This privacy statement clarifies the nature, scope, and purpose of the processing of personal data (hereinafter referred to as “data”) on our website and other websites that may be connected to it as well as further external online content and functionalities, such as our Social Media Profiles (hereinafter collectively referred to as “Online Presence”). In regard to the terminology used – such as “personal data” and its “processing” – we refer to the respective definitions in Art. 4 of the General Data Protection Regulation (GDPR).
The responsible entity in terms of data protection and the operator of this website is:
I+E Research GmbH
Potsdamer Platz 8-9
email address: email@example.com
Data Protection Officer
If you have any questions regarding the processing of your personal data, feel free to contact our data protection officer for further information, suggestions, complaints or in case of an objection on your behalf.
ClixOn | Datenschutz
Oranienburger Str. 70
email address: firstname.lastname@example.org
Phone: 030 / 403 695 630
Types of processed data
- Inventory data (i.e., names, addresses).
- Contact information (i.e., email, phone numbers).
- Content data (i.e., text inputs, photographs, videos).
- Usage data (i.e., websites visited, interest in content, times of access).
- Meta/Communication data (i.e., Information relating to the device used, IP addresses).
Processing special data categories (Art. 9(1) GDPR)
- No special categories of data are processed unless they are input by the users themselves, for example through an online form.
The persons concerned are hereinafter referred to collectively as “users”.
A) Basis and Handling of Personal Data
Relevant legal provisions
In Accordance with Art. 13 GDPR, we inform you about the legal basis of our processing of data. Unless a specific legal base is mentioned within the privacy statement, the following applies: The legal basis for obtaining consent is Article 6(1)(a) and Art. 7 GDPR. The legal basis for the processing of data in order to conduct our services and to execute contractual measures as well as the response to inquiries is Art. 6(1)(c) GDPR. The legal basis for the processing of data in order to pursue our legitimate interests is Article 6(1)(f) GDPR. In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6(1)(d) serves as the legal basis.
Purpose and Legal Basis of Data Processing
The operator processes your data for the following purposes (Art. 13(1)(c) GDPR):
- Providing the online presence, its contents and functionalities
- Answering inquiries, contact requests and communicating with users
Data processing is conducted in accordance with the following legal basis:
- There is consent (Art. 6(1)(a) GDPR)
- Processing is required for the fulfillment of a contract (Art. 6(1)(a) GDPR)
Processing is not strictly necessary to pursue the legitimate interests of the person responsible or a third party (Art. 13(1)(d) GDPR).
Handling of Personal Data
Your personal data is collected and used for the services of I+E Research GmbH. This data is stored by the operator in a database. Data on children is not collected.
In Accordance with Art. 32 GDPR, we have implemented appropriate technical measures, taking into account state of the art technology, implementation costs, nature, scope, circumstances and purpose of the processing as well as the likelihood and severity of the risk to rights and freedoms of natural persons to ensure a level of protection appropriate to the risk. Measures include ensuring the confidentiality, integrity and availability of data by controlling physical access to it as well as securing points of access, input, disclosure, availability and separation. In addition, we have established procedures that ensure the honoring of data subject rights, erasing of data and appropriate reactions to data vulnerability. We also consider the protection of personal data in the development of new software or procedures and the acquisition of hardware in accordance with the principle of data protection and technology design through privacy friendly default settings (Art. 25 GDPR).
As a safety measure, the transfer of data between your browser and our server is encrypted.
Collaboration with Processors and Third Parties
If, in the context of our data processing, we disclose data to other persons and companies (contract processors or third parties), transmit data to them or otherwise grant them access to it, this will only be done on the basis of legal permission (i.e. if a transmission of data is required to fulfill a contract, such as a transfer of data to a payment service provider, pursuant to Art. 6(1)(b) GDPR), your consent, a legal obligation, or based on our legitimate interests (i.e. the use of agents, webhosts, etc.)
If we commission third parties to process data on the basis of a so-called “assigned processing contract”, this is done on the basis of Art. 28 GDPR.
Transfers to Third Countries
If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or data is processed in third countries as a result of third party services, or the disclosure or transmission of data to third parties, this will only be done to fulfill our (pre-)contractual obligations, with your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permission, data is only processed in a third country in compliance with the special provisions of Art. 44 et seq. GDPR. As such, processing occurs with specific guarantees, such as compliance with an officially recognized level of data protection (the “Privacy Shield” in the United States is a fitting example) or compliance with officially recognized specialized contractual obligations (so-called “standard contractual clauses”).
B) Website in General
Collection of general information, access data and log files
The operator does not create personal user profiles of ie-research.de users.
Based on our legitimate interest described in Art 6(1)(f) GDPR, we collect data concerning every query to the server hosting our service (so-called server log files). The data collected includes the name of the retrieved web page, file, date and time of retrieval, amount of data transferred, information concerning the success of the retrieval, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider.
Log file information is stored for security purposes (to investigate abusive or fraudulent activities for example) for a maximum of seven days and then deleted. Data that must be retained as a requirement for evidential purposes shall not be deleted until the incident is fully clarified.
Online presence in social media
We maintain online presences within social media networks and platforms in order to communicate with current and prospective clients and customers and active users to inform them about our services. The same terms and conditions and data processing guidelines delineated in this document apply to any interaction or use of our presence on social media.
Integration of services and content of third parties
It may happen that content or services from third party providers such as YouTube videos, Google Maps, RSS feeds or graphics (collectively referred to as “content”) appear within our online presence on the basis of the pursuit of our legitimate interests (i.e. the interest in the analysis, optimization and economically prudent management of our online presence in accordance with Art. 6(1)(f) GDPR.
This presupposes, that the providers of this content (hereinafter referred to as “third party provider”) have access to the IP address of the users. Without the IP address, it would not be possible to send the content to the user’s browser. Therefore, the IP address is required in order to provide this content. We endeavor to use only content, whose respective providers use the IP address solely for the delivery of this content. However, we do not have any influence on the conduct of third parties regarding the IP address, such as saving it for statistical purposes. We will inform users about this issue to the best of our knowledge if we discover such usage.
Cookies & reach measurement
Cookies are information transmitted from our web server to third-party web servers to users’ web browsers and stored there for later retrieval. Cookies can be small files or other types of information storage.
Cookies cannot be used to launch programs or to transfer viruses to a computer. The information contained in cookies allows the operator to facilitate navigation and enable the correct display of the website. In no case will the collected data be passed on to third parties. No link to personal data will be established without your consent.
|_ga||Persistent Cookie||Tracking||This Cookie helps record the usage patterns of visitors to the website.||The Cookie becomes invalid after 24 months||.ie-research.de|
|_gid||Persistent Cookie||Tracking||This Cookie helps discern between unique users.||The Cookie becomes invalid after 1 day||.ie-research.de|
|_gat||Persistent Cookie||Tracking||This Cookie follows up on user behavior.||The Cookie becomes invalid after 10 minutes||.ie-research.de|
|_icl_current_language||Persistent Cookie||Functional||This Cookie controls the user-specific settings on ie-research.de||The Cookie becomes invalid after 1 day||www.ie-research.de|
If users do not want cookies stored on their computer, they will be asked to disable the option in their browser’s system settings. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to a functional restriction of the online presence.
Google is certified under the Privacy Shield Agreement, which provides a guarantee to comply with European privacy legislation (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
Google will use this information on our behalf to evaluate the use of our online presence by users, compile reports on the activities within our online presence and provide us with further services related to the use of our online presence and the internet. Pseudonymous usage profiles of user activity may be generated from the processed data.
We use Google Analytics exclusively with the IP anonymization functionality activated. This means that the IP address of the users will be shortened by Google within member states of the European Union or in other contracting states of the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there.
The IP address submitted by the user’s browser will not be merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; users may also prevent further processing of information collected by the cookie relating to their usage of the internet presence by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de
For more information about Google’s use of data, settings and how to object to data processing, please visit the respective Google websites: https://www.google.com/intl/de/policies/privacy/partners („Google data usage when you use our partners sites or apps“), https://policies.google.com/technologies/ads („Use of data for promotional purposes“), https://adssettings.google.com/authenticated („Manage the information Google uses to show you advertising“).
Why do we need your data?
We use your data in our database to find and match exactly those participants our clients need for their research. The processing of this data is necessary in order to recruit you as a participant. We do not save any payment or credit card information.
What happens to your data?
Your data will be used exclusively for the invitation to our studies. We need your voluntary information in order to pre-select participants and invite only those members of our data base who really fit the study. We receive certain specifications from our clients, such as: Age groups, gender, interests, habits, occupation, family situation, etc. The collection of this data is absolutely necessary to our task of finding suitable participants for our projects.
Our clients want to talk to specific target groups for whom a product is to be developed or improved.
If you are no longer interested in participating in our studies, we will delete your entire dataset irreversibly and without if’s and but’s. A short email is enough.
Categories of data subjects:
- Clients / prospective clients / suppliers
- Visitors and users of our online presence
- Participants / prospective participants in our market research studies
Mandatory information when registering as a participant
The following personal data is collected upon registration:
- First and Last Name*
- Date of Birth*
- E-Mail address*
- Phone number (landline)*
- Phone number (mobile)*
- Place of residence*
- Current employment status*
Voluntary details in your participant profile
In addition to the mandatory information mention above, you are free to provide more detailed information about yourself. This information is voluntary and allows a more efficient pre-selection of potential participants.
The operator regularly sends e-mails to all registered users of ie-research.de. Within these e-mails, the operator sends you personal notifications (for example: new studies). Users may also receive information pertaining to the service of or the registration with IE Research, such as system notifications or technical issues.
Contact / contact form
When contacting us (via contact form or e-mail), the information provided by the user is processed according to Art. 6(1)(b) GDPR.
User information can be stored in our Customer Relationship Management System (“CRM System”) or in a similar fashion.
E) Your Rights and Final Provisions
You have the right to demand the completion of the data pertaining to you, as well as the correction of any incorrect data concerning you in accordance with Art. 16 GDPR.
You have the right to demand the data that has been collected on your person and its delivery to you or a person responsible in accordance with Art. 20 GDPR.
Termination or blocking of data
You have the right to demand that the relevant data be deleted immediately or, alternatively, to require a restriction on the processing of data in accordance with Art. 17 and 18 GDPR, respectively.
In Accordance with legal requirements, this storage takes place for 6 years in compliance with § 257 (1) HGB (trading books, inventories, opening balance sheets, annual accounts, trade letters, accounting documents, etc.) and for 10 years in compliance with § 147 (1) AO (books, records, management reports, accounting documents, commercial and business letters, documents relevant to taxation, etc.)
Right to Object
You can object to the future processing of your data in accordance with Art. 21 GDPR at any time. The objection may in particular be made against processing for direct marketing purposes.
You have the right to withdraw your consent according to Art. 7(3) GDPR relating to any future processing from the time of withdrawal forward.
You have the right to file an appeal with the respective regulatory body in accordance with Art. 77 GDPR.
Cookies and the Right to Object in Direct Marketing
http://www.aboutads.info/choices/ or the EU website http://www.youronlinechoices.com/. The storage of cookies can also be disabled by switching them off in the settings of your browser. Please note that not all features of this online presence may be fully functional with cookies disabled.