PRIVACY PROTECTION
Privacy policy
Thank you for your interest in our website. The protection of your personal data is important to us. In the following, you will find information regarding the handling of your personal data, which is collected using our website. Your data will be processed in accordance with the legal regulations on data protection.
Information about us as the responsible party
Responsible provider of this website in accordance with data protection law is:
TRENDONE GmbH
Gasstraße 2
22761 Hamburg
040 526 778 0
info(at)trendone(dot)com
Contact details of the data protection officer
PROLIANCE GmbH / www.datenschutzexperte.de
Leopoldstr. 21
80802 München
datenschutzbeauftragter(at)datenschutzexperte(dot)de
Please name the company to which your inquiry relates when contacting the data protection officer. Please do not attach sensitive information, such as a copy of an ID card, to your request.
Definitions
Our privacy policy should be simple and understandable for everyone. The privacy policy generally uses the official terms of the General Data Protection Regulation (GDPR). The official definitions are explained in Art. 4 GDPR.
Information on data processing
Access to and storage of information in end devices
By using our website, information (e.g. IP address) may be accessed or information (e.g. cookies) may be stored in your end devices. This access or storage may involve further processing of personal data within the meaning of the GDPR.
In cases where such access to or storage of information is necessary for the technically error-free provision of our services, this is done based on Art. 25 Para. 1 S. 1, Para. 2 No. 2 TTDSG.
In cases where such a process serves other purposes (e.g. the needs-based design of our website), this will only be carried out based on Art. 25 Para. 1 TTDSG with your consent in accordance with Art. 6 Para. 1 lit. a GDPR. The consent can be revoked at any time for the future. The provisions of the GDPR and the German Federal Data Protection Act (BDSG) apply to the processing of your personal data.
Further information regarding the processing of your personal data and the relevant legal basis in this context can be found in the following sections on the specific processing activities on our website.
Web hosting
This website is hosted by an external service provider. The hosting of this website takes place in Espelkamp. Personal data collected on this website is stored on the hoster's servers. This may include IP addresses, meta and communication data, website accesses and other data generated via a website.
We collect the listed data to ensure a smooth connection of the website and a technically error-free provision of our services. The processing of this data is necessary to provide you with the website. The legal basis for the processing of the data is our legitimate interest in the correct presentation and functionality of our website in accordance with Art. 6 (1) lit. f GDPR.
We have concluded a data processing agreement with the provider in accordance with the provisions of Art. 28 GDPR, in which we obligate the provider to protect the data of our customers and not to disclose it to third parties.
Data processing by visiting our website (server log files)
When you visit our website, it is technically necessary for data to be transmitted to our web server via your internet browser. The following data is recorded during an ongoing connection for communication between your internet browser and our web server:
- Visited domain
- Date and time of the request
- Page from which the file was requested
- Access status (file transferred, file not found, etc.)
- Web browser and operating system used
- IP address of the requesting computer
- Amount of data transferred
We collect this data to ensure a smooth connection with the website and to enable a comfortable use of our website by the users. In addition, the log file is used to evaluate system security and stability as well as for administrative purposes. The legal basis for the temporary storage of the data or the log files is Art. 6 para. 1 lit. f GDPR.
For reasons of technical security, to defend our web server against potential attacks, we store this data for a short period of time. After 60 days of storage at the latest, the data is anonymized by shortening the IP address so that it is no longer possible to establish a link to the individual user.
The data is also processed anonymously for statistical purposes. This data is never stored together with other personal data of the user or compared with other data.
Cookies
Our website uses so-called "cookies". Cookies are small text files that are stored either temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your terminal device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your terminal device until you delete them yourself or until they are automatically deleted by your web browser.
Cookies have several functions. Many cookies are technically necessary, as some website functions would not work without them (e.g. the language settings). Other cookies are used to evaluate user behavior or to display advertising.
Technically necessary cookies are stored on the legal basis of Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in storing cookies for the technically error-free and optimized provision of our services. Other cookies are only stored with your consent on the legal basis of Art. 6 para. 1 lit. a GDPR. Your consent can be revoked at any time for the future. The legal basis may also arise from Art. 6 (1) lit. b GDPR, if the processing is necessary for the performance of a contract to which the data subject is a party, or for the performance of pre-contractual measures that are carried out at the request of the data subject.
Insofar as cookies are used for analysis purposes, we will inform you separately about this within this privacy policy and we will ask for your consent.
You can set your browser so that you will
- be informed about the setting of cookies,
- allow cookies only in individual cases,
- exclude the acceptance of cookies for certain cases or in general,
- activate the automatic deletion of cookies when closing the browser.
The cookie settings can be managed under the following links for the respective browsers:
You can also manage cookies of many companies and functions used for advertising individually. To do this, use the corresponding user tools, available at www.aboutads.info/choices/
or www.youronlinechoices.com/uk/your-ad-choices.
Most browsers also offer a do-not-track feature. When this feature is enabled, the browser tells ad networks, websites, and applications that you do not want to be tracked for behavioral advertising and similar purposes.
For information and instructions on how to edit this feature, see the links below, depending on your browser provider:
Additionally, you can prevent the loading of so-called scripts by default. "NoScript allows JavaScripts, Java and other plug-ins to run only on trusted domains of your choice. You can obtain information and instructions on how to edit this function from your browser provider (e.g. for Mozilla Firefox at: https://addons.mozilla.org/en-US/firefox/addon/noscript/).
Please note that if you disable cookies, the functionality of our website may be limited.
Change cookie settings
You can revoke or change your cookie settings at any time. To do so, call up the cookie settings again via this link.
Processing on our website
Newsletter
If you would like to receive the newsletter offered on the website with regular information about our offers and products, we require your e-mail address as mandatory data.
Additional data may be required to address you personally in the newsletter and/or to identify you if you wish to exercise your rights as a data subject.
We use the so-called double opt-in procedure for sending the newsletter. This means that we will only send you our newsletter by e-mail if you have expressly confirmed that you consent to the sending of newsletters. In the first step, you will receive an e-mail with a link that you can use to confirm that you, as the owner of the corresponding e-mail address, want to receive newsletters in the future. With the confirmation, you give us your consent pursuant to Art. 6 para. 1 lit. a GDPR that we may use your personal data for the purpose of sending the desired newsletter.
When you register for the newsletter, we store, in addition to the e-mail address required for sending, the IP address through which you registered for the newsletter, as well as the date and time of registration and confirmation, to be able to track possible misuse later. The legal basis for this is our legitimate interest according to Art. 6 para. 1 lit. f GDPR.
You can unsubscribe from the newsletter at any time via the link included in each newsletter or by sending an email to the responsible person named above. After unsubscribing, your e-mail address will be deleted immediately from our newsletter distribution list, unless you have expressly consented to the continued use of the collected data, or the continued processing is otherwise legally permitted.
Contact form and contact by e-mail
If you send us inquiries via contact form or e-mail, your data from the inquiry form or your e-mail, including the contact data you provided there, will be stored by us for processing the inquiry and for the case of follow-up questions. Under no circumstances will we pass on this data without your consent. The legal basis for the processing of the data is our legitimate interest in responding to your request in accordance with Art. 6 Para. 1 lit. f GDPR and, if applicable, Art. 6 Para. 1 lit. b GDPR if your request is aimed at concluding a contract. Your data will be deleted after your request has been processed if there are no legal obligations to retain data.
In the case of Art. 6 Para. 1 lit. f GDPR, you can object to the processing of your personal data at any time with effect for the future.
Contact form for downloading documents from our website
If you enter your data in the form for downloading documents, your data will be stored by us. You are required to provide an e-mail address and your last name, while providing your first name as well as your company, team size, cell phone number and position is voluntary. Under no circumstances will we pass on this data without your consent.
The legal basis for the processing of the data is your previously given consent in accordance with Art. 6 Para. 1 lit. a GDPR.
Your data will be deleted as soon as you request the deletion of your data. There may be legal retention periods to the contrary, after expiry of these legal retention periods, your data will be deleted.
For sending the information, we use the so-called double opt-in procedure. This means that the download of our documents is only possible if you have confirmed that you agree to receive this information. For this purpose, you will receive an e-mail with a link that you use to confirm that you, as the owner of the corresponding e-mail address, want to receive this information and documents.
Appointment booking https://www.trendmanager.com/de/
Our website provides a web form that you can use to make an appointment with us to schedule a live demo. The transmission of personal data via the web form is exclusively encrypted. If you take advantage of this option, the data entered in the input mask will be transmitted to us and stored. These data are: First and last name, e-mail address, company.
The personal data collected as mandatory data in the context of this appointment are the basis for the conclusion of the consultation for the use of the service indispensable. All collected data and your information about the consultation will be stored only for the purpose of appointment and contract processing.
In this context, the data will not be passed on to third parties. The legal basis for the processing of the data is the implementation of pre-contractual measures or a contract in accordance with Art. 6 para. 1 lit. b GDPR or your consent given to us in accordance with Art. 6 para. 1 p. 1 lit. a GDPR.
In addition, your IP address may be stored from the time you make an appointment to prevent misuse of our service. The protection against misuse represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.
We use the service Calendly for the allocation of appointments. Since personal data is transferred to the USA, further protection mechanisms are required to ensure the level of data protection required by the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 Para. 2 lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we endeavor to obtain additional regulations and assurances from the recipient in the USA. You can find more information about Calendly in the next section.
Your personal data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. The collected personal data will be deleted as soon as a timely contact with you has taken place or was unsuccessful. Continued processing only takes place if it is necessary in the context of a resulting initiation and execution of a contract or for the fulfillment of resulting contractual purposes.
Appointment booking (Calendly)
On our website you have the possibility to make an appointment with us. We use Calendly for this purpose. Calendly is a service of Calendly, LLC, 1315 Peachtree St NE, Atlanta, GA 30309, USA, https://calendly.com.
If you want to make an appointment with us, you can use the form provided. The data you provide will then be transmitted to the respective contact person via Calendly and the data will be entered into our calendar (Outlook). In addition, the data can be viewed by us in the login area of Calendly and is stored there.
You will receive a confirmation of the appointment by e-mail, and you have the option to enter the data in your calendar.
The purpose of processing the data provided is to be able to make an appointment, process the contact request and get in touch with you.
The legal basis for the processing of personal data described here is Art. 6 (1) lit. f GDPR. Our legitimate interest is to offer you the opportunity to independently arrange appointments with us. This simplifies the coordination regarding appointments and enables an efficient appointment arrangement. If the provision of your data is for the initiation or execution of a contract, the legal basis is also Art. 6 para. 1 lit. b GDPR.
The personal data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected.
We have concluded a contract processing agreement with Calendly, so that the data you provide will be processed for us in accordance with instructions and orders. Since a transfer of personal data to the USA may take place, further protection mechanisms are required to ensure the data protection level of the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 (2) lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured by this contractual extension, we will endeavor to obtain additional regulations and commitments from the recipient in the USA.
Further information on this can be found in the order processing agreement (https://calendly.com/pages/dpa) and in the Calendly privacy policy (https://calendly.com/en/privacy).
Registration for our webinars and trendcalls
On our website, we offer you the opportunity to register for our free webinars and trendcalls. The webinars and trendcalls themselves take place via the Zoom platform. "Zoom" is a service provided by Zoom Video Communications, Inc. which is based in the USA.
The integration of Zoom serves a technically flawless execution of the webinar and trendcalls with professional tools. This represents a legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR.
When you register for a free webinar or a free trendcall on our website, you must provide your e-mail address, address and last name. The legal basis is your consent given to us beforehand in accordance with Art. 6 (1) lit. a GDPR.
The legal basis for data processing when conducting webinars and trend calls is Art. 6 para. 1 p. 1 lit. b GDPR, insofar as the meetings are conducted in the context of contractual relationships.
To participate in the webinar or trend call, you must click on the link sent to you and will then be redirected to Zoom. For more information, please see Zoom's privacy policy (https://explore.zoom.us/de/privacy/). On Zoom's website, you will again enter an email address and an alias name before you can participate in the webinar or trendcall. You may opt out of the webinar or Trendcall at any time.
When you use "Zoom", various types of data are processed. The scope of the data also depends on the data you enter before or during participation in a webinar or trend call.
The following personal data are subject to processing:
- User details: first name, last name, telephone (optional), e-mail address, password (if "single sign-on" is not used), profile picture (optional),
- Department (optional)
- Meeting metadata: Topic, description (optional), attendee IP addresses, device/hardware information.
- For recordings (optional): MP4 file of all videos, audio and presentation recordings, M4A file of all audio recordings, text file of online meeting chat.
- When dialing in with the telephone: information about the incoming and outgoing call number, country name, start and end time. If necessary, further connection data such as the IP address of the device can be stored.
- Text, audio and video data: You may have the opportunity to use the chat, question or survey functions in a webinar or trend call. To this extent, the text entries you make are processed to display them in the "Online Meeting" and, if necessary, to log them. To enable the display of video and the playback of audio, the data from the microphone of your terminal device and from any video camera of the terminal device will be processed accordingly for the duration of the meeting. You can turn off or mute the camera or microphone yourself at any time via the "Zoom" applications.
If we want to record webinars or trend calls, we will inform you transparently in advance and - if necessary - ask for your consent. The fact of the recording will also be displayed to you in the "Zoom" app. In the case of webinars, we may also process the questions asked by webinar participants for the purpose of recording and following up on webinars.
If you are registered as a user on "Zoom", then reports on "online meetings" (meeting metadata, telephone dial-in data, questions and answers in webinars, survey function in webinars) can be stored on "Zoom" for up to one month.
Personal data processed in connection with participation in webinars and trend calls will not be passed on to third parties unless it is intended to be passed on. Please note that content from "online meetings", as well as from face-to-face meetings, is often used precisely to communicate information with customers, interested parties or third parties and is therefore intended to be passed on. Other recipients: The provider of "Zoom" necessarily receives knowledge of the above-mentioned data, insofar as this is provided for in the context of our order processing agreement with "Zoom". We have concluded an order processing contract with the provider of "Zoom" which complies with the requirements of Art. 28 GDPR.
"Zoom" is a service provided by a provider from the USA. A processing of personal data therefore also takes place in a third country.
Since personal data is transferred to the USA, further protection mechanisms are required to ensure the level of data protection required by the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 Para. 2 lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we endeavor to obtain additional regulations and assurances from the recipient in the USA. You can find further information on Zoom's data protection here: https://zoom.us/privacy
Applications
If you apply to us via our contact form or by e-mail, we collect personal data. This includes your contact data (such as first and last name, telephone number and e-mail address of the user) as well as other data provided by you regarding your career (e.g. CV, qualifications, degrees and work experience) and your person (e.g. cover letter, personal interests). This may also include special categories of personal data (e.g. information on a severe disability).
As a rule, your personal data is collected directly from you as part of the application process and encrypted during electronic transmission. The primary legal basis for this is Section 26 (1) BDSG. In addition, consent pursuant to Art. 6 Para. 1 lit. a GDPR in conjunction with § 26 Para. 2 BDSG can be used as a data protection permission provision. If the processing of your data is based on your consent, you have the right to revoke this consent at any time with effect for the future.
Within our company, only those persons and departments (e.g. Human Resources) have access to your personal data that absolutely need it to carry out the application process or to fulfill our legal obligations. If necessary, your applications will be forwarded to the responsible persons for review. Under no circumstances will your personal data be passed on to third parties without authorization. Your data relating to an application for a specific vacancy will be stored and processed by us during the current application process.
After completion of the application process (e.g. in the form of an acceptance or rejection), the application process, including all personal data, will be deleted from the system no later than six months after completion of the application process. The data of selected applicants will be stored securely for up to 2 years, provided that the applicants have given their consent to this in accordance with Art. 6 para. 1 p. 1 lit. a GDPR in conjunction with § 26 para. 2 BDSG. You can revoke your consent at any time with effect for the future. An informal e-mail to the contact details of the responsible person listed above is sufficient for this purpose. In the event of an acceptance, your application documents will be transferred to the personnel file.
Third party content integration
Visitor Analytics
We use the service of Visitor Analytics GmbH (Stefan-George-Ring 19,
81929 Munich, Germany). Visitor Analytics is a website analytics service that collects traffic to our website and general information from website visitors. We collect statistics to improve the experience of our website visitors.
We process information about
- the device type,
- the screen size/resolution of our visitors,
- the approximate location,
- the browser,
- the operating system,
- page visits,
- the bounce rate, the conversion rates,
- the conversion funnels,
- the average sessions per visitor,
- the average pages per session,
- the average session duration, the time spent on the website, and
- the preferred content visited on the website.
All this data is pseudonymized and Visitor Analytics does not use the collected data to identify individual users or to match the data with additional information about an individual user.
We do not use cookies to collect this data. Instead, we use what is known as fingerprint technology, which does not require cookies, files, or technology to be placed on your device. Fingerprinting relies on the technical characteristics of your device and combines them to identify your device as a unique device and enable reliable analytics.
Visitor records is an additional feature of Visitor Analytics, in the form of a simple web page replay tool that records in statistics where our website visitors scrolled to and what they clicked on our website. We may see this information aggregated into replays and so-called "heat maps" or interaction maps. Collecting these statistics helps us to make our website more user-friendly and to reproduce and fix technical errors. Basically, as a website operator that uses visitor records, we use a snippet of tracking code to collect data about our visitors' journey on our websites, which subpages they visit, what they clicked on, where they moved the mouse pointer, and where they scrolled. All this data is pseudonymized and Visitor Analytics does not use the collected data to identify individual users or match it with additional information about an individual user.
The use of Visitor Analytics and the associated processing of personal data takes place based on your consent pursuant to Art. 6 (1) lit. a GDPR.
We have concluded an order processing agreement with Visitor Analytics pursuant to Art. 28 GDPR.
For more information about Visitor Analytics, please visit:
https://www.visitor-analytics.io/en/. The privacy policy of Visitor Analytis GmbH can be found at:
https://www.visitor-analytics.io/en/support/legal-data-privacy-certificates/standard-integration/data-processing-agreement-cookie-information/
Vimeo
Videos from "Vimeo" are embedded on this website. "Vimeo" is operated by Vimeo LLC, 555 West 18th Street, New York 10011, USA.
If you have given us your consent, the processing is carried out for the optimal marketing of our offer in accordance with Art. 6 para. 1 p. 1 lit. a GDPR.
For videos from "Vimeo", which are integrated on our website, the tracking tool Google Analytics is automatically integrated. We have no influence on the tracking settings or the analysis results collected via this tool and cannot view them. In addition, web beacons are set for website visitors via the embedding of "Vimeo videos".
To prevent the setting of Google Analytics tracking cookies, you can prevent the storage of cookies by selecting the appropriate settings on your browser software; however, please note that in this case you may not be able to use the full functionality of this website.
You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google, as well as the processing of this data by Google, by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en.
Since a transfer of personal data to the USA takes place, further protection mechanisms are required to ensure the level of data protection of the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 Para. 2 lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe.
In cases where this cannot be ensured even by this contractual extension, we endeavor to obtain additional regulations and assurances from the recipient in the USA.
For the purpose and scope of the data collection and the further processing and use of the data by the providers, as well as your rights in this regard and settings options for protecting your privacy, please refer to the privacy policy of "Vimeo": https://vimeo.com/privacy.
Podcast
On our website we use the podcast hosting service Podigee of the provider Podigee GmbH (Schlesische Straße 20, 10997 Berlin, Germany). The podcasts are hosted by Podigee and integrated into our pages.
When you start a podcast on our website, Podigee processes your IP address and device information to enable podcast downloads and playbacks and to determine statistical data, such as call-up figures. This data is anonymized or pseudonymized by Podigee prior to storage unless the data collected is necessary for the provision of the podcasts.
Podigee is used based on our legitimate interest in integrating podcasts securely and efficiently into our site, as well as to perform analyses and to optimize our podcast offering. The legal basis for the processing is thus Art. 6 para. 1 letter f GDPR.
For more information, please see Podigee's privacy policy at: https://www.podigee.com/en/about/privacy.
Google Ads
We use "Google Ads" on our website, a service of Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland (hereinafter referred to as "Google"). We use Google Ads for marketing and optimization purposes, to place relevant and interesting ads for you.
Provided that you have given us your consent to this in accordance with Art. 6 (1) p. 1 lit. a GDPR, we can use Google Ads to draw attention to our attractive offers with the help of advertising media on external websites. This allows us to determine how successful individual advertising measures are.
These advertising media are delivered by Google via so-called "AdServers". For this purpose, we use so-called AdServer cookies, which can be used to measure certain parameters for measuring success, such as the display of ads or clicks by users.
If you access our website via a Google ad, Google Ads will store a cookie on your PC. These cookies usually lose their validity after 30 days. They are not intended to identify you personally. The following information is usually stored as analysis values for this cookie: unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions), opt-out information (marking that the user no longer wishes to be addressed). These cookies enable Google to recognize your web browser. If a user visits certain pages of the website of an Ads customer and the cookie stored on his computer has not yet expired, Google and the customer can recognize that the user clicked on the ad and was redirected to this page. A different cookie is assigned to each Ads customer. Cookies can therefore not be tracked via the websites of Ads customers. We ourselves do not collect and process any personal data in the advertising measures. We only receive statistical evaluations from Google. These evaluations enable us to recognize which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising media; in particular, we cannot identify users based on this information.
Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. We have no influence on the scope and further use of the data collected by Google using Google Ads. To the best of our knowledge, Google receives the information that you have accessed the relevant part of our website or clicked on one of our ads. If you have a user account with Google and are registered, Google can assign the visit to your user account. Even if you are not registered with Google or have not logged in, there is the possibility that Google learns your IP address and stores it.
Since personal data is transferred to the USA, further protection mechanisms are required to ensure the level of data protection of the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 Para. 2 lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured by this contractual extension, we endeavor to obtain additional regulations and assurances from the recipient in the USA.
For further information on data use by Google, on setting and objection options, and on data protection, please refer to the following Google web pages:
- Privacy policy: https://policies.google.com/privacy?hl=en&gl=en
- Google website statistics: https://services.google.com/sitestats/en.html
You can prevent the installation of cookies by deleting existing cookies and deactivating the storage of cookies in the settings of your web browser. We would like to point out that in this case you may not be able to use all functions of our website to their full extent. It is also possible to prevent the storage of cookies by setting your web browser to block cookies from the domain "www.googleadservices.com" (https://www.google.de/settings/ads).
Please note that this setting will be deleted when you delete your cookies. In addition, you can deactivate interest-based ads via the link http://optout.aboutads.info. Please note that this setting will also be deleted when you delete your cookies.
Google Tag Manager
This website uses the Google Tag Manager of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). This service allows website tags to be managed via an interface. The Google Tag Manager only implements tags. This means that no cookies are used and only the user's IP address is transmitted to Google to establish the connection. The Google Tag Manager triggers other tags, which in turn may collect data. However, the Google Tag Manager does not access this data. If a deactivation has been made at domain or cookie level, it remains in place for all tracking tags, insofar as these are implemented with the Google Tag Manager.
We use the Google Tag Manager based on your consent pursuant to Art. 6 (1) lit. a GDPR.
Since the IP address is transferred to Google in the USA, further protection mechanisms are required to ensure the level of data protection of the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 Para. 2 lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even through this contractual extension, we endeavor to obtain additional regulations and commitments from the recipient in the USA.
LinkedIn Ads
We use the conversion tracking technology and the retargeting function of LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland on our website. This enables us to play personalized ads on LinkedIn to visitors of our website. For this purpose, a cookie, LinkedIn Insight-Tag, is set in your browser with a validity of 120 days, which enables LinkedIn to recognize you if you visit this website and are logged into your LinkedIn account at the same time. LinkedIn uses this data to generate anonymous reports on the performance of the advertisements as well as information on website interaction. The information generated by the cookie is usually transferred to a server in the USA and stored there.
The legal basis for the processing is your consent pursuant to Art. 6 para. 1 lit. a GDPR.
Since a transfer of personal data to the USA takes place, further protection mechanisms are required to ensure the level of data protection of the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 Para. 2 lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured by this contractual extension, we endeavor to obtain additional regulations and commitments from the recipient in the USA.
You can deactivate LinkedIn Insight conversion tracking and interest-based personalized advertising by opting out at the following link: www.linkedin.com/psettings/guest-controls/retargeting-opt-out. Further information on data protection at LinkedIn can be found at https://www.linkedin.com/legal/privacy-policy.
Google Analytics
Our website uses Google Analytics, an internet analysis service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). Google Analytics uses so-called "cookies" and web beacons.
Google will use this information on behalf of the operator of this website for the purpose of evaluating your use of the website, and compiling reports on website activity. Google will also use this information to provide the website operator with other services related to the use of the website and the Internet. The IP address sent by your browser as part of Google Analytics is not combined with other data from Google. The processing is carried out in accordance with Art. 6 para. 1 lit. a GDPR based on the consent given by you.
We use Google Analytics only with IP anonymization enabled. This means that your IP address is only processed further by Google in a shortened form.
We have concluded an order processing agreement with the service provider in which we oblige it to protect our customers' data and not to pass it on to third parties.
Since personal data is transferred to the USA, further protection mechanisms are required to ensure the level of data protection of the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 Para. 2 lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured by this contractual extension, we endeavor to obtain additional regulations and assurances from the recipient in the USA.
The Google Analytics terms of use and information on data protection can be accessed via the following links:
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. Deletion of user-level and event-level data associated with cookies, user identifiers (e.g., User ID), and advertising IDs (e.g., DoubleClick cookies, Android advertising ID, IDFA [Apple identifier for advertisers]) occurs no later than 14 months after collection.
You can prevent cookies from being stored by adjusting the settings of your browser software accordingly. However, we would like to point out that in this case you may not be able to use all functions of this website without restrictions. You can also prevent Google from collecting the data generated by the cookie and from analyzing your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at https://tools.google.com/dlpage/gaoptout?hl=en.
YouTube
On our website, we integrate videos from "YouTube", a social media platform of Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland (hereinafter referred to as "Google"). The legal basis for the processing of your personal data is your consent granted for this purpose pursuant to Art. 6 (1) lit. a GDPR.
If the playback of embedded YouTube videos is started by your consent, the provider "YouTube" uses cookies to collect information about user behavior. According to information from "YouTube", these are used, among other things, to collect video statistics, to improve user-friendliness and to prevent abusive behavior. If you are logged in to Google, your data is directly assigned to your account when you click on a video. If you do not want the assignment with your profile at YouTube, you must log out before activating the button. Google stores this data as usage profiles and uses them for the purposes of advertising, market research and / or needs-based design of its websites. Such an evaluation is carried out (also for users who are not logged in) for the display of tailored advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles. Please contact Google directly for this purpose.
Since personal data is transferred to the USA, further protection mechanisms are required to ensure the level of data protection of the GDPR. To ensure this, Google uses standard data protection clauses in accordance with Art. 46 (2) lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured by this contractual extension, we will endeavor to obtain additional regulations and commitments from the recipient in the USA.
Further information on data protection and data use by Google can be found on the following Google website: https://policies.google.com/privacy?hl=en&gl=en.
Social media links
Social networks (Facebook, Twitter, Instagram, YouTube, LinkedIn and Xing) are only integrated on our website in the form of a link to the corresponding services. After clicking on the embedded text/image link, you will be redirected to the page of the respective provider. User information will only be transmitted to the respective provider after you have been redirected. For information on the handling of your personal data when using these websites, please refer to the respective privacy policy of the provider you are using.
Presence in social media
In the following, you will find information on the handling of your data collected through your use of our social media presences on social networks and platforms. Your data will be processed in accordance with the legal regulations.
1. Provider
1.1 Facebook Fanpage
1.1.1. Responsible party
For the data transmitted to us by you, Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour Dublin 2, Ireland, is the responsible party for data processing within the meaning of the GDPR. Hereinafter referred to as Meta/ Facebook. For this purpose, we have concluded an agreement with Meta/ Facebook pursuant to Art. 26 GDPR on joint responsibility for the processing of data (Controller Ad-dendum). This agreement specifies the data processing operations for which we or Meta/ Facebook are responsible when you visit our Facebook fan page. You can view this agreement at the following link: https://www.facebook.com/legal/terms/page_controller_addendum.
Since a transfer of personal data to the USA by Meta/ Facebook takes place, further protection mechanisms are required to ensure the data protection level of the GDPR. For this purpose, the provider uses standard data protection clauses in accordance with Art. 46 (2) lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we endeavor to obtain additional regulations and commitments from the recipient in the USA.
If you as a visitor to the site would like to exercise your rights (information, correction, deletion, restriction, data portability, complaint to the supervisory authority, objection or revocation), you can contact Meta/Facebook as well as us.
You can adjust your advertising settings independently in your user account. To do so, click on the following link and log in:
https://www.facebook.com/settings?tab=ads or http://www.youronlinechoices.com
For further details, please refer to the Meta/ Facebook privacy policy: https://www.facebook.com/about/privacy/
1.1.1 Data protection officer of Meta/ Facebook
To contact Meta/ Facebook's data protection officer, you can use the online contact form provided by Meta/ Facebook at the following link https://www.facebook.com/help/contact/540977946302970.
1.1.2. Data processing for statistical purposes using page insights
Meta/ Facebook provides so-called page insights for our Facebook fan page: https://www.facebook.com/business/a/page/page-insights. These are aggregated data that provide information about how people interact with our site. Page Insights may be based on personal data collected in connection with a visit to or interaction with our site by individuals and in connection with content provided. Please be aware of what personal data you share with us via Meta/ Facebook. Your data may be processed for market research and advertising purposes even if you are not logged into Meta/ Facebook or do not have a Meta/ Facebook account. For example, user profiles can be created from the usage behavior and resulting interests of the users. The user profiles can in turn be used, for example, to place advertisements within and outside the platforms that presumably correspond to the interests of the users. This data collection takes place via cookies that are stored on your terminal device. Furthermore, data that is independent of the devices used by the users may also be stored in the user profiles; in particular, if the users are members of the respective platforms and logged in to them. The legal basis for the processing is your consent pursuant to Art. 6 para. 1 lit. a GDPR. Please note that we have no influence on the data collection and further processing by Meta/Facebook. As a result, we cannot provide any information about the extent to which, where and for how long the data is stored by Meta/Facebook. Furthermore, we cannot make any statements about the extent to which Meta/Facebook complies with existing deletion obligations, which evaluations and links are made with the data by Meta/Facebook and to whom the data is passed on by Meta/Facebook. If you wish to avoid the processing of your personal data by Meta/Facebook, please contact us by other means.
1.1. Other social Media Providers
1.1.1. Responsible party
If your personal data is processed by a provider listed below, this provider is the data controller within the meaning of the GDPR. For the assertion of your data subject rights, we point out that these can be asserted most effectively with the respective providers. Only they have access to the data collected from you. Should you still require assistance, please feel free to contact us at any time.
We have online presences on the social media platforms of the following providers:
- Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07 Ireland.
- Instagram, Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Har-bour Dublin 2, Ireland
- YouTube, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
- LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
- XING SE, Dammtorstraße 29-32, 20354 Hamburg, Germany
1.1.2. Data protection officer
Information on how to contact the data protection officer of the other social media providers can be found here:
- Twitter Inc.: https://twitter.ethicspointvp.com/custom/twitter/forms/data/form_data.asp
- Instagram Inc.: https://de-de.facebook.com/help/instagram/155833707900388
- LinkedIn Ireland Unlimited Company: https://www.linkedin.com/help/linkedin/ask/TSO-DPO
- XING SE: Datenschutzbeauftragter(at)xing(dot)com
- YouTube: To contact YouTube's Privacy Officer, please contact Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
2. General information on social media platforms
2.1 Responsible entity
The party responsible for data processing within the meaning of the GDPR is the party named at the beginning of this privacy policy, insofar as data transmitted by you via one of the social media platforms is processed by us ourselves.
2.2 Our data protection officer
If you have any concerns about data processing carried out by us as the data controller, you can reach our data protection officer at the contact details stated at the beginning of this privacy policy.
3. General data processing on the social media platforms
3.1 Data processing for market research and advertising
As a rule, personal data is processed on the company site for market research and advertising purposes. For this purpose, a cookie is set in your browser, which enables the respective provider to recognize you when you visit a website. By means of the collected data, usage profiles can be created. These are used to display advertisements within and outside the platform that presumably correspond to your interests. Furthermore, data can also be stored in the usage profiles regardless of the devices you use. This is regularly the case if you are a member of the respective platforms and logged in to them.
3.2 Data processing when contacting us
We ourselves collect personal data when you contact us, for example, via a contact form or through a messenger service, such as Meta/ Facebook Messenger. Which data is collected depends on the information you provide and the contact data you have provided or released. These are stored by us for the purpose of processing the request and in case of follow-up questions. Under no circumstances will we pass on the data to third parties without your consent. The legal basis for processing the data is our legitimate interest in responding to your request in accordance with Art. 6 (1) lit. f GDPR and, if applicable, Art. 6 (1) lit. b GDPR if your request is aimed at concluding a contract. Your data will be deleted after final processing of your request if there are no legal obligations to retain data. We assume that processing is complete when the circumstances indicate that the matter in question has been conclusively clarified.
1. Data processing for the execution of the contract
If your contact via a social network or other platform aims at the conclusion of a contract for the delivery of goods or the provision of services with us, we process your data for the performance of the contract or for the implementation of pre-contractual measures or for the provision of the desired services. In this case, the legal basis for the processing of your data is Art. 6 para. 1 lit. b GDPR. Your data will be deleted if they are no longer required for the performance of the contract or if it is determined that the pre-contractual measures do not lead to the conclusion of a contract corresponding to the purpose of the contact. Please note, however, that it may be necessary to store personal data of our contractual partners even after the conclusion of the contract to comply with contractual or legal obligations.
1.2 Data processing based on consent
If you are asked by the respective providers of the platforms for consent to processing for a specific purpose, the legal basis of the processing is Art. 6 para. 1 lit. a., Art. 7 GDPR. Consent given can be revoked at any time with effect for the future.
2. Data transfer and recipients
When visiting and using the platforms listed above, a transfer of personal data to the USA or other third countries outside the EU may result, which is why further protection mechanisms are required in these cases to ensure the level of data protection of the GDPR. For more information on whether and which suitable guarantees the providers can provide for this, please see the list below.
We have no influence on the processing of your personal data by the provider and the handling thereof. We also do not have any information on this. For more information, please check the privacy policy of the respective provider and, if necessary, use the opt-out / personalization options regarding data processing by the provider:
- Privacy policy: https://twitter.com/de/privacy
- Opt-out: https://twitter.com/personalization
- According to its privacy policy, Twitter uses standard data protection clauses to ensure an adequate level of data protection in accordance with the requirements of the GDPR for data transfers to the USA or other third countries outside the EU: https://twitter.com/en/privacy
- Privacy policy/opt-out: http://instagram.com/about/legal/privacy/
- Instagram (Meta/ Facebook) uses standard data protection clauses according to its privacy policy to ensure an adequate level of data protection in accordance with the requirements of the GDPR for data transfers to the USA or other third countries outside the EU: instagram.com/about/legal/privacy/
YouTube/Google
- Privacy policy: https://policies.google.com/privacy?hl=de&gl=de
- Opt-out: https://adssettings.google.com/authenticated
- Google, according to its privacy policy, uses standard data protection clauses to ensure an adequate level of data protection in accordance with the requirements of the GDPR for data transfers to the USA or other third countries outside the EU: https://policies.google.com/privacy?hl=en&gl=en
- Privacy policy: https://www.linkedin.com/legal/privacy-policy
- Opt-out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
- According to its privacy policy, LinkedIn uses standard data protection clauses to ensure an adequate level of data protection in accordance with the requirements of the GDPR for data transfers to the USA or other third countries outside the EU:
- https://www.linkedin.com/legal/privacy-policy and https://www.linkedin.com/help/linkedin/answer/62533?trk=microsites-frontend_legal_privacy-policy&lang=en
- Privacy policy: https://privacy.xing.com/de/datenschutzerklaerung
- Opt-out: https://nats.xing.com/optout.html?popup=1&locale=de_DE
- According to its privacy policy, XING uses standard data protection clauses to ensure an adequate level of data protection in accordance with the requirements of the GDPR for data transfers to the USA or other third countries outside the EU: https://privacy.xing.com/de/datenschutzerklaerung/wer-erhaelt-daten-zu-ihrer-person/drittlaender
Data transfer and recipients
As a rule, your personal data will not be transferred to third parties unless
- we have explicitly referred to this in the description of the respective data processing,
- you have given your express consent to this in accordance with Art. 6 Para. 1 lit. a GDPR,
- the disclosure is required in accordance with Art. 6 (1) (f) GDPR for the assertion, exercise or defense of legal claims or is in our legitimate interest for other reasons and there is no reason to assume that you have an overriding legitimate interest in the non-disclosure of your data,
- there is a legal obligation for the disclosure according to Art. 6 Para. 1 lit. c GDPR and this is necessary according to Art. 6 Para. 1 lit. b GDPR for the processing of contractual relationships with you.
We also use external service providers for the provision of our services and the processing of our services, which we carefully select and commission in writing. They are bound by our instructions and are regularly monitored by us. In accordance with Art. 28 GDPR, required order processing contracts are concluded prior to commissioning. In detail, these are service providers for web hosting, the sending of e-mails and the maintenance and care of our IT systems. Your personal data will also not be passed on to third parties by the service providers working for us under any circumstances.
Duration of storage of personal data
The duration of the storage of personal data is determined by the relevant statutory retention obligations, e.g. from commercial law and tax law. After expiry of the respective period, the corresponding data is routinely deleted. If data is required for the fulfillment or initiation of a contract or if we have a legitimate interest in continuing to store it, the data will be deleted when it is no longer required for these purposes, or you exercise your right of revocation or objection.
Your rights
- Below you will find a list of the rights of the data subject to which the data subject is entitled vis-à-vis the controller about the processing of your personal data:
- The right to request information about your personal data processed by us in accordance with Article 15 of the GDPR. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as about the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details.
- The right, in accordance with Art. 16 GDPR, to demand the immediate correction of incorrect or completion of your personal data stored by us.
- The right to request the erasure of your personal data stored by us in accordance with Article 17 of the GDPR, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims.
- The right to request the restriction of the processing of your personal data in accordance with Art. 18 GDPR, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer need the data, but you need it for the assertion, exercise or defense of legal claims or you have objected to the processing in accordance with Art. 21 GDPR.
- The right, pursuant to Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller.
- The right to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of the federal state of our registered office stated above or, if applicable, that of your usual place of residence or workplace.
- Right to revoke consent given in accordance with Art. 7 (3) GDPR. You have the right to revoke your consent to the processing of data at any time with effect for the future. In the event of revocation, we will delete the data concerned without delay, unless further processing can be based on a legal basis for processing without consent. The revocation of consent does not affect the lawfulness of the processing carried out based on the consent until the revocation.
Right of objection
If your personal data is processed by us based on legitimate interests pursuant to Article 6 (1) sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Article 21 GDPR, insofar as this is done for reasons arising from your situation. Insofar as the objection is directed against the processing of personal data for the purpose of direct marketing, you have a general right of objection without the requirement to specify a particular situation.
If you wish to exercise your right of revocation or objection, simply send an e-mail to info(at)trendone(dot)com.
Data security
We take appropriate technical and organizational measures in accordance with Art. 32 GDPR, considering the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk. This website uses SSL encryption for security reasons and to protect the transmission of confidential content.
Legal obligations
The provision of personal data for the decision on the conclusion of a contract, the performance of a contract or for the implementation of pre-contractual measures is voluntary. However, we can only make the decision in the context of contractual measures if you provide such personal data that is required for the conclusion of the contract, the performance of the contract or pre-contractual measures.
Automated decision making
Automated decision-making or profiling in accordance with Art. 22 GDPR does not take place.
Changes to our privacy policy
We reserve the right to update this privacy policy, if necessary, in compliance with the applicable data protection regulations. In this way, we can adapt it to the current legal requirements and consider changes to our services, e.g. when introducing new services. The current version applies to your visit.
Status of this privacy policy: 24.11.2022