We manage our websites according to the principles regulated below: We undertake to comply with the statutory provisions on data protection and endeavor to always take into account the principles of data avoidance and data minimization.
- 1. Name and address of the responsible person and the data protection officer
- 2. Definitions of terms
- 3. Legal basis for the processing of personal data
1. Name and address of the responsible person and the data protection officer
a) The responsible person
The responsible person within the meaning of the General Data Protection Regulation and other national data protection laws of the member states of the European Union as well as other data protection regulations is:
reev GmbH
Sandstraße 3
80335 München
Tel: +49 (0) 89 21538970
Email: legal@reev.com
Website: https:reev.com
b) The data protection officer
The data protection officer of the controller is:
SiDIT GmbH
Langgasse 20
97261 Güntersleben
Email: info@sidit.de
Website: https://sidit.de/
2. Definitions of terms
We have designed our privacy policy according to the principles of clarity and transparency. However, if there are any ambiguities regarding the use of different terms, the corresponding definitions can be seen here.
3. Legal basis for the processing of personal data
- 6 para. 1 p. 1 lit. a GDPR: The data subject has given his/her consent to the processing of personal data concerning him/her for one or more specific purposes.
- 6 para. 1 p. 1 lit. b DSGVO: Processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures taken at the request of the data subject.
- 6 para. 1 p. 1 lit. c DSGVO: Processing is necessary for compliance with a legal obligation to which the controller is subject.
- 6 para. 1 p. 1 lit. d GDPR: Processing is necessary in order to protect the vital interests of the data subject or another natural person.
- 6 para. 1 p. 1 lit. e GDPR: the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
- 6 para. 1 p. 1 lit. f GDPR: the processing is necessary for the purposes of the legitimate interests of the controller or of a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child.
However, at the relevant points in this data protection declaration, we will always point out once again the legal basis on which your personal data is processed.
Verarbeitung von Informationen nach § 25 Abs.1 TTDSG
We also process information pursuant to § 25 par.1 TTDSG by storing information on your terminal equipment or accessing information already stored on your terminal equipment. This can be personal and non-personal information, such as cookies, browser fingerprints, advertising IDs, MAC addresses, and IMEI numbers. In this context, terminal equipment is any equipment connected directly or indirectly to the interface of a public telecommunications network for the purpose of transmitting, processing, or receiving messages, § 2 (2). No.6 TTDSG.
As a rule, we process this information on the basis of your consent, § 25 Abs.1 TTDSG.
As far as an exception, according to § 25 Abs.2 No.1 and No.2 TTDSG is given; we do not require consent. Such an exception exists when we access or store the information solely for the purpose of transmitting a message over a public telecommunications network or when it is absolutely necessary for us to provide a Telemedia service that you have specifically requested. You can revoke your consent at any time.
We inform you that the revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
4. Disclosure of personal data
Therefore, data is only passed on to third parties if there is a legal basis for the processing. For example, we disclose personal data to persons or companies that act as processors for us pursuant to Art. 28 GDPR. A processor is anyone who processes personal data on our behalf – i.e., in particular, in a relationship of instruction and control with us.
In accordance with the requirements of the GDPR, we conclude a contract with each of our order processors to oblige them to comply with data protection regulations and thus provide your data with comprehensive protection.
5. Storage period and deletion
6. SSL encryption
This website uses SSL encryption for security reasons and to protect the transmission of confidential content, such as requests that you send to us as the website operator. You can recognize an encrypted connection by the fact that the browser address bar changes from “http://” to “https://” and by the lock symbol in your browser bar.
If SSL encryption is activated, the data you transmit to us cannot be read by third parties.
7. Cookies
We use cookies on our website. Cookies are small data packets your browser automatically creates and stores on your terminal device when you visit our website. These cookies store information in connection with the respective end device used.
A distinction is made between technically necessary cookies and “other” cookies when using cookies. Technically necessary cookies are when they are absolutely necessary to provide an information society service that you have expressly requested.
a) Technically necessary cookies
In order to make the use of our offer more pleasant for you, we use technically necessary cookies; these may be so-called session cookies (e.g., language and font selection, shopping cart, etc.), consent cookies, cookies to ensure server stability and security, or similar.
The legal basis for the cookies results from Art. 6 para. 1 p. 1 lit. f) DSGVO, our legitimate interest in the error-free operation of the website and the interest in providing you with our services in an optimized manner.
- Session-Cookies
In order to make the use of our offer more pleasant for you, we use so-called session cookies (e.g., language and font selection, shopping cart, etc.) These session cookies fall under the category of technically necessary cookies and are automatically deleted after you leave our site. The legal basis for the cookies results from Art. 6 para. 1 p. 1 lit. c) DSGVO, a legal permission.
- CleanTalk Anti-Spam Check
We use the service “CleanTalk, “https://ipapi.co/privacy/, which protects the website from spam. The use is based on our legitimate interests within the meaning of Art. 6 para. 1 lit. f) Basic Data Protection Regulation (GDPR).
For security reasons and as protection against spam, your data is processed in the CleanTalk Cloud Service and stored in log files for a maximum of 45 days. After the expiry of the aforementioned period, this data will be completely deleted. CleanTalk may use information about spam activity from IP or email addresses to provide appropriate anti-spam protection to all websites connected to its service.
For more information on the collection and use of data by CleanTalk, please refer to the privacy policy of CleanTalk Inc.: https://cleantalk.org/publicoffer#privacy.
- IPAPI.CO
To automatically locate the location, country, time zone, and access to the website by computer or mobile device, as well as the Internet provider and routing information (IP address), we use the tool IPAPI (www.ipapi.co) of Kloudend, Inc. The tool is used to adapt the content of our website based on the localization findings and accordingly tailor it better to the respective visitor. Furthermore, the tool serves as protection against attackers and bots. The legal basis of the data processing results from our legitimate interest, according to Art. 6 para. 1 lit. f GDPR. Our necessary legitimate interest lies in the great benefit that the functions described above have for our offer. The localization of your location enables us, in particular, to respond and optimize our offer according to your interests and facilitates the technical implementation of our website. The privacy policy of Kloudend, Inc. you will find under: https://ipapi.co/privacy/
b) Other cookies
The other cookies include cookies for statistical purposes, analysis and marketing, and retargeting purposes. We set these cookies based on your consent in accordance with. Art. 6 par. 1 p. 1 lit. a) GDPR for you.
You can revoke your consent for the use of cookies at any time. We inform you that the revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
To do this, you can either edit your cookie settings on our website, deactivate cookies in your browser settings (which may also restrict the functionality of the online offer), or set an opt-out for the relevant service in individual cases.
For the respective services, we will inform you within the privacy policy on which legal basis these data are processed.
To obtain consent for the cookies we use, we use the cookie banner of the service provider Borlabs s.r.l. This itself sets a so-called consent cookie to query and process the respective consent status. This consent cookie is technically necessary and is therefore used on the basis of our legitimate interest in accordance with. Art. 6 par.1 S.1 lit. f GDPR, § 25 para.1 TTDSG used.
7.1 Cookies
We set the following cookies on our website:
*xxx stands for your Google Analytics Property ID
**xxx stands for Cookie Policy ID
***xxx stands for user ID
| Provider | Cookies | Purpose | Storage duration | Privacy policy of the provider |
| Didomi | euconsent | This cookie contains the AB TCF consent string and consent information for all standard AB providers and purposes. | 12 months | https://privacy.didomi.io/en/policy |
| Google DoubleClick | DSID |
This cookie is used to store the user’s preferences. This is used, for example, to display individualized advertising |
12 months | https://policies.google.com/privacy |
| Google DoubleClick | DSID |
This cookie is used to store the user’s preferences. This is used, for example, to display individualized advertising |
12 months | https://policies.google.com/privacy |
| 1P_JAR, DV, NID | These cookies store your preferred settings and track how you use our website to show you advertisements of interest to you. | Max. 2 years | https://policies.google.com/privacy | |
| AID, DSID, TAID, ANID, OTZ | Coordinate the ads that are displayed for you on different devices and the measurement of conversion events | Max. 2 years | https://policies.google.com/privacy | |
| APISID, CONSENT, SID, HSID, SAPISID, SSID, SIDCC |
This cookie is used to authenticate users. prevent fraudulent use of credentials and protect user data from unauthorized access. |
SIDCC – 3 months; CONSENT – 20 years; other – 2 years |
https://policies.google.com/privacy | |
| _ga, _gid | Creation of website usage statistics |
_ga – 2 years; _gid – 24 Hours |
https://policies.google.com/privacy | |
| _gat gtag xxx* | Google Analytics cookie to throttle the number of requests. | 1 minute | https://policies.google.com/privacy | |
| Secure-APISID, _Secure-3PAPISID, Secure-3PSID, _Secure-HSID, _Secure-SSID | Used for targeting purposes to profile the interests of website visitors in order to display relevant and personalized Google advertising. | 6 months to 2 years | https://policies.google.com/privacy | |
| -fbp | Identification of users who have already visited the website. | 3 months | https://www.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0 | |
| Salesforce | visitor id<accountid> | The visitor cookie contains a unique visitor ID and the unique ID for your account. The account identifier ensures that the visitor is recorded in the correct Pardot account. This cookie is created for visitors by the Pardot tracking code. | 12 months | https://www.salesforce.com/de/company/privacy/ |
| Salesforce | pi_opt_in<accountid> | If tracking opt-in preferences are enabled, the pi_opt_in cookies are set with a true or false value when the visitor opts in or out of tracking. | 12 months | https://www.salesforce.com/de/company/privacy/ |
| Salesforce | visitor_id<accountids-hash | The visitor hash cookie contains the account ID and stores a unique code. This cookie is a security measure to ensure that a malicious user cannot pretend to be a visitor to Pardot and access the relevant prospect information. | 12 months | https://www.salesforce.com/de/company/privacy/ |
| Salesforce | Ipv<accountid> |
This LPV cookie is set to prevent Pardot from making multiple page views to a single element within a 30-minute session to track. |
12 months | https://www.salesforce.com/de/company/privacy/ |
| Salesforce | pardot | A session cookie called pardot is set in your browser while you are logged in to Pardot as a user or when a visitor accesses a form, landing page, or page with Pardot tracking code. The cookie indicates an active session and is not used for tracking. | 12 months | https://www.salesforce.com/de/company/privacy/ |
| Borlabs Cookie Solution | _jubeuconsent, _jub_cs-xxx** |
Are used by Borlabs cookie extension to set preferences to save the consent to cookies. |
1 year | https://de.borlabs.io/datenschutz/ |
| WordPress | wp-settings-xxx*** | Used to maintain a user’s wp-admin configuration. | 1 year | https://de.wordpress.org/about/privacy/cookies/ |
| WordPress | wordpress_test_cookie | Test whether a cookie can be set. | Bis Ende der Browsersitzung | https://de.wordpress.org/about/privacy/cookies/ |
- 8. Collection and storage of personal data as well as their type and purpose of use
- 9. Analysis and tracking tools
- 10. Video integration
- 11. Rights of the person concerned
- 12. Change of the privacy policy
8. Collection and storage of personal data as well as their type and purpose of use
a) External hosting
Our website is hosted by Kinsta Inc (8605 Santa Monica Blvd #92581 West Hollywood, CA 90069 USA). For this reason, all personal data collected on our website is stored on our hoster’s servers unless an external third-party service is included. This may be the IP address, your email address, communication data, or similar. You can find out what specific personal data is involved here by looking at the individual functions and services explained by us. If we use an external service of a third party, this will be made clear in the description of the respective service or tool.
The hoster processes your data only on our instructions and to the extent necessary to fulfill the services on the website. The hoster does not process the data for its own purposes. We have concluded an order processing contract with this hoster.
b) When visiting the website
When you call up our website, information is automatically sent to the server of our website by the browser used on your end device. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automated deletion:
IP address of the requesting computer
Date and time of access
Name and URL of the accessed file
Website from which the access was made (referrer URL)
Browser used and, if applicable, the operating system of your computer as well as the name of your access provider.
The aforementioned data is processed by us for the following purposes:
Ensuring a smooth connection setup of the website
Ensuring comfortable use of our website
Evaluation of system security and stability
error analysis
for further administrative purposes
Data that can be traced back to your person, such as the IP address, will be deleted after 7 days at the latest. If we store the data beyond this period, this data is pseudonymized so that it is no longer possible to assign it to you.
The legal basis for the data processing is Art. 6 para. 1 p. 1 lit. f GDPR. Our legitimate interest follows from the purposes for data collection listed above. In no case do we use the collected data for the purpose of drawing conclusions about your person.
c) Members/LogIn area
The LogIn area is used to map the consumption and user data of the respective customer in the context of fulfilling the contractual relationship in accordance with Art. 6 para. 1 p. 1 lit. b GDPR.
d) Passing on of data when using online payment service providers
Should you decide to settle with one of the online payment service providers offered by us within the scope of using the web portal, your contact data will be transmitted to them within the scope of the order triggered in this way. The lawfulness of the transfer of the data results from Art. 6 para. 1 p. 1 lit. b GDPR, for the implementation of the payment method you have chosen, as well as our legitimate interests according to. Art. 6 par. 1 p. 1 lit. f GDPR to enable user-friendly and uncomplicated payment processing.
The personal data transferred to the online payment service provider is mostly first name, last name, address, email address, or other data required for invoice processing, as well as data related to the such as information on the loading process or location, invoice amount and taxes as a percentage, billing information, etc.
This transmission is necessary to process the loading of your drivers with the payment method you have selected.
However, please note: Personal data may also be disclosed by the online payment service provider to service providers, subcontractors, or other affiliated companies, insofar as this is necessary for the fulfillment of the contractual obligations arising from your order or the personal data is to be processed on behalf.
Depending on the selected payment method, e.g., invoice or direct debit, the personal data transmitted to the provider will be transmitted by the provider to credit agencies. This transmission serves to check your identity and creditworthiness in relation to the order you have placed. You can find out which credit agencies are involved and which data is generally collected, processed, stored, and passed on by the respective provider in the respective data protection declarations of the providers:
Stripe Payments Europe, Ltd, Grand Canal Street Lower, Grand Canal Dock, Dublin, Irland, dpo@stripe.com, https://stripe.com/de/privacy
e) Contact form/email contact
We provide a form in our web portal so that you have the possibility to contact us at any time. For the use of the contact form, it is necessary to provide a name for a personal salutation and a valid email address to contact us so that we know from whom the request originates and can also process it.
If you send us inquiries via the contact form, your data from the inquiry form, including the contact data you provided there, as well as your IP address, will be processed in accordance with the German Data Protection Act. Art. 6 par. 1 p. 1 lit. b and f GDPR for the performance of pre-contractual measures, which take place at your request or for the exercise of our legitimate interest, namely for the exercise of our business activity.
You are also welcome to send us an email instead of using the email address provided in our web portal. In this case, we store and process your e-mail address and the information you provide in the e-mail in accordance with Art. 6 Para. 1 p. 1 lit. b and f GDPR to process your message.
f) Newsletter
Newsletter content and registration data
The sending of our newsletter and the performance of statistical surveys and analyses, as well as logging of the registration process, will only take place if you order it from us and give your corresponding consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR, § 25 para.1 TTDSG has been granted.
The contents of the newsletter are specifically described when you register for the newsletter. For the registration of the newsletter, the indication of your email address is sufficient. If you wish to provide additional voluntary information, such as your name and/or gender, these will be used exclusively for the personalization of the newsletter addressed to you.
Double opt-in and logging
For security reasons, we use the so-called double opt-in procedure to register for our newsletter so that no one can register with other people’s email addresses. Therefore, after you subscribe to our newsletter, you will receive an e-mail asking you to confirm your subscription. Only with the confirmation of the registration it becomes effective.
Furthermore, your subscription to the newsletter is logged. The logging includes the storage of the login and confirmation time, your specified data, and your IP address. If you make changes to your data, these changes are also logged.
Revocation
If you no longer wish to receive our newsletter, you can revoke your consent at any time in the future. To do so, you can click on the unsubscribe link at the end of each newsletter or send us an email to the following email address: info@reev.com
Durch den Widerruf der Einwilligung wird die Rechtmäßigkeit der aufgrund der Einwilligung bis zum Widerruf erfolgten Verarbeitung nicht berührt.
Use of Salesforce:
We send our newsletter and marketing emails using Salesforce Salescloud and Salesforce Marketing Cloud Account Engagement, which are offered by Salesforce Inc. (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA).
The email addresses of our newsletter recipients and also their other data described in the context of this notice are stored in the cloud of Salesforce in the USA. Salesforce uses this information to send and evaluate the newsletter on our behalf. Furthermore, according to its own information, Salesforce may use this data to optimize or improve its own services. However, Salesforce does not use the data of our newsletter recipients to address them itself or to pass them on to third parties.
We have concluded the new standard contractual clauses with Salesforce. Salesforce does not obtain the right to share your data.
You can find Salesforce’s privacy policy here.
g) Form Event / Webinar
We offer a form for those interested in our webinars. If you would like to participate, we need your name and email address to identify you as a participant in the webinar. To participate in the event, we will send you an access link in advance to the email address you provide. After the end of the event, you will also receive another email with the material.
If you register for an event, your information from the request form, including the contact details you provide there, as well as your IP address, will be used in accordance with Art. 6 par. 1 p. 1 lit. b and f GDPR for the performance of pre-contractual measures, which take place at your request or for the exercise of our legitimate interest, namely for the exercise of our business activity.
GoToWebinar
For the implementation of our events, we use the service provider GoToWebinar of the provider LogMeIn Ireland Limited (Bloodstone Building Block C70 Sir John Rogerson’s Quay Dublin 2, Ireland). When you register for the event, the personal data you provide (name, email address, company, and telephone number) are processed. In particular, this is the name, first name, company, telephone number, and email address.
We have concluded an order processing contract with GoToWebinar. GoToWebinar does not obtain the right to pass on your data.
The data processing takes place in Germany, the European Union, and the USA. The security of data processing in the USA is established by an appropriate level of protection through the agreement of the EU standard contractual clauses. Further information in the privacy policy of the provider: https://www.logmeininc.com/de/legal/privacy/us
The use of the GoToWebinar service is based on our legitimate interests pursuant to Art. 6 para. 1 p. 1 lit. f GDPR. Our interest is directed towards the use of a user-friendly as well as secure webinar tool that serves our business interests as well as meets the expectations of the users.
9. Analysis and tracking tools
We use these tools based on your consent pursuant to Art. 6 par. 1 p. 1 lit. a GDPR. You can revoke your consent at any time by changing the cookie settings. The processing remains lawful until the revocation.
The respective data processing purposes and data categories can be found in the corresponding tools. We would like to point out that we do not influence whether and to what extent the service providers carry out further data processing.
a) Google Analytics
We use Google Analytics on our website, a web analytics service provided by Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter “Google”).
Google Analytics uses cookies in this context (see section 7). The information generated by the cookie about your use of this website, such as
Name and version of the browser used
Operating system of your computer
Website from which the access is made (referrer URL)
IP address of the requesting computer
Time of the server request
are usually transferred to a Google server in the USA and stored there.
However, since we have activated IP anonymization in our web portal, your IP address will be truncated beforehand by Google within European Union member states or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.
On our behalf, Google will use this information for the purpose of evaluating your use of our web portal, compiling reports on web portal activity, and providing other services relating to web portal activity and internet usage to us. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google.
Please click here for an overview of data protection at Google.
b) Google AdWords
We use Google AdWords, an online advertising program from Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), on our website. Conversion tracking is also used in this process. With this tool, Google AdWords sets a cookie on your end device when you visit our website via a Google ad.
The cookie is no longer valid after 30 days. It does not serve any personal traceability. If you visit our website as a user and the cookie is still working, it will be recognizable to us together with Google that you clicked on the corresponding ad and were redirected to our site. In the process, a different cookie is assigned to each Google AdWords customer. Cookies are thus not traceable via the websites of AdWords customers.
Conversion statistics for AdWords customers are created with the data collected by conversion cookies. As Google AdWords customers, we thus learn the total number of users who responded to our ad and were then redirected to a web page tagged with a conversion tracking tag. We do not receive any information during this process that would allow us to identify you as a user personally.
If you reject the tracking procedure, your Internet browser can deactivate the Google conversion tracking cookie.
If necessary, use the help function of the browser for further information. You can find out more about Google’s privacy policy at http://www.google.de/policies/privacy/.
c) Salesforce
We work with Salesforce Sales Cloud CRM software from Salesforce Inc (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA), through which we can manage our customer data and conduct online marketing. Salesforce Sales Cloud is a CRM system that enables us, among other things, to manage existing and potential customers and customer contacts and to organize sales and communication processes. Using the CRM system also enables us to analyze our customer-related processes.
For this purpose, among other things, landing pages are analyzed, and reports are generated. For this purpose, so-called “web beacons” are used, and cookies are applied. In this context, the following personal data may be processed:
IP address
geographical location
type of browser
duration of the visit
pages viewed
Customer data is stored on Salesforce’s servers. We have entered into the new standard contractual clauses with Salesforce. Salesforce does not obtain the right to share your data.
You can find Salesforce’s privacy policy here.
d) LinkedIn Conversion-Tracking
We use the conversion tracking function of LinkedIn on our website. This enables us to target you with advertisements following a visit to our website. In addition, LinkedIn provides reporting that shows how successful our advertisements are and how users generally interact with our site. If you have logged in via LinkedIn before visiting our site, this will be recognized as part of the conversion tracking, and you will be associated with your LinkedIn account as a visitor to our site.
You can find more information in LinkedIn’s privacy policy. You can find this here.
In addition, you have the option to unsubscribe from interest-based advertising via LinkedIn. This is possible via this link.
10. Video integration
YouTube
We embed videos from YouTube, which is operated by Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), into our website as part of iFrame. As part of the embedding of the videos, we have activated YouTube’s extended data protection mode.
If you play a YouTube video during your visit, a connection is established to YouTube’s servers, and the YouTube server is informed which of our pages you have visited. This allows YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your member account before visiting our website. In addition, YouTube sets various cookies when starting the service in order, according to its own information, to improve its offered services and to prevent misuse.
For more information on the handling of user data and the cookies set, please refer to YouTube’s privacy policy at: https://www.google.de/intl/de/policies/privacy.
The legal basis results from the consent granted by you according to Art. 6 par. 1 p. 1 lit. a GDPR. You can revoke your consent at any time by changing the cookie setting on our website.
11. Rights of the person concerned
You have the following rights:
a) Information
In accordance with Article 15 of the GDPR, you have the right to request information about your personal data processed by us. This right to information includes information about
the purpose of processing
the categories of personal data
the recipients or categories of recipients to whom your data have been or will be disclosed
the planned storage period or at least the criteria for determining the storage period
the existence of a right to rectification, erasure, restriction of processing, or objection
the existence of a right of appeal to a supervisory authority
the origin of your personal data, if it was not collected by us
the existence of automated decision-making, including profiling and, if applicable, meaningful information about its details.
b) Correction
In accordance with Article 16 of the GDPR, you are entitled to the immediate correction of incorrect or incomplete personal data stored by us.
c) Deletion
In accordance with Art. 17 of the GDPR, you have the right to request that we delete your personal data without delay insofar as further processing is not necessary for one of the following reasons:
the personal data are still necessary for the purposes for which they were collected or otherwise processed
to exercise the right to freedom of expression and information
For compliance with a legal obligation that requires processing under the law of the European Union or the Member States to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller
for reasons of public interest in the area of public health pursuant to Art. 9(2)(h) and (i) and Art. 9(3) of the GDPR
for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes pursuant to Article 89(1) of the GDPR, insofar as the right referred to in section a) is likely to render impossible or seriously prejudice the achievement of the purposes of such processing
for the assertion, exercise or defense of legal claims.
d) Restriction of processing
In accordance with Article 18 of the GDPR, you may request the restriction of the processing of your personal data for one of the following reasons:
You dispute the accuracy of your personal data.
The processing is unlawful, and you object to the erasure of the personal data.
We no longer need the personal data for the purposes of processing, but you need it to assert, exercise or defend legal claims.
You object to the processing pursuant to Article 21 (1) of the GDPR.
If you have requested the rectification or erasure of your personal data or a restriction of processing in accordance with Articles 16, 17(1), and 18 of the GDPR, we will notify all recipients to whom your personal data has been disclosed unless this proves impossible or involves a disproportionate effort. You may request that we inform you of these recipients.
f) Transmission
You have the right to receive your personal data that you have provided to us in a structured, common, and machine-readable format.
You also have the right to request that this data be transferred to a third party, provided that the processing was carried out with the help of automated procedures and is based on consent pursuant to Art. 6 para. 1 p. 1 lit. a or Art. 9 para. 2 lit. a or on a contract pursuant to Art. 6 para. 1 p. 1 lit. b GDPR.
g) Revocation
In accordance with Art. 7 para. 3 GDPR, you have the right to revoke your consent at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. In the future, we may no longer continue the data processing that was based on your revoked consent.
h) Complaint
In accordance with Article 77 of the GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR.
i) Objection
If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 para. 1 p. 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, provided that there are grounds for doing so that arise from your particular situation or the objection is directed against direct marketing. In the latter case, you have a general right of objection, which will be implemented by us without specifying the particular situation. If you would like to make use of your right of revocation or objection, it is sufficient to send an email to: support@reev.com.
j) Automated decisions in individual cases, including profiling
You have the right not to be subject to a decision based solely on automated processing – including profiling – which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision
is necessary for the conclusion or performance of a contract between you and us
is permitted by the legislation of the European Union or the Member States to which we are subject, and that legislation contains appropriate measures to safeguard your rights and freedoms and your legitimate interests
is made with your express consent.
However, these decisions may not be based on special categories of personal data pursuant to Article 9(1) of the GDPR unless Article 9(2)(a) or (g) of the GDPR applies and appropriate measures have been taken to protect the rights and freedoms and your legitimate interests.
With regard to the cases mentioned in i) and iii), we take reasonable steps to safeguard your rights and freedoms as well as your legitimate interests, including at least the right to obtain the intervention of a person from our side to express your point of view and to contest the decision.
12. Change of the privacy policy
If we change the privacy policy, this will be indicated on the website.
Status 26.04.2022
1. name and address of the responsible person and the data protection officer
a) The responsible person
The responsible person within the meaning of the General Data Protection Regulation and other national data protection laws of the member states of the European Union as well as other data protection regulations is:reev GmbHSandstraße 3
80335 MünchenTel: +49 (0) 89 21538970eMail: legal@reev.comWebsite: https:reev.com
b) The data protection officer
The data protection officer of the controller is:
SiDIT GmbH
Langgasse 20
97261 Güntersleben
Email: info@sidit.de
Website: https://sidit.de/
2. definitions of terms
We have designed our privacy policy according to the principles of clarity and transparency. However, if there are any ambiguities regarding the use of different terms, the corresponding definitions can be seen here.
3. legal basis for the processing of personal data
- 6 para. 1 p. 1 lit. a GDPR: The data subject has given their consent to the processing of personal data concerning them for one or more specific purposes.
- 6 para. 1 p. 1 lit. b DSGVO: Processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures taken at the data subject’s request.
- 6 para. 1 p. 1 lit. c DSGVO: Processing is necessary for compliance with a legal obligation to which the controller is subject.
- 6 para. 1 p. 1 lit. d GDPR: Processing is necessary in order to protect the vital interests of the data subject or another natural person.
- 6 para. 1 p. 1 lit. e GDPR: the processing is necessary for the performance of a task carried out in the public interest or the exercise of official authority vested in the controller.
- 6 para. 1 p. 1 lit. f GDPR: the processing is necessary for the purposes of the legitimate interests of the controller or of a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child.
However, at the relevant points in this data protection declaration, we will always point out once again the legal basis on which your personal data is processed.
Verarbeitung von Informationen nach § 25 Abs.1 TTDSG
We also process information pursuant to § 25 par.1 TTDSG by storing information on your terminal equipment or accessing information already stored on your terminal equipment. This can be personal and non-personal information, such as cookies, browser fingerprints, advertising IDs, MAC addresses, and IMEI numbers. In this context, terminal equipment is any equipment connected directly or indirectly to the interface of a public telecommunications network for the purpose of transmitting, processing, or receiving messages, § 2 (2). No.6 TTDSG.
As a rule, we process this information on the basis of your consent, § 25 Abs.1 TTDSG.
As far as an exception, according to § 25 Abs.2 No.1 and No.2 TTDSG is given. We do not require consent. Such an exception exists when we access or store the information solely for the purpose of transmitting a message over a public telecommunications network or when it is absolutely necessary for us to provide a Telemedia service that you have specifically requested. You can revoke your consent at any time.
We inform you that the revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
4. disclosure of personal data
Therefore, data is only passed on to third parties if there is a legal basis for the processing. For example, we disclose personal data to persons or companies that act as processors for us pursuant to Art. 28 GDPR. A processor is anyone who processes personal data on our behalf – i.e., in particular, in a relationship of instruction and control with us.
In accordance with the requirements of the GDPR, we conclude a contract with each of our order processors to oblige them to comply with data protection regulations and thus provide your data with comprehensive protection.
5. storage period and deletion
6. SSL encryption
This website uses SSL encryption for security reasons and to protect the transmission of confidential content, such as requests you send to us as the website operator. You can recognize an encrypted connection by the fact that the browser address bar changes from “http://” to “https://” and by the lock symbol in your browser bar.
If SSL encryption is activated, third parties cannot read the data you transmit to us.
7. Cookies
We use cookies on our website. Cookies are small data packets your browser automatically creates and stores on your terminal device when you visit our website. These cookies are used to store information in connection with the respective end device used.
A distinction is made between technically necessary cookies and “other” cookies when using cookies. Technically necessary cookies are when they are absolutely necessary to provide an information society service that you have expressly requested.
a) Technically necessary cookies
In order to make the use of our offer more pleasant for you, we use technically necessary cookies; these may be so-called session cookies (e.g., language and font selection, shopping cart, etc.), consent cookies, cookies to ensure server stability and security, or similar.
The legal basis for the cookies results from Art. 6 para. 1 p. 1 lit. f) DSGVO, our legitimate interest in the error-free operation of the website and the interest in providing you with our services in an optimized manner.
-
Session-Cookies
In order to make the use of our offer more pleasant for you, we use so-called session cookies (e.g., language and font selection, shopping cart, etc.) These session cookies fall under the category of technically necessary cookies and are automatically deleted after you leave our site. The legal basis for the cookies results from Art. 6 para. 1 p. 1 lit. c) DSGVO, a legal permission.
-
CleanTalk Anti-Spam Check
We use the service “CleanTalk,” which protects the website from spam. The use is based on our legitimate interests within the meaning of Art. 6 para. 1 lit. f) Basic Data Protection Regulation (GDPR).
For security reasons and as protection against spam, your data is processed in the CleanTalk Cloud Service and stored in log files for a maximum of 45 days. After the expiry of the aforementioned period, this data will be completely deleted. CleanTalk may use information about spam activity from IP or email addresses to provide appropriate anti-spam protection to all websites connected to its service.
For more information on the collection and use of data by CleanTalk, please refer to the privacy policy of CleanTalk Inc.: https://cleantalk.org/publicoffer#privacy.
-
IPAPI.CO
To automatically locate the location, country, time zone, and access to the website by computer or mobile device, as well as the Internet provider and routing information (IP address), we use the tool IPAPI (www.ipapi.co) of Kloudend, Inc. The tool is used to adapt the content of our website based on the localization findings and accordingly tailor it better to the respective visitor. Furthermore, the tool serves as protection against attackers and bots. The legal basis of the data processing results from our legitimate interest, according to Art. 6 para. 1 lit. f GDPR. Our necessary legitimate interest lies in the great benefit that the functions described above have for our offer. The localization of your location enables us, in particular, to respond and optimize our offer according to your interests and facilitates the technical implementation of our website. The privacy policy of Kloudend, Inc. you will find under: https://ipapi.co/privacy/
b) Other cookies
The other cookies include cookies for statistical purposes, analysis and marketing, and retargeting purposes. We set these cookies based on your consent in accordance with. Art. 6 par. 1 p. 1 lit. a) GDPR for you.
You can revoke your consent for the use of cookies at any time. We inform you that the revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
To do this, you can either edit your cookie settings on our website, deactivate the use of cookies in your browser settings (whereby which may also restrict the functionality of the online offer), or set an opt-out for the relevant service in individual cases.
Wir weisen Sie bei den jeweiligen Diensten innerhalb der Datenschutzerklärung darauf hin, auf welcher Rechtsgrundlage diese Daten verarbeitet werden.
c) Cookie-Banner
To obtain consent for the cookies we use, we use the cookie banner of the service provider Borlabs s.r.l. This itself sets a so-called consent cookie to query and process the respective consent status. This consent cookie is technically necessary and is therefore used based on our legitimate interest in accordance with. Art. 6 par.1 S.1 lit. f GDPR, § 25 para.1 TTDSG used.
7.1 Cookies
We set the following cookies on our website:
*xxx stands for your Google Analytics Property ID
**xxx stands for Cookie Policy ID
***xxx stands for user ID
| Provider | Cookies | Purpose | Storage duration | Privacy policy of the provider |
| Didomi | euconsent | This cookie contains the AB TCF consent string and consent information for all standard AB providers and purposes. | 12 months | https://privacy.didomi.io/en/policy |
| Google DoubleClick | DSID |
This cookie is used to store the user’s preferences. This is used, for example, to display individualized advertising |
12 months | https://policies.google.com/privacy |
| Google DoubleClick | DSID |
This cookie is used to store the user’s preferences. This is used, for example, to display individualized advertising |
12 months | https://policies.google.com/privacy |
| 1P_JAR, DV, NID | These cookies store your preferred settings and track how you use our website to show you advertisements of interest to you. | Max. 2 years | https://policies.google.com/privacy | |
| AID, DSID, TAID, ANID, OTZ | Coordinate the ads that are displayed for you on different devices and the measurement of conversion events | Max. 2 years | https://policies.google.com/privacy | |
| APISID, CONSENT, SID, HSID, SAPISID, SSID, SIDCC |
This cookie is used to authenticate users. prevent fraudulent use of credentials and protect user data from unauthorized access. |
SIDCC – 3 months; CONSENT – 20 years; other – 2 years |
https://policies.google.com/privacy | |
| _ga, _gid | Creation of website usage statistics |
_ga – 2 years; _gid – 24 Hours |
https://policies.google.com/privacy | |
| _gat gtag xxx* | Google Analytics cookie to throttle the number of requests. | 1 minute | https://policies.google.com/privacy | |
| Secure-APISID, _Secure-3PAPISID, Secure-3PSID, _Secure-HSID, _Secure-SSID | Used for targeting purposes to profile the interests of website visitors in order to display relevant and personalized Google advertising. | 6 months to 2 years | https://policies.google.com/privacy | |
| -fbp | Identification of users who have already visited the website. | 3 months | https://www.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0 | |
| Salesforce | visitor id<accountid> | The visitor cookie contains a unique visitor ID and the unique ID for your account. The account identifier ensures that the visitor is recorded in the correct Pardot account. This cookie is created for visitors by the Pardot tracking code. | 12 months | https://www.salesforce.com/de/company/privacy/ |
| Salesforce | pi_opt_in<accountid> | If tracking opt-in preferences are enabled, the pi_opt_in cookies are set with a true or false value when the visitor opts in or out of tracking. | 12 months | https://www.salesforce.com/de/company/privacy/ |
| Salesforce | visitor_id<accountids-hash | The visitor hash cookie contains the account ID and stores a unique code. This cookie is a security measure to ensure that a malicious user cannot pretend to be a visitor to Pardot and access the relevant prospect information. | 12 months | https://www.salesforce.com/de/company/privacy/ |
| Salesforce | Ipv<accountid> |
This LPV cookie is set to prevent Pardot from making multiple page views to a single element within a 30-minute session to track. |
12 months | https://www.salesforce.com/de/company/privacy/ |
| Salesforce | pardot | A session cookie called pardot is set in your browser while you are logged in to Pardot as a user or when a visitor accesses a form, landing page, or page with Pardot tracking code. The cookie indicates an active session and is not used for tracking. | 12 months | https://www.salesforce.com/de/company/privacy/ |
| Borlabs Cookie Solution | _jubeuconsent, _jub_cs-xxx** |
Are used by Borlabs cookie extension to set preferences for to save the consent to cookies. |
1 year | https://de.borlabs.io/datenschutz/ |
| WordPress | wp-settings-xxx*** | Used to maintain a user’s wp-admin configuration. | 1 year | https://de.wordpress.org/about/privacy/cookies/ |
| WordPress | wordpress_test_cookie | Test whether a cookie can be set. | Bis Ende der Browsersitzung | https://de.wordpress.org/about/privacy/cookies/ |
8. collection and storage of personal data as well as their type and purpose of use
a) External hosting
Our website is hosted by Kinsta Inc (8605 Santa Monica Blvd #92581 West Hollywood, CA 90069
USA), hosted. For this reason, all personal data collected on our website is stored on our hoster’s servers unless an external third-party service is included. This may be the IP address, email address, communication data, or similar. You can find out what specific personal data is involved here by looking at the individual functions and services explained by us. If we use an external service of a third party, this will be made clear in the description of the respective service or tool.
The hoster processes your data only on our instructions and to the extent necessary to fulfill the services on the website. The hoster does not process the data for its own purposes. We have concluded an order processing contract with this hoster.
b) When visiting the website
When you call up our website, information is automatically sent to our website’s server by the browser used on your end device. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automated deletion:
IP address of the requesting computer
Date and time of access
Name and URL of the accessed file
Website from which the access was made (referrer URL)
Browser used and, if applicable, the operating system of your computer as well as the name of your access provider.
The aforementioned data is processed by us for the following purposes:
Ensuring a smooth connection setup of the website
Ensuring comfortable use of our website
Evaluation of system security and stability
error analysis
for further administrative purposes
Data that can be traced back to your person, such as the IP address, will be deleted after 7 days at the latest. If we store the data beyond this period, it is pseudonymized, so it is no longer possible to assign it to you.
The legal basis for the data processing is Art. 6 para. 1 p. 1 lit. f GDPR. Our legitimate interest follows from the purposes for data collection listed above. In no case do we use the collected data for the purpose of drawing conclusions about your person.
c) Members/LogIn area
The LogIn area is used to map the consumption and user data of the respective customer in the context of fulfilling the contractual relationship in accordance with Art. 6 para. 1 p. 1 lit. b GDPR.
d) Passing on of data when using online payment service providers
Should you decide to settle with one of the online payment service providers offered by us within the scope of using the web portal, your contact data will be transmitted to them within the scope of the order triggered in this way. The lawfulness of the transfer of the data results from Art. 6 para. 1 p. 1 lit. b GDPR, for the implementation of the payment method you have chosen, as well as our legitimate interests according to. Art. 6 par. 1 p. 1 lit. f GDPR to enable user-friendly and uncomplicated payment processing. The personal data transferred to the online payment service provider is mostly first name, last name, address, email address, or other data required for invoice processing, as well as data related to the such as information on the loading process or location, invoice amount and taxes as a percentage, billing information, etc. This transmission is necessary to process the loading of your drivers with the payment method you have selected.
However, please note: Personal data may also be disclosed by the online payment service provider to service providers, subcontractors, or other affiliated companies, insofar as this is necessary for the fulfillment of the contractual obligations arising from your order or the personal data is to be processed on behalf.
Depending on the selected payment method, e.g., invoice or direct debit, the personal data transmitted to the provider will be transmitted by the provider to credit agencies. This transmission serves to check your identity and creditworthiness in relation to the order you have placed. You can find out which credit agencies are involved and which data is generally collected, processed, stored, and passed on by the respective provider in the respective data protection declarations of the providers: Stripe Payments Europe, Ltd, Grand Canal Street Lower, Grand Canal Dock, Dublin, Irland, dpo@stripe.com, https://stripe.com/de/privacy
e) Contact form/email contact
We provide a form in our web portal so that you have the possibility to contact us at any time. For the use of the contact form, it is necessary to provide a name for a personal salutation and a valid email address to contact us so that we know from whom the request originates and can also process it. If you send us inquiries via the contact form, your data from the inquiry form, including the contact data you provided there, as well as your IP address, will be processed in accordance with the German Data Protection Act. Art. 6 par. 1 p. 1 lit. b and f GDPR for the performance of pre-contractual measures, which take place at your request or for the exercise of our legitimate interest, namely for the exercise of our business activity. You are also welcome to email us instead of using the email address provided in our web portal. In this case, we store and process your email address and the information you provide in the email in accordance with Art. 6 Para. 1 p. 1 lit. b and f GDPR to process your message.
f) Newsletter
Newsletter content and registration data
The sending of our newsletter, the performance of statistical surveys and analyses, and the logging of the registration process will only take place if you order it from us and give your corresponding consent per Art. 6 para. 1 p. 1 lit. a GDPR, § 25 para.1 TTDSG has been granted.
The newsletter’s contents are specifically described when you register for the newsletter. For the registration of the newsletter, the indication of your email address is sufficient. If you wish to provide additional voluntary information, such as your name and/or gender, these will be used exclusively to personalize the newsletter addressed to you.
Double opt-in and logging
For security reasons, we use the so-called double opt-in procedure to register for our newsletter so that no one can register with other people’s email addresses. Therefore, after you subscribe to our newsletter, you will receive an email asking you to confirm your subscription. Only with the confirmation of the registration it becomes effective.
Furthermore, your subscription to the newsletter is logged. The logging includes storing the login and confirmation time, your specified data, and your IP address. If you make changes to your data, these changes are also logged.
Revocation
If you no longer wish to receive our newsletter, you can revoke your consent at any time in the future. To do so, you can click on the unsubscribe link at the end of each newsletter or send us an email to the following email address: info@reev.com
Durch den Widerruf der Einwilligung wird die Rechtmäßigkeit der aufgrund der Einwilligung bis zum Widerruf erfolgten Verarbeitung nicht berührt.
Use of “Salesforce.”
We send our newsletter and marketing emails using Salesforce Salescloud and Salesforce Marketing Cloud Account Engagement, offered by Salesforce Inc. (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA).
The email addresses of our newsletter recipients and their other data described in the context of this notice are stored in the cloud of Salesforce in the USA. Salesforce uses this information to send and evaluate the newsletter on our behalf. Furthermore, according to its own information, Salesforce may use this data to optimize or improve its own services. However, Salesforce does not use our newsletter recipients’ data to address them or pass them on to third parties.
We have concluded the new standard contractual clauses with Salesforce. Salesforce does not obtain the right to share your data.
You can find Salesforce’s privacy policy here.
Please check! You should definitely conclude the standard contractual clauses with Salesforce and pay attention to additional measures and guarantees, as the provider is located in an insecure third country. In addition, a data transfer impact assessment (TIA) must be performed.
g) Form Event / Webinar
We offer a form for those interested in our webinars. If you would like to participate, we need your name and email address to identify you as a participant in the webinar. To participate in the event, we will send you an access link in advance to the email address you provide. After the end of the event, you will also receive another email with the material.
If you register for an event, your information from the request form, including the contact details you provide there, as well as your IP address, will be used in accordance with Art. 6 par. 1 p. 1 lit. b and f GDPR for the performance of pre-contractual measures, which take place at your request or for the exercise of our legitimate interest, namely for the exercise of our business activity.
GoToWebinar
We use the service provider GoToWebinar of the provider LogMeIn Ireland Limited (Bloodstone Building Block C70 Sir John Rogerson’s Quay Dublin 2, Ireland) to implement our events. When you register for the event, your personal data (name, email address, company, and telephone number) are processed. In particular, this is the name, first name, company, telephone number, and email address.
We have concluded an order processing contract with GoToWebinar. GoToWebinar does not obtain the right to pass on your data.
The data processing takes place in Germany, the European Union, and the USA. An appropriate level of protection establishes data processing security in the USA through the agreement of the EU standard contractual clauses. Further information in the privacy policy of the provider: https://www.logmeininc.com/de/legal/privacy/us
The use of the GoToWebinar service is based on our legitimate interests pursuant to Art. 6 para. 1 p. 1 lit. f GDPR. Our interest is directed towards the use of a user-friendly as well as secure webinar tool that serves our business interests as well as meets the expectations of the users.
9. Analyse- and Tracking tools
We use these tools based on your consent pursuant to Art. 6 par. 1 p. 1 lit. a GDPR. You can revoke your consent at any time by changing the cookie settings. The processing remains lawful until the revocation.
The respective data processing purposes and data categories can be found in the corresponding tools. We would like to point out that we have no influence on whether and to what extent the service providers carry out further data processing.
a) Google Analytics
We use Google Analytics on our website, a web analytics service provided by Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter “Google”).
Google Analytics uses cookies in this context (see section 7). The information generated by the cookie about your use of this website, such as
Name and version of the browser used
Operating system of your computer
Website from which the access is made (referrer URL)
IP address of the requesting computer
Time of the server request
are usually transferred to a Google server in the USA and stored there.
However, since we have activated IP anonymization in our web portal, your IP address will be truncated beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.
On our behalf, Google will use this information for the purpose of evaluating your use of our web portal, compiling reports on web portal activity, and providing other services relating to web portal activity and internet usage to us. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google.
Please click here for an overview of data protection at Google.
b) Google AdWords
We use Google AdWords, an online advertising program from Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), on our website. Conversion tracking is also used in this process. With this tool, Google AdWords sets a cookie on your end device when you come to our website via a Google ad.
The cookie is no longer valid after 30 days. It does not serve any personal traceability. If you visit our website as a user and the cookie is still working, it will be recognizable to us together with Google that you clicked on the corresponding ad and were redirected to our site. In the process, a different cookie is assigned to each Google AdWords customer. Cookies are thus not traceable via the websites of AdWords customers.
Conversion statistics for AdWords customers are created with the data collected by conversion cookies. As Google AdWords customers, we thus learn the total number of users who responded to our ad and were then redirected to a web page that was tagged with a conversion tracking tag. We do not receive any information during this process that would allow us to identify you as a user personally.
If you reject the tracking procedure, the Google conversion tracking cookie can be deactivated via your Internet browser.
If necessary, use the help function of the browser for further information. You can find out more about Google’s privacy policy at http://www.google.de/policies/privacy/.
c) Salesforce
We work with Salesforce Sales Cloud CRM software from Salesforce Inc (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA), through which we can manage our customer data and conduct online marketing. Salesforce Sales Cloud is a CRM system that enables us, among other things, to manage existing and potential customers and customer contacts and to organize sales and communication processes. The use of the CRM system also enables us to analyze our customer-related processes.
For this purpose, among other things, landing pages are analyzed, and reports are generated. For this purpose, so-called “web beacons” are used, and cookies are applied. In this context, the following personal data may be processed:
IP address
geographical location
type of browser
duration of the visit
pages viewed
Customer data is stored on Salesforce’s servers. We have entered into the new standard contractual clauses with Salesforce. Salesforce does not obtain the right to share your data.
You can find Salesforce’s privacy policy here.
d) LinkedIn Conversion-Tracking
We use the conversion tracking function of LinkedIn on our website. This enables us to target you with advertisements following a visit to our website. In addition, LinkedIn provides reporting that shows how successful our advertisements are and how users generally interact with our site. If you have logged in via LinkedIn before visiting our site, this will be recognized as part of the conversion tracking, and you will be associated with your LinkedIn account as a visitor to our site.
You can find more information in LinkedIn’s privacy policy. You can find this here.
In addition, you have the option to unsubscribe from interest-based advertising via LinkedIn. This is possible via this link.
10. video integration
YouTube
We embed videos from YouTube, which is operated by Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), into our website as part of iFrame. As part of the embedding of the videos, we have activated YouTube’s extended data protection mode.
If you play a YouTube video during your visit, a connection is established to YouTube’s servers, and the YouTube server is informed which of our pages you have visited. This allows YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your member account before visiting our website. In addition, YouTube sets various cookies when starting the service in order, according to its own information, to improve its offered services and to prevent misuse.
For more information on the handling of user data and the cookies set, please refer to YouTube’s privacy policy at: https://www.google.de/intl/de/policies/privacy.
The legal basis results from the consent granted by you according to Art. 6 par. 1 p. 1 lit. a GDPR. You can revoke your consent at any time by changing the cookie setting on our website.
11. Rights of the person concerned
You have the following rights:
a) Information
In accordance with Article 15 of the GDPR, you have the right to request information about your personal data processed by us. This right to information includes information about
the purpose of processing
the categories of personal data
the recipients or categories of recipients to whom your data have been or will be disclosed
the planned storage period or at least the criteria for determining the storage period
the existence of a right to rectification, erasure, restriction of processing, or objection
the existence of a right of appeal to a supervisory authority
the origin of your personal data, if it was not collected by us
the existence of automated decision-making, including profiling and, if applicable, meaningful information about its details.
b) Correction
In accordance with Article 16 of the GDPR, you are entitled to the immediate correction of incorrect or incomplete personal data stored by us.
c) Deletion
In accordance with Art. 17 of the GDPR, you have the right to request that we delete your personal data without delay insofar as further processing is not necessary for one of the following reasons:
the personal data are still necessary for the purposes for which they were collected or otherwise processed
to exercise the right to freedom of expression and information
For compliance with a legal obligation that requires processing under the law of the European Union or the Member States to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller
for reasons of public interest in the area of public health pursuant to Art. 9(2)(h) and (i) and Art. 9(3) of the GDPR
for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes pursuant to Article 89(1) of the GDPR, insofar as the right referred to in section a) is likely to render impossible or seriously prejudice the achievement of the purposes of such processing
for the assertion, exercise or defense of legal claims.
d) Restriction of processing
In accordance with Article 18 of the GDPR, you may request the restriction of the processing of your personal data for one of the following reasons:
You dispute the accuracy of your personal data.
The processing is unlawful, and you object to the erasure of the personal data.
We no longer need the personal data for the purposes of processing, but you need it to assert, exercise or defend legal claims.
You object to the processing pursuant to Article 21 (1) of the GDPR.
e) Notification
If you have requested the rectification or erasure of your personal data or a restriction of processing in accordance with Articles 16, 17(1), and 18 of the GDPR, we will notify all recipients to whom your personal data has been disclosed unless this proves impossible or involves a disproportionate effort. You may request that we inform you of these recipients. f) Transmission
You have the right to receive your personal data that you have provided to us in a structured, common, and machine-readable format.
You also have the right to request that this data be transferred to a third party, provided that the processing was carried out with the help of automated procedures and is based on consent pursuant to Art. 6 para. 1 p. 1 lit. a or Art. 9 para. 2 lit. a or on a contract pursuant to Art. 6 para. 1 p. 1 lit. b GDPR.
g) Revocation
In accordance with Art. 7 para. 3 GDPR, you have the right to revoke your consent at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. In the future, we may no longer continue the data processing that was based on your revoked consent.
h) Complaint
In accordance with Article 77 of the GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR.
i) Objection
If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 para. 1 p. 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, provided that there are grounds for doing so that arise from your particular situation or the objection is directed against direct marketing. In the latter case, you have a general right of objection, which will be implemented by us without specifying the particular situation. If you would like to make use of your right of revocation or objection, it is sufficient to send an email to: support@reev.com.
j) Automated decisions in individual cases, including profiling
You have the right not to be subject to a decision based solely on automated processing – including profiling – which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision
is necessary for the conclusion or performance of a contract between you and us
is permitted by the legislation of the European Union or the Member States to which we are subject, and that legislation contains appropriate measures to safeguard your rights and freedoms and your legitimate interests
is made with your express consent.
However, these decisions may not be based on special categories of personal data pursuant to Article 9(1) of the GDPR unless Article 9(2)(a) or (g) of the GDPR applies and appropriate measures have been taken to protect the rights and freedoms and your legitimate interests.
With regard to the cases mentioned in i) and iii), we take reasonable steps to safeguard your rights and freedoms as well as your legitimate interests, including at least the right to obtain the intervention of a person from our side to express your point of view and to contest the decision.
12. change of the privacy policy
If we change the privacy policy, this will be indicated on the website.
Status 26.04.2022