Privacy policy

Privacy policy

In this privacy policy, we would like to inform you about how we process personal data. We are aware of the importance of processing personal data for the data subject and accordingly comply with all relevant legal requirements. The protection of your privacy is of the utmost importance to us. It therefore goes without saying that we comply with the statutory provisions on data protection.

Responsible body

collect Artificial Intelligence GmbH, Görttwiete 16–20, 20459 Hamburg, Germany

Contact details of the data protection officer

You can reach our data protection officer at: datenschutz@collect.ai

Contact us

You have several options to contact us, e.g. by email, through our contact form, by telephone or by post. When you contact us, we use the personal data (e.g. email address) that you voluntarily provide to us in this context solely for the purpose of responding to you and to process your request.

The contact form on our website is an easy way to quickly get in touch with us. To enable us to respond to you, some fields are marked as mandatory. The data is not stored on the web server. If you submit information to this website through the contact form, we collect the data from the contact form to proceed and respond to your query.

Definitions
This privacy policy uses the terminology of the General Data Protection Regulation (GDPR).

“Personal data” means any information relating to an identified or identifiable natural person (hereinafter referred to as “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

“Processing” is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

“Restriction of processing” is the marking of stored personal data with the aim of restricting its future processing.

“Profiling” is any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements.

“Pseudonymisation” is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.

“File system” means any structured collection of personal data that is accessible according to specific criteria, regardless of whether this collection is managed centrally, decentrally or according to functional or geographical aspects;

“Responsible person” is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.

“Processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

“Recipient” means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing.

“Third party” means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
“Consent” means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

Processing operations, data categories and origin of data

We collect and process the following personal data about you:

• your contact and address information, if you provide us with your contact information,
• online identifiers (e.g. your IP address, browser type and browser version, the operating system used, the referrer URL, the file name, the access status, the amount of data transferred, the date and time of the server request),
• cocial media identifiers

Processing purposes

We process your data for the following purposes:

• for the contact you have requested,
• for the provision of our services,
• for advertising purposes,
• to send you the email newsletter if you have signed up for it,
• for quality assurance and
• for statistical purposes

Legal basis

Your data is processed on the following legal bases:

• your consent, art. 6(1)(a) GDPR
• for the performance of a contract with you, art. 6(1)(b) GDPR
• our legitimate interests, art. 6(1)(f) GDPR (see below)

When processing your data, we pursue the following legitimate interests

• to improve of our services
• to protect our business against abuse
• for statistical purposes

Recipients or categories of recipients of the personal data

When processing your data, we work together with the following service providers who have access to your data:

• provider of web analycics tools,
• web hosting providers

Data is transferred to third countries outside the European Economic Area. This is done on the basis of contractual regulations provided for by law, which are intended to ensure adequate protection of your data and which you can view on request.

Storage duration

We only store your personal data for as long as is necessary to achieve the purpose of processing or for as long as the storage is subject to a statutory retention period,

• if you have consented to the processing, at most until you withdraw your consent,
• if we need the data to perform a contract, at most for as long as the contractual relationship with you exists or statutory retention periods apply,
• if we process the data to fulfill a legal obligation, at most for as long as the legal obligation exists.
• if we use the data on the basis of a legitimate interest, at most as long as your interest in deletion or anonymization does not prevail.

Requirement or obligation to provide data

Unless expressly stated at the time of collection, the provision of data is not required or mandatory. Such an obligation may arise from legal requirements or contractual provisions.

Data backup

We have taken extensive technical and organisational measures to protect your data against possible risks, such as unauthorized access, unauthorised disclosure, modification or dissemination, as well as against loss, destruction or misuse.

To protect your personal data from unauthorised access by third parties during transmission, we secure data transmissions using SSL encryption where necessary. This is a standardised encryption method for online services, especially for the web.

Log files

When our website is accessed, usage data is transmitted by the respective web browser and stored in so-called server log files. The data records stored contain the following data: Domain from which the user accesses the website, date and time of access, IP address of the accessing computer, website(s) visited by the user within our web domain, amount of data transferred, browser type and version, operating system used, name of the internet service provider, message as to whether the access was successful. These log file data records are evaluated in anonymized form to improve the offer and make it more user-friendly, to find and rectify errors and to control the utilisation of servers.

Cookies

This website uses so-called cookies. A cookie is a text file with an identification number that is transmitted to the user’s computer and stored there together with the other data actually requested when the website is used. The file is stored there for later access and is used to authenticate the user. Since cookies are only simple files and not executable programs, they do not pose any danger to the computer. Depending on the settings selected by the user, the Internet browser automatically accepts cookies. However, this setting can be changed and the storage of cookies deactivated or set in such a way that the user is notified as soon as a cookie is set. However, if you deactivate the use of cookies, some functions of the website may not be available or may only be available to a limited extent. You can prevent the setting of cookies by our website at any time by means of a corresponding setting of the Internet browser used and thus permanently object to the setting of cookies. Cookies that are already active can be deleted at any time via an Internet browser or other software programs. We may work together with advertising partners who help us to make our website more interesting for you. For this purpose, cookies from partner companies are also stored on your hard disk when you visit our website (third-party cookies). If we work together with the aforementioned advertising partners, you will be informed individually and separately about the use of such cookies and the scope of the information collected in each case within the following paragraphs.

The help function in the menu bar of most web browsers explains how you can prevent your browser from accepting new cookies, how you can have your browser notify you when you receive a new cookie or how you can delete all cookies you have already received and block all further cookies.

In Internet Explorer

1. Select “Internet options” in the “Extras” menu.
2. Click on the “Data protection” tab.
3. You can now make the security settings for the Internet zone. Here you can set whether and which cookies should be accepted or rejected.
4. Click “OK” to confirm your setting.

In Firefox

1. Select Settings in the “Extras” menu.
2. Click on “Data protection”.
3. In the drop-down menu, select the entry “Create according to user-defined settings”.
4. Now you can set whether cookies should be accepted, how long you want to keep these cookies and add exceptions to which websites you always or never want to allow cookies to be used.
5. Click “OK” to confirm your setting.

In Google Chrome

1. Click on the Chrome menu in the browser toolbar.
2. Now select “Settings”.
3. Click on “Show advanced settings”.
4. Click on “Content settings” under “Privacy”.
5. You can make the following settings for cookies under “Cookies”:
6. a) delete cookies
   b) block cookies by default
   c) allow cookies by default
   d) delete cookies and website data by default after closing the browser
   e) allow exceptions for cookies from certain websites or domains

Your rights

You have the right – in some cases under certain conditions,

• to request informationabout the processing of your data free of charge and to receive a copy of your personal data. You can request information about the purposes of the processing, the categories of personal data that are processed, the recipients of the data (if a transfer takes place), the duration of the storage or the criteria for determining the duration;
• to have your data corrected. If your personal data is incomplete, you have the right to complete the data, taking into account the purposes of the processing;
• to have your data deletedor blocked. Reasons for the existence of a right to erasure/blocking may include: the withdrawal of consent on which the processing is based, the data subject objects to the processing, the personal data has been processed unlawfully;
• to havethe processing restricted;
• to object tothe processing of your data;
• to revokeyour consent to the processing of your data for the future and

to complain to the competent supervisory authority about unlawful data processing: https://datenschutz-hamburg.de/beschwerde/

Email newsletter

If you register for our newsletter, we will use the data required for this or separately provided by you to send you our email newsletter on a regular basis. The legal basis for sending the newsletter is your consent in accordance with art. 6(1)lit. 1 a GDPR. Consent can be withdrawn at any time, either by sending a message to the contact option described above or by using the unsubscribe link provided in the newsletter.

If you have subscribed to our newsletter, you can unsubscribe at any time. To constantly improve our service, our newsletter contains a function that only tells us whether and, if so, when you have viewed it.

Data processing in third countries

If we process data in a third country (i.e. outside the European Union (EU) and the European Economic Area (EEA)) or if the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, bodies or companies, this will only take place in accordance with the legal requirements.

Subject to express consent or contractually or legally required transfer, we process or have the data processed only in third countries with a recognized level of data protection, contractual obligation through so-called standard protection clauses of the EU Commission, in the presence of certifications or binding internal data protection regulations (art. 6(1)(a)GDPR). 44 to 49 GDPR, information page of the EU Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de).

Google Analytics

We use the Google Analytics service by Google Ireland Limited (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), whose parent company is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (hereinafter referred to as “Google”).

This service enables us to analyse the use of our website and uses cookies for this purpose.

On this website, Google Analytics has been extended by the code “gat._anonymizeIp();”. This ensures that IP addresses are recorded anonymously. Your IP address is anonymized by shortening your IP address by Google within the European Union or in other contracting states of the European Economic Area (EEA).

Remarketing and reports on performance by demographic characteristics and interests are used as part of the Google Analytics advertising function. The purpose of these procedures is to use information about user behavior to tailor advertising measures more closely to the interests of the respective user. As part of remarketing, personalized advertising measures can be placed on other websites based on the user’s surfing behavior on this website. The advertising material can contain products that the user has previously viewed on the website. If you have consented to Google linking your web and app browsing history to your Google account and using information from your Google account to personalise ads, Google will use this data for cross-device remarketing.

Most browsers accept cookies automatically. However, you can prevent the use of cookies by setting your browser; in this case, however, you may not be able to use all the functions of the website. You must make the settings separately for each browser you use.
You can also prevent the collection and processing of this data by Google by downloading and installing the browser add-on available at the following link: https://tools.google.com/dlpage/gaoptout.
Alternatively, or within browsers on mobile devices, please click on the following link: Deactivate Google Analytics. An opt-out cookie is stored on your device for our website with effect for the browser you are currently using. If you delete your cookies in this browser, you must click on this link again. Data processing, in particular the setting of cookies, is carried out with your consent on the basis of art. 6(1)(a)GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

It cannot be ruled out that Google may transfer data to Google LLC in the United States for storage and further processing. If such data is transferred to the United States, this is based on the standard contractual clauses of the EU Commission: https://business.safety.google/adsprocessorterms/.

Further information on terms of use and data protection can be found at http://www.google.com/analytics/terms/de.html or at https://policies.google.com/privacy. Information on the types of processing and the data processed: https://privacy.google.com/businesses/adsservices/.

Google Tag Manager

We use the Google Tag Manager service by Google.

We have concluded a data processing agreement with Google. Google Tag Manager is an auxiliary service and processes personal data itself only for technically necessary purposes. The Google Tag Manager ensures that other components are loaded, which in turn may collect data. The Google Tag Manager does not access this data.

You can find more information about Google Tag Manager in Google’s privacy policy.

Please note that American authorities, such as intelligence agencies, could possibly gain access to personal data that is inevitably exchanged with Google when this service is integrated on the basis of the Internet Protocol (TCP) due to American laws such as the Cloud Act.

Facebook Custom Audience

On this website, we use the remarketing functionality “Custom Audience” of Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, whose parent company is Meta Platforms, Inc, (established in the United States) (“Facebook”).

By integrating Custom Audience, users can be shown interest-based content or advertisements on the website or when visiting the Facebook social network or other websites that also use the process.

Due to the marketing tools used, your browser automatically establishes a direct connection with the Facebook server and user profiles can be created and data stored, e.g. in cookies. We have no direct influence on the scope and further use of the data collected by Facebook through the use of this tool. To the best of our knowledge, Facebook receives information about certain events through the integration of Facebook Custom Audiences, such as which website of our Internet presence you have accessed and which advertisements or links you have clicked on. Technical information such as your IP address, your browser and device ID or the time may also be processed. If you are registered with a Facebook service, Facebook can assign the visit to your account. Even if you are not registered with Facebook or have not logged in, there is a possibility that the provider will find out and store your IP address and other identifying features. We do not receive any information that could identify you as a person; such information is only stored in pseudonymized form.

Data processing is carried out with your consent on the basis of art. 6(1)(a)GDPR. You can withdraw your consent at any time with effect for the future via our consent management platform, which you can access here, without affecting the lawfulness of processing based on consent before its withdrawal. In addition, you can revoke your consent by setting your browser accordingly or as a logged-in user of the social network Facebook at https://www.facebook.com/settings/?tab=ads#_. You can also deactivate user-based advertising via the deactivation page of the Network Advertising Initiative (http://optout.networkadvertising.org/)

It cannot be ruled out that Facebook transfers data to the United States for storage and further processing. If such data is transferred to the United States, this is based on the standard contractual clauses of the EU Commission: https://www.facebook.com/legal/EU_data_transfer_addendum and https:// facebook.com/help/566994660333381.

For more information about how Facebook processes personal data, including how to exercise your data subject rights against Facebook, please refer to Facebook’s data policy at https://www.facebook.com/about/privacy.

Hubspot

We use the HubSpot service by HubSpot Inc, 25 First Street, Cambridge, MA 02141, United States for marketing, sales and administrative purposes, such as organising our customer relationships, getting in touch with users of our website, determining which services of our company are of interest to you or for the efficient and fast processing of user inquiries.

So-called “web beacons” are used and “cookies” are also set, which are stored on your computer and enable us to analyse your use of the website.

Hubspot evaluates the information collected (e.g. IP address, geographical location, type of browser, duration of the visit and pages accessed) on behalf of collectAI to generate reports on the visit and the pages visited by collectAI. If collectAI email news is subscribed to and studies and other documents are obtained, we can also use Hubspot to link a user’s visits to collectAI websites with personal details (in particular name/email address) on the basis of consent given, thus recording them on a personal basis and informing users individually and in a targeted manner about preferred topics.

If you generally do not want Hubspot to collect data, you can prevent the storage of cookies at any time by changing your browser settings accordingly. You can also object to data processing. To object or to withdraw your consent, please use the form at the following link: https://privacyportal.onetrust.com/webform/9fd092df-0b2a-4194-89f1-820b83267af4/13da1ce4-8542-4d34-a84c-379495aa666c. For more information, visit https://legal.hubspot.com/privacy-policy.

LinkedIn plugin

Our website uses functionalities of the LinkedIn social network. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (hereinafter: LinkedIn).

Each time one of our pages containing LinkedIn functionalities is accessed, a connection to LinkedIn’s servers is established. LinkedIn is informed that you have visited our website with your IP address. If you click on the LinkedIn “Recommend” button and are logged into your LinkedIn account, LinkedIn is able to associate your visit to our website with you and your user account. We would like to point out that, as the provider of the websites, we have no knowledge of the content of the transmitted data or its use by LinkedIn.

The use of the LinkedIn plugin is based on art. 6(1)(a) GDPR, with your consent, which you have given to the service provider.

We use the integrated analysis platform “LinkedIn Analytics” to analyse our advertising campaigns on the pages of the social media service LinkedIn. Using this platform, we can analyse visitor data (e.g. number of visitors, number of new visitors and followers) and performance data and use it to optimize our advertising campaigns and become more relevant to our target group. Further information on this can be found in LinkedIn’s privacy policy at:https://www.linkedin.com/legal/privacy-policy.

When using this service, data may be transferred to third countries outside the EU; this is done in accordance with the above information on transfer to third countries.

Linkedin Insights

Our website uses the “LinkedIn Insight Tag” conversion tool by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. This tool stores a cookie in your web browser that enables the collection of the following data, among others: IP address, device and browser properties and page events (e.g. page views). This data is encrypted, anonymised within seven days, and the anonymised data is deleted within 90 days. LinkedIn does not share any personal data with us, but provides anonymised reports on website audience and ad performance. LinkedIn also allows us to place retargeting ads via the Insight Tag. The controller can use this data to display targeted advertising outside its website without identifying you as a website visitor. You can find more information on data protection at LinkedIn in the LinkedIn privacy notice.

Your data will be processed with your consent in accordance with art. 6(1)(a) GDPR.

LinkedIn members can control the use of their personal data for advertising purposes in their account settings. To deactivate the Insight tag on our website, please change this in the cookie settings.

Adjustment and revocation of your cookie consent:

You can adjust your cookie settings here at any time or revoke your consent for certain cookies.

Status of this privacy policy

December 2023

We reserve the right to amend this privacy policy at any time with effect for the future.