Search

Choose language

enEnglish
Headergrafik

Detailed privacy notice


General information

Protecting your personal data is vital to INVERTO GmbH. We understand how important it is to inform you about which personal data we collect when you visit our website, how this data is used and what options you have to change it. This privacy notice provides the answers to key questions.

 

Which data is collected and how is it used?

When you visit our websites, our web server temporarily records the domain name or the IP address of your computer, the client’s file request (file name and URL), the http response code and the page source, also known as the referral URL (the website the visitor came from, e.g. Google).

Cookies: We use cookies for certain services. These are small text files which are temporarily stored on your computer. This allows us to identify if you visit us again.

For detailed information on all cookies used by us and the possibility to withdraw your consent to cookies, please have a look here.

Additional personal data, such as your name, address, telephone number or email address, is not collected, unless you provide this information voluntarily.

Where is my data processed?

Your data will usually be processed in Germany. In exceptional cases and to the extent permitted by law, data processing will also take place in another country.

In some cases, our employees might need to access your data during business trips in third countries, if you make an enquiry and an employee processes it from abroad, for example. Data is accessed via a VPN connection, which is encrypted between the employee’s notebook and the server in Germany. Your data may also be processed locally on our employees’ notebooks whilst abroad.

How secure is my data?

In order to protect your data against unauthorised access and misuse, we have implemented extensive technical and operational security measures, in accordance with German law.

Will my data be passed on to third parties?

Yes, some data must be passed on, in accordance with strict contractual and statutory requirements.

Due to legal obligation: In certain cases we are legally obliged to transfer data to a requesting governmental authority.

To external service providers for order data processing: If service providers come into contact with personal data of our customers, this is done within the scope of a so-called order data processing. This is expressly provided for by law (Article 26 or 28 of the General Data Protection Regulation). In this case, INVERTO GmbH still remains responsible for protecting your data. The service provider is contractually obliged to process all personal data exclusively in accordance with our instructions, which we ensure through strict contractual regulations, and the implementation of technical and organisational measures and supplementary controls. If personal data is processed outside the EEA, an adequate level of data protection is ensured by appropriate guarantees or the conclusion of the EU standard contract clauses.

Online meetings, telephone and video conferences and webinars

We use third-party platforms and applications for the purpose of conducting video and audio conferences, webinars and other types of video and audio meetings (hereinafter referred to as “Online Meetings”). When selecting these providers and their services, we observe the legal requirements.

We currently use the providers Zoom (a service of Zoom Video Communications, Inc., 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA) or Microsoft Teams (a service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA) (hereinafter collectively referred to as “Provider”). The Providers act on our behalf (order processing according to 28 of the General Data Protection Regulation).

Note: If you call up the Internet pages of Zoom or Microsoft Teams, the providers are responsible for data processing. However, calling up the Internet site is only necessary for the use of Zoom or Microsoft Teams in order to download the software for use or to use the browser version.

Processed data types

In order to participate in an online meeting or to enter the meeting room, you must at least provide information about your name and – in case of telephone use – your telephone number. You can deactivate the transmission via microphone and camera at any time via the corresponding settings.

The following personal data may be processed:

– User information: first name, last name, display name, e-mail address, telephone number, password (if Single-Sign-On is not used), preferred language. Optional: profile picture, department.
– Meeting metadata: Meeting topic and description, meeting ID, date, time and location, attendee IP addresses, device/hardware information, phone numbers, time of last attendee activity, number of chat and channel messages, duration of time for audio, video and screen sharing.
– When dialing in by phone: information about incoming and outgoing phone number, country name, start and end time.
– Text, audio and video: You may be able to use the chat, question or survey functions in an online meeting. To this extent, the text entries you make are processed in order to display and, if necessary, log them in the online meeting. To enable the display of video and the playback of audio, the data from the microphone of your terminal device and from any video camera on the terminal device will be processed for the duration of the online meeting, unless you have deactivated these functions.

Further information on data protection of the providers:

Zoom: https://zoom.us/docs/en-us/privacy-and-legal.html.
Microsoft teams: https://privacy.microsoft.com/en-us/privacystatement.

We do not pass on any other data to third parties, unless you have expressly consented to this or it is required by law.

Is my usage behaviour analysed, e.g. for advertising?

In accordance with statutory regulations, we create usage profiles under a pseudonym. We can use these to optimise our content. It is not possible to identify you from this information. Your profile data will be linked to other information about your identity only with your consent. Below, you will find further information about the processes used on our websites and about how you can object at any time.

This website uses Google Analytics, a web analysis service provided by Google Inc. (“Google”). Google Analytics uses cookies, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of the website will be transmitted to and stored by Google on servers in the United States. In case IP anonymisation is activated on this website, your IP address will be truncated within Member States of the European Union or other parties to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the United States and truncated there.

Google will use this information on behalf of INVERTO GmbH for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing them with other services relating to website activity and internet usage. The IP address that your browser sends to Google Analytics will not be associated with any other data held by Google. You may prevent the use of cookies by selecting the appropriate settings in your browser; however, please note that if you do this you may not be able to use the full functionality of this website.

You can also prevent data generated by cookies and related to your use of the website (including your IP address) from being collected by Google, as well as being processed by Google, by downloading and installing the browser plug-in available via the following link (http://tools.google.com/dlpage/gaoptout?hl=en).

You can prevent collection by Google Analytics by clicking on the following link. An opt-out cookie will be placed on your computer, which will prevent your data from being collected when visiting this website in future:
deactivate Google Analytics

You can read more about the terms of use and privacy at http://www.google.com/analytics/terms/us.html or at https://policies.google.com/?hl=us. We would like to point out that this website uses Google Analytics with the ‘GAT._anonymizelp();’ code and IP addresses will therefore only be processed in a shortened form to prevent persons from being identified.

 

Data control with social media plugins

Our website contains buttons from social media networks with which you can open our social media profiles to follow us or to connect with our contact persons.

To ensure that you have full data control, the buttons do not establish direct contact between the respective social network and the visitor until you actively click on the button (one-click solution).

By activating the social media plugin the following data can be transmitted to the social media providers: IP address, browser information, operating system, screen resolution, installed browser plugins such as Adobe Flash Player, origin of visitors when you follow a link (referrer) URL of the current website.

The next time you visit our website, the social media plug-ins are again provided in the default inactive mode, so that no data is transferred the next time you visit the website.

What is the legal basis for processing your personal data?

If our company is subject to a legal obligation requiring the processing of personal data, the processing is based on Art. 6 para. 1 lit. c) GDPO. If we process your data to take steps prior to entering into a contract, carried out at your request, or, if you are already our customer, for the performance of the contract, Art. 6 para. 1 S. 1 lit. b) GDPO is the legal basis for this data processing. Other personal data will only be processed by us if you give your consent (Art. 6 para. 1 sentence 1 lit. a) GDPO) or if we have a legitimate interest in processing your data (Art. 6 para. 1 sentence 1 lit. f) GDPO).

What rights can I exercise?

The following rights are laid down by the EU General Data Protection Regulation.  We respect these rights and assure you that any request will be processed as quickly as possible. You have the following rights:

Article 15 Right of access

Article 16 Rectification

Article 17 Erasure, “right to be forgotten”

Article 18 Right to restriction of processing

Article 19 Notification rights

Article 20 Right to data portability

Article 21 Right to object

If you have any questions about data protection at INVERTO GmbH, you can put them to our data protection officer, Michael Letter (dsb@inverto.com).

Can I get information about my data that you store?

You can request information free of charge about the scope, the origin and the recipients of your data that we store, as well as the purpose of the storage

Can I have data rectified?

You may request to have inaccurate data rectified at any time.

Can I have my data erased?

You may request to have your data deleted at any time.

This right is only restricted, if the

– data is subject to a statutory retention period, e.g. through tax regulation

– data is essential to fulfil the purpose of the contract

– data is processed to exercise the right of freedom of expression and information

– data is processed to comply with a legal obligation to which the controller is subject

– data is processed to perform a task carried out in the public interest or in the exercise of official authority

– data is processed for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes

– data is processed for the establishment, exercise or defence of legal claims

Can data be transferred to me electronically?

You have the right to receive the personal data that you have provided to us in a structured, commonly-used and machine-readable format.

We will transmit the requested data without hindrance, where

– the processing is based on consent pursuant to Article 6(1)(a) or Article 9(2)(a) or on a contract pursuant to Article 6(1)(b) and

– the processing is carried out by automated means

If necessary, the exercise of this right may be restricted:

– if the data transfer is either not possible or is only possible with disproportionately high effort due to the type of storage, or is not possible for technical reasons.

Do I have the right to object?

Data subjects have the right to object to the processing of their personal data at any time pursuant to Article 6(1)(e) or (f) of the GDPR (“General Data Protection Regulation”) for reasons resulting from their specific circumstances.  If you exercise your right to object, your personal data will no longer be processed, unless INVERTO can prove that there are compelling and legitimate reasons to do so which override the interests, rights and freedoms of the data subject or in cases where the processing serves to enforce, exercise or protect legal claims.

You may exercise your right to object by contacting any of our employees or the data protection officer.

Can I withdraw my consent to the processing of my personal data?

You can withdraw your consent at any time. You can click on the unsubscribe link at the end of each of our newsletters or send us an e-mail to contact@inverto.com

How can I get further information about data protection from INVERTO GmbH?

If you have any questions about data protection at INVERTO GmbH, you can put them to our data protection officer, Michael Letter (dsb@inverto.com).

Competent supervisory authority

The competent supervisory authority is:

Landesbeauftragte für Datenschutz und Informationsfreiheit
Nordrhein-Westfalen
Postfach 20 04 44
40102 Düsseldorf
Tel.: +49 (0)211/38424-0
Fax: +49 (0)211/38424-10
Email: poststelle@ldi.nrw.de

 

 

  • Cologne
  • Copenhagen
  • London
  • Munich
  • Shanghai
  • Stockholm
  • Vienna

We deliver results.