Privacy Policy

Responsible Party

The company responsible for data processing on this website shall be

]init[ AG für digitale Kommunikation
(limited company for digital communication)
Köpenicker Str. 9
10997 Berlin

Phone: +49 30 97006 200
Fax: + 49 30 97006 135
www.init.de

We attach great importance to the protection of your personal data and collect, process and use your personal data exclusively in accordance with the principles described below and in compliance with the statutory data protection provisions.

ISO 27001 Certificate for the highest levels of security

We store your data exclusively on our own servers in Germany. Our data center network is designed for portals and specialist applications with increased protection requirements. That's why we have held the German IT Security Certificate since 2008. With it, the German Federal Office for Information Security (BSI) certifies that our data center environment and operating processes comply with the security features of ISO 27001 based on IT-Grundschutz.

Nature, scope and purpose of the processing of personal data

When visiting the website

When you visit our website for information purposes, our servers located in Germany store only the personal data that your browser transmits to our servers in a log file on the basis of Art. 6 (1) lit. f GDPR.

The following data is collected when you visit our website and stored by us until automated deletion:

• data and time of access;
• name and URL of the retrieved file;
• website from which access is made;
• operating system of your computer, and browser used by you;
• IP address;
• name of your Internet service provider.

The collection and processing of this data regarding date, time, name and URL of the accessed file, website from which the access takes place, is done for the purpose of enabling the use of the website (connection establishment), to deliver the contents of our website correctly and to ensure system security and stability on a permanent basis. Data processing with regard to information on the operating system and browser used, as well as the name of the Internet service provider, is used to enable the technical administration of the network infrastructure and the optimization of our Internet offering, as well as for internal statistical purposes. The IP address is only evaluated in the event of attacks on our network infrastructure and for statistical purposes. The processing of this data is based on our legitimate interest in protecting our website from unauthorized access. At the same time, we want to constantly improve our offer for our customers and therefore rely on statistical evaluations.

Storage duration and deletion

]init[ AG processes and stores personal data of the data subject only for the period of time required to achieve the purpose of storage or if required by the GDPR or other regulations due to e.g. special retention periods (storage period). In the case of a visit to our website, your data will be stored for a maximum of 7 days for the purpose of detecting and defending against attacks.
If the purpose of storage no longer applies or if a prescribed storage period expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.

Newsletters

We currently do not offer a classic e-mail newsletter via our website. However, at trade fairs, for example, you have the opportunity to subscribe to a newsletter.The sending of such newsletters only takes place with your consent pursuant to Art. 6 para. 1 lit. a GDPR. For ordering and receiving our newsletter, it is sufficient to provide a valid e-mail address. The additional voluntary information about your person serves only for the personalization of our newsletter.

To ensure a consensual newsletter dispatch, we use the so-called double opt-in procedure. In the course of this, we will first temporarily add you to a distribution list as a potential recipient. Subsequently, you will receive a confirmation e-mail to confirm the registration in a legally secure manner. Only when this confirmation is received will your data be actively included in the distribution list. We use the data you provide exclusively for sending the newsletter on the basis of your consent in accordance with Art. 6 Para. 1 lit. a GDPR. If no confirmation is received, your data will be deleted from the distribution list.

If you have registered for one of our thematic events or the download of one of our thematic whitepapers, we will subsequently inform you by e-mail about further webinar offers, information events, whitepapers and current developments on these topics. At the end of each newsletter, you will find a link that allows you to revoke (unsubscribe from) your consent to the storage of your data and its use for sending newsletters at any time. You can also unsubscribe at any time by sending an e-mail to newsletter@init.de. In the event of unsubscription, your data will be deleted immediately. I.e. a storage takes place only for the period of the subscription period of the newsletter desired by you. 

Brevo of the German Sendinblue GmbH is used as newsletter software. Your data is thereby transmitted to Sendinblue GmbH as our service provider, whereby it acts on our behalf and is obliged to comply with the GDPRon the basis of an order processing agreement. We have contractually prohibited Sendinblue GmbH from selling your data and using it for purposes other than sending newsletters. Sendinblue is a German certified provider, which was selected according to the requirements of the General Data Protection Regulation and the Federal Data Protection Act. You can find more information here.

Request by e-mail, phone or fax

If you contact us by e-mail, telephone or fax, your inquiry including all resulting personal data (name, inquiry) will be stored and processed by us for the purpose of processing your request. We do not pass on this data without your consent.

The processing of this data is based on Art. 6 (1) lit. b GDPR, if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6 (1) (a) GDPR) and/or on our legitimate interests (Art. 6 (1) (f) GDPR), as we have a legitimate interest in the effective processing of requests addressed to us.

The data you send to us via contact requests will remain with us until you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies (e.g. after we have completed processing your request). Mandatory legal provisions - in particular legal retention periods - remain unaffected.

Cookies

No cookies are set when you visit our website.  For information on cookies when using YouTube, please see the comments on YouTube below.

eTracker web statistics

On this website, data is collected and stored using technologies from etracker GmbH (www.etracker.com) for statistical purposes only. We do not create user profiles from this data and do not use it for retargeting.

We use the technologies provided by etracker for this purpose, which do not set cookies.
The data thus generated is processed and stored by etracker exclusively in Germany and is thus subject to strict German and European data protection laws and standards. etracker has been independently audited and certified in this regard and awarded the  ePrivacyseal data protection seal of approval.

Data processing is carried out on the basis of the legal provisions of § 25 para. 2 TTDSG in conjunction with Art. 6 para.1 lit. f GDPR (legitimate interest). Our concern in the sense of § 25 para. 2 TTDSG in conjunction with Art. 6 para. 1 lit. f GDPR (legitimate interest) is the optimization of our online offer and our web presence. To protect your privacy, we have activated the shortening of the IP address in the etracker technology. In this way, a direct personal reference is excluded. We do not use the data in any other way, combine it with other data from etracker or pass it on to third parties.

You can object to the aforementioned data processing at any time by clicking on the slider. The objection has no adverse consequences. If no slider is displayed, the data collection is already prevented by other blocking measures.

Links

This privacy policy does not extend to websites linked from our website that are not operated by us. We have no influence on whether these sites also comply with our data protection and security standards. The content of linked pages is the sole responsibility of their providers. Obviously illegal content was not identifiable at the time of linking using a reasonable standard of review. If we become aware of any infringements, such links will be removed immediately.

Social Media

Data processing through social networks

We maintain publicly accessible profiles on social networks. The social networks used by us in detail can be found below.

Social networks such as X (formerly Twitter), etc. can generally analyze your user behavior extensively when you visit their website or a website with integrated social media content (e.g., like buttons or advertising banners). By visiting our social media presences, numerous data protection-relevant processing operations are triggered. In detail:

If you are logged into your social media account and visit our social media presence, the operator of the social media portal can assign this visit to your user account. However, your personal data may also be collected under certain circumstances if you are not logged in or do not have an account with the respective social media portal. In this case, this data collection takes place, for example, via cookies that are stored on your terminal device or by recording your IP address.
With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, you can be shown interest-based advertising inside and outside the respective social media presence. Provided you have an account with the respective social network, the interest-based advertising may be displayed on all devices on which you are or were logged in.

Please also note that we cannot track all processing on the social media portals. Depending on the provider, further processing operations may therefore be carried out by the operators of the social media portals. For details, please refer to the terms of use and data protection provisions of the respective social media portals.

We would like to point out that when using social media portals, your data may be processed outside the area of the European Union. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Providers certified under TADPF have committed to comply with European data protection principles and are marked "TADPF certified" below. In the case of providers not covered by the TADPF, it cannot be guaranteed that data processing is subject to the same level of protection as within the EU. In this respect, there is a certain risk that it will be more difficult for you to enforce your rights with regard to the personal data concerning you. In addition, there is no data protection supervision in the USA comparable to that in the EU. Furthermore, there is a risk of disproportionate access to user data by state security authorities, against which no effective legal protection is regularly available.

We expressly draw your attention to this. An overview of TADPF certified providers can be found here: Participant Search at dataprivacyframework.gov.

Legal basis

Our social media presences are intended to ensure the most comprehensive presence possible on the Internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR. The analysis processes initiated by the social networks may be based on different legal bases, which are to be specified by the operators of the social networks (e.g. consent within the meaning of Art. 6 (1) lit. a GDPR).

Responsibility and assertion of rights

If you visit one of our social media sites (e.g. X), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during this visit. In principle, you can assert your rights (information, correction, deletion, restriction of processing, data portability and complaint) both vis-à-vis us and vis-à-vis the operator of the respective social media portal (e.g. vis-à-vis X).

Please note that despite the joint responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are largely determined by the corporate policy of the respective provider.

Storage time

The data collected directly by us via the social media presence is deleted from our systems as soon as the purpose for storing it no longer applies, you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies. Stored cookies remain on your terminal device until you delete them. Mandatory legal provisions - in particular retention periods - remain unaffected.

We have no influence on the storage period of your data, which is stored by the operators of social networks for their own purposes. For details, please contact the operators of the social networks directly (e.g. in their privacy policy, see below).

Individual social networks

X (formerly Twitter)

We use the short message service X (formerly Twitter). The provider is X Corp, Market Square, 1355 Market St suite 900, San Francisco, CA 94103, United States..You can adjust your X privacy settings independently in your user account. To do so, log in here. Link.

For details, see the X Privacy Policy.

Instagram

We have a profile on Instagram. The provider is Meta Platforms Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. The headquarters of Meta Platforms, Inc. is 1601 Willow Road Menlo Park California 94025, USA (TADPF certified).

For details on how they handle your personal information, see the Instagram Privacy Policy.

XING

We have a profile on XING. The provider is New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany.

Details on their handling of your personal data can be found in the XING Privacy Policy.

LinkedIn

We have a profile on LinkedIn. Provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland, Headquarters Sunnyvale, California, USA .

LinkedIn uses advertising cookies. If you want to disable LinkedIn advertising cookies, please use the following link: Link.

For details on how they handle your personal information, please refer to LinkedIn's privacy policy.

YouTube (Google)

We have a profile on YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. YouTube is a company affiliated with Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google") (TADPF certified).

We use YouTube in extended privacy mode. According to YouTube, this mode means that YouTube does not store any information about visitors to this website before they watch the video. As soon as you start a YouTube video on this website, a connection to YouTube's servers is established. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

After clicking on the respective embedded video, the information that you have accessed our website is passed on to the aforementioned website operator and cookies are set on your computer by the aforementioned website.

If you are logged in to the aforementioned website during a visit to our website, the transmitted data will be assigned to your respective user account. If you want to prevent a website operator from linking information to your user account in this way, please log out of the aforementioned website before clicking on the respective video.

A connection to the YouTube server will only be established if you give us your consent in the upstream consent window. With consent, a local cookie is stored that enables immediate loading of the YouTube preview. Thus, as described in the previous section, data may be transmitted to Google in the USA. For the USA, an adequacy decision of the EU Commission is in place, the Trans-Atlantic Data Privacy Framework (TADPF). Google LLC has certified itself in accordance with the TADPF and has thus undertaken to comply with European data protection principles.

The use of cookies or comparable technologies takes place with your consent on the basis of § 25 para. 1 p. 1 TTDSG in conjunction with. Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. Insofar as data processing is based on your consent, you have the right to revoke your consent for the future at any time in accordance with Art. 7 (3) GDPR. The lawfulness of the data processing until the time of your revocation remains unaffected.

You can revoke your consent at any time via the following opt-out:

YouTube-Cookie löschen

For more information about the collection and use of data by YouTube and Google, about your rights in this regard and options for protecting your privacy, please see YouTube's privacy policy at https://www.youtube.com/t/privacy.

YouTube is used in the interest of an attractive presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. If a corresponding consent has been requested (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; the consent can be revoked at any time. You can find out more about cookie usage by YouTube in Google's Cookie-Policy. You can change your settings at any time under YouTube privacy policy.

Web Fonts

The fonts we use are stored on our own servers. This means that data is not transferred to third parties.

Data security

We use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments. See also above ISO 27001 certificate for highest security.

For security reasons and to protect the transmission of confidential content, such as inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

Events

To register for our web conferences, webinars and events, we need your name, e-mail address and the organization where you work. This data is processed in order to identify you as a participant in the event, to check the plausibility of the data entered, to reserve your place at the event, and to establish or implement the contract for participation with you.

In addition, we need your data to create name badges and attendance lists for the other participants, if necessary, and to provide you with information about the event before, during and after the event. This is done to enable you to participate in the best possible way and to enable us to plan and ensure that the event runs smoothly. Additional voluntary information about you serves only to address you personally. Data processing is based on Art. 6 (1) lit. b GDPR and only to the extent necessary for your visit to the event.

In addition to the booking and contract processing, we use the data you provide to inform you by e-mail about our other webinar offers, information events, whitepapers, and current developments that are in the same subject area as the booked event. Unless this use is based on consent or the performance of a contract, the processing is based on Art. 6 (1) p. 1 lit. f GDPR. We have a legitimate interest in also informing our participants about other events of ours. You can object to receiving information in this regard at any time by clicking on the unsubscribe link at the end of each newsletter or by sending an email to newsletter@init.de and revoking your consent for the future. In the event that you revoke your consent, your data will be deleted immediately.

Photos and filming

Please note that photos and/or film footage are regularly taken at our classroom events to document the event visually. It cannot be ruled out that you can be identified directly or indirectly from the recordings, so that this involves personal data, some of which will be published online (e.g. on our homepage, in our social media channels) and in print (e.g. in the event program or the press). If you do not wish this, please contact our photographer on site.

Whitepaper

You have the possibility to download one of our whitepapers after your registration. To register and receive a whitepaper, please provide your name, email address and organization. Please understand that in return for downloading our free whitepaper, we reserve the right to use the data you provide to inform you by e-mail about our information events, further whitepapers, and current developments that are in the same subject area as the whitepaper you downloaded. The legal basis for sending you further information is thus your consent pursuant to Art. 6 (1) lit a) GDPR. You can object to receiving such information at any time by clicking on the unsubscribe link at the end of each newsletter or by sending an e-mail to newsletter@init.de and revoking your consent for the future. In the event of revocation of your consent, your data will be deleted immediately.

Your rights as data subject

• Right of access (Art. 15 GDPR)
  You have the right to request confirmation as to whether personal data concerning you is being processed. If this is the case, you have a right to information about this personal data and to the information listed in detail in Art. 15 GDPR.
• Right to rectification (Art. 16 GDPR)
  You have the right to request without undue delay the rectification of any inaccurate personal data concerning you and, where applicable, the completion of any incomplete data.
• Right to erasure (Art. 17 GDPR)
  You have the right to request that personal data concerning you be erased without delay, provided that one of the reasons listed in detail in Art. 17 GDPRapplies.
• Right to restriction of processing (Art. 18 GDPR).
  You have the right to request the restriction of processing if one of the conditions listed in Art. 18 GDPRapplies, e.g. if you have objected to the processing, for the duration of the review by the controller.
• Right to data portability (Art. 20 GDPR)
  In certain cases, which are detailed in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or to request the transfer of this data to a third party.
• Right of withdrawal (Art. 7 GDPR)
  If the processing of data is based on your consent, you are entitled to revoke your consent to the processing of your personal data at any time in accordance with Art. 7 (3) GDPR. Please note that the revocation is only effective for the future. Processing that took place before the revocation is not affected.

Right to object to data collection in special cases and to direct advertising (Art. 21 GDPR)

If the data processing is carried out on the basis of Article 6 paragraph 1 letter f GDPR, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions. The respective legal basis on which processing is based can be found in this data protection declaration. If you lodge an objection, we will no longer process your personal data concerned, unless we can prove compelling reasons for processing which are worthy of protection and which outweigh your interests, rights and freedoms, or unless the processing serves to assert, exercise or defend legal claims (objection in accordance with Art. 21 Para. 1 GDPR). If your personal data are processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing, including profiling, insofar as it is linked to such direct marketing. If you object, your personal data will no longer be used for the purpose of direct advertising (objection according to Art. 21 para. 2 GDPR).

Right to complain to a supervisory authority (Art. 77 GDPR)

Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you are of the opinion that the processing of data concerning you violates data protection provisions. The right of complaint can be asserted in particular before a supervisory authority in the Member State of your habitual residence, your place of work or the place of the alleged infringement.

Assertion of your rights

Unless otherwise described above, to assert your data subject rights, please contact the data protection officer in writing (by mail or by e-mail).

Data Protection Officer

]init[ AG für digitale Kommunikation
z. Hd. Datenschutzbeauftragter
Köpenicker Str. 9
10997 Berlin
datenschutz@init.de

Adjustments

We reserve the right to update this Privacy Policy from time to time. Updates to this Privacy Policy will be posted on our website. Changes will apply as of their publication on our website.

Status of data protection information: September 2023