Privacy Policy

Our privacy policy explains what information we collect, for what reason and how we use this information. In particular, we provide information in accordance with the requirements of Art. 12 – 14 DSGVO and on your rights as a data subject.

Responsible party

agilicon e.K.
Frankfurter Straße 75
61476 Kronberg
Fon: +49 (0) 61 73. 78 202 0
Fax: +49 (0) 61 73. 78 202 50
anfrage@agilicon.de

Contact

Inquiries, explanations and queries regarding data protection should preferably be sent by e-mail to anfrage@agilicon.de

Information for you as a data subject

To provide you with the best possible information and achieve a high level of transparency, we list data privacy statements specific to affected groups below. Click on the “+” symbol to expand the corresponding part.

Scope of application

The following declaration applies to all websites of agilicon e.K. that refer to it.

Purposes of processing

The purposes of the processing lie in the provision of the website, optimization of our content offer, identification of error sources, securing the website and performance optimization.

In the case of the use of our contact form, a further purpose of the processing also lies in the handling of the communication.

Categories of data subjects

  • Website visitors
  • Customers and other contractual partners
  • Interested parties

Types of data processed

  • Types of data processed
  • Inventory data (e.g., names, addresses)
  • Content data (e.g., text input, photographs, videos)
  • Contact data (e.g., email, phone numbers)
  • Meta/communication data (e.g. device information, IP addresses)
  • Usage data (e.g. websites visited, interest in content, acces

Relevant legal basis

In order to legitimately process personal data, the processing must be lawful. Listed below are our relevant legal bases on which we process your personal data in connection with your visit to this website:

  • Consent according to Art. 6 para. 1 lit. a) DSGVO.
    The processing is legitimate by granting a consent for a specific purpose, which can be revoked at any time for the future.

  • Fulfillment of a contract or pre-contractual measures according to Art. 6 para. 1 lit. b) DSGVO.
    Processing is necessary for the performance of a contract to which the data subject is a party or for the performance of pre-contractual measures taken at the request of the data subject.

  • Legal obligation according to Art. 6 para. 1 lit. c) DSGVO
    Processing is necessary for compliance with a legal obligation to which the controller is subject.

  • Legitimate interests according to Art. 6 para. 1 lit. f) DSGVO.
    Processing is necessary for the purposes of the legitimate interests of the controller or a third party, unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data.

National regulations

In addition to the General Data Protection Regulation, national statutory regulations also apply in connection with data protection. Here, the German Federal Data Protection Act (BDSG) specifies the rights of data subjects (right to information, right to erasure, right to object), the processing of special categories of personal data pursuant to Art. 9 DSGVO, profiling, data processing in the context of an employment relationship (Section 26 BDSG), in particular with regard to the establishment, performance or termination of employment relationships, and the consent of employees. Ultimately, data protection laws at the federal state level may also apply.

Security measures taken

We take appropriate technical and organizational measures in accordance with the law, taking into account the state of the art, the cost of implementation and the nature, scope, circumstances and purposes of the processing, as well as the different probabilities of occurrence and the level of threat to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk.

The measures include, in particular, safeguarding the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as access to, input of, disclosure of, assurance of availability of and segregation of the data. Furthermore, we have established procedures to ensure the exercise of data subjects’ rights, the deletion of data, and responses to data compromise. Furthermore, we already take the protection of personal data into account in the development and selection of hardware, software and processes in accordance with the principle of data protection, through technology design and through data protection-friendly default settings.

To protect your data transmitted via our online offer, we use SSL encryption. You can recognize such encrypted connections by the prefix https:// in the address bar of your browser.

Information about cookies

We use cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user’s computer system. When a user accesses a website, a cookie may be stored on the user’s operating system. This cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again. We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change. The following data is stored and transmitted in the cookies: Language settings, items in a shopping cart, log-in information, etc.

The purpose of the use of technically necessary or functional cookies is to enable the function of the website in the first place (necessary) or to simplify the use of websites for users (functional). Some functions of our website cannot be offered without the use of cookies. For these, it is necessary that the browser is recognized even after a page change. We need cookies for the provision of shopping carts, adoption of language settings, remembering search terms, etc.. The processing is therefore based on Art.6 para. 1 lit. b or f DSGVO.

We also use cookies on some of our websites, which enable an analysis of the user’s surfing behavior. In this way, search terms entered, frequency of page views, use of website functions, etc. are transmitted. The user data collected in this way is pseudonymized by technical precautions. Therefore, an assignment of the data to the calling user is no longer possible. The data is not stored together with other personal data of the users.

Legal basis for data processing using cookies: The legal basis for the processing of personal data using technically necessary cookies is Art. 6 para. 1 lit. f) DSGVO. The legal basis for the processing of personal data using cookies for analysis purposes is Art. 6 para. 1 lit. a) DSGVO if the user has given his consent in this regard, otherwise Art. 6 para. 1 lit. f) DSGVO in conjunction with. EC 47.

 

External integrations as well as tracking and retargeting

On our website, we use external integrations both due to technical necessities and for needs-based design, about which we provide information below.

Contact

In the context of contacting us via a contact form, e-mail, telephone or social media, the information provided is processed in order to respond to the inquiry and, if necessary, also to carry out requested measures.

The response to your inquiry is based on Art. 6 para. 1 lit. b) DSGVO for the fulfillment of contractual obligations or response to pre-contractual inquiries. In addition, in certain cases a legitimate interest according to Art. 6 para. 1 lit. f) DSGVO is the legal basis.

We maintain several social media sites, some of which are publicly accessible, in the context of which we process personal data of active users there. In this context, data may be processed outside the European Union, which gives rise to data protection risks to which we would like to draw your attention at this point. The risks may, for example, take the form of more difficult enforcement of data subjects’ rights or far-reaching powers of investigation or inspection by American authorities. Standard contractual clauses, among other things, serve as guarantees for achieving an EU level of data protection.

Processing of this data often takes place in the context of market research and advertising, in that you can be identified by means of a cookie and a user profile with interests can be formed via your website visit behavior.

For a detailed description of the respective forms of processing and the options to object (opt-out), please refer to the data protection declarations and information provided by the operators of the respective networks.

In the event of requests for information or the enforcement of data subject rights, we point out that the respective social media provider is responsible for this and that we sometimes do not have sufficient data access for, for example, data deletion or restriction of processing.

Types of data processed

Contact data (name, email, phone number), media data (photos, videos, text), usage-specific data.

Data subjects

Users of social media platforms

Purposes of processing

Contact request and communication, website tracking and retargeting, remarketing, reach measurement.

Legal basis

The legal basis is your consent in accordance with Art. 6 (1) a) DSGVO when registering, Art. 6 (1) b) DSGVO when concluding a contract with the portal and, in the context of a message, the legitimate interest in responding to you in the same way within the meaning of Art. 6 (1) f) DSGVO.

Service providers used

  • Semigator
  • LinkedIn
  • XING

Scope of application

This privacy policy applies to all customer relationships of agilicon e. K..

Categories of personal data

  •  Inventory data (e.g. name, address)
  • Contact data (telephone number, e-mail address)
  • Additional personal data (e.g. dates of birth, names of family members)
  • Payment data (e.g. bank details, invoices, payment history)
  • Contract data (e.g. subject matter of contract, term, customer category)

Purposes and relevant legal basis

We process personal data within the scope of our general business activities and for the purpose of providing services to our customers in accordance with the following legal bases:

  • Consent according to Art. 6 para. 1 lit. a) DSGVO.
    The processing is legitimized by granting a purpose-related consent, which can be revoked at any time for the future.

  • Contract performance or pre-contractual measures according to Art. 6 para. 1 lit. b) DSGVO.
    The processing of personal data is carried out for the performance of a contract or already during the initiation of a contractual relationship with a natural person. The scope and details of the data processing result from the respective contract.

  • Legal obligation according to Art. 6 Para. 1 lit. c) DSGVO.

  • Legitimate interests according to Art. 6 para. 1 lit. f) DSGVO.
    We process personal data within the scope of general business operations and for the purpose of providing services to our customers on the basis of a balancing of interests, provided that the interests of the data subjects worthy of protection are not overridden. A specific interest of ours in this case lies primarily in the provision of contractual obligations to customers. As a matter of principle, we only process personal data provided by customers to the extent that this is actually necessary for the provision of the service.

Categories of data recipients

  • Tax authorities and courts
  • Social security institutions
  • Banks, credit institutions, insurance companies and trade associations
  • Order processors (e.g. computer centers, IT service providers, printing service providers, waste disposal companies, etc.)
  • depending on the order, to other recipients, which we will coordinate with you

Information on data processingtung

Herewith we would like to inform participants of video conferences initiated by us about the handling of personal data.

Purpose of data collection

The Microsoft Teams service is offered by Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399 USA. We use this service to conduct video conferences and webinars.

Types of data processed by us

In the context of video conferencing with Microsoft Teams, the following types of data are processed by us:

  • User data: User name, email address, profile photo
  • Meeting meta-data: Date and time, IP address of the participants, meeting title, duration of the session, start and end times
  • Text data: Communication entered in the chat, transcription of audio input if applicable.
  • Video and audio data: Audio and video recording of the hardware shared by the user.

Categories of recipients

We send your personal data to the following recipients, e.g. in order to comply with legal obligations or obligations arising from the employment relationship:

  • Service providers: Microsoft Corporation in the course of providing the video conferencing service.
  • Participants of the video conference

Legal basis for processing

When processing your personal data, we naturally comply with applicable law. Therefore, processing is only carried out on a legal basis. The following legal bases come into consideration:

  1. Art. 6 para. 1 lit. a) on the basis of consent from you, whereby none is required in principle for the conclusion of a contract or the continuation of an existing contract,
  2. Art. 6 para. 1 lit. b) for the implementation of pre-contractual and contractual measures.
  3. Art. 6 para. 1 lit. f) for the protection of a legitimate interest
  4. Art. 88 DSGVO on the basis of collective agreements (company agreements).
    Legitimate interests

Legitimate interests

If we process your data within the scope of our legitimate interest, this lies, for example, in:

  • communication with you

You have the right to object to the processing of personal data in the context of a legitimate interest on grounds relating to your particular situation. We will then no longer process your data unless we can demonstrate compelling legitimate grounds on our part that override your rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

We do not use the personal data provided by you to make automated decisions concerning you in accordance with Art. 22 DSGVO.

Data transfer to third countries

Data may be transferred to the USA. Standard contractual clauses serve as a guarantee for the third-country transfer of personal data. A transfer impact analysis carried out on the basis of the Schrems II ruling of the ECJ did not reveal any increased risk potential.

Storage period

After the respective purpose has been achieved, your data will be deleted in compliance with the statutory retention periods.

Data subject rights

You have the right

  • To obtain confirmation as to whether personal data relating to you are being or have been processed by us and to request information about this from us in accordance with Art. 15 DSGVO;
  • in accordance with Art. 16 DSGVO, to demand the correction of incorrect or completion of your personal data stored by us without delay;
  • pursuant to Art. 17 DSGVO, to request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims;
  • pursuant to Art. 18 DSGVO, to request the restriction of the processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defense of legal claims or you have objected to the processing pursuant to Art. 21 DSGVO;
  • pursuant to Art. 20 DSGVO, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller;
  • in accordance with Art. 7 (3) DSGVO, to revoke your consent once given to us at any time. This has the consequence that we may no longer continue the data processing based on this consent for the future, and

Data deletion

Your data will generally be deleted when the customer relationship has ended, the data is not subject to any statutory retention periods, all claims have been fulfilled and you have not exercised your right to deletion in accordance with Art. 17 DSGVO.