Protecting your data and preserving your privacy is of utmost importance to us. For this reason, we have established security and data protection provisions that ensure the greatest possible protection of your data.
We guarantee compliance with statutory data protection provisions. All employees of the company are bound by these provisions.
Below, we would like to explain which data we process when and for what purpose and on what legal basis. We would like to explain to you how the services we offer work and how the protection of your personal data is guaranteed
Pursuant to Article 4 no. 1 GDPR personal data means any information relating to an identified or identifiable natural person. A natural person is considered identifiable if he or she can be identified directly or indirectly. Further information on this can be found in Article 4 no. 1 GDPR.
The controller of processing personal data within the meaning of Article 4 no. 7 GDPR is:
v. Rundstedt & Partner GmbH
2) Contact for data protection
If you have any questions regarding the processing of your personal data, as well as your rights regarding data protection, please contact:
v. Rundstedt & Partner GmbH
Eschersheimer Landstraße 14
60322 Frankfurt am Main
Tel. +49 (0)69 6199 641
3) Log files
Every time you visit our website, we automatically collect data and information from your device’s system and store it in so-called server log files. This data is information that relates to an identified or identifiable natural person (here: website visitor). The data is automatically transferred by your browser when you visit our website. This includes the following information:
The purpose of this processing is to make our website accessible from your device and to enable our website to be displayed correctly on your device or in your browser. Furthermore, the data helps us to optimise our website and to ensure the security of our systems. This data is not evaluated for marketing purposes.
The legal basis for processing is Article 6(1)(f) GDPR. We have a legitimate interest in presenting you with a website optimised for your browser and in enabling communication between our server and your terminal. The latter requires in particular the processing of your IP address.
The recipient of the data is our server host, which works for us under a commissioned data agreement.
In your browser settings you can restrict or completely prevent cookies from being stored. You can also arrange for the automatic deletion of cookies when closing the browser window. You can find how to delete cookies in the most common browsers and change the cookie settings here:
Please note that a general deactivation of cookies may lead to functional limitations of our website.
We use necessary cookies that are required for the operation of the website. These ensure functions without which you could not use the website as intended. The legal basis for the processing are our legitimate interests in maintaining a functional website and thus the result of a balancing of interests according to Art. 6(1)(f) GDPR.
Furthermore, we use optional cookies for the purposes of website analysis and tracking as well as to improve our website offering. In the following, we describe the tools used on this website and the associated optional cookies in detail. We use optional cookies only with your prior consent, Art. 6(1) GDPR and § 25 para. 1 TTDSG. If you visit our website for the first time, a banner will appear in which we ask for your consent to the use of optional cookies.
If you give your consent to this, we will store a cookie on your computer and the banner will not be displayed again for the lifetime of the cookie. After that, or if you actively delete this cookie beforehand, the banner will be displayed again the next time you visit our website to ask for your consent again.
If you agree to the use of optional cookies, you consent at the same time to the processing of your personal data in third countries outside the European Union, which have an insufficient level of data protection according to EU standards (e.g. USA). There is a risk that authorities there may be able to access your data even without legal protection. We will inform you about potential processing in third countries and the measures we have taken to protect your personal data in the individual sections on our processors.
5) Information about Google services
On our website we use various services of Google Inc. (“Google”), 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
By integrating Google services, Google may collect information (including personal data) and process it. The possibility of Google also transferring the information to a server in a third country cannot be ruled out.
The transmission to the USA depends on the function in which personal data is transmitted. As the responsible party, we ourselves may transfer data to Google for further use in the USA. The transfer can be based on standard contractual clauses. Google has undertaken to comply with the Standard Contractual Clauses (SCC) for the transfer of personal data to third countries under Regulation (EU) 2016/679.
More information on the Standard Contractual Clauses can be found at ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractuals-clauses-scc_en as well as at policies.google.com/privacy/frameworks
We cannot on our own influence which data Google actually collects and processes. However, Google states that the following information (including personal data) may be processed among others:
If you are signed in to your Google account, Google may add the processed information to your account and treat it as personal information, depending on your account settings, see www.google.de/policies/privacy/partners/ in particular.
Google states the following, among other things:
“We may combine personal information from one service with information and personal information from other Google services. This makes it easier for you to share content with friends and acquaintances, for example. Depending on your account settings, your activities on other websites and apps may be linked to your personal information in order to improve Google services and advertising displayed by Google.” (https://www.google.com/intl/de/policies/privacy/index.html)
How to delete cookies in the most common browsers is explained in section “4) Cookies”.
You can find information about Google’s privacy settings at privacy.google.com/take-control.html
6) Use of Google Analytics
On our website we use Google Analytics, a web analytics service provided by Google Inc. (“Google”), 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Furthermore we use the “Google-Optimize” tool in addition to Google Analytics.
Google Analytics uses “cookies”; these are text files which are stored on your device and enable the analysis of the websites you visited. Google Analytics also uses so-called web beacons (invisible graphics). These web beacons can be used to evaluate information such as visitor traffic on websites. The information generated by cookies and web beacons about the use of our website (including the users’ IP address) will be transferred to a Google server, probably in the U.S. or other third countries, and stored there. This information may be shared by Google with Google’s contractual partners.
The following data types are processed by Google:
In addition, you can find more detailed information on the information processed at www.google.com/intl/de/policies/privacy/ under “Data we receive as a result of you using our services”, and at privacy.google.com/businesses/adsservices/.
We use Google Analytics solely with activated IP anonymisation (“anonymize IP”). In this manner, your IP address is abbreviated by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and abbreviated there.
Furthermore, we have concluded a processing agreement with Google for the use of Google Analytics and Google Optimize (Article 28 GDPR). Google processes the data on our behalf for the purpose of evaluating your use of the website, compiling reports on website activities for us and providing us with other services related to website and internet use. If necessary, Google may transfer this information to third parties to the extent that this is prescribed by law or where third parties process the data on Google’s behalf. A list of these subcontractors can be found at https://privacy.google.com/businesses/subprocessors/.
Through the integration of Google Analytics, we aim to analyse user behaviour on our website and be able to react to it. This enables us to continuously improve our offer. We use Google Optimize to understand the effect of adjustments to our website on our users and to constantly optimise our website. For this purpose, users are presented with different versions of our website and various criteria are defined (e.g. determining whether a section can be found based on the click behaviour of users). We are only presented with statistics, it is not possible for us to draw conclusions about a single person based on these statistics.
The processing of your personal data takes place exclusively on the basis of your consent in accordance with Article 6(1)(f) GDPR. Our legitimate interest in this is based on the great benefit that the functions described above have for our offer. The statistical evaluation of user behaviour enables us in particular to react and optimise our offer in line with the interests of our customers. The consent can be revoked at any time.
You can prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout
You can also prevent data being captured by Google Analytics by managing the cookie settings. An opt-out cookie is then set which prevents your data being captured the next time you visit this website. How to delete cookies in the most common browsers and how to change the cookie settings is explained in section “4.) Cookies”.
6.1) Using the Google Tag Manager
On our website we use Google Tag Manager of Google Inc. (“Google”), Gordon House, Barrow Street, Dublin 4, Irland.
The Google Tag Manager is a solution that allows us to manage website tags through a single interface. The tool itself is a cookie-less domain and does not collect any personal data. It triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If recording has been deactivated on domain or cookie level, this setting will remain in place for all tracking tags implemented with Google Tag Manager.
7) Use of retargeting and remarketing
This website uses the “Google Analytics Remarketing” tool of Google Inc. (“Google”), Gordon House, Barrow Street, Dublin 4, Irland.
The installation of cookies for Google Remarketing and Google AdWords Conversion Tracking can be prevented by adjusting the respective browser software by visiting the website http://www.google.com/policies/privacy/ads/ and changing the relevant setting. You can also find further information on cookies under point "4) Cookies".
8) Use of Google Maps
We use Google Maps on our website. Google Maps is a service of Google Inc.("Google"), 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
The Google-Maps plug-in is integrated by embedding the service on our website by means of a so-called “iFrame”. When loading this iFrame, Google may collect information (including personal data) and process it. The possibility of Google also transferring the information to a server in a third country cannot be ruled out.
For our part, we do not collect any data when you use Google Maps via our website.
Through the integration of Google Maps, we aim to be able to show you our address and provide you with further information for travelling to our offices. We can also present locations to you through this integration of Google Maps, with you not being limited to individual map sections and being able to independently research distances etc.
The legal basis for the processing of personal data described here is Article 6(1) f GDPR. Our necessary legitimate interest in this lies in the great benefit that Google Maps offers. Through the integration, we do not have to show the directions to the respective places by means of maps or the like, but enable each user to plan his or her own journey. Google also has a legitimate interest in the collected (personal) data in order to improve its own services.
9.) Google Ads
We use the tool "Google Ads" (formerly Google AdWorks) of Google Ireland Ltd. (provider of the service), Gordon House, Barrow Street, Dublin 4, Ireland on our website.
We use the offer of Google Ads Conversion to draw attention to our offers with the help of advertising media (so-called Google Ads) on external websites. We can determine how successful the individual advertising measures are in relation to the data of the advertising campaigns. In this way, we pursue the interest of showing you advertising that is of interest to you, making our website more interesting for you and optimizing our advertising costs.
These advertisements are delivered by Google via so-called "ad servers". For this purpose, we use ad server cookies, which can be used to measure certain parameters for measuring success, such as display of the ads or clicks by you. If you access our website via a Google ad, Google Ads will store a cookie on your end device. For this cookie, the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that you no longer wish to be addressed) are usually stored as analysis values.
These cookies enable Google to recognize your internet browser. If you visit certain pages of our website and the cookie stored on your computer has not yet expired, Google and we can recognize that you clicked on the ad and were redirected to this page. We ourselves do not collect and process any personal data in the aforementioned advertising measures. We only receive statistical evaluations from Google. Based on these evaluations, we can see which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising tools, in particular we cannot identify you from this information.
Due to the marketing tools used, your browser automatically establishes a direct connection with Google's server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of Ads Conversion, Google receives the information that you have called up the corresponding part of our website or clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is the possibility that Google learns your IP address and stores it.
The use of this service is based on your consent according to Art. 6 para. 1 p. 1 lit. a) DSGVO and § 25 para. 1 TTDSG. The consent can be revoked at any time.
The installation of cookies for Google Ads can be prevented by a setting of the respective browser software by calling up the website www.google.com/policies/privacy/ads/ and changing the corresponding setting. Further information on cookies can also be found under point4.) Cookies.
Further information and the data protection provisions can be found in Google's data protection declaration at: policies.google.com/technologies/ads;
10) Newsletter and knowledge base (Evalanche)
a ) General information
On our website you have the possibility of registering for our newsletter. The newsletter is tailored to your individual interests.
In our knowledge base you have the possibility of requesting various content such as checklists, guides, e-books and white papers, all of which require registration. After you have registered for the content, you can access the download.
If you sign up for our free webinars, registration is also required. After signing up for the webinar, you will receive the access data and, if necessary, further information for participation in the webinar.
Our newsletter and our other content are sent with the newsletter service Evalanche. Evalanche is a service of SC-Networks GmbH, Enzianstr. 2, 82319 Starnberg, Germany, telephone: +49 (0)8151 555 160, fax: +49 (0)8151 555 1629, e-mail: firstname.lastname@example.org, website: www.sc-networks.com. Within the framework of a commissioned data processing agreement Evalanche processes your personal data on our behalf and according to our instructions.
Evalanche is a member of the Certified Senders Alliance (https://certified-senders.org/de/teilnehmer/ ). In addition, SC-Networks GmbH holds various other certificates regarding data and IT security, e.g. from TÜV SÜD, TÜV Hessen in compliance with ISO/IEC 27001:2013 and is a member of the TeleTrust-Initiative “IT-Security made in Germany”, a competence network supported by the Federal Association for IT Security e.V. For more details on certifications and memberships, please visit www.sc-networks.de/produkt/zertifikate/ .
In addition, the login data is also transferred to our CRM system. Our CRM system is technically provided by our service provider itdesign (itdesign GmbH, Friedrichstraße 12, 72072 Tübingen, Germany). Within the framework of a commissioned data processing agreement itdesign processes your personal data on our behalf and according to our instructions.
b) Sign up/registration
If you sign up for our newsletter or a webinar or if you download any of our content, we process the following mandatory information from you, in particular:
In addition, we process further voluntary information from you (e.g. your name), if you provide it, as well as various other information, such as object and profile reference, date and time, IP address, action type (registration, update, permission change) and the metadata of the action.
In order to be able to display the proof of consent and cancellation in a legally compliant manner, we keep the following data for each user profile, which is generated via an Evalanche web form with an e-mail address confirmed by double opt-in procedure, for the events “registration/change”, “confirmation of the link” and “cancellation of the newsletter”:
c) Statistical evaluation
With the help of the Evalanche service we analyse the success and effectiveness of our newsletter (campaigns) as well as our download and webinar offer. In doing so, we especially evaluate, for example, whether and when you open the e-mails sent to you, whether and which links you click or how you otherwise handle the e-mails.
For this purpose, for statistical surveys and to build interest profiles, Evalanche sets and stores cookies. This information is processed on a personal basis. Furthermore, the e-mails sent contain so-called web beacons, also called tracking pixels. These are one-pixel image files that link to our website and thus enable us to evaluate your user behaviour. This is done by collecting web beacons that are assigned to your e-mail address and linked to your own ID. Links contained in the newsletter also contain this ID. With the data thus obtained, we create a user profile in order to provide you with the newsletter tailored to your interests.
d) Basis of lawfulness
By signing up for the newsletter, for our webinars and by downloading our content, you expressly consent to the processing of your personal data (Article 6(1)(a) GDPR).
In a first step, you enter the mandatory data (e.g. e-mail address) and agree to the processing of your personal data by activating the box provided for this purpose. The sign up form is provided by Evalanche, thus letting your data be transferred directly to Evalanche. In a second step, you will then automatically receive an e-mail with a confirmation or activation link, which you must also confirm or activate. In this way we ensure that the e-mail address entered on our website also belongs to you. If the confirmation or activation link is not used, the corresponding e-mail address will not receive any further e-mails from us and the data entered will be deleted.
The purpose of collecting and processing the user's e-mail address is to be able to deliver the requested information. The collection and processing of further personal data within the scope of the sign up process is intended to prevent misuse of our information offer or the e-mail address used. Furthermore, the processing described above serves the purpose of enabling us to prove that you have given your consent. The purpose of processing your personal data by our CRM system is to be able to address you as a customer and use the information for marketing purposes.
The purpose of processing cookie and measurement data is to create an individual newsletter tailored to the interests of the recipient and to track the success and reach of our newsletters.
The legal basis for the processing of further personal data as well as the processing of your personal data within the framework of our CRM system is our legitimate interest in accordance with Article 6(1)(f) GDPR. We have a legitimate interest in being able to prove that you have given your consent. Furthermore, we have a legitimate interest in preventing or being able to prove misuse of our information offer. The consent can be revoked at any time.
a ) General information
We use the “Inxmail” service for our event notifications. Inxmail is a service of Inxmail GmbH, Wentzingerstr. 17, 79106 Freiburg, Germany, e-mail: email@example.com.
Within the framework of a commissioned data processing agreement Inxmail processes your personal data on our behalf and according to our instructions.
(b) Sign up/registration
If you sign up for our event newsletter, we will process the following mandatory data from you, in particular:
In addition, we process further voluntary information from you (e.g. your name), if you provide it, as well as various other information, such as date and time and IP address.
In order to be able to display the proof of consent and cancellation in a legally compliant manner, we keep the following data for each user profile for the events “registration/change”, “confirmation of the link” and “cancellation of the event newsletter”:
The collection and processing of the e-mail address and the location of the user pursues the purpose of being able to deliver the event newsletter and to be able to present the user with events from his vicinity. The collection and processing of further personal data during the registration process serves the purpose of preventing misuse of our event newsletter or the e-mail address used. In addition, the processing described above serves to enable us to prove that you have given your consent.
c) Statistical evaluation of the event newsletter
Using the Inxmail service, we analyse the success and effectiveness of our event invitations anonymously for statistical purposes.
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. Accordingly, your registration data will only be stored as long as the subscription to the newsletter is active. The legal basis for the processing of your personal data for the event newsletter is your consent pursuant to Art. 6 (1) p. 1 lit. a) DSGVO. The consent can be revoked at any time.
12) Using Adobe Connect/Webinaris
We offer various webinars on our website, which we conduct using Adobe Connect (“AC”). AC is a service or software from Adobe Systems Incorporated, 601 Townsend St., San Francisco, CA 94103, USA. Furthermore, on the Adobe website accessible from Germany, the subsidiary Adobe Systems Software Ireland Limited, 4–6 Riverwalk, Citywest Business Campus, Dublin 24, Republic of Ireland is listed as being responsible for Europe.
AC is integrated via a corresponding interface from Adobe. Through the integration, Adobe collects information (including personal data) and processes it. The possibility of Adobe also transferring the information to a server in a third country (e.g. USA) cannot be ruled out.
As is evident from the Adobe Systems Incorporated Privacy Shield certification (available at www.privacyshield.gov/list under the search term “Adobe Systems Incorporated”), Adobe has undertaken to comply with the EU-US Privacy Shield Framework regarding the collection, use, and storage of personal data from third countries, respectively. Adobe has certified that it adheres to the Privacy Shield Principles.
Within the framework of a commissioned data processing agreement Adobe processes your personal data on our behalf and according to our instructions. This may include the following data:
If you are signed in to your Adobe account, Adobe can add the processed information to your account.
You can prevent this information from being added directly by logging out of your Adobe account.
Further information can be found at https://www.adobe.com/privacy/policy.html
Through the integration of AC we aim to be able to offer you various webinars.
The legal basis for the processing of personal data described here is Art. 6 (1) p. 1 lit. b) DSGVO - insofar as the webinars are conducted within the scope of contractual relationships - as well as our legitimate interest in the professional handling of our webinars pursuant to Art. 6 (1) p. 1 lit. f DSGVO. The consent can be revoked at any time.
13) Contact form
On our website there is a contact form which you can use for electronic contact. If you contact us via this contact form, the data entered in the input fields will be processed by us.
This includes the following data as mandatory information:
Furthermore, you can add further data as voluntary information. This may simplify and speed up the processing of your request. The following data is potentially affected:
Mandatory and voluntary information is treated equally by us. The mandatory information is necessary to be able to contact you and process your request.
Please note that the extent of the personal data collected in the contact form also depends on the data you yourself disclose in the message text of the contact form.
The purpose of the processing of personal data within the scope of the mandatory and voluntary information is to process the contact enquiry and to be able to contact the enquirer in order to respond to the request.
The legal basis for the processing of personal data described here is Article 6(1)(f) GDPR. It is our legitimate interest to offer you the possibility to contact us at any time so that we can answer your questions.
The personal data are processed only as long as necessary for the provision of the function.
The recipient of the data is our server host, which is working for us within the scope of a commissioned data processing agreement.
14) Making contact
You have the possibility to contact us by mail, telephone, fax or e-mail.
If you contact us by post, we can process, in particular, your address data (e.g. surname, first name, street, town/city, postcode), date and time of receiving the letter as well as such data resulting from your letter itself.
If you contact us by telephone, we can process your telephone number and, if necessary, in the course of the conversation on request your name, your e-mail address, the time of the call and details of your request.
If you contact us by fax, we can process, in particular, the fax number or the source identifier as well as the data resulting from the fax.
When you contact us by e-mail, your e-mail address, the time of the e-mail and the data resulting from the message text (and attachments if applicable) are processed.
The purpose of processing the above-mentioned data is to process the contact enquiry and to be able to contact the enquirer in order to respond to the request.
The legal basis for the processing of personal data described here is Article 6(1)(f) GDPR. It is our legitimate interest to offer you the possibility to contact us at any time and to answer your questions.
The personal data will be deleted as soon as it is no longer required for the purpose for which it was collected.
15) Social networks & external links
In addition to this website, we also maintain profiles in various social media, which you can reach via the corresponding buttons on our website. If you visit such a profile, personal data may be transmitted to the provider of the social network. It is possible that in addition to the storage of the data you specifically entered in this social medium, further information may also be processed by the social network provider.
In addition, the social network provider may process the most important data of the computer system from which you visit it – for example, your IP address, the type of processor used and browser version including plug-ins.
If you are logged in with your personal user account on the respective network while visiting such a website, this network can assign the visit to this account.
The purpose and scope of data collection by the respective medium and the further processing of your data there as well as your rights in this regard can be found in the respective provisions of the respective controller, such as:
Fanpage Facebook: Insofar as you communicate directly with us via our fan pages on Facebook and Instagram or share personal content with us, we are responsible for processing your data.
16) Data security
We secure our website and other systems by technical and organizational measures against loss, destruction, access, modification or distribution of your data by unauthorised persons. However, despite regular checks, complete protection against all risks is not possible.
You have the right to withdraw any consent you have given at any time with future effect, without affecting the lawfulness of the processing carried out on the basis of the consent up to the point of withdrawal.
You can send or communicate your revocation of consent to us at any time (e.g. by e-mail to firstname.lastname@example.org).
19) Rights of the data subject
In principle, you have the following rights:
For enquiries of this kind, please contact email@example.com. Please note that in the case of such requests, we must ensure that the person making contact is indeed the data subject.
You have the right to appeal to a data protection supervisory authority, without prejudice to any other administrative or judicial remedy.
Automated decision making does not take place on our website.
20) In addition, for users of the myTURN app
Insofar as we cite our legitimate interest (Article 6(1)(f) GDPR) as the basis of legality, you have a right to object in accordance with Article 21 GDPR.
Pursuant to Article 21 GDPR you have the right to object to the processing of personal data at any time. We will then no longer process the personal data for direct marketing purposes or any related profiling.
Nor do we process your personal data for other purposes following an objection, unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or if the processing is for the purposes of asserting, exercising or defending legal claims (for instance, see Article 21(1) GDPR, so-called “limited right to object”). In this case, you must give reasons for the objection based on your particular situation.
You may also object to the processing of your personal data for reasons arising from your particular situation, for scientific or historical research purposes or for statistical purposes in accordance with Article 89(1) GDPR, unless the processing is necessary for the performance of a task carried out in the public interest (see Article 21(6) GDPR).
You can send or communicate your objection to us at any time (e.g. by e-mail to firstname.lastname@example.org).