Privacy Policy | Audi Business Innovation

Data Protection at Audi Business Innovation GmbH

In the following we will be informing you about the controller responsible for the processing of your personal data and the controller’s data protection officer (Section A) as well as your rights regarding the processing of your personal data (Section B).

Furthermore, we have detailed information below on the processing of your personal data (Section C) and information regarding the use of cookies (Section D) on https://www.audibusinessinnovation.com.

The terminology applied throughout this privacy notice, such as "Controller", has the meaning as attributed to it under Article 4 GDPR (REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC General Data Protection Regulation ("GDPR")).

A. Information Regarding the Controller

I. Name and contact details of the controller

The controller of the Internet presence https://www.audibusinessinnovation.com is:

Audi Business Innovation GmbH
Hochbrückenstr. 6
80331 Munich
Germany
Email: info.businessinnovation@audi.de

- hereinafter referred to as “We” -

II. Contact details of the controller’s data protection officer

You may contact our data protection officer as follows:
        
Audi Business Innovation GmbH
Mr. Andreas Buchberger
Data Protection Officer   
Hochbrückenstr. 6
80331 Munich
Germany
Email: data.privacy.abi@audi.de

B. Information Regarding the Rights of Data Subjects

As the data subject, you have the following rights regarding the processing of your personal data:

the right of access to information (Article 15 of the GDPR)
the right to the correction of data (Article 16 of the GDPR)
the right to erasure ("right to be forgotten" - Article 17 of the GDPR)
the right to the restriction of processing (Article 18 of the GDPR)
the right to data portability (Article 20 of the GDPR)
the right to object (Article 21 of the GDPR)
the right to withdraw a consent (Article 7 para. 3 of the GDPR)
the right to lodge a complaint with a supervisory authority (Article 57 para. 1 lit. f of the GDPR)

To exercise your rights, you may contact our data protection officer (Section A.II.).

Information regarding the specific modalities and mechanisms which facilitate the exercise of your rights, especially in relation to the exercise of your rights to data portability and to object, is available (where applicable) from the information on the processing of personal data in Section C of this privacy notice.

Below we provide you with detailed information of your rights regarding the processing of your personal data.

I. Right of Access to Information

As the data subject, you have a right of access to information subject to the prerequisites laid down in Article 15 of the GDPR.

This means in particular that you have the right to request confirmation from us as to whether we process personal data concerning you. If this is the case, you also have the right to be informed of these personal data and such information as specified under Article 15 para. 1 of the GDPR. This includes, but is not limited to, information pertaining to the purposes of the processing; the categories of personal data that are processed; and the recipients or categories of recipient(s) to whom personal data have been or will be disclosed (Article 15 para. 1 lit. a, b, and c of the GDPR).

To view the full scope of your right of access to information, please refer to Article 15 of the GDPR which can be prompted with this link.

II. Right to Rectification

As the data subject, you have a right to the rectification of data subject to the prerequisites laid down in Article 16 of the GDPR.

This means in particular that you have the right to request that we rectify incorrect personal data concerning you and complete any incomplete personal data without delay.

To view the full scope of your right to rectification, please refer to Article 16 of the GDPR which can be prompted with this link.

III. Right to Erasure ("right to be forgotten")

As the data subject, you have a right to erasure ("right to be forgotten") subject to the prerequisites laid down in Article 17 of the GDPR.

This means that in principle, you have the right to request that we promptly erase the personal data concerning you and that we are obliged to erase these personal data without delay provided that one of the reasons as specified under Article 17 para. 1 of the GDPR applies. This may be the case, for example, if personal data are no longer required in relation to the purposes for which they were collected or otherwise processed (Article 17 para. 1 lit. a of the GDPR).
Insofar as we made the personal data public and if we are obliged to erase them, we are equally obliged (subject to the available technology and cost of implementation) to take reasonable measures, even of technical nature, so as to inform other data controllers processing such personal data that a data subject requested that they erase all links to these personal data or copies or replications of said personal data (Article 17 para. 2 of the GDPR).

In the exceptional case, the right to erasure ("right to be forgotten") does not apply insofar as processing is necessary for reasons specified in Article 17 para. 3 of the GDPR. This may be the case, for example, if processing is necessary to comply with a legal obligation or to establish, exercise or defend legal claims (Article 17 para. 3 lit. a and e of the GDPR).

To view the full scope of your right to erasure / right to be forgotten, please refer to Article 17 of the GDPR which can be prompted with this link.

IV. Right to the Restriction of Processing

As the data subject, you have a right to the restriction of processing subject to the prerequisites laid down in Article 18 of the GDPR.

This means that you have the right to request that we restrict the processing provided that one of the reasons as specified under Article 18 para. 1 of the GDPR applies. This may be the case, for example, if you contest the accuracy of the personal data. In such a case, processing will be restricted for such period that we require to verify the accuracy of the personal data (Article 18 para. 1 lit. a of the GDPR).

Restriction means the marking of stored personal data with the aim of limiting their processing in the future (Article 4 para. 3 of the GDPR).

To view the full scope of your right to the restriction of processing, please refer to Article 18 of the GDPR which can be prompted with this link.

V. Right to Data Portability

As the data subject, you have a right to data portability subject to the prerequisites laid down in Article 20 of the GDPR.

This means that in principle, you have the right to receive the personal data concerning you and which you provided to us in a structured, commonly-used and machine-readable format and that you have the right to transmit these data to another controller without hindrance on our behalf, provided the data were processed based on a consent pursuant to Article 6 para. 1 lit. a or Article 9 para. 2 lit. a of the GDPR or for the performance of a contract pursuant to Article 6 para. 1 lit. b of the GDPR and processing was conducted using automated means (Article 20 para. 1 of the GDPR).

Information as to whether processing is based on a consent pursuant to Article 6 para. 1 lit. a or Article 9 para. 2 lit. a of the GDPR or a contract pursuant to Article 6 para. 1 lit. b of the GDPR is defined in the information regarding the legal basis for processing, Section C of this privacy notice.

In exercising your right to data portability, you also have the right in principle to request that we transmit the personal data directly to another controller insofar as is technically feasible (Article 20 para. 2 of the GDPR).
To view the full scope of your right to the restriction of processing, please refer to Article 20 of the GDPR which can be prompted with this link.

VI. Right to Object

As the data subject, you have a right to object subject to the prerequisites laid down in Article 21 of the GDPR.

1. Right to object for reasons resulting from the specific situation of the data subject

As the data subject, you have the right to object at any time to the processing of personal data concerning you for reasons resulting from your personal situation by virtue of Article 6 para. 1 lit. e or f of the GDPR; this equally applies to any profiling based on this provision. Information as to whether processing is based on Article 6 para. 1 lit. e or f of the GDPR is defined in the information regarding the legal basis for processing, Section C of this privacy notice.

If you object for reasons resulting from your specific situation, we will no longer process the personal data concerning you unless we can provide proof of compellingly legitimate grounds for such processing which override your interests, rights and freedoms, or such processing serves to establish, exercise or defend legal claims.

To view the full scope of your right to object, please refer to Article 21 of the GDPR which can be prompted with this link.

2. Right to object to direct marketing

If the personal data concerning you are processed for direct marketing purposes, you have the right to object to the processing of personal data that concern you for the purposes of such marketing; this applies equally to profiling provided that it is tied to such direct marketing.

Information as to whether and to which extent personal data are processed for purposes relating to direct marketing is defined in the information regarding the purposes of processing, Section C of this privacy notice.

If you object to the processing for purposes relating to direct marketing, we will no longer process personal data concerning you for these purposes.

To view the full scope of your right to object, please refer to Article 21 of the GDPR which can be prompted with this link.

VII. Right to Withdraw Consent

If processing is based on a consent issued pursuant to Article 6 para. 1 lit. a or Article 9 para. 2 lit. a of the GDPR, you as the data subject have the right according to Article 7 para. 3 of the GDPR to withdraw your consent at any time. Your withdrawal of the consent does not affect the lawfulness of any processing carried out by virtue of a consent that was issued prior to such withdrawal. We shall notify you accordingly prior to issuing such consent.

Information as to whether processing is based on a consent pursuant to Article 6 para. 1 lit. a or Article 9 para. 2 lit. a of the GDPR is defined in the information regarding the legal basis for processing, Section C of this privacy notice.

VIII. Right to complain to the supervisory authority

As a data subject, you have the right to lodge a complaint with the competent supervisory authority under the conditions of Article 57 para. 1 lit. f of the GDPR.

The address of the competent supervisory authority responsible for Audi Business Innovation GmbH is the following:

Bayerisches Landesamt für Datenschutzaufsicht
Promenade 18
91522 Ansbach
Germany

C. Information on the Processing of Personal Data

I. Legal Basis and Purpose of Processing Your Data

We process your personal data in compliance with the provisions set forth in the GDPR as well as the German Federal Data Protection Act (Bundesdatenschutzgesetz - BDSG) for various purposes. The specific purposes of data processing are primarily dependent on the individual request, the selected product or the individual service that has been opted for (e.g. use of Audi on demand Rent or Audi on demand Subscribe).

The processing of your personal data is based on one of the legal reasons specified below:

you issued your prior consent (Article 6 para. 1 lit. a of the GDPR);
processing is necessary in order to comply with the performance of a contract with you or to take steps prior to entering into a contract at your request (Article 6 para. 1 lit. b of the GDPR);
processing is necessary to comply with a legal obligation under EU law or the legislation of an EU Member State (Article 6 para. 1 lit. c of the GDPR);
processing is necessary for the purposes of the legitimate interests pursued by Audi Business Innovation GmbH or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data (Article 6 para. 1 lit. f of the GDPR).

If, in the exceptional case, we process special categories of personal data (data that identify the race or ethnicity, political opinions, religious or ideological convictions or the affiliation to a trade union; the processing of genetic data, biometrical data to clearly identify a natural person; health data or data on a person’s sexual life or sexual orientation) concerning you, one of the following legal grounds must be relevant in addition:

you issued your express prior consent (Article 9 para. 2, lit. a of the GDPR);
processing is necessary to protect your vital interests or those of another natural person and the data subject is unable to issue his or her consent because of physical or legal reasons (Article 9 para. 2 lit. c of the GDPR);
processing encompasses personal data which you manifestly made public (Article 9 para. 2 lit. e of the GDPR);
processing is necessary to establish, exercise or defend legal claims (Article 9 para. 2 lit. f of the GDPR);
processing is necessary for reasons of substantial public interest, on the basis of EU or Member State law which shall be proportionate to the aim pursued, respect the essence of the right to data protection and provide for suitable and specific measures to safeguard the fundamental rights and the interests of the data subject (Article 9 para 2 lit. g of the GDPR).

Please observe your rights to object to the processing of data for purposes relating to direct marketing or personal reasons and your right to withdraw a consent given (see Section B, especially paragraph VI. about your right to object).

II. Personal Data on the Website

In connection with the website https://www.audibusinessinnovation.com various personal data are processed for different purposes.

Insofar as we as the so-called controller decide alone or jointly with others on the purposes and means of processing personal data, you are given information below that particularly regards

the personal data or categories of personal data that are processed;
the purposes for which the personal data are to be processed;
legal basis for processing and, insofar as processing is based on Article 6 para. 1 lit. f of the GDPR, the legitimate interests which we or a third party pursue;
where applicable, the recipient or the categories of recipient of the personal data;
where applicable, our intention to transmit the personal data to a third country or to an international organisation as well as the presence or absence of an adequacy decision by the Commission or, in the event of transmissions pursuant to Article 46 or Article 47 of the GDPR or Article 49 para. 1 of the GDPR, a reference to suitable or reasonable guarantees and the possibility of how a copy of them can be obtained or where they are available;
the storage period of personal data or, if this is not possible, the criteria that establish this period.

Insofar as we collect your personal data from you as the data subject you will receive additional information as to whether the provision of personal data is prescribed by law or by contract or whether it is necessary to conclude a contract for this, whether you are obliged to provide the personal data and which potential consequences may result from the failure to provide said data.

Insofar as we do not collect personal data from you as the data subject you will also receive additional information regarding the source providing the personal data and where applicable, whether they originate from publicly accessible sources.

III. Log Files

In principle, you may access our website without providing personal data. However, your Internet browser will automatically transmit specific information each time you visit the website, which we store in so-called log files.

The following information is automatically transmitted in these cases:

IP address (Internet Protocol address) of the terminal device accessing the online offer;
URL of the website prompting the online offer (so-called referrer URL);
name of the service provider enabling access to the online offer;
name of the file or information requested;
date, time and duration of the request;
data volume transferred;
operating system and information about the Internet browser used, including add-ons that are installed (e.g. for Flash Player);
http status code (e.g. ‘request successful’ or ‘requested file not found’).

Log files save the above data without storing your full IP address so that it is not possible to identify your IP address.

IV. Use of Online Contact Form

You have the possibility to contact us on the website by using a contact form. We will process the information that you provide via the contact form to handle your request.

Below we provide you with detailed information on this.

1. Details on personal data to be processed

Categories of personal data that are processed: Data that you share with us via the website’s contact form ("Contact Form Data").
Personal data included in categories: This includes information which you provided to us via the individual contact form on the website. This may include the following data in particular: salutation, first name, last name, telephone number, email address and the content of your request.
Data sources: Contact form users.
Obligation to provide the data: The provision is not mandatory by law or contract or necessary to conclude a contract. There is no obligation to provide the data. If said data is not provided, we will not be able to process your request.
Storage period: Data will be stored until your request has been completed. We save these data for evidential purposes, to potentially establish, exercise or defend legal claims and moreover, beyond this, for a transition period of three years from the end of the year in which you shared these data with us and, in the event of potential legal disputes, until those disputes have been concluded. Moreover, we save these data beyond this insofar as legal retention requirements apply, and here in particular commercial law-related and tax law-related requirements. Depending on the nature of the documents, commercial law-related and tax law-related retention requirements of six or ten years may apply (Section 147 of the German Fiscal Code (Abgabenordnung - "AO"), Section 257 of the German Commercial Code (Handelsgesetzbuch - "HGB").

Categories of personal data that are processed: Log data which may be created for technical reasons when giving your consent to being contacted for marketing purposes ("Consent Data").
Personal data included in categories: Date and time of issuing the consent.
Data sources: Website users.
Obligation to provide the data: The provision is not mandatory by law or contract or necessary to conclude a contract. There is no obligation to provide the data. If said data are not provided, we will not be able to provide product information to you.
Storage period: We will store these data for as long as you consent to being contacted for marketing purposes. We save these data for evidential purposes, to potentially establish, exercise or defend legal claims and moreover, beyond this, for a transition period of three years from the end of the year in which you unsubscribed and, in the event of potential legal disputes, until those disputes have been concluded.

2. Details on the processing of personal data

Purpose of processing of personal data: Processing of your request.
Categories of personal data that are processed: Contact form data.
Automated individual decision-making: There is no automated individual decision-making.
Legal basis and where appropriate, legitimate interests: If your request regards the performance of a contract to which you are party or aims at taking steps prior to entering into a contract: Article 6 para.1 lit. b of the GDPR. Otherwise: Balancing of interests (Article 6 para.1 lit. f of the GDPR). In this case our legitimate interest constitutes the processing of your request.
Recipient: Audi Business Innovation GmbH.

Purpose of processing of personal data: Processing your request via e-mail or phone.
Categories of personal data that are processed: Contact form data; Consent data.
Automated individual decision-making: There is no automated individual decision-making.
Legal basis and where appropriate, legitimate interests: If your request regards the performance of a contract to which you are party or aims at taking steps prior to entering into a contract: Article 6 para.1 lit. b of the GDPR. Otherwise: Balancing of interests (Article 6 para.1 lit. f of the GDPR). In this case our legitimate interest constitutes the processing of your request.
Recipient: Audi Business Innovation GmbH.

Purpose of processing of personal data: Processing is necessary to establish, exercise or defend legal claims Art. 9 para. 2 lit. f of the GDPR.
Categories of personal data that are processed: Contact form data; Consent data.
Automated individual decision-making: There is no automated individual decision-making.
Legal basis and where appropriate, legitimate interests: Legitimate interest (Article 6 para.1 lit f of the GDPR). Our legitimate interest is to potentially establish, exercise or defend legal claims.
Recipient: Audi Business Innovation GmbH.

Purpose of processing of personal data: We save these data insofar as legal retention requirements apply, and here in particular commercial law-related and tax law-related requirements. Depending on the nature of the documents, commercial law-related and tax law-related retention requirements of six or ten years may apply (Section 147 AO, Section 257 HGB).
Categories of personal data that are processed: Contact form data; Consent data.
Automated individual decision-making: There is no automated individual decision-making.
Legal basis and where appropriate, legitimate interests: Compliance with legal obligations (Art. 6 para. 1 lit c of the GDPR).
Recipient: Audi Business Innovation GmbH.

3. Details on recipients of personal data and the transmission of personal data to third countries and / to international organisations

Recipient: Form provider (AUDI AG, Audi Business Innovation GmbH)
Role of recipient: Processor
Seat of recipient: EU

V. Links to other Websites

In case we provide links to websites of other entities (third parties), this Privacy Policy does not apply for the processing of personal data on these third party-websites. We recommend to you, to read the Privacy Policy on the third party-websites.

We have no influence on the content of third party-websites and cannot assume any liability for foreign content. The responsible for the content on these websites is always the respective provider or operator of the website. At the time of linking, the linked websites were checked on any infringement of law. At the time of linking we could not identify any infringements. Should we become aware of any infringement of law, we will remove the relevant link immediately.

D. Information on the Use of Cookies

In connection with the website https://www.audibusinessinnovation.com, we use cookies. Cookies are used to facilitate the use of the website and improve user friendliness or provide different functionalities (to make the website overall more user-friendly, effective, and secure). For this, we use processing and storage functionalities of the browser of your terminal device and collect information from the browser cache of your terminal device.

Below we provide you with detailed information on this.

I. General Information on Cookies

Cookies are small text files with information which can be placed during the visit of a website via the browser on the terminal device of the user. When viewing the website again with the same terminal device, the cookie as well as the information it has stored can be retrieved.

1. Categories of cookies that are used

Necessary cookies: These cookies are necessary for the website to function. Without these cookies, certain services would not function.

Performance cookies: These cookies are used to improve the user friendliness of our website and therefore the user experience. They collect information about the usage of our website, the number of visits, the average time spent on the website, pages viewed. Performance cookies help us, for example, to identify the most-used elements of our Internet offer and to advance the website based on your needs.

2. First- und third-Party-cookies

Depending on the origin of a cookie, cookies are differentiated between first-party cookies and third-party cookies.

First-party cookies: Cookies which are placed and retrieved by the operator of the website as the responsible controller for processing or by a processor which the controller contracted with.

Third-party cookies: Cookies which are placed and retrieved by other parties responsible for processing other than the operator of the website yet that are not active as the processors on the part of the website’s operator.

3. Transient und persistent cookies

The validity of cookies further differentiates so-called transient cookies from persistent cookies:

Transient cookies (session cookies): Cookies that are automatically deleted when you close your browser.

Persistent cookies: Cookies that are saved for a specific period of time on your terminal device after you close your browser.

4. Cookies (not) requiring consent

According to their functionality and designated purpose, certain cookies may require the express consent from the user. To this extent cookies are differentiated between those that require the user’s consent, and those that do not require such consent.

The legal basis for setting cookies that are upon your wish necessary to provide our services is Section 25 para. 1 no. 2 of the German Telecommunication-Telemedia-Data-Protection-Law (Telekommunikations-Telemedien-Datenschutz-Gesetz – “TTDSG”). Your consent is not necessary. Should we set cookies, that are not necessary to provide our services to you, we rely on your consent (Section 25 para. 1 first sentence TTDSG) as the legal basis for setting cookies.

The legal basis for the processing of the information read by the cookies may either be your consent (Article 6 para. 1 lit a of the GDPR) or our legitimate interest (Article 6 para. 1 lit f of the GDPR)

You can withdraw your consent for the setting of cookies that not require consent or for the reading of cookies at any time. Your withdrawal of the consent does not affect the lawfulness of any processing carried out by virtue of a consent that was issued prior to such withdrawal. You can find more details and information concerning the option to withdraw in Section D.V.

II. Handling Cookies

In principle, it is possible to view our websites without cookies. However, if you wish to use the full functionality of our websites, we recommend that you accept cookies which enable the use of certain functionalities or which make those functionalities more convenient to use.

Most web browsers are set by default to automatically accept all cookies. However, you may object to the use of cookies with an effect for the future at any time by setting your browser as such that it does not accept any cookies, or accepts certain cookies only, or informs you as soon as cookies are sent. This may result in being unable to use the full functionality of our websites. Insofar as you accept cookies in your browser settings, you declare your consent to the use of these cookies when using our websites.

Please note that your browser settings apply to the respective browser only. If you use either different browsers or different terminal devices, you will have to apply the respective settings anew. Moreover, you have the option to delete cookies from your cache any time. For information on cookie settings, how to change and delete cookies, please refer to the help function of your web browser.

Additionally, there are software products that can manage cookies for you. Further information on cookies and how to handle them is also available from online help pages.

III. Overview of Cookies used on this Website

1. Necessary Cookies

Cookie name	Description	Category	Duration of storage	First Party / Third Party Cookie	Set by
AUDI_ENSIGHTEN_PRIVACY_Performance	Ensighten Privacy cookie that tells whether a user is opted-in or out of the Performance category. A value of "1" means a user is opted in to Performance. A value of "0" means a user is opted out of the Performance category.	Necessary Cookie	1 Year	First Party Cookie	Ensighten Privacy Manager
AUDI_ENSIGHTEN_PRIVACY_Functional	Ensighten Privacy cookie that tells whether a user is opted-in or out of the Functional category. A value of "1" means a user is opted in to Functional. A value of "0" means a user is opted out of the Functional category.	Necessary Cookie	1 Year	First Party Cookie	Ensighten Privacy Manager
AUDI_ENSIGHTEN_PRIVACY_Marketing	Ensighten Privacy cookie that tells whether a user is opted-in or out of the Advertising category. A value of "1" means a user is opted in to Advertising. A value of "0" means a user is opted out of the Advertising category.	Necessary Cookie	1 Year	First Party Cookie	Ensighten Privacy Manager
AUDI_ENSIGHTEN_PRIVACY_Do_Not_Track	Ensighten Privacy cookie that tells whether a user uses the browser setting “do not track”. A value of "0" means Do Not Track is activated whereas a value of "1" mean it is not.	Necessary Cookie	1 Year	First Party Cookie	Ensighten Privacy Manager
AUDI_ENSIGHTEN_PRIVACY_MODAL_VIEWED	Ensighten Privacy cookie that tells whether or not a user interacts on the consent modal.	Necessary Cookie	1 Year	First Party Cookie	Ensighten Privacy Manager
AUDI_ENSIGHTEN_PRIVACY_MODAL_LOADED	Ensighten Privacy cookie that tells whether the modal was visible to the user.	Necessary Cookie	1 Year	First Party Cookie	Ensighten Privacy Manager

2. Performance Cookies

Cookie Name	Beschreibung	Kategorie	Speicherdauer	First Party / Third Party Cookie	Gesetzt von
AMCVS_097B467352782F130A490D45%40AdobeOrg	The cookie stores an indicator (always "1") that the session has been initialized.	Performance	Session	First Party Cookie	Adobe Analytics
AMCV_097B467352782F130A490D45%40AdobeOrg	Unique Browser ID used by Experience Cloud Solutions.	Performance	2 Years	First Party Cookie	Adobe Analytics
s_cc	This cookie is set and read by the JavaScript code to determine if cookies are enabled (simply set to "true").	Performance	Session	First Party Cookie	Adobe Analytics
s_ecid	Adobe Experience Cloud uses cookies to store a unique Browser ID that is used across Experience Cloud Solutions.	Performance	2 Years	First Party Cookie	Adobe Analytics
s_fid	Fallback unique Browser ID. This cookie is used to identify a unique Browser (“unique visitor”). The cookie is a fallback cookie and becomes active, in case the “s-vi” cookie is blocked, that is normally used for this purpose.	Performance	2 Years	First Party Cookie	Adobe Analytics
s_sq	This cookie is set and read by the JavaScript code when the ClickMap functionality and the Activity Map functionality are enabled; it contains information about the previous link that was clicked on by the user.	Performance	Session	First Party Cookie	Adobe Analytics
s_vi	This cookie is used to determine a unique Browser ("unique visitor"). This cookie is used if a user visited an Audi site prior to implementing the Experience Cloud ID service.	Performance	2 Years	First Party Cookie	Adobe Analytics
demdex	Unique Browser IDs used by and across Experience Cloud Solutions.	Performance	180 Days	Third Party Cookie	Adobe Visitor ID Service for Adobe Analytics
_ens_ic	This cookie stores information about navigation behavior.	Performance	30 Minutes	First Party Cookie	ABI / FELD M via Ensighten for Adobe Analytics
_ens_prev	This cookie stores information about navigation behavior.	Performance	Session	First Party Cookie	ABI / FELD M via Ensighten for Adobe Analytics
_ens_vn	This cookie stores information about the visit count.	Performance	1 Year	First Party Cookie	ABI / FELD M via Ensighten for Adobe Analytics
_ens_sid	This cookie contains the ID of the current session.	Performance	30 Minutes	First Party Cookie	ABI / FELD M via Ensighten for Adobe Analytics
_ens_perf	This cookie contains information about the loading speed of the page.	Performance	30 Minutes	First Party Cookie	ABI / FELD M via Ensighten for Adobe Analytics

IV. Use of Service Providers

For purposes of our Consent-Management-Tool (so called “Cookie-Consent-Management-Tool”) and the technical provision of our cookies we use services of service providers. Below we provide you with further information concerning our service providers, with whom we work together for the administration, setting and reading of cookies.

1. Ensighten Privacy Manager

To keep you in control of all cookies used on this website we use the “Ensighten Privacy Manager”, a Cookie-Consent-Management-Tool by Ensighten Inc. provided by our service provider TagMan Ltd.

In case your located in Argentina, Belarus, Malaysia, Oman, Russia, the United Arab Emirates or Turkey, your ongoing use of this website will be considered as consent to the processing of personal data within the framework of the Ensighten Privacy Manager, as described in this Section D. I.

1.1 Detail to the personal data to be processed

Consent-Management-Tool: Ensighten Privacy Manager.
Categories of personal data: Log data that is created for technical reasons following the use of the Consent-Management-Tool (Ensighten Privacy Manager) used on the website.
Personal data included in categories: Anonymised IP address, URL and name of viewed Internet page; type and version of your Internet browser; operating system used; country of origin (based on IP address); city (based on IP address); date and time of view.
Source of data: Website users.
Obligation to provide the data: The provision is not mandatory by law or contract or necessary to conclude a contract. There is no obligation to provide the data. If said data are not provided, we will not be able to conduct consent management.
Storage period: All Data is stored for a maximum of 1 Year.

Consent-Management-Tool: Ensighten Privacy Manager.
Categories of personal data: Data saved in cookies see Section D. III. for the Consent-Management-Tool (Ensighten Privacy Manager) on the user’s device.
Personal data included in categories: Unique visitor-ID to recognize returning visitors.
Source of data: Website users.
Obligation to provide the data: The provision is not mandatory by law or contract or necessary to conclude a contract. There is no obligation to provide the data. If said data are not provided, we will not be able to conduct consent management.
Storage period: Various. For information regarding the period of the cookie’s validity see Section D.III.

1.2. Details on processing of personal data

Purpose of processing personal data: The processing of your personal data with the help of the Ensighten Privacy Manager enables us to save information concerning your given consent. This helps us to provide you with additional content and to avoid that certain cookies are set without your consent concerning the use of these cookies. Furthermore, the Ensighten Privacy Manager enables the saving of your Cookie-Preferences so you don't have to make a new choice every time you visit our website. If we would not catch this information we would not be able to ensure that your cookie settings are saved.
Categories of personal data that are processed: Log data that is created for technical reasons following the use of the Consent-Management-Tool (Ensighten Privacy Manager) used on the website.
Automated individual decision-making: There is no automated individual decision-making.
Legal basis and where appropriate, legitimate interests: The legal basis for the processing of personal data is our legitimate interest in ensuring compliance with legal requirements for the use of cookies (Article 6 para. 1 lit f of the GDPR).
Recipient: Provider of the Consent-Management-Tool: TagMan Ltd.

Purpose of processing personal data: The processing of your personal data with the help of the Ensighten Privacy Manager enables us to save information concerning your given consent. This helps us to provide you with additional content and to avoid that certain cookies are set without your consent concerning the use of these cookies. Furthermore, the Ensighten Privacy Manager enables the saving of your Cookie-Preferences so you don't have to make a new choice every time you visit our website. If we would not catch this information we would not be able to ensure that your cookie settings are saved. For these purposes cookies (-> Section D.III.) of the consent-management-tool (Ensighten Privacy Manager) are used.
Categories of personal data that are processed: Data, saved in cookies, see Section D.III., for the Consent-Management-Tool (Ensighten Privacy Manager) on the user’s device.
Automated individual decision-making: There is no automated individual decision-making.
Legal basis and where appropriate, legitimate interests: The legal basis for the processing of personal data is our legitimate interest inensuring compliance with legal requirements for the use of cookies (Article 6 para. 1 lit f of the GDPR).
Recipient: Provider of the Consent-Management-Tool: TagMan Ltd.

1.3. Details on recipients of personal data and the transmission of personal data to third countries and / to international organisations

Recipient: TagMan Ltd.
Role of recipient: Processor
Seat of recipient:
2 Riding House Street,
London W1W 7FA, United Kingdom

Adequacy decision or adequate or reasonable guarantees regarding the transmission to third countries and / or to international organisations:
Adequacy decision of the European Commission of 28 June 2021 pursuant to Directive 95/46/EC of the European Parliament and of the Council on the adequate protection of personal data by the United Kingdom.

Recipient: Ensighten Inc.
Role of recipient: Subrocessor
Seat of recipient:
101 Jefferson Dr 1st Floor, Menlo Park,
CA 94025, USA

Adequacy decision or adequate or reasonable guarantees regarding the transmission to third countries and / or to international organisations:
Conclusion of Standard contractual clauses for international transfer of personal data to third countries in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council.

2. Adobe Analytics

To maintain a current, user-centric and full offer on our websites, this website uses Adobe Analytics by Adobe Systems Software Ireland Limited, a web analytics tool that enables us to optimise our services to meet your needs. Adobe Analytics uses cookies to trace your preferences during your visit to our pages. This facilitates, for example, site navigation and allows us to further improve the user friendliness of our services.

The information generated in this context (including the IP address) are anonymised by default prior to being stored so that it becomes impossible to identify the user. This website has been customised to enable logging IP addresses in an anonymised format (so-called IP masking). It is not possible to identify a person directly based on the information stored on Adobe servers as Adobe Analytics runs with the ‘Before Geo-Lookup: Replace visitor’s last IP octet with 0’ and ‘Obfuscate IP-Removed’ setting. The ‘Before Geo-Lookup: Replace visitor’s last IP octet with 0’ setting guarantees that the IP address is anonymised prior to this so-called geo localisation by replacing the last IP octet with zeroes. The user’s approximate location is added for statistical analytics to the tracking pack which contains the IP address (still complete at that time). The information generated by this cookie will usually be transmitted to an Adobe server in the European Union. However, it cannot be ruled out that in the event of a technical emergency these data will be transmitted third party countries and stored there so that consequently. The EU Commission has issued so-called adequacy decisions for the transfer of personal data to third countries that offer a level of protection equivalent to the GDPR. Corresponding EU standard contractual clauses (adequate guarantee for data processing in non-EU countries) have been concluded for all other recipients in third countries. Within the context of your right to be informed, you have the right to be informed about these standard contracts. If you consented to this, we will use Web Analytics technology for cookies (see Section D.III. of this privacy notice) to log and analyse the usage behaviour of our website in order to improve the website and achieve the goals of the website more easily (e.g. visitor frequency, increased page views). You can either grant your consent at your first visit on the website using the cookie-banner or adjust or withdraw the cookie settings at any time in the cookie settings on our website. Your choice will be documented for the browser you have used.

2.1 Detail to the personal data to be processed

Web analytics tool: Adobe Analytics.
Categories of personal data: Log data which are created following the use of the web analytics tool (Adobe Analytics) used on the website.
Personal data included in categories: Experience Cloud ID (Unique User ID, assigns each site visitor a unique, permanent ID), URL and name of viewed Internet page; type and version of your Internet browser; operating system used; system language setting; access status of site from where the Internet page was prompted; country of origin (based on IP address); city (based on IP address); the page viewed; the previously viewed page (referrer URL); date and time of view; time spent on the site; exit rate; campaign code; device type and similar metrics. For more information and a list of all possible metrics click here.
Source of data: Website users.
Obligation to provide the data: The provision is not mandatory by law or contract or necessary to conclude a contract. There is no obligation to provide the data. If said data are not provided, we will not be able to conduct web analytics.
Storage period: All metrics are stored for a maximum of 37 months by Adobe Analytics.

Web analytics tool: Adobe Analytics.
Categories of personal data that are processed: Data saved in cookies (-> Section D III.) for the web analytics tool (Adobe Analytics) on the user’s terminal device.
Personal data included in categories: Unique visitor ID to identify returning visitors.
Data sources: Website users.
Obligation to provide the data: The provision is not mandatory by law or contract or necessary to conclude a contract. There is no obligation to provide the data. If said data are not provided, we will not be able to conduct web analytics.
Storage period: Various. For information regarding the period of the cookie’s validity see Section D.III.

Web analytics tool: Adobe Analytics.
Categories of personal data that are processed: Data recorded by the web analytics tool (Adobe Analytics) and which are saved in pseudonymised user profiles.
Personal data included in categories: Data on use of the website, especially page views, frequency of views and time spent on prompted pages.
Data sources: Independently generated.
Obligation to provide the data: The provision is not mandatory by law or contract or necessary to conclude a contract. There is no obligation to provide the data. If said data are not provided, we will not be able to conduct web analytics.
Storage period: Various. For information regarding the period of the cookie’s validity see Section D.III.

2.2 Details on processing of personal data

Purpose of processing personal data: To improve the website and to achieve the website’s goals more easily (e.g. frequency of visitors, increased page views) the behaviour of users of our website is recorded and analysed in pseudonymised form. Users of the website are marked in pseudonymised form in order to recognise them on the website. Pseudonymised user profiles are created from this information. The pseudonymised user profiles are not merged with data on the user behind the pseudonym. The goal of this is to examine where users originate from; which areas of the website are sought out and how often and for how long which subpages and categories are viewed.
Categories of personal data that are processed: Web analytics tool data (Adobe Analytics).
Automated individual decision-making: There is no automated individual decision-making.
Legal basis and where appropriate, legitimate interests: The legal basis for the setting of cookies on our website is your prior consent following Section 25 para. 1 first sentence of the TTDSG. The purpose of data processing is performance analysis and website optimization, for which the legal basis is your prior consent following Article 6 para. 1 lit a of the GDPR.
Recipient: Provider of the web analytics tool – Adobe Systems Software Ireland Limited.

Purpose of processing personal data: Users of the website are marked in pseudonymised form in order to recognise them on the website. Pseudonymised user profiles are created from this information. The pseudonymised user profiles are not merged with data on the user behind the pseudonym. The aim of this is to measure the effectiveness with which a targeted group of individuals can be moved to perform the desired actions. For these purposes cookies (-> Section D) of the web analytics tool (Adobe Analytics) are used.
Categories of personal data that are processed: Web analytics tool (Adobe Analytics) data.
Automated individual decision-making: There is no automated individual decision-making.
Legal basis and where appropriate, legitimate interests: The legal basis for the setting of cookies on our website is your prior consent following Section 25 para. 1 first sentence of the TTDSG. The purpose of data processing is performance analysis and website optimization, for which the legal basis is your prior consent following Article 6 para. 1 lit a of the GDPR.
Recipient: Provider of the web analytics tool – Adobe Systems Software Ireland Limited.

Purpose of processing personal data: To evaluate the visitor campaign (conversion tracking) the behaviour of users of our website is recorded and analysed in pseudonymised form. Users of the website are marked in pseudonymised form in order to recognise them on the website. Pseudonymised user profiles are created from this information. The pseudonymised user profiles are not merged with data on the user behind the pseudonym. The aim of this is to measure the effectiveness with which a targeted group of individuals can be moved to perform the desired actions.
Categories of personal data that are processed: Web analytics tool data (Adobe Analytics).
Automated individual decision-making: There is no automated individual decision-making.
Legal basis and where appropriate, legitimate interests: The legal basis for the setting of cookies on our website is your prior consent following Section 25 para. 1 first sentence of the TTDSG. The purpose of data processing is performance analysis and website optimization, for which the legal basis is your prior consent following Article 6 para. 1 lit a GDPR.
Recipient: Provider of the web analytics tool – Adobe Systems Software Ireland Limited.

2.3. Details on recipients of personal data and the transmission of personal data to third countries and / to international organisations

Recipient: Adobe Systems Software Ireland Ltd.
Role of recipient: Processor
Seat of recipient:
4-6 Riverwalk, Citywest Business Campus,
Dublin 24, Irland

Recipient: Adobe Systems Engineering GmbH
Role of recipient: Subprocessor
Seat of recipient:
Große Elbstraße 27,
22767 Hamburg, Germany

Recipient: Adobe Systems Romania S.r.l.
Role of recipient: Subprocessor
Seat of recipient:
Anchor Plaza, Bd. Timișoara 26Z,
București 061331, Romania

Recipient: Adobe Inc.
Role of recipient: Subprocessor
Seat of recipient:
345 Park Avenue, San Jose,
CA 95110-2704, USA

Adequacy decision or adequate or reasonable guarantees regarding the transmission to third countries and / or to international organisations:
Conclusion of Standard contractual clauses for international transfer of personal data to third countries in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council.

Recipient: Adobe Systems Canada Inc.
Role of recipient: Subprocessor
Seat of recipient:
560 Rochester Street
Ottawa, Ontario K1S 1N4, Canada

Adequacy decision or adequate or reasonable guarantees regarding the transmission to third countries and / or to international organisations:
Adequacy decision of the European Commission of 20 December 2001 pursuant to pursuant to Directive 95/46/EC of the European Parliament and of the Council on the adequate protection of personal data provided by the Canadian Personal Information Protection and Electronic Documents Act.

Recipient: Adobe Systems India Pvt. Ltd.
Role of recipient: Subprocessor
Seat of recipient:
D-107 Sector 2 Noida, 201 301
Noida – 201304, U.P. India

Adequacy decision or adequate or reasonable guarantees regarding the transmission to third countries and / or to international organisations:
Conclusion of Standard contractual clauses for international transfer of personal data to third countries in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council.

Recipient: Adobe Research Schweiz AG
Role of recipient: Subprocessor
Seat of recipient:
Barfüsserpl. 6,
4051 Basel, Schweiz

Adequacy decision or adequate or reasonable guarantees regarding the transmission to third countries and / or to international organisations:
Adequacy decision of the European Commission of 26 July 2000 pursuant to Directive 95/46/EC of the European Parliament and of the Council on the adequate protection of personal data provided in Switzerland.

V. Management of Cookies Used on This Website

1. Consenting to the use of cookies

When viewing our website, a cookie banner is prompted which allows you to consent to the use of cookies on this website by clicking a button. By activating the designated button for this, you have the possibility to consent to the use of all cookies detailed under Section D.III. of this cookie notice.

2. Managing Cookies on our This Website

As user of our website you can at any time change your preferences in the cookie banner with effect for the future. All you have to do is click on the „Cookie Settings“-button in the footer of this website. The cookie banner will now appear again and you can decide once again whether you agree to the use of certain cookies on this website.

3. Managing Cookies in your browser settings

You can manage the use of cookies in the settings of your browser. Different browsers offer different ways to configure cookie settings. More detailed information on this can be found, for example, at http://www.allaboutcookies.org/ge/cookies-verwalten/.
However, we wish to point that if you deactivate the use of cookies in your browser in general, you may not be able to use the full functionality of the website, or the website’s functionality may not operate properly.

E. Version and Amendments to this Privacy Notice

This privacy notice was last updated in May 2023.
Technical advancements and/or changed legal and/or official requirements may require an update of this privacy notice.