The contact person and data controller for the processing of your personal data when visiting this website within the meaning of the General Data Protection Regulation (GDPR) is:
Caspar Feld GmbH
10405 Berlin, Germany
Commercial Register No: HRB 156440 B | Berlin-Charlottenburg District Court
Managing Director: Dr Sebastian Feld
2. Data Protection Officer
You can contact the Data Protection Officer using the following details:
GDS - Gesellschaft für Digitales Steuern mbH
Represented by Sebastian Heger
48159 Münster, Germany
Tel.: +49 (0)251 28078990
You can contact our Data Protection Officer directly at any time with any questions and/or suggestions you may have regarding data protection.
3. Data processing on our website
3.1 Accessing our website/access data
Every time you use our website, we collect the access data that your browser automatically transmits to enable you to visit the website. In particular, the access data includes:
- IP address of the requesting device,
- Date and time of the request,
- Address of the accessed website and the requesting website,
- Information about the browser and operating system used,
- Online identifiers (e.g. device identifiers, session IDs).
The legal basis for the temporary saving of data and log files is Article 6 (1) lit. f GDPR. Storage occurs in log files in order to ensure the website's functionality. The data also help us optimize the websites, eliminate malfunctions and ensure our IT system security. Our justified interest in data processing pursuant to Article 6 (1) lit. f GDPR also lies in such purposes.
The data are deleted as soon as they are no longer required to achieve the purpose for which they were gathered. If data are gathered for the provision of the website, this is the case if the respective visit is ended. In the instance that data are stored in log files, this is the case after seven days at the latest. Storage above and beyond this period is possible. In this case, the users' IP addresses are deleted or removed so they can no longer be allocated to the visiting client.
The recording of data for the provision of the website and the storage of data in log files is essential to operate the website. As a consequence, users do not have an option to revoke such data recording.
The data processing of this access data is necessary to facilitate the visit to the website and to ensure permanent functionality and security of our systems. The access data is also temporarily stored in internal log files for the purposes described above, in order to compile statistical information on how our website is used, to further develop our website with regard to the usage habits of our visitors (e.g. if the proportion of mobile devices used to access the pages increases) and for general administrative maintenance of our website.
The legal basis is Art. 6(1)(1)(b) GDPR, insofar as the page view occurs in the course of initiating or executing a contract, and otherwise Art. 6(1)(1)(f) GDPR due to our legitimate interest in the permanent functionality and security of our systems.
The log files are stored for 20 days and then deleted after subsequent anonymisation.
3.2 Getting in touch
You have various options for contacting us (especially our contact form, telephone, email). In this context, we process data exclusively for the purpose of communicating with you.
The legal basis is Art. 6(1)(1)(b) GDPR, insofar as your information is required to answer your enquiry or to initiate or execute a contract, and otherwise Art. 6(1)(1)(f) GDPR due to our legitimate interest in you being able to contact us so that we can answer your enquiry. We will only make marketing telephone calls if you have given your consent to this. If you are not an existing customer, we will only send you marketing emails on the basis of your consent. The legal basis in these cases is Art. 6(1)(1)(a) GDPR.
The data we collect when you use our contact form will be automatically deleted after we have fully processed your enquiry, unless we still need your enquiry to fulfil contractual or legal obligations (see Section 8 "Storage period").
If you subscribe to our company newsletter, the data will be transmitted using the respective input mask for the data controller. Registration for our newsletter takes place in a "double opt-in" process, i.e. after signing up, you will receive an email asking you to confirm your registration. This confirmation is required so that no one can register using other people's email addresses. When registering for the newsletter, the user's IP address as well as the date and time of registration are stored. This serves to prevent misuse of the services or the data subject's email address. The data will not be passed on to third parties. An exception exists if there is a legal obligation to disclose the data. The data will only be used for sending the newsletter. The subscription to the newsletter can be cancelled by you at any time. Likewise, consent to personal data being stored can be revoked at any time. There is a corresponding link for this purpose in every newsletter. The legal basis for the processing of data after registration for the newsletter by the user is Art. 6(1)(a) GDPR if the user has given their consent. The legal basis for sending the newsletter as a result of the sale of goods or services is Section 7(3) of the German Unfair Competition Act.
Description and purpose: We use rapidmail to send newsletters. The provider is rapidmail GmbH, Wentzingerstraße, 21, 79106 Freiburg, Germany. Among other things, rapidmail is used to organise and analyse how newsletters are sent. The data entered by you for the purpose of receiving the newsletter will be stored on rapidmail's servers in Germany. If you do not want any analysis by rapidmail to take place, you must unsubscribe from the newsletter. We provide a link for this in every newsletter message. Furthermore, you can also unsubscribe from the newsletter directly on the website. For the purpose of analysis, the emails sent using rapidmail contain a "tracking pixel", which connects to rapidmail's servers when the email is opened. This shows whether or not a newsletter message has been opened. Furthermore, with the help of rapidmail, we can determine whether and which links are clicked on in the newsletter message. All links in the email are "tracking links" used to count your clicks. Depending on the font used to design the respective newsletter, there may be a connection to external servers, such as for Google Fonts.
Legal basis: The legal basis for data processing is Art. 6(1)(a) GDPR.
Recipient: The recipient of the data is rapidmail GmbH.
Transmission to third countries: Data is not transferred to third countries.
Duration: The data stored by us within the scope of your consent for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and then deleted from our servers, as well as from rapidmail's servers after you unsubscribe from the newsletter. Data stored by us for other purposes remain unaffected by this.
Revocation option: You have the option to revoke your consent to data processing with future effect at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.
Further data protection information: For more details, please refer to rapidmail's data security information at: https://www.rapidmail.de/datensicherheit. For more information on rapidmail's analysis functions, please refer to the following link: https://www.rapidmail.de/wissen-und-hilfe.
We offer you the opportunity to apply for job vacancies on our website and to send us your application by email or post. When you send us your application, we will process the information you provide to us as part of the application. If you send us your application electronically, we will process your email address. This is necessary in order to process the application and to be able to contact the applicant to respond to the request.
In the case of postal delivery, we process the data provided by you. The purpose of processing the personal data resulting from the application documents sent by you is to identify a suitable applicant.
We keep the application email and the submitted documents for maximum three months. They will subsequently be deleted in accordance with data protection regulations, unless you give us your consent to include the application documents in our applicant pool.
Information originating in each case from the specific end device used is stored in the cookie. However, this does not mean that we gain direct knowledge of your identity.
On the one hand, cookies are used to make it more pleasant for you to browse our website. We use "session cookies" to detect that you have already visited specific pages on our website. These are automatically deleted after you leave our site.
In addition, we also use temporary cookies to optimise user-friendliness, which are stored on your end device for 90 days. If you visit our website again to use our services, cookies automatically recognise that you have previously browsed as well as which entries you made and settings you selected, so you do not have to enter them again.
The data processed by cookies and required for proper functioning of the website are therefore necessary to protect our legitimate interests as well as those of third parties in accordance with Art. 6(1)(1)(f) GDPR. For all other cookies, you have given your consent to these within the meaning of Art. 6(1)(a) GDPR via our opt-in in the cookie banner if you have actively ticked the box.
5. Linking to Social Networks
We provide links to our social media profiles. However, these are not social media plugins. Therefore, merely accessing our website does not result in the social media platform being aware of your visit. Once you click on the link to the respective social media platform, it will lead to the processing of your data by the social media platform. For more information about the processing of your data by social media platforms, please refer to section 5.2.
We use links to our profile on the social network LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland, as a subsidiary of LinkedIn Corporation, 2029 Stierlin Ct. Ste. 200 Mountain View, CA 94043, USA). This is a regular link. Therefore, LinkedIn does not learn of your visit to our website when you access it. However, if you click on the link, you will be redirected to LinkedIn. This also tells LinkedIn that you visited our website.
You can find more details on data processing by LinkedIn under Section 6.1.
6. Our activities on social media
In order for us to also communicate with you on social media and inform you about our services, we have our own pages on social media. If you visit one of our social media pages, we are jointly responsible with the provider of the respective social media platform within the meaning of Art. 26 GDPR with regard to the processing operations triggered by this access concerning personal data.
We are not the original provider of these pages, but merely use them within the scope of the options offered to us by the respective providers.
Therefore, as a precautionary measure, we would like to point out that your data may also be processed outside the European Union or the European Economic Area. Use may, therefore, pose data protection risks for you, as it may be more difficult to protect your rights, e.g. to information, deletion, objection, etc., and processing on social media is often carried out directly for advertising purposes or user behaviour analytics by the providers, without us being able to influence this. If usage profiles are created by the provider, cookies are often used or the usage behaviour is directly assigned to your own member profile on social media (if you are logged in to the social media site).
The described processing operations for personal data are carried out in accordance with Art. 6(1)(f) GDPR on the basis of our legitimate interest and the legitimate interest of the respective provider to be able to communicate with you in a timely manner or to inform you about our services. If you have to give your consent to data processing as a user with the respective providers, the legal basis is Art. 6(1)(a) GDPR in conjunction with Art. 7 GDPR.
As we do not have access to the providers' databases, we would like to point out that it is best for you to exercise your rights (e.g. to information, correction, deletion, etc.) directly with the respective provider. Further information on the processing of your data on social media and the option to make use of your right of objection or revocation ("opt-out") is listed below for the respective social media providers used by us:
Jointly responsible with us for data processing in Europe:
LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
7. Your rights, in particular, to revocation and objection
You are entitled to the data subject rights set out in Art. 15 - 21 and Art. 77 GDPR at all times:
- Right to withdraw your consent;
- Right to object to the processing of your personal data (Art. 21 GDPR);
- Right to information about your personal data processed by us (Art. 15 GDPR);
- Right to rectification of your inaccurate personal data stored by us (Art. 16 GDPR);
- Right to erasure of your personal data (Art. 17 GDPR);
- Right to restrict the processing of your personal data (Art. 18 GDPR);
- Right to data portability of your personal data (Art. 20 GDPR);
- Right to lodge a complaint with a supervisory authority (Art. 77 GDPR).
Your requests for the assertion of data protection rights and our responses to them will be stored for documentation purposes for a period of up to three years and, in individual cases, even longer for the assertion, exercise or defence of legal claims. The legal basis for this is Art. 6(1)(1)(f) GDPR, based on our interest in defending against any civil claims under Art. 82 GDPR, avoiding fines under Art. 83 GDPR and fulfilling our accountability obligations under Art. 5(2) GDPR.
You have the right to revoke your consent at any time. The consequence of this will be that we no longer carry out the data processing based on this consent going forward. The revocation of consent shall not affect the lawfulness of the processing carried out on the basis of the consent up until it was revoked.
In cases where we process your data on the basis of legitimate interests, you have the right to object to the processing of your data at any time on grounds relating to your particular situation. If it is a matter of objecting to the processing of data for direct marketing purposes, you have a general right of objection, which will also be respected by us without you having to give reasons. If you wish to exercise your right of revocation or objection, it is sufficient for you to send an informal message to the above contact details. Finally, you have the right to lodge a complaint with a data protection supervisory authority. You may exercise this right with a supervisory authority for the Member State in which you reside, where your place of work is based or where the alleged infringement occurred. In Berlin, where our registered office is based, the competent supervisory authority is: Berliner Beauftragte für Datenschutz und Informationsfreiheit [Commissioner for Data Protection and Freedom of Information], Friedrichstr. 219, 10969 Berlin, Germany.
8. Routine storage, deletion and blocking of personal data
We process and store your personal data only for the period of time necessary to achieve the purpose of storage or if this has been provided for by the legal provisions to which our company is subject.
If the purpose of storage no longer applies or if a prescribed storage period expires, the personal data will be routinely blocked or deleted in accordance with statutory provisions.
9. Duration of the storage of personal data
The criterion for the duration of the storage of personal data is the respective statutory retention period. After this period has expired, the corresponding data are routinely deleted if they are no longer required for fulfilment or initiation of the contract.
To ensure the security of data processing and protect the transmission of confidential content, such as orders, login information, or contact requests that you send to us as the operator, this website uses SSL/TLS encryption. You can recognize an encrypted connection by the "https://" instead of "http://" in the address bar of your browser and the padlock symbol in your browser bar.
We employ this technology to protect your transmitted data.
Version: May 2023
By leveraging custom-tailored positioning analysis & segmentation, highly individualized brand tracking & customer insights studies, we simplify and improve the decision-making process for managers in an increasingly complex environment. .