Are you anonymous with Minds com

Data protection

This data protection declaration applies to the processing of your data, namely your personal data, on the “virtualminds.de” website with all secondary and sub-pages. The operator's email address is: [email protected] The full contact details can be found in the operator's imprint. The platform is used to provide information, to deliver advertising on the Internet and to manage the delivery of advertising. The platform is also used by the operator's customers for this purpose. In this respect, the operator processes the data on behalf of the respective customer who is responsible for the data processing in accordance with the order. You can call up the content of this declaration at any time via the sub-page of the same name on the platform and also save or print it out using the corresponding functions of your Internet browser. For the use of the platform by the operator's customers, reference is made to the data protection declaration of the respective customer.

I. Preliminary remarks

The operator takes the protection of your data seriously and complies with data protection laws. These laws serve to protect natural persons when processing personal data. Personal data is all information that relates to an identified or identifiable natural person. Such data are only processed to the extent that is necessary for any contract processing or for the provision and improvement of the platform. Processing for contract processing only takes place if you initiate or conclude a contract with the operator; in this respect, reference is additionally made to the user agreement. The processing for provision and improvement only takes place if this is shown below or in a separate consent, ordered by the authorities or a court or otherwise provided for by law. The operator processes the data only in the member states of the European Union (EU). In particular, the internet servers used by the operator for data processing are located in the member states of the EU. A transfer to a third country or an international organization does not take place.

 

II. Data processing

Your data will be processed in a form-dependent and form-independent manner. Depending on the form, this is the data that you enter in a form on the platform. Regardless of the form, this is the data that you leave behind in a form on the operator's servers without specifying it. You can also leave data on the operator's servers, regardless of the form, if you use an app or the website of a customer of the operator. However, these data are only processed by the operator on behalf of the customer, who is responsible for data processing and whose data protection declaration can be found on the respective app or website.

1. Form-dependent processing

The data that you provide in a form on the platform will be processed when you use the form, namely after the form has been sent. These are data for establishing contact and, if you are a customer of the operator, the data for your customer account. Personal data that you send using a form provided for this purpose are always encrypted and transmitted to the operator's server.

a) contact form

If you contact the operator via a form, the data you provide in the contact form will be encrypted and transmitted to the operator by email via the operator's server. Any additional automated processing of your personal data does not take place in this respect. The data transferred about you will only be used to process your request. If it concerns a request in connection with data processing that the operator carries out on behalf of a customer, the operator forwards your request in encrypted form to the respective customer. A response is always sent by e-mail, which is also transmitted in encrypted form, provided your mail service provider supports this. After the request has been finally processed, your personal data, which you have provided in the contact form or in response to a response from the operator, will be deleted again. This does not apply if the data are still required to process the contract or if there are statutory retention requirements; however, the processing of your data will be restricted in this respect.

b) customer account

As a customer of the operator, a customer account will be set up for you. In this respect, the data specified in the user contract and, if applicable, later via the forms in the customer account, in particular your contact and campaign data, are stored on the operator's servers. You can view the stored data at any time via the customer account and correct or complete them using the forms in the settings. Of course, you can also contact the operator personally, for example by email to the address mentioned above. The same applies to the deletion of the customer account. However, your data can only be deleted when they are no longer required for the execution of the contract and there are no legal storage obligations to the contrary; until then, however, the processing of your data will be restricted, in particular the customer account will be blocked.

2. Form-independent processing

The data that the operator needs either to provide or to improve the platform is processed independently of the form. These can in particular be browser cookies, mobile identifiers and access logs, whereby the data is generally transmitted in encrypted form.

a) browser cookies

The platform uses so-called cookies. These are small text files or simple entries in a database that your browser saves. The data in the cookies can only be read out again by the platform that saved them. On the one hand, the platform uses cookies when you log into your customer account. These cookies ensure that after logging in, only you can access the data stored in your customer account. For this purpose, a so-called session ID is stored in the cookie. After logging out, the cookie with the ID is deleted again. On the other hand, cookies are used when you visit a website that uses the platform. That is, when you visit a page that delivers advertising via the platform or prepares the delivery of advertising. These cookies are used to design the delivery of advertising in a way that is tailored to target groups and interests. For this purpose, a so-called advertising ID is stored in the cookie (e.g. so that you are not shown the same advertising over and over again). The ID can also be assigned to advertising categories (e.g. age between 18 and 35 years / interest in cars). However, these categories always apply to a larger group of people both individually and together. This means that the operator can neither identify you as a person via the advertising ID nor via the categories assigned to the ID. The cookies with the advertising ID can also be used by the customers for whom the operator processes data on behalf of an advertising delivery via the platform. The operator's customers can assign the advertising ID to their own ID with advertising categories. In this respect, however, the respective customer is responsible for the data processing, for which the data protection declaration on the website you are visiting applies. The cookies used by the platform do not cause any damage to your device (e.g. computer / tablet); in particular, they do not contain viruses. You can prevent the storage of cookies by setting your browser accordingly; in this case you may no longer be able to use all functions of the platform or the visited website. The same applies to the deletion of stored cookies.

b) Mobile Identifier

Advertising can also be delivered in mobile applications (apps) via the platform. To do this, the apps can use a so-called mobile identifier that is provided by the operating system of your device (Apple iOS or Google Android). This identifier ultimately corresponds to the advertising ID from a cookie. This means that the identifier can be assigned to advertising categories in order to design the advertising in the apps in line with target groups and interests. However, the categories always apply to a larger group of people. The operator can therefore neither identify you as a person via the identifier nor via the assigned categories. The identifiers can also be used by the customers for whom the operator delivers the advertising and assigned their own ID with advertising categories. In this respect, however, the respective customer is responsible for the data processing. The operator cannot read out, change or delete the identifier himself. However, you can prevent the use of the identifier by making a corresponding setting in the app or in your operating system; in this case you may no longer be able to use all functions of the app or the system. The same applies to changing or deleting the identifier, depending on the app and the operating system. For details, reference is made to the data protection declaration of the respective app and your system.

c) Access Logs

The use of the platform and the delivery of advertising are statistically evaluated. For this purpose and to prevent misuse of the platform, the operator creates an access log. The log stores data about the access to the platform and the retrieval of advertisements. This is the data that is transferred to the platform when a connection is established by your browser. This means that it is your IP address, the time of access or retrieval, the ID in a cookie of the platform or the mobile identifier, which address (URL) was accessed, whether the access was successful and how large the data transmitted by the platform have been. If your browser transmits the respective data, the previous address (referrer) as well as information on the operating system and browser used (e.g. version) are also stored; However, you can prevent the transmission of this data by changing your browser settings. The logs are also statistically evaluated for customers who use the platform to deliver advertising. The evaluation shows when which advertising was delivered on which website or in which app. This means that the logged data can only be extracted to a limited extent from the statistics; in particular, the last quarter (octet) of the IP address is blackened out. The identification of your person does not allow such an evaluation. To prevent misuse, the logs are encrypted and stored separately from the statistics. The logs are only decrypted and merged with other data in the event of a specific suspicion of abuse, whereby the management and the data protection officer of the operator and, if necessary, the customer concerned are called in. The logs are deleted as soon as they are no longer required to prevent misuse. The deletion takes place no later than three months after the end of the calendar month in which the data was logged.

d) social networks

The platform links social networks operated by third parties. For example, to share the platform or posts on it in the respective network (e.g. "Share") or to like (e.g. "Like"). However, a connection to such a network is only established after you have clicked the (Link) button for the respective network on the platform. Due to the processing of personal data by the social networks, over which the operator has no influence, reference is made to the privacy policy of the respective operator:

  1. XING (XING SE): https://www.xing.com/privacy
  2. LinkedIn (LinkedIn Ireland U.C.): https://www.linkedin.com/legal/privacy-policy
  3. Facebook (Facebook Ireland Ltd.): https://www.facebook.com/privacy/explanation
  4. Twitter (Twitter International Company): https://twitter.com/de/privacy

e) Embedded content

The platform may embed content from Google Maps (interactive maps) on its sub-pages. This content is therefore not delivered via the operator's server, but via the servers of Google Inc. (Google). When the embedded content is displayed and used, your IP address is transmitted to the Google server. Because without the transmission of your IP address, the embedded content cannot be accessed by your browser. In addition, your browser may transmit further data to the Google servers (e.g. your location if you use the corresponding function), but the operator has no influence on this. In this respect, you can also access the data protection declaration for Google Maps at:

 

III. Your rights

If you are affected by the processing of your personal data, you have rights against the person responsible for data processing in accordance with data protection regulations. You can contact the operator at any time to assert these rights, for example by e-mail to the address mentioned above. The same applies to other questions about data protection by the operator. In addition to the operator, the operator's data protection officer is also available to you: Mr. Bernd Hoffmann, CEO of virtual minds AG. If the data processing is carried out on behalf of a customer of the operator, you can contact this customer at any time; For their contact details, reference is made to the imprint of the respective app or website that you are using. When contacting us in a different context, you should also provide information that enables an assignment in the respective context (e.g. as a customer, your customer number).

1. Right of withdrawal

You have the right to withdraw your consent to data processing at any time. Revoking consent does not affect the legality of the processing carried out on the basis of the consent up to the point of revocation.

2. Right to object

a) General

You have the right, for reasons that arise from your particular situation, to object at any time to the processing of personal data relating to you that is necessary to carry out a task in the public interest or to safeguard the legitimate interests of the operator. The operator will then no longer process the personal data unless he can prove compelling legitimate reasons for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

b) advertising

If your data is processed in order to operate direct mail, you have the right to object at any time to data processing for the purpose of such advertising. If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.

You can object to the processing of cookies for advertising purposes via the following links:

You can also use the EDAA's preference management, which you can access via the following link: http://www.youronlinechoices.com/de/praferenzmanagement/

In addition, the operator evaluates it as an objection to data processing for advertising purposes if you set the Do Not Track option in the settings of your browser. If you prevent the use of a mobile identifier in the settings of your mobile device (smartphone / tablet), it will no longer be used to deliver advertising via the app (s) of the respective device. However, the setting does not affect cookies that are stored in the browser of the same device. You would have to separately declare an objection to the processing of such cookies (e.g. by calling up the preference management linked above via the browser of the device).

Your right to contact the operator or his customer personally for an objection remains unaffected, of course.

3. Right to complain

You have the right to lodge a complaint with a supervisory authority if you are of the opinion that the processing of your personal data violates the statutory provisions. The State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia (LDI) in Düsseldorf is responsible for the operator's headquarters; You can find the contact details on the LDI website. Your right to complain to another supervisory authority, in particular in the member state of your place of residence, your place of work or the place of the alleged violation, remains unaffected. In addition, the right of appeal exists without prejudice to any other administrative or judicial remedy.

4. Right to information

You have the right to request confirmation from the operator as to whether personal data relating to you is being processed; If this is the case, you have a right to information about this data and the following information: (a) the purposes of the processing; (b) the categories of personal data being processed; (c) the recipients or categories of recipients to whom the data has been disclosed or will be disclosed; (d) the planned duration for which the data will be stored or, if this is not possible, the criteria for determining this duration; (e) your rights under data protection regulations; (f) if the data is not collected from you, all available information about the origin of the data; (g) the existence of automated decision-making including profiling and meaningful information about it. Most of the information can already be found in this declaration. In addition, you can of course contact the operator at any time, for example by email to the address mentioned above. Upon request, the operator will provide you with a copy of the personal data that is the subject of the processing. However, this only insofar as this does not impair the rights and freedoms of other people. If you submit the application electronically, the information will be made available to you in a commonly used electronic format, unless you specify otherwise.

5. Right to rectification

You have the right to request the operator to correct any incorrect personal data relating to you without delay. Taking into account the purposes of the processing, you also have the right to request the completion of incomplete personal data - including by means of a supplementary declaration.

6. Right to erasure

However, the right to erasure does not apply if processing is necessary: ​​(a) to exercise the right to freedom of expression and information; (b) to comply with a legal obligation; (c) to perform a task that is in the public interest or (d) to assert, exercise or defend legal claims. In this respect, you can, if necessary, request a block.

7. Right to block

You have the right to request the operator to restrict (block) processing if one of the following conditions is met: (a) You dispute the accuracy of your personal data for a period that allows the operator to check the accuracy of this data; (b) the processing is unlawful and you refuse the deletion of your data and instead request that the use of the data be restricted; (c) the operator no longer needs the personal data for the purposes of processing, but you need them to assert, exercise or defend legal claims or (d) you have objected to the processing as long as it has not yet been established whether the legitimate reasons of the operator outweigh yours; There is no need to weigh up legitimate reasons in the event of an objection to processing for the purposes of direct advertising.

If processing has been restricted, your personal data - apart from storage - may only be processed with your consent or to assert, exercise or defend legal claims or to protect the rights of another person or for reasons of important public interest. If you have obtained a restriction on processing, you will be informed by the operator before the restriction is lifted.

8. Right to data portability

You have the right to receive your personal data that you have provided to the operator in a structured, common and machine-readable format, and you have the right to transfer this data to another person responsible without hindrance from the operator, provided that the processing is based on Your consent or on a contract between you and the operator and the processing is carried out using automated procedures. In this respect, you have the right to have your personal data transmitted directly from the operator to another person responsible, as far as this is technically feasible and the rights and freedoms of other people are not impaired. Your right to delete remains unaffected. This right does not apply to processing that is necessary for the performance of a task that is in the public interest.

9. Other

The operator will notify all recipients to whom your data has been disclosed of any correction or deletion of your personal data or restriction of processing, unless this proves to be impossible or involves a disproportionate effort. The operator will inform you about such recipients if you request this.

If the operator has made the personal data public and is obliged to delete it, he will take appropriate measures, taking into account the available technology and the implementation costs, to inform third parties who are processing your personal data that you want to delete all links to have requested this data or copies of the data.

IV. Final remarks

1. Legal bases

The legal regulations for data protection can be found in the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG). From May 25, 2018, however, the General Data Protection Regulation (GDPR) will take precedence. If you have given your express consent to the processing of your data, this is also the legal basis for the data processing for the purposes for which you have consented (Art. 6 Paragraph 1 Letter a GDPR). Insofar as the processing is necessary for the fulfillment or initiation of a contract, this forms the legal basis (Art. 6 Paragraph 1 Letter b GDPR). These are usage contracts that are concluded between you and the operator or that are initiated upon your request. In addition, the legal basis for data processing is the safeguarding of the legitimate interests of the operator (Art. 6 Paragraph Letter f GDPR). This concerns the economic interest in the operation of the platform, in particular in the delivery of target group and interest-based advertising. There is no automated decision-making including profiling within the meaning of Art. 22 GDPR. In particular, the assignment to advertising features has no legal effect on you or significantly affects you in a similar way.

2. Protective measures

Taking into account the type, scope, circumstances and purposes of the processing as well as the different probability of occurrence and severity of the risks for your rights and freedoms, the operator uses suitable technical and organizational measures to ensure that the data processing is carried out in accordance with the statutory provisions he follows. The measures are taken taking into account the state of the art and include, in particular, encryption of your data. The plants and systems on which the data is processed are protected against unauthorized access, both physically and digitally. In particular, the operator's servers are password-protected. Through regular tests and updates of the software used, the operator prevents security gaps that could allow your data to be misused. Only those persons subordinate to the operator (employees) who need this for the performance of their tasks are given access to personal data, and only to the extent necessary in each case. The operator's employees are instructed in data processing in advance and are obliged to maintain confidentiality. Regular backups protect the data from loss and can be restored at any time. The default setting of the systems ensures that only personal data whose processing is necessary for the respective processing purpose is processed. This implements the data protection principles such as data minimization. In addition, the operator uses technical and organizational measures to ensure the confidentiality, integrity, availability and resilience of the systems. Compliance with data protection regulations is checked regularly and the measures updated if necessary.

 

USE OF GOOGLE ANALYTICS

We use Google Analytics, a web analysis service provided by Google LLC (“Google”), on the basis of your consent in accordance with Article 6 (1) (a), Article 7 GDPR. Google uses cookies. The information generated by the cookie about the use of the online offer by the user is usually transmitted to a Google server in the USA and stored there.

Google is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

Google will use this information on our behalf to evaluate the use of our online offer by users, to compile reports on the activities within this online offer and to provide us with other services related to the use of this online offer and the internet. In doing so, pseudonymous user profiles can be created from the processed data.

We only use Google Analytics with activated IP anonymization. This means that the IP address of the user is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. The full IP address will only be transmitted to a Google server in the USA and shortened there in exceptional cases.

The IP address transmitted by the user's browser will not be merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; Users can also prevent Google from collecting the data generated by the cookie and relating to their use of the online offer and from processing this data by downloading and installing the browser plug-in available under the following link: http: // tools .google.com / dlpage / gaoptout? hl = de.

You can find more information on the use of data by Google, setting and objection options in Google's data protection declaration (https://policies.google.com/technologies/ads) and in the settings for the display of advertisements by Google (https: // adssettings.google.com/authenticated).

The personal data of the users will be deleted or anonymized after 14 months.

USE OF THE ADEX

On the basis of your consent in accordance with Article 6 Paragraph 1 lit. . You can adjust the settings for collection and use in your cookie settings or under the following link: http://de.theadex.com/company/consumer-opt-out/#opt-in-out