Data Protection Notice
Protecting your informational self-determination and privacy is an important concern for us, EQS Group AG, Karlstr. 47, 80333 Munich, Germany. That is why we collect, process and use personal data exclusively in accordance with the applicable laws on data protection and data security. The following disclosures are provided for your information. Please note that the website of the EQS Group may contain links to other providers’ websites to which this Data protection Notice does not extend.
This Data protection Notice does not apply to data or other content that we process, store or host in EQS Group systems as part of the provision of EQS Group offers to our customers. This is subject to the respective privacy notice of our customers.
1. Websites and cookies
a) The following data are always collected and processed when you visit our website, as these are necessary for the operation of our website:
When you visit our websites, we collect and process your personal data on the basis of our legitimate interest for the following purposes:
b) The following data will be collected and processed during your visit to our website, should you have consented to the use of Marketing cookies:
If you consent to the use of Marketing cookies, we collect and process your personal data when you visit our website for the following purposes:
c) The following data will be collected and processed during your visit to our website, should you have consented to the use of statistical cookies:
If you consent to the use of statistical cookies, we collect and process your personal data when you visit our website for the following purposes:
2. Contact forms / newsletter
We collect and process personal data whenever you submit a request to us or otherwise contact us, for example in the context of white papers, newsletters, email marketing, news service, event reminders or webinars. The data you provide us includes:
We collect and process these data for the purposes for which you provide them to us.
We also use the data for direct marketing, provided that you have given us separate consent for this purpose, or the authorization stems from an existing contractual relationship or the initiation of such a relationship. You can object to the direct marketing measures at any time.
3. Services or other performance by the EQS Group
We collect and process such personal data provided as are necessary when initiating, or as part of, providing you with a service or other performance. The data you provide us includes:
Your personal data are collected and processed in order to initiate and fulfill contractual obligations, and in the event we have a legitimate interest in the use of your personal data, such as
4. Web beacons and tracking
a) We use web beacons (also referred to as “tracking pixels”) in our email correspondence in relation to Webinars, events and resources only with your express consent.
For example, we may place web beacons in marketing e-mails to provide us with an idea of when you open our e-mail or click a link in the e-mail that redirects you to one of our websites.
The collected data is aggregated and analyzed for the purpose of optimizing our email communication and determining the effectiveness and reach of marketing campaigns by individually measuring, storing and evaluating open and click rates in recipient profiles.
You can revoke your consent to the use of this technology with future effect at any time. Furthermore you have the possibility to prevent our use of this technology by prohibiting HTML emails in the settings of your email client.
b) On our websites we use web beacons (also called tracking pixels) only with your express consent.
Through the tracking used on our websites, contacts you have with advertisements displayed on other websites (visual contacts and clicks on advertising banners) or with our emails are put in relation to interactions on our website.
The data collected is merged and evaluated for the purpose of optimizing and operating our online services, our website, and email communication, as well as for determining the effectiveness of marketing campaigns.
c) For technical implementation we work with the following service providers
(3) We use Universal Event Tracking (UET) through Microsoft Advertising (formerly Bing Ads) from the Microsoft Ireland Operations Ltd., One Microsoft Place, South County Business Park. Leopardstown, Dublin 18, Ireland on our website. With UET, Microsoft saves a cookie in your browser to allow analysis of how our online offering is used.
This only happens if you reach our website via an ad from Microsoft Advertising. This indicates to us and Microsoft that someone clicked on an ad, was directed to our online offering and visited a previously specified web page (a process called conversion measurement). Your web request, IP address, browser type, browser language, the date and time of the request, and one or more cookies that may uniquely identify the browser are collected and processed.
The use of Microsoft Advertising requires your consent. The legal basis for this is Art. 6(1)(a) GDPR. You can withdraw your consent at any time by deactivating conversion tracking in the data protection settings.
More information about data protection at Microsoft can be found in Microsoft’s privacy statement at https://privacy.microsoft.com/en-gb/privacystatement.
We work with some advertising partners on the use of what is referred to as “re-targeting technology.” Under this technology, cookies from these partner companies (also known as “third-party cookies”) are also stored on your hard drive when you visit our website, if you have consented to the use of Marketing cookies.
b) Twitter Website Tag from Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA (“Twitter”). For privacy matters outside of the United States, Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland, is responsible. The Twitter Website Tag puts a cookie in the browser, which is matched against the Twitter database to create anonymous user segments and enable retargeting. You can opt out of Twitter retargeting in your Twitter settings. You can find the Twitter Privacy Statement here: https://twitter.com/privacy
c) “Custom Audiences” from Facebook Inc. 1 Hacker Way, Menlo Park, CA 94025, USA (“Facebook”). If you have your habitual residence outside the USA or Canada, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland is the data controller. This function is used to show interest-related advertisements (“Facebook Ads”) to visitors to this website as part of their visit to the Facebook social network. For this purpose, the Facebook remarketing tag was implemented on this website. This tag establishes a direct connection to the Facebook servers when you visit the website. The Facebook server is notified that you have visited this website and Facebook assigns this information to your personal Facebook user account. Therefore, if you do not want this information to be associated with your Facebook account, please log out of Facebook before visiting our site and delete the cookies from your browser. For more information about Facebook’s collection and use of this information and your rights and choices about protecting your privacy, please see Facebook’s Privacy Notice at www.facebook.com/about/privacy/. Alternatively, you can disable the remarketing feature “Custom Audiences” at www.facebook.com/settings/
To do this, you must be logged in to Facebook. In addition, various applications are available that make it possible to suppress data transmission to Facebook. Such applications can be used by you to suppress data transmission to Facebook.
d) Remarketing or “Affinity Audience” function and the “Google Ads” advertising program and, in this context, conversion tracking (visitor activity analysis) of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; (“Google”). If you are habitually resident in the European Economic Area or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the data controller.
(2) The “Google Ads” advertising program and, in this context, conversion tracking (visitor activity analysis) is used to compile conversion statistics. These statistics tell us the total number of users who have clicked on one of our ads and been redirected to a page with a conversion tracking tag. When you click on an ad served by Google, a conversion tracking cookie is placed on your computer. These cookies are of limited validity, do not contain any personally identifiable information, and are therefore not used to personally identify you. If you visit certain pages on our site and the cookie hasn’t expired, Google and we can tell that you clicked on the ad and were redirected to that page. Each Google Ads customer receives a different cookie. As a result, there is no way that cookies can be tracked across the sites of ads customers. Google receives personal data, including your IP address. However, we do not receive any information that personally identifies users. Your information may be transferred to the USA. You can revoke your consent for the future at any time. To do so, go to https://www.google.de/settings/ads from each of your internet browser that you use and make the desired settings there. You can find further information and the Google data protection declaration at https://www.google.de/policies/privacy/.
6. Google Fonts
In our website, we use Google Fonts to display external fonts; this establishes a connection to the Google server in the USA when our website is accessed. This is a service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 (hereinafter referred to as “Google”). If you are habitually resident in the European Economic Area or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the data controller. Accessing our website establishes a connection to Google from which Google can identify the website from which your request has been sent and the IP address to which the fonts are to be transmitted for display. The legal basis for the processing of the IP address is our legitimate interest in optimizing and economically operating our website.
By concluded Standard Contractual Clauses approved by the EU Commission with Google,” Google agrees to comply with privacy regulations of the EU are also followed when data are processed in the US.
7. YouTube Videos
8. Fulfillment of legal obligations
We will also process personal data if there is a legal obligation to do so. We are subject to a variety of legal obligations. In order to comply with these obligations, we process your data to the extent necessary and, where indicated, pass these along to the responsible authorities within the framework of statutory reporting obligations. If necessary, we also process your data in the event of a legal dispute, if the legal dispute requires the processing of your data.
9. We protect your personal data
The EQS Group uses technical and organizational security measures to protect your data against manipulation, loss, destruction or access by unauthorized persons. These security measures are continuously improved in keeping with technological progress. This includes, for example, access authorizations, authentications, audits, controls, alarm messages, data storage and backups, transmission standards and environmental integrity. For EQS Group employees, there is a Code of Conduct that obliges them to comply with the principles of data protection and data security.
10. How long we keep your information
We will only retain your data for as long as necessary for the purposes for which we process your data. If we process data for multiple purposes, they will automatically be deleted or stored in a format that does not permit direct conclusions to be drawn about you once the last specific purpose has been fulfilled.
11. Whom do we provide with international access to your data, and how do we protect these data in the process?
The EQS Group is a global company. Personal data are processed by employees, by Group companies and by service providers commissioned by us, preferably within the EU. Should data be processed in countries outside the EU, we use suitable measures (e.g. EU standard contractual clauses including appropriate technical and organizational measures) to ensure that your personal data are processed in accordance with European-level data protections.
12. Privacy Notice for Shareholders
Our Privacy Notice for Shareholders provides a clear summary of all of the information around the processing of the personal data of our shareholders. This information is available here for download.
13. Contacting us, your privacy rights and your right to lodge a complaint with the data protection authority
If you have granted consent to our processing of your personal data, you have the right to withdraw your consent at any time. The lawfulness of the processing of your personal data up until this withdrawal is not affected by the withdrawal. Further processing of this data under a different basis in law, for example to fulfill legal obligations, remains unaffected as well.
Do you have any further questions or comments on the subject of data protection, particularly as concerns information on the data stored about you? Do you want information about your data, the data we have stored, or to check, amend or delete your data? You want to limit our processing of your data or object to it? Then contact the EQS Group Data Protection Officer at firstname.lastname@example.org
We take your concerns and rights very seriously. However, if you believe that we have not adequately addressed your complaints or concerns, you have the right to file a complaint with a competent data protection authority.