The protection of your personal data is of particular concern to us. For this reason, too, we comply with the relevant statutory regulations. This data protection declaration is intended to inform you what type of data is collected for what purpose and to what extent this data is made accessible to third parties.
The privacy information is divided into five parts:
A. General data privacy information
B. Privacy information for users of this website
C. Privacy information for customers
D. Rights of data subjects
E. Data protection information for applicants
Name and address of the controller
represented by the managing directors: Dipl.-Inf. (FH) Peter Kurz, Tobias Kurz, Ingemar Mayr
D - 83088 Kiefersfelden
Phone: +49 (0)8033 / 6978-0
Fax: +49 (0)8033 / 6978-91
Name and address of the data protection officer
Should you have any further questions regarding data protection or the processing of your personal data processed by us, please contact our company data protection officer by e-mail at: email@example.com or at the above address marked "Data Protection Officer".
The processing of personal data is carried out in accordance with Art. 5 GDPR.
Personal data is processed on our Internet sites
itelio uses technical and organizational security measures in order to protect your data administered by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons. Our security measures are continuously improved in line with technological developments.
Data transfers are carried out using the SSL procedure (Secure Socket Layer).
We endeavour to store your personal data in such a way that they are inaccessible to third parties by using all technical and organisational means at our disposal. When communicating by e-mail, we cannot guarantee complete data security, so we recommend that you send confidential information by post.
itelio GmbH uses service providers (so-called contract processors) to provide services and process your data. The service providers process the data exclusively on the instructions of itelio GmbH and are obliged to comply with the applicable data protection regulations. All processors have been carefully selected and will only have access to your data to the extent and for the period necessary to perform the services.
External service providers are carefully selected by us and contractually bound in accordance with Art. 28 GDPR by means of an agreement on order processing.
Some of the service providers we use are based in the USA or other countries outside the European Economic Area. Companies in these countries are subject to a data protection law that does not generally protect personal data to the same extent as is the case in the Member States of the European Union. We use contractual provisions or other recognised instruments to ensure that your personal data is adequately protected.
When you access our website, you transmit data (for technical reasons) via your Internet browser to a web server. The following data is recorded during an ongoing connection for communication between your Internet browser and our web servers:
We require this data for reasons of technical security and for statistical evaluations, and as a rule we cannot assign it to specific persons. This data will not be merged with other data sources. These data will be deleted after 14 days at the latest.
Various services on our website use so-called "cookies". These are small text files which are stored on your computer and which allow an analysis of your use of the website. They serve to make our Internet presence more user-friendly, more effective and safer - for example, when it comes to accelerating navigation on our platform.
Cookies also enable us to measure the frequency of page views and general navigation, for example. Cookies are small text files that are stored on your computer system. We would like to point out that some of these cookies are transferred from our server to your computer system, which are usually so-called "session cookies". "Session cookies" are characterized by the fact that they are automatically deleted from your hard disk at the end of the browser session. Other cookies remain on your computer system and enable us to recognize your computer system on your next visit (so-called permanent cookies). Of course, you can reject cookies at any time, if your browser allows this.
Cookies: Consent choices
Instructions for deleting cookies in the most common browsers can be found here:
On our websites we use different plugins from social networks.
Facebook is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). An overview of the Facebook plugins and their appearance can be found here:
Twitter is operated by Twitter Inc, 1355 Market St, Suite 900, San Francisco, CA 94103, USA ("Twitter"). An overview of the Twitter buttons and their appearance can be found here:
Instagram is operated by Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, USA ("Instagram"). An overview of the Instagram buttons and their appearance can be found here:
LinkedIn is operated by the LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland ("LinkedIn").
XING is operated by Xing SE, Dammtorstraße 30, 20354 Hamburg, Germany ("Xing"). An overview of the Xing buttons and their appearance can be found here:
These social plugins are operated exclusively by the respective providers. The social plugins on our website are identified by the respective button belonging to the provider or service. If you visit one of our websites that contains such a social plugin, your browser will connect to the servers of the respective service. This, in turn, transmits the content of the plugin to your browser and integrates it into the displayed page. By visiting our website, the respective information is transmitted to the respective service.
If, at the same time as you visit our Website, you are logged into one of the Services through your personal account, that Service may assign the visit to the Website to your account. Users can use social plugins to post or share links to websites on social networks. Through interactions, such as leaving a comment or clicking the respective button, the respective information is transferred directly to the respective services and stored there.
If you do not want and do not want such data transfer, log out of your social networks or user accounts before visiting our websites. We have no influence on the data collection and transmission by social plugins. The purpose and scope of the data collection of the respective provider or service and the further use and processing of your data can be found in the respective data protection information directly from the websites of the providers. Please inform yourself there which rights you have and how you can achieve a satisfactory data protection setting.
Data protection information about the social plugins used on our online presence:
We store solely and exclusively personal data of website visitors who have registered voluntarily/on their own accord on our websites in order to receive information on products and services, to subscribe to newsletters or to download documents. Some forms and websites are linked to Pardot. Pardot is a software for the marketing automation of
salesforce.com Germany GmbH
Voluntarily provided personal data is first stored in Pardot and then processed with the Salesforce CRM system for the purpose of contacting and/or sending information.
Here you can find out how Salesforce processes your data when you visit websites: https://help.salesforce.com/articleView?id=pardot_basics_cookies.htm&type=5.
To create a user account for the purpose of authentication in our online portals we use on the basis of article 6 paragraph 1 letter f of the DSGVO the service "Microsoft Azure Active Directory B2C" by
Microsoft Ireland Operations Ltd.
One Microsoft Place
South County Business Park
To create a user account, first name, last name and email address are transmitted. The password chosen by the user is stored there.
We use this service as a secure alternative to integrated password stores in the respective web applications and for central and universal login to all our websites. This prevents unauthorized persons from gaining access to protected parts of our online services.
On our website in our webshop we offer payment via the external payment service provider
1015 CW Amsterdam
The following payment methods are processed through Mollie: Mastercard, Visa, American Express, SEPA and PayPal. When you select the payment method, the payment data you entered will be transmitted to both Mollie and the payment provider you selected. The transmission of your data to Mollie is based on Art. 6 para. 1 lit. b DSGVO (processing for the performance of a contract). The terms and conditions and the data protection notices of the respective payment service providers apply to the payment transactions, which can also be accessed within the respective websites or transaction applications. We also refer to these for the purpose of further information and assertion of revocation, information and other data subject rights. For details on payment via the payment service provider Mollie, please refer to the following link: https://www.mollie.com/en/privacy
This website uses LiveChat, a software of the company
One International Place
Boston, MA 02110-2619
For more information about privacy at LiveChat Inc., please visit http://www.livechatinc.com/privacy-policy/.
For the integration of different databases and tools for the automation of our workflows we use Zapier, a service of the
548 Market St #62411
Customer data may be transmitted with the exception of payment data. Further information on data protection at Zapier can be found at https://zapier.com/privacy/.
To draw the attention of potential users and customers to our online offers, we use the online advertising program "Google Ads" and, within the framework of Google Ads, conversion tracking, an analysis service of the
Google Inc. (Google)1600 Amphitheatre Parkway
Google Ads places a cookie on your computer ("conversion cookie") if you have reached our website via a Google advertisement. These cookies lose their validity after 30 days and are not used for personal identification. If you visit certain pages on our site and the cookie has not yet expired, we and Google may recognize that someone clicked on the ad and was redirected to our site. Each Google Ads customer receives a different cookie. As a result, cookies cannot be tracked through Google Ads customer websites. The information collected using the conversion cookie is used to generate conversion statistics for Google Ads customers who have opted for conversion tracking.
Google Ads customers will know the total number of users who clicked on their ad and were directed to a page tagged with a conversion tracking tag. However, you will not receive any information that personally identifies users.
If you do not wish to participate in the tracking procedure, you can refuse to set a cookie as required for this purpose - for example by setting your browser to deactivate the automatic setting of cookies in general. You can also disable cookies for conversion tracking by setting your browser to block cookies from the domain "googleadservices.com".
You can also prevent Google Ads from capturing your data by clicking the following link. An opt-out cookie is set to prevent your data from being collected in the future when you visit this website:
This website uses Google Analytics, a web analytics service provided by
Google Inc. ("Google")
1600 Amphitheatre Parkway
Google Analytics uses "cookies". The information generated by the cookie about your use of this website will generally be transmitted to a Google server in the United States and stored there for 14 months. However, if IP anonymization is enabled on this website, Google will previously truncate your IP address within member states of the European Union or other signatory states to the Agreement on the European Economic Area.
We would like to point out that on this website Google Analytics was extended by the code "gat._anonymizeIp();" in order to guarantee an anonymous recording of IP addresses (so-called IP masking). You can also prevent Google from collecting the data generated by the cookie and related to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available under the following link:
You can also prevent Google Analytics from collecting this information by clicking on the following link. An opt-out cookie is set to prevent your data from being collected in the future when you visit this website:
Our websites also use Google Optimize. Google Optimize is a tool integrated in Google Analytics. Google Optimize analyzes the use of different variants of our websites and helps us to improve the usability according to the behavior of our users.
The Google Tag Manager is used on this website. The Google Tag Manager is a solution from
Google Inc. ("Google")
1600 Amphitheatre Parkway
which allows companies to manage website tags via a single interface. The Google Tag Manager is a cookie-free domain that does not collect personally identifiable information. The Google Tag Manager triggers other tags that may themselves collect data. We hereby point this out separately.
The Google Tag Manager does not access this data. If a deactivation has been made by the user at the domain or cookie level, this will remain the case for all tracking tags implemented with Google Tag Manager.
Our website uses Bing Ads technology to collect and store data from which user profiles are created using pseudonyms. This is a service of the
One Microsoft Way
Redmond, WA 98052-6399
This service enables us to track the activities of users on our website when they arrive at our website through ads from Bing Ads. If you reach our website via such an advertisement, a cookie is placed on your computer. A Bing UET tag is integrated on our website. This is a code that is used in conjunction with the cookie to store some non-personal information about the use of the website. This includes, among other things, the time spent on the website, which areas of the website were called up and which advertisement the user used to access the website. Information about your identity is not collected.
The information collected is transferred to Microsoft servers in the USA and stored there for a maximum of 180 days. You can prevent the collection of data generated by the cookie and related to your use of the website and the processing of this data by deactivating the setting of cookies. This may limit the functionality of the website under certain circumstances.
In addition, Microsoft may use cross-device tracking to track your usage patterns across multiple electronic devices, enabling Microsoft to display personalized advertisements on Microsoft Web sites and apps.
You can deactivate this behavior at https://choice.microsoft.com/en-us/opt-out.
Facebook users should note that Facebook's Website Custom Audience communication tool is used on this website. For this purpose, so-called Facebook pixels are integrated on our websites, which mark you as a visitor to our website in anonymous form, i.e. without identifying you as a person.
Objection: If you wish to object to the use of the Facebook Custom Audiences website, you can do so at https://www.facebook.com/ads/website_custom_audiences. You must be logged in to Facebook to do this.
On our websites we use on the basis of article 6 paragraph 1 letter f of the DSGVO, the software Wistia (https://wistia.com/) from the
17 Tudor Street
Cambridge, MA 02139
The software is used to embed videos into our website and to promote and measure the interaction of website visitors with the videos. Wistia collects the following categories of personal data on our behalf:
• anonymised IP address incl. provider;
• access time to viewed videos;
• details of their viewed video sections;
• URL of the videos;
• Type of end device (stationary, mobile), operating system and browser used.
Cookies are not used for this purpose.
You can find all information on the transfer and use of data by Wistia here: https://wistia.com/privacy.
We reserve the right to change our security and data protection measures at any time if this becomes necessary due to technical development or legal changes. In these cases, we will also adapt our information on data protection accordingly. Please therefore note the current version of this data protection declaration.
If you conclude a contract with us or in the case of pre-contractual measures, we process your data in order to conclude and implement the contract. Your data will be processed on the basis of Art. 6 para. 1 p. 1 lit. b) DS-GVO (fulfillment of contract) and Art. 6 para. 1 p. 1 lit. c) DS-GVO (fulfillment of legal storage regulations, § 257 HGB, § 147 AO). We process your data as long as the contract exists and claims can still exist from the contract, which is usually three years after the conclusion of the contract in the case of a purchase contract and three years after the termination of a service contract, in each case starting on 31.12. of a year. In addition, we store accounting documents for a period of 10 years and commercial and business letters for a period of 6 years to fulfill our legal retention obligations. The storage period always begins at the end of the calendar year in which the commercial and business letter is received/dispatched or in which the accounting document is created.
The data will not be passed on to third parties with the exception of order processors in accordance with Art. 28 DS-GVO, with whom a contract for order processing exists. Data will not be transferred to a third country. An automated decision making process does not take place either.
For all questions regarding data protection, please contact our data protection officer, who can be reached by e-mail at firstname.lastname@example.org or by post at our address marked "Datenschutzbeauftragter".
In addition, you are also entitled to statutory rights of data subjects, which we list below. Please contact our data protection officer also in these cases.
You have the right:
Under Art. 77 DS-GVO, you also have a right of appeal to a supervisory authority. As a rule, you can turn to the supervisory authority of your usual place of residence or work or to the supervisory authority of our headquarters; an overview of the supervisory authorities can be found here (https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html); the supervisory authority generally responsible for us is
Bavarian State Office for Data Protection Supervision
Promenade 27 (Schloss)
Phone: +49 (0)981 / 53-1300
Fax: +49 (0)981 / 53-5300
The information provided to us as part of your application will, of course, be treated confidentially and, in compliance with the provisions of data protection law, will be used exclusively for the
Your data will be processed on the basis of Section 26 of the German Federal Data Protection Act (BDSG) (data processing for the purpose of the employment relationship) on the basis of Article 6 (1) sentence 1 lit. f DS-GVO (legitimate interest).
The data will be deleted after 6 months at the latest if no employment relationship is established. We have a legitimate interest in being able to defend ourselves against liability claims under the General Equal Treatment Act (AGG) and therefore continue to store the application documents for this period even after your application has been rejected.
Within our company, only the persons involved in the application and selection process have access to your data. Your data will not be passed on to third parties. Automated decision-making does not take place.