Private Policy Statement of FrankfurtRheinMain GmbH

The data controller within the meaning of the EU’s General Data Protection Regulation (GDPR), the Hessen Data Protection and Freedom of Information Act (HDSIG), other national data protection acts of the Member States, and other data protection regulations is::

FrankfurtRheinMain GmbH

International Marketing of the Region
 

Unterschweinstiege 8

60549 Frankfurt am Main / Germany
Tel. +49 69 6860380
Fax +49 69 68603811
E-Mail: info@frm-united.com

President & CEO:Eric Menges

The Data Controller’s Data Protection Officer can be contacted at the following e-mail address:

Unterschweinstiege 8

60549 Frankfurt am Main / Germany
E-Mail: datenschutzbeauftragter@frm-united.com 
Telefon: +49 69 6860380
Telefax: + 49 69 68603811

 

Personal Data

Personal data means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

The way how your personal data is processed is described as follows: 

1.

Storage of personal data in our customer relationship management system

Description and scope of data processing: If you contact us for business purposes, we may store your personal data in our customer relationship management system and may inform you at irregular intervals about current topics from our field of activity and events (no newsletter).

The provision of personal data by you is not required by law or contract, nor is it necessary for the conclusion of a contract. You are not obliged to provide us with personal data.

Legal basis for the data processing: The legal basis for the processing of the data is your consent (Art. 6 para. 1 lit. a DS-GVO).

Purpose of the data processing: The purpose of processing personal data is to organize our business contacts and to send information within the scope of our activity.

Duration of storage: The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. We regularly check, at the latest every three years, whether further storage of the data is necessary. This does not apply if the deletion conflicts with legal or contractual obligations, in particular retention periods.
 

2.

Provision of the website and creation of log files

Each time you visit our website, our system automatically collects data and information from the computer system of the connecting computer.

Description and scope of data processing: The following information is automatically collected by your system when you access a page:

  • The type and version of browser
  • The operating system used,
  • The referrer URL,
  • The website you visit,
  • The date and time you accessed the page,
  • Your Internet Protocol (IP) address.

The collection and storage of system information in log files is mandatory for the operation of the website.

Legal basis for the data processing: Rechtsgrundlage für die vorübergehende Speicherung der Informationen und der Logfiles ist Art. 6 Abs. 1 lit. f DS-GVO.

Purpose of the data processing: The temporary storage of the IP address you use is necessary to enable delivery of the website to your computer. The purpose of the storage in log files is to ensure the functionality and stability of the website and our IT system. An evaluation of the data for marketing purposes does not take place in this context. Our legitimate interest in data processing according to Art. 6 Para. 1 lit. f DS-GVO also lies in the purposes described.

Duration of storage: The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended. The data stored in log files are deleted after a period of seven days at the latest.

 

3.

Contact by e-mail

Description and scope of data processing: If you contact us via the e-mail address provided, the personal data transmitted with the e-mail will be stored.

Legal basis for the data processing: The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 (1) lit. f DS-GVO. Our legitimate interest is to answer your e-mail inquiry. If the e-mail contact aims at the conclusion of a contract or takes place during an ongoing contractual relationship, the additional legal basis for the processing is Art. 6 (1) lit. b DS-GVO.

Purpose of the data processing: The processing of personal data from an e-mail serves us solely to process the e-mail inquiry.

Duration of storage: The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For personal data sent by e-mail, this is the case when the respective conversation with you has ended. The conversation is ended when it is clear from the circumstances that the matter in question has been conclusively clarified. This does not apply if the deletion conflicts with legal or contractual obligations, in particular retention periods.

 

4.

Contact form

Description and scope of data processing: When you send a contact request via our contact form, the data entered in the input mask is transmitted to us and stored. At the time of sending the message, the IP address used by you as well as the date and time of the contact request are also stored. 

The provision of personal data by you is voluntary. Failure to provide personal data, insofar as this is mandatory, means that contact via the contact form is not possible, as we cannot process your request without this data.

Legal basis for the data processing: The legal basis for processing the data transmitted via the contact form is our legitimate interest (Art. 6 para. 1 lit. f DS-GVO). Our legitimate interest is to process your contact request. In certain cases, we obtain your consent to the processing of your data before sending a contact request; in these cases, Art. 6 (1) lit. a DS-GVO is the legal basis. If the contact request is aimed at the conclusion of a contract or is made in connection with an existing contractual relationship, the additional legal basis for the processing is the implementation of (pre-)contractual measures (Art. 6 para. 1 lit. b DS-GVO).

Purpose of the data processing: The processing of personal data from the input mask serves us solely to process the contact request.

Duration of storageThe data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For the personal data from the input mask of the contact form, this is the case when the respective conversation with you has ended. The conversation is ended when it is clear from the circumstances that the matter in question has been conclusively clarified. This does not apply if the deletion conflicts with legal or contractual obligations, in particular retention periods. The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

 

5.

Registration for events

Description and scope of data processing: When you submit a registration via a registration form, the data entered in the input mask and the declarations made are transmitted to us and stored. At the time of sending the registration, the IP address used by you and the date and time of registration are also stored. If a registration system of an external provider is used, you will be explicitly informed of this and the data protection consequences again before sending the registration.

If external speakers are involved in the event, we will share your data with these external speakers, if necessary, for the purpose of preparing and conducting the event.

The provision of personal data by you is voluntary. However, the provision of the data marked as mandatory is required so that we can conclude and implement an agreement on your participation in the desired event.

Legal basis for the data processing: The legal basis for the processing of the data is Art. 6 (1) lit. b DS-GVO, as the processing of the data is necessary for the registration and implementation of the event selected by you. If we separately obtain your consent, Art. 6 para. 1 lit. a DS-GVO is also the legal basis.

Purpose of the data processing: The processing of personal data serves exclusively the registration and implementation of the event.

Duration of storage: The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. Personal data collected during registration will be deleted no later than one month after the end of the event, unless you have consented to further use or processing (e.g. consent to receive invitations to future events).

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

 

6.

Recording and streaming of online events

Description and scope of data processing: We may partially record online and hybrid events and offer them for streaming on our websites and/or appearances on social media. When recording, chat contributions are stored separately; these are not published. For the purpose of public relations, individual photo and video recordings of participants may also be made during an online event. In addition, connection data of the participants may be stored.

The photo and video recordings may be published in print media, our own publications, on our websites and/or pages on social media. For the publication of photo and video recordings on social media channels, your consent is obtained as part of the registration process for the event and reference is made to this privacy policy. If the recording of an online event is to show individual participants, we also obtain your consent in advance for this recording and the streaming offer on websites and/or in appearances on social media.

Connection data is stored automatically. This is technically necessary for participation in the online event.

For the live streaming of events, we regularly work with external service providers who act for us on our instructions on the basis of a contract processing agreement. 

Legal basis for the data processing: The legal basis for the processing of the data is your consent (Art. 6 (1) a DS-GVO). The publication of film and video recordings in print media, on websites or other own publications is based on our public mandate for location marketing and public relations (Art. 6 para. 1 lit. e DS-GVO). The legal basis for storing the connection data is Art. 6 (1) lit. f DS-GVO; our legitimate interest lies in ensuring the functionality of the systems for conducting the online event

Purpose of the data processing: The processing of personal data serves the purposes stated in the section Description and scope of data processing.

Duration of storage: The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. Published recordings of online events remain stored as long as the respective publications are retrievable or available. The connection data is deleted after a period of seven days at the latest.

Recipients and data transfer to third countries: If you have consented to the publication of photographs and video recordings showing you or a recording of the online event on social media as part of the registration process, the data will be transferred to the operators of these social networks. As part of the consent process, you will be informed that the operators of social media are partly based outside the territory of the EU and the European Economic Area (EEA), in particular in the USA, and that these countries do not have an adequate level of data protection. We cannot rule out the possibility that even if social media operators have a registered office in the EU, personal data may also be transferred to group companies in the USA or another country outside the EU or the EEA and/or that this data may also be stored on servers in the USA or another country outside the EU or the EEA. A transfer is possible in particular to the following social media operators:

 
7.
Taking and publishing photographs and video recordings
 
Description and scope of data processing: As part of the special public mandate to operate and (further) develop location marketing for the FrankfurtRheinMain region, it is our responsibility to inform the public about events in suitable publications in words and pictures. For this purpose, photographs and videos may be taken at events and published in print media, our own publications, on our Internet offerings and/or appearances on social media. For publication on social media sites, we obtain your consent and refer to this privacy statement.

Legal basis for the data processing: The legal basis for the processing of the photo and video recordings is the public mandate assigned to us for location marketing for the FrankfurtRheinMain region (Art. 6 (1) lit. e DS-GVO). If you have given your consent to the publication of photographs and video recordings showing you on social media channels, this is the legal basis for the data processing (Art. 6 para. 1 lit. a DS-GVO).

Purpose of the data processing: The purpose of the publication of photographs and video recordings is our special public mandate to conduct and (further) develop location marketing for the FrankfurtRheinMain region and therefore inform the interested public about events.

Duration of storage: The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. Insofar as photos and videos are not published, they will be deleted no later than one month after the end of the event. Published photos and videos remain stored as long as the respective publications are retrievable or available.

Recipients and data transfer to third countries: For publication in print media, the photos taken will be transmitted in particular to daily newspapers and publishing houses. If you have consented to the publication of photos and videos showing you in social media as part of the registration process, the data will be transferred to the operators of these social networks. You will be informed as part of the consent that the operators of social media are partly based outside the territory of the EU and the European Economic Area (EEA), in particular in the USA, and that these countries do not have an adequate level of data protection. We cannot rule out the possibility that even if social media operators have a registered office in the EU, personal data may also be transferred to group companies in the USA or another country outside the EU or the EEA and/or that this data may also be stored on servers in the USA or another country outside the EU or the EEA. A transfer is possible in particular to the social media operators below.

Recipients and data transfer to third countries: If you have consented to the publication of photographs and video recordings showing you or a recording of the online event on social media as part of the registration process, the data will be transferred to the operators of these social networks. As part of the consent process, you will be informed that the operators of social media are partly based outside the territory of the EU and the European Economic Area (EEA), in particular in the USA, and that these countries do not have an adequate level of data protection. We cannot rule out the possibility that even if social media operators have a registered office in the EU, personal data may also be transferred to group companies in the USA or another country outside the EU or the EEA and/or that this data may also be stored on servers in the USA or another country outside the EU or the EEA. A transfer is possible in particular to the following social media operators:

 

8.
Registration for contact linking measures at events
 
Description and scope of data processing: In the run-up to certain events, visitors have the opportunity to register for participation in measures for contact linking (so-called partnering or matchmaking) and to deposit profiles. When the registration for partnering/matchmaking and the profile are sent, the data entered in the input masks are transmitted to us and stored. At the time of sending the registration, the IP address used by you and the date and time of registration are also stored. For the processing of data, your consent is obtained during the submission process and reference is made to this privacy policy. In the case of regular events, you may also have the option of saving your profile permanently for further events. We may refer to this separately in the context of the declaration of consent. 

The provision of personal data by you is voluntary. However, participation in partnering/matchmaking is not possible if you do not provide us with the data marked as mandatory data.

Participants who have registered for partnering/matchmaking will generally be given access to the profiles of other participants before the event and will be able to contact other participants. 

Legal basis for the data processing: The legal basis for the processing of the data is your consent (Art. 6 para. 1 lit. a DS-GVO).

Purpose of the data processing: The processing of personal data serves exclusively the registration to and the implementation of the measures for improved contact linking at events.

Duration of storage: The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. The personal data collected in the profile as part of the registration for partnering/matchmaking will be deleted no later than six months after the end of the event, unless you have consented to the longer storage of your profile.

The additional personal data collected during the submission process will be deleted after a period of seven days at the latest. 

 

9.

Registration forms for topic-specific databases

Description and scope of data processing: On our pages you have the possibility to register for topic-specific databases. When you submit the registration, the data entered in the input mask is transmitted to us and stored. At the time the form is sent, the user's IP address and the date and time of sending are also stored. For the processing of the data, your consent is obtained during the submission process and reference is made to this privacy statement.

The provision of personal data by you is voluntary. Failure to provide personal data, insofar as this is mandatory, will result in the registration for the respective database not being possible..

Purpose of the data processing: The processing of personal data serves exclusively to include you or the organization you represent in the respective database, to edit entries and, if necessary, to be able to contact you for this purpose.

Duration of storage: The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. If we reject your registration, we will delete the data no later than one month after rejection. In the event of successful registration, we store the data provided for the duration of your stay in the respective database. You can cancel your registration and deregister from the respective database at any time. For this purpose please contact datenschutzbeauftragter@frm-united.com.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

 

10.

Provision of (interactive) questionnaires

Description and scope of data processing: We include questionnaires in our offer with which you can self-assess your competencies, certain situations and development potentials and/or communicate your views and assessments. As a rule, the questionnaires can be completed without providing personal data and are evaluated anonymously by us. In individual cases, certain information is collected, such as your function/position, which allows conclusions to be drawn about you personally, but which is not used by us. Information from the questionnaires is generally stored separately from other data and information collected.

If we offer to send you an evaluation and/or further documents, you will regularly have the opportunity to provide your e-mail address for this purpose.

In part, it is possible to temporarily store a questionnaire for the purpose of later completion and to retrieve it later. This can be done via a link that is created automatically and that you can send yourself to your e-mail address. Alternatively, you can register by providing personal data and a password.

At the time of sending the questionnaire and/or registration, the IP address used by you as well as the date and time of sending may be transmitted to us and stored by us..

The information in questionnaires can be used anonymously for further evaluations, statistical surveys and analyses.

The possible provision of personal data by you is voluntary. Depending on the specific design, the caching of a questionnaire is only possible with registration and the data marked as mandatory are required for this purpose.

Legal basis for the data processing: The legal basis for the processing of personal data is Art. 6 (1) lit. a DS-GVO, if we have obtained your consent. Otherwise, the exercise of our legitimate interests pursuant to Art. 6 para. 1 lit. f DS-GVO is the legal basis, whereby our legitimate interest is to be able to provide you with the desired offers and functions related to a questionnaire.

Purpose of the data processing: The processing of personal data serves the purpose of sending you the evaluation result and, if necessary, further documents as requested when you provide your e-mail address and, in the case of registration, to give you the option of temporary storage and later completion of a questionnaire.

Duration of storage: The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. Insofar as you have provided us with your e-mail address for the purpose of sending us the evaluation result and, if applicable, further documents, your data will be deleted after it has been sent. Any data for the temporary storage of a questionnaire will be deleted no later than seven days after you have completed the questionnaire. If you do not wish to complete the questionnaire, you can have it and your other stored data deleted at any time. Please contact us for this purpose: datenschutzbeauftragter@frm-united.com.

The additional data collected during a sending process will be deleted after a period of seven days at the latest.

 

11.

Use of technically necessary cookies

Description and scope of data processing: In order to make the visit to our website attractive and to enable the use of certain functions, we use technically necessary cookies on various pages. These are small text files that are stored on your terminal device.

You can set your browser so that you are informed about the setting of cookies and decide individually about their acceptance or exclude the acceptance of cookies for certain cases or in general. If you do not accept cookies, the functionality of our website may be limited. The following links show you how to adjust the settings in the following common browsers:

Chrome: https://support.google.com/chrome/answer/95647?hl=de  
Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen  
Internet Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies  
Safari: https://support.apple.com/de-de/guide/safari/manage-cookies-and-website-data-sfri11471/mac 

If you use different devices to visit our website (e.g. your computer, smartphone, tablet, etc.), you should make sure that the cookie settings you want are set for each browser and on each device.

Legal basis for the data processing: If personal data is processed using technically necessary cookies, the legal basis is Art. 6 (1) lit. f DS-GVO.

Purpose of the data processing: The purpose of using technically necessary cookies is to make visiting our website attractive and to enable the use of certain functions, such as a language selection or the recognition of the browser after registering in the member area of a page. Without the use of technically necessary cookies, functions of our website cannot be offered. This is also our legitimate interest within the meaning of Art. 6 para. 1 lit. f DS-GVO..

The user data collected through cookies are not used to create user profiles.

Duration of storage: We use "session cookies". A session cookie is a cookie that is automatically deleted after the user closes the browser.

 

12.
Embedded videos

  • Embedding via YouTube

On our websites, you can watch videos that are embedded by means of a "plug-in" of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; a Google LLC company). When you call up a website with an embedded video, YouTube processes system data about the terminal device you are using and the browser you are using (IP address, type of browser used, device information, operating system used).

YouTube uses cookies for data collection and statistical data analysis, to prevent fraud and to improve the user experience. We receive statistical values on the retrieval of individual videos embedded in the website via the cookies set by YouTube without any reference to the respective user. If you view a video embedded in this way, this data may also be stored and further used by YouTube. In this case, if you are logged into YouTube at the same time as your YouTube account, YouTube may be able to associate your surfing behavior with your YouTube user profile. You can prevent corresponding data processing by logging out of your YouTube account before visiting our websites.

The "extended data protection mode" for YouTube videos is activated on our websites. This means: YouTube does not store cookies for a user who views a website with an embedded YouTube video player, but does not click on the video to start playback. Before calling up a video, you will be informed that by clicking on a video link you will leave the website of the responsible party and be transferred to the Internet offering of the YouTube video portal, transferring the website you are currently calling up. If you accept this, YouTube may store the above-mentioned cookies on your terminal device; however, no personal cookie information is stored for playbacks of embedded videos.

Since this is the service of a third party, we have no influence on the processing of corresponding data by YouTube. For the purpose and scope of the data collection and the further processing and use of the data by YouTube or Google, as well as your rights in this regard and setting options for protecting your privacy, please refer to the corresponding notes on data protection at policies.google.com/privacy. Google also processes your personal data in the USA, which does not have a level of data protection equivalent to that of the EU.

  • Embedding via Vimeo

You have the option to access our video offer at Vimeo (an offer of Vimeo, Inc., 555 West 18th Street, New York, New York 10011, USA) via our video store videos. Since this is the service of a third party, we have no influence on the processing of corresponding data by Vimeo. Vimeo points out in its privacy policy that user information (including personal data) may be transferred, stored and processed in the USA, where Vimeo's servers are located and its central database is operated. For more information on the purpose and scope of the data collection and the further processing and use of the data by Vimeo, as well as your rights in this regard and setting options for protecting your privacy, please refer to the corresponding data protection information of Vimeo at https://vimeo.com/privacy.

  • Embedding via Amazon CloudFront CDN

We embed content, in particular larger media files such as graphics, videos and scripts via a so-called Content Delivery Network ("CDN"), which is operated by Amazon Web Services, Inc. (410 Terry Avenue North, Seattle WA 98109, USA, "AWS"). When you access a website with embedded content, Amazon processes system data via the CDN about the terminal device you are using and the browser you are using (IP address, type of browser used, device information, operating system used. 

The use of Amazon Web Services and the Amazon CDN Cloudfront is in the interest of a higher reliability of the website, increased protection against data loss and a better loading speed of this website. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.

We have entered into an order processing agreement with AWS based on the EU standard contractual clauses. For more information, please see CloudFront's privacy policy at https://aws.amazon.com/de/privacy und unter https://aws.amazon.com/de/data-protection/. AWS processes your data in the USA, which does not have a level of data protection equivalent to that of the EU.

 

13.

Embedded Maps

  • Use of Google Maps

On our websites, the Google Maps offer of the provider Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) is used. This allows us to show you interactive maps directly on the website and enables you to use the map function comfortably.

If you have consented to the integration of Google Maps, Google receives the information that you have accessed the corresponding subpage of our website. In addition, system data about your terminal device and the browser you are using (IP address, browser type used, device information, operating system used) are processed by Google. This occurs regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged in to Google, your data will be directly assigned to your account. If you do not want the assignment with your profile at Google, you must log out before activating the button. Google stores your data as usage profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right.

If you do not want the data processing, please do not open the map from Google Maps.

For more information about the purpose and scope of data collection and processing by Google, please refer to Google's privacy policy at policies.google.com/privacy. There you will also receive further information on your rights in this regard and setting options for protecting your privacy. Google also processes your data in the USA, which does not have a level of data protection equivalent to that of the EU..

  • Use of Open Street Map

Our websites use map extracts based on the OpenStreetMap (OSM) open data project of the OpenStreetMap Foundation (132 Maney Hill Road, Sutton Coldfield, West Midlands, B72 1JU, United Kingdom). OSM is used to provide you with interactive maps of our website.

If you have consented to the use of OSM, information about the use of the website (website visited, IP address used, browser type used, user behavior) is transferred to retrieve so-called tiles (map sections). Depending on which map sections you retrieve, data may also be transferred for this purpose to servers in countries outside Germany and the European Union or the European Economic Area, including the USA. OSM's main servers and infrastructure are operated in the United Kingdom and the Netherlands. Access to other servers only occurs if you should retrieve map sections of the respective countries. According to its own information, the data is deleted 180 days after collection.

This service is open source and we have no influence on its data collection and processing. The information collected may be transferred to third parties, processed on behalf of third parties and the data may be merged with other data stored about the user, although we have no information on this.

You can disable the collection of data by using OpenStreetMap by not using the map viewer.

Further information on the use of personal data by OpenStreetMap is available at wiki.osmfoundation.org/wiki/Privacy_Policy. The EU Commission has confirmed the adequate level of data protection in the United Kingdom by means of an adequacy decision. 

 

14.

Social plug-ins from social network providers

Social plug-ins from social network providers are used on our websites. Via these social plug-ins, personal data can be sent to the service providers (also to non-European countries) and possibly used by them.

We do not collect any personal data ourselves by means of the social plug-ins or via their use. We have configured the social plug-ins so that initially no personal data is passed on to the providers of the individual social plug-ins when you visit our website. Only when you click on one of the social plug-ins can data be transmitted to the service provider and stored there.

When you click on the corresponding buttons of the service providers, they receive the information that you have accessed the corresponding subpage of our online offer. You do not need to have an account with this service provider or be logged in there. If you are logged in to the service provider, this data is directly assigned to your account. If you click on one of the social plug-ins and link to the page, for example, the service provider will also store this information in your user account and may share this publicly with your contacts.

If you do not wish to be associated with your profile by the service provider, you must log out before clicking on one of the social plug-ins.

We have no influence on whether and to what extent the service providers collect personal data. We are also not aware of the scope, purpose and storage period of the data collection. It must be assumed that at least the IP address and device-related information are collected and used. It is also possible that the service providers use cookies.

We would like to point out that some of the service providers of social networks are based outside the territory of the EU and the European Economic Area (EEA), in particular in the USA, and that these countries do not have an adequate level of data protection. We cannot rule out the possibility that even if service providers of social networks have a registered office in the EU, the personal data may also be transmitted to group companies in the USA or another country outside the EU or the EEA and/or this data may also be stored on servers in the USA or another country outside the EU or the EEA.

Further information of the service providers in detail:

 

Our appearances on social media

You can find us on various social media channels. When you visit one of our presences on social media, the respective social media provider processes data from you in order to create statistical evaluations and to operate and improve its own services and offers. The data processing takes place in part regardless of whether you are registered and logged in to the visited social media platform itself or not.

Some service providers provide us with analyses of the use of our websites, which we can use to analyze our offerings and the needs of our users. For this purpose, the reach of our posts, the number of views of our videos and the development of our subscriber numbers are evaluated. We receive the evaluations completely without personal reference. The anonymized data summarized by groups/categories include: Age, gender, user's place of residence (country and region/city), time and location of use, total number of users of individual functions/areas, interactions (e.g. comments, click rate, views, shares), video usage duration, devices used, operating systems, software, usage history (referring web offers), language, accessed interests/topics.  

Anonymized evaluations are updated daily and made available for an evaluation period including the previous day.

We have no influence on whether and to what extent the service providers collect personal data. We also do not know the scope, purpose and storage period of the data collection. It must be assumed that at least the IP address and device-related information are collected and used. It is also possible that the operators use cookies and comparable technologies with which the usage behavior on the platforms and other services of the provider can be tracked and evaluated.

We would like to point out that some of the social media providers are based outside the territory of the EU and the European Economic Area (EEA), in particular in the USA, and that these countries do not have an adequate level of data protection. We cannot rule out the possibility that even if social media providers have a registered office in the EU, personal data may also be transferred to group companies in the USA or another country outside the EU or the EEA and/or that this data may also be stored on servers in the USA or another country outside the EU or the EEA. Government agencies in some third countries, for example in the USA, have far-reaching access rights to data from companies based in these third countries.

Insofar as we receive statistical evaluations from the individual providers of the social media channels about the use of our appearances, there is joint responsibility between us and the respective provider of the social media channel for these related data processing operations.

Further information on the providers of social media channels on which we maintain a profile:

 

  • Facebook 
    The service provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. Further information on the collection and use of personal data by Facebook can be found at https://www.facebook.com/policy.php. When you use the Facebook page, Facebook stores cookies on your computer or smartphone. Information on this can be found at www.facebook.com/policies/cookies. We have concluded a supplementary shared responsibility agreement with Facebook, which specifies the data processing operations for which we or Facebook are responsible when you visit our Facebook page, and which you can view at the following link: https://www.facebook.com/legal/controller_addendum.
  • Instagram
    The service provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. Further information on data processing can be found at help.instagram.com/519522125107875. When using our Instagram profile, Facebook stores cookies on your smartphone. You can find information on this at https://www.facebook.com/policies/cookies. We have entered into a supplemental shared responsibility agreement with Facebook that sets forth which data processing operations we or Facebook are responsible for when you visit our Instagram profile, which you can view at the following link: https://www.facebook.com/legal/controller_addendum.
  • XING
    The service provider is New Work SE (Am Strandkai 1, 20457 Hamburg). Further information on data protection can be found in XING's privacy policy at privacy.xing.com/de/datenschutzerklaerung.
  • LinkedIn
    The service provider is LinkedIn Ireland Unlimited Company (Wilton Place, Dublin 2, Ireland). For more information about privacy, please see LinkedIn's privacy policy at https://www.linkedin.com/legal/privacy-policy and cookie policy at www.linkedin.com/legal/cookie-policy. For the processing operations where we are jointly responsible with LinkedIn, the following joint responsibility agreement applies: https://legal.linkedin.com/pages-joint-controller-addendum .
  • Twitter
    The service provider is Twitter International Company (One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland). For more information on data protection, please refer to Twitter's privacy policy at twitter.com/de/privacy.
  • YouTube
    The service provider is Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). For more information on data protection, please refer to Google's privacy policy at policies.google.com/privacy.
  • Vimeo
    The service provider is Vimeo.com, Inc. (555 West 18th Street, New York, New York 10011, USA). For more information on data protection, please refer to Vimeo's privacy policy at vimeo.com/privacy.
  • Pinterest
    The service provider is Pinterest Europe Ltd (Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland). For more information on data protection, please refer to Pinterest's privacy policy at policy.pinterest.com/de/privacy-policy.

 

15.
Automated decision-making including profiling

No automated decision-making including profiling takes place.

 

16.

Rechte der betroffenen Person

If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:

Right to information: In accordance with Art. 15 DS-GVO, you have the right to request information about your personal data processed by us; in particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, and the existence of automated decision-making, including profiling, and, if applicable. request meaningful information about their details.

Right to rectification: In accordance with Art. 16 DS-GVO, you have the right to request the correction of incorrect personal data or the completion of your data without delay.

Right to deletion: Pursuant to Art. 17 DS-GVO, you have the right to request the deletion of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise or defense of legal claims.

Right to restriction: According to Art. 18 DS-GVO you have the right to request the restriction of the processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer need the data, but you need it for the assertion, exercise or defense of legal claims or you have objected to the processing pursuant to Art. 21 DS-GVO.

Right to data portability: In accordance with Art. 20 DS-GVO, you have the right to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller.

Right of appeal: In accordance with Art. 77 DS-GVO, you have the right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our registered office for this purpose. In the present case, the competent supervisory authority is: The Data Protection Commissioner of the State of Hesse, visitor address: Gustav-Stresemann-Ring 1, 65189 Wiesbaden, postal address: Postfach 3163, 65021 Wiesbaden / Germany, E-Mail: Poststelle@datenschutz.hessen.de, Tel.: +49 611 1408 - 0, Fax: +49 611 1408 – 900.

Right of objection: You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data relating to you which is carried out on the basis of Article 6(1)(f) DS-GVO.

If the personal data concerning you is processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing.

 

Right of withdrawal: You have the right to revoke any consent you have given for the processing of your personal data at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. You can send a revocation to the e-mail address provided during registration/ordering or also in any case to info@frm-united.com or by mail using the above address.

 

17.

Security during data transmission

In the case of data communication in open networks, such as the Internet, the protection of transmitted data cannot be comprehensively guaranteed according to the current state of the art and cannot be completely protected against access by third parties. Therefore, do not send us any confidential data via the Internet (e.g. by contact form or e-mail) without adequate protection. However, all forms on this website where personal data is collected have been encrypted using the TSL 1.2 protocol. We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in accordance with technological developments.

 

18.

Changes to our privacy policy

We reserve the right to occasionally adapt this data protection declaration so that it always complies with the current legal requirements or in order to implement changes to our services and website content in the data protection declaration, e.g. when introducing new services. The current data protection declaration will apply to your next visit to our website.