PRIVACY POLICY

CONTENT

1. Who is responsible for this website?
2. What is it about?
3. How is your data processed when you visit this website?
4. Who receives your data?
5. When will your data be deleted?
6. Will your data be transferred to a third country or an international organisation?
7. Is your data used for automated decision-making or profiling?
8. Data protection information in the application process
9. What rights do you have when it comes to the processing of your data?
10. Amendment and updating of the data protection notice
    
    

1. Who is responsible for this website?

SeedForward GmbH
Averdiekstr. 4
D-49078 Osnabrueck
E-Mail: info[at]seedforward.de
Imprint: www.seedforward.com/de/imprint

(hereinafter also referred to as "SeedForward GmbH" or "we")

We are not legally obliged to appoint a data protection officer. If you have any questions regarding data protection or the protection of your data by SeedForward GmbH, please contact us at any time:
E-Mail: datenschutz[at]seedforward.de

2. What is it about?

When we process personal data, this means that we collect, store, transmit, delete or use it otherwise. Personal data refers to information about natural persons who inform themselves about the offers and services of SeedForward GmbH on this website.

If you are a customer, interested party, employee, supplier or applicant of SeedForward GmbH, your data will also be processed by us in the context of your business relationship with us or your legitimate interest in providing feedback. You can find information on this in the notes on handling your personal data.

Below you will find an overview of which data SeedForward GmbH processes when you visit this website and for what purpose. Information on the handling of your data on the social media offers of SeedForward GmbH can be found in the data protection information for social media.

3. How is your data processed when you visit this website?

3.1 Data required to display the website and to ensure its stability and security.

When using the website for information purposes only, the following technically necessary data are processed:

• IP address of the user
• browser used (type, version, language)
• operating system used
• internet service provider of the user
• date and time of access to our websites
• files accessed on our website
• the website from which the user has accessed our website
• website that the user accesses via our website.

The processing of the data is carried out for the implementation of pre-contractual measures or for the fulfilment of the contract in accordance with Art. 6 (1) sentence 1 lit. b GDPR. In addition, the processing of the data may also be carried out to protect the legitimate interests of SeedForward GmbH based on a balancing of interests pursuant to Art. 6 (1) sentence 1 lit. f GDPR. In the event of unlawful use of this website, this data also serves to clarify any possible infringements.

SeedForward GmbH also evaluates this information for statistical purposes and to improve this website without forming personal user profiles.

3.2 Use of cookies

We use cookies in several places on our websites. When a user visits one of our websites, a cookie may be stored on the user's operating system. A cookie contains a characteristic string of characters that enables the browser to be uniquely identified when our web pages are called up again. The following data is stored and transmitted in the cookies:

• Language settings
• Log-in information.

The purpose of the use of cookies is the user-friendly design of our websites. The processing of personal data using cookies is based on Art. 6 para. 1 lit. f GDPR. Cookies are stored on the user's computer and transmitted to our websites. Users can deactivate or restrict the transmission of cookies by changing the settings of their internet browser. Cookies that have already been stored can be deleted at any time. If cookies are deactivated for our websites, it may no longer be possible to use all the functions of our websites to their full extent.

What are cookies?

Cookies and similar technologies are very small text documents or pieces of code that often contain a unique identification code. When you visit a website or use a mobile application, a computer asks your computer or mobile device for permission to store this file on your computer or mobile device and access information. Information collected through cookies and similar technologies may include the date and time of your visit and how you use a particular website or mobile application.

Why do we use cookies?

Cookies ensure that you remain logged in during your visit to our online shop, that all items in your shopping cart remain saved, that you can shop safely and that the website continues to function smoothly. The cookies also ensure that we can see how our website is used and how we can improve it. In addition, depending on your preferences, our own cookies may be used to present you with targeted advertising that matches your personal interests.

What kind of cookies do we use?

Necessary cookies

These cookies are necessary for the website to function properly. Some of the following actions can be performed with these cookies.- Save items in a shopping cart for online purchases - Save your cookie settings for this website - Save language settings - Log in to our portal. We need to check that you are logged in.

Performance cookies

These cookies are used to collect statistical information about the use of our website, also called analytics cookies. We use this data to improve performance and optimise the website.

Advertising / tracking cookies

These cookies are set by external advertising partners and are used to profile and track data across multiple websites. If you accept these cookies, we may display our advertising on other websites based on your user profile and preferences. These cookies also store data about how many visitors have seen or clicked on our ads in order to optimise advertising campaigns.

How can I turn off or remove cookies?

You can opt out of all cookies except the necessary ones. In the browser settings, you can change the settings to block cookies. In most browsers, you will find an explanation of how to do this in the so-called "help function". However, if you block cookies, you may not be able to use all the technical features of our website and this may have a negative impact on your user experience.

The cookies we use on our website are: www.seedforward.com/cookies

3.3 E-mail contact

On our websites, it is possible to contact us via the e-mail addresses provided on the websites. In this case, the personal data of the user transmitted with the e-mail will be stored by us. The legal basis for processing the data is Art. 6 para. 1 lit. f GDPR. If the purpose of the contact is to conclude a contract, the legal basis is Art. 6 para. 1 lit. b GDPR.

The data is used exclusively for processing the contact and the subsequent communication. In this context, the data will not be passed on to third parties. The personal data sent by e-mail will be deleted when the respective communication with the user has ended, i.e. as soon as it is clear from the circumstances that the matter concerned has been conclusively clarified.

3.4 External hosting

This website is hosted by an external service provider (hoster). The personal data collected on this website is stored on the hoster's servers. This may include, but is not limited to, IP addresses, contact requests, meta and communication data, contractual data, contact details, names, website accesses and other data generated via a website.

The hoster is used for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f GDPR).

Our hoster will only process your data insofar as this is necessary for the fulfilment of its service obligations and follow our instructions regarding this data.

We use the following hoster:

Hetzner Online GmbH
Industriestr. 25
91710 Gunzenhausen

We have concluded a contract on order processing (AVV) with the above-mentioned provider. This is a contract required by data protection law, which ensures that this provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

3.5 Newsletter

CleverReach

This website uses CleverReach to send newsletters. The provider is CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede. CleverReach is a service with which the newsletter dispatch can be organised and analysed. The data you enter for the purpose of receiving the newsletter (e.g. e-mail address) is stored on CleverReach's servers in Germany or Ireland. Our newsletters sent with CleverReach enable us to analyse the behaviour of the newsletter recipients. Among other things, we can analyse how many recipients have opened the newsletter and how often which link in the newsletter was clicked. With the help of so-called conversion tracking, it can also be analysed whether a predefined action (e.g. purchase of a product on our website) has taken place after clicking on the link in the newsletter. For more information on data analysis through CleverReach newsletters, please visit: https://www.cleverreach.com/de/funktionen/reporting-und-tracking/.

The data processing is based on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation. If you do not want any analysis by CleverReach, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in each newsletter. Furthermore, you can also unsubscribe directly on the website.

The data you provide us with for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the servers of CleverReach after you unsubscribe from the newsletter. Data stored by us for other purposes (e.g. e-mail addresses for the member area) remain unaffected by this. For more details, please refer to the data protection provisions of CleverReach at: https://www.cleverreach.com/de/datenschutz/.

We have concluded an order processing agreement (AVV) with the above-mentioned provider. This is a contract required by data protection law, which ensures that the provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

3.6 Information applications from other providers

Microsoft Cloud Services

The cloud and cloud software services offered by Microsoft (so-called Software as a Service, e.g. Microsoft Office) are used for document storage and administration, calendar management, e-mailing, spreadsheets and presentations, exchanging documents, content and information with specific recipients or publishing web pages, forms or other content and information as well as chats and participation in audio and video conferences. In this context, master data and contact data of users, data on transactions, contracts, other processes and their contents are processed. Microsoft also processes usage data and metadata, which are used by Microsoft for security purposes and service optimisation. Information about our privacy policy for video conferencing via Microsoft Teams is available here.

When using publicly available documents, web pages or other content, Microsoft may store cookies on users' computers for web analytics purposes or to remember users' preferences.

We use the Microsoft cloud services based on our legitimate interests in accordance with Art. 6 (1) f GDPR in efficient and secure administration and collaboration processes. Furthermore, the processing is carried out based on an order processing agreement with Microsoft.

For further information, please refer to the Microsoft data protection declaration (https://privacy.microsoft.com/de-de/privacystatement) and the security information on Microsoft cloud services (https://www.microsoft.com/de-de/trustcenter). You can object to the processing of your data in the Microsoft Cloud in accordance with the legal requirements. In addition, the deletion of data within Microsoft's cloud services is determined by the other processing processes in which the data is processed (e.g. deletion of data no longer required for contractual purposes or storage of data required for taxation purposes).

The Microsoft Cloud Services are provided by Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399 USA. Insofar as processing of data takes place in the USA, we refer to Microsoft's certification under the Privacy Shield (https://www.privacyshield.gov/participant?id=a2zt0000000KzNaAAK&status=Active).

Google Tag Manager

We use the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

The Google Tag Manager is a tool that enables us to integrate tracking or statistical tools and other technologies on our website. The Google Tag Manager itself does not create user profiles, does not store cookies and does not perform any independent analyses. It only serves to manage and play out the tools integrated via it. The Google Tag Manager does, however, record your IP address, which may also be transmitted to Google's parent company in the United States.

The use of the Google Tag Manager is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in a quick and uncomplicated integration and management of various tools on his website. Insofar as a corresponding consent has been requested, the processing is carried out exclusively based on Art. 6 para. 1 lit. a GDPR; the consent can be revoked at any time.

Google Analytics

Our websites use Google Analytics, a software for the statistical evaluation of user accesses by Google Inc. With the web analysis, we aim to improve the quality of our websites and their contents. Google Analytics uses cookies (see above) to analyse the use of our website. The use of this analysis tool is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in analysing user behaviour in order to optimise both its website and its advertising. If a corresponding consent has been requested (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; the consent can be revoked at any time. The web analysis can be technically prevented by the user of the website by deactivating JavaScript and cookies in his/her web browser. Details of the settings required for this can be found in the product descriptions or instructions of the various browser providers. Data processing by Google can also be prevented by the user using a browser add-on to deactivate Google Analytics. Further information and the add-on can be found at https://tools.google.com/dlpage/gaoptout?hl=de.

Further information on the terms of use and data protection of Google Analytics can be found at https://www.google.com/analytics/terms/de.html and https://www.google.de/intl/de/policies/.

Google Web Fonts

This site uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.

For this purpose, the browser you use must connect to Google's servers. This informs Google that your IP address has been used to access this website. The use of Google Web Fonts is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the uniform presentation of the typeface on his website. If a corresponding consent has been requested (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; the consent can be revoked at any time.

If your browser does not support web fonts, a standard font from your computer will be used.

Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google's privacy policy: https://policies.google.com/privacy?hl=de.

Google Ads

The website operator uses Google Ads. Google Ads is an online advertising programme of Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Ads enables us to display advertisements in the Google search engine or on third-party websites when the user enters certain search terms on Google (keyword targeting). Furthermore, targeted advertisements can be displayed on the basis of the user data available at Google (e.g. location data and interests) (target group targeting). As the website operator, we can evaluate this data quantitatively by analysing, for example, which search terms have led to the display of our advertisements and how many advertisements have led to corresponding clicks.

The use of Google Ads is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in marketing its service products as effectively as possible.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://policies.google.com/privacy/frameworks and https://privacy.google.com/businesses/controllerterms/mccs/.

Hotjar

This website uses Hotjar. The provider is Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe (website: https://www.hotjar.com).
Hotjar is a tool for analyzing your user behavior on this website. Hotjar allows us to record your mouse and scroll movements and clicks, among other things. Hotjar can also determine how long you remain with the mouse pointer in a certain place. Hotjar uses this information to create so-called heat maps, which can be used to determine which areas of the website visitors prefer to look at.
We can also determine how long you stayed on a page and when you left it. We can also determine at which point you abandoned your entries in a contact form (so-called conversion funnels).
In addition, Hotjar can be used to obtain direct feedback from website visitors. This function serves to improve the website operator's web offerings.
Hotjar uses technologies that enable the recognition of the user for the purpose of analyzing user behavior (e.g. cookies or the use of device fingerprinting).
Insofar as consent has been obtained, the use of the aforementioned service is based exclusively on Art. 6 para. 1 lit. a GDPR and § 25 TTDSG. Consent can be revoked at any time. If no consent has been obtained, this service is used on the basis of Art. 6 para. 1 lit. f GDPR; the website operator has a legitimate interest in analyzing user behavior in order to optimize both its website and its advertising.

Deactivating Hotjar
If you wish to deactivate data collection by Hotjar, click on the following link and follow the instructions there: https://www.hotjar.com/policies/do-not-track/
Please note that Hotjar must be deactivated separately for each browser or end device.
For more information about Hotjar and the data collected, please refer to Hotjar's privacy policy at the following link: https://www.hotjar.com/privacy

Order processing
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is a contract prescribed by data protection law, which ensures that it processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

Facebook Pixel

This website uses the visitor action pixel from Facebook to measure conversions. The provider of this service is Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. However, according to Facebook, the data collected is also transferred to the USA and other third countries.

In this way, the behaviour of page visitors can be tracked after they have been redirected to the provider's website by clicking on a Facebook ad. This allows the effectiveness of the Facebook ads to be evaluated for statistical and market research purposes and future advertising measures to be optimised.

The data collected is anonymous for us as the operator of this website; we cannot draw any conclusions about the identity of the user. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes in accordance with the Facebook data usage policy. This enables Facebook to display advertisements on Facebook pages as well as outside of Facebook. This use of the data cannot be influenced by us as site operator.

The use of Facebook Pixel is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in effective advertising measures including social media. If a corresponding consent has been requested (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; the consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381.

Insofar as personal data is collected on our website with the help of the tool described here and forwarded to Facebook, we and Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland are jointly responsible for this data processing (Art. 26 GDPR). The joint responsibility is limited exclusively to the collection of the data and its forwarding to Facebook. The processing by Facebook that takes place after the forwarding is not part of the joint responsibility. The obligations incumbent on us jointly have been set out in a joint processing agreement. The text of the agreement can be found at: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing the data protection information when using the Facebook tool and for the data protection-secure implementation of the tool on our website. Facebook is responsible for the data security of the Facebook products. You can assert data subject rights (e.g. requests for information) regarding the data processed by Facebook directly with Facebook. If you assert the data subject rights with us, we are obliged to forward them to Facebook.

You can find more information about protecting your privacy in Facebook's privacy policy: https://de-de.facebook.com/about/privacy/.

You can also deactivate the "Custom Audiences" remarketing function in the ad settings section at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. To do this, you must be logged in to Facebook.

If you do not have a Facebook account, you can disable usage-based advertising from Facebook on the European Interactive Digital Advertising Alliance website: http://www.youronlinechoices.com/de/praferenzmanagement/.

YouTube

We integrate the videos of the "YouTube" platform of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, or Google Ireland Limited, Gordon House, Barrow Street Dublin 4, Ireland.

When you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, YouTube enables you to assign your surfing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account.

Further information on the handling of user data can be found in the YouTube data protection declaration (https://policies.google.com/privacy).

The use of YouTube is based on Art. 6 para. 1 lit. a GDPR.

You can find an opt-out option in our cookie declaration.

4. Who receives your data?

Data will only be passed on to third parties if you have given your consent or if there is a legal obligation to do so.

Under these conditions, recipients of personal data may in particular be:

• law enforcement authorities
• other companies of SeedForward GmbH

Commissioned service providers may also receive such data if they fulfil the special confidentiality requirements of SeedForward GmbH. These may be companies in the categories of IT services, consulting as well as sales and marketing. Appropriate data protection agreements are then made with the service providers.

5. When will your data be deleted?

Data will only be passed on to third parties if you have given your consent or if there is a legal obligation to do so.

If the data mentioned in this information is no longer required for the original purpose, it will be deleted. Something else only applies if their - temporary - further processing is necessary for other purposes.

If a different storage period is defined for certain services, you will find this in the description of the respective service.

6. Will your data be transferred to a third country or an international organisation?

As a matter of principle, data that SeedForward GmbH receives through visits to this website will not be transmitted to international organisations or to third countries (states outside the European Economic Area - EEA). Insofar as SeedForward GmbH uses analysis services, you will find the explanations above under section 3.2 Use of cookies.

7. Is your data used for automated decision-making or profiling?

Data from your visit to this website will not be used for automated decision-making within the meaning of Art. 22 GDPR.

8. Data protection information in the application procedure

We process applicant data only for the purpose of and within the scope of the application procedure in accordance with the legal requirements. Applicant data is processed to fulfil our (pre)contractual obligations within the scope of the application procedure in accordance with Art. 6 (1) lit. b. GDPR Art. 6 para. 1 lit. f. GDPR insofar as the data processing becomes necessary for us, e.g. within the scope of legal procedures (in Germany, § 26 BDSG also applies).

The application procedure requires applicants to provide us with applicant data. The necessary applicant data results from the job descriptions - in principle, this includes personal details, postal and contact addresses and the documents belonging to the application, such as cover letter, CV and certificates. In addition, applicants may voluntarily provide us with additional information.

By submitting their application to us, applicants consent to the processing of their data for the purposes of the application process, in accordance with the type and scope set out in this data protection information. Insofar as special categories of personal data within the meaning of Art. 9 (1) GDPR are voluntarily disclosed within the scope of the application procedure, their processing is additionally carried out in accordance with Art. 9 (2) lit. b GDPR (e.g. health data, such as severely disabled status or ethnic origin). Insofar as special categories of personal data within the meaning of Art. 9 (1) GDPR are requested from applicants as part of the application process, their processing is additionally carried out in accordance with Art. 9 (2) a GDPR (e.g. health data if this is necessary for the exercise of the profession).

If the applicant sends the application by e-mail, please note that e-mails are generally not encrypted, and applicants must ensure encryption themselves. We can therefore accept no responsibility for the transmission path of the application between the sender and receipt on our server.

The data provided by applicants may, in the event of a successful application, be further processed by us for the purposes of the employment relationship. Otherwise, if the application for a job offer is unsuccessful, the general statutory retention and deletion periods apply. We delete the data within the scope of the application procedure, subject to a justified revocation by the applicants, in accordance with the relevant legal provisions after completion of the respective job filling procedure. Access and use of the personal data by our company is then no longer possible.

9. What rights do you have when it comes to the processing of your data?

You have the following rights vis-à-vis SeedForward GmbH regarding the personal data concerning you:

Right to information
Right to correction or deletion
Right to restriction of processing
Right to data portability
Right to revoke consent given

9.1 Information about your right to object according to Art. 21 GDPR

Individual right of objection

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data relating to you which is carried out on the basis of Article 6(1) sentence 1 lit. e GDPR (data processing in the public interest) and Article 6(1) sentence 1 lit. f GDPR (data processing on the basis of a balance of interests); this also applies to profiling based on this provision within the meaning of Article 4 No. 4 GDPR.

If you object, your personal data will no longer be processed by SeedForward GmbH. Unless SeedForward GmbH can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms. Or the processing serves the assertion, exercise or defence of legal claims.

Objection to the processing of your data for direct marketing purposes

In individual cases, SeedForward GmbH processes your personal data for direct advertising. You have the right to object at any time to the processing of personal data concerning you for the purposes of such advertising; this also applies to profiling, insofar as it is associated with such direct advertising.

If you object to processing for direct marketing purposes, SeedForward GmbH will no longer process your personal data for these purposes.

The objection can be made form-free and should preferably be addressed to:

SeedForward GmbH
Averdiekstr. 4
D- 49078 Osnabrueck
E-mail: info[at]seedforward.de

In connection with the processing of your personal data, you also have the right to lodge a complaint with a supervisory authority for data protection:

The State Commissioner for Data Protection of Lower Saxony
Prinzenstraße 5
30159 Hanover
Telephone: +49 (0)511 120-450
E-mail: poststelle@lfd.niedersachsen.de

10. Amendment and updating of the data protection information

We ask you to regularly inform yourself about the content of our data protection information. We adapt the data protection information as soon as changes to the data processing carried out by us make this necessary. We will inform you as soon as the changes require your cooperation (e.g. consent) or other individual notification.

If we provide addresses and contact information of companies and organisations in this data protection information, please note that the addresses may change over time and please check the information before contacting us.

As of April 2023