Privacy Notice

The following information provides you with an overview of what happens to your personal data when you visit our website www.yuvenda.com and/or contact us as a prospective customer. Personal data means any data by which you can be personally identified.

1. Controller

The controller responsible for data processing is

YUVENDA GmbH
Lindleystraße 8A
60314 Frankfurt am Main
Deutschland
E-Mail: datenschutz@yuvenda.com

1.1 Contact details of the Data Protection Officer

We have appointed an external Data Protection Officer for our company. He is available to provide information on data protection using the following contact details:

datenschutz süd GmbH
Wörthstraße 15
97082 Würzburg
Web: https://www.dsn-group.de/
E-Mail: office@datenschutz-sued.de

If you contact our Data Protection Officer, please also specify the responsible entity named in the legal notice.

2. Usage Data

When you visit our websites, so-called usage data is temporarily evaluated on our web server for statistical purposes as a log in order to improve the quality of our websites. This data record consists of

the name and address of the requested content,
the date and time of the request,
the amount of data transferred,
the access status (content transferred, content not found),
the description of the web browser and operating system used,
the referral link indicating the page from which you reached our website.

The legal basis for processing usage data is Art. 6(1) sentence 1 lit. f GDPR. Processing is carried out on the basis of the legitimate interest in providing the website content and ensuring device- and browser-optimised display.
If you contact us as a prospective customer, we process the personal data required to handle your enquiry, take pre-contractual measures, or provide you with the requested information. The specific data collected depends on the type and scope of the respective enquiry and the enquiry or contact form used.
As a rule, we process the following data in particular:

First name and surname
business email address
telephone number, where applicable
company name and function
content of the enquiry or transmitted information

In addition, depending on the specific enquiry, further voluntary information may be processed if you provide it to us. This data is processed exclusively for the purposes described in this privacy notice.

3. Purpose and Legal Basis of the Data Processing Activities

3.1 Storage of the IP Address for Security Purposes

In addition, we store the full IP address transmitted by your web browser strictly for a specific purpose for a period of seven days, based on the legitimate interest of detecting, limiting and eliminating attacks on our websites. After this period expires, we delete or anonymise the IP address. The legal basis for the processing is Art. 6(1) sentence 1 lit. f GDPR.

3.2 Newsletter Subscription and Tracking

You can subscribe to a newsletter on our websites. Please note that we require certain data to register you for the newsletter (at least your email address).

The newsletter will only be sent if you have given us your explicit consent. After placing your order, you will receive a confirmation email at the email address you provided (so-called double opt-in). You may revoke your consent at any time. An easy way to revoke your consent is, for example, via the unsubscribe link included in every newsletter.

In connection with newsletter registration, in addition to the data already mentioned, we store further data where necessary so that we can prove that you ordered our newsletter. This may include storing the full IP address at the time of the order or confirmation of the newsletter, as well as a copy of the confirmation email sent by us. The corresponding data processing is carried out on the basis of Art. 6(1) sentence 1 lit. f GDPR and the legitimate interest in being able to demonstrate accountability for the lawfulness of the newsletter distribution.

In addition, we integrate individual tracking pixels into our newsletters that enable us to determine when the newsletter sent to you was accessed or opened, and we personalise the links contained in the newsletter so that we can evaluate when you clicked which link. This tracking data is stored for the duration of the existing contact and for the analysis and optimization of our marketing activities, but only for as long as this is necessary for the stated purposes. Inactive contacts are regularly reviewed and deleted or anonymized in accordance with our internal deletion and retention policies.

If you wish to revoke your consent, please use the unsubscribe link included in every newsletter or the link for adjusting your consent.

For storing your contact data and for sending and tracking our newsletter, we use the HubSpot service. HubSpot is technically administered by our parent company, YUVENDA GmbH. We have concluded a corresponding data processing agreement pursuant to Art. 28 GDPR with YUVENDA GmbH. In addition, a data processing agreement pursuant to Art. 28 GDPR exists between YUVENDA GmbH and HubSpot Inc. regarding the hosting and support of the HubSpot system. In this context, a transfer of your data to the USA cannot be ruled out. HubSpot is certified under the EU Data Privacy Framework, thereby ensuring an adequate level of data protection.

3.3. Contact Form / Online Demo

Our websites contain forms that allow you to contact us. To use our contact form or online demo form, we initially require the data marked as mandatory fields, such as your name and email address. We use this data on the basis of Art. 6(1) sentence 1 lit. f GDPR in order to respond to your enquiry.

In addition, you can decide for yourself whether you wish to provide us with further information. This information is voluntary and not mandatory for making contact. We process your voluntary information on the basis of your consent. You may revoke your consent to the processing of the voluntary information at any time. Please contact the email address stated in the legal notice or, centrally, datenschutz@yuvenda.com.

Your contact details are stored in our HubSpot CRM system. HubSpot is technically administered by our parent company, YUVENDA GmbH. We have concluded a corresponding data processing agreement pursuant to Art. 28 GDPR with YUVENDA GmbH. In addition, a data processing agreement pursuant to Art. 28 GDPR exists between YUVENDA GmbH and HubSpot Inc. regarding the hosting and support of the HubSpot system. In this context, a transfer of your data to the USA cannot be ruled out. HubSpot is certified under the EU Data Privacy Framework, thereby ensuring an adequate level of data protection.

3.4. Consultation Meeting

Prospective customers have the option via the website to arrange a non-binding consultation meeting with the Sales Director. The mandatory information required for booking an appointment is name, email address and company name.

We use this data on the basis of Art. 6(1) sentence 1 lit. b GDPR, as the data processing is necessary for the preparation and conduct of the consultation appointment and for clarifying any follow-up questions.

In addition, you can decide for yourself whether you wish to provide us with further information. This information is voluntary and not mandatory for arranging the appointment. We process your voluntary information on the basis of your consent pursuant to Art. 6(1) lit. a GDPR.

You may revoke your consent at any time by notifying us, for example by sending a message to datenschutz@yuvenda.com. The revocation does not affect the lawfulness of the data processing carried out until the revocation.

We use Zoom/Microsoft Teams to conduct the appointment. We have also concluded a data processing agreement pursuant to Art. 28 GDPR with the provider of the video conferencing tool.

3.5. Whitepapers / Case Studies

As part of our marketing activities, we create and publish so-called “white papers”. These are documents containing practical examples and ROI components. To send the PDF document, contact details such as your name, email address and, optionally, the company name are required. The collection of this data is carried out for the purpose of sending the white paper and is based on Art. 6(1) lit. b GDPR.

3.6. Conducting Direct Marketing

As part of our business activities, we also process personal data of prospective customers for direct marketing purposes. This includes, in particular, information about our own products, services, events, webinars, specialist information and comparable content. Direct marketing may be carried out through various communication channels, in particular by email, as well as by telephone or post.

Direct marketing based on consent

If you have given us your explicit consent, we process your personal data for direct marketing purposes on the basis of Art. 6(1) sentence 1 lit. a GDPR. You may revoke any consent you have given at any time with effect for the future, for example via the unsubscribe link included in every marketing email or by notifying us accordingly. The revocation does not affect the lawfulness of the data processing carried out until the revocation.

Direct marketing towards prospective customers

Direct marketing to prospective customers is also carried out on the basis of our legitimate interest pursuant to Art. 6(1) sentence 1 lit. f GDPR, provided that no consent has been given and no contrary intention is apparent. Our legitimate interest lies, in particular, in initiating business relationships and providing information about our own thematically relevant products and services.

You may object at any time to the processing of your personal data for direct marketing purposes pursuant to Art. 21 GDPR.

4. Data Security

We take technical and organisational measures to protect your data as comprehensively as possible against unwanted access. We use an encryption procedure on our websites. Your information is transmitted from your computer to our server and back via the internet using TLS encryption. You can usually recognise this by the closed padlock symbol in your browser’s status bar and by the address line beginning with https://.

5. Analytics Tools

5.1. Google Tag Manager

This website uses “Google Tag Manager”, a service provided by the following provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: “Google”).

Google Tag Manager provides a technical basis for bundling various web applications, including tracking and analytics services, and for calibrating, controlling and linking them to conditions via a uniform user interface. Google Tag Manager itself does not store any information on user devices or read such information. Nor does the service itself perform any independent data analyses. However, when a page is accessed, your IP address is transmitted to Google via Google Tag Manager and may be stored there. Transmission to servers of Google LLC in the USA is also possible.

This processing only takes place if you have given us your explicit consent pursuant to Section 25 TDDDG in conjunction with Art. 6(1) lit. a GDPR. Without this consent, Google Tag Manager will not be used during your visit to the website. You may revoke your consent at any time with effect for the future. To exercise your withdrawal, please deactivate this service in the “Cookie Consent Tool” provided on the website.

A data processing agreement has been concluded with the provider to ensure the protection of our website visitors’ data and to prohibit unauthorised disclosure to third parties.

Where data is processed outside the EU or EEA in this context (in particular in the USA), an adequate level of data protection is ensured due to [Google LLC]()’s certification under the EU-U.S. Data Privacy Framework.

5.2. Website Analytics with Google Analytics

We use the web analytics tool “Google Analytics 4” for the needs-based design and optimisation of our website. Google Analytics creates user profiles based on pseudonyms. For this purpose, permanent cookies are stored on your device and read. In this way, recurring visitors can be recognised and counted as such.

Within the scope of the Google Analytics service, Google Ireland Limited supports us as a processor pursuant to Art. 28 GDPR. Data processing may also take place by Google outside the EU or EEA (in particular in the USA). With regard to Google, an adequate level of data protection is ensured on the basis of the adequacy decision (EU-U.S. Data Privacy Framework). In addition, Google undertakes to conclude Standard Contractual Clauses with further sub-processors.

This processing only takes place if you have given us your explicit consent pursuant to Section 25 TDDDG in conjunction with Art. 6(1) lit. a GDPR. Without this consent, Google Analytics will not be used during your visit to the website. You may revoke your consent at any time with effect for the future. To exercise your withdrawal, please deactivate this service in the “Cookie Consent Tool” provided on the website.

5.3. Google Ads Remarketing

We use the online advertising program Google Ads provided by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Ads Remarketing allows us to address visitors to our website again with targeted advertisements after their visit, either in the Google search engine, on YouTube or on other websites. For this purpose, user behaviour on our website is recorded using cookies or similar technologies in order to recognise users later and display suitable advertisements. In addition, audience targeting allows advertising to be displayed based on user data available at Google, such as location, interests or demographic characteristics. This data originates from the user’s Google account or from their browsing behaviour and is provided by Google in aggregated form.

As the website operator, we receive quantitative evaluations via Google Ads, for example regarding which search terms led to our ads being displayed, how many users clicked on the ads and whether this resulted in conversions. This information helps us to analyse and optimise the performance of our campaigns.

This service is used on the basis of your consent pursuant to Art. 6(1) lit. a GDPR and Section 25(1) TDDDG. Consent may be revoked at any time.

Data transfers to the USA are based on the European Commission’s Standard Contractual Clauses. Details can be found here:

https://policies.google.com/privacy/frameworks and
https://business.safety.google/controllerterms/.

The company is certified under the “EU-U.S. Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information is available from the provider at the following link: https://www.dataprivacyframework.gov/participant/5780.

5.4. Google Ads Conversion-Tracking

This website uses Google Conversion Tracking, a service of Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
With the help of this tracking tool, we can understand whether users performed certain actions on our website after clicking on one of our Google advertisements, such as clicking specific buttons, viewing products or completing a purchase. This information is used to create conversion statistics with which we can evaluate and optimise the effectiveness of our advertising campaigns.

We receive only aggregated evaluations, for example regarding the total number of users who clicked on our advertisements and which actions they subsequently performed. No personal data is transmitted that would allow direct identification of individual users.

Google uses cookies or comparable technologies to recognise users. The processing of this data takes place only after prior consent via our consent banner in accordance with the GDPR and the TDDDG. Further information on data processing by Google can be found in Google’s privacy policy.

This service is used on the basis of your consent pursuant to Art. 6(1) lit. a GDPR and Section 25(1) TDDDG. Consent may be revoked at any time.

5.5. Website Analytics with HubSpot

We also use the website analytics service of the provider HubSpot Ireland Ltd. on our website to analyse the use of our website. This enables us to continuously improve and optimise our marketing measures and our online offering. The data obtained may be used to create target groups and may be used for remarketing campaigns via connected advertising platforms (e.g. Facebook, Google or LinkedIn).

Data processing takes place exclusively on the basis of your explicit consent via our cookie banner pursuant to Section 25 TDDDG in conjunction with Art. 6(1) lit. a GDPR. You may revoke your consent at any time with effect for the future. To exercise your withdrawal, please deactivate this service in the “Cookie Consent Tool” provided on the website.

For the purpose of website analytics, HubSpot places cookies on your device that enable the collection of your use of our website. The information collected in this context, such as IP address, timestamp, VID and visited subpages, is stored on HubSpot servers.

If you provide us with your personal data via a form on the website (e.g. the contact form), these details (e.g. name, email address) may be combined by HubSpot with the previously collected usage data.

As part of the storage of data by HubSpot, data processing by HubSpot may take place outside the EU or EEA (in particular in the USA). With regard to HubSpot, an adequate level of data protection is ensured on the basis of the adequacy decision (EU-U.S. Data Privacy Framework).

5.6. LinkedIn Insight Tag

This website uses the LinkedIn Insight Tag, a service of LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

The Insight Tag is JavaScript code integrated into our website in order to enable statistical evaluations of the use of our website in connection with LinkedIn advertising campaigns. With the help of the tag, we receive information about how visitors interact with our website, in particular whether they performed certain actions after clicking on a LinkedIn advertisement (so-called “conversions”). Conversion measurement may also take place across devices, e.g. from smartphone to desktop.

In addition, the Insight Tag enables the creation of retargeting audiences so that website visitors can later be addressed again with advertisements specifically via LinkedIn. According to LinkedIn, no direct identification of individual users takes place in this context.

In addition, we receive aggregated information about the professional characteristics of our website visitors, provided they are registered and logged in to LinkedIn. This includes, for example, career level, industry, job title, company size, location and country. This data helps us to better align our content and advertising measures with relevant target groups.

This service is used on the basis of your consent pursuant to Art. 6(1) lit. a GDPR and Section 25(1) TDDDG. Consent may be revoked at any time.

Data transfers to the USA are based on the European Commission’s Standard Contractual Clauses. Details can be found here: https://www.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs.

5.7. Meta Pixel

This website uses the Meta Pixel, a service of Meta Platforms Ireland Limited, Merrion Road, Dublin 4, Ireland.

The Meta Pixel is JavaScript code integrated into our website in order to enable statistical evaluations of the use of our website in connection with advertising campaigns on Facebook and Instagram. With the help of the pixel, we receive information about how visitors interact with our website, in particular whether they performed certain actions after clicking on an advertisement (so-called “conversions”). Conversion measurement may also take place across devices, e.g. from smartphone to desktop.
In addition, the Meta Pixel enables the creation of retargeting audiences so that website visitors can later be addressed again with advertisements specifically via Facebook and Instagram. According to Meta, no direct identification of individual users takes place in this context.

In addition, we receive aggregated information about the professional characteristics of our website visitors, provided they are registered and logged in on Meta platforms. This includes, for example, career level, industry, job title, company size, location and country. This data helps us to better align our content and advertising measures with relevant target groups.

This service is used on the basis of your consent pursuant to Art. 6(1) lit. a GDPR and Section 25(1) TDDDG. Consent may be revoked at any time via the consent banner.
Meta Platforms, Inc. is certified under the “EU-U.S. Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information is available at the following link: https://www.dataprivacyframework.gov/list.

5.8. Microsoft Universal Event Tracking (UET)

This website uses conversion tracking from Microsoft Ireland Operations Ltd., One Microsoft Place, South County Business Park, Leopardstown, Dublin 18.

For the purpose of conversion tracking, a unique UET code snippet (tag) is integrated on our website, which sets tracking cookies on the device and also uses the browser’s web storage. With the help of cookies and information in web storage, we receive information about how visitors interact with our website, in particular whether they performed certain actions on our website after clicking on an advertisement via Microsoft Advertising (formerly “Bing Ads”) (so-called “conversions”). Conversion measurement may also take place across devices, e.g. from smartphone to desktop. This data enables us to carry out statistical evaluations of the use of our website in connection with advertising campaigns on the Yahoo and Bing search engines.

In addition, UET enables the creation of retargeting audiences so that website visitors can later be addressed again with advertisements specifically via Microsoft Advertising. According to Microsoft, no direct identification of individual users takes place in this context.

This service is used on the basis of your consent pursuant to Art. 6(1) lit. a GDPR and Section 25(1) TDDDG. Consent may be revoked at any time via the consent banner.
Microsoft Corporation, based in Redmond, USA, is certified under the “EU-U.S. Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information is available at the following link: https://www.dataprivacyframework.gov/list.

5.9. SalesViewer

We have integrated SalesViewer on this website. The provider is SalesViewer / SalesViewer GmbH, Huestraße 30, 44787 Bochum (hereinafter “SalesViewer”). A data processing agreement in accordance with Article 28 of the GDPR is in place.

SalesViewer enables us to record visits to our website by representatives of other companies. For this purpose, the IP address of the website visitor is compared with the company IP addresses stored in SalesViewer’s company database. If this is the IP address of a company, this visit and user behaviour are recorded. IP addresses that are not contained in the SalesViewer database are deleted immediately so that visits to the website by private individuals are ignored by SalesViewer.

SalesViewer offers an opt-out procedure to improve data protection. Further details can be found at the following provider link: https://www.salesviewer.com/de/opt-out/.

SalesViewer is used on the basis of Art. 6(1) lit. f GDPR. The website operator has a legitimate interest in recording visits by companies to our website and their user behaviour. Where corresponding consent has been requested, processing takes place exclusively on the basis of Art. 6(1) lit. a GDPR and Section 25(1) TDDDG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent may be revoked at any time.

Further details can be found in the provider’s privacy policy at https://www.salesviewer.com/de/plattform/datenschutz/.

6. Google Maps

This website uses the map service Google Maps. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. With the help of this service, we can integrate map material on our website.

To use the functions of Google Maps, it is necessary to store your IP address. This information is generally transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer. If Google Maps is activated, Google may use Google Fonts for the purpose of uniform display of fonts. When you access Google Maps, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.

Google Maps is used in the interest of an appealing presentation of our online offerings and in making the locations indicated on our website easy to find. This constitutes a legitimate interest within the meaning of Art. 6(1) lit. f GDPR. If corresponding consent has been requested, processing takes place exclusively on the basis of Art. 6(1) lit. a GDPR and Section 25(1) TDDDG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent may be revoked at any time.

Data transfers to the USA are based on the European Commission’s Standard Contractual Clauses. Details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

More information on the handling of user data can be found in Google’s privacy policy: https://policies.google.com/privacy?hl=de.

7. Joint Controllership within the YUVENDA Group

Your personal data may be transferred to affiliated companies within the YUVENDA Group.

All affiliated companies within the YUVENDA Group have equal access to your contact data in HubSpot, which you have provided to us in the collection forms described on the website, for the purposes of central lead generation within the group, avoiding redundant data records, and enabling us to suggest products of our affiliated companies that may also be useful to you in our discussions. These purposes also constitute the legitimate interests for the data transfer to the affiliated companies of the YUVENDA Group on the basis of Art. 6(1) lit. f GDPR.

In addition, YUVENDA GmbH centrally carries out online and performance marketing for all affiliated companies of the YUVENDA Group and their websites and, in this respect, has access to the analytics and tracking data processed through the use of the aforementioned analytics and tracking tools. The transfer of this data to YUVENDA GmbH and the data processing by YUVENDA GmbH serve the purposes of centrally managing and determining the analytics and tracking tools as well as the campaigns for the websites of the YUVENDA Group, and thus the group-wide optimisation of advertising and campaigns. By giving your consent to the collection and further processing of your personal data via our consent banner, you also consent to the transfer of data to YUVENDA GmbH. The legal basis is therefore Art. 6(1) lit. a GDPR.

With regard to the aforementioned purposes, joint controllership pursuant to Art. 26 GDPR exists between the affiliated companies of the YUVENDA Group. For further information and the essence of the agreement concluded pursuant to Art. 26(2) GDPR, please contact datenschutz@yuvenda.com.

8. Further Processors

Within the framework of processing on our behalf pursuant to Art. 28 GDPR, we pass your data on to service providers who support us in operating our websites and the related processes. These include, for example, hosting service providers. Our service providers are strictly bound by our instructions and are contractually obligated accordingly.

Below, we name the processors with whom we work, provided that we have not already done so in the preceding text of this privacy policy. If, in this context, data may be processed outside the EU or the EEA, we will inform you of this in the following table.

Anbieter	Zweck	Angemessenes Datenschutzniveau
Intelligix IT-Services GmbH	Webhosting	Sitz in Deutschland
Cookiebot	Consent Management Platform (CMP)	Sitz in Europa
ALVARA Holding GmbH	Central processing of data subject requests	Based in Germany

9. Retention Period

Unless we have already informed you in detail about the retention period, we delete personal data when it is no longer required for the aforementioned processing purposes and no legitimate interests or other (statutory) retention reasons prevent deletion.

10. Your Rights as a Data Subject

When processing your personal data, the GDPR grants you certain rights as a data subject:

Right of Access (Art. 15 GDPR)
You have the right to request confirmation as to whether personal data concerning you is being processed; if this is the case, you have a right of access to that personal data and to the information listed in detail in Art. 15 GDPR.

Right to Rectification (Art. 16 GDPR)
You have the right to request the immediate rectification of inaccurate personal data concerning you and, where applicable, the completion of incomplete data.

Right to Erasure (Art. 17 GDPR)
You have the right to request the immediate deletion of personal data concerning you, provided that one of the reasons listed in detail in Art. 17 GDPR applies.

Right to Restriction of Processing (Art. 18 GDPR)
You have the right to request restriction of processing where one of the conditions listed in Art. 18 GDPR is met, for example if you have objected to the processing, for the duration of the controller’s review.

Right to Data Portability (Art. 20 GDPR)
In certain cases listed in detail in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format or to request the transfer of this data to a third party.

Right to Withdraw Consent (Art. 7 GDPR)
If data processing is based on your consent, you are entitled under Art. 7(3) GDPR to withdraw your consent to the use of your personal data at any time. Please note that the withdrawal only takes effect for the future. Processing carried out before the withdrawal is not affected.

Right to Object (Art. 21 GDPR)
Where data is collected on the basis of Art. 6(1) sentence 1 lit. f GDPR (data processing to safeguard legitimate interests) or on the basis of Art. 6(1) sentence 1 lit. e GDPR (data processing in the public interest or in the exercise of official authority), you have the right to object at any time, on grounds relating to your particular situation, to the processing. We will then no longer process the personal data unless there are demonstrably compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims.

Right to Lodge a Complaint with a Supervisory Authority (Art. 77 GDPR)
Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of data concerning you infringes data protection provisions. The right to lodge a complaint may, in particular, be exercised with a supervisory authority in the Member State of your habitual residence, your place of work or the place of the alleged infringement.

Exercising Your Rights
Unless otherwise described above, please contact datenschutz@yuvenda.com to exercise your data subject rights.

This mailbox is maintained by ALVARA Holding GmbH as the central administrative office of the YUVENDA Group for data subject requests. However, data protection rights may always also be exercised with the company named in the legal notice.

Responses to your data subject requests are provided by ALVARA Holding GmbH within the framework of processing on behalf pursuant to Art. 28 GDPR for the other companies.

11. Use of Cookies

11.1. Cookie Consent Tool

We use a consent management platform (consent or cookie banner) on our websites. The provider of this technology is Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark (hereinafter “Cookiebot”).

The processing associated with the use of Cookiebot and the logging of the settings you have made is carried out on the basis of Art. 6(1) sentence 1 lit. f GDPR, based on our legitimate interest in displaying our content according to your preferences and being able to demonstrate the consent(s) you have given. Your settings, the consent granted with them and parts of your usage data are stored in a cookie. This means that the cookie is retained for subsequent page requests and your consent can continue to be traced.

Cookiebot is used in order to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6(1) lit. c GDPR.

11.2. Necessary Cookies

We use cookies on our websites that are necessary for the use of our websites.

Cookies are small text files that can be stored on and read from your device. A distinction is made between session cookies, which are deleted again as soon as you close your browser, and permanent cookies, which are stored beyond the individual session.

We do not use these necessary cookies for analytics, tracking or advertising purposes.

Some of these cookies only contain information about certain settings and are not personally identifiable. They may also be necessary to enable user guidance, security and the implementation of the site.

We use these cookies on the basis of our legitimate interest pursuant to Art. 6(1) sentence 1 lit. f GDPR.

You can configure your browser so that it informs you about the placement of cookies. In addition, you can delete them at any time via the corresponding browser setting and prevent the placement of new cookies. Please note that our websites may then not be displayed in full and some functions may no longer be technically available.

Privacy Notice

1. Controller

1.1 Contact details of the Data Protection Officer

2. Usage Data

3. Purpose and Legal Basis of the Data Processing Activities

3.1 Storage of the IP Address for Security Purposes

3.2 Newsletter Subscription and Tracking

3.3. Contact Form / Online Demo

3.4. Consultation Meeting

3.5. Whitepapers / Case Studies

3.6. Conducting Direct Marketing

4. Data Security

5. Analytics Tools

5.1. Google Tag Manager

5.2. Website Analytics with Google Analytics

5.3. Google Ads Remarketing

5.4. Google Ads Conversion-Tracking

5.5. Website Analytics with HubSpot

5.6. LinkedIn Insight Tag

5.7. Meta Pixel

5.8. Microsoft Universal Event Tracking (UET)

5.9. SalesViewer

6. Google Maps

7. Joint Controllership within the YUVENDA Group

8. Further Processors

9. Retention Period

10. Your Rights as a Data Subject

11. Use of Cookies

11.1. Cookie Consent Tool

11.2. Necessary Cookies

11.3. List of All Cookies