerning him/her for one or more specific purposes.
  • 6 para. 1 p. 1 lit. b DSGVO: Processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures taken at the request of the data subject.
  • 6 para. 1 p. 1 lit. c DSGVO: Processing is necessary for compliance with a legal obligation to which the controller is subject.
  • 6 para. 1 p. 1 lit. d GDPR: Processing is necessary in order to protect the vital interests of the data subject or another natural person.
  • 6 para. 1 p. 1 lit. e GDPR: the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
  • 6 para. 1 p. 1 lit. f GDPR: the processing is necessary for the purposes of the legitimate interests of the controller or of a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child.

However, at the relevant points in this data protection declaration, we will always point out once again the legal basis on which your personal data is processed.

Verarbeitung von Informationen nach § 25 Abs.1 TTDSG

We also process information pursuant to § 25 par.1 TTDSG by storing information on your terminal equipment or accessing information already stored on your terminal equipment. This can be personal and non-personal information, such as cookies, browser fingerprints, advertising IDs, MAC addresses, and IMEI numbers. In this context, terminal equipment is any equipment connected directly or indirectly to the interface of a public telecommunications network for the purpose of transmitting, processing, or receiving messages, § 2 (2). No.6 TTDSG.

As a rule, we process this information on the basis of your consent, § 25 Abs.1 TTDSG.

As far as an exception, according to § 25 Abs.2 No.1 and No.2 TTDSG is given; we do not require consent. Such an exception exists when we access or store the information solely for the purpose of transmitting a message over a public telecommunications network or when it is absolutely necessary for us to provide a Telemedia service that you have specifically requested. You can revoke your consent at any time.

We inform you that the revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

4. Disclosure of personal data

Personal data transfer is also processed within the meaning of the previous section 3. However, we would like to inform you again here separately about the subject of a transfer to third parties. The protection of your personal data is very important to us. For this reason, we are particularly careful when it comes to passing on your data to third parties.

Therefore, data is only passed on to third parties if there is a legal basis for the processing. For example, we disclose personal data to persons or companies that act as processors for us pursuant to Art. 28 GDPR. A processor is anyone who processes personal data on our behalf – i.e., in particular, in a relationship of instruction and control with us.

In accordance with the requirements of the GDPR, we conclude a contract with each of our order processors to oblige them to comply with data protection regulations and thus provide your data with comprehensive protection.

5. Storage period and deletion

Your personal data will be deleted by us if it is no longer necessary for the purposes for which it was collected or otherwise processed; the processing is not necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims.

6. SSL encryption

This website uses SSL encryption for security reasons and to protect the transmission of confidential content, such as requests that you send to us as the website operator. You can recognize an encrypted connection by the fact that the browser address bar changes from “http://” to “https://” and by the lock symbol in your browser bar.

If SSL encryption is activated, the data you transmit to us cannot be read by third parties.

7. Cookies

We use cookies on our website. Cookies are small data packets your browser automatically creates and stores on your terminal device when you visit our website. These cookies store information in connection with the respective end device used.

A distinction is made between technically necessary cookies and “other” cookies when using cookies. Technically necessary cookies are when they are absolutely necessary to provide an information society service that you have expressly requested.

a) Technically necessary cookies

In order to make the use of our offer more pleasant for you, we use technically necessary cookies; these may be so-called session cookies (e.g., language and font selection, shopping cart, etc.), consent cookies, cookies to ensure server stability and security, or similar.

The legal basis for the cookies results from Art. 6 para. 1 p. 1 lit. f) DSGVO, our legitimate interest in the error-free operation of the website and the interest in providing you with our services in an optimized manner.

  • Session-Cookies

In order to make the use of our offer more pleasant for you, we use so-called session cookies (e.g., language and font selection, shopping cart, etc.) These session cookies fall under the category of technically necessary cookies and are automatically deleted after you leave our site. The legal basis for the cookies results from Art. 6 para. 1 p. 1 lit. c) DSGVO, a legal permission.

  • CleanTalk Anti-Spam Check

We use the service “CleanTalk, “https://ipapi.co/privacy/, which protects the website from spam. The use is based on our legitimate interests within the meaning of Art. 6 para. 1 lit. f) Basic Data Protection Regulation (GDPR).

For security reasons and as protection against spam, your data is processed in the CleanTalk Cloud Service and stored in log files for a maximum of 45 days. After the expiry of the aforementioned period, this data will be completely deleted. CleanTalk may use information about spam activity from IP or email addresses to provide appropriate anti-spam protection to all websites connected to its service.

For more information on the collection and use of data by CleanTalk, please refer to the privacy policy of CleanTalk Inc.: https://cleantalk.org/publicoffer#privacy.

  • IPAPI.CO

To automatically locate the location, country, time zone, and access to the website by computer or mobile device, as well as the Internet provider and routing information (IP address), we use the tool IPAPI (www.ipapi.co) of Kloudend, Inc. The tool is used to adapt the content of our website based on the localization findings and accordingly tailor it better to the respective visitor. Furthermore, the tool serves as protection against attackers and bots. The legal basis of the data processing results from our legitimate interest, according to Art. 6 para. 1 lit. f GDPR. Our necessary legitimate interest lies in the great benefit that the functions described above have for our offer. The localization of your location enables us, in particular, to respond and optimize our offer according to your interests and facilitates the technical implementation of our website. The privacy policy of Kloudend, Inc. you will find under: https://ipapi.co/privacy/

b) Other cookies

The other cookies include cookies for statistical purposes, analysis and marketing, and retargeting purposes. We set these cookies based on your consent in accordance with. Art. 6 par. 1 p. 1 lit. a) GDPR for you.

You can revoke your consent for the use of cookies at any time. We inform you that the revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

To do this, you can either edit your cookie settings on our website, deactivate cookies in your browser settings (which may also restrict the functionality of the online offer), or set an opt-out for the relevant service in individual cases.

For the respective services, we will inform you within the privacy policy on which legal basis these data are processed.

c) Cookie-Banner

To obtain consent for the cookies we use, we use the cookie banner of the service provider Borlabs s.r.l. This itself sets a so-called consent cookie to query and process the respective consent status. This consent cookie is technically necessary and is therefore used on the basis of our legitimate interest in accordance with. Art. 6 par.1 S.1 lit. f GDPR, § 25 para.1 TTDSG used.

7.1 Cookies

      We set the following cookies on our website:

      *xxx stands for your Google Analytics Property ID

      **xxx stands for Cookie Policy ID

      ***xxx stands for user ID

      Provider Cookies Purpose Storage duration Privacy policy of the provider
      Didomi euconsent This cookie contains the AB TCF consent string and consent information for all standard AB providers and purposes. 12 months https://privacy.didomi.io/en/policy
      Google DoubleClick DSID

      This cookie is used to store the user’s preferences.

      This is used, for example, to display individualized advertising

      12 months https://policies.google.com/privacy
      Google DoubleClick DSID

      This cookie is used to store the user’s preferences.

      This is used, for example, to display individualized advertising

      12 months https://policies.google.com/privacy
      Google 1P_JAR, DV, NID These cookies store your preferred settings and track how you use our website to show you advertisements of interest to you. Max. 2 years https://policies.google.com/privacy
      Google AID, DSID, TAID, ANID, OTZ Coordinate the ads that are displayed for you on different devices and the measurement of conversion events Max. 2 years https://policies.google.com/privacy
      Google APISID, CONSENT, SID, HSID, SAPISID, SSID, SIDCC

      This cookie is used to authenticate users.

      prevent fraudulent use of credentials and protect user data from unauthorized access.

      SIDCC – 3 months;

      CONSENT – 20 years;

      other – 2 years

      https://policies.google.com/privacy
      Google _ga, _gid Creation of website usage statistics

      _ga – 2 years; _gid – 24

      Hours

      https://policies.google.com/privacy
      Google _gat gtag xxx* Google Analytics cookie to throttle the number of requests. 1 minute https://policies.google.com/privacy
      Google Secure-APISID, _Secure-3PAPISID, Secure-3PSID, _Secure-HSID, _Secure-SSID Used for targeting purposes to profile the interests of website visitors in order to display relevant and personalized Google advertising. 6 months to 2 years https://policies.google.com/privacy
      Facebook -fbp Identification of users who have already visited the website. 3 months https://www.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0
      Salesforce visitor id<accountid> The visitor cookie contains a unique visitor ID and the unique ID for your account. The account identifier ensures that the visitor is recorded in the correct Pardot account. This cookie is created for visitors by the Pardot tracking code. 12 months https://www.salesforce.com/de/company/privacy/
      Salesforce pi_opt_in<accountid> If tracking opt-in preferences are enabled, the pi_opt_in cookies are set with a true or false value when the visitor opts in or out of tracking. 12 months https://www.salesforce.com/de/company/privacy/
      Salesforce visitor_id<accountids-hash The visitor hash cookie contains the account ID and stores a unique code. This cookie is a security measure to ensure that a malicious user cannot pretend to be a visitor to Pardot and access the relevant prospect information. 12 months https://www.salesforce.com/de/company/privacy/
      Salesforce Ipv<accountid>

      This LPV cookie is set to prevent Pardot from making multiple page views to a single element within a 30-minute

      session to track.

      12 months https://www.salesforce.com/de/company/privacy/
      Salesforce pardot A session cookie called pardot is set in your browser while you are logged in to Pardot as a user or when a visitor accesses a form, landing page, or page with Pardot tracking code. The cookie indicates an active session and is not used for tracking. 12 months https://www.salesforce.com/de/company/privacy/
      Borlabs Cookie Solution _jubeuconsent, _jub_cs-xxx**

      Are used by Borlabs cookie extension to set preferences 

      to save the consent to cookies.

      1 year https://de.borlabs.io/datenschutz/
      WordPress wp-settings-xxx*** Used to maintain a user’s wp-admin configuration. 1 year https://de.wordpress.org/about/privacy/cookies/
      WordPress wordpress_test_cookie Test whether a cookie can be set. Bis Ende der Browsersitzung https://de.wordpress.org/about/privacy/cookies/

      8. Collection and storage of personal data as well as their type and purpose of use

      a) External hosting

      Our website is hosted by Kinsta Inc (8605 Santa Monica Blvd #92581 West Hollywood, CA 90069 USA). For this reason, all personal data collected on our website is stored on our hoster’s servers unless an external third-party service is included. This may be the IP address, your email address, communication data, or similar. You can find out what specific personal data is involved here by looking at the individual functions and services explained by us. If we use an external service of a third party, this will be made clear in the description of the respective service or tool.

      The hoster processes your data only on our instructions and to the extent necessary to fulfill the services on the website. The hoster does not process the data for its own purposes. We have concluded an order processing contract with this hoster.

      b) When visiting the website

      When you call up our website, information is automatically sent to the server of our website by the browser used on your end device. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automated deletion:

      IP address of the requesting computer
      Date and time of access
      Name and URL of the accessed file
      Website from which the access was made (referrer URL)
      Browser used and, if applicable, the operating system of your computer as well as the name of your access provider.

      The aforementioned data is processed by us for the following purposes:

      Ensuring a smooth connection setup of the website
      Ensuring comfortable use of our website
      Evaluation of system security and stability
      error analysis
      for further administrative purposes

      Data that can be traced back to your person, such as the IP address, will be deleted after 7 days at the latest. If we store the data beyond this period, this data is pseudonymized so that it is no longer possible to assign it to you.

      The legal basis for the data processing is Art. 6 para. 1 p. 1 lit. f GDPR. Our legitimate interest follows from the purposes for data collection listed above. In no case do we use the collected data for the purpose of drawing conclusions about your person.

      c) Members/LogIn area

      The LogIn area is used to map the consumption and user data of the respective customer in the context of fulfilling the contractual relationship in accordance with Art. 6 para. 1 p. 1 lit. b GDPR.

      d) Passing on of data when using online payment service providers

      Should you decide to settle with one of the online payment service providers offered by us within the scope of using the web portal, your contact data will be transmitted to them within the scope of the order triggered in this way. The lawfulness of the transfer of the data results from Art. 6 para. 1 p. 1 lit. b GDPR, for the implementation of the payment method you have chosen, as well as our legitimate interests according to. Art. 6 par. 1 p. 1 lit. f GDPR to enable user-friendly and uncomplicated payment processing.

      The personal data transferred to the online payment service provider is mostly first name, last name, address, email address, or other data required for invoice processing, as well as data related to the such as information on the loading process or location, invoice amount and taxes as a percentage, billing information, etc.

      This transmission is necessary to process the loading of your drivers with the payment method you have selected.

      However, please note: Personal data may also be disclosed by the online payment service provider to service providers, subcontractors, or other affiliated companies, insofar as this is necessary for the fulfillment of the contractual obligations arising from your order or the personal data is to be processed on behalf.

      Depending on the selected payment method, e.g., invoice or direct debit, the personal data transmitted to the provider will be transmitted by the provider to credit agencies. This transmission serves to check your identity and creditworthiness in relation to the order you have placed. You can find out which credit agencies are involved and which data is generally collected, processed, stored, and passed on by the respective provider in the respective data protection declarations of the providers:
      Stripe Payments Europe, Ltd, Grand Canal Street Lower, Grand Canal Dock, Dublin, Irland, dpo@stripe.com, https://stripe.com/de/privacy

      e) Contact form/email contact

      We provide a form in our web portal so that you have the possibility to contact us at any time. For the use of the contact form, it is necessary to provide a name for a personal salutation and a valid email address to contact us so that we know from whom the request originates and can also process it.

      If you send us inquiries via the contact form, your data from the inquiry form, including the contact data you provided there, as well as your IP address, will be processed in accordance with the German Data Protection Act. Art. 6 par. 1 p. 1 lit. b and f GDPR for the performance of pre-contractual measures, which take place at your request or for the exercise of our legitimate interest, namely for the exercise of our business activity.

      You are also welcome to send us an email instead of using the email address provided in our web portal. In this case, we store and process your e-mail address and the information you provide in the e-mail in accordance with Art. 6 Para. 1 p. 1 lit. b and f GDPR to process your message.

      f) Newsletter

      Newsletter content and registration data

      The sending of our newsletter and the performance of statistical surveys and analyses, as well as logging of the registration process, will only take place if you order it from us and give your corresponding consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR, § 25 para.1 TTDSG has been granted.

      The contents of the newsletter are specifically described when you register for the newsletter. For the registration of the newsletter, the indication of your email address is sufficient. If you wish to provide additional voluntary information, such as your name and/or gender, these will be used exclusively for the personalization of the newsletter addressed to you.

      Double opt-in and logging

      For security reasons, we use the so-called double opt-in procedure to register for our newsletter so that no one can register with other people’s email addresses. Therefore, after you subscribe to our newsletter, you will receive an e-mail asking you to confirm your subscription. Only with the confirmation of the registration it becomes effective.

      Furthermore, your subscription to the newsletter is logged. The logging includes the storage of the login and confirmation time, your specified data, and your IP address. If you make changes to your data, these changes are also logged.

      Revocation

      If you no longer wish to receive our newsletter, you can revoke your consent at any time in the future. To do so, you can click on the unsubscribe link at the end of each newsletter or send us an email to the following email address: info@reev.com

      Durch den Widerruf der Einwilligung wird die Rechtmäßigkeit der aufgrund der Einwilligung bis zum Widerruf erfolgten Verarbeitung nicht berührt.

      Use of Salesforce:

      We send our newsletter and marketing emails using Salesforce Salescloud and Salesforce Marketing Cloud Account Engagement, which are offered by Salesforce Inc. (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA).

      The email addresses of our newsletter recipients and also their other data described in the context of this notice are stored in the cloud of Salesforce in the USA. Salesforce uses this information to send and evaluate the newsletter on our behalf. Furthermore, according to its own information, Salesforce may use this data to optimize or improve its own services. However, Salesforce does not use the data of our newsletter recipients to address them itself or to pass them on to third parties.

      We have concluded the new standard contractual clauses with Salesforce. Salesforce does not obtain the right to share your data.

      You can find Salesforce’s privacy policy here.

      g) Form Event / Webinar

      We offer a form for those interested in our webinars. If you would like to participate, we need your name and email address to identify you as a participant in the webinar. To participate in the event, we will send you an access link in advance to the email address you provide. After the end of the event, you will also receive another email with the material.

      If you register for an event, your information from the request form, including the contact details you provide there, as well as your IP address, will be used in accordance with Art. 6 par. 1 p. 1 lit. b and f GDPR for the performance of pre-contractual measures, which take place at your request or for the exercise of our legitimate interest, namely for the exercise of our business activity.

      GoToWebinar

      For the implementation of our events, we use the service provider GoToWebinar of the provider LogMeIn Ireland Limited (Bloodstone Building Block C70 Sir John Rogerson’s Quay Dublin 2, Ireland). When you register for the event, the personal data you provide (name, email address, company, and telephone number) are processed. In particular, this is the name, first name, company, telephone number, and email address.

      We have concluded an order processing contract with GoToWebinar. GoToWebinar does not obtain the right to pass on your data.

      The data processing takes place in Germany, the European Union, and the USA. The security of data processing in the USA is established by an appropriate level of protection through the agreement of the EU standard contractual clauses. Further information in the privacy policy of the provider: https://www.logmeininc.com/de/legal/privacy/us

      The use of the GoToWebinar service is based on our legitimate interests pursuant to Art. 6 para. 1 p. 1 lit. f GDPR. Our interest is directed towards the use of a user-friendly as well as secure webinar tool that serves our business interests as well as meets the expectations of the users.

      9. Analysis and tracking tools

      We use the analysis and tracking tools listed below in our web portal. These are used to ensure our web portal’s ongoing optimization and design it to meet your needs.

       

      We use these tools based on your consent pursuant to Art. 6 par. 1 p. 1 lit. a GDPR. You can revoke your consent at any time by changing the cookie settings. The processing remains lawful until the revocation.

      The respective data processing purposes and data categories can be found in the corresponding tools. We would like to point out that we do not influence whether and to what extent the service providers carry out further data processing.

      a) Google Analytics

      We use Google Analytics on our website, a web analytics service provided by Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter “Google”).

      Google Analytics uses cookies in this context (see section 7). The information generated by the cookie about your use of this website, such as

      Name and version of the browser used
      Operating system of your computer
      Website from which the access is made (referrer URL)
      IP address of the requesting computer
      Time of the server request

      are usually transferred to a Google server in the USA and stored there.

      However, since we have activated IP anonymization in our web portal, your IP address will be truncated beforehand by Google within European Union member states or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.

      On our behalf, Google will use this information for the purpose of evaluating your use of our web portal, compiling reports on web portal activity, and providing other services relating to web portal activity and internet usage to us. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google.

      Please click here for an overview of data protection at Google.
      b) Google AdWords

      We use Google AdWords, an online advertising program from Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), on our website. Conversion tracking is also used in this process. With this tool, Google AdWords sets a cookie on your end device when you visit our website via a Google ad.

      The cookie is no longer valid after 30 days. It does not serve any personal traceability. If you visit our website as a user and the cookie is still working, it will be recognizable to us together with Google that you clicked on the corresponding ad and were redirected to our site. In the process, a different cookie is assigned to each Google AdWords customer. Cookies are thus not traceable via the websites of AdWords customers.

      Conversion statistics for AdWords customers are created with the data collected by conversion cookies. As Google AdWords customers, we thus learn the total number of users who responded to our ad and were then redirected to a web page tagged with a conversion tracking tag. We do not receive any information during this process that would allow us to identify you as a user personally.

      If you reject the tracking procedure, your Internet browser can deactivate the Google conversion tracking cookie.

      If necessary, use the help function of the browser for further information. You can find out more about Google’s privacy policy at http://www.google.de/policies/privacy/.

      c) Salesforce

      We work with Salesforce Sales Cloud CRM software from Salesforce Inc (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA), through which we can manage our customer data and conduct online marketing. Salesforce Sales Cloud is a CRM system that enables us, among other things, to manage existing and potential customers and customer contacts and to organize sales and communication processes. Using the CRM system also enables us to analyze our customer-related processes.

      For this purpose, among other things, landing pages are analyzed, and reports are generated. For this purpose, so-called “web beacons” are used, and cookies are applied. In this context, the following personal data may be processed:

      IP address
      geographical location
      type of browser
      duration of the visit
      pages viewed

      Customer data is stored on Salesforce’s servers. We have entered into the new standard contractual clauses with Salesforce. Salesforce does not obtain the right to share your data.

      You can find Salesforce’s privacy policy here.

       

      d) LinkedIn Conversion-Tracking

      We use the conversion tracking function of LinkedIn on our website. This enables us to target you with advertisements following a visit to our website. In addition, LinkedIn provides reporting that shows how successful our advertisements are and how users generally interact with our site. If you have logged in via LinkedIn before visiting our site, this will be recognized as part of the conversion tracking, and you will be associated with your LinkedIn account as a visitor to our site.

      You can find more information in LinkedIn’s privacy policy. You can find this here.

      In addition, you have the option to unsubscribe from interest-based advertising via LinkedIn. This is possible via this link.

      10. Video integration

      YouTube

      We embed videos from YouTube, which is operated by Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), into our website as part of iFrame. As part of the embedding of the videos, we have activated YouTube’s extended data protection mode.

      If you play a YouTube video during your visit, a connection is established to YouTube’s servers, and the YouTube server is informed which of our pages you have visited. This allows YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your member account before visiting our website. In addition, YouTube sets various cookies when starting the service in order, according to its own information, to improve its offered services and to prevent misuse.

      For more information on the handling of user data and the cookies set, please refer to YouTube’s privacy policy at: https://www.google.de/intl/de/policies/privacy.

      The legal basis results from the consent granted by you according to Art. 6 par. 1 p. 1 lit. a GDPR. You can revoke your consent at any time by changing the cookie setting on our website.

      11. Rights of the person concerned

      You have the following rights:

      a) Information

      In accordance with Article 15 of the GDPR, you have the right to request information about your personal data processed by us. This right to information includes information about

      the purpose of processing
      the categories of personal data
      the recipients or categories of recipients to whom your data have been or will be disclosed
      the planned storage period or at least the criteria for determining the storage period
      the existence of a right to rectification, erasure, restriction of processing, or objection
      the existence of a right of appeal to a supervisory authority
      the origin of your personal data, if it was not collected by us
      the existence of automated decision-making, including profiling and, if applicable, meaningful information about its details.

      b) Correction

      In accordance with Article 16 of the GDPR, you are entitled to the immediate correction of incorrect or incomplete personal data stored by us.

      c) Deletion

      In accordance with Art. 17 of the GDPR, you have the right to request that we delete your personal data without delay insofar as further processing is not necessary for one of the following reasons:

      the personal data are still necessary for the purposes for which they were collected or otherwise processed
      to exercise the right to freedom of expression and information
      For compliance with a legal obligation that requires processing under the law of the European Union or the Member States to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller
      for reasons of public interest in the area of public health pursuant to Art. 9(2)(h) and (i) and Art. 9(3) of the GDPR
      for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes pursuant to Article 89(1) of the GDPR, insofar as the right referred to in section a) is likely to render impossible or seriously prejudice the achievement of the purposes of such processing
      for the assertion, exercise or defense of legal claims.

      d) Restriction of processing

      In accordance with Article 18 of the GDPR, you may request the restriction of the processing of your personal data for one of the following reasons:

      You dispute the accuracy of your personal data.
      The processing is unlawful, and you object to the erasure of the personal data.
      We no longer need the personal data for the purposes of processing, but you need it to assert, exercise or defend legal claims.
      You object to the processing pursuant to Article 21 (1) of the GDPR.

      e) Notification

      If you have requested the rectification or erasure of your personal data or a restriction of processing in accordance with Articles 16, 17(1), and 18 of the GDPR, we will notify all recipients to whom your personal data has been disclosed unless this proves impossible or involves a disproportionate effort. You may request that we inform you of these recipients.

      f) Transmission

      You have the right to receive your personal data that you have provided to us in a structured, common, and machine-readable format.

      You also have the right to request that this data be transferred to a third party, provided that the processing was carried out with the help of automated procedures and is based on consent pursuant to Art. 6 para. 1 p. 1 lit. a or Art. 9 para. 2 lit. a or on a contract pursuant to Art. 6 para. 1 p. 1 lit. b GDPR.

      g) Revocation

      In accordance with Art. 7 para. 3 GDPR, you have the right to revoke your consent at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. In the future, we may no longer continue the data processing that was based on your revoked consent.

      h) Complaint

      In accordance with Article 77 of the GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR.

      i) Objection

      If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 para. 1 p. 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, provided that there are grounds for doing so that arise from your particular situation or the objection is directed against direct marketing. In the latter case, you have a general right of objection, which will be implemented by us without specifying the particular situation. If you would like to make use of your right of revocation or objection, it is sufficient to send an email to: support@reev.com.

      j) Automated decisions in individual cases, including profiling

      You have the right not to be subject to a decision based solely on automated processing – including profiling – which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision

      is necessary for the conclusion or performance of a contract between you and us
      is permitted by the legislation of the European Union or the Member States to which we are subject, and that legislation contains appropriate measures to safeguard your rights and freedoms and your legitimate interests
      is made with your express consent.

      However, these decisions may not be based on special categories of personal data pursuant to Article 9(1) of the GDPR unless Article 9(2)(a) or (g) of the GDPR applies and appropriate measures have been taken to protect the rights and freedoms and your legitimate interests.

      With regard to the cases mentioned in i) and iii), we take reasonable steps to safeguard your rights and freedoms as well as your legitimate interests, including at least the right to obtain the intervention of a person from our side to express your point of view and to contest the decision.

      12. Change of the privacy policy

      If we change the privacy policy, this will be indicated on the website.

      Status 26.04.2022

      1. name and address of the responsible person and the data protection officer

      a) The responsible person

       

      The responsible person within the meaning of the General Data Protection Regulation and other national data protection laws of the member states of the European Union as well as other data protection regulations is:reev GmbHSandstraße 3
      80335 MünchenTel: +49 (0) 89 21538970eMail: legal@reev.comWebsite: https:reev.com

       

      b) The data protection officer

      The data protection officer of the controller is:

      SiDIT GmbH
      Langgasse 20
      97261 Güntersleben
      Email: info@sidit.de
      Website: https://sidit.de/

      2. definitions of terms

      We have designed our privacy policy according to the principles of clarity and transparency. However, if there are any ambiguities regarding the use of different terms, the corresponding definitions can be seen here.

      3. legal basis for the processing of personal data

      We process your personal data, such as, for example. Your name and first name, your email address and IP address, etc., only if there is a legal basis for this. Here, the following regulations, in particular, come into consideration according to the General Data Protection Regulation:

       

      • 6 para. 1 p. 1 lit. a GDPR: The data subject has given their consent to the processing of personal data concerning them for one or more specific purposes.
      • 6 para. 1 p. 1 lit. b DSGVO: Processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures taken at the data subject’s request.
      • 6 para. 1 p. 1 lit. c DSGVO: Processing is necessary for compliance with a legal obligation to which the controller is subject.
      • 6 para. 1 p. 1 lit. d GDPR: Processing is necessary in order to protect the vital interests of the data subject or another natural person.
      • 6 para. 1 p. 1 lit. e GDPR: the processing is necessary for the performance of a task carried out in the public interest or the exercise of official authority vested in the controller.
      • 6 para. 1 p. 1 lit. f GDPR: the processing is necessary for the purposes of the legitimate interests of the controller or of a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child.

      However, at the relevant points in this data protection declaration, we will always point out once again the legal basis on which your personal data is processed.

      Verarbeitung von Informationen nach § 25 Abs.1 TTDSG

      We also process information pursuant to § 25 par.1 TTDSG by storing information on your terminal equipment or accessing information already stored on your terminal equipment. This can be personal and non-personal information, such as cookies, browser fingerprints, advertising IDs, MAC addresses, and IMEI numbers. In this context, terminal equipment is any equipment connected directly or indirectly to the interface of a public telecommunications network for the purpose of transmitting, processing, or receiving messages, § 2 (2). No.6 TTDSG.

      As a rule, we process this information on the basis of your consent, § 25 Abs.1 TTDSG.

      As far as an exception, according to § 25 Abs.2 No.1 and No.2 TTDSG is given. We do not require consent. Such an exception exists when we access or store the information solely for the purpose of transmitting a message over a public telecommunications network or when it is absolutely necessary for us to provide a Telemedia service that you have specifically requested. You can revoke your consent at any time.

      We inform you that the revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

      4. disclosure of personal data

      Personal data transfer is also processed within the meaning of the previous section 3. However, we would like to inform you again here separately about the subject of a transfer to third parties. The protection of your personal data is very important to us. For this reason, we are particularly careful when it comes to passing on your data to third parties.

      Therefore, data is only passed on to third parties if there is a legal basis for the processing. For example, we disclose personal data to persons or companies that act as processors for us pursuant to Art. 28 GDPR. A processor is anyone who processes personal data on our behalf – i.e., in particular, in a relationship of instruction and control with us.

      In accordance with the requirements of the GDPR, we conclude a contract with each of our order processors to oblige them to comply with data protection regulations and thus provide your data with comprehensive protection.

      5. storage period and deletion

      We will delete your personal data if it is no longer necessary for the purposes for which it was collected or otherwise processed, the processing is not necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or the establishment, exercise or defense of legal claims.

      6. SSL encryption

      This website uses SSL encryption for security reasons and to protect the transmission of confidential content, such as requests you send to us as the website operator. You can recognize an encrypted connection by the fact that the browser address bar changes from “http://” to “https://” and by the lock symbol in your browser bar.

      If SSL encryption is activated, third parties cannot read the data you transmit to us.

      7. Cookies

      We use cookies on our website. Cookies are small data packets your browser automatically creates and stores on your terminal device when you visit our website. These cookies are used to store information in connection with the respective end device used.

      A distinction is made between technically necessary cookies and “other” cookies when using cookies. Technically necessary cookies are when they are absolutely necessary to provide an information society service that you have expressly requested.

      a) Technically necessary cookies

      In order to make the use of our offer more pleasant for you, we use technically necessary cookies; these may be so-called session cookies (e.g., language and font selection, shopping cart, etc.), consent cookies, cookies to ensure server stability and security, or similar.

      The legal basis for the cookies results from Art. 6 para. 1 p. 1 lit. f) DSGVO, our legitimate interest in the error-free operation of the website and the interest in providing you with our services in an optimized manner.

      • Session-Cookies

      In order to make the use of our offer more pleasant for you, we use so-called session cookies (e.g., language and font selection, shopping cart, etc.) These session cookies fall under the category of technically necessary cookies and are automatically deleted after you leave our site. The legal basis for the cookies results from Art. 6 para. 1 p. 1 lit. c) DSGVO, a legal permission.

      • CleanTalk Anti-Spam Check

      We use the service “CleanTalk,” which protects the website from spam. The use is based on our legitimate interests within the meaning of Art. 6 para. 1 lit. f) Basic Data Protection Regulation (GDPR).

      For security reasons and as protection against spam, your data is processed in the CleanTalk Cloud Service and stored in log files for a maximum of 45 days. After the expiry of the aforementioned period, this data will be completely deleted. CleanTalk may use information about spam activity from IP or email addresses to provide appropriate anti-spam protection to all websites connected to its service.

      For more information on the collection and use of data by CleanTalk, please refer to the privacy policy of CleanTalk Inc.: https://cleantalk.org/publicoffer#privacy.

      • IPAPI.CO

      To automatically locate the location, country, time zone, and access to the website by computer or mobile device, as well as the Internet provider and routing information (IP address), we use the tool IPAPI (www.ipapi.co) of Kloudend, Inc. The tool is used to adapt the content of our website based on the localization findings and accordingly tailor it better to the respective visitor. Furthermore, the tool serves as protection against attackers and bots. The legal basis of the data processing results from our legitimate interest, according to Art. 6 para. 1 lit. f GDPR. Our necessary legitimate interest lies in the great benefit that the functions described above have for our offer. The localization of your location enables us, in particular, to respond and optimize our offer according to your interests and facilitates the technical implementation of our website. The privacy policy of Kloudend, Inc. you will find under: https://ipapi.co/privacy/

      b) Other cookies

      The other cookies include cookies for statistical purposes, analysis and marketing, and retargeting purposes. We set these cookies based on your consent in accordance with. Art. 6 par. 1 p. 1 lit. a) GDPR for you.

      You can revoke your consent for the use of cookies at any time. We inform you that the revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

      To do this, you can either edit your cookie settings on our website, deactivate the use of cookies in your browser settings (whereby which may also restrict the functionality of the online offer), or set an opt-out for the relevant service in individual cases.

      Wir weisen Sie bei den jeweiligen Diensten innerhalb der Datenschutzerklärung darauf hin, auf welcher Rechtsgrundlage diese Daten verarbeitet werden.

      c) Cookie-Banner

      To obtain consent for the cookies we use, we use the cookie banner of the service provider Borlabs s.r.l. This itself sets a so-called consent cookie to query and process the respective consent status. This consent cookie is technically necessary and is therefore used based on our legitimate interest in accordance with. Art. 6 par.1 S.1 lit. f GDPR, § 25 para.1 TTDSG used.

      7.1 Cookies

          We set the following cookies on our website:

          *xxx stands for your Google Analytics Property ID

          **xxx stands for Cookie Policy ID

          ***xxx stands for user ID

          Provider Cookies Purpose Storage duration Privacy policy of the provider
          Didomi euconsent This cookie contains the AB TCF consent string and consent information for all standard AB providers and purposes. 12 months https://privacy.didomi.io/en/policy
          Google DoubleClick DSID

          This cookie is used to store the user’s preferences.

          This is used, for example, to display individualized advertising

          12 months https://policies.google.com/privacy
          Google DoubleClick DSID

          This cookie is used to store the user’s preferences.

          This is used, for example, to display individualized advertising

          12 months https://policies.google.com/privacy
          Google 1P_JAR, DV, NID These cookies store your preferred settings and track how you use our website to show you advertisements of interest to you. Max. 2 years https://policies.google.com/privacy
          Google AID, DSID, TAID, ANID, OTZ Coordinate the ads that are displayed for you on different devices and the measurement of conversion events Max. 2 years https://policies.google.com/privacy
          Google APISID, CONSENT, SID, HSID, SAPISID, SSID, SIDCC

          This cookie is used to authenticate users.

          prevent fraudulent use of credentials and protect user data from unauthorized access.

          SIDCC – 3 months;

          CONSENT – 20 years;

          other – 2 years

          https://policies.google.com/privacy
          Google _ga, _gid Creation of website usage statistics

          _ga – 2 years; _gid – 24

          Hours

          https://policies.google.com/privacy
          Google _gat gtag xxx* Google Analytics cookie to throttle the number of requests. 1 minute https://policies.google.com/privacy
          Google Secure-APISID, _Secure-3PAPISID, Secure-3PSID, _Secure-HSID, _Secure-SSID Used for targeting purposes to profile the interests of website visitors in order to display relevant and personalized Google advertising. 6 months to 2 years https://policies.google.com/privacy
          Facebook -fbp Identification of users who have already visited the website. 3 months https://www.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0
          Salesforce visitor id<accountid> The visitor cookie contains a unique visitor ID and the unique ID for your account. The account identifier ensures that the visitor is recorded in the correct Pardot account. This cookie is created for visitors by the Pardot tracking code. 12 months https://www.salesforce.com/de/company/privacy/
          Salesforce pi_opt_in<accountid> If tracking opt-in preferences are enabled, the pi_opt_in cookies are set with a true or false value when the visitor opts in or out of tracking. 12 months https://www.salesforce.com/de/company/privacy/
          Salesforce visitor_id<accountids-hash The visitor hash cookie contains the account ID and stores a unique code. This cookie is a security measure to ensure that a malicious user cannot pretend to be a visitor to Pardot and access the relevant prospect information. 12 months https://www.salesforce.com/de/company/privacy/
          Salesforce Ipv<accountid>

          This LPV cookie is set to prevent Pardot from making multiple page views to a single element within a 30-minute

          session to track.

          12 months https://www.salesforce.com/de/company/privacy/
          Salesforce pardot A session cookie called pardot is set in your browser while you are logged in to Pardot as a user or when a visitor accesses a form, landing page, or page with Pardot tracking code. The cookie indicates an active session and is not used for tracking. 12 months https://www.salesforce.com/de/company/privacy/
          Borlabs Cookie Solution _jubeuconsent, _jub_cs-xxx**

          Are used by Borlabs cookie extension to set preferences for

          to save the consent to cookies.

          1 year https://de.borlabs.io/datenschutz/
          WordPress wp-settings-xxx*** Used to maintain a user’s wp-admin configuration. 1 year https://de.wordpress.org/about/privacy/cookies/
          WordPress wordpress_test_cookie Test whether a cookie can be set. Bis Ende der Browsersitzung https://de.wordpress.org/about/privacy/cookies/

          8. collection and storage of personal data as well as their type and purpose of use

          a) External hosting

          Our website is hosted by Kinsta Inc (8605 Santa Monica Blvd #92581 West Hollywood, CA 90069
          USA), hosted. For this reason, all personal data collected on our website is stored on our hoster’s servers unless an external third-party service is included. This may be the IP address, email address, communication data, or similar. You can find out what specific personal data is involved here by looking at the individual functions and services explained by us. If we use an external service of a third party, this will be made clear in the description of the respective service or tool.

          The hoster processes your data only on our instructions and to the extent necessary to fulfill the services on the website. The hoster does not process the data for its own purposes. We have concluded an order processing contract with this hoster.

          b) When visiting the website

          When you call up our website, information is automatically sent to our website’s server by the browser used on your end device. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automated deletion:

          IP address of the requesting computer
          Date and time of access
          Name and URL of the accessed file
          Website from which the access was made (referrer URL)
          Browser used and, if applicable, the operating system of your computer as well as the name of your access provider.

          The aforementioned data is processed by us for the following purposes:

          Ensuring a smooth connection setup of the website
          Ensuring comfortable use of our website
          Evaluation of system security and stability
          error analysis
          for further administrative purposes

          Data that can be traced back to your person, such as the IP address, will be deleted after 7 days at the latest. If we store the data beyond this period, it is pseudonymized, so it is no longer possible to assign it to you.

          The legal basis for the data processing is Art. 6 para. 1 p. 1 lit. f GDPR. Our legitimate interest follows from the purposes for data collection listed above. In no case do we use the collected data for the purpose of drawing conclusions about your person.

          c) Members/LogIn area

          The LogIn area is used to map the consumption and user data of the respective customer in the context of fulfilling the contractual relationship in accordance with Art. 6 para. 1 p. 1 lit. b GDPR.

          d) Passing on of data when using online payment service providers

          Should you decide to settle with one of the online payment service providers offered by us within the scope of using the web portal, your contact data will be transmitted to them within the scope of the order triggered in this way. The lawfulness of the transfer of the data results from Art. 6 para. 1 p. 1 lit. b GDPR, for the implementation of the payment method you have chosen, as well as our legitimate interests according to. Art. 6 par. 1 p. 1 lit. f GDPR to enable user-friendly and uncomplicated payment processing. The personal data transferred to the online payment service provider is mostly first name, last name, address, email address, or other data required for invoice processing, as well as data related to the such as information on the loading process or location, invoice amount and taxes as a percentage, billing information, etc. This transmission is necessary to process the loading of your drivers with the payment method you have selected.

          However, please note: Personal data may also be disclosed by the online payment service provider to service providers, subcontractors, or other affiliated companies, insofar as this is necessary for the fulfillment of the contractual obligations arising from your order or the personal data is to be processed on behalf.

          Depending on the selected payment method, e.g., invoice or direct debit, the personal data transmitted to the provider will be transmitted by the provider to credit agencies. This transmission serves to check your identity and creditworthiness in relation to the order you have placed. You can find out which credit agencies are involved and which data is generally collected, processed, stored, and passed on by the respective provider in the respective data protection declarations of the providers: Stripe Payments Europe, Ltd, Grand Canal Street Lower, Grand Canal Dock, Dublin, Irland, dpo@stripe.com, https://stripe.com/de/privacy

          e) Contact form/email contact

          We provide a form in our web portal so that you have the possibility to contact us at any time. For the use of the contact form, it is necessary to provide a name for a personal salutation and a valid email address to contact us so that we know from whom the request originates and can also process it. If you send us inquiries via the contact form, your data from the inquiry form, including the contact data you provided there, as well as your IP address, will be processed in accordance with the German Data Protection Act. Art. 6 par. 1 p. 1 lit. b and f GDPR for the performance of pre-contractual measures, which take place at your request or for the exercise of our legitimate interest, namely for the exercise of our business activity. You are also welcome to email us instead of using the email address provided in our web portal. In this case, we store and process your email address and the information you provide in the email in accordance with Art. 6 Para. 1 p. 1 lit. b and f GDPR to process your message.

          f) Newsletter

          Newsletter content and registration data

          The sending of our newsletter, the performance of statistical surveys and analyses, and the logging of the registration process will only take place if you order it from us and give your corresponding consent per Art. 6 para. 1 p. 1 lit. a GDPR, § 25 para.1 TTDSG has been granted.

          The newsletter’s contents are specifically described when you register for the newsletter. For the registration of the newsletter, the indication of your email address is sufficient. If you wish to provide additional voluntary information, such as your name and/or gender, these will be used exclusively to personalize the newsletter addressed to you.

          Double opt-in and logging

          For security reasons, we use the so-called double opt-in procedure to register for our newsletter so that no one can register with other people’s email addresses. Therefore, after you subscribe to our newsletter, you will receive an email asking you to confirm your subscription. Only with the confirmation of the registration it becomes effective.

          Furthermore, your subscription to the newsletter is logged. The logging includes storing the login and confirmation time, your specified data, and your IP address. If you make changes to your data, these changes are also logged.

          Revocation

          If you no longer wish to receive our newsletter, you can revoke your consent at any time in the future. To do so, you can click on the unsubscribe link at the end of each newsletter or send us an email to the following email address: info@reev.com

          Durch den Widerruf der Einwilligung wird die Rechtmäßigkeit der aufgrund der Einwilligung bis zum Widerruf erfolgten Verarbeitung nicht berührt.

          Use of “Salesforce.”

          We send our newsletter and marketing emails using Salesforce Salescloud and Salesforce Marketing Cloud Account Engagement, offered by Salesforce Inc. (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA).

          The email addresses of our newsletter recipients and their other data described in the context of this notice are stored in the cloud of Salesforce in the USA. Salesforce uses this information to send and evaluate the newsletter on our behalf. Furthermore, according to its own information, Salesforce may use this data to optimize or improve its own services. However, Salesforce does not use our newsletter recipients’ data to address them or pass them on to third parties.

          We have concluded the new standard contractual clauses with Salesforce. Salesforce does not obtain the right to share your data.

          You can find Salesforce’s privacy policy here.

          Please check! You should definitely conclude the standard contractual clauses with Salesforce and pay attention to additional measures and guarantees, as the provider is located in an insecure third country. In addition, a data transfer impact assessment (TIA) must be performed.

          g) Form Event / Webinar

          We offer a form for those interested in our webinars. If you would like to participate, we need your name and email address to identify you as a participant in the webinar. To participate in the event, we will send you an access link in advance to the email address you provide. After the end of the event, you will also receive another email with the material.

          If you register for an event, your information from the request form, including the contact details you provide there, as well as your IP address, will be used in accordance with Art. 6 par. 1 p. 1 lit. b and f GDPR for the performance of pre-contractual measures, which take place at your request or for the exercise of our legitimate interest, namely for the exercise of our business activity.

          GoToWebinar

          We use the service provider GoToWebinar of the provider LogMeIn Ireland Limited (Bloodstone Building Block C70 Sir John Rogerson’s Quay Dublin 2, Ireland) to implement our events. When you register for the event, your personal data (name, email address, company, and telephone number) are processed. In particular, this is the name, first name, company, telephone number, and email address.

          We have concluded an order processing contract with GoToWebinar. GoToWebinar does not obtain the right to pass on your data.

          The data processing takes place in Germany, the European Union, and the USA. An appropriate level of protection establishes data processing security in the USA through the agreement of the EU standard contractual clauses. Further information in the privacy policy of the provider: https://www.logmeininc.com/de/legal/privacy/us

          The use of the GoToWebinar service is based on our legitimate interests pursuant to Art. 6 para. 1 p. 1 lit. f GDPR. Our interest is directed towards the use of a user-friendly as well as secure webinar tool that serves our business interests as well as meets the expectations of the users.

          9. Analyse- and  Tracking tools

          We use the analysis and tracking tools listed below in our web portal. These are used to ensure the ongoing optimization of our web portal and to design it to meet your needs.

           

          We use these tools based on your consent pursuant to Art. 6 par. 1 p. 1 lit. a GDPR. You can revoke your consent at any time by changing the cookie settings. The processing remains lawful until the revocation.

          The respective data processing purposes and data categories can be found in the corresponding tools. We would like to point out that we have no influence on whether and to what extent the service providers carry out further data processing.

          a) Google Analytics

          We use Google Analytics on our website, a web analytics service provided by Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter “Google”).

          Google Analytics uses cookies in this context (see section 7). The information generated by the cookie about your use of this website, such as

          Name and version of the browser used
          Operating system of your computer
          Website from which the access is made (referrer URL)
          IP address of the requesting computer
          Time of the server request

          are usually transferred to a Google server in the USA and stored there.

          However, since we have activated IP anonymization in our web portal, your IP address will be truncated beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.

          On our behalf, Google will use this information for the purpose of evaluating your use of our web portal, compiling reports on web portal activity, and providing other services relating to web portal activity and internet usage to us. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google.

          Please click here for an overview of data protection at Google.

          b) Google AdWords

          We use Google AdWords, an online advertising program from Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), on our website. Conversion tracking is also used in this process. With this tool, Google AdWords sets a cookie on your end device when you come to our website via a Google ad.

          The cookie is no longer valid after 30 days. It does not serve any personal traceability. If you visit our website as a user and the cookie is still working, it will be recognizable to us together with Google that you clicked on the corresponding ad and were redirected to our site. In the process, a different cookie is assigned to each Google AdWords customer. Cookies are thus not traceable via the websites of AdWords customers.

          Conversion statistics for AdWords customers are created with the data collected by conversion cookies. As Google AdWords customers, we thus learn the total number of users who responded to our ad and were then redirected to a web page that was tagged with a conversion tracking tag. We do not receive any information during this process that would allow us to identify you as a user personally.

          If you reject the tracking procedure, the Google conversion tracking cookie can be deactivated via your Internet browser.

          If necessary, use the help function of the browser for further information. You can find out more about Google’s privacy policy at http://www.google.de/policies/privacy/.

          c) Salesforce

          We work with Salesforce Sales Cloud CRM software from Salesforce Inc (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA), through which we can manage our customer data and conduct online marketing. Salesforce Sales Cloud is a CRM system that enables us, among other things, to manage existing and potential customers and customer contacts and to organize sales and communication processes. The use of the CRM system also enables us to analyze our customer-related processes.

          For this purpose, among other things, landing pages are analyzed, and reports are generated. For this purpose, so-called “web beacons” are used, and cookies are applied. In this context, the following personal data may be processed:

          IP address
          geographical location
          type of browser
          duration of the visit
          pages viewed

          Customer data is stored on Salesforce’s servers. We have entered into the new standard contractual clauses with Salesforce. Salesforce does not obtain the right to share your data.

          You can find Salesforce’s privacy policy here.

           

          d) LinkedIn Conversion-Tracking

          We use the conversion tracking function of LinkedIn on our website. This enables us to target you with advertisements following a visit to our website. In addition, LinkedIn provides reporting that shows how successful our advertisements are and how users generally interact with our site. If you have logged in via LinkedIn before visiting our site, this will be recognized as part of the conversion tracking, and you will be associated with your LinkedIn account as a visitor to our site.

          You can find more information in LinkedIn’s privacy policy. You can find this here.

          In addition, you have the option to unsubscribe from interest-based advertising via LinkedIn. This is possible via this link.

          10. video integration

          YouTube

          We embed videos from YouTube, which is operated by Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), into our website as part of iFrame. As part of the embedding of the videos, we have activated YouTube’s extended data protection mode.

          If you play a YouTube video during your visit, a connection is established to YouTube’s servers, and the YouTube server is informed which of our pages you have visited. This allows YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your member account before visiting our website. In addition, YouTube sets various cookies when starting the service in order, according to its own information, to improve its offered services and to prevent misuse.

          For more information on the handling of user data and the cookies set, please refer to YouTube’s privacy policy at: https://www.google.de/intl/de/policies/privacy.

          The legal basis results from the consent granted by you according to Art. 6 par. 1 p. 1 lit. a GDPR. You can revoke your consent at any time by changing the cookie setting on our website.

          11. Rights of the person concerned

          You have the following rights:

          a) Information

          In accordance with Article 15 of the GDPR, you have the right to request information about your personal data processed by us. This right to information includes information about

          the purpose of processing
          the categories of personal data
          the recipients or categories of recipients to whom your data have been or will be disclosed
          the planned storage period or at least the criteria for determining the storage period
          the existence of a right to rectification, erasure, restriction of processing, or objection
          the existence of a right of appeal to a supervisory authority
          the origin of your personal data, if it was not collected by us
          the existence of automated decision-making, including profiling and, if applicable, meaningful information about its details.

          b) Correction

          In accordance with Article 16 of the GDPR, you are entitled to the immediate correction of incorrect or incomplete personal data stored by us.

          c) Deletion

          In accordance with Art. 17 of the GDPR, you have the right to request that we delete your personal data without delay insofar as further processing is not necessary for one of the following reasons:

          the personal data are still necessary for the purposes for which they were collected or otherwise processed
          to exercise the right to freedom of expression and information
          For compliance with a legal obligation that requires processing under the law of the European Union or the Member States to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller
          for reasons of public interest in the area of public health pursuant to Art. 9(2)(h) and (i) and Art. 9(3) of the GDPR
          for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes pursuant to Article 89(1) of the GDPR, insofar as the right referred to in section a) is likely to render impossible or seriously prejudice the achievement of the purposes of such processing
          for the assertion, exercise or defense of legal claims.

          d) Restriction of processing

          In accordance with Article 18 of the GDPR, you may request the restriction of the processing of your personal data for one of the following reasons:

          You dispute the accuracy of your personal data.
          The processing is unlawful, and you object to the erasure of the personal data.
          We no longer need the personal data for the purposes of processing, but you need it to assert, exercise or defend legal claims.
          You object to the processing pursuant to Article 21 (1) of the GDPR.

          e) Notification

          If you have requested the rectification or erasure of your personal data or a restriction of processing in accordance with Articles 16, 17(1), and 18 of the GDPR, we will notify all recipients to whom your personal data has been disclosed unless this proves impossible or involves a disproportionate effort. You may request that we inform you of these recipients. f) Transmission

          You have the right to receive your personal data that you have provided to us in a structured, common, and machine-readable format.

          You also have the right to request that this data be transferred to a third party, provided that the processing was carried out with the help of automated procedures and is based on consent pursuant to Art. 6 para. 1 p. 1 lit. a or Art. 9 para. 2 lit. a or on a contract pursuant to Art. 6 para. 1 p. 1 lit. b GDPR.

          g) Revocation

          In accordance with Art. 7 para. 3 GDPR, you have the right to revoke your consent at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. In the future, we may no longer continue the data processing that was based on your revoked consent.

          h) Complaint

          In accordance with Article 77 of the GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR.

          i) Objection

          If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 para. 1 p. 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, provided that there are grounds for doing so that arise from your particular situation or the objection is directed against direct marketing. In the latter case, you have a general right of objection, which will be implemented by us without specifying the particular situation. If you would like to make use of your right of revocation or objection, it is sufficient to send an email to: support@reev.com.

          j) Automated decisions in individual cases, including profiling

          You have the right not to be subject to a decision based solely on automated processing – including profiling – which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision

          is necessary for the conclusion or performance of a contract between you and us
          is permitted by the legislation of the European Union or the Member States to which we are subject, and that legislation contains appropriate measures to safeguard your rights and freedoms and your legitimate interests
          is made with your express consent.

          However, these decisions may not be based on special categories of personal data pursuant to Article 9(1) of the GDPR unless Article 9(2)(a) or (g) of the GDPR applies and appropriate measures have been taken to protect the rights and freedoms and your legitimate interests.

          With regard to the cases mentioned in i) and iii), we take reasonable steps to safeguard your rights and freedoms as well as your legitimate interests, including at least the right to obtain the intervention of a person from our side to express your point of view and to contest the decision.

          12. change of the privacy policy

          If we change the privacy policy, this will be indicated on the website.

          Status 26.04.2022

          Do you have any questions?

          We would be happy to send you further information
          or to provide you with individual advice in person.