Data protection is of especially great importance for INFORS HT. It is possible to use the websites of INFORS HT essentially without specifying any personal data. However, when a data subject wishes to make use of special services of our company through our website, it might be necessary to process personal data. If it is necessary to process personal data and there is no statutory basis for such processing, we generally obtain a consent from the data subject.
As the controller for the processing ("data controller"), INFORS HT has implemented numerous technical and organizational measures in order to ensure as complete protection as possible against loss and manipulation and unauthorized third-party access to the personal data processed through this website. Internet-based data transmissions can nevertheless manifest security breaches, with the result that absolute protection cannot be guaranteed. For this reason, each data subject is free to transfer personal data to us in alternative ways as well, such as by telephone.
Our security measures are continually improved consistent with technological development.
We also take seriously our own data protection within the company. Our employees and the service providers we engage are obligated to confidentiality and compliance with the data protection provisions. Moreover, they are permitted access to your personal data only to the extent necessary.
2. Name and address of the data controller
The controller in terms of the data protection laws is:
Tel.: +41 61 425 77 00
3. Address of the data protection coordinator
The data protection coordinator of the data controller is:
Data Protection Coordinator
Tel.: +41 61 425 77 00
For all questions and suggestions on data protection, any data subject may contact our data security coordinator directly at any time.
The data subject can prevent the setting of cookies by our website at any time by means of a corresponding setting of the browser used and thereby permanently object to the setting of cookies. Furthermore, cookies that have already been set can be erased at any time through a browser or other software. This is possible in all popular browsers. If the data subject deactivates the setting of cookies in the browser used, in some circumstances not all functions of our web page are completely usable.
5. Logging of general data and information
Each time the website of INFORS HT is viewed by a data subject or an automated system, the website logs an array of general data and information. This general data and information is stored in the log files of the server. The following can be logged: (1) browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website (so-called referrer), (4) the sub-websites which are selected on our website through an accessing system, (5) the date and time of an access to the website, (6) an Internet Protocol Address (IP address), (7) the Internet service provider of the accessing system and (8) other similar data and information which serve to avert threats in the case of accesses to our information technology systems.
In using this general data and information, INFORS HT draws no inferences concerning the data subject. Instead this information is needed in order to (1) deliver the content of our website correctly, (2) optimize the content of our website and the advertising for it, (3) ensure the stable functionality of our information technology systems and the technology of our website and (4) supply to law enforcement agencies the necessary information for prosecution in the event of a cyberattack. This anonymously collected data and information is therefore, on the one hand, statistically analyzed by INFORS HT and also further evaluated with the objective of increasing data protection and data security in our company in order to ultimately ensure an optimum level of protection for the personal data processed by us. The anonymous data of the server log files is stored separately from all personal data given by a data subject.
6. Registration on our website
The data subject has the option of registering by supplying personal data on the website of the data controller. What personal data is thereby transferred to the data controller results from the particular input mask used for the registration. The personal data entered by the data subject is collected and stored exclusively for internal use at the data controller and for its own purposes. The data controller can arrange to have the data transferred to one or more processors—to a parcel service, for example—which also uses the personal data exclusively for an internal use attributable to the data controller.
The IP address, date and time of the registration assigned by the data subject's Internet Service Provider (ISP) is also stored through registration on the website of the data controller. This data is stored because the misuse of our services can be prevented only in this way and, when necessary, storing facilitates the use of such data to solve crimes that have been committed. In this respect, storage of this data is required to protect the data controller. This data is strictly not shared with third parties unless there is a legal duty to do so or it is shared for purposes of criminal prosecution.
The registration of the data subject with voluntarily given personal data allows the data controller to offer the data subject content or services which can only be offered to registered users due to its nature. Registered persons remain free to change personal data given in the registration at any time or to have it completely erased from the database of the data controller.
Upon request, the data controller will at any time provide any data subject information about what personal data is stored concerning the data subject. In addition, the data controller will rectify or erase personal data at the request or direction of the data subject if it is not contrary to any statutory retention obligations. All employees of the data controller are available to the data subject as contact persons in this regard.
7. Subscription to our newsletter
On the website of INFORS HT users are given the opportunity to subscribe to our company's newsletter. What personal data is transmitted to the data controller during the ordering of the newsletter can be derived from the input mask used for this.
INFORS HT informs its customers and business associates concerning offerings of the company through a newsletter at regular intervals. The newsletter of our company can, in principle, be received by the data subject only when (1) the data subject has a valid email address and (2) the data subject registers to be sent the newsletter. For legal reasons, a confirming email is sent in the double-opt-in procedure to the email address entered for the first time by a data subject to be sent the newsletter. This confirming email serves to validate whether, as a data subject, the owner of the email address has authorized receipt of the newsletter.
Upon registration for the newsletter we also store the IP address, assigned by the Internet Service Provider (ISP), of the computer system used by the data subject at the time of the registration as well as the date and time of the registration. Collection of this data is required in order to be able to retrace the (possible) misuse of a data subject's email address at a later time and therefore also serves as legal protection of the data controller.
The personal data collected in the course of registration for the newsletter is used exclusively to send our newsletter. Moreover, subscribers to the newsletter might be informed by email if this is required for the operation of the newsletter service or for a registration in this respect, as might be the case in the event of changes to the newsletter offering or a change in the technical conditions. None of the personal data collected as part of the newsletter service is shared with third parties. The data subject can cancel the subscription to the newsletter at any time. The consent to the storage of personal data which the data subject has given us for sending the newsletter can be withdrawn at any time. A corresponding link for purposes of withdrawing consent appears in each newsletter. The option also exists to unsubscribe from the newsletter directly on the website of the data controller at any time or to communicate this to the data controller in another manner.
8. Newsletter tracking
The newsletters of INFORS HT contain so-called tracking pixels. A tracking pixel is a miniature graphic that is embedded in emails which are sent in HTML format in order to facilitate the recording of a log file and a log file analysis. This enables the performance of a statistical analysis of the success or failure of online marketing campaigns. By means of the embedded tracking pixel, INFORS HT can identify whether and when an email was opened by a data subject and which links in the email were activated by the data subject.
Such personal data collected through the tracking pixels contained in the newsletters is stored and analyzed by the data controller in order to optimize the sending of the newsletter and to customize the content of future newsletters even better to the interests of the data subject. This personal data is not shared with third parties. Data subjects are, at any time, entitled to withdraw the separate declaration of consent that was given in this respect through the double-opt-in procedure. After a withdrawal this personal data is erased by the data controller. INFORS HT automatically interprets unsubscribing from receipt of the newsletter as a withdrawal.
9. Contact option through the website
Because of legal regulations, the website of INFORS HT contains information that facilitates speedy electronic contact with our company as well as direct communication with us, which also involves a general address of so-called electronic mail (email address). If a data subject contacts the data controller by email or through a contact form, the personal data transmitted by the data subject is automatically stored. Such personal data which is voluntarily transmitted to the data controller by a data subject is stored exclusively for purposes of handling the inquiry or for contacting the data subject. This personal data is not shared with third parties.
10. Routine erasure and locking of personal data
The data controller processes and stores personal data of the data subject only for the period required to achieve the purpose of the storage or for as long as provided in statutes or regulations to which the data controller is subject.
Should the purpose for storage cease to apply or a prescribed storage period lapse, the personal data is routinely locked and erased in accordance with the legal regulations.
11. Rights of the data subject
a) Right to confirmation
Every data subject has the right to request from the data controller a confirmation as to whether personal data concerning him or her is being processed. If a data subject wishes to exercise this right to confirmation, he or she can contact the data protection coordinator on this at any time.
b) Right of access
Every person who is affected by the processing of personal data has the right to access information, at any time without charge, about the stored personal data concerning such person and to obtain a copy of such information from the data controller. Where appropriate, access can also be given concerning the following information:
- the purposes of the processing
- the categories of personal data concerned
- the recipients or categories of recipient to whom the personal data has been or will be disclosed, in particular recipients in third countries or international organizations
- where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period
- the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning you or to object to such processing
- the right to lodge a complaint with a supervisory authority
- where the personal data is not collected from the data subject: all available information on the origin of the data
Moreover, the data subject has a right of access to information about whether personal data was transferred to a third country or an international organization. If this is the case, the data subject also has the right to be informed of the appropriate safeguards relating to the transfer.
If a data subject wishes to exercise this right of access, he or she can contact the data protection coordinator on this at any time.
c) Right to rectification
Any person affected by the processing of personal data has the right to obtain without undue delay the rectification of inaccurate personal data concerning him or her. Taking into account the purposes of the processing, the data subject further has the right to have incomplete personal data completed, including by means of providing a supplementary statement.
If a data subject wishes to exercise this right to rectification, he or she can contact the data protection coordinator on this at any time.
d) Right to erasure (right to be forgotten)
Any person affected by the processing of personal data has the right to obtain from the controller the erasure of personal data concerning him or her without undue delay where one of the following grounds applies and to the extent the processing is not required:
- The personal data is no longer necessary in relation to the purposes for which it was collected or otherwise processed.
- The data subject withdraws consent on which the processing is based and there is no other legal ground for the processing;
- The data subject objects to the processing on grounds relating to his or her particular situation, and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing in the case of direct marketing and associated profiling.
- The personal data has been unlawfully processed.
- The personal data has to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject.
- The personal data has been collected in relation to the offer of information society services made directly to a child.
Should one of the above-mentioned grounds apply and a data subject wishes to have personal data that is stored at INFORS HT erased, he or she can contact the data controller's data protection coordinator for this at any time. The data protection coordinator of INFORS HT will see that the request for erasure is fulfilled without delay.
e) Right to restriction of processing
Any person affected by the processing of personal data has the right to obtain from the controller restriction of processing where one of the following applies:
- The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data.
- The processing is unlawful, the data subject opposes the erasure of the personal data and requests the restriction of its use instead.
- The controller no longer needs the personal data for the purposes of the processing, but it is required by the data subject for the establishment, exercise or defense of legal claims.
- The data subject has objected to the processing pending verification whether the legitimate grounds of the controller override those of the data subject.
If one of the above-mentioned requirements is present and a data subject wishes to have personal data that is stored at INFORS HT restricted, he or she can contact the data controller's data protection coordinator for this at any time. The data protection coordinator of INFORS HT will have the processing restricted.
f) Right to data portability
Any person affected by the processing of personal data has the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format. When the statutory requirements exist, the person also has the right to have this data transmitted to another controller.
The data subject further has the right to have the personal data transmitted directly from one controller to another, where technically feasible, and when doing so does not adversely affect the rights and freedoms of others.
The data subject can exercise the right to data portability at any time by contacting the data protection coordinator of INFORS HT.
g) Right to object
Any person affected by the processing of personal data has the right to object on grounds relating to his or her particular situation at any time to the processing of personal data concerning him or her.
In the case of an objection, INFORS HT shall no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defense of legal claims.
The data subject can exercise the right to object by directly contacting the data protection coordinator.
i) Right to withdraw a consent under data protection law
Any person affected by the processing of personal data has the right to withdraw at any time a consent to the processing of personal data.
If the data subject wishes to exercise a right of withdrawal, he or she can contact the data controller's data protection coordinator on this at any time.
12. Data protection for employment applications and in the recruiting process
The data controller collects and processes the personal data of applicants for purposes of managing the recruiting process. The processing can also take place electronically. This is especially the case when an applicant transfers corresponding application documents electronically to the data controller, such as via email or through a web form on a website. If the data controller enters into an employment agreement with an applicant, the transmitted data is stored for purposes of managing the employment relationship in compliance with legal regulations. If the data controller does not enter into an employment agreement with the applicant, the application documents are automatically erased two months after announcement of the rejection decision unless barred by any other legitimate interests of the data controller. Other legitimate interest in this sense is a burden of proof in a proceeding under the Equal Treatment Act.
13. Data protection provisions on the use and application of Google Analytics (with anonymization function)
The data controller has integrated the Google Analytics component (with anonymization function) on this website. Google Analytics is a web analysis service. Web analysis is the collection, compilation and analysis of data on the behavior of visitors to websites. A web analysis service logs, among other data, the website (so-called referrer) from which a data subject has come to a website, which sub-pages of the website have been accessed or how often and for what length of time a sub-page has been viewed. A web analysis is utilized primarily for website optimization and for cost-benefit analysis of online advertising.
The operating company of the Google Analytics component is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. If the data controller on this website sits outside of the European Economic Area or Switzerland, Google Analytics data processing is undertaken by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google LLC and Google Ireland Limited are referred to as "Google" herein.
The data controller uses the suffix "_gat._anonymizeIp" for web analysis through Google Analytics. Through this suffix, the IP address of the data subject's Internet connection is truncated and anonymized by Google when our websites are accessed from a Member State of the European Union or from another country that is party to the Agreement on the European Economic Area.
The purpose of the Google Analytics component is to analyze visitor traffic on our website. Google uses the acquired data and information for, among other things, analyzing the usage of our website in order to compile for us online reports which show the activities on our websites and for rendering further services related to the use of our website.
Google Analytics sets a cookie on the data subject's information technology system. What cookies are has already been discussed above. The setting of the cookie enables Google to analyze the use of our website. Through each view of one of the individual pages of this website which is operated by the data controller and on which a Google Analytics component has been integrated, the respective Google Analytics component prompts the browser on the data subject's information technology system to transfer data to Google for purposes of online analysis. As part of this technical process Google is informed of personal data, such as the data subject's IP address, which, among other things, serves to enable Google to track the origin of visitors and clicks and, as a result, commission settlements.
Through the cookie, personal information—such as the access time, the place from which an access originated and the frequency of the visits to our website by the data subject—is stored. With each visit to our websites this personal data, including the IP address of the Internet connection used by the data subject, is transmitted to Google in the United States of America. This personal information is stored by Google in the USA. In some circumstances, Google shares with third parties such personal data that was collected through the technical process.
As already represented above, the data subject can prevent the setting of cookies by our website at any time by means of a corresponding setting of the browser used and thereby permanently object to the setting of cookies. Such a setting of the browser used would also prevent Google from setting a cookie on the data subject's information technology system. In addition, a cookie already set by Google Analytics can be erased at any time through the browser or other software.
Further information and the applicable data protection provisions of Google can be accessed at https://policies.google.com/privacy?hl=de&gl=de and at https://marketingplatform.google.com/about/analytics/terms/de/.
14. Data protection provisions on the use and application of Google Ads
The data controller has integrated Google Ads on this website. Google Ads is a service for online advertising that allows advertisers to place ads both in the search engine results of Google and in the Google advertising network. Google Ads enables an advertiser to predefine specific keywords, whereby an ad is exclusively displayed in the search engine results of Google when the user retrieves a keyword-related search result with the search engine. The ads are distributed on topically relevant websites in the Google advertising network through an automated algorithm and with due regard to the predefined keywords.
The operating company of the services of Google Ads is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. If the data controller on this website sits outside of the European Economic Area or Switzerland, the Google Ads data processing is undertaken by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google LLC and Google Ireland Limited are referred to as "Google" herein.
The purpose of Google Ads is to promote our website through the display of interest-related advertising on the websites of third-party companies and in the search engine results of the Google search engine and a display of third-party advertising on our website.
If a data subject reaches our website through a Google Ad, Google stores a so-called conversion cookie on the data subject's information technology system. What cookies are has already been discussed above. A conversion cookie loses its validity after a few days and does not serve as identification of the data subject. As long as the cookie has not yet expired, the conversion cookie tracks whether certain sub-pages, such as the shopping cart of an online shopping system, has been viewed on our website. Through the conversion cookie, both we and Google can track whether a data subject who has arrived at our website through an ad has generated a sale—in other words, has checked out or canceled a shopping cart.
The data and information collected through the use of the conversion cookie is used by Google for compiling visit statistics for our website. We in turn use these visit statistics in order to ascertain the total number of users who are conveyed to us through ads—in other words, in order to determine the success or failure of the respective ads and to optimize our ads for the future. Neither our company nor other advertisers of Google Ads receive information from Google through which the data subject could be identified.
The conversion cookie stores personal information, such as the websites visited by the data subject. With each visit to our websites, personal data, including the IP address of the Internet connection used by the data subject, is therefore transmitted to Google in the USA. This personal information is stored by Google in the USA. In some circumstances, Google shares with third parties such personal data that was collected through the technical process.
As already represented above, the data subject can prevent the setting of cookies by our website at any time by means of a corresponding setting of the web browser used and thereby permanently object to the setting of cookies. Such a setting of the browser used would also prevent Google from setting a conversion cookie on the data subject's information technology system. In addition, a cookie already set by Google Ads can be erased at any time through the browser or other software.
The data subject also has the option to object to the interest-related advertising by Google. To this end, the data subject must call up the link www.google.de/settings/ads from each of the browsers he or she uses and adjust the desired settings there.
Further information and the applicable data protection provisions of Google can be accessed at https://policies.google.com/technologies/ads?hl=de.
15. Data protection provisions on the use and application of YouTube
The data controller has integrated components of YouTube on this website. YouTube is an Internet video portal that enables video publishers to upload video clips for free and for other users to also watch, evaluate and comment on them. YouTube allows the publication of all types of videos, which is why complete film and television broadcasts as well as music videos, trailers or videos made by users themselves can be downloaded through the Internet portal.
The operating company of YouTube is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.
Through each view of one of the individual pages of this website which is operated by the data controller and on which a YouTube component (YouTube video) has been integrated, the respective YouTube component automatically prompts the browser on the data subject's information technology system to download a representation of the corresponding YouTube component of YouTube. Further information on YouTube can be accessed at https://www.youtube.com/intl/de/howyoutubeworks/. As part of this technical process, YouTube and Google learn which specific sub-page of our website is visited by the data subject.
If the data subject is simultaneously logged in at YouTube, upon the viewing of a sub-page which includes a YouTube video, YouTube recognizes which specific sub-page of our website the person visits. This information is collected by YouTube and Google and associated with the respective YouTube account of the data subject.
YouTube and Google are informed through the YouTube component that the data subject has visited our website each time when the data subject is simultaneously logged on at YouTube while viewing our website; this happens regardless of whether the data subject clicks on a YouTube video. If such a transfer of this information to YouTube and Google is not desired by the data subject, the data subject can prevent the transfer by logging out of his or her YouTube account before viewing our website.
16. Data protection provisions on the use and application of the scalable central measurement system of INFOnline GmbH
The data controller has integrated a tracking pixel for reach measurement on this website. A tracking pixel is a miniature graphic that is embedded in websites to facilitate the recording of a log file and a log file analysis in order to subsequently perform a statistical analysis. The integrated tracking pixels serve the scalable central measurement system (SCM) of INFOnline GmbH.
The scalable central measurement system is operated by INFOnline GmbH, Forum Bonn Nord, Brühler Str. 9, 53119 Bonn, Germany.
The scalable central measurement system serves to ascertain statistical key figures—in other words, reach measurement. The embedded tracking pixel is used to understand whether, when and by how many users (including the data subject) our website was opened and what content was viewed.
The data obtained through the scalable central measurement system is collected anonymously. To acquire the access numbers for purposes of recognizing the users of a website, either a so-called session cookie is set, creating a signature consisting of various automatically transmitted information, or alternative methods are used. The IP address of the Internet connection used by the data subject is collected and processed only in anonymized form. The data subject is not identified at any point.
As already represented above, the data subject can prevent the setting of cookies by our website at any time by means of a corresponding setting of the web browser used and thereby permanently object to the setting of cookies. Such a setting of the browser used would also prevent INFOnline from setting a cookie on the data subject's information technology system. In addition, cookies that have already been set by INFOnline can be erased at any time through a browser or other software.
The data subject also has the option of objecting to and preventing acquisition of the data generated by INFOnline relating to a use of this website and to the processing of this data by INFOnline. To this end, the data subject must press the opt-out button at the link http://optout.ioam.de, which sets an opt-out cookie. The opt-out cookie set with the objection is stored on the information technology system used by the data subject. If the cookies are erased on the system of the data subject after an objection, the data subject must call up the link again and set a new opt-out cookie.
The setting of the opt-out cookie involves the possibility that the websites of the data controller will no longer be completely usable. The applicable data protection provisions of INFOnline can be accessed at https://www.infonline.de/datenschutz/.
17. Data protection provisions on the use and application of Google Tag Manager
18. Data protection provisions on the use and application of Google Optimize
19. Data protection provisions on the use and application of Facebook Pixels
The operating company for the services of Facebook Pixels is Facebook Inc., 1601 Willow Avenue, Menlo Park, CA 94025, USA, or, if you reside outside the USA and Canada, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. Facebook Inc. and Facebook Ireland Ltd. are referred to as "Facebook" herein.
The behavior of page visitors can be monitored by means of Facebook Pixels after they have been redirected to our website by clicking on a Facebook ad. As a result, the effectiveness of the Facebook ads can be evaluated for statistical and marketing research purposes and future advertising efforts optimized.
Data captured in this way is anonymous to us and therefore offers us no conclusions about your identity. However, the data is stored and processed by Facebook, with the result that a connection with the respective user profile is possible and Facebook can use the data for its own promotional purposes in accordance with the Facebook data policy (https://www.facebook.com/about/privacy/). Facebook can thereby enable the placement of ads on pages of Facebook as well as outside of Facebook. We are unable to influence this use of the data.
You can find general information on the use of data by Facebook and about your rights and options in this regard for protecting your privacy in the data policy of Facebook at https://www.facebook.com/policy. You can find special information and details on Facebook Pixel and its functionality in the help section of Facebook https://www.facebook.com/business/help/651294705016616. If you wish to object to the acquisition by Facebook Pixel, you can do this at https://www.facebook.com/settings?tab=ads. You must be signed in at Facebook for this purpose.
If you have no Facebook account, you can, in addition, object to the employment of cookies that are used for reach measurement and advertising purposes through the deactivation page of the Network Advertising Initiative (http://optout.networkadvertising.org/) and additionally the U.S. website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).
20. Data protection provisions on the use and application of AddThis
21. Data protection provisions on the use and application of Hotjar
You can object to the storage of a user profile and of information about your visit to our website by Hotjar as well as to the setting of Hotjar tracking cookies on other websites through the following link https://www.hotjar.com/legal/policies/do-not-track/.
22. Legal basis of the processing
In the following we communicate the legal bases upon which we process personal data. Please note that additional national data protection guidelines in your or our domiciliary country may apply.
- The data subject has consented to the processing of his or her personal data for a specific purpose or for several specific purposes.
- Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
- Processing is necessary for compliance with a legal obligation to which the controller is subject.
- Processing is necessary in order to protect the vital interests of the data subject or of another natural person.
- Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
- Processing is required to protect the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject that require the protection of personal data preponderate.
23. Duration of the storage of personal data
The criterion for the duration of the storage of personal data is the respective statutory retention period. Following the lapse of the period, the corresponding data is routinely erased unless it is still required for contract performance or contract initiation.
24. Statutory or contractual requirements for the provision of personal data; necessity of contract formation; obligation of the data subject to supply the personal data; possible consequences of not providing it
We advise you that the provision of personal data is partially prescribed by law (e.g. tax regulations) or can also arise from contractual provisions (e.g. information on the contracting party). For contract formation it may occasionally be necessary for a data subject to provide us personal data that we subsequently have to process. An example is where the data subject is obligated to provide us personal data when our company enters into a contract with the data subject. The consequence of not providing the personal data could defeat entry into the contract with the data subject. A data subject must contact one of our employees before providing personal data. Our employee will clarify for the data subject in the individual case whether provision of the personal data is prescribed by law or contract or is required for contract formation, whether there is an obligation to provide the personal data, and the potential consequences of not providing the personal data.
25. Existence of automated decision-making
As a responsible company, we abstain from automated decision-making or profiling.