Privacy Notice

We would like to inform you about how we at foxondo handle your personal data.

This information includes the following data processing operations:

  1. Website foxondo.com (landing page)

  2. Newsletter

  3. Social networks

  4. Google Ads

  5. Business partners, interested parties, advertising recipients and their contact persons

  6. Video calls and appointment bookings (Microsoft Teams)

  7. Surveys with Microsoft Forms

For the use of the service foxondo, separate information is available here.

1. Data processing on foxondo.com

When you visit the foxondo.com website, we process your data for the following purposes:

  • Technical provision of the websites: To provide you with the web pages technically, our web server automatically collects information from your browser each time it is called up. This information is mainly affected by this: IP address, files accessed, date and time of your request, address of the originating website (referrer), activation of cookies, activation of JavaScript, browser type and version operating system used, screen resolution.
    We need to store your IP address, at least temporarily, so that our website content can be delivered to your browser.
    This data is stored separately from other data that you may transmit to us and is not merged with data from other sources.
    The legal basis for the data processing is Art. 6 Para. 1 Letter f GDPR, which permits the processing of data on the basis of legitimate interest. In this case, there is a legitimate interest in the secure and uninhibited operation of the web server. To ensure this, the administration must be able to detect and track attacks and malfunctions of the system via server log files, and to recognise attack patterns, accesses to the server must be saved. As soon as this data is no longer needed it is deleted. For technical reasons, the data is available to the hosting service provider, who is, however, bound by our instructions and contractually obligated to us.

  • Plausible Analytics: We use the web analytics service “Plausible Analytics” to better understand how visitors use our websites. We can draw conclusions from this to further improve the offer in the future.
    Data about you is only processed in such a way that you cannot be identified. Processing is done under a pseudonym: After one day, the data is completely anonymised. This includes in particularDate and time of your visit, title and URL of the pages visited, incoming links, the country you are in and the user agent of your browser software. The legal basis for this data processing is Art. 6 para. 1 letter f GDPR. Our legitimate interests are to be able to analyze the use of our website and to optimize it accordingly.
    No data is transferred to Plausible Insights OÜ (Estonia). This does not include the IP address, which must be transmitted for technical reasons so that files can be loaded from Plausible, but is not used for other purposes.
    Further information on how Plausible processes data can be found here: https://plausible.io/data-policy

  • Contact forms: You can contact us via online forms. Any mandatory information is marked. All other information can be provided on a voluntary basis.
    We use the data you provide us with solely to contact you and to process your enquiry. The data processing is based on your voluntarily given consent (Art. 6 para. 1 letter a GDPR). You can revoke it at any time with effect for the future.

  • Sanity: These websites use the services of Sanity AS located in Norway. Within this framework, it may be possible that files required to provide our websites are retrieved from distributed servers. This results in faster loading times for the web pages, greater reliability, and increased protection against data loss. Through this retrieval, information about your use of the website (such as your IP address) can also be transmitted to servers outside the EU and processed there. This happens as soon as you call up the web pages.
    We process your data to protect our above-mentioned legitimate interests in accordance with Art. 6 para. 1 letter f GDPR, which include the high-performance provision of our websites.
    You can find more information about data protection at Sanity at https://www.sanity.io/legal/privacy

  • JsDelivr: These websites use the content delivery network (CDN) of the open-source service of Jsdelivr.com by ProspectOne SP. Z. O. O., Wladyslawa Lokietka 6a/12, 30-010 Krakow, Poland.
    The CDN provides duplicates of data from our websites on various servers distributed around the world. This results in faster loading times of the web pages, higher reliability, and increased protection against data loss. Some of the elements embedded on these web pages are retrieved from the CDN when the page is called up. Through this retrieval, information about your use of the website (such as your IP address) may also be transmitted to servers outside the EU and processed there. This happens as soon as you call up the web pages.
    We process your data to protect our above-mentioned legitimate interests in accordance with Art. 6 para. 1 letter f GDPR, among other things to ensure the high-performance provision of our websites.
    You can find more information on data protection at https://www.jsdelivr.com/terms/privacy-policy-jsdelivr-net

2. Newsletter

You can subscribe to the foxondo newsletter to receive information about foxondo via e-mail. To do this, you must at least fill in the marked mandatory content in the corresponding web form.

Unsubscribing from newsletters is possible at any time (via the option described in the respective newsletter footer or by sending an e-mail).

We can not track whether you have opened the e-mail or links contained in the email. We track only anonymously, that is, without the possibility of assigning the behaviour to specific recipients.

The data is only used for the organisation and dispatch of the newsletter and made available only to contractually obligated service providers for technical dispatch.

This data processing is based on your consent.

3. Data processing in social networks

foxondo is represented on social networks in order to communicate with the users active there and to offer information about ourselves. The terms of use and privacy policy of the networks apply. All data that we receive from you via these communication channels will of course only be used to communicate with you.

Please note that the Internet is not suitable for the transmission of confidential information – so please choose a different communication channel if necessary. We will not share confidential information with you via social networks but will use other communication channels for this purpose.

Processing users’ personal data is based on our legitimate interest in effective information of users and communication with users in accordance with Art. 6 Para. 1 Letter f GDPR.

If you visit us on LinkedIn, we point out that in this case your data may be processed outside the European Union. This could pose risks for users, for example by making it more difficult to enforce user rights.

The social networks generally also process user data for market research and advertising purposes. For example, user profiles can be created from the user behaviour and the resulting interests of the users. The user profiles can be used, for example, to place advertisements within and outside the platforms that presumably correspond to the interests of the users. For these purposes, cookies are usually stored on the users’ computers to record the usage behaviour and interests of the users. Furthermore, data may also be stored in the user profiles regardless of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).

For a detailed description of the respective processing operations and the possibilities to object (opt-out), please refer to the statements of the social networks:

In the event of requests for information and the assertion of user rights, we would like to point out that these can be most effectively asserted with the provider. Only the provider has access to the data of the users and can directly take appropriate measures and provide information.

4.

We use Google Ads, a service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). With the help of advertising media (so-called Google Ads), we can draw attention to our offers on external websites. In relation to the data of the advertising campaigns, we can determine how successful our individual advertising measures are. In this way, we pursue our interest in showing you advertising that is of interest to you, to make our website more interesting for you and in order to achieve a fair calculation of the advertising costs.

The advertising material is delivered by Google via so-called ad servers. We use ad server cookies to measure the success of our advertising (such as the display of ads or user clicks on ads). If you access our website via a Google ad, a Google Ads cookie will be stored on your PC. This cookie is usually deleted after 30 days and is not intended to identify you by name. This cookie is usually used to store analysis values such as unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be addressed).

The Ads cookies enable Google to recognise your internet browser. If you visit the website of an Ads advertiser and the Ads cookie stored on your computer has not yet expired, Google and the advertiser can recognise that you have clicked on the ad and were therefore redirected to the page.

We only receive a statistical evaluation from Google. These evaluations enable us to recognise which of our advertising measures are particularly effective. We do not receive any further data from the use of the advertising tools; in particular, we cannot identify you as a user from this information.

Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. We have no influence on the scope and further use of the data that Google collects using this tool and therefore inform you according to our state of knowledge: Through the integration of Ads-Conversion, Google receives the information that you have called up the corresponding part of our website or clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or not logged in, Google will at least process your IP address.

The legal basis for the processing of your data is your consent in accordance with Art. 6 Para. 1 Letter a GDPR.

You can prevent or revoke participation in this tracking procedure in various ways:

  • by not giving or revoking your consent in the specific cookie settings

  • by adjusting your browser software accordingly (in particular, suppressing third-party cookies will prevent you from receiving ads from third-party providers)

  • by disabling cookies for conversion tracking by setting your browser to block cookies from the domain www.googleadservices.com, https://www.google.de/settings/ads, which setting will be deleted when you delete your cookies

According to Google, the collected data will also be transferred to the USA. The data transfer is based on the Standard Contractual Clauses of the EU Commission.

Further information on data protection at Google can be found here: http://www.google.com/intl/de/policies/privacy

5. Information for business partners, interested parties, advertising recipients and their contact persons

We process the data of business partners and their contacts for the following purposes:

  • Professional contact and communication (e.g., via telephone, e-mail, online whiteboard for trainings)

  • Maintaining business relationships and completing contracts with you and your employer (including for accounting purposes)

The legal basis for processing this data are our legitimate interests (Art. 6 Para. 1 Letter f GDPR). They consist in the execution of the contract and the maintenance of the business relationship with your employer. If we process any additional personal data, this is based on your consent (Art. 6 Para. 1 Letter a GDPR), which you can revoke at any time with effect for the future. We may also be required by law to process data, for example under the Whistleblower Protection Act in Germany.

We process the following categories of data: Your name and your professional contact data, which we receive from you, from your employer, via work-related social networks (e.g. LinkedIn) ) or via whistleblowers, for example. In addition, data from communication (e.g. conversation and e-mail data) and from online meetings may be processed. We process further data if you share this voluntarily.

We do not share your information with third parties unless you consent to this or there is a legal basis for doing so. Service providers who provide or maintain our IT infrastructure can get access to this information, but they are separately obliged to maintain confidentiality (such as our e-mail provider).

The storage period depends on the purposes mentioned above and, if applicable, on the statutory retention periods.

6. Information about video calls and appointment bookings (Microsoft Teams)

We process your personal data using Microsoft Teams software to organise and conduct video conferences and to provide online appointment booking services. Teams is a service provided by Microsoft Ireland Operations Ltd. (One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Irland).

For this purpose, we process your e-mail address, your name and other data that you voluntarily provide to us. If this data does not come from you, we may receive it from your employer or client. In addition, metadata is processed (e.g. date, time, meeting ID, participants, phone numbers, location), and in the case of video conferences, audio, video and text data may also be processed.

The legal basis for this data processing is your consent in the case of appointment bookings, which you can revoke at any time with effect for the future. In the case of video calls, the data processing is necessary to prepare or execute a contract with your employer or client. In other cases, it is necessary in order to be able to present our services to you, which is in our legitimate interest (Art. 6 Para. 1 Letter f GDPR).

With video calls, the following also applies: Your image is processed when you turn on your camera. Whether you do so is, of course, your free decision (even though we like to see who we are talking to and usually also transmit our own video).

We do not record our online meetings. If this should happen in exceptional cases, we will give you an explicit notice beforehand: You would then have the opportunity to leave the video conference or to switch off your own video and/or audio transmission.

Usually, no personal data is disclosed to third parties. An exception exists if the data is intended precisely for disclosure, which may be the case depending on the individual case.

In addition, the operator Microsoft also receives knowledge of the data. The data processing takes place in data centres within the European Union. In the cases where Microsoft transfers personal data to the USA for further processing, the companies involved have, according to their own statements, concluded EU standard contracts to protect the data.

The personal data will be stored for as long as they are required for the above-mentioned purposes.

7. Information about surveys with Microsoft Forms

From time to time, we offer you the opportunity to take part in a survey. Microsoft Forms can be used for this purpose. If this is the case, it will be displayed before you open the survey link.

Participation is always anonymous, and it is not technically possible for us to identify the person taking part. An exception is made if you voluntarily enter your name or other identifying information in the form. Mandatory information, if any, is labelled accordingly.

The legal basis for data processing is your consent and the voluntary use of the form (Art. 6 Para. 1 Letter a GDPR).

The data is processed by our service provider Microsoft Ireland Operations Ltd. (One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland) on our behalf.

Data processing takes place in data centres within the European Union. If Microsoft transfers personal data to the USA for further processing, the companies involved have concluded EU Standard Contractual Clauses to protect the data.

The personal data will be stored for as long as they are required for the above-mentioned purposes.

Your Rights

For all of the above-mentioned data processing, you as the data subject have the following rights, provided the legal conditions are fulfilled:

  • Right to Information, Art. 15 GDPR

  • Right to Rectification of incorrect data, Art. 16 GDPR

  • Right to Erasure of Data, Art. 17 GDPR

  • Right to Restriction of Processing, Art. 18 GDPR

  • Right to Data Portability, Art 20. GDPR

  • Right to Objection, Art. 21 GDPR

Provided the data processing is based on your consent, you may revoke it at any time, with effect on the future

You also have the right to lodge a complaint with the Data Protection Supervisory Authority regarding the processing of your personal data.

Controller

foxondo GmbH is responsible for the above-mentioned processing of your personal data. Address and contact details can be found on our Imprint page.