When visiting our website, your surfing behaviour may also be statistically evaluated by so-called analysis tools from third-party providers. This is done primarily with cookies and so-called analysis programs. The analysis of your surfing behaviour is usually anonymous; the surfing behaviour cannot be traced back to you.

 

 

You can object to this analysis or prevent it by not using certain tools. Detailed information on these tools and on your objection options can be found in the following data protection declaration.

If a data subject wishes to use special services of our enterprise via our website, processing of personal data could also become necessary. If the processing of personal data is necessary and there is no legal basis for such processing, we will obtain the consent of the data subject beforehand after making available our relevant data protection conditions.

We also take the protection of your personal data very seriously. We treat your personal data (for an explanation of the terminology, see III, 1. below) confidentially and in accordance with the statutory data protection regulations and this data protection declaration.

Personal data is data that can be used to identify you personally. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done. We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.

You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. Furthermore, you have the right to demand the correction, blocking or deletion of your data. In such cases, as well as for all questions on the subject of data protection, you can contact the person responsible for the data or our data protection officer at any time, whom we will name immediately on specific request, together with the relevant address details. (see also below under II. and III.).

In addition, you have the right to complain to the competent supervisory authority.

 

You also have the right to request the restriction of the processing of your personal data under certain circumstances. For details, please refer to the data protection declaration under V. “Your rights”. There, you will find a summary of your rights in connection with the collection of data and its processing.  

II. Responsible Body

The responsible body for data processing on this website pursuant to Art. 4 No. 7 DSGVO within the meaning of the European Data Protection Regulation, other data protection laws applicable in the Member States of the European Union, above all the national Federal Data Protection Act and other provisions of a data protection nature, is:

ITTLB LTD

Forth Business Centre

Level 2, Suite 09,

Testaferrata Street,

Ta’ Xbiex, Malta

E-Mail: [email protected]

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).

The data protection officer of the controller can be contacted as follows:

[email protected]

Otto-Krafft-Platz 21

D-59065 Hamm

Germany

​​III. Definitions

This data protection declaration of the Teamplate/ITTLB Ltd is based on the terms used by the European Directive and Regulation Authorities when issuing the DSGVO. Our data protection declaration should be easy to read and understand for the public as well as for our customers and business partners. To ensure this, we would like to explain the terms used in advance.

1. Personal Data And Data Subject

“Personal data” means, in accordance with Article 4(1) of the GDPR, any information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

2. Processing

“Processing” means any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organisation, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction, in accordance with Article 4(2) of the GDPR.

3. Restriction Of Processing

“Restriction of processing” means, according to Art. 4 No. 3 GDPR, the marking of stored personal data with the aim of limiting their future processing.

4. Profiling

“Profiling” means, in accordance with Article 4(4) of the GDPR, any automated processing of personal data which consists in using such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects relating to that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or change of location;

5. Pseudonymisation

“Pseudonymisation” means, in accordance with Article 4(5) of the GDPR, the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures which ensure that the personal data are not attributed to an identified or identifiable natural person.

6. File System

“File system” means, in accordance with Art. 4 No. 6 GDPR, any structured collection of personal data that is accessible according to certain criteria, regardless of whether this collection is maintained centrally, decentrally or according to functional or geographical aspects;

7. Controller Or Person Responsible For Processing

“Controller” means, in accordance with Article 4(7) of the GDPR, the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its designation may be provided for under Union or Member State law.

8. Processors

“Processor” means, in accordance with Article 4(8) of the GDPR, a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

9. Receiver

“Recipient” means, in accordance with Article 4(9) of the GDPR, a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not a third party. 2Authorities which may receive personal data in the context of a specific investigative task under Union or Member State law shall not, however, be considered as recipients; the processing of such data by those authorities shall be carried out in accordance with the applicable data protection rules in accordance with the purposes of the processing.

10. Third Party

“Third party” means, in accordance with Article 4(10) GDPR, a natural or legal person, public authority, agency or other body, other than the data subject, the controller, the processor and the persons authorised to process the personal data under the direct responsibility of the controller or the processor.

11. Third Country

“Third country” or “third countries” means countries outside the European Union (EU), the European Economic Area (EEA) or the Swiss Confederation.

12. Consent

“Consent” of the data subject means, in accordance with Article 4(11) of the GDPR, any freely given specific, informed and unambiguous indication of his or her wishes in the form of a statement or other unambiguous affirmative act by which the data subject signifies his or her agreement to the processing of personal data relating to him or her.

IV. Relevant Legal Bases

In accordance with Art. 13 DSGVO, we will inform you of the legal basis on which the data processing takes place.

For users from the European Union and the European Economic Community, unless the legal basis is stated separately in the privacy policy, the following applies:

• • Obtaining consent is based on Art. 6 para. 1 lit. a and Art. 7 DSGVO.

• • The processing for the fulfilment of our services and the implementation of contractual measures as well as answering enquiries is based on Art. 6 para. 1 lit. b DSGVO.

• • The processing for the fulfilment of our legal obligations is based on Art. 6 para. 1 lit. c DSGVO;

• • If vital interests of the data subject or another natural person make the processing of personal data necessary, this is based on Art. 6 (1) lit. d DSGVO.

• • For a necessary processing of data for the performance of a task which is in the public interest or in the exercise of official authority vested in the controller, Art. 6 (1) lit. e DSGVO is the legal basis.

• • The processing for the protection of our legitimate interests is based on Art. 6 para. 1 lit. f DSGVO.

• • Processing of data for purposes other than those for which they were collected is based on the requirements of Art. 6 (4) DSGVO.

• • Processing of special categories of data (analogous to Art. 9 (1) of the GDPR) is determined according to the requirements of Art. 9 (2) of the GDPR.

V. Your rights

You have the following rights in relation to your data:

1. Right To Information

As a data subject, you have the right, within the framework of the applicable legal provisions, to obtain information free of charge at any time about your stored personal data, their origin and recipients and the purpose of the data processing. The data subject has the right to request confirmation from the controller as to whether personal data concerning him or her are being processed; if this is the case, he or she has the right to information about this personal data and to the following information:

1. 1. the purposes of processing;

1. 1. the categories of personal data that are processed;

1. 1. the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular in the case of recipients in third countries or international organisations;

1. 1. if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration;

1. 1. the existence of a right to obtain the rectification or erasure of personal data concerning them or to obtain the restriction of processing by the controller or a right to object to such processing;

1. 1. the existence of a right of appeal to a supervisory authority;

1. 1. if the personal data are not collected from the data subject, any available information on the origin of the data;

1. 1. the existence of automated decision-making, including profiling, pursuant to Article 22(1) and (4) of the GDPR and, at least in these cases, meaningful information about the logic involved and the scope and intended effects of such processing for the data subject.

Where personal data are transferred to a third country or to an international organisation, the data subject shall have the right to be informed of the appropriate safeguards pursuant to Article 46 GDPR in relation to the transfer.

2. Right Of Rectification

The data subject shall have the right to obtain from the controller the rectification without delay of inaccurate personal data concerning him or her.
Taking into account the purposes of the processing, the data subject also has the right to request the completion of incomplete personal data, including by means of a supplementary declaration.

3. Right To Erasure (“right to be forgotten”)

1. 1. The data subject shall have the right to obtain from the controller the erasure without delay of personal data concerning him or her, and the controller shall be obliged to erase personal data without delay where one of the following reasons applies:
      1. 1. The personal data are no longer necessary for the purposes for which they were collected or otherwise processed.
      1. 1. The data subject revokes his/her consent on which the processing was based pursuant to Art. 6(1)(a) or Art. 9(2)(a) DSGVO and there is no other legal basis for the processing.
      1. 1. The data subject objects to the processing pursuant to Article 21(1) of the GDPR and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21(2) of the GDPR.
      1. 1. The personal data have been processed unlawfully.
      1. 1. The deletion of the personal data is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.
      1. 1. The personal data was collected in relation to information society services offered pursuant to Art. 8(1) DSGVO.

1. 1. Where the controller has made the personal data public and is obliged to erase it pursuant to paragraph 1, it shall take reasonable steps, including technical measures, having regard to the available technology and the cost of implementation, to inform data controllers which process the personal data that a data subject has requested that they erase all links to, or copies or replications of, that personal data.

1. 1. Paragraphs 1 and 2 shall not apply insofar as the processing is necessary to
      1. 1. to exercise the right to freedom of expression and information;
      1. 1. for compliance with a legal obligation which requires processing under Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
      1. 1. for reasons of public interest in the area of public health in accordance with Art. 9(2)(h) and (i) and Art. 9(3) DSGVO;
      1. 1. for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes pursuant to Article 89(1), where the right referred to in paragraph 1 is likely to render impossible or seriously prejudice the achievement of the purposes of such processing, or
      1. 1. for the assertion, exercise or defence of legal claims.

4. Right To Restriction Of Processing

1. 1. The data subject shall have the right to obtain from the controller the restriction of processing where one of the following conditions is met:
      1. 1. the accuracy of the personal data is contested by the data subject for a period enabling the controller to verify the accuracy of the personal data,
      1. 1. the controller no longer needs the personal data for the purposes of processing, but the data subject needs it for the establishment, exercise or defence of legal claims, or
      1. 1. the data subject has objected to the processing pursuant to Article 21(1) of the GDPR, as long as it has not yet been determined whether the legitimate grounds of the controller override those of the data subject.
      1. 1.  

1. 1. Where processing has been restricted in accordance with paragraph 1, those personal data may be processed, apart from being stored, only with the consent of the data subject or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of substantial public interest of the Union or of a Member State.

5. Right To Data Portability

1. 1. The data subject shall have the right to obtain personal data concerning him or her which he or she has provided to a controller in a structured, commonly used and machine-readable format, and the right to transmit such data to another controller without hindrance from the controller to whom the personal data have been provided, provided that
      1. 1. the processing is based on consent pursuant to Art. 6 para. 1 lit. a) or Art. 9 para. 2 lit. a) DSGVO or on a contract pursuant to Art. 6 para. 1 lit. b) DSGVO and
      1. 1. the processing is carried out with the aid of automated procedures.

1. 1.  When exercising their right to data portability in accordance with paragraph 1, the data subject shall have the right to obtain that the personal data be transferred directly from one controller to another controller, where technically feasible.

1. 1. The right under subsection (1) shall not affect the rights and freedoms of other persons.

1. 1. This right shall not apply to processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

6. Widerspruchsrecht

The data subject shall have the right to object at any time, on grounds relating to his or her particular situation, to the processing of personal data concerning him or her which is carried out on the basis of Article 6(1)(e) or (f) of the GDPR; this shall also apply to any profiling based on these provisions. The controller shall no longer process the personal data unless it can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defence of legal claims.

Right to object to the collection of data in specific cases and to direct marketing (Art. 21 GDPR)

If the data processing is carried out on the basis of Art. 6 para. 1 lit. e or f DSGVO, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions.

The respective legal basis on which processing is based can be found in this privacy policy. If you object, we will no longer process your personal data concerned unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims (objection under Article 21(1) of the GDPR).

If your personal data is processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; this also applies to profiling insofar as it is related to such direct marketing. If you object, your personal data will subsequently no longer be used for the purpose of direct advertising (objection pursuant to Art. 21 (2) DSGVO).

In the context of the use of information society services, notwithstanding Directive 2002/58/EC, the data subject may exercise his or her right to object by means of automated procedures using technical specifications.

7. Right Of Withdrawal

Many data processing operations are only possible with your express consent. You can revoke consent you have already given at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

8. Right Of Appeal To A Supervisory Authority

Without prejudice to any other administrative or judicial remedy, every data subject shall have the right to lodge a complaint with a supervisory authority, in particular in the Member State of his or her residence, place of work or the place of the alleged infringement, if the data subject considers that the processing of personal data relating to him or her infringes this Regulation. The right of appeal shall be without prejudice to any other administrative or judicial remedy.

A list of the data protection officers and their contact details can be found in the following link:
https://www.bfdi.bund.de/DE/Service/Anschriften/anschriften_table.html (Germany) and
https://www.dsb.gv.at/ueber-die-website/kontakt.html (Austria).

9. Right To Restriction Of Processing

1. 1. The data subject shall have the right to obtain from the controller the restriction of processing where one of the following conditions is met:
      1. 1. the accuracy of the personal data is contested by the data subject for a period enabling the controller to verify the accuracy of the personal data,
      1. 1. the processing is unlawful and the data subject refuses the erasure of the personal data and instead requests the restriction of the use of the personal data;
      1. 1. the controller no longer needs the personal data for the purposes of processing, but the data subject needs it for the establishment, exercise or defence of legal claims, or
      1. 1. the data subject has objected to the processing pursuant to Article 21(1) of the GDPR, as long as it has not yet been determined whether the legitimate grounds of the controller override those of the data subject.

1. 1. Where processing has been restricted in accordance with paragraph 1, those personal data may be processed, apart from being stored, only with the consent of the data subject or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of substantial public interest of the Union or of a Member State.

VI. Information on the use and data collection of our website

1. SSL Or TLS Encryption

Our website uses SSL or TLS encryption for security reasons, especially when transmitting confidential content such as orders or enquiries that you send to us as the website operator. You can recognise an encrypted connection by the fact that “https://” appears at the beginning of the address line of your browser and that a lock symbol also appears in the browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties. With SSL encryption, third parties cannot read the data transmission.

2. Encrypted Payment Transactions

If, after the conclusion of a contract with costs, there is an obligation to transmit your payment data to us (e.g. account number in the case of direct debit authorisation), this data is required for payment processing. Payment transactions via the common means of payment (Visa/MasterCard, direct debit) are made exclusively via an encrypted SSL or TLS connection. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. With encrypted communication, your payment data that you transmit to us cannot be read by third parties.

3. Cookies

Our website uses so-called cookies, which are transferred to the user’s browser either by our server or the server of a third party. Cookies are small text files that are exchanged between the web browser and the hosting server. Cookies are stored on the user’s computer and transmitted from it to our site. In the respective web browser used, you can restrict or fundamentally prevent the use of cookies by means of a corresponding setting.

Cookies that have already been saved can be deleted at any time. If cookies are deactivated for our website, this may mean that the website cannot be displayed or used to the full extent.

You can also prevent the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all functions of this website to their full extent. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available under the following link:
https://tools.google.com/dlpage/gaoptout?hl=de

The legal basis for the processing of personal data using cookies is Art. 6 (1) lit. f DSGVO.

4. Collection of general data and information and duration of log file storage:

We use the services of Amazon Web Services (AWS) as a service provider in order to be able to provide a secure and fast online offer.

Amazon Web Services is, among other things, a web hosting provider. The service provider is the American company Amazon Web Services, Inc., 410 Terry Avenue North, Seattle WA 98109, USA.

Amazon processes data of users, i.e. also of you, among others also in the USA. We would like to point out that according to the opinion of the European Court of Justice, there is currently no adequate level of protection for the transfer of data to the USA. This may entail various risks for the lawfulness and security of data processing. Amazon uses so-called standard contractual clauses (Art. 46 (2) and (3) DSGVO) as the basis for data processing for recipients located in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or in the event of a transfer of data there. Standard Contractual Clauses (SCC) are templates provided by the European Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Amazon undertakes to comply with the European level of data protection when processing their relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among other places:

https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de

The Amazon Data Processing Terms and Conditions (AWS GDPR DATA PROCESSING), which correspond to the standard contractual clauses, can be found at

https://d1.awsstatic.com/legal/AWS_GDPR_DPA.pdf

You can find out more about the data processed through the use of AMAZON WEB SERVICES (AWS) in the data protection declaration at

https://aws.amazon.com/de/privacy/

VII. Data processing in the context of contacting us

1. Contact via website contact form

Based on statutory provisions, our website (https://teamplate.io) contains data that enable a quick electronic contact to our enterprise, as well as direct communication with us, which also includes a general address of the so-called electronic mail (e-mail address). If a data subject contacts the controller by e-mail or by using a contact form on our website (https://teamplate.io/support-kontakt/), the personal data transmitted by the data subject will be stored automatically. Such personal data transmitted on a voluntary basis by a data subject to the controller will be stored for the purposes of processing or contacting the data subject.

This concerns the information contained in the e-mail. In addition, the following data is collected by our system:

• • IP address of the calling computer;

• • The date and time of the e-mail.

The legal basis for the processing of personal data in the context of e-mails sent to us is Art. 6 para. 1 lit. b or lit. f DSGVO.

We do not pass on this data without your consent. The processing of the entered data is therefore exclusively based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time. An informal communication by e-mail to us is sufficient for this purpose. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation. The data you have entered will remain with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after we have completed processing your enquiry). Mandatory legal provisions – in particular retention periods – remain unaffected.

2. Contact By E-mail

Contacting us by e-mail is possible via the e-mail addresses published on our website.
If you use this contact method, the data you provide (e.g. surname, first name, address), but at least the e-mail address, as well as the information contained in the e-mail together with any personal data you may have provided will be stored for the purpose of contacting you and processing your request. In addition, the following data is collected by our system:

• • IP address of the calling computer;

• • Date and time of the e-mail.

The legal basis for the processing of personal data in the context of e-mails sent to us is Art. 6 para. 1 lit. b or lit. f DSGVO.

3. Contact By Letter And Fax

If you send us a letter or a fax, the data transmitted by you (e.g. surname, first name, address) and the information contained in the letter or fax together with any personal data transmitted by you will be stored for the purpose of contacting you and processing your request. We will not pass on this data without your consent.

The processing of this data is based on Art. 6 (1) lit. b DSGVO if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6 para. 1 lit. a DSGVO) and/or on our legitimate interests (Art. 6 para. 1 lit. f DSGVO), as we have a legitimate interest in effectively processing the enquiries addressed to us.

4. Processing Of Data (Customer And Contract Data)

We collect, process and use personal data only insofar as they are necessary for the establishment, content or amendment of the legal relationship (inventory data). This is done on the basis of Art. 6 para. 1 lit. b DSGVO, which permits the processing of data for the fulfilment of a contract or pre-contractual measures. We collect, process and use personal data about the use of our internet pages (usage data) only insofar as this is necessary to enable the user to use the service or to bill the user.

The collected customer data will be deleted after completion of the order or termination of the business relationship. Statutory retention periods remain unaffected

5. Data transmission upon conclusion Of a contract for services and digital content

We only transmit personal data to third parties if this is necessary for the processing of the contract, for example to the credit institution commissioned with the processing of payments.

No further transmission of data will take place or only if you have expressly consented to the transmission. Your data will not be passed on to third parties without your express consent, for example for advertising purposes. The basis for data processing is Art. 6 para. 1 lit. b DSGVO, which permits the processing of data for the fulfilment of a contract or pre-contractual measures.

6. Data processing, including through social networks

We maintain publicly accessible profiles on social networks, currently Facebook and Instagram.

Social networks such as Facebook, Google+ etc. can usually comprehensively analyse your user behaviour when you visit their website or a website with integrated social media content (e.g. like buttons or advertising banners). By visiting our social media presences, numerous data protection-relevant processing operations are triggered.

In detail:

If you are logged into your social media account and visit our social media presence, the operator of the social media portal can assign this visit to your user account. However, your personal data may also be collected under certain circumstances if you are not logged in or do not have an account with the respective social media portal. In this case, this data collection takes place, for example, via cookies that are stored on your end device or by recording your IP address.

With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, interest-based advertising can be displayed to you inside and outside the respective social media presence. If you have an account with the respective social network, the interest-based advertising can be displayed on all devices on which you are or were logged in.

Please also note that we cannot track all processing operations on the social media portals. Depending on the provider, further processing procedures may therefore be carried out by the operators of the social media portals. For details, please refer to the terms of use and data protection provisions of the respective social media portals.

Legal Basis

Our social media presences are intended to ensure the most comprehensive presence possible on the internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f DSGVO. The analysis processes initiated by the social networks may be based on different legal grounds, which must be stated by the operators of the social networks (e.g. consent within the meaning of Art. 6 para. 1 lit. a DSGVO).

Responsible person and assertion of rights

If you visit one of our social media sites (e.g. Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during this visit. In principle, you can assert your rights (information, correction, deletion, restriction of processing, data portability and complaint) both vis-à-vis us and vis-à-vis the operator of the respective social media portal (e.g. vis-à-vis Facebook).

Please note that despite the joint responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are largely determined by the corporate policy of the respective provider.

Storage Period

The data collected directly by us via the social media presence is deleted from our systems as soon as the purpose for storing it no longer applies, you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies. Stored cookies remain on your end device until you delete them. Mandatory legal provisions – in particular retention periods – remain unaffected.

We have no influence on the storage period of your data, which is stored by the operators of the social networks for their own purposes. For details, please contact the operators of the social networks directly (e.g. in their privacy policy, see below).

Facebook

We have a profile on Facebook under the name “Teamplate”.

The provider is Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. Facebook is certified in accordance with the EU-US Privacy Shield.

We have entered into a Joint Processing Agreement (Controller Addendum) with Facebook. This agreement specifies which data processing operations we or Facebook are responsible for when you visit our Facebook page. You can view this agreement at the following link:

https://www.facebook.com/legal/terms/page_controller_addendum.

You can adjust your advertising settings independently in your user account. To do so, click on the following link and log in:https://www.facebook.com/settings?tab=ads.

For details, please refer to Facebook’s privacy policy:

https://www.facebook.com/about/privacy/

Instead of registering directly on our website, you can register with Facebook Connect. The provider of this service is Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.

If you decide to register with Facebook Connect and click on the “Login with Facebook”/”Connect with Facebook” button, you will automatically be redirected to the Facebook platform. There you can log in with your usage data. This links your Facebook profile to our website or services. This link gives us access to the data you have deposited with Facebook. These are mainly:

• • Facebook name

• • Facebook profile and cover picture

• • Facebook cover

• • Email address stored on Facebook

• • Facebook ID

• • Facebook friends lists

• • Facebook Likes (“Like” votes)

• • Birthday

• • Gender

• • Country

• • Language

This data is used to set up, provide and personalise your account.

Registration with Facebook Connect and the associated data processing operations are based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time with effect for the future.

For more information, please see the Facebook Terms of Use and the Facebook Privacy Policy. You can find these at:

https://de-de.facebook.com/about/privacy/ and https://de-de.facebook.com/legal/terms/

Instagram

We have a profile on Instagram under the name “teamplatehq”. The provider is Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA. For details on how they handle your personal data, please refer to Instagram’s privacy policy: https://help.instagram.com/519522125107875.

Adobe Fonts

Our website also uses web fonts from Adobe for the uniform display of certain fonts. The provider is Adobe Systems Incorporated, 345 Park Avenue, San Jose, CA 95110-2704, USA (Adobe).

When you call up our pages, your browser loads the required fonts directly from Adobe in order to be able to display them correctly on your terminal device. In doing so, your browser establishes a connection to Adobe’s servers in the USA. This enables Adobe to know that our website has been accessed via your IP address. According to Adobe, no cookies are stored when providing the fonts.

Adobe is certified under the EU-US Privacy Shield. The Privacy Shield is an agreement between the United States of America and the European Union to ensure compliance with European data protection standards. You can find more information at: https://www.adobe.com/de/privacy/eudatatransfers.html.

The use of Adobe Fonts is necessary to ensure a uniform typeface on our website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.

For more information on Adobe Fonts, please visit: https://www.adobe.com/de/privacy/policies/adobe-fonts.html.

You can find Adobe’s privacy policy at: https://www.adobe.com/de/privacy/policy.html

Google reCAPTCHA

We use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on our websites. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

The purpose of reCAPTCHA is to check whether data entry on our websites (e.g. in a contact form) is made by a human or by an automated programme. For this purpose, reCAPTCHA analyses the behaviour of the website visitor on the basis of various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent by the website visitor on the website or mouse movements made by the user). The data collected during the analysis is forwarded to Google.

The reCAPTCHA analyses run completely in the background. Website visitors are not made aware that an analysis is taking place.

The data processing is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in protecting its web offers from abusive automated spying and from SPAM.

For more information on Google reCAPTCHA and Google’s privacy policy, please see the following links: https://policies.google.com/privacy?hl=de and https://www.google.com/recaptcha/intro/v3.htmll.

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

The storage of Google Analytics cookies and the use of this analysis tool are based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in analysing user behaviour in order to optimise both its website and its advertising.

IP Anonymisation

We have activated the IP anonymisation function on this website. This means that your IP address is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

VIII. Data processing in the context of an application

1. General

We process applicant data within the scope of application procedures. Applicant data is personal data that interested parties voluntarily submit to us when they apply for a job offer published by us and seek an employment relationship with our company. Such applicant data is processed only for the purpose of and within the scope of the application procedure and is carried out without exception in accordance with the legal requirements. The legal basis for the processing of applicant data is thus based on Art. 6 para. 1 lit. b) DSGVO.

If the processing of applicant data is necessary to protect the legitimate interests of the controller or a third party and the interests or fundamental rights and freedoms of the data subject which require the protection of personal data do not override, in particular if the data subject is a child, the processing is still based on Art. 6 (1) f) DSGVO. Furthermore, Section 26 of the Federal Data Protection Act (BDSG) also applies.

The application process is based on applicants voluntarily providing us with their applicant data.

The applicant data, unless separately identified, is all information from the CV, i.e. personal details, as well as postal and contact addresses and other documents such as cover letters, certificates or letters of recommendation, as well as any other information that applicants voluntarily submit and provide to us.

2. Consent

In the event of your application, you declare your consent to the processing of your applicant data for the purposes of the application procedure in the manner and to the extent set out in paragraph 1 when you send us your data as part of an application.

3. Processing of special categories of personal data

If you voluntarily provide us with special categories of personal data within the meaning of Art. 9 (1) DSGVO as part of the application process (usually data on ethnic origin or health data such as severely disabled status), such data will be processed in accordance with Art. 9 (2) b DSGVO.

4. Application Procedure

Currently, applicants can only send us their applications online by e-mail. We would like to point out that e-mails are generally not encrypted and that applicants must carry out any encryption themselves. For this reason, we assume no responsibility or even liability for the transmission between the applicants (“sender”) and us (“recipient”). We therefore recommend applying by post.

5. Processing and deletion of applicant data

(1) In the event of a successful application and employment with our company, the data provided by applicants may be processed by us for the purposes of the employment relationship.

(2) If the application is not successful and no employment relationship is established, the applicant’s data will be deleted as described below.

(3) The applicant’s data will also be deleted as described below if the applicant is not invited to a personal interview, unless the applicant expressly allows us to continue to store the data in order to use it for a new position in our company if necessary.

(4) The applicant’s data will also be deleted if the applicant withdraws his/her application, which the applicants are entitled to do at any time.

(5) Subject to a justified revocation by the applicant, the deletion takes place after the expiry of a period of six months from receipt of the applicant data by us. This period is necessary so that we can answer any follow-up questions about the application and meet our obligations to provide evidence under the General Equal Treatment Act. Invoices for any reimbursement of travel expenses are archived in accordance with tax law requirements.

IX. Routine deletion and blocking of personal data

The controller shall process and store personal data of the data subject only for the time necessary to achieve the purpose of storage or where provided for by the European Directive and Regulation or other legislator in laws or regulations to which the controller is subject.

If the purpose of storage no longer applies or if a storage period prescribed by the European Directive and Regulation or another competent legislator expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.

The criterion for the duration of the storage of personal data is the respective statutory retention period. After expiry of the period, the corresponding data is routinely deleted if it is no longer required for the fulfilment or initiation of the contract.

X. Final Provisions

1. Content of the online offer

Teamplate/ITTLB Ltd does not guarantee the topicality, correctness, completeness or quality of the information provided. Liability claims against Teamplate/ITTLB Ltd relating to material or immaterial damage caused by the use or non-use of the information provided or by the use of incorrect or incomplete information are excluded. This does not apply in the case of demonstrably intentional or grossly negligent fault.

All offers are subject to change and non-binding. Teamplate/ITTLB Ltd expressly reserves the right to change, supplement or delete parts of the pages or the entire offer without separate announcement or to cease publication temporarily or permanently.

2. References And Links

In the case of direct or indirect references to external websites (“hyperlinks”) that lie outside the area of responsibility of Teamplate/ITTLB Ltd, a liability obligation would only come into force if the author had knowledge of the content and it would be technically possible and reasonable for him to prevent use in the case of illegal content. Teamplate/ITTLB Ltd hereby expressly declares that at the time the links were created, no illegal content was identifiable on the linked pages. Teamplate/ITTLB Ltd has no influence on the current and future design, content or authorship of the linked pages. For this reason, Teamplate/ITTLB Ltd hereby expressly distances itself from all content of all linked pages that were changed after the link was created. This statement applies to all links and references set within the own internet offer. For illegal, incorrect or incomplete content and in particular for damages arising from the use or non-use of such information, the provider of the page to which reference was made is solely liable, not the person who merely refers to the respective publication via links.

3. Legal validity of this disclaimer

This disclaimer is to be regarded as part of the internet publication which you were referred from. If sections or individual terms of this statement are not legal or correct, the content or validity of the other parts remain uninfluenced by this fact.