Google Inc. is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with the European data protection level (https://support.google.com/analytics/answer/7105316?hl=en). Further information on data protection in connection with Google Analytics can be found in the Google Analytics Help (https://support.google.com/analytics/answer/6004245?hl=en).

We have concluded a contract with Google regarding the processing of commissioned data and fully implement the strict requirements of the German data protection authorities for the use of Google Analytics.

5.1.2 Google RE/Marketing Services

We use the marketing and remarketing services (“Google Marketing Services”) of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland, (“Google”) at www.copytrack.com and app.copytrack.com.

The Google marketing services allow us to target ads for and on our site in order to present users only with ads that potentially match their interests. For example, if a user sees ads for products he has been interested in on other websites, this is referred to as “remarketing”. For these purposes, when our and other websites on which Google marketing services are active are accessed, Google directly executes a code from Google and (re)marketing tags (invisible graphics or code, also known as “web beacons”) are integrated into the website. With their help, an individual cookie, i.e. a small file, is stored on the user’s device (comparable technologies can also be used instead of cookies).

Cookies can be set by various domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. In this file it is noted which websites the user visits, which contents he is interested in and which offers he has clicked on, furthermore technical information about the browser and operating system, referring websites, visiting time as well as further information about the use of the online offer. The IP address of the users is also recorded, whereby we inform within the framework of Google Analytics that the IP address is shortened within member states of the European Union or in other signatory states of the European Economic Area Agreement and only in exceptional cases completely transmitted to a Google server in the USA and shortened there. The IP address is not combined with the user’s data within other Google offers. The above information may also be linked by Google to such information from other sources. If the user then visits other websites, ads tailored to his interests can be displayed.

Users’ data is processed pseudonymously within the framework of Google marketing services. This means that Google does not store and process, for example, the names or email addresses of users, but processes the relevant data cookie-related within pseudonymous user profiles. This means from Google’s point of view, the ads are not managed and displayed for a specifically identified person, but for the cookie holder, regardless of who this cookie holder is. This does not apply if a user has expressly permitted Google to process the data without this pseudonymisation. The information collected by Google marketing services about users is transmitted to Google and stored on Google’s servers in the USA.

One of the Google marketing services we use is the online advertising program “Google AdWords”. In the case of Google AdWords, each AdWords customer receives a different “conversion cookie”. Cookies cannot therefore be traced through the websites of AdWords customers. The information collected by the cookie is used to generate conversion statistics for AdWords customers who have opted for conversion tracking. AdWords customers see the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, you will not receive any information that personally identifies users.

These cookies expire after 30 days and are not used for personal identification. If the user visits certain pages of the AdWords customer’s website and the cookie has not yet expired, Google and the customer can recognize that the user has clicked on the ad and has been redirected to this page.

We use Google-Marketing-Services only after you have agreed to their use, the legal basis for the use of Google-Marketing-Services is therefore Art. 6 Para. 1 lit. a. GDPR. Please also read our general information on cookies in section 3.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.

You can also deactivate cookies for conversion tracking by setting your browser to block cookies from the “www.googleadservices.com” domain. Google’s privacy policy for conversion tracking can be found here (https://services.google.com/sitestats/de.html).

We can also use the “Google Tag Manager” to integrate and manage Google analysis and marketing services into our website.

Further information on Google’s use of data for marketing purposes can be found on the overview page: https://www.google.com/policies/technologies/ads, Google’s data protection declaration can be accessed at https://www.google.com/policies/privacy

If you wish to object to interest-based advertising by Google marketing services, you can use the setting and opt-out options provided by Google: http://www.google.com/ads/preferences.

Google is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

5.1.3. Facebook pixels, custom audiences and Facebook conversion

Within our online offer we use on www.copytrack.com and app.copytrack.com the so-called “Facebook pixel” of the social network Facebook, which is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”).

With the help of the Facebook pixel, Facebook is able to determine the visitors to our online offer as a target group for the presentation of ads (so-called “Facebook ads”). Accordingly, we use the Facebook pixel to display the Facebook ads we post only to Facebook users who have also shown an interest in our online offering or who have certain features (e.g. interests in certain topics or products that are determined by the websites visited) that we transmit to Facebook (so-called “custom audiences”). We also want to use the Facebook pixel to ensure that our Facebook ads meet the potential interest of users and are not a nuisance. The Facebook pixel also helps us understand the effectiveness of Facebook ads for statistical and market research purposes by showing whether users have been redirected to our website after clicking on a Facebook ad (so-called “conversion”).

We only use the Facebook pixels once you have agreed to its use. The legal basis for the use of the Facebook pixel is therefore Art. 6 para. 1 lit. a. GDPR. Please also read our general information on cookies in section 3.

Facebook processes the data in accordance with Facebook’s Data Usage Policy. Accordingly, general information on the display of Facebook ads can be found in the Facebook Data Usage Policy: https://www.facebook.com/policy.php. For specific information and details about the Facebook pixel and how it works, please visit the Facebook Help section: https://www.facebook.com/business/help/651294705016616.

You can object to the collection by the Facebook pixel and use of your data to display Facebook ads. To set what types of ads you see within Facebook, you can visit the page set up by Facebook and follow the instructions on usage-based advertising settings: https://www.facebook.com/settings?tab=ads. The settings are platform-independent, i.e. they are applied to all devices, such as desktop computers or mobile devices.

You may also object to the use of cookies for range measurement and advertising purposes via the deactivation page of the network advertising initiative (http://optout.networkadvertising.org/) and additionally the US website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).

Facebook is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active). Privacy Policy: https://www.facebook.com/policy.php.

5.1.4 LinkedIn Conversion Tracking

We use on www.copytrack.com and app.copytrack.com the retargeting tool LinkedIn conversion tracking of the LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland (“LinkedIn”) within our online offer.

This enables LinkedIn to collect statistical, pseudonymous data about your visit and the use of our website and to provide us with corresponding aggregated statistics on this basis. This information is also used to display interest-specific and relevant offers and recommendations. 

We do not use LinkedIn Conversion Tracking until you have agreed to its use, legal basis for the use of the LinkedIn Conversion Tracking is therefore Art. 6 Para. 1 lit. a. GDPR. Please also read our general information on cookies in section 3.

The information required for evaluation is stored in a cookie. You can prevent cookies from being stored on your computer through the settings of your internet browser or via this opt-out link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out. For more information about cookies, please see paragraph 3 of this Privacy Policy.

LinkedIn is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active). 

Privacy Policy of LinkedIn: https://www.linkedin.com/legal/privacy-policy. Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

5.1.5.   Twitter Pixel

Within our services offered on www.copytrack.com and app.copytrack.com we use conversion tracking with the Twitter pixel, a tool of Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.

This enables us to statistically record the use of our website in order to optimize it. Conversion tracking uses Twitter to set a cookie on your device when you visit our site by clicking on a Twitter ad.

Conversion tracking is used to generate statistics and not to identify you. Rather, we only want to know which Twitter ads or interactions users use to reach us on our website. Further information can be found under business.twitter.com/en/help/campaign-measurement-and-analytics/conversion-tracking-for-websites.html.

We use the Twitter pixel only with your explicit consent according to Art. 6 para. 1 a) GDPR. Please also read our general information on cookies in section 3. You can prevent the storage of cookies by setting your browser accordingly. In addition, you can configure settings in your personal Twitter account regarding advertising you receive: twitter.com/settings/personalization.

Twitter is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law: www.privacyshield.gov/participant.

Twitter Privacy Policy: twitter.com/en/privacy

Opt-Out: twitter.com/settings/personalization

6. Social Networks

6.1 Company pages

COPYTRACK maintains company sites on various social networks and platforms in order to make contact with customers, interested parties and users and for marketing purposes. When accessing the respective networks and platforms, the terms and conditions and the data processing guidelines of their respective operators apply.

We maintain online presences within social networks and platforms in order to communicate with active customers, interested parties and users and to inform them about our services.

If user data is processed by the platform operators outside the EU, this can entail risks, e.g. the enforcement of user rights can be made more difficult.  COPYTRACK generally only works with providers that are certified under the privacy shield.  These providers undertake to comply with EU data protection standards.

The user data collected on the platforms is regularly processed for advertising and market research purposes.  Thus, for example, user profiles are created on the basis of user behavior and the resulting interests of the user.  These usage profiles make it possible, for example, to place advertisements tailored to the presumed interests of the user inside and outside the platform.  For this purpose, cookies are stored on the user’s computer, which provide information about the user’s behavior and thus the user’s interests.  In addition, data can also be stored in the user profiles that are independent of the devices used by the users, for example if you are a member of the relevant platforms and are logged in to them.

Pursuant to Art. 6 para. 1 lit. f.  GDPR, your personal data is processed on the basis of our legitimate interests in effective communication with users or our legitimate interests in user information.  If you are asked by the platform operator for consent to data processing, Art. 6 para. 1 lit. a., Art. 7 GDPR is the legal basis for processing.

Of course you can ask us for more information.  Please note, however, that only the platform operator has access to your user data and can take the necessary measures and provide information, which is why it makes more sense to contact the platform operator directly.

You will find detailed information on data protection and possible objections in the information provided by the platform operators linked below.

Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) – Privacy Policy: https://www.facebook.com/about/privacy/, Opt-Out: https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active.

Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) – Privacy Policy/ Opt-Out: http://instagram.com/about/legal/privacy/.

Twitter (Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA) – Privacy Policy: https://twitter.com/de/privacy, Opt-Out: https://twitter.com/personalization, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt000000000TORzAAO&status=Active.

LinkedIn (LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland) – Privacy Policy https://www.linkedin.com/legal/privacy-policy Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active.

Xing (XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany) – Privacy Policy/ Opt-Out: https://privacy.xing.com/de/datenschutzerklaerung.

6.2 Social Media Plug-ins

We use social plug-ins from the social networks Facebook, Twitter, Pinterest and LinkedIn on our website on the basis of art. 6 par. 1 p. 1 lit. a GDPR on www.copytrack.com to make our company better known.. Your data will be transferred to the operators of the social plug-ins only if you have agreed to the transfer. Responsibility for data protection-compliant operation must be guaranteed by the respective provider. The integration of these plug-ins by us takes place in the way of the so-called two-click method around visitors of our web page in the best possible way to protect.

6.2.1 ShareThis

The social media plug-ins are provided to us by ShareThis, Inc, 4005 Miranda Avenue, Suite 100, Palo Alto, CA 94304-1227, USA (“ShareThis”). ShareThis collects personal data when using the social media plug-ins provided and provides its users with relevant, targeted advertising, analysis and data modeling based on social sharing. For this purpose, cookies, see point 3 of the data protection declaration, are set on your computer or pixel tags, HTTP headers (or other communication protocols) and browser identifiers are used. The data is processed pseudonymised.

We use the service of ShareThis on the basis of your consent within the meaning of Art. 6 para. 1 lit. a. GDPR. Please also read our general information on cookies in section 3.

You can prevent the storage of cookies either by the settings of your internet browser or under the following opt-out link: https://www.sharethis.com/privacy/.

ShareThis is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000L1HMAA0&status=Active). 

Privacy Policy: https://www.sharethis.com/privacy/.

6.2.2 Facebook

We use on our website www.copytrack.comSocial Plugins (“Plugins”) of the social network facebook.com, which is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”), if you have agreed to this use. The use is made on the legal basis of Art. 6 para. 1 lit. a) GDPR. Please also read our general information on cookies in section 3. We use the “LIKE” or “PART” button. This is an offer from Facebook. 

When you access a page of our website that contains such a plugin, and have agreed to the transfer of your data, your browser establishes a direct connection to the Facebook servers. The content of the plugin is transmitted directly from Facebook to your browser and integrated into the website.

By integrating the plugins, Facebook receives the information that your browser has called up the corresponding page of our website, even if you do not have a Facebook account or are not currently logged on to Facebook. This information (including your IP address) is transmitted directly from your browser to a Facebook server in the USA and stored there.

If you are logged in to Facebook, Facebook can directly associate your visit to our website with your Facebook account. If you interact with the plugins, for example by pressing the “LIKE” or “SHARE” button, the corresponding information is also transmitted directly to a Facebook server and stored there. The information is also published on Facebook and displayed to your Facebook friends.

Facebook may use this information for the purposes of advertising, market research and demand-oriented design of Facebook pages. To this end, Facebook creates usage, interest and relationship profiles, e.g. to evaluate your use of our website with regard to the advertisements displayed to you on Facebook, to inform other Facebook users about your activities on our website and to provide other services associated with the use of Facebook.

If you do not want Facebook to associate the information collected through our website with your Facebook account, you must log out of Facebook before visiting our website or do not agree to the transfer of your data.

The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as your rights and setting options for the protection of your privacy can be found in the data protection information (https://www.facebook.com/about/privacy/) of Facebook.

Facebook is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active). 

Privacy Policy: https://www.facebook.com/policy.php.

6.2.3 Twitter

On the basis of your consent in the meaning of Art. 6 Abs. 1 lit. a. GDPR , we use on our website www.copytrack.complugins from Twitter (Twitter Inc. 1355 Market Street, Suite 900, San Francisco, CA 94103, USA). You can recognize the Twitter plugins (tweet button) by the Twitter logo on our site. An overview of tweet buttons can be found here (https://about.twitter.com/resources/buttons). Please also read our general information on cookies in section 3. 

When you access a page of our website that contains such a plugin, and have agreed to the transfer of your data, a direct connection is established between your browser and the Twitter server. Twitter receives the information that you have visited our site with your IP address. If you click the Twitter “tweet button” while logged into your Twitter account, you can link the contents of our pages on your Twitter profile. This allows Twitter to associate the visit of our pages with your user account. We would like to point out that, as the provider of the pages, we are not aware of the content of the data transmitted or how it is used by Twitter.

If you do not want Twitter to associate your visit to our pages, please log out of your Twitter account.

Twitter is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active). 

Privacy Policy: https://twitter.com/de/privacy, Opt-Out: https://twitter.com/personalization. 

For more information, please see Twitter’s privacy policy ((https://twitter.com/privacy).

6.2.4 LinkedIn

On the basis of your consent within the meaning of Art. 6 para. 1 lit. a. GDPR), we use on our website functions and contents of the LinkedIn service, offered by LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland. Please also read our general information on cookies in section 3.

This may include, for example, content such as images, videos or texts and buttons with which users can express their appreciation of the content, subscribe to the authors of the content or our contributions.

If the users are members of the LinkedIn platform, LinkedIn can assign the call of the above contents and functions to the profiles of the users there. To prevent LinkedIn from associating your visit to our site with your LinkedIn account, you must log out of your LinkedIn account before visiting our site.

LinkedIn is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active). 

Privacy Policy of LinkedIn: https://www.linkedin.com/legal/privacy-policy. Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

6.2.5 Google Fonts

We integrate the fonts (“Google Fonts”) of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy Policy:

https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.

6.2.6 Vimeo 

We embed videos from the platform “Vimeo” of the provider Vimeo Inc., Attention: Legal Department, 555 West 18th Street New York, New York 10011, USA, on app.copytrack.com and in the communication via Intercom, see above. 

Privacy Policy: https://vimeo.com/privacy. 

Vimeo uses Google Analytics. The data protection declaration (https://www.google.com/policies/privacy) and opt-out options for Google Analytics (http://tools.google.com/dlpage/gaoptout?hl=de) or Google’s settings for data use for marketing purposes (https://adssettings.google.com/.) can be found under the links provided.

7. Other services 

7.1 ReCaptcha 

In all our web offers we embed the function \”ReCaptcha\” of the service provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Website: https://www.google.com/recaptcha/ . Data processing is therefore carried out on the basis of a legitimate interest within the meaning of Art. 6 Para. 1 letter f. GDPR. Please also read our general information on cookies in section 3. 

The use of Recaptcha prevents bots from entering data on our online offers. In order to verify that the website visitor is a human being, the behavior data of the user (e.g. mouse movements or queries) is evaluated in order to distinguish people from bots. 

Google is certified under the Privacy Shield Agreement, providing a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active). 

Privacy policy: https://policies.google.com/privacy; 

Opt-Out: Opt-Out-Plugin: http://tools.google.com/dlpage/gaoptout?hl=de, Settings for the display of advertisements: https://adssettings.google.com/authenticated. 

7.2 Cookiebot

On our website www.coptrack.com, app.copytrack.com and portal.copytrack.com we use the Cookiebot service of Cybot A/S Havnegade 39, 1058 Copenhagen, Denmark to save your cookie preference and only use cookies according to your choice. The data processing is therefore carried out on the basis of a legitimate interest within the meaning of Art. 6 Para. 1 lit. f. DSGVO. Please also read our general information on cookies in section 3.

If you consent to the use of cookies on one of our websites, the following data is automatically logged by Cybot:

 – Your IP number in anonymous form (the last three digits are set to ‘0’).

– Date and time of consent.

– User agent of your browser

– The URL from which the consent was given.

– An anonymous, random and encrypted key value.

The key and consent state is also stored in your browser in the first-party cookie “CookieConsent” so that the website can automatically read and respect the user’s consent for all subsequent page views and future user sessions for up to 12 months.

The key serves as proof of consent and to check whether the consent status stored in your browser is unchanged from the original consent to Cybot.

If Bulk Consent is enabled, whereby a single consent can be given by you for multiple websites, a separate random, unique ID with your consent is stored in encrypted form in the third-party cookie ‘CookieConsentBulkTicket’ in your browser.

Cybot A/S Privacy Policy: https://www.cookiebot.com/de/privacy-policy/

Opt-out : To object to your consent, it is sufficient to delete the cookies “CookieConsent” and “CookieConsentBulkTicket”.

7.3 Google Maps 

We include on our website www.copytrack.com the maps of the service “Google Maps” of the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The data processed may include, but is not limited to, user IP addresses and location data, which is not collected without the user’s consent (usually as part of the settings of their mobile devices).

Google is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

Privacy Policy: https://policies.google.com/privacy;

Opt-out: Opt-out plug-in: http://tools.google.com/dlpage/gaoptout?hl=de

8. publication of job advertisements / online job applications

If you apply to COPYTRACK via our website form or by email, your application data will be processed by COPYTRACK for the purpose of handling the application procedure. If your application is followed by the conclusion of an employment contract, your transmitted data may be stored in your personnel file for the purpose of the usual organisational and administrative process in compliance with the relevant legal regulations of COPYTRACK.

The legal basis for data processing is Art. 6 para. 1 lit. a GDPR, i.e. the consent given by you when sending the documents to COPYTRACK, or Art. 6 para. 1 sentence 1 lit. b GDPR, if an employment contract is concluded.

9 Hosting

We use the services of one or more web hosting providers whose servers (or servers managed by them) can access our online services. This is to enable us to provide our online services securely and efficiently. We may use computing capacity, storage space and database services, security and technical maintenance services, and infrastructure and platform services. Accordingly, data processing takes place on the legal basis of a legitimate interest pursuant to Art. 6 Para. 1 S. 1 lit. f GDPR.

The data processed through the provision of the hosting service may include all information which relates to the users of our online service and which arises in relation to usage and communication.  As a rule, this concerns the IP address, which is required in order to be able to transmit the contents of online offers and all entries made within our online offer or from websites to browsers. Furthermore, the receipt, storage and sending of e-mails by the web hosting services used by us is recorded. For this purpose, the contents of the corresponding e-mail, the addresses of the recipients and senders as well as further information in connection with the e-mail transmission (e.g. the associated providers) are processed. The above data may also be processed to enable SPAM to be detected. Please note that e-mails on the internet are generally not encrypted. In principle, they are encrypted during transmission, but not on the servers from which they are received and sent (unless a so-called end-to-end encryption method is used). This means that we cannot assume any responsibility for the transport route of e-mails between the sender and receipt by our server.

Collection of access data and log files: For each access to the server, we ourselves or our web hosting providers collect data. The log data may include the user’s operating system, browser type and version, transferred data volumes, date and time of access, the previously visited website (referrer URL), a notification of successful access, IP addresses and the requesting provider. The purpose of using log data is to ensure the stability and proper utilization of the servers. In addition, security may also be ensured by using log data, for example to avoid server overload in the event of abusive attacks (so-called DDoS attacks).

10. rights of the persons concerned

You have the right:

• to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you may request information about the purposes of processing, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, the existence of a right to rectification, deletion, restriction of processing or objection, the existence of a right of appeal, the origin of your data, if these have not been collected by us, and the existence of automated decision-making including profiling and, if applicable, meaningful information on their details;

• in accordance with Art. 16 GDPR, to demand without delay the correction of incorrect or complete personal data stored by us;

• to request the deletion of your personal data stored with us in accordance with Art. 17 GDPR, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims;

• in accordance with Art. 18 GDPR, to restrict the processing of your personal data if you dispute the accuracy of the data, if the processing is unlawful but you refuse to delete the data and we no longer need the data, but if you need it to assert, exercise or defend legal claims or if you have filed an objection to the processing in accordance with Art. 21 GDPR;

• in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, current and machine-readable format or to request its transfer to another person responsible;

• in accordance with Art. 7 para. 3 GDPR, to revoke your consent to us at any time. As a result, we are no longer allowed to continue processing data based on this consent in the future and

• to complain to a supervisory authority pursuant to Art. 77 GDPR. As a rule, you can contact the supervisory authority at your usual place of residence or workplace or at our company headquarters. The address of the supervisory authority responsible for our company:

Berlin Commissioner for Data Protection and Freedom of Information
Friedrichstrasse 219
10969 Berlin, Germany

11. right to object

If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 para. 1 sentence 1 letter f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, provided that there are reasons for this which arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which we will implement without specifying a particular situation.

If you wish to exercise your right of revocation or objection, simply send an email to datenschutz@copytrack.com.

12. Data security

Our website, the COPYTRACK app and the settlement portal meet the high requirements of the Payment Card Industry Data Security Standard (PCI) and are certified as such.

COPYTRACK uses technical and organizational security measures to protect your personal data managed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons. Our security measures are continuously improved in line with technological developments.

For security reasons and to protect the transmission of confidential content, such as requests you send to COPYTRACK as the site operator, copytrack.com uses SSL encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

If SSL encryption is activated, the data you transmit to us cannot be read by third parties.

13. duration of storage

The personal data of the person concerned will be deleted or blocked as soon as the purpose of storage ceases to apply. Furthermore, data may be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the person responsible is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.

Your data will be kept for three years after the termination of a user contract with COPYTRACK. After that time, COPYTRACK will check if your data is still needed or while there is any legitimate reason to do so.

Your data will be kept for three years after the prosecution of infringement at COPYTRACK. After that time, COPYTRACK will check if your data is still needed or while there is any legitimate reason to do so.

The personal data from the user interface of the contact form and those sent by email will not be deleted.

Data collected by Googly Analytics when visiting the website is automatically deleted after a period of 14 months.
If your application for a position is rejected, the data you have submitted for application will automatically be deleted two months after notification of rejection. This does not apply if longer storage is necessary due to legal requirements (e.g. the burden of proof according to the General Equal Treatment Act) or if you have expressly agreed to longer storage in our database of interested parties.

14. consequences of failure to provide data

There are no legal or contractual obligations for the provision of personal data to COPYTRACK. The specification of your first and last name, email address, postal address, bank details and your tax number when concluding a license, settlement, usage or agency agreement is mandatory for the conclusion and execution of the agreement with COPYTRACK. If you do not provide this data, you will not be able to use COPYTRACK’s services or conclude contracts with COPYTRACK.

15. Up-to-dateness and amendment of this data protection declaration

This data protection declaration is currently valid and is effective as of September 2019.

Due to the further development of our website and offers above or due to changed legal or official requirements, it may become necessary to change this data protection declaration. You can call up and print out the current data protection declaration at any time on the website under https://www.copytrack.com/privacy