Privacy policy

Privacy Information of Question-Answering-Systems

1. General information

The protection of your data is of particular concern to the operator of this website, Retresco GmbH. We process your data in accordance with the applicable legal provisions on the protection of personal data, in particular the EU General Data Protection Regulation (EU GDPR) and the country-specific implementing laws applicable to us. With the help of this data protection declaration, we inform you comprehensively about the processing of your personal data by Retresco GmbH and the rights to which you are entitled.
Personal data is information that makes it possible to identify a natural person. This includes in particular name, date of birth, address, telephone number, e-mail address but also your IP address.
Anonymous data exists if no personal reference to the user can be made.

1.1 Responsible party and data protection officer

Retresco GmbH
Grünberger Street 44a
10245 Berlin
Phone +49 (0)30 60 98 39 600
Fax +49 (0)30 60 98 39 608
E-mail: contact[at]retresco.de
Contact of the data protection officer: datenschutz[at]retresco.de

1.2 Your rights as a data subject

First of all, we would like to inform you about your rights as a data subject. These rights are standardised in Art. 15 – 22 EU-DS-GVO. This includes:

The right to information (Art. 15 EU-DS-GVO),
The right to erasure (Art. 17 EU-DS-GVO),
The right to rectification (Art. 16 EU-DS-GVO),
The right to data portability (Art. 20 EU-DS-GVO),
The right to restriction of data processing (Art. 18 EU-DS-GVO),
The right to object to data processing (Art. 21 EU-DS-GVO).

To assert these rights, please contact: datenschutz[at]retresco.de. The same applies if you have questions about data processing in our company. You also have the right to lodge a complaint with a data protection supervisory authority.

1.3 Rights of objection

Please note the following in connection with rights of objection:
If we process your personal data for the purpose of direct advertising, you have the right to object to this data processing at any time without giving reasons. This also applies to profiling insofar as it is related to direct advertising.
If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes. The objection is free of charge and can be made form-free, preferably to: datenschutz@retresco.de.
In the event that we process your data for the protection of legitimate interests, you may object to this processing at any time on grounds relating to your particular situation; this also applies to profiling based on these provisions.
We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

1.4 Purposes and legal bases of data processing

When processing your personal data, we comply with the provisions of the EU Data Protection Regulation and all other applicable provisions of data protection law. Legal bases for data processing result in particular from Art. 6 EU-DS-GVO.
We use your data to initiate business, to fulfil contractual and legal obligations, to implement the contractual relationship, to offer products and services and to strengthen the customer relationship, which may also include analyses for marketing purposes and direct advertising. The legal basis for the use of your data may be a law, a contract or legitimate interest.
Your consent also constitutes a permission requirement under data protection law. We will inform you about the purposes of the data processing and about your right of revocation. If the consent also refers to the processing of special categories of personal data, we will expressly point this out to you in the consent, Art. 88 (1) EU-DS-GVO.
Processing of special categories of personal data within the meaning of Art. 9(1) EU GDPR will only take place if this is required by legal provisions and there is no reason to assume that your legitimate interest in the exclusion of the processing outweighs this, Art. 88(1) EU GDPR.

1.5 Disclosure to third parties

We will only pass on your data to third parties within the framework of the statutory provisions or with the corresponding consent. Otherwise, we will not pass on your data to third parties unless we are obliged to do so by mandatory legal provisions (passing on data to external bodies such as supervisory authorities or law enforcement agencies).

1.6 Recipients of the data / categories of recipients

Within our company, we ensure that only those persons receive your data who need it to fulfil contractual and legal obligations.
In many cases, service providers support our specialist departments in the fulfilment of their tasks. The necessary data protection contracts have been concluded with all service providers. We use services such as the provision of technical infrastructure from software and communication service providers.

1.7 Third country transfer / intention to transfer data to third countries

Data is only transferred to third countries (outside the European Union or the European Economic Area) if this is necessary for the performance of the contractual relationship, is required by law or you have given us your consent.  Compliance with the level of data protection is ensured.

1.8 Storage period of data

We store your data for as long as it is required for the respective processing purpose. Please note that numerous retention periods require that data continues to be stored. This applies in particular to retention obligations under commercial or tax law (e.g. German Commercial Code, German Fiscal Code, etc.). If there are no further storage obligations, the data is routinely deleted after the purpose has been achieved.
In addition, we may retain data if you have given us your permission to do so or if legal disputes arise and we use evidence within the framework of statutory limitation periods, which can be up to thirty years; the regular limitation period is three years.

1.9 Secure transmission of your data

In order to protect the data stored with us in the best possible way against accidental or intentional manipulation, loss, destruction or access by unauthorised persons, we use appropriate technical and organisational security measures. The security levels are continuously reviewed in cooperation with security experts and adapted to new security standards.
The exchange of data to and from our website is always encrypted. We offer HTTPS as the transmission protocol for our website, in each case using the current encryption protocols. In addition, there is the option of using alternative communication channels (e.g. by post).

1.10 Obligation to provide data

Various personal data are necessary for the establishment, implementation and termination of the contractual relationship and the fulfilment of the associated contractual and legal obligations. The same applies to the use of our website and the various functions it provides.
We have summarised details of this for you in the above point. In certain cases, data must also be collected or made available due to legal requirements. Please note that it is not possible to process your enquiry or carry out the underlying contractual relationship without providing this data.

2. Categories, sources and origin of the data

Which data we process is determined by the respective context: this depends on whether, for example, you place an order online or enter an enquiry in our contact form, whether you send us an application or submit a complaint.
Please note that we may also provide information separately in a suitable place for special processing situations, e.g. when you upload application documents or submit a contact enquiry.
When you visit our website, we collect and process the following data:

Name of the internet service provider
Details of the website from which you are visiting us
Web browser and operating system used
The IP address assigned by your internet service provider
Files requested, amount of data transferred, downloads/file exports
Information about the web pages you call up from us, including date and time

For reasons of technical security (in particular to defend against attempted attacks on our web server), this data is stored in accordance with Art. 6 Para. 1 lit. f EU-DS-GVO. After 7 days at the latest, anonymisation takes place by shortening the IP address so that no reference to the user is made.

2.1 Microsoft Booking (Art. 6 para. 1 lit. a EU-DS-GVO)

We collect and process personal data for the online booking of meeting appointments.
For this purpose, we use the “Microsoft Bookings” service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. The connection to the service is only established when you call up the online booking function via a button on our website. Further information on the handling of user data can be found in the Microsoft data protection declaration (https://learn.microsoft.com/de-de/microsoft-365/bookings/bookings-faq?view=o365-worldwide#datenschutz).
Please note that you are not obliged to use Microsoft Bookings to make an appointment. If you do not wish to use the service, please use another of the contact options offered to make an appointment.
The legal basis for the data transfer, storage and processing is your consent Art. 6 para. 1 lit. a EU-DS-GVO.
The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected.
You have the option to revoke your consent to data processing or to object to the use of the data at any time. In this case, the intended contact with the user is no longer possible, or communication that has already begun can no longer be continued.

2.2 Contact form / contact by e-mail, request for demo (Art. 6 para. 1 lit. a, b EU-DS-GVO)

Our website contains a contact form that can be used for electronic contact. In addition, a demo can be requested; here, too, the data is used for dispatch. If you write to us via the contact form or via the demo form, we process the data you provide in the forms to contact you and answer your questions and requests or to send you the demo.
In doing so, the principle of data economy and data avoidance is observed in that you only have to provide the data that we absolutely need from you. In addition, your IP address is processed out of technical necessity and for legal protection. Some fields are optional (e.g. to answer your questions more individually).
If you contact us by e-mail, we will process the personal data provided in the e-mail solely for the purpose of processing your enquiry. If you do not use the forms offered for contacting us, no further data collection will take place.
Within the scope of a contact request, we collect and process the following data:

Name, first name
Contact details
Company
Telephone number
E-mail address
Branch
Message itself

Within the scope of the demo request we collect and process the following data:

Name, first name
Company
E-mail address

In the context of advertising consent (opt-ins), we process the following data:

SalutationSurname, first name
Address
E-mail, contact details
Date and time of the advertising consent
IP address in the opt-in individual form

You can withdraw your consent at any time without giving reasons. This can be done informally, if possible by e-mail to: datenschutz[at]retresco.de or in writing to:
Data Protection
Retresco GmbH
Grünberger Street 44a
10245 Berlin

2.3 Zoho CRM

Personal data that you have communicated to us through a contact request, the download of content or direct business relations are processed and maintained by us with the help of a customer relationship management system (CRM system) (Art. 6 Para. 1 lit f. EU-DS-GVO).
The operator and provider of Zoho.eu is: Zoho Corporation B.V., Beneluxlaan 4B, 527 HT UTRECHT, The Netherlands.
The CRM system is cloud-based. You can find more information on Zoho’s website: https://www.zoho.eu/privacy.html (text in English) Within the registration mask, you also have the option to give us advertising consent. Of course, it is also possible to register without giving your advertising consent. If you give us your consent by ticking the respective checkbox, we will also process your data in order to send you information and offers about our products / services.

2.4 HubSpot (Art. 6 para. 1 lit. a EU-DS-GVO, § 25 para. 1 TTDSG)

Our website uses the software HubSpot. HubSpot is a software company from the USA with a branch in Ireland. Contact: HubSpot, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland, Phone: +353 1 5187500.
The software helps us to improve our marketing by means of statistical analyses and evaluations of logged user behaviour, among other things. Cookies are used. You can prevent the storage of cookies at any time by setting your browser software accordingly or delete the cookies already stored.
Please note that if cookies are blocked, you may not be able to make full use of the services provided on our website. For more information, please refer to the Terms of Use and Privacy Policy of HubSpot Inc. at http://www.hubspot.com/terms-of-service and at http://www.hubspot.com/privacy-policy.
Our sign-up service allows visitors to our website to learn more about our company, download content, and provide their contact information and other demographic information. This information, as well as the content of our website, is stored on servers operated by our software partner HubSpot. It may be used by us to contact visitors to our website and to determine which of our company’s services/topics are of interest to them. All information we collect is subject to this privacy policy. We use all information collected solely to optimise our marketing.
For the arrangement of consultation discussions, personal data is collected and processed for making contact. The data collected includes first name, surname, email address, company, preferences for making contact, as well as the arrangement of the consultation discussion. The provision of this data is necessary for the consultation discussions. The legal basis for this is the implementation of pre-contractual measures or the fulfilment of a contract. The data will not be passed on to third parties.
You can view HubSpot’s privacy policy here: https://legal.hubspot.com/data-privacy

2.5 Use of SalesViewer® technology

On this website, data is collected and stored for marketing, market research and optimisation purposes using the SalesViewer® technology of SalesViewer® GmbH on the basis of the legitimate interests of the website operator (Art. 6 para.1 lit.f DSGVO).
For this purpose, a javascript-based code is used to collect company-related data and the corresponding use. The data collected with this technology is encrypted via a non-reversible one-way function (so-called hashing). The data is immediately pseudonymised and not used to personally identify the visitor to this website.
The data stored within the framework of Salesviewer will be deleted as soon as it is no longer required for its intended purpose and there are no legal obligations to retain data to prevent its deletion.
You can object to the collection and storage of data at any time with effect for the future by clicking on this link https://www.salesviewer.com/opt-out in order to prevent the collection of data by SalesViewer® within this website in the future. This will place an opt-out cookie for this website on your device. If you delete your cookies in this browser, you must click this link again.

2.6 Newsletter (Art. 6 para. 1 lit. a EU-DS-GVO)

You can subscribe to a free newsletter on our website. The e-mail address and your name provided when registering for the newsletter will be used to send the personalised newsletter.
The principle of data economy and data avoidance is observed, as only the e-mail address (or name in the case of personalised newsletters) is marked as a mandatory field. For technical necessity and for legal protection, your IP address is also processed when you order the newsletter.
We use the so-called double opt-in procedure for sending newsletters by e-mail. This means that you will only receive advertising by e-mail if you have previously expressly confirmed that you want us to activate the newsletter service. We do this by sending you a notification e-mail and asking you to confirm that you would like to receive our newsletter at this e-mail address by clicking on a link contained in this e-mail.
You can, of course, unsubscribe at any time using the unsubscribe option provided in the newsletter and thus revoke your consent. Furthermore, you also have the option of unsubscribing from the newsletter at any time directly via our website.
We also use a newsletter tracking pixel. This is a technology that records how users read our newsletter, which information is clicked on particularly frequently and which is not. The purpose is to optimise our newsletter so that it is even more appealing, easier to read and more informative for you. The collected data is stored anonymously and is not assigned to your person. The data collected is purely statistical in nature, as it is only collected anonymously and is not associated with your other personal data.

3. cookies (Art. 6 para. 1 lit. f EU-DS-GVO, § 25 para. 2 TTDSG / Art. 6 para. 1 lit a EU-DS-GVO, § 25 para. 1 TTDSG with consent)

Our website uses so-called cookies in several places. They serve to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your terminal device.
These cookies enable us to analyse how users use our websites. This enables us to design the website content according to visitor needs. In addition, the cookies enable us to measure the effectiveness of a particular advertisement and to have it placed, for example, depending on the thematic interests of the user. The legal basis for this is Art. 6 para. 1 lit. a EU-DS-GVO, § 25 para. 1 TTDSG; in the case of cookies that are technically necessary for the operation of the website, Art. 6 para. 1 lit. f EU-DS-GVO forms the legal basis. Furthermore, we use cookies without your consent insofar as their sole purpose is the storage of or access to information stored in the terminal device for the transmission of messages or these are absolutely necessary in order to be able to provide the service expressly requested by you, § 25 para. 2 TTDSG.
Most of the cookies we use are so-called “session cookies”. These are automatically deleted after your visit. Permanent cookies are automatically deleted from your computer when their validity period (usually six months) is reached or you delete them yourself before the validity period expires.
You can give your consent via our cookie consent tool and revoke it at any time (link below the footer).
We use the following cookies:
Proprietary cookies:
This type of cookies is directly controlled by Retresco GmbH. Depending on the purpose, they remain stored permanently – even after the session has ended – (so-called persistent cookies, e.g.: implementation of opt-out) or are deleted when the browser is closed (so-called session cookies; they are only valid for one browser session).
Third-party cookies:
This type of cookie is controlled by third-party providers. Third-party providers are providers who display advertising banners on other websites, in particular for Retresco GmbH. These use cookies, for example, to transmit the information that an advertising banner you have displayed has led to a purchase. (e.g. conversion tracking).
Third-party cookies:
This type of cookie is controlled by third-party providers. Third-party providers are providers who display advertising banners on other websites, in particular for Retresco GmbH. They use cookies, for example, to transmit the information that an advertising banner you have displayed has led to a purchase. (e.g. conversion tracking).
Here, so-called temporary/permanent cookies are used, which are automatically deleted after the specified time (usually 6 months). These temporary or permanent cookies are stored on your end device and delete themselves after the specified time. The cookies of our partner companies also contain only pseudonymous, mostly even anonymous data. They allow our partners to track which products you have viewed, whether something was purchased, which products were searched for, etc. In this context, some of our advertising partners also collect information beyond the websites about which pages you have visited before or which products you were interested in, for example. This makes it possible to display individualised advertising. This pseudonymous data is never combined with your personal data.
The purpose of integrating such third-party cookies is to provide you with elaborately researched information on our website free of charge. The marketing of advertising space to the third-party providers described in more detail below enables us to continue to make these offers available to you to a large extent and thereby to make a significant contribution to the dissemination of knowledge, the procurement of information and the exchange of opinions on your part.
Most web browsers accept cookies automatically. Of course, you can also deactivate, restrict or delete cookies on your end device manually via the settings of your browser or with the help of software. Please note: If you deactivate the setting of cookies, you may not be able to use all the functions of our website to their full extent.

4. web tracking

4.1 Piwik Pro

This website uses Piwik Pro, a web analytics service. Piwik Pro uses cookies. The technical data is transmitted to, processed by, and stored on Piwik Pro servers or those of its contracted service providers within the EU. Your IP address is anonymised by Piwik Pro. Piwik Pro will use this information to evaluate your use of the website, to compile reports on website activity, and to provide us with other services related to website use and internet usage. The IP address transmitted by your browser within the framework of Piwik Pro is not merged with other data.
You can revoke the storage of cookies at any time by changing your browser settings. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Piwik Pro as well as the processing of this data by Piwik Pro by using the corresponding opt-out option on our website.
We use Piwik Pro to analyse and improve the use of our website. The statistics obtained enable us to improve our offer and make it more interesting for you as a user. The storage of cookies is based on the consent given (Art. 6 para. 1 sentence 1 lit. a GDPR). The further evaluation of the collected data by means of Piwik Pro takes place over a period of two years based on Art. 6 para. 1 sentence 1 lit. f GDPR.
For more information on the terms of use and data protection, please visit: https://piwik.pro/privacy-policy/

4.2 Google Tag Manager

This website uses the Google Tag Manager of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). This service allows website tags to be managed via an interface. The Tag Manager is required for the technical operation, through which the tags are controlled. The legal basis for the use of the Google Tag Manager is Art. 6 para. 1 p. 1 lit. f EU-DS-GVO, § 25 para. 2 TTDSG. We have a legitimate interest in the use of the Google Tag Manager, as it is absolutely necessary in order to control the individual scripts used on the website and to ensure the function of the website in this way. The Google Tag Manager only implements tags. This means that no cookies are used and no personal data is collected. The Google Tag Manager triggers other tags, which in turn may collect data. However, the Google Tag Manager does not access this data. If a deactivation has been made at domain or cookie level, it remains in place for all tracking tags, insofar as these are implemented with the Google Tag Manager. More information on the Google Tag Manager can be found at the following link: https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/.

4.3 Google Ad Manager

Insofar as Google Ad Manager, a web advertising service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”), places advertisements (text ads, banners, etc.) on this website, your browser may store a cookie sent by Google Inc. or third parties. The information stored in the cookie may be recorded, collected and analysed by Google Inc. or third parties.
The cookies are stored for 365 days and then deleted.
In addition, Google Ad Manager may also use so-called (re)marketing tags (invisible graphics, also known as “web beacons”) to collect information. Through their use, for example, visitor traffic on the website can be recorded and evaluated.
The basis for the processing of your personal data is your consent, Art. 6 para. 1 p. 1 lit. a EU-DS-GVO, as well as § 25 para. 1 TTDSG.
The information generated by the cookie and/or the (re)marketing tag about your use of this website may be transmitted to and stored by Google on servers in the United States. Google Ad Manager processes and stores your data in the USA. Google is obliged by corresponding contractual regulations to comply with the data protection standards and the level of data protection in the EU.
Google uses the information thus obtained to carry out an evaluation of your usage behaviour with regard to the Google Ad Manager ads. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf.
If you are registered with a Google service, Google may associate your visit with your account. To prevent this, you must first log out of your Google account.
You can prevent the storage of data by using the plug-ins provided by Google under the following link: https://support.google.com/google-ads/answer/12973528?hl=en
Furthermore, you can revoke your consent at any time for the future. To do this, simply call up our Consent banner and deselect the corresponding setting. Please note that the change in the Consent Banner settings must be made individually for each end device.
You can also make changes in our content banner below the footer.
For more information on Google’s use of data, settings and opt-out options, please refer to Google’s privacy policy (https://policies.google.com/technologies/ads) and the settings for the display of advertisements by Google (https://adssettings.google.com/authenticated).

4.4 Google Ads conversion tracking

We use the online advertising programme “Google Ads” and in this context conversion tracking (visit action evaluation). Google Conversion Tracking is an analysis service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). If you have your habitual residence in the European Economic Area or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the controller of your data. Google Ireland Limited is responsible for the processing of your data and compliance with applicable data protection laws.
The information obtained with the help of the conversion cookie is used to create conversion statistics. In doing so, we learn the total number of users who clicked on one of our ads and were redirected to a page tagged with a conversion tracking tag. When you click on an ad placed by Google, conversion tracking cookies are placed on your computer. These cookies have a limited validity, contain personal data, but are not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Google and we can recognise that you clicked on the ad and were redirected to this page. Each Google Ads customer receives a different cookie.
The cookies are stored for 365 days and then deleted.
The processing is based on your consent in accordance with Art. 6 para. 1 p. 1 lit. a EU-DS-GVO and § 25 para. 1 TTDSG.
You can revoke your consent for the future at any time. To do so, simply call up our Consent banner and deselect the relevant cookie(s). Please note that the change in the Consent Banner settings must be made individually for each end device.
You can also make changes in our content banner below the footer.
Please note that the use of Google Ads involves the processing of your data in the USA. Corresponding contractual regulations and guarantees ensure compliance with the European level of data protection for data transfer and processing in third countries.
Furthermore, you can deactivate personalised advertising for you in Google’s advertising settings. You can find instructions on how to do this at https://support.google.com/ads/answer/2662922?hl=de.
Alternatively, you can prevent the use of cookies by third parties by visiting the deactivation page of the Network Advertising Initiative at https://www.networkadvertising.org/choices/ and implementing the further information on opting out given there. You will then not be included in the conversion tracking statistics.
You can find more information and Google’s privacy policy at: https://www.google.de/policies/privacy/.

4.5 Remarketing via Google Ads

In order to draw attention to our offers, we place ads in the Google search network and advertising banners in the Google display network (banners on third-party websites) and use Google Ads remarketing. We may combine ads with search terms or use customised ads to promote products and services you have viewed on our site. Ads remarketing lists allow us to optimise search and display campaigns if you have visited our site before.
For this interest-based advertising, Google analyses your user behaviour with cookies that are set when you click on ads or visit our websites. We and Google then receive information about the fact that you clicked on an ad and were redirected to us. These analyses enable us to recognise which of the advertising measures used are particularly effective and to optimise them as a result.
The statistics that Google provides us with include the number of users who clicked on one of our ads and show which of our websites you were redirected to. In addition, we can target you more specifically if you have already been to our website. We can also track which search terms were clicked on particularly often and which ads lead to the purchase of a subscription, for example.
The legal basis is your consent according to Art. 6 Para. 1 lit. a DSGVO and § 25 Para. 1 TTDSG.
Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of Ads Advertising, Google receives the information that you have called up the corresponding part of our website or clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, it is still possible for the provider to obtain and store your IP address.
You can find more information on this in the notes on website statistics and in Google’s privacy policy.
Google processes and stores your data in the USA. Corresponding contractual regulations and guarantees ensure compliance with the European level of data protection for data transfer and processing in third countries.
You can prevent this technique by disabling the use of cookies via your browser settings, deselecting individual types of ads in Google’s ad settings, disabling interest-based ads on Google or disabling cookies from advertising providers using the respective Network Advertising Initiative deactivation guide. We and Google then only receive the statistical information of how many users have visited a page and when. This can only be prevented by using appropriate browser extensions.
You can also make changes in our content banner below the footer.

4.6 LinkedIn Insight Tag

With your consent, we use LinkedIn Insight Tag, a conversion tracking pixel and retargeting service of LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (hereinafter referred to as: “LinkedIn”) on our website. LinkedIn stores and processes information about your user behaviour on our website. For this purpose, LinkedIn uses, among other things, cookies, i.e. small text files which are stored locally in the cache of your web browser on your end device and which enable an analysis of your use of our website. Specifically, the referrer URL, IP address, device information, browser information and your timestamp are recorded.
We use LinkedIn Insight Tag for marketing and optimisation purposes, in particular to analyse the use of our website and to continuously improve individual functions and offers as well as the user experience. Through the statistical evaluation of user behaviour, we can improve our offer and make it more interesting for you as a user. The use of LinkedIn Insight Tag is based on your consent (Art. 6 para. 1 p. 1 lit. a EU-DS-GVO, §25 para. 1 TTDSG), which you can revoke at any time via our Consent Banner or here https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
You can also make changes in our content banner below the footer.
Further information from the third-party provider on data protection can be found on the following website: https://www.linkedin.com/legal/privacy-policy.

4.7 Microsoft Advertising

We use the service Microsoft Advertising (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA) on our website on the basis of consent (Art. 6 para. 1 lit. a EU-DS-GVO, §25 para. 1 TTDSG).
Microsoft Advertising is an online marketing service that helps us to display targeted advertisements via the Microsoft Bing search engine. Microsoft Advertising collects data that we can use to track target groups and create remarketing lists based on this data. For this purpose, a cookie is stored on the end device used when visiting our website. Microsoft Advertising can thus recognise that our website has been visited and play an advertisement when Microsoft Bing or Yahoo is used at a later time. The information is also used to compile conversion statistics, i.e. to record how many users have reached our website after clicking on an advertisement and which follow-up actions were carried out. This involves processing personal data in the form of online identifiers (including cookie identifiers), IP addresses, device identifiers and information about device and browser settings.
The data obtained via this procedure is deleted as soon as it is no longer required for our purposes. In our case, this is the case after 90 days.
The Microsoft tool is used on the basis of your consent in accordance with Art. 6 para. 1 p. 1 lit. a EU-DS-GVO, §25 para. 1 TTDSG, which you can revoke at any time.
You can also make changes in our content banner below the footer.
You can deactivate personalised advertising at Microsoft. To do so, please follow the link below: https://about.ads.microsoft.com/de-de/ressourcen/richtlinien/personalisierte-anzeigen
In the case of Microsoft services, the transmission of data to Microsoft Corporation, USA cannot be ruled out on a regular basis. A third country transfer can therefore take place, so that in such a case there is a risk that your data can be processed by US authorities for control and monitoring purposes, without you possibly having any legal remedies.
You can find more information about Microsoft and Microsoft’s privacy policy at: https://privacy.microsoft.com/de-de/privacystatement.

4.8 Microsoft Clarity

We use Microsoft Clarity (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA). “Microsoft Clarity” refers to a procedure from Microsoft in which user analysis is possible on the basis of a pseudonymous user ID and thus on the basis of pseudonymous data, such as the evaluation of data on mouse movements or performance data on certain Internet presentations.
In particular, we process usage data (e.g. internet presentations visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses), location data (information on the geographical position of a device or a person), movement data (mouse movements, scrolling movements) in pseudonymised form. We have made the corresponding settings in such a way that the collection of data to and by Microsoft alone is pseudonymised, in particular in the form of IP masking (pseudonymisation of the IP address).
The purpose of the processing is tracking (e.g. interest/behaviour-based profiling, use of cookies), remarketing, conversion measurement (measurement of the effectiveness of marketing measures), interest-based and behaviour-based marketing, profiling (creation of user profiles), coverage measurement (e.g. access statistics, recognition of returning users), cross-device tracking (cross-device processing of user data for marketing purposes).
All users of our website who have consented to the corresponding use via our cookie consent service are affected by this data processing. The data processing is thus carried out solely on the basis of your consent in accordance with Art. 6 para. 1 lit. a EU-DS-GVO, § 25 para. 1 TTDSG, which you can revoke at any time.
You can also make changes in our content banner below the footer.
You can also set an opt-out with the respective provider.

Europe: https://www.youronlinechoices.eu.
Canada: https://www.youradchoices.ca/choices.
USA: https://www.aboutads.info/choices.
International: https://optout.aboutads.info.

Please note that we have entered into an AV agreement with Microsoft to enable this activity, including the necessary standard contractual clauses.
For more information, please visit https://privacy.microsoft.com/de-de/privacystatement.

4.9 Microsoft Conversion Tracking

This website utilises Microsoft Advertising Conversion Tracking. The provider is Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.
With the help of Microsoft Advertising Conversion Tracking, Microsoft and we can recognise whether the user has carried out specific actions. For example, we can evaluate how often buttons on our website have been clicked and which products have been viewed or purchased particularly frequently. This information is used to create conversion statistics. We learn the total number of users who have clicked on our advertisements and the actions they have carried out. We do not receive any information that would allow us to personally identify the user. Microsoft itself uses cookies or similar recognition technologies for identification purposes.
The use of Microsoft Advertising Conversion Tracking is based exclusively on Art. 6 para. 1 lit. a EU-GDPR, § 25 para. 1 TTDSG; consent can be revoked at any time.
You can also make changes in our content banner below the footer.
For more information on Microsoft Advertising Conversion Tracking, please see Microsoft’s Privacy Policy: https://privacy.microsoft.com/en-gb/privacystatement.

4.10 YouTube

YouTube is a video platform operated by YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA (hereinafter “YouTube”). In our online services, we have integrated at least one YouTube plugin. When you access an online service containing a YouTube plugin, your browser establishes a direct connection with YouTube’s servers. This information is transmitted to YouTube, indicating that your browser has visited the corresponding page of our online services, even if you do not have a YouTube account or are not logged into your account. This information is sent directly from your browser to a YouTube server in the USA and stored there.
If you are logged into your YouTube account at the same time, it is also possible to associate the page view with your YouTube account, allowing YouTube to directly link your browsing behaviour to your personal profile.
If you wish to prevent YouTube from collecting and storing your data and your behaviour on our online services, you must log out of YouTube before visiting our site and, if necessary, delete any cookies placed by YouTube.
For more information on YouTube’s collection and use of your data, please refer to their privacy policy at https://www.youtube.com/intl/en_us/howyoutubeworks/policies/community-guidelines/ and Google’s privacy policy at https:// www.google.com/policies/privacy/
When collecting data, we rely on your consent in accordance with Art. 6 Para. 1 lit. a EU-DS-GVO, § 25 Para. 1 TTDSG for the corresponding data processing, which you can revoke at any time by changing your privacy settings.
You can also make changes in our content banner located below the footer.

5. Social Media

On our website, you will find a link to our social media presence on Facebook, LinkedIn, Twitter, Youtube, and Xing. Links to the websites of social media can be recognised by the respective company logo. If you follow this link, you will reach our company profile on the respective social media platform. When you click on a link to a social media network, a connection is established to the servers of the respective social media network. This transmits to the servers of the social media network that you have visited our website. In addition, further data is transmitted to the provider of the social media network. These include, for example:

Address of the website where the activated link is located
Date and time of the website visit or activation of the link
Information about the browser used and the operating system
IP address

Responsible for the company profiles in terms of the EU General Data Protection Regulation (EU-GDPR) and other data protection regulations are, in addition to us, the

Facebook (Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)
LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland)
Twitter (Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland)
Youtube (Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland)
Xing (News Work SE, Dammtorstraße 30, 20354 Hamburg, Germany)

If you are already logged in to the respective social media network at the time of activating the link, the provider of the social media network may be able to determine your username and possibly even your real name from the transmitted data and associate this information with your personal user account on the social media network. You can prevent this association with your personal user account by logging out of your user account beforehand.
The servers of the social media networks are located in the USA and other countries outside the European Union. The data may also be processed by the provider of the social media network in countries outside the European Union. Please note that companies in these countries are subject to a data protection law that generally does not protect personal data to the same extent as in the Member States of the European Union.
Please note that we have no influence on the scope, nature, and purpose of the data processing by the provider of the social media network. For more information on the use of your data by the social media networks integrated on our website and the possibility of objection, please refer to the following linked information:
LinkedIn

Privacy Policy: https://www.linkedin.com/legal/privacy-policy;
Opt-out: https://www.linkedin.com/legal/cookie-policy

Twitter

Privacy Policy: https://twitter.com/de/privacy;
Opt-out: http://www.youronlinechoices.com;
Settings: https://twitter.com/settings/account/personalization;

Youtube

Privacy Policy: https://policies.google.com/privacy
Opt-out: https://tools.google.com/dlpage/gaoptout?hl=de and
http://www.youronlinechoices.com

Xing

Privacy Policy: https://privacy.xing.com/de/datenschutzerklaerung;
Opt-out: http://www.youronlinechoices.com.

Overall, you have the following rights regarding the processing of your personal data:
Right to information; right to rectification; right to erasure; right to restrict processing; right to object; right to data portability; right to complain about unlawful processing of your personal data to the responsible data protection authority.
However, since we do not have full access to your personal data, you should contact the providers of social media directly when asserting these rights, as they each have access to the personal data of their users and can take appropriate measures and provide information.

6. Links to other providers

Our website also contains – clearly visible – links to the websites of other companies. Insofar as there are links to websites of other providers, we have no influence on their content. Therefore, no guarantee and liability can be assumed for these contents. The respective provider or operator of the pages is always responsible for the content of these pages.
The linked pages were checked for possible legal violations and recognisable legal infringements at the time of linking. No illegal content was discernible at the time of linking. However, a permanent content control of the linked pages is not reasonable without concrete indications of a legal infringement. If we become aware of any legal infringements, such links will be removed immediately.

1. General information

Personal data is information that makes it possible to identify a natural person. This specifically includes name, date of birth, address, telephone number, e-mail address but also your IP address.

Anonymous data exists if no personal reference to the user can be made.

1.1 Responsible party and data protection officer

Retresco GmbH
Grünberger Street 44a
10245 Berlin

Phone +49 (0)30 60 98 39 600
Fax +49 (0)30 60 98 39 608

E-mail: contact[at]retresco.de

Contact of the data protection officer: datenschutz[at]retresco.de

1.2 Your rights as a data subject

First of all, we would like to inform you about your rights as a data subject. These rights are standardised in Art. 15 – 22 EU-DS-GVO. This includes:

The right to information (Art. 15 EU-DS-GVO),

The right to erasure (Art. 17 EU-DS-GVO),

The right to rectification (Art. 16 EU-DS-GVO),

The right to data portability (Art. 20 EU-DS-GVO),

The right to restriction of data processing (Art. 18 EU-DS-GVO),

The right to object to data processing (Art. 21 EU-DS-GVO).

1.3 Rights of objection

Please note the following in connection with rights of objection:

If we process your personal data for the purpose of direct advertising, you have the right to object to this data processing at any time without giving reasons. This also applies to profiling insofar as it is related to direct advertising.

If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes. The objection is free of charge and can be made form-free, preferably to: datenschutz@retresco.de.

In the event that we process your data for the protection of legitimate interests, you may object to this processing at any time on grounds relating to your particular situation; this also applies to profiling based on these provisions.

We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

1.4 Purposes and legal bases of data processing

We use your data to initiate business, to fulfil contractual and legal obligations, to implement the contractual relationship, to offer products and services and to strengthen the customer relationship, which may also include analyses for marketing purposes and direct advertising. The legal basis for the use of your data may be a law, a contract or legitimate interest.

Your consent also constitutes a permission requirement under data protection law. We will inform you about the purposes of the data processing and about your right of revocation. If the consent also refers to the processing of special categories of personal data, we will expressly point this out to you in the consent, Art. 88 (1) EU-DS-GVO.

Processing of special categories of personal data within the meaning of Art. 9(1) EU GDPR will only take place if this is required by legal provisions and there is no reason to assume that your legitimate interest in the exclusion of the processing outweighs this, Art. 88(1) EU GDPR.

1.5 Disclosure to third parties

1.6 Recipients of the data / categories of recipients

Within our company, we ensure that only those persons receive your data who need it to fulfil contractual and legal obligations.

In many cases, service providers support our specialist departments in the fulfilment of their tasks. The necessary data protection contracts have been concluded with all service providers. We use services such as the provision of technical infrastructure from software and communication service providers.

1.7 Third country transfer / intention to transfer data to third countries

1.8 Storage period of data

We store your data for as long as it is required for the respective processing purpose. Please note that numerous retention periods require that data continues to be stored. This specifically applies to retention obligations under commercial or tax law (e.g. German Commercial Code, German Fiscal Code, etc.). If there are no further storage obligations, the data is routinely deleted after the purpose has been achieved.

In addition, we may retain data if you have given us your permission to do so or if legal disputes arise and we use evidence within the framework of statutory limitation periods, which can be up to thirty years; the regular limitation period is three years.

1.9 Secure transmission of your data

The exchange of data to and from our website is always encrypted. We offer HTTPS as the transmission protocol for our website, in each case using the current encryption protocols. In addition, there is the option of using alternative communication channels (e.g. by post).

1.10 Obligation to provide data

We have summarised details of this for you in the above point. In certain cases, data must also be collected or made available due to legal requirements. Please note that it is not possible to process your enquiry or carry out the underlying contractual relationship without providing this data.

2. Categories, sources and origin of the data

We collect different categories of personal data for various purposes:

2.1. Identification Information

For the purpose of identification and authentication when using our software, we may process personal data, including your name, contact details and login information. This processing is carried out to ensure system security and to ensure proper billing.

The legal basis for the processing of this data is our legitimate interest in accordance with Article 6 (1) (f) of the General Data Protection Regulation (GDPR), in particular in the secure provision of our services and the prevention of unauthorised access.

2.2. User Content and Feedback

Our software allows users to ask questions via an input function. Based on these inputs, a corresponding response (output) is generated. In addition, it is possible to assess the output through feedback – e.g. in the form of an evaluation via thumbs-up/thumbs-down symbols.

Input, output and associated identification data are processed and stored by us. This is done for the purpose of providing and improving our services, as well as to fulfil contractual obligations.

The processing of this data is based on our legitimate interest in accordance with Art. 6 (1) (f) GDPR, in particular in the functionality, security and further development of our software.

Feedback is provided on a voluntary basis. By submitting the feedback, you consent to the associated data processing in accordance with Art. 6 (1) (a) GDPR. This consent can be revoked at any time with effect for the future.

2.3. Access and Activity Logs (“server logs”)

Each time the software is accessed and during important interactions within the application, general log data, also known as server logs, is automatically recorded. This data usually consists of pseudonyms and therefore does not allow the identification of an individual person.

For technical reasons, the collection of this data is sometimes indispensable in order to deliver and display the contents of the software. In addition, the processing of this data is essential for security reasons, especially for monitoring access, input, sharing and storage operations. In addition, this anonymous information may be used for statistical purposes and to improve the offer and technology. In addition, the log files can be checked and evaluated retrospectively if illegal use of the software is suspected. The legal basis for this data processing is based on our legitimate interest in accordance with Article 6 (1) (f) of the General Data Protection Regulation (GDPR).

The general data collected typically includes the domain name of the website, the web browser and its version, the operating system, the IP address, and the timestamp of access to the software. The scope of this logging corresponds to the standard scope of any other website on the Internet.

The retention period of these error logs is up to 90 days.

2.4. Error Logs

To identify and correct errors, so-called error logs (also known as “error logs”) are created. This is necessary to counteract possible problems in the display and implementation of content in a timely manner. This data is usually pseudonymized and therefore does not allow the identification of natural persons. The legal basis for the processing of this data is based on our legitimate interest in accordance with Article 6 (1) (f) of the General Data Protection Regulation (GDPR).

When an error message occurs, general information is collected, including the domain name of the website, the web browser and its version, the operating system, the IP address, and the timestamp on which the corresponding error message or specification occurred.

The retention period of these error logs is up to 90 days.

2.5. Use of Cookies

So-called cookies are occasionally used within the software. These small text files are stored on the device from which you access this software. In principle, cookies have various purposes, including ensuring security when visiting a website (“strictly necessary”), implementing certain functions such as the default language settings (“functional”) or improving the user experience and performance on the website (“performance”).

In principle, only absolutely necessary and functional cookies are used in the software. These are mainly used to ensure the identification of the user, to ensure security and to implement certain default settings. This use of cookies is based on our legitimate interest in accordance with Article 6 (1) (f) of the General Data Protection Regulation (GDPR).

Cookies are stored until the end of the respective software session.

You have the option of deciding for yourself whether you want to accept or reject the use of cookies via the settings of your browser. Please note that disabling cookies may result in the functionality of this software being limited or completely disabled.

2.6. Use of third-party providers

In order to support our business operations and to provide certain functions and services, it may be necessary to share personal data with third-party service providers. These include providers of hosting services, customer service, cloud and content delivery services, support and security monitoring, e-mail communication systems, web analysis tools, as well as payment and transaction processors and other IT service providers.

These service providers act exclusively on our instructions and within the framework of contractually regulated order processing in accordance with Art. 28 GDPR. You will only have access to personal data to the extent necessary to perform the respective tasks and are obliged to treat this data confidentially and to process it exclusively for the specified purposes.

For an up-to-date list of third-party services that are automatically integrated, as well as the links to the terms and conditions, please click here:

Use of Microsoft Azure OpenAI Service (third-party)

To provide AI-powered features of our software, we use the Microsoft Azure OpenAI Service, a natural language processing service. A so-called programming interface (“API”) enables access to this artificial intelligence (in the legally relevant sense) to analyse user input, generate responses, evaluate information and, if necessary, make predictions.

Personal data may be processed as part of this use of the service. This includes, in particular, the collection, storage, organization and structuring of data in connection with the use of AI-based functions. Furthermore, the data may be used for quality assurance, troubleshooting, and maintaining the security and integrity of the Services.

Service provider:
Microsoft Ireland Operations Limited,
One Microsoft Place,
South County Business Park,
Leopardstown,
Dublin 18, D18 P521, Irland
Legal basis for processing:
Legitimate interest according to Art. 6 para. 1 sentence 1 lit. f GDPR
Purpose of processing:
Provision and optimization of AI services for voice-based interaction
Privacy policy:
https://privacy.microsoft.com/en-us/privacystatement
VPA:
https://azure.microsoft.com/en-us/support/legal/
Data transfers:
EU/EEA – based on the Data Privacy Framework (DPF); Switzerland – based on the adequacy decision (Ireland)
More info:
https://azure.microsoft.com/en-us/products/ai-services/openai-service

Use of Hetzner infrastructure (third-party)

We use services in the area of the provision of information technology infrastructure and related services, such as storage and computing capacities, for the secure and efficient provision of our services.

Service provider:
Hetzner Online GmbH,
Industriestr. 25, 91710 Gunzenhausen,
Germany;
Legal basis:
Legitimate interest according to Art. 6 para. 1 sentence 1 lit. f GDPR
Privacy policy:
https://www.hetzner.com/legal/privacy-policy
DPA:
https://docs.hetzner.com/general/general-terms-and-conditions/data-privacy-faq

3. Final provisions

Retresco reserves the right to amend this Privacy Policy at any time to ensure that it always complies with current legal requirements or to implement changes to the services provided in the Privacy Policy, for example when introducing new services. If you access this software again, the updated privacy policy will apply.