We manage our websites according to the principles regulated below: We undertake to comply with the statutory provisions on data protection and endeavor to always take into account the principles of data avoidance and data minimization.

1. Contact Information for the Data Controller and Data Protection Officer

a) Data Controller

The data controller, as defined by the General Data Protection Regulation (GDPR) and other relevant national data protection laws of EU member states, as well as additional data protection regulations, is:

reev GmbH
Sandstraße 3
80335 Munich, Germany
Phone: +49 (0) 89 21538970
Email: info@reev.com
Website: https://reev.com

b) Data Protection Officer

You can contact the Data Protection Officer of the data controller at the following address:

SiDIT GmbH
Langgasse 20
97261 Güntersleben, Germany
Email: info@sidit.de

2. Definitions of terms

We have designed our privacy policy according to the principles of clarity and transparency. However, if there are any ambiguities regarding the use of different terms, the corresponding definitions can be be seen here.

3. Legal basis for the processing of personal data

a) Processing of personal data according to the GDPR 
We only process your personal data, such as your surname and first name, your email address and IP address, etc., if there is a legal basis for doing so. According to the General Data Protection Regulation, the following regulations in particular come into consideration:

  • Art. 6 para. 1 sentence 1 lit. a GDPR: The data subject has given his/her consent to the processing of personal data concerning him/her for one or more specific purposes. 
  • Art. 6 para. 1 sentence 1 lit. b GDPR: The processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures taken at the request of the data subject. 
  • Art. 6 para. 1 p. 1 lit. c GDPR: Processing is necessary for compliance with a legal obligation to which the controller is subject.
  • Art. 6 para. 1 sentence 1 lit. d GDPR: Processing is necessary to protect the vital interests of the data subject or another natural person. 
  • Art. 6 (1) p. 1 lit. e GDPR: processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller. 
  • Art. 6 (1) sentence 1 lit. f GDPR: processing is necessary for the purposes of the legitimate interests of the controller or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child.

However, at the relevant points in this data protection declaration, we will always point out once again the legal basis on which your personal data is processed.

b) Consent of the legal guardian according to Art. 8 Para. 1 Sentence 2 Alt. 2 GDPR

A parent or guardian must consent to all data processing on this website that requires the consent of a minor under the age of 16. For information on the individual data processing operations, their purposes and the categories of data concerned, for which the consent of the data subject is required, please refer to the data protection declaration. 

You can revoke your consent at any time by sending the revocation in text form to the contact details of the controller. The processing remains lawful until the revocation.  

c) Processing of information pursuant to Section 25 (1) TTDSG

We also process information pursuant to Section 25 (1) of the TTDSG by storing information on your terminal equipment or accessing information that is already stored on your terminal equipment. This can be both personal information and non-personal information. 
This can be both personal information and non-personal information, e.g. cookies, browser fingerprints, advertising IDs, MAC addresses and IMEI numbers.
Terminal equipment is any equipment connected directly or indirectly to the interface of a public telecommunications network for the transmission, processing or reception of messages, § 2 para. 2 no. 6 TTDSG.  

As a rule, we process this information on the basis of your consent, § 25 para.1 TTDSG.  

As far as an exception according to § 25 para.2 No.1 and No.2 TTDSG is given, we do not need consent. Such an exception is given if we only access or store the information in order to transmit a message via a public telecommunications network or if this is absolutely necessary so that we can provide a telemedia service that you have expressly requested. You can revoke your consent at any time. 

We inform you that the revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. 

4. Disclosure of personal data

Personal data transfer is also processed within the meaning of the previous section 3. However, we would like to inform you again here separately about the subject of a transfer to third parties. The protection of your personal data is very important to us. For this reason, we are particularly careful when it comes to passing on your data to third parties.

Therefore, data is only passed on to third parties if there is a legal basis for the processing. For example, we disclose personal data to persons or companies that act as processors for us pursuant to Art. 28 GDPR. A processor is anyone who processes personal data on our behalf – i.e., in particular, in a relationship of instruction and control with us.

In accordance with the requirements of the GDPR, we conclude a contract with each of our order processors to oblige them to comply with data protection regulations and thus provide your data with comprehensive protection.

5. Storage period and deletion

Your personal data will be deleted by us if it is no longer necessary for the purposes for which it was collected or otherwise processed; the processing is not necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims.

6. SSL or TLS encryption

This website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as enquiries that you send to us as the website operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

7. Cookies

We use cookies on our website. Cookies are small data files that your browser automatically creates and stores on your device when you visit our website. These cookies serve to store information related to the device you are using.

When it comes to the use of cookies, we distinguish between technically necessary cookies and “additional” cookies. Technically necessary cookies are those that are absolutely essential for providing an information society service that you have explicitly requested.

a) Technically Necessary Cookies

To make your use of our services more convenient, we use technically necessary cookies. These may include session cookies (e.g., language and font preferences, shopping cart, etc.), consent cookies, cookies for ensuring server stability and security, or similar. The legal basis for these cookies is Article 6(1)(f) of the GDPR, which reflects our legitimate interest in the error-free operation of the website and our interest in providing you with optimised services.

b) Additional Cookies

Additional cookies include those used for statistical, analytical, marketing, and retargeting purposes. We use these cookies based on your consent in accordance with Article 6(1)(a) of the GDPR.

You can withdraw your consent for the use of cookies at any time. Please note that the withdrawal of consent does not affect the lawfulness of the processing carried out based on the consent before its withdrawal.

To do so, you can either adjust your cookie settings on our website, disable the use of cookies in your browser settings (although this may limit the functionality of the online services), or opt out of specific services on a case-by-case basis.

We will inform you within the privacy policy of each respective service on which legal basis your data is being processed.

7.1 Cookie banner

To obtain consent for the cookies we use, we use the cookie banner of the service provider Borlabs, Borlabs GmbH, Hamburger Str. 11, 22083 Hamburg, Germany. This itself sets a so-called consent cookie to query and process the respective consent status. This consent cookie is technically necessary and is therefore used on the basis of our legitimate interest pursuant to Art. 6 (1) sentence 1 lit. f GDPR, § 25 (1) TTDSG.

8. Collection and storage of personal data as well as their type and purpose of use

a) External Hosting 

Our website is hosted by Kinsta Inc, 8605 Santa Monica Blvd #92581, West Hollywood, CA 90069, USA. For this reason, all personal data collected on our website is stored on the servers of our hoster, unless an external service of a third party is integrated. This may be the IP address, your e-mail address, communication data or similar. You can find out what specific personal data is involved in the individual functions and services explained by us below. If we use an external service of a third party, this will be made clear in the description of the respective service or tool.

The hoster only processes your data on our instructions and insofar as this is necessary to fulfil the services on the website. The hoster does not process the data for its own purposes. We have concluded the new standard contractual clauses with them. 

b) When visiting the website

When you call up our website, information is automatically sent to the server of our website by the browser used on your end device. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automated deletion:

  • IP address of the requesting computer
  • Date and time of access
  • Name and URL of the accessed file
  • Website from which the access was made (referrer URL)
  • Browser used and, if applicable, the operating system of your computer as well as the name of your access provider.

The aforementioned data is processed by us for the following purposes:

  • Ensuring a smooth connection setup of the website
  • Ensuring comfortable use of our website
  • Evaluation of system security and stability
    error analysis
  • For further administrative purposes

Data that can be traced back to your person, such as the IP address, will be deleted after 7 days at the latest. If we store the data beyond this period, this data is pseudonymized so that it is no longer possible to assign it to you.

The legal basis for the data processing is Art. 6 para. 1 p. 1 lit. f GDPR. Our legitimate interest follows from the purposes for data collection listed above. In no case do we use the collected data for the purpose of drawing conclusions about your person.

c) Contractual relationship 

   (1) reev Dashboard

You have the option of logging into your reev Dashboard via our website in order to operate and manage your charging infrastructure. For this purpose, we process your email address and password to verify you as our customer and to enable you to access the Dashboard, Art. 6 para.1 p.1 lit. b and f GDPR. Within the reev Dashboard, we process your personal data in accordance with our specific privacy policy for the reev Dashboard.

   (2) Conclusion of contract for orders placed on our website 

You have the option of ordering various products and services from us on our website. Within the scope of the establishment of the contractual relationship, only the personal data that is absolutely necessary for the execution of the contract will be processed in accordance with Art. 6 (1) sentence 1 lit. b GDPR. If you provide additional voluntary information, this will only be processed on the basis of your consent in accordance with Art. 6 Para. 1 S. 1 lit a GDPR. We use this voluntary information to offer a customer-friendly service and to constantly improve it. 

   (3) Passing on the data for shipping

The data necessary for the shipment of our goods (first name and surname, address, e-mail address, telephone number if required due to shipping goods) is passed on to the corresponding shipping service provider for notification/coordination for the delivery of the goods and for the delivery of the goods. The legal basis for the disclosure results from Art. 6 para. 1 p. 1 lit. b GDPR. In this context, we pass on your data to one of the following shipping service providers6. You will then receive further information on the processing of your data from them:

DHL  

DHL Paket GmbH, Sträßchensweg 10, postcode/city: 53113 Bonn, telephone: +49/ (0) 228/ 18 20, e-mail: impressum.paket[at]dhl.com; https://www.dhl.de/de/toolbar/footer/datenschutz.html  

d) Newsletter

Newsletter content and registration details 

The sending of our newsletter and the performance of statistical surveys and analyses as well as logging of the registration process will only take place if you order it from us and have given your corresponding consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR, § 25 Para.1 TTDSG.  

The contents of the newsletter are specifically described when you register for the newsletter. To register for the newsletter, it is sufficient to provide your e-mail address. If you provide further voluntary information, such as your name and/or gender, this will only be used to personalise the newsletter addressed to you.

Double opt-in and logging 

For security reasons, we use the so-called double opt-in procedure to register for our newsletter so that no one can register with other people’s email addresses. Therefore, after registering for our newsletter, you will first receive an e-mail asking you to confirm your registration. Your registration will only become effective once it has been confirmed. 

Furthermore, your registration for the newsletter will be logged. The logging includes the storage of the registration and confirmation time, your specified data and your IP address. If you make changes to your data, these changes will also be logged.

Revocation

If you no longer wish to receive our newsletter, you can revoke your consent at any time for the future. To do so, you can click on the unsubscribe link at the end of each newsletter or send us an email to the following email address: info@reev.com 

The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. 

Use of „Pardot“ 

We send our newsletter using the newsletter service “Pardot”, which is offered by Salesforce.com Inc., 3rd Floor, Salesforce Tower, 415 Mission Street, San Francisco, California, 94105, USA, represented in Germany by Salesforce.com Germany GmbH, Erika- Mann-Str. 31, 80636 Munich.

The e-mail addresses of our newsletter recipients and their other data described in this notice are stored on Salesforce servers in the USA. Salesforce uses this information to send and evaluate the newsletter on our behalf. Furthermore, according to its own information, Salesforce may use this data to optimise or improve its own services, e.g. for the technical optimisation of the dispatch and the presentation of the newsletters or for economic purposes in order to determine from which countries the recipients come. However, Salesforce does not use the data of our newsletter recipients to write to them itself or to pass it on to third parties.

Statistical surveys and analyses 

The newsletters sent via Salesforce contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved from the Salesforce server when the newsletter is opened. In the course of this retrieval, the following technical information is initially collected: 

  • Browser information
  • Information about your system
  • Your IP address
  • Time of the retrieval 

This information is used to improve the services on the basis of the technical data, the target groups and their reading behaviour, on the basis of their retrieval locations (which can be determined with the help of the IP address) and the access times. 

The statistical surveys also include determining whether and when the newsletters are opened and which links in the newsletter are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients, but it is neither our intention nor that of Salesforce to observe individual users. The analyses serve us much more to recognise the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users. 

Salesforce.com is certified under the EU Data Privacy Framework, which guarantees that Salesforce will only process data in accordance with the current adequacy decision for the US and therefore in accordance with European data protection standards. We have additionally concluded the new standard contractual clauses of the European Commission with Salesforce.  

You can find Salesforce’s privacy policy at https://www.salesforce.com/company/privacy/  

e) Contact forms

We provide forms on our website so that you have the opportunity to contact us at any time. For the use of the contact forms, it is necessary to provide a first and last name for a personal salutation and a valid e-mail address for contacting us, so that we know from whom the request originates and can also process it.  

Insofar as you have an enquiry from a company or a housing industry, you have an enquiry about reev energy management or you would like to become a reev Connect certified partner, we may process additional information about your company and planned projects, which is however not personal, in order to be able to process your enquiry.  

If you send us enquiries via the contact form, your details from the enquiry form, including the contact details you provide there, as well as your IP address, will be processed in accordance with Art. 6 (1) p. 1 lit. b and f GDPR for the purpose of carrying out pre-contractual measures in response to your enquiry or for the exercise of our legitimate interest, namely to carry out our business activities.  

Further voluntary information, such as the telephone number, is processed on the basis of your consent in accordance with Art. 6 Para. 1 S.1 lit.a GDPR.  

The enquiries as well as the accompanying data will be deleted 3 months after receipt at the latest, unless they are required for a further contractual relationship.  

f) Onboarding requests

If you would like to be onboarded into our reev Dashboard, our ABL+reev Bundle charging stations, our reev ready charging stations or our reev Connect Set, you can contact us on our website.  

For this purpose, we process your title, first and last name, your e-mail address and telephone number and other information from your company in order to be able to carry out the onboarding and to contact you in the event of queries.

We process your data from the enquiry form, including the contact details you provide there, as well as your IP address, in accordance with Art. 6 (1) p. 1 lit. b and f GDPR for the purpose of carrying out pre-contractual measures in response to your enquiry or for the exercise of our legitimate interest, namely to carry out our business activities.  

Further voluntary information will be processed on the basis of your consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR. 

The enquiries and the associated data will be deleted no later than 3 months after receipt, unless they are required for a further contractual relationship.  

g) Software upgrade

If you wish to upgrade your software, you have the option of sending us an enquiry on our website.  In order to use the enquiry form, it is necessary to enter a title, a first and last name for a personal title, a valid e-mail address and a telephone number so that we know who the enquiry is from and can also process it.  

We also process additional information about your company and planned upgrade projects, which is not personal, in order to process your enquiry. 

We process the information you provide in the enquiry form, including your contact details and your IP address, in accordance with Article 6 (1) sentence 1 lit. b and f GDPR for the purpose of carrying out pre-contractual measures in response to your enquiry or for the exercise of our legitimate interest, namely to carry out our business activities. Further voluntary information is processed on the basis of your consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR. 

The enquiries as well as the accompanying data will be deleted 3 months after receipt at the latest, unless they are required for a further contractual relationship.  

h) Registration of company car drivers

If you would like to register on our website as a company car driver in order to be able to charge your company car at home with reev, we require the following information from you: Your title, your first and last name, your business email address, your address and further information about your employer and the manufacturer of the wallbox hardware.  

We collect this data for legitimate interests for further identification and for the provision of our services pursuant to Art. 6 para. 1 p. 1 lit. b and f GDPR. This data is stored by us in the backend. 

i) Installation location Charging company car at home

If you would like to charge your company car at home with our reev solution, we offer you a corresponding request form on our website with which you can request the integration of your charging station for charging at home on business days. 

In order to use the request form, it is necessary to enter a salutation, a first and last name for a personal salutation, and a business e-mail address so that we know who the request is from and can also process it.  

We also process additional information about your company, the installer and your charging infrastructure in order to process your enquiry. 

We process the information you provide in the enquiry form, including your contact details and your IP address, in accordance with Article 6 (1) sentence 1 lit. b and f of the German Data Protection Act (GDPR) for the purpose of carrying out pre-contractual measures in response to your enquiry or for the exercise of our legitimate interest, namely to carry out our business activities. Further voluntary information is processed on the basis of your consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR. 

The enquiries and the associated data will be deleted no later than 3 months after receipt, unless they are required for a further contractual relationship.  

j) Hubject activation

If you want to activate your country-specific reev EVSE-ID & Hubject sticker, you can use the corresponding form on our website. For this purpose, we require information on your connector data (previous EVSE ID / new EVSE ID).  

We process your IP address in accordance with Art. 6 Para. 1 S. 1 lit. b and f GDPR for the purpose of carrying out pre-contractual measures in response to your request or for the exercise of our legitimate interest, i.e. to carry out our business activities.  

k) Feedback network for electricians

If you would like to be part of our feedback network for electricians, you can register on our website to be informed about relevant news and events. For this purpose, we process your first and last name, your e-mail address, your preferred language and your preferred topics.  

We process your personal data on the basis of your consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR. You can revoke your consent for the future at any time. To do so, you can send us an email to the following email address: info@reev.com. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. 

l) Brochures

You can also request brochures on specific topics on our website. We will send you these by e-mail, provided you give us your title, first and last name and your e-mail address.  

We process your personal data in accordance with Art. 6 Para. 1 S. 1 lit. b and f GDPR for the purpose of processing your enquiry or for the exercise of our legitimate interest, namely for the performance of our business activities.  

The enquiries and the associated data will be deleted no later than 3 months after receipt, unless they are required for a further contractual relationship.  

m) Application form

We provide you with a form on our website with which you can apply to us. Your personal data from the application will be processed in accordance with our data protection instructions for applicants. 

The use of this form is based on our legitimate interest in simple and secure transmission of your application documents, Art. 6 para. 1 p. 1 lit. f) GDPR.  For this purpose, we use the provider Personio SE & Co. KG, Rundfunkplatz 4, 80335 Munich. We have concluded an order processing contract with them.  

The data protection information for the processing of personal data by us as part of the application process and by Personio itself through the provision of the application tool can be found at https://reev.jobs.personio.de/privacy-policy?language=de.

n) Webinars

We also offer you the opportunity to register for our webinars via our website. To register, we process your title, your first and last name and your e-mail address as personal data.  

This data processing is carried out to provide our services and to verify our registered participants in accordance with Art. 6 Para. 1 S.1 lit. b, lit f GDPR. 

o) Use of Google Maps

Our website uses the Google Maps API. By using Google Maps, information about your use of this website (including your IP address) may be transmitted to and stored by Google on servers in the United States (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland).  

Google may transfer the information obtained through Maps to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. However, your IP address will under no circumstances be associated with any other data held by Google. Nevertheless, we must point out that it would be technically quite possible for Google to identify individual users on the basis of the data received. 

We have no influence on whether your personal data and personality profiles are processed by Google for other purposes. If you want to avoid this at all costs, you can deactivate the Google Maps service and thus prevent the transfer of data to Google. To do this, you only need to deactivate JavaScript in your browser. In this case, no data will be transferred, but you will no longer be able to use the map display on our website. You can find the Google privacy policy here.

By integrating Google Maps, Google Fonts are also dynamically reloaded by Google without being actively determined by the website operator or visitor. The integration of these web fonts takes place via a server call, usually a Google server in the USA. The following may be transmitted to the server and stored by Google: 

  • Name and version of the browser used
  • Website from which the request was initiated (referrer URL)
  • Operating system of your computer
  • Screen resolution of your computer 
  • IP address of the requesting computer
  • Language settings of the browser or operating system used by the user 

You can find more information in Google’s privacy policy, which you can access here: 

www.google.com/fonts#AboutPlace:about  

www.google.com/policies/privacy/ 

Der Einsatz von Google Maps stellt einen Service für Sie dar, damit Sie unseren Standort genau erkennen und ggfs. Ihren Besuch bei uns besser planen können. Die Verwendung von Google Maps erfolgt auf Grundlage Ihrer Einwilligung gem. Art. 6 Abs. 1 S. 1 lit. a DSGVO.

p) Google Tag Manager 

We use the Google Tag Manager from Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) on our website. The Google Tag Manager is an administration and management tool in which other tracking and/or statistics tools can be centrally administered and played out.   

When you visit our website and give your consent in accordance with Art. 6 para. 1 sentence 1 lit. a) GDPR, the Google Tag Manager collects and processes your IP address, which may also be transmitted to the USA. However, the Google Tag Manager itself does not create a user profile or analyses.   

You can find the Google privacy policy here. 

9. Analysis and tracking tools

We use the analysis and tracking tools listed below in our web portal. These serve to ensure the continuous optimisation of our web portal and to design it according to your needs.

We use these tools on the basis of your consent pursuant to Art. 6 para. 1 p. 1 lit. a GDPR. You can revoke your consent at any time by changing the cookie settings. The processing remains lawful until revocation.

The respective data processing purposes and data categories can be found in the corresponding tools. We would like to point out that we have no influence on whether and to what extent the service providers carry out further data processing.

a)    Google Analytics

We use Google Analytics on our website, a web analytics service provided by Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter “Google”).

Google Analytics uses cookies in this context (see section 7). The information generated by the cookie about your use of this website, such as your

  • Name and version of the browser used
  • Operating system of your computer
  • Website from which the access is made (referrer URL)
  • IP address of the requesting computer
  • Time of the server request

are usually transferred to a Google server in the USA and stored there.

Your IP address is automatically anonymised by Google before it is recorded via EU domains and servers. There is therefore no logging or storage of your IP address. 

On our behalf, Google will use this information for the purpose of evaluating your use of our website, compiling reports on website activity and providing other services relating to website activity and internet usage to us. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. 

We have concluded an order processing contract with Google. Please click here for an overview of data protection at Google:
https://support.google.com/analytics/answer/6004245

b) Google Remarketing

We use the remarketing function of Google Analytics to target advertising campaigns – including Google AdWords campaigns – to visitors to our website. Here, based on your previous visits to our website, you are presented with relevant advertisements when you visit other websites in the Google Display Network. 

The DoubleClick cookie enables Google to display targeted advertisements to ourselves and other third parties that match interests identified based on your previous visits to our website and/or other websites. These advertisements may be displayed on websites operated by Google and/or other operators of the Google advertising network. We also use the Google Analytics advertising features to analyse the effectiveness of our own advertising campaigns. 

If you have agreed in your Google account that your web and app browsing history is linked by Google to your Google account and information from your Google account is used to personalise ads, Google will use data from you together with Google Analytics data to create target group lists for cross-device remarketing. To do this, Google Analytics first collects Google-authenticated IDs for you as a user on our website, which are linked to your Google account. Google Analytics then temporarily links these IDs to Google Analytics data to optimise our targeting. 

Please click here for an overview of Google’s privacy policy: https://support.google.com/analytics/answer/6004245

c) Google Ads Conversion Tracking 

We use Google Ads, an online advertising programme from Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), on our website. Conversion tracking is also used in this process. With this tool, Google Ads sets a cookie on your terminal device when you come to our website via a Google advertisement. 

The cookie does not serve any personal traceability. If you visit our website as a user and the cookie is still working, it will be recognisable to us together with Google that you clicked on the corresponding advertisement and were redirected to our site. A different cookie is assigned to each Google Ads customer. Cookies are thus not traceable via the websites of the Ads customers. 

The data collected through conversion cookies is used to create conversion statistics for Ads customers. As Google Ads customers, we thus learn the total number of users who responded to our ad and were then redirected to a website that was tagged with a conversion tracking tag. This enables us to see the success of individual advertising measures. We do not receive any information during this process with which we could personally identify you as a user. 

When Google Ads are used, your browser automatically establishes a direct connection with the Google server and, if you have a Google account and are logged in to it, can assign the visit to your account. If you do not have a Google account, Google will assign you its own identifier. We have no influence on what other data Google collects and stores.  

You can find out more about Google’s privacy policy at: http://www.google.de/policies/privacy/. 

d) Salesforce

We also work with Salesforce Sales Cloud CRM software from Salesforce Inc (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA), through which we can manage our customer data and conduct online marketing. Salesforce Sales Cloud is a CRM system and enables us, among other things, to manage existing and potential customers and customer contacts and to organise sales and communication processes. The use of the CRM system also enables us to analyse our customer-related processes. 

For this purpose, among other things, landing pages are analysed and reports are created. So-called “web beacons” and cookies are used for this purpose. In this context, the following personal data may be processed: 

  • IP address
  • Geographical location
  • type of browser
  • duration of the visit
  • pages viewed 

Customer data is stored on Salesforce’s servers. We have entered into the new standard contractual clauses with Salesforce. Salesforce does not obtain the right to share your data. You can find the privacy policy of Salesforce here. 

f) Facebook Conversion Pixel 

We use the “conversion pixel” or visitor action pixel of Meta Platforms Ireland Ltd (4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland). By calling up this pixel from your browser, Meta Platforms can subsequently recognise whether a Facebook ad was successful, e.g. led to an online purchase. 

We only receive statistical data from Meta Platforms for this purpose without any reference to a specific person. This allows us to record the effectiveness of the Facebook ads for statistical and market research purposes. In particular, if you are registered with Facebook, we refer you to their data protection information: https://www.facebook.com/about/privacy/. 

g) LinkedIn Conversion Tracking

We use the conversion tracking function of LinkedIn on our website. This enables us to target you with advertisements following a visit to our website. In addition, LinkedIn provides a report that shows how successful our advertisements are and how users interact with our site in general. If you have logged in via LinkedIn before visiting our site, this will be recognised as part of the conversion tracking and you will be associated with your LinkedIn account as a visitor to our site. 

You can find more information in the LinkedIn privacy policy: https://www.linkedin.com/legal/privacy-policy?_l=de_DE 

You also have the option to unsubscribe from interest-based advertising via LinkedIn. This is possible via the following link: https://www.linkedin.com/psettings/enhanced-advertising 

h) LinkedIn Analytics

We use LinkedIn Analytics on our website, a web analytics service provided by LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland, hereinafter “LinkedIn”).  

LinkedIn Analytics uses cookies in this context (see section 7). The information generated by the cookie about your use of this website, such as 

  • Login data
  • Device information
  • IP addresses

are logged and possibly transmitted to a LinkedIn server in the USA and stored there. 

LinkedIn will use this information on our behalf for the purpose of evaluating your use of our website, compiling reports on website activity and providing other services relating to website activity and internet usage. The IP address transmitted by your browser as part of LinkedIn Analytics is not merged with other LinkedIn data. 

We have concluded an order processing contract with LinkedIn. Please click here for an overview of data protection at LinkedIn: https://www.linkedin.com/legal/privacy-policy  

i) iPAPI

We also use the service iPAPI, of Kloudend, Inc., 1887 Whitney Mesa Dr #4080, Henderson, NV 89014, USA, on our website to optimally display our website to our website visitors. The service collects your country location, your time zone, information about your internet service provider and your IP address as well as the access to our website, on the one hand to protect our website from unauthorised access by attackers and bots, and on the other hand to be able to optimally display the content of our website accordingly, to better tailor it to the respective visitor.  

IPAPI is used on the basis of our legitimate interest pursuant to Art. 6 para. 1 p. 1 lit. f GDPR, namely to ensure the functionality of the website and to be able to restore it as quickly and easily as possible in the event of a problem, and for the optimal presentation of our content.  

We have concluded the new standard contractual clauses with iPAPI. You can find more information about iPAPI’s data protection at:  https://ipapi.co/privacy/. 

j) Social Media

   (1) Facebook plugin “Like 

The Facebook “Like” plugin is integrated into this website. You can recognise it by the blue Facebook logo and the adjacent “Like” addition. The plugin is operated by Meta Platforms Ireland Limited (Hanover Reach, 5-7 Hanover Quay, Dublin 2 Ireland) and is directly connected to the Meta Platforms servers. No data is passed on to the website operator. 

As soon as you activate the plugin, it collects, uses and transmits data to Meta Platforms – independently of this website – to the extent and for the purpose specified in Facebook’s privacy policy at http://www.facebook.com/policy.php (including the information that and when you visited this website). If you actively use the plugin (e.g. by clicking the “Like” button), this information is also transmitted to Meta Platforms and used there. 

The type, scope and purpose of the data collected depends on whether you are registered and/or logged in to Facebook. However, data is only assigned to your Facebook account if you are currently logged in to Facebook. This means that you should log out of Facebook before visiting this website if you want to prevent an assignment to your Facebook profile. Meta Platforms may also process the collected data in third countries in accordance with the Facebook privacy policy. 

The most frequently asked questions about the plugin’s data protection are explained in a generally understandable way at http://www.facebook.com/help.php?page=1068.

   (2) Xing  

On our websites, we use functions of the Xing service, which is operated by XING SE. 
(Dammtorstraße 30, 20354 Hamburg Germany). 

If you click on the Xing button on our websites, the contents of our website will be linked to your Xing profile. However, this is only possible if you are logged into your Xing account. 

We would like to point out that we, as the provider of the website, have no knowledge of the content of the transmitted data or its use by Xing. You can find more information on this in Xing’s privacy policy: https://privacy.xing.com/de/datenschutzerklaerung 

   (3) LinkedIn 

On our websites, we use functions of the LinkedIn service, which is operated by LinkedIn Ireland Unlimited Company (Wilton Place, Dublin 2, Ireland). 

If you click on the LinkedIn button on our website, the content of our website will be linked to your LinkedIn profile. However, this is only possible if you are logged into your LinkedIn account. 

We would like to point out that we, as the provider of the website, have no knowledge of the content of the transmitted data or its use by LinkedIn. You can find more information on this in LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy?_l=de_DE 

10. Image, sound and video integration

YouTube

Our website uses the YouTube plugin, which is operated by Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland). 

If you activate the YouTube plugin during your visit, a connection to the YouTube servers is established and the YouTube server is informed which of our pages you have visited. This enables YouTube to assign your surfing behaviour directly to your personal profile. You can prevent this by logging out of your member account before visiting our website. 

For more information on the handling of user data, please see YouTube’s privacy policy at: https://www.google.de/intl/de/policies/privacy 

Through the integration of YouTube, Google Fonts are also dynamically reloaded by Google without the website operator or visitor actively determining this. 35The integration of these web fonts takes place through a server call, usually a Google server in the USA. This may result in the following being transmitted to the server and stored by Google: 

  • Name and version of the browser used
  • Website from which the request was initiated (referrer URL)
  • Operating system of your computer
  • Screen resolution of your computer 
  • IP address of the requesting computer
  • Language settings of the browser or operating system used by the user 

You can find more detailed information in Google’s privacy policy, which you can access here:  

www.google.com/fonts#AboutPlace:about  

www.google.com/policies/privacy/ 

The legal basis results from your consent pursuant to Art. 6 para. 1 p. 1 lit. a GDPR. You can revoke your consent at any time by changing the cookie setting on our website. 

11. Rights of the person concerned

You have the following rights:

a) Information

In accordance with Article 15 of the GDPR, you have the right to request information about your personal data processed by us. This right of access includes information about 

  • the purposes of processing
  • the categories of personal data
  • the recipients or categories of recipients to whom your data have been or will be disclosed
  • the planned storage period or at least the criteria for determining the storage period
  • the existence of a right to rectification, erasure, restriction of processing or objection
  • the existence of a right of appeal to a supervisory authority
  • the origin of your personal data, if it was not collected by us
  • the existence of automated decision-making including profiling and, if applicable, meaningful information on its details 

b) Correction

In accordance with Art. 16 GDPR, you have the right to have incorrect or incomplete personal data stored by us corrected without delay. 

c) Deletion

In accordance with Art. 17 GDPR, you have the right to request the immediate deletion of your personal data from us, insofar as the further processing is not necessary for one of the following reasons: 

  • the personal data are still necessary for the purposes for which they were collected or otherwise processed
  • for the exercise of the right to freedom of expression and information
  • for compliance with a legal obligation which requires processing under the law of the European Union or the Member States to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller
  • for reasons of public interest in the area of public health in accordance with Art. 9(2)(h) and (i) and Art. 9(3) of the GDPR
  • for archiving purposes in the public interest, scientific or historical research purposes or for statistical purposes pursuant to Article 89(1) of the GDPR, insofar as the right referred to in section a) above is likely to render impossible or seriously prejudice the achievement of the purposes of such processing
  • for the assertion, exercise or defence of legal claims 

d) Limitation of processing

You can request the restriction of the processing of your personal data for one of the following reasons in accordance with Art. 18 GDPR: 

  • You dispute the accuracy of your personal data. 
  • The processing is unlawful and you refuse to erase the personal data.
  • We no longer need the personal data for the purposes of processing, but you need it to assert, exercise or defend legal claims.
  • You object to the processing pursuant to Art. 21 (1) GDPR. 

e)  Information

If you have requested the rectification or erasure of your personal data or a restriction of processing in accordance with Art. 16, Art. 17 or Art. 18 of the GDPR, we will notify all recipients to whom your personal data has been disclosed, unless this proves impossible or involves a disproportionate effort. You can request that we inform you of these recipients.  

f)    Transmission

You have the right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format. 

You also have the right to request that this data be transferred to a third party if the processing was carried out with the aid of automated procedures and is based on consent pursuant to Art. 6 (1) sentence 1 lit. a or Art. 9 (2) lit. a or on a contract pursuant to Art. 6 (1) sentence 1 lit. b GDPR. 

g)  Revocation

In accordance with Art. 7 (3) of the GDPR, you have the right to revoke your consent at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. In the future, we may no longer continue the data processing that was based on your revoked consent. 

h)  Complaint

In accordance with Art. 77 GDPR, you have the right to complain to a supervisory authority if you believe that the processing of your personal data violates the GDPR. 

i)      Objection

If your personal data is processed on the basis of legitimate interests pursuant to Article 6 (1) sentence 1 lit. f of the GDPR, you have the right to object to the processing of your personal data pursuant to Article 21 of the GDPR, insofar as there are grounds for doing so that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which will be implemented by us without specifying the particular situation. If you would like to make use of your right of revocation or objection, it is sufficient to send an e-mail to info@reev.com. 

j)    Automated decision in individual cases including profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision 

  1. is necessary for the conclusion or performance of a contract between you and us
  2. is permitted by legislation of the European Union or the Member States to which we are subject and that legislation contains appropriate measures to safeguard your rights and freedoms and your legitimate interests
  3. is done with your express consent 

However, these decisions must not be based on special categories of personal data pursuant to Article 9(1) of the GDPR, unless Article 9(2)(a) or (g) of the GDPR applies and appropriate measures have been taken to protect the rights and freedoms and your legitimate interests. 

With regard to the cases mentioned in 1. and 3. above, we take appropriate measures to safeguard the rights and freedoms as well as your legitimate interests, which include at least the right to obtain the intervention of a person from our side, to express your point of view and to contest the decision. 

12. Amendment of the privacy policy

If we change the privacy policy, this will be indicated on the website. 

Status: 01.09.2023 

1. Contact Information for the Data Controller and Data Protection Officer

a) The Controller

The controller, within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the member states of the European Union, as well as other data protection regulations, is:

reev GmbH
Sandstraße 3
80335 Munich, Germany
Tel: +49 (0) 89 21538970
Email: info@reev.com
Website: https://reev.com

b) The Data Protection Officer

The Data Protection Officer of the controller is:

SiDIT GmbH
Langgasse 20
97261 Güntersleben, Germany
Email: info@sidit.de

2. Definitions

We have designed our privacy policy based on the principles of clarity and transparency. However, if there are any uncertainties regarding the use of various terms, the relevant definitions can be found here.

3. Legal basis for the processing of personal data

We only process your personal data, such as your first and last name, email address, IP address, etc., when there is a legal basis for doing so. The following provisions under the General Data Protection Regulation (GDPR) are particularly relevant:

  • Article 6(1)(a) GDPR: The data subject has given consent to the processing of their personal data for one or more specific purposes.
  • Article 6(1)(b) GDPR: The processing is necessary for the performance of a contract to which the data subject is a party, or to take steps at the request of the data subject prior to entering into a contract.
  • Article 6(1)(c) GDPR: The processing is necessary for compliance with a legal obligation to which the controller is subject.
  • Article 6(1)(d) GDPR: The processing is necessary to protect the vital interests of the data subject or another natural person.
  • Article 6(1)(e) GDPR: The processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
  • Article 6(1)(f) GDPR: The processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, especially where the data subject is a child.

We will inform you at the relevant points in this privacy policy on which legal basis your personal data is processed.

Processing of Information under Section 25(1) TTDSG

We also process information in accordance with Section 25(1) TTDSG by storing information on your terminal device or accessing information that is already stored on your terminal device. This may involve both personal and non-personal data, such as cookies, browser fingerprints, advertising IDs, MAC addresses, and IMEI numbers. A terminal device refers to any device directly or indirectly connected to the interface of a public telecommunications network for the purpose of sending, processing, or receiving messages, as defined in Section 2(2) No. 6 TTDSG.

As a rule, we process this information based on your consent, as per Section 25(1) TTDSG.

Where an exception under Section 25(2) Nos. 1 and 2 TTDSG applies, we do not require consent. Such an exception is given when we access or store the information solely for the purpose of transmitting a message over a public telecommunications network, or when it is absolutely necessary for us to provide a telemedia service that you have explicitly requested. You can withdraw your consent at any time.

Please note that the withdrawal of consent does not affect the lawfulness of the processing carried out on the basis of the consent before its withdrawal.

4. Disclosure of personal data

Personal data transfer is also processed within the meaning of the previous section 3. However, we would like to inform you again here separately about the subject of a transfer to third parties. The protection of your personal data is very important to us. For this reason, we are particularly careful when it comes to passing on your data to third parties.

Therefore, data is only passed on to third parties if there is a legal basis for the processing. For example, we disclose personal data to persons or companies that act as processors for us pursuant to Art. 28 GDPR. A processor is anyone who processes personal data on our behalf – i.e. in particular in a relationship of instruction and control with us.

In accordance with the requirements of the GDPR, we conclude a contract with each of our order processors to oblige them to comply with data protection regulations and thus provide your data with comprehensive protection.

5. Storage period and deletion

Your personal data will be deleted by us if it is no longer necessary for the purposes for which it was collected or otherwise processed, the processing is not necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims.

6. SSL or TLS encryption

This website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as enquiries that you send to us as the website operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

7. Cookies

We use cookies on our website. Cookies are small data packets that your browser automatically creates and that are stored on your terminal device when you visit our website. These cookies are used to store information in connection with the respective end device used.

When using cookies, a distinction is made between technically necessary cookies and “other” cookies. Technically necessary cookies are when they are absolutely necessary to provide an information society service that you have expressly requested.

a) Technically necessary cookies

In order to make the use of our offer more pleasant for you, we use technically necessary cookies, these may be so-called session cookies (e.g. language and font selection, shopping cart, etc.), consent cookies, cookies to ensure server stability and security, or similar.

The legal basis for the cookies results from Art. 6 para. 1 p. 1 lit. f) DSGVO, our legitimate interest in the error-free operation of the website and the interest in providing you with our services in an optimized manner.

  • Session-Cookies

In order to make the use of our offer more pleasant for you, we use so-called session cookies (e.g. language and font selection, shopping cart, etc.) These session cookies fall under the category of technically necessary cookies and are automatically deleted after you leave our site. The legal basis for the cookies results from Art. 6 para. 1 p. 1 lit. c) DSGVO, a legal permission.

  • CleanTalk Anti-Spam Check

We use the service “CleanTalk”, which protects the website from spam. The use is based on our legitimate interests within the meaning of Art. 6 para. 1 lit. f) Basic Data Protection Regulation (GDPR).

For security reasons and as protection against spam, your data is processed in the CleanTalk Cloud Service and stored in log files for a maximum of 45 days. After the expiry of the aforementioned period, this data will be completely deleted. CleanTalk may use information about spam activity from IP or email addresses to provide appropriate anti-spam protection to all websites connected to its service.

For more information on the collection and use of data by CleanTalk, please refer to the privacy policy of CleanTalk Inc.: https://cleantalk.org/publicoffer#privacy.

  • IPAPI.CO

To automatically locate the location, country, time zone and access to the website by computer or mobile device, as well as the Internet provider and routing information (IP address), we use the tool IPAPI (www.ipapi.co) of Kloudend, Inc. The tool is used to adapt the content of our website based on the findings of the localization and accordingly tailor it better to the respective visitor. Furthermore, the tool serves as protection against attackers and bots. The legal basis of the data processing results from our legitimate interest according to Art. 6 para. 1 lit. f GDPR. Our necessary legitimate interest lies in the great benefit that the functions described above have for our offer. The localization of your location enables us in particular to respond and optimize our offer according to your interests and facilitates the technical implementation of our website. The privacy policy of Kloudend, Inc. you will find under: https://ipapi.co/privacy/

b) Other cookies

The other cookies include cookies for statistical purposes, analysis and marketing, and retargeting purposes. we set these cookies based on your consent in accordance with. Art. 6 par. 1 p. 1 lit. a) GDPR for you.

You can revoke your consent for the use of cookies at any time. We inform you that the revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

To do this, you can either edit your cookie settings on our website, deactivate the use of cookies in your browser settings (whereby this may also restrict the functionality of the online offer) or set an opt-out for the relevant service in individual cases.

We will inform you within the privacy policy of each respective service on which legal basis this data is processed.

c) Cookie-Banner

To obtain consent for the cookies we use, we use the cookie banner of the service provider iubenda s.r.l. This itself sets a so-called consent cookie to query and process the respective consent status. This consent cookie is technically necessary and is therefore used on the basis of our legitimate interest in accordance with. Art. 6 par.1 S.1 lit. f GDPR, § 25 para.1 TTDSG used.

7.1 Cookies

On our website, we set the following cookies:

*xxx represents your Google Analytics Property ID

**xxx represents the Cookie Policy ID

***xxx represents the User ID

Provider Cookies Purpose Storage Duration

Provider’s Privacy Policy

 
Didomi euconsent This cookie contains the AB TCF consent string and consent information for all standard IAB providers and purposes. 12 Months https://privacy.didomi.io/en/policy
Google DoubleClick DSID

This cookie is used to store the user’s preferences.
For example, it is used to display personalised advertising.

12 Months https://policies.google.com/privacy
Google DoubleClick DSID

This cookie is used to store the user’s preferences.
For example, it is used to display personalised advertising.

12 Months https://policies.google.com/privacy
Google 1P_JAR, DV, NID These cookies store your preferred settings, track how you use our website, and display advertising that may be of interest to you. Max. 2 Years https://policies.google.com/privacy
Google AID, DSID, TAID, ANID, OTZ

Coordination of advertisements displayed to you across different devices and measurement of conversion events.

Max. 2 Years https://policies.google.com/privacy
Google APISID, CONSENT, SID, HSID, SAPISID, SSID, SIDCC

This cookie is used to authenticate users, prevent fraudulent use of login credentials, and protect user data from unauthorized access.

SIDCC – 3 Months;

CONSENT – 20 Years;

andere – 2 Years

https://policies.google.com/privacy
Google _ga, _gid

Creation of website usage statistics.

_ga – 2 Years; _gid – 24

Hours

https://policies.google.com/privacy
Google _gat gtag xxx*

Google Analytics cookie used to throttle the request rate.

1 Minute https://policies.google.com/privacy
Google Secure-APISID, _Secure-3PAPISID, Secure-3PSID, _Secure-HSID, _Secure-SSID

Used for targeting purposes to create a profile of the interests of website visitors in order to display relevant and personalised Google ads.

6 Months bis 2 Years https://policies.google.com/privacy
Facebook -fbp

Identification of users who have previously visited the website.

3 Months https://www.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0
Salesforce visitor id<accountid>

The visitor cookie contains a unique visitor ID and the unique ID for your account. The account ID ensures that the visitor is tracked within the correct Pardot account. This cookie is created for visitors by the Pardot tracking code.

12 Months https://www.salesforce.com/de/company/privacy/
Salesforce pi_opt_in<accountid>

If tracking opt-in preferences are enabled, the pi_opt_in cookies are set with a true or false value when the visitor opts in or out of tracking.

12 Months https://www.salesforce.com/de/company/privacy/
Salesforce visitor_id<accountids-hash

The visitor hash cookie contains the account ID and stores a unique code. This cookie is a security measure to ensure that a malicious user cannot impersonate a Pardot visitor and access the associated prospect information.

12 Months https://www.salesforce.com/de/company/privacy/
Salesforce Ipv<accountid>

This LPV cookie is set to prevent Pardot from tracking multiple page views on a single asset within a 30-minute session.

12 Months https://www.salesforce.com/de/company/privacy/
Salesforce pardot

A session cookie named “pardot” is set in your browser while you are logged into Pardot as a user, or when a visitor accesses a form, landing page, or page with Pardot tracking code. The cookie indicates an active session and is not used for tracking.

12 Months https://www.salesforce.com/de/company/privacy/
Borlabs Cookie Solution  

Used by the Borlabs Cookie extension to store consent preferences for cookies.

1 Year https://de.borlabs.io/datenschutz/
WordPress wp-settings-xxx***

Used to maintain a user’s wp-admin configuration.

1 Year https://de.wordpress.org/about/privacy/cookies/
WordPress wordpress_test_cookie

Tests whether a cookie can be set.

Until end of browser session https://de.wordpress.org/about/privacy/cookies/

 

8. Collection and Storage of Personal Data, as well as the Nature and Purpose of Their Use

a) External Hosting

Our website is hosted by Kinsta Inc. (8605 Santa Monica Blvd #92581 West Hollywood, CA 90069, USA). As a result, all personal data collected on our website is stored on the servers of our hosting provider unless an external third-party service is integrated. This may include IP addresses, email addresses, communication data, or similar information. The specific personal data involved is detailed below in relation to each of the functions and services we explain. Should we use an external third-party service, this will be made clear when describing the respective service or tool.

The hosting provider processes your data only in accordance with our instructions and only as far as necessary to fulfil the services on the website. There is no processing of the data by the host for their own purposes. We have concluded a data processing agreement with them.

b) When Visiting the Website

When you access our website, your browser automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automatic deletion:

  • IP address of the requesting computer
  • Date and time of access
  • Name and URL of the retrieved file
  • Website from which access is made (referrer URL)
  • Browser used, and, if applicable, the operating system of your computer and the name of your access provider

The aforementioned data is processed by us for the following purposes:

  • Ensuring a smooth connection to the website
  • Ensuring comfortable use of our website
  • Evaluating system security and stability
  • Error analysis
  • For other administrative purposes

Data that can be traced back to you, such as the IP address, will be deleted after no more than 7 days. Should we store the data beyond this period, the data will be pseudonymised, so that it can no longer be associated with you.

The legal basis for data processing is Article 6(1)(f) GDPR. Our legitimate interest arises from the purposes listed above for data collection. Under no circumstances do we use the collected data for the purpose of drawing conclusions about your person.

c) Members/Login Area

The login area is used to display the consumption and user data of the respective customer in the context of fulfilling the contractual relationship in accordance with Article 6(1)(b) GDPR.

d) Passing on of Data When Using Online Payment Service Providers

If you decide to settle with one of the online payment service providers we offer as part of using the web portal, your contact details will be transmitted to them as part of the order triggered in this way. The lawfulness of the data transfer results from Article 6(1)(b) GDPR, for the implementation of the payment method you have chosen, as well as our legitimate interests according to Article 6(1)(f) GDPR, to enable user-friendly and straightforward payment processing.

The personal data transferred to the online payment service provider usually includes first name, last name, address, email address, or other data required for invoice processing, as well as data related to such as information on the loading process or location, invoice amount and taxes as a percentage, billing information, etc.

This transmission is necessary to process the loading of your drivers with the payment method you have selected.

However, please note that personal data may also be disclosed by the online payment service provider to service providers, subcontractors, or other affiliated companies, as far as this is necessary for the fulfilment of the contractual obligations arising from your order or the personal data is to be processed on behalf.

Depending on the selected payment method, e.g., invoice or direct debit, the personal data transmitted to the provider will be transmitted by the provider to credit agencies. This transmission serves to check your identity and creditworthiness in relation to the order you have placed. You can find out which credit agencies are involved and which data is generally collected, processed, stored, and passed on by the respective provider in the respective data protection declarations of the providers:
Stripe Payments Europe, Ltd, Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, dpo@stripe.com, https://stripe.com/en-gb/privacy

e) Contact Form / Email Contact

We provide a form on our web portal to allow you to contact us at any time. To use the contact form, it is necessary to provide a name for a personal salutation and a valid email address to contact us so that we know from whom the request originates and can also process it.

If you send us inquiries via the contact form, your data from the inquiry form, including the contact data you provided there, as well as your IP address, will be processed in accordance with Article 6(1)(b) and (f) GDPR for the performance of pre-contractual measures, which take place at your request or for the exercise of our legitimate interest, namely for the exercise of our business activity.

You are also welcome to send us an email instead using the email address provided on our web portal. In this case, we store and process your email address and the information you provide in the email in accordance with Article 6(1)(b) and (f) GDPR to process your message.

f) Newsletter

Newsletter Content and Registration Data

The sending of our newsletter and the performance of statistical surveys and analyses, as well as logging of the registration process, will only take place if you order it from us and give your corresponding consent in accordance with Article 6(1)(a) GDPR and Section 25(1) TTDSG.

The contents of the newsletter are specifically described when you register for the newsletter. To register for the newsletter, providing your email address is sufficient. If you wish to provide additional voluntary information, such as your name and/or gender, these will be used exclusively for the personalisation of the newsletter addressed to you.

Double Opt-in and Logging

For security reasons, we use the so-called double opt-in procedure to register for our newsletter, so that no one can register with other people’s email addresses. Therefore, after you subscribe to our newsletter, you will receive an email asking you to confirm your subscription. Only with the confirmation of the registration does it become effective.

Furthermore, your subscription to the newsletter is logged. The logging includes the storage of the login and confirmation time, your specified data, and your IP address. If you make changes to your data, these changes are also logged.

Revocation

If you no longer wish to receive our newsletter, you can revoke your consent at any time for the future. To do so, you can click on the unsubscribe link at the end of each newsletter or send us an email to the following email address: info@reev.com

The revocation of consent does not affect the lawfulness of the processing carried out based on the consent until the revocation.

Use of “Salesforce”

We send our newsletter and marketing emails with the help of Salesforce Sales Cloud and Salesforce Marketing Cloud Account Engagement, provided by Salesforce Inc. (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA).

The email addresses of our newsletter recipients and their other data described in this notice are stored in the Salesforce cloud in the USA. Salesforce uses this information to send and evaluate the newsletter on our behalf. Furthermore, Salesforce may, according to its own information, use this data to optimise or improve its own services. However, Salesforce does not use the data of our newsletter recipients to write to them itself or to pass it on to third parties.

We have concluded the new Standard Contractual Clauses with Salesforce. Salesforce does not obtain the right to pass on your data.

You can find Salesforce’s privacy policy here.

Please check! You should definitely conclude the Standard Contractual Clauses with Salesforce and pay attention to additional measures and guarantees, as the provider is based in an unsafe third country. Additionally, a Data Transfer Impact Assessment (TIA) must be carried out.

g) Event / Webinar Form

We offer a form for those interested in our webinars. If you would like to participate, we require your name and email address to identify you as a participant in the webinar. To participate in the event, we will send you an access link in advance to the email address you provided. After the event, you will also receive another email with materials.

If you register for an event, the details you provide in the request form, including the contact data you provide, as well as your IP address, will be processed in accordance with Article 6(1)(b) and (f) GDPR for the performance of pre-contractual measures, which take place at your request or for the exercise of our legitimate interest, namely for the exercise of our business activity.

GoToWebinar

For the execution of our events, we use the service provider GoToWebinar, provided by LogMeIn Ireland Limited (Bloodstone Building Block C70 Sir John Rogerson’s Quay Dublin 2, Ireland). When registering for the event, the personal data you provide (name, email address, company, and phone number) will be processed. This includes your name, first name, company, phone number, and email address.

We have concluded a data processing agreement with GoToWebinar. GoToWebinar does not obtain the right to pass on your data.

Data processing takes place in Germany, the European Union, and the USA. The security of data processing in the USA is ensured by an adequate level of protection through the agreement of the EU Standard Contractual Clauses. Further information can be found in the provider’s privacy policy: https://www.logmeininc.com/en/legal/privacy.

The use of the GoToWebinar service is based on our legitimate interests in accordance with Article 6(1)(f) GDPR. Our interest lies in using a user-friendly and secure webinar tool that serves both our business interests and the expectations of users.

9. Analysis and Tracking Tools

We use the analysis and tracking tools listed below on our web portal. These tools help to ensure the continuous optimisation of our web portal and to tailor it to meet user needs.

We use these tools based on the consent you have given in accordance with Article 6(1)(a) GDPR. You can withdraw your consent at any time by changing the cookie settings. The processing carried out before the withdrawal remains lawful.

The respective data processing purposes and data categories can be found in the corresponding tools. Please note that we have no control over whether and to what extent the service providers carry out further data processing.

a) Google Analytics

We use Google Analytics on our website, a web analytics service provided by Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter “Google”).

Google Analytics uses cookies in this context (see section 7). The information generated by the cookie about your use of this website, such as:

  • Name and version of the browser used
  • Operating system of your computer
  • Website from which access is made (referrer URL)
  • IP address of the requesting computer
  • Time of the server request

is usually transferred to a Google server in the USA and stored there.

Since we have activated IP anonymisation on our web portal, your IP address will be truncated by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before transmission. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.

On our behalf, Google will use this information to evaluate your use of our web portal, compile reports on web portal activities, and provide us with other services related to web portal usage and internet usage. The IP address transmitted by your browser as part of Google Analytics is not merged with other Google data.

Please click here to access an overview of Google’s data protection.

b) Google AdWords

We use Google AdWords, an online advertising program from Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), on our website. Conversion tracking is also used. With this tool, Google AdWords sets a cookie on your device when you access our website via a Google advertisement.

The cookie expires after 30 days. It is not used for personal identification. If you visit our website and the cookie is still active, it will be recognisable to us and Google that you clicked on the corresponding ad and were redirected to our website. Each Google AdWords customer is assigned a different cookie. Cookies are therefore not traceable across the websites of AdWords customers.

The data collected using conversion cookies is used to create conversion statistics for AdWords customers. As a Google AdWords customer, we can determine the total number of users who clicked on our ad and were redirected to a website with a conversion tracking tag. We do not receive any information that could personally identify you as a user in this process.

If you reject the tracking process, you can deactivate the Google conversion tracking cookie via your internet browser.

Please use your browser’s help function for more information. You can find more details about Google’s privacy policy at http://www.google.co.uk/policies/privacy/.

c) Salesforce

We work with the CRM software Salesforce Sales Cloud provided by Salesforce Inc. (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA), through which we manage our customer data and conduct online marketing. Salesforce Sales Cloud is a CRM system that enables us, among other things, to manage existing and potential customers and customer contacts, and to organise sales and communication processes. The use of the CRM system also allows us to analyse our customer-related processes.

In this context, landing pages are analysed and reports are generated. “Web beacons” and cookies are used. The following personal data may be processed in this context:

  • IP address
  • Geographical location
  • Type of browser
  • Duration of visit
  • Pages accessed

The customer data is stored on Salesforce servers. We have concluded the new Standard Contractual Clauses with Salesforce. Salesforce does not obtain the right to pass on your data.

You can find Salesforce’s privacy policy here.

d) LinkedIn Conversion Tracking

We use LinkedIn’s conversion tracking function on our website. This allows us to target you with advertisements following your visit to our website. Additionally, LinkedIn provides reporting that shows how successful our advertisements are and how users interact with our website. If you were logged into LinkedIn before visiting our website, this will be recognised as part of conversion tracking, and you will be associated with your LinkedIn account as a visitor to our website.

You can find more information in LinkedIn’s privacy policy, which you can access here.

You also have the option to opt-out of interest-based advertising via LinkedIn. This can be done via this link.

10. Image, sound and video integration

YouTube

Our website uses the YouTube plugin, which is operated by Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland). 

If you activate the YouTube plugin during your visit, a connection to the YouTube servers is established and the YouTube server is informed which of our pages you have visited. This enables YouTube to assign your surfing behaviour directly to your personal profile. You can prevent this by logging out of your member account before visiting our website. 

For more information on the handling of user data, please see YouTube’s privacy policy at: https://www.google.de/intl/de/policies/privacy 

Through the integration of YouTube, Google Fonts are also dynamically reloaded by Google without the website operator or visitor actively determining this. 35The integration of these web fonts takes place through a server call, usually a Google server in the USA. This may result in the following being transmitted to the server and stored by Google: 

  • Name and version of the browser used
  • Website from which the request was initiated (referrer URL)
  • Operating system of your computer
  • Screen resolution of your computer 
  • IP address of the requesting computer
  • Language settings of the browser or operating system used by the user 

You can find more detailed information in Google’s privacy policy, which you can access here:  

www.google.com/fonts#AboutPlace:about  

www.google.com/policies/privacy/ 

The legal basis results from your consent pursuant to Art. 6 para. 1 p. 1 lit. a GDPR. You can revoke your consent at any time by changing the cookie setting on our website. 

11. Rights of the Data Subject

You have the following rights:

a) Access

In accordance with Article 15 GDPR, you have the right to request information about the personal data we process concerning you. This right of access includes information about:

  • The purposes of processing
  • The categories of personal data
  • The recipients or categories of recipients to whom your data has been disclosed or will be disclosed
  • The planned storage duration or at least the criteria used to determine the storage duration
  • The existence of the right to rectification, erasure, restriction of processing, or objection
  • The existence of a right to lodge a complaint with a supervisory authority
  • The source of your personal data if it was not collected by us
  • The existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details.

b) Rectification

In accordance with Article 16 GDPR, you have the right to request the immediate correction of inaccurate or incomplete personal data stored by us.

c) Erasure

In accordance with Article 17 GDPR, you have the right to request the immediate deletion of your personal data stored by us, unless further processing is necessary for one of the following reasons:

  • The personal data is still necessary for the purposes for which it was collected or otherwise processed
  • To exercise the right to freedom of expression and information
  • To fulfil a legal obligation required by European Union law or the law of the Member States to which the controller is subject, or to perform a task carried out in the public interest or in the exercise of official authority vested in the controller
  • For reasons of public interest in the area of public health in accordance with Article 9(2)(h) and (i) and Article 9(3) GDPR
  • For archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes in accordance with Article 89(1) GDPR, as far as the right referred to in a) is likely to render the achievement of the objectives of this processing impossible or seriously impair it
  • For the establishment, exercise, or defence of legal claims.

d) Restriction of Processing

In accordance with Article 18 GDPR, you have the right to request the restriction of the processing of your personal data for one of the following reasons:

  • You contest the accuracy of your personal data.
  • The processing is unlawful, and you oppose the deletion of the personal data.
  • We no longer need the personal data for processing purposes, but you require it for the establishment, exercise, or defence of legal claims.
  • You have objected to the processing in accordance with Article 21(1) GDPR.

e) Notification

If you have requested the rectification or erasure of your personal data or a restriction of processing in accordance with Article 16, Article 17(1), and Article 18 GDPR, we will notify all recipients to whom your personal data has been disclosed, unless this proves impossible or involves disproportionate effort. You can request that we inform you about these recipients.

f) Data Portability

You have the right to receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format.

You also have the right to request the transfer of this data to a third party, provided the processing is carried out by automated means and is based on consent in accordance with Article 6(1)(a) or Article 9(2)(a) or on a contract in accordance with Article 6(1)(b) GDPR.

g) Withdrawal of Consent

In accordance with Article 7(3) GDPR, you have the right to withdraw your consent at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. In the future, we may no longer continue data processing based on your withdrawn consent.

h) Right to Lodge a Complaint

In accordance with Article 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR.

i) Right to Object

If your personal data is processed based on legitimate interests in accordance with Article 6(1)(f) GDPR, you have the right to object to the processing of your personal data in accordance with Article 21 GDPR, provided that there are grounds relating to your particular situation or the objection is directed against direct marketing. In the latter case, you have a general right to object, which we will implement without requiring a particular situation to be specified. If you wish to exercise your right of withdrawal or objection, simply send an email to: support@reev.com.

j) Automated Individual Decision-Making, Including Profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision:

  • Is necessary for entering into, or the performance of, a contract between you and us
  • Is authorised by Union or Member State law to which we are subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests
  • Is based on your explicit consent.

However, such decisions must not be based on special categories of personal data referred to in Article 9(1) GDPR unless Article 9(2)(a) or (g) GDPR applies, and suitable measures to safeguard your rights and freedoms and legitimate interests have been taken.

Regarding the cases referred to in i) and iii), we will implement suitable measures to safeguard your rights and freedoms and legitimate interests, including at least the right to obtain human intervention on our part, to express your point of view, and to contest the decision.

12. Amendment of the privacy policy

If we change the privacy policy, this will be indicated on the website.

Status: 01.09.2023

Do you have any questions?

We would be happy to send you further information or to provide you with individual advice in person.