Privacy Policy: myneva.eu-Website

 

Privacy policy: myneva.eu website

We, myneva Group GmbH ("myneva/we"), would like to thank you for visiting our website and for your interest in myneva. The following regulations provide information about the type, scope and purpose of the collection, processing and use of your personal data on our website "myneva.eu". Personal data is any information relating to an identified or identifiable natural person. This includes, in particular, your name and e-mail address.


1. Provider and Data Protection Officer



The Provider of the website and controller in the sense of data protection law is

myneva Group GmbH
Fuhlsbüttler Straße 38
22309 Hamburg

CEO: Dieter Weisshaar

Tel.: +49 (0) 40 524 70 08-80
e-mail: info@myneva.eu

The Group Data Protection Officer of myneva Group GmbH, myneva Deutschland GmbH, myneva Schweiz GmbH, myneva Finland Oy and myneva Austria GmbH can be contacted via the following channels:

 

Dr. Karsten Krupna
Krupna LEGAL
Drehbahn 7, 20354 Hamburg
T  + 49 (0)40 – 31976927
F  + 49 (0)40 – 85599739
M + 49 (0)163 – 2511327

k.krupna@krupna.legal
www.krupna.legal


The Data Protection Officer of myneva Benelux B.V. is:

Tan Li (in-house employee)
Tel.: +31(0)348 - 489 040


2. Data processing to enable use of our website



Every time you access our website, data relating to your connection is sent to our web server. This data includes:

• the IP address (Internet Protocol address) of the respective user,
• the date and time of your visit,
• the referrer URL,
• device numbers such as the UDID (Unique Device Identifier) and comparable device numbers, device information (e.g. device type), as well as
• the type/version of browser used.

This data is not used to identify the user, nor is it combined with data from other data sources; it is merely used for analysis of how the website is used. After 7 days at the latest, the data is anonymized by shortening the IP address at the domain level. The legal basis for processing your data is Art. 6 Para. 1 (1) (f) GDPR.

3. Data processing on request


Our website can generally be used without providing personal data. You are neither obliged to access this website nor to provide personal data. However, the provision of personal data is necessary, for example, to receive newsletters or when submitting an application. If you do not provide us with personal data for the purposes listed below, you may not be able to use the functions of this website or some of its services.


3.1. Contact form

 

If you contact us using the contact form provided, your details will be stored so that they can be used to process your request.
Art. 6 Para. 1 (1) (f) GDPR is fundamentally used as the legal basis for processing your data. Our legitimate interest then lies in responding to your query. In the event that (pre)contractual measures are implemented, the legal basis is Art. 6 Para. 1 (1) (b) GDPR.


3.2. Login



If you are a customer of myneva or a myneva company, you may have the opportunity to access specific information or updates about the product you are using via the login function of this website.

For this purpose, you must first enter your user name and choose your password ("login data"). A password should contain at least 8 characters and, if possible, always consist of a combination of upper and lower case letters, numbers and special characters. Problematic passwords include the use of trivial phrases such as "ABC" or keyboard sequences (e.g. "qwert" or "asdfgh"), all kinds of names (e.g. of friends, acquaintances, colleagues, family members, pets), city and building names, cartoon characters, automobile manufacturers, license plates, terms, dates of birth, telephone numbers, common abbreviations, etc.


Login data must be kept strictly confidential. If this data has nevertheless been disclosed, for example to enable access to certain databases by third parties in an emergency, the password must be changed immediately. For your own security, you are prohibited from reusing passwords that have already been used.
In the event of a login request, we will also store your IP address and the time of access. This is necessary to ensure the security of our information technology systems.


myneva also sets a session cookie each time you log in. This session cookie prevents you from being logged out automatically during active use of the account or related services. When you have logged out, the session cookie will be deleted automatically within a few minutes.


The legal basis for processing your data is Art. 6 Para. 1 (1) (f) GDPR and, if your contractual relationship is affected, Art. 6 Para. 1 (1) (b) and/or (f) GDPR.


3.3. The myneva newsletter

 

If you have given your express consent, you will receive a newsletter about the products and services offered by myneva via e-mail. To receive our newsletter, you will need to provide your first name, surname and e-mail address. Please note that by checking the box, you also agree to myneva analyzing your user behavior for the purpose of optimizing the newsletter and our services. Specifically, myneva determines which information you download from the newsletter and the links that you click.

In connection with your registration to receive the newsletter, we use the so-called double-opt-in procedure. This means that, once you have registered, we will send an e-mail to the e-mail address you provided, in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 7 days, your information will be blocked and automatically deleted after one month.


The processing of your personal data in connection with the newsletter is based on your consent pursuant to Art. 6 Para. 1 (1) (a) GDPR.

You may revoke your consent to receive newsletters, including tracking, at any time with future effect from myneva. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. To exercise the revocation, you will find a corresponding link at the end of each e-mail newsletter. Alternatively, you can revoke your consent at any time, e.g. by sending an e-mail to widerruf@myneva.eu.

When you register for the newsletter, we also store your IP address and the time of registration in order to fulfill our legal documentation obligations. The legal basis for processing data in this case is Art. 6 Para. 1 (1) (c) GDPR.

 

3.4. Online application

 

On our website, you can apply directly for a position at myneva or one of the companies named in the legal notice (in each case designated the "Job Provider"). For this purpose, you have the option of using our online application form. Alternatively, you can also submit an application by e-mail or post.


As part of the online application process, you will be asked to provide personal information (e.g. name and contact details). In order to establish and implement a possible employment relationship with the respective Job Provider, certain data must be provided. If you do not provide this data, which is highlighted via the mandatory fields, your application will be incomplete and cannot be considered as part of the application process. Providing other information and uploading files or documents (e.g. your CV or application photo) is optional and not mandatory at this point in the application. If you only choose to provide mandatory information, it will not adversely affect your application.


When we have received your online application, you will receive an automatic message from us confirming its receipt. Further communication regarding the application process will then take place via the respective Job Provider.


Your data will be processed by the respective Job Provider for the purpose of establishing a potential employment relationship. The legal basis for data processing by the respective Job Provider is Art. 88 Para.1 GDPR in conjunction with the respective national regulation (in Germany, this is Section 26 Para. 1 (1) BDSG (Federal Data Protection Act)). Insofar as special categories of personal data are concerned, the processing of data is governed by Art. 88 GDPR in conjunction with the national regulation (in Germany, this is Section 26 Para. 3 BDSG). In the event of a rejection and/or conclusion of the application process, your data will be deleted within a period of 6 months.

 

3.5. Participation in events

 

If you would like to participate in our events, you will need to register beforehand, providing your first name and surname, your organization, your postal address and your e-mail address. Any other information you provide is optional. After submitting your registration, you will receive a confirmation e-mail from us stipulating whether your registration was successful. We will use your data to enable your participation, for billing purposes and, if necessary, to communicate with you regarding the specific event and related organizational aspects.
In the event that (pre)contractual measures are implemented, the legal basis for us processing your data is Art. 6 Para. 1 (1) (b) GDPR. Furthermore, the legal basis for us processing your data is Art. 6 Para. 1 (1) (f) GDPR. Our legitimate interest then lies in the organization and realization of the event.
Please note that images and audio are recorded at events and may include you. By providing your consent during the registration process, you agree that myneva Group GmbH, and all of the companies listed under the legal notice, may use the image and audio recordings of you, as well as your first name and surname, without any restrictions in terms of space, time and content, in particular:

  • on the websites
    • on social media channels (Facebook, YouTube, Twitter, etc.),
    • in training materials for employees, interested parties and customers,
    • in e-mail newsletters for customers, interested parties, etc.
    • in product and image brochures, and
    • in an editorial capacity (press releases, editorial articles, etc.)

of the myneva Group and that they can be distributed and used publicly for commercial and non-commercial purposes (e.g. Intranet). Please also note that if the images and audio recordings are used for a public exhibition (e.g. an online publication), they may be available worldwide and further use of these image and audio recordings by unauthorized third parties cannot be ruled out. The granting of your aforementioned consent is necessary in connection with your participation in events, as we cannot ensure the exclusion of individual persons.

For online events, please also note our information regarding data protection in connection with Teams, Zoom and GoTo under section 3.8.

If you submit any queries, comments and/or feedback in connection with the event (e.g. to: sales@myneva.eu), your information will be stored so that it can be used to process your request.
Art. 6 Para. 1 (1) (f) GDPR is fundamentally used as the legal basis for processing your data. Our legitimate interest then lies in responding to your query. In the event that (pre)contractual measures are implemented, the legal basis is Art. 6 Para. 1 (1) (b) GDPR.

 

3.6. Participation in User Days

 

If you would like to participate in our User Days, you will need to register beforehand, providing your first name and surname, your organization, your postal address and your e-mail address. Any other information you provide is optional. After submitting your registration, you will receive a confirmation e-mail from us stipulating whether your registration was successful. We will use your data to enable your participation, for billing purposes and, if necessary, to communicate with you regarding the specific event and related organizational aspects.

In the event that (pre)contractual measures are implemented, the legal basis for us processing your data is Art. 6 Para. 1 (1) (b) GDPR. Furthermore, the legal basis for us processing your data is Art. 6 Para. 1 (1) (f) GDPR. Our legitimate interest then lies in the organization and realization of the event. 

Please note that images and audio are recorded at the User Days and may include you. By providing your consent during the registration process, you agree that myneva Group GmbH, and all of the companies listed under the legal notice, may use the image and audio recordings of you, as well as your first name and surname, without any restrictions in terms of space, time and content, in particular:

  • on the websites,
  • on social media channels (Facebook, YouTube, Twitter, etc.),
  • in training materials for employees, interested parties and customers,
  • in e-mail newsletters for customers, interested parties, etc.
  • in product and image brochures, and
  • in an editorial capacity (press releases, editorial articles, etc.) 

of the myneva Group and that they can be distributed and used publicly for commercial and non-commercial purposes (e.g. Intranet). Please also note that if the images and audio recordings are used for a public exhibition (e.g. an online publication), they may be available worldwide and further use of these image and audio recordings by unauthorized third parties cannot be ruled out. The granting of your aforementioned consent is necessary in connection with your participation in the User Days, as we cannot ensure the exclusion of individual persons. 

For online events, please also note our information regarding data protection in connection with Teams, Zoom and GoTo under section 3.8.

If you submit any queries, comments and/or feedback in connection with the event (e.g. to: sales@myneva.eu), your information will be stored so that it can be used to process your request.
Art. 6 Para. 1 (1) (f) GDPR is fundamentally used as the legal basis for processing your data. Our legitimate interest then lies in responding to your query. In the event that (pre)contractual measures are implemented, the legal basis is Art. 6 Para. 1 (1) (b) GDPR.

 

3.7. Teams, Zoom, GoTo

Information regarding data protection for Teams, Zoom and GoTo can be found here.


4. Data processing and the use of cookies to customize your website experience

In order to make your use of our website as pleasant as possible, we use so-called "cookies", i.e. small text files that are sent to your browser by a web server and stored on the hard drive of your device. This allows us to recognize the device that you are using when accessing our website.
The tracking tools we use and other services that use cookies are specified in sections 5 and 6.


The majority of browsers are set to automatically accept cookies. You can deactivate the storage of cookies in your browser and delete these from your hard drive at any time. You also have the option of preventing certain cookies from being stored in your browser (e.g. third-party cookies), for instance if you want to disable web tracking. For further information, please refer to the help function of your browser.
We would also like to point out that you can install a plugin in your browser to protect your privacy and prevent tracking - e.g. AdBlock, Ghostery or NoScript (please refer to the data protection information provided by the provider of the respective plugin).


Finally, we would like to make you aware of the fact that if cookies are disabled, you may not be able to use the full range of functions of this website.
Details about the cookies used on this website can be found in the cookie banner as well as in the following provisions. Art. 6 Para. 1 (1) (f) GDPR, unless stated otherwise in Sections 5 et seq., is fundamentally used as the legal basis for processing your data. Our legitimate interest lies in customizing your use of our website.

5. Cookie consent with Cookiebot


In order to be able to administer your consent regarding the use of tracking tools, we use the cookie consent technology "Cookiebot" from Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark, website: https://www.cookiebot.com/de/ (hereinafter referred to as "Cybot"). In this context, the granting or rejection of your consent/revocation of your consent will be transmitted to Cybot in addition to the connection data. In order to ensure the corresponding assignment, Cybot also sets a cookie in your browser.

Cookiebot is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 Para. 1 (1) (c) GDPR.

6. Tracking tools / other services



6.1. Google Analytics



Our website uses the tracking tool "Google Analytics". This is a service provided by Google Ireland Limited, a company incorporated and operated under Irish law with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as "Google"). This tracking tool helps us to make the website more interesting for you and enhance your user experience. In this case, data regarding the use of our website is stored in pseudonymous user profiles. Cookies can also be used for this purpose. In addition, data from various devices, sessions and interactions can be linked to a so-called "user ID". The generated information is usually first transferred to a Google server within the EU.

By default, Google automatically anonymizes users' IP addresses when collecting user data. In addition, these IP addresses are neither logged nor stored by Google. The truncating of IP addresses does not mean that data is processed in a completely anonymous manner. Thus, when Google Analytics is used, usage data is collected that is to be evaluated as personal data, such as identification characteristics of individual users, which also allow a link, for example, to an existing Google account.

On our behalf, Google will use the information obtained via Google Analytics to evaluate your usage of our website, to compile reports on website activity, and to provide other services related to website and Internet usage to us. The pseudonymized user profiles are not combined with personal data about the bearer of the pseudonym unless separate consent has been obtained for this.

Further information about Google Analytics can be found here:
https://support.google.com/analytics/answer/12017362

Please note that Google also has independent access to your data collected via Google Analytics and may also use this data for its own purposes. Google may, for example, link this data to other information about you, such as search history, personal account, usage data from other devices, and all of the other data that Google has about you.

The legal basis for the use of Google Analytics is based on your consent pursuant to Section 25 (1) (1) of the Federal Act on the Regulation of Data Protection and Privacy in Telecommunications and Telemedia (TTDSG) for the storage and access to information in end devices, as well as pursuant to Art. 6 (1) (1) (a) GDPR for the further processing of your data. You give your corresponding consent via our cookie banner. Please note that Google is a company from the USA. According to a recent ruling by the European Court of Justice (ECJ), no adequate level of data protection exists in the USA, meaning that there is a risk to the protection of your data. For example, under certain conditions, US authorities may therefore process your data for control and monitoring purposes. The new EU standard data protection clauses were agreed as appropriate safeguards to ensure an adequate level of protection for the transfer of data.

 

6.2. Google Ads Conversion

 

In order to advertise our products and services on external websites with the help of advertising media and to determine the success of our advertising measures, we use the "Google Ads Conversion" service. These advertising media are delivered by Google via so-called "Ad Servers". If you access our website via a Google advert, Google Ads will store a cookie on your end device. These cookies usually lose their validity after 30 days and do not serve to identify you personally. The unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (indication that the user no longer wishes to be addressed) are usually stored as analysis values for this cookie.

The aforementioned cookies enable Google to recognize your Internet browser. Therefore, provided that you have visited certain websites of an Ads customer and the cookie stored on your computer has not yet expired, Google and the Ads customer can recognize that you have clicked on the advert and were redirected to this page. Cookies cannot be tracked across the websites of Ads customers. We ourselves do not collect or process any personal data in the aforementioned advertising measures. We also only receive statistical evaluations from Google. Based on these evaluations, we can see which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising media, in particular we cannot identify you on the basis of this information.

Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our knowledge as follows: Through the integration of Ads Conversion, Google receives the information that you have accessed the corresponding part of our website or clicked on one of our advertisements. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is a possibility that the provider may obtain and store your IP address.

Further information about Google's privacy policy can be found here: https://support.google.com/google-ads/answer/93148 https://ads.google.com/intl/de_de/home/faq/gdpr/

The legal basis for the use of Google Ads Conversion is based on your consent pursuant to Section 25 (1) (1) of the Federal Act on the Regulation of Data Protection and Privacy in Telecommunications and Telemedia (TTDSG) for the storage and access to information in end devices, as well as pursuant to Art. 6 (1) (1) (a) GDPR for the further processing of your data. You give your corresponding consent via our cookie banner. Please note that Google is a company from the USA. According to a recent ruling by the European Court of Justice (ECJ), no adequate level of data protection exists in the USA, meaning that there is a risk to the protection of your data. For example, under certain conditions, US authorities may therefore process your data for control and monitoring purposes. The new EU standard data protection clauses were agreed as appropriate safeguards to ensure an adequate level of protection for the transfer of data.


6.3. HubSpot


For our online marketing activities we use the services of HubSpot Inc., a software company based in the USA (25 First Street, Cambridge, MA 02141 USA), with a subsidiary in Ireland (Ground Floor, Two Dockland Central, Guild St, North Dock, Dublin, D01 K2C5) (hereinafter referred to as "HubSpot").

HubSpot is an integrated software solution that we use to cover various aspects of our online marketing strategy. These include, for example:
e-mail marketing, contact management (e.g. user segmentation & CRM) and data processing via contact forms.

By using our contact forms, users of our website can, for example, find out more about the products and services offered by myneva and provide their contact details and other information. This information is then stored on the servers of our software partner HubSpot. We can use it to get in touch with users of our website and to determine which myneva services may be of interest to them. All of the information we collect is subject to these data protection regulations. We use all of the collected information exclusively to optimize our marketing measures.

The legal basis for the use of HubSpot is based on your consent pursuant to Section 25 (1) (1) of the Federal Act on the Regulation of Data Protection and Privacy in Telecommunications and Telemedia (TTDSG) for the storage and access to information in end devices, as well as pursuant to Art. 6 (1) (1) (a) GDPR for the further processing of your data. You give your corresponding consent via our cookie banner. Please note that HubSpot is a company from the USA. According to a recent ruling by the European Court of Justice (ECJ), no adequate level of data protection exists in the USA, meaning that there is a risk to the protection of your data. For example, under certain conditions, US authorities may therefore process your data for control and monitoring purposes. The new EU standard data protection clauses were agreed as appropriate safeguards to ensure an adequate level of protection for the transfer of data.


6.4. Atlassian

 

To process customer inquiries, we use Jira Service Management (JSM), which is a service provided by Atlassian PRY Ltd., Level 6, 341 George St, Sydney NSW 2000, Australia (hereinafter referred to as "Atlassian"). 

Employees of organizations that are myneva customers can request our support via a myneva website or via links that are directly integrated into myneva software solutions. A ticket is then generated automatically in Atlassian, which results in the manual or automatic assignment of a support agent or group, and the person that has submitted the request receives a notification e-mail about its receipt and processing status. A myneva support agent will then contact the corresponding person via e-mail/phone, answer their question(s) and close the ticket as soon as the problem has been resolved. It is not necessary for customers to register personnel to use the support options.

Upon receipt of the support request, the corresponding customer data will be loaded from HubSpot (see section 6.3) (this includes the name of the organization, address, country, product, etc.).

In particular, the following personal data is processed in Atlassian: 

  • Surname, first name, telephone number, e-mail address of contact persons of myneva customers (= contact details)
  • Surname, first name, telephone number, e-mail address, role, work information/activity data of myneva employees
    The "work information/activity data" specifically relates to the tickets processed by the employee, their response times, their resolution times and the first contact resolution rate, as well as customer satisfaction based on feedback

We use Atlassian to process support requests in a quick and efficient manner. This represents a legitimate interest within the meaning of Art. 6 Para. 1 (f) GDPR. Please note that Atlassian is a company based in Australia. The new EU standard data protection clauses were agreed as appropriate safeguards to ensure an adequate level of protection for the transfer of data. Further information about data protection at Atlassian can be found here: https://www.atlassian.com/de/legal/data-transfer-impact-assessment 

https://www.atlassian.com/de/legal/data-processing-addendum

 

6.5. YouTube

 

Our website uses plugins from YouTube, which is a site operated by Google. When you visit one of our websites that features a YouTube plugin, a connection to YouTube's servers is established. Information regarding which of our websites you have visited is transferred to the YouTube server. If you are logged into your YouTube account, this allows YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

The legal basis for the use of YouTube is based on your consent pursuant to Section 25 (1) (1) of the Federal Act on the Regulation of Data Protection and Privacy in Telecommunications and Telemedia (TTDSG) for the storage and access to information in end devices, as well as pursuant to Art. 6 (1) (1) (a) GDPR for the further processing of your data. You give your corresponding consent via our cookie banner. Please note that Google is a company from the USA. According to a recent ruling by the European Court of Justice (ECJ), no adequate level of data protection exists in the USA, meaning that there is a risk to the protection of your data. For example, under certain conditions, US authorities may therefore process your data for control and monitoring purposes. If you still want to consent to the use of this tool, you can do so via the cookie banner. The new EU standard data protection clauses were agreed as appropriate safeguards to ensure an adequate level of protection for the transfer of data.

For further information on the handling of user data, please refer to YouTube's privacy policy at: https://www.google.de/intl/de/policies/privacy

 

6.6. LinkedIn Insight Tag

 

On our website we use the "LinkedIn Insight Tag" conversion tool from LinkedIn Ireland Unlimited Company (LinkedIn Ireland). This tool creates a cookie in your web browser, which allows the collection of various data, including the following: IP address, device and browser properties and page events (e.g. page views). LinkedIn Ireland does not transmit any personal data to us, but provides anonymized reports regarding website audience and viewing performance. In addition, LinkedIn Ireland offers the possibility of retargeting via the Insight Tag. With the help of this data, we can display targeted advertising outside our website without identifying you as a user of the website. The legal basis for the use of the LinkedIn Insight Tag is based on your consent pursuant to Section 25 (1) (1) of the Federal Act on the Regulation of Data Protection and Privacy in Telecommunications and Telemedia (TTDSG) for the storage and access to information in end devices, as well as pursuant to Art. 6 (1) (1) (a) GDPR for the further processing of your data. You give your corresponding consent via our cookie banner. Please note that LinkedIn Ireland may also process your data outside the EU/EEA. According to a recent ruling by the European Court of Justice (ECJ), no adequate level of data protection exists in the USA, meaning that there is a risk to the protection of your data. For example, under certain conditions, US authorities may therefore process your data for control and monitoring purposes. The new EU standard data protection clauses were agreed as appropriate safeguards to ensure an adequate level of protection for the transfer of data. For further information about the LinkedIn Insight Tag, see the following link. For further information about data protection at LinkedIn Ireland, please refer to the Privacy Policy of LinkedIn Ireland.

 

6.7. Meta Pixel

 

The so-called "Meta pixel" is an invisible meta pixel integrated into our website, which is used by Meta Platforms Ireland Limited (formerly Facebook Ireland Limited), 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter referred to as "Meta") to analyze the online behavior of every website visitor. The Meta pixel makes it possible to transmit customer data such as first name, surname, e-mail address, etc. to Meta and enrich it with existing tracking data. This makes it possible to collect data from non-Facebook users or to record users who are not logged in to Facebook while visiting a website. As a result, website visitors are tracked via Meta, who deliberately prevent the storage of third-party cookies. We then have the opportunity to address you specifically on Facebook with an advertisement. The Meta pixel, however, also makes it possible to gain new customers in a targeted manner and to address new users who resemble website visitors.

In addition to us, Meta itself is also responsible for data processing. The processing of data by Meta is carried out in accordance with Meta's data usage policy. For further information, refer to Meta's data usage policy. Specific information and details about the Meta pixel and how it works can be found in Meta's help section

In this respect, we are jointly responsible with Meta within the meaning of Art. 26 GDPR for the processing of your personal data. In this case, you can in principle assert your rights (see section 12) both against us and against Meta. However, Meta serves as the first point of contact. We have entered into an agreement with Meta on joint responsibility for the processing of personal data. You can view this at the following link: https://www.facebook.com/legal/controller_addendum.  

The legal basis for the use of Meta pixel is based on your consent pursuant to Section 25 (1) (1) of the Federal Act on the Regulation of Data Protection and Privacy in Telecommunications and Telemedia (TTDSG) for the storage and access to information in end devices, as well as pursuant to Art. 6 (1) (1) (a) GDPR for the further processing of your data. You give your corresponding consent via our cookie banner. Please note that Meta is a company from the USA. According to a recent ruling by the European Court of Justice (ECJ), no adequate level of data protection exists in the USA, meaning that there is a risk to the protection of your data. For example, under certain conditions, US authorities may therefore process your data for control and monitoring purposes. In the event that data is transferred to Meta Platforms Inc. in the USA, the new standard data protection clauses have been agreed between Meta Platforms Ireland Limited and Meta Platforms Inc. 

 

6.8. Google reCAPTCHA

 

We use Google reCAPTCHA (hereinafter referred to as "reCAPTCHA") on our website. This is a service provided by Google. reCAPTCHA is used to check whether data entries on our website (e.g. when registering for a newsletter) are made by a human or by an automated program. For this purpose, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor calls up or enters the website. For analysis purposes, reCAPTCHA evaluates various information (e.g. IP address, time spent by the website visitor on the website or mouse movements made by the user). The data collected during this analysis is forwarded to Google. The reCAPTCHA analysis engine runs completely in the background. You will not be informed separately that an analysis is taking place. The legal basis for the use of reCAPTCHA is based on your consent pursuant to Section 25 (1) (1) of the Federal Act on the Regulation of Data Protection and Privacy in Telecommunications and Telemedia (TTDSG) for the storage and access to information in end devices, as well as pursuant to Art. 6 (1) (1) (a) GDPR for the further processing of your data. You give your corresponding consent via our cookie banner. Please note that Google is a company from the USA. According to a recent ruling by the European Court of Justice (ECJ), no adequate level of data protection exists in the USA, meaning that there is a risk to the protection of your data. For example, under certain conditions, US authorities may therefore process your data for control and monitoring purposes. The new EU standard data protection clauses were agreed as appropriate safeguards to ensure an adequate level of protection for the transfer of data.

For further information about reCAPTCHA and Google's privacy policy, please refer to the following links: https://www.google.com/intl/de/policies/privacy/ and https://www.google.com/recaptcha/intro/android.html.

 

6.9. Google AdSense

 

We use Google's AdSense function on our website. The purpose of data processing here is to rent out advertising space on the website and to target website visitors with advertisements related to their interests. This function is used to present website visitors with personalized, interest-related advertisements from the Google Display Network. In this regard, Google uses cookies and web beacons (invisible graphics) that enable an analysis of your website use. The information generated about your use of this website (including your IP address) is usually transmitted to a Google server in the USA, where it is stored. Google may transfer this information to third parties if it is required by law or if third parties process this data on behalf of Google. To the best of our knowledge, Google will not associate your IP address with any other data held by Google. 

For further information and details concerning Google's privacy policy, please visit:  https://www.google.com/policies/technologies/ads/ and https://www.google.com/policies/privacy/

The legal basis for the use of Google AdSense is based on your consent pursuant to Section 25 (1) (1) of the Federal Act on the Regulation of Data Protection and Privacy in Telecommunications and Telemedia (TTDSG) for the storage and access to information in end devices, as well as pursuant to Art. 6 (1) (1) (a) GDPR for the further processing of your data. You give your corresponding consent via our cookie banner. Please note that Google is a company from the USA. According to a recent ruling by the European Court of Justice (ECJ), no adequate level of data protection exists in the USA, meaning that there is a risk to the protection of your data. For example, under certain conditions, US authorities may therefore process your data for control and monitoring purposes. The new EU standard data protection clauses were agreed as appropriate safeguards to ensure an adequate level of protection for the transfer of data.

 

6.10 Google Fonts (local integration)

 

We use so-called web fonts provided by Google, for the uniform display of fonts on our website. Google Fonts are installed locally, which is why your IP address or other data is not transmitted to Google servers.

 

7. Data transfer


We will only transfer your personal data to third parties or other recipients if this is necessary for the provision of services, if you have given your consent, if there is a legal obligation to do so or if the transfer of data is permitted by another legal basis. Where necessary, we have concluded data processing agreements with the recipients of your data, such as Google, Cybot or other service providers such as Amazon Web Services (in Frankfurt am Main) in accordance with Art. 28 GDPR. We will only transfer your data to government bodies within the scope of legal obligations or on the basis of an official order or court decision.

 

8. Social media presence


8.1. Links to social networks


Our website contains links to social networks (Facebook, LinkedIn, YouTube and Xing). These websites are operated exclusively by third parties. If you follow the links provided, the respective provider may process your personal data. Please refer to the data protection information of the providers in this regard.


8.2. Data processing by myneva and legal basis


The purpose of our social media presence (on Facebook, LinkedIn, YouTube and Xing) is to provide you with information about myneva, as well as to inform you of new developments, services and products offered by myneva or one of the companies named in the legal notice. Depending on the respective provider's offer, you have the option to interact in different ways (comments, recommendations, etc.), for example, in connection with our social media presence. The interaction of users is an important criterion for us in order to carry out targeted marketing. For example, we can determine which posts users prefer to read. We therefore also use the statistics determined by the providers in this regard for our own purposes. If we process the users' personal data, the legal basis for this is Art. 6 Para. 1 (1) (f) GDPR. Our legitimate interest thus lies in particular in targeted information/advertising. The providers will inform you separately about the legal basis on which they process your data for their own purposes.


8.3. Joint responsibility


In individual cases, we may share responsibility for the processing of your personal data with social media providers. In this case, you may assert your rights both against us and against the social media provider (see section 12). However, the first point of contact is always the social media provider.

We have concluded an agreement with Meta Platforms Ireland Limited (formerly Facebook Ireland Ltd.), 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, regarding joint responsibility for the processing of personal data. This applies to the processing of so-called "insights data", which concern page statistics, particularly with regard to the interactions of Facebook users. Further information about insights data is available here. You can view our agreement with Meta via the following link.

We have also concluded a corresponding agreement with LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (LinkedIn). This applies to so-called "page insights". These are aggregated page statistics, whereby LinkedIn does not provide us with any personal data about you. We only have access to your aggregated data. It is not possible for us to draw conclusions about individual users by means of page insights. Detailed information about insights data and our agreement with LinkedIn can be viewed via the following link.

Please note that social media providers also process your data outside the EU/EEA. According to a recent ruling by the European Court of Justice (ECJ), no adequate level of data protection exists in the USA, meaning that there is a risk to the protection of your data. For example, under certain conditions, US authorities may therefore process your data for control and monitoring purposes.

With regard to the storage period of the data that we process for our own purposes, please refer to our explanations provided under section 10. Otherwise, please observe the privacy policy of the respective social media provider.

 

9. Data transfer to countries outside the EU


Insofar as necessary for our purposes, we will only transfer personal data to recipients outside the EU if you have given your consent, if there is a legal obligation to do so, or if the transfer of data is permitted on another legal basis. Your data will also be transferred to recipients based in the USA within the scope of processing data. Please note: According to a recent ruling by the European Court of Justice (ECJ), no adequate level of data protection exists in the USA, meaning that there is a risk to the protection of your data. For example, under certain conditions, US authorities may therefore process your data for control and monitoring purposes. Furthermore, we refer to Art. 49 GDPR with regard to the legal basis for the transfer of data. An appropriate level of data protection is ensured through the conclusion of the new so-called EU standard contractual clauses.

10. Storage period for personal data/criteria for determining the storage period


myneva will store your personal data for as long as it is necessary for the aforementioned processing purposes or in case of an objection that no compelling reasons worthy of protection exist for myneva or in case of a withdrawal of consent if no other legal basis for data processing exists. In certain cases (e.g. if there is a legal obligation to store data), your personal data will not be deleted immediately, but will initially be blocked.


If an application you submit is successful (e.g. via our online application form, see section 3.5), your data will be transferred to the personnel file of the respective Job Provider and stored beyond the period of the application process in accordance with the statutory provisions. If your application is unsuccessful, the respective Job Provider will store your data beyond the period of the application process for a maximum of 6 months, unless you have given your consent to further data processing.

11. Data security


To protect your personal data on this website, we use a secure online transmission procedure known as "Secure Socket Layer" (SSL) transmission. This is indicated by a closed padlock symbol next to the "https://" portion of the address. Click on this symbol for details of the SSL certificate used. The symbol displayed depends on the version of web browser used. SSL encryption guarantees the encrypted and complete transmission of your data.

12. Your rights


Within the framework of the legal requirements, you are in principle entitled to request from myneva:

• confirmation of whether myneva is processing your personal data,
• information about this data and the circumstances of processing,
• correction if this data is incorrect,
• deletion if there is no justification for processing and no obligation to store your personal data (any longer),
• restriction of processing in certain cases specified by law,
• objection in case of data processing based on Art. 6 Para. 1 (f) GDPR and
• transfer of your personal data – insofar as you have provided it – to you or a third party in a structured, common and machine-readable format


If you have given your consent to the processing of your personal data, you have the right to withdraw your consent again at any time. Processing of your personal data will then not be permitted in the future. However, this will not affect the lawfulness of the processing carried out with your consent before you withdrew your consent.


Please address your specific request in writing or by e-mail, clearly identifying yourself, to:


myneva Group GmbH
Fuhlsbüttler Straße 387
22309 Hamburg
Managing director: Dieter Weisshaar
Tel.: +49 (0) 40 524 70 08-80
e-mail: info@myneva.eu

The Group Data Protection Officer of myneva Group GmbH, myneva Deutschland GmbH and myneva Austria GmbH can be contacted via the following channels:


Dr. Karsten Krupna
Krupna LEGAL
Drehbahn 7, 20354 Hamburg
T  + 49 (0)40 – 31976927
F  + 49 (0)40 – 85599739
M + 49 (0)163 – 2511327

k.krupna@krupna.legal

www.krupna.legal

 

The Data Protection Officer of myneva Benelux B.V. is:

Tan Li (in-house employee)
Tel.: +31(0)348 - 489 040

Insofar as we process your data in joint controllership with third parties within the meaning of Art. 26 GDPR (see section 8.3), the third party is centrally responsible for the exercise of all rights of the persons concerned. However, you are also free to assert your rights against us.
Finally, we would like to draw your attention to your right to lodge a complaint with a supervisory authority.


e.g. supervisory authority in Hamburg:
The Hamburg Commissioner for Data Protection and Freedom of Information
Ludwig-Erhard-Str 22, 7. OG 20459 Hamburg
mailbox@datenschutz.hamburg.de

13. No automated individual decisions


We do not use your personal data to make automated individual decisions.

14. Changes to the Privacy Policy


New legal requirements, business decisions or technical developments may require changes to our Privacy Policy. The Privacy Policy will then be amended accordingly. The latest version can always be found on our website.