Data protection

‍THE TOPIC OF DATA PROTECTION CONCERNS EVERYONE!

Data protection law is part of our personal rights. Especially in our constantly evolving and networked world, the importance of these rights should not be underestimated. Alice&Bob.Company is a service provider in the field of cloud computing and cloud security. Data security and data protection are at the heart of the company's purpose. Accordingly, data protection law is particularly important to the company.

The information contained in this privacy policy describes how Alice&Bob.Company collects, processes and uses the personal data of visitors to this website.

Personal data is all data with which you can be personally identified. This includes, for example, your name, address, e-mail address or telephone number. The processing of this data by Alice&Bob.Company is always carried out in accordance with the General Data Protection Regulation and in accordance with the country-specific data protection regulations applicable to us.

1. NAME AND CONTACT OF THE RESPONSIBLE PERSON

The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is

Alice&Bob.Company GmbH
Grünberger Str. 54
10245 Berlin
E-Mail: hello@aliceandbob.company

We would like to inform you and the public about the type, scope and purpose of the personal data we collect, use and process in a comprehensible manner so that comprehensive information on the subject of data protection is provided.

Below you will therefore find extensive information on how we process personal data.

2. COLLECTION AND STORAGE OF PERSONAL DATA AND THE NATURE AND PURPOSE OF THEIR USE

a) General data processing when visiting the website

Our website collects a range of general data and information each time you access the website. This general data and information is stored in the server log files. The following can be recorded

browser types and versions used,
the operating system used by the accessing system,
the website from which an accessing system reaches our website (so-called referrer),
the date and time of access to the website,
an Internet Protocol address (IP address),
the Internet service provider of the accessing system

When using this general data and information, our company does not draw any conclusions about you. Rather, this information is required in order to

to deliver the content of our website correctly,
to optimize the content of our website,
to ensure the long-term functionality of our information technology systems and the technology of our website, and
to provide law enforcement authorities with the information necessary for prosecution in the event of a cyber-attack.

This collected data and information is therefore evaluated by us both statistically and with the aim of increasing data protection and data security in our company in order to ultimately ensure an optimal level of protection for the personal data processed by us. The server log file data is stored separately from other personal data.

The legal basis for this is Art. 6 para. 1 f) GDPR. Our legitimate interest lies in the error-free delivery of the website, the continuous optimization of website performance and the security of our IT systems.

b) Contact option via the website, via chatbot and via e-mail

If you contact us by e-mail or via the form provided on our website, the personal data you provide will be stored automatically. Such personal data transmitted by you to us on a voluntary basis will be stored for the purpose of processing your request and contacting you. The legal basis for this is Art. 6 para. 1 b) GDPR or, insofar as it is not an inquiry that is also aimed at the conclusion of a future contract, Art. 6 para. 1 a) GDPR.

c) Subscription to our newsletter

You can subscribe to our company newsletter on our website. In addition to your email address, which is mandatory for sending the newsletter, we also collect your first and last name. The legal basis for this is Art. 6 para. 1 a) GDPR and for the first and last name Art. 6 para. 1 f) GDPR. Our legitimate interest lies in the desire to address our subscribers personally.

To send our newsletter, we use the "Zoho" service, for which we have engaged its operator, ZOHO CORPORATION B. V., as a processor. Further information on this can be found below in the overview of our service providers (data collection by third parties and data transfer to third parties).

We inform all subscribers at regular intervals by means of a newsletter about offers and innovations from our company.

For legal reasons, a confirmation email is sent to the email address entered for the first time for the newsletter mailing using the double opt-in procedure. This confirmation email is used to check whether the person authorized to access the email address has authorized receipt of the newsletter.

When you register for the newsletter, we also store the IP address assigned by the Internet service provider (ISP) at the time of registration, the computer system used and the date and time of registration. The collection of this data is necessary in order to be able to trace any (possible) misuse of your e-mail address at a later date and therefore serves our legal protection.

You can cancel your subscription to our newsletter at any time and revoke your consent to the storage of your personal data, which you have given us for the newsletter dispatch, at any time. There is a corresponding link in every newsletter for the purpose of canceling the newsletter subscription or revoking your consent. Alternatively, you can also contact us directly.

Our newsletters contain so-called tracking pixels. A tracking pixel is a miniature graphic that is embedded in emails to enable log file recording and log file analysis. This allows a statistical evaluation of the success or failure of online marketing campaigns to be carried out. Using the embedded tracking pixel, we can recognize whether and when the newsletter was opened and which links were called up by you from the newsletter.

Such personal data collected via the tracking pixels contained in the newsletters are stored and evaluated by us in order to optimize the newsletter dispatch and to adapt the content of future newsletters even better to the interests of the subscribers. This personal data is not passed on to third parties. You are entitled at any time to revoke the separate declaration of consent given in this regard via the double opt-in procedure.
The analysis data is processed on the basis of Art. 6 para. 1 f) GDPR. Our legitimate interests lie in analyzing the usage habits of our subscribers and improving our advertising efforts.

d) Our blog - your comments

We offer you a blog on our website where, in addition to the latest information, you have the opportunity to leave individual comments on individual blog posts.

A blog is a portal on a website, usually open to the public, in which one or more people, called bloggers or web bloggers, can post articles or write down thoughts in so-called blog posts. The entries can usually be commented on by third parties.

If you leave a comment on our blog, in addition to the comments you leave, details of the time you entered the comment and your chosen username (pseudonym) will be saved and published. We reserve the right to check the content of your comment before publishing it. Furthermore, the IP address assigned by your Internet service provider (ISP) is also logged. The IP address is stored for security reasons and in the event that you violate the rights of third parties or post illegal content (insults, prohibited political propaganda, etc.) by posting a comment. The storage of this personal data is therefore in our own interest (Art. 6 para. 1 lit. f. GDPR) so that we can defend ourselves in the event of an infringement. This collected personal data will not be passed on to third parties unless such a transfer is required by law or serves our legal defense.

Furthermore, we will use the mandatory e-mail address to prevent spam postings and also to send you notifications when someone has replied to your comment. The legal basis in each case is Art. 6 para. 1 lit. f. GDPR. Our legitimate interest lies on the one hand in keeping the comments free of spam and on the other hand in improving communication about our posts.

Furthermore, we reserve the right, on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f. GDPR, to process user data for the purpose of spam detection.

e) Applications

You can also send us your application documents via our website, which we will then process in order to consider a possible position with us.

The legal basis for this is Art. 6 para. 1 b) GDPR.

We have engaged Zoho B.V. as a processor to handle this task. Further information on data processing can be found in the overview of our service providers (data collection by third parties and data transfer to third parties).

f) General advertising activities towards customers and interested parties

As a company, we are constantly striving to win new customers for our products and services.

We will therefore collect and process personal data from potential interested parties and their contact persons both ourselves and via the service providers we use within the scope of our legitimate interests and on the basis of Art. 6 para. 1 f) GDPR. Our interest here lies in expanding our customer base.

The same applies to the processing of data of former customers and their contact persons, whom we would like to encourage to purchase our products and use our services again in the future through our continued advertising activities.

Further information on the service providers used for this purpose can be found below in the section on service providers (data collection by third parties and data transfer to third parties).

Based on our binding internal guidelines, we will constantly check whether the data of individual persons is still covered by our legitimate interests and whether it can be deleted after the internally specified deadlines have expired.

g) Processing of customer data in the contractual relationship

If you or your employer enter into a contractual relationship with us regarding our products or services, we will process your personal data for the duration of the contractual relationship on the basis of Art. 6 para. 1 b) GDPR to fulfill the mutual contractual obligations.

In addition, we will also process your data for advertising purposes during the term of the contract on the basis of Art. 6 para. 1 f) GDPR in order to offer you further products and services from our company. Our legitimate interest here lies in the expansion of our company business with our existing customers.

3. DELETION AND BLOCKING OF PERSONAL DATA

We process and store your personal data only for the period necessary to achieve the purpose of storage or if this has been provided for by the European legislator or another legislator in laws or regulations to which the controller is subject.

If the storage purpose no longer applies or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.

As a rule, we will delete data that we have received via emails, contact forms or from our service providers and that does not result in an offer process after 2 years. In individual cases, this period may be extended to up to 3 years due to continued communication.

We will retain data that is transferred to an offer process when a contractual relationship is established for the duration of this contractual relationship and after its termination until the expiry of the regular limitation periods. If the contact details of individual data subjects are no longer required due to the specific contractual relationship and there are no retention periods for this data, we will also delete the data earlier on request.

Once the application process has been completed, we will either transfer incoming applications to your personnel file or, if you are not hired, delete them after 6 months.

4. DATA COLLECTION BY THIRD PARTIES AND DATA DISCLOSURE TO THIRD PARTIES

a) Data processing with our sales partners

As part of our business activities, we work in a variety of ways with third parties who support us in the initiation, processing and ongoing support of our business contacts and contractual partners.

Some of our partners sell our products under their own responsibility, but are obliged to inform us who uses our products. For this purpose, only the names of the companies are transmitted. However, as this could also involve personal data, these partners are listed here. The legal basis for the storage of the data transmitted to us by the partner is Art. 6 para. 1 f) GDPR. Our legitimate interest lies in recording all customers who use our products.

Furthermore, we are contractually obliged to some partners to provide first and/or second level support (first and second level support), for which the partner must provide us with the data necessary to fulfill the support. The legal basis in this respect is Art. 6 para. 1 b) GDPR.

We have engaged other partners as processors in order to acquire potential customers for us. These partners are subject to our instructions when collecting and forwarding data to us and therefore fall within our area of responsibility for data processing.

b) Technical sales partners

In addition to the above-mentioned partners, we also use the predominantly technical services offered by third-party companies to organize our sales and support.

We use the following companies for the stated purposes:

(1) Zoho One

We use a universal platform called Zoho One for customer care, support, development and expansion of customer relationships and contract management. This includes the following aspects, among others:

Customer relationship management (CRM)
Ticket system
Newsletter system
Chatbot
This service is provided by Zoho B.V., Beneluxlaan 4B, 3527 HT UTRECHT.

However, due to the storage of the data on the provider's systems, we have also obligated the provider to comply with data protection as a processor.

The provider's servers are located within the EU.

As part of our system configuration, we ensure that the personal data of our customers and interested parties is not processed by Zoho One for its own purposes and only for the purposes we have requested.

Further information on data protection at Zoho One can be found at https://www.zoho.com/gdpr.html and at https://www.zoho.com/privacy.html.

Information on the data protection agreement (DPA) can be found at https://www.zoho.com/privacy/dpa/DPA_zoho_eu.pdf. Information on the IT security measures applied can be found at https://www.zoho.com/security.html.

(2) Bookings

Aice&Bob.Company uses the "Microsoft Bookings" service provided by Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA, to facilitate the booking of meeting appointments. Microsoft Bookings enables users to view available time slots and book appointments directly, for which the provision of certain personal data is required. After booking, users receive a confirmation email and a calendar invitation. The data is used to organize and manage the appointments and is only transmitted to Microsoft when the booking function is used. A&B collects this data to enable users to book appointments conveniently and efficiently. The legal basis for the processing is the consent of the user in accordance with Art. 6 para. 1 lit. a GDPR.

The personal data is only stored for as long as is necessary to fulfill the purpose for which it was collected and is then deleted. Users can withdraw their consent to the processing of their data at any time or object to its use, as a result of which it may no longer be possible to make appointments. Alternatively, it is possible to make appointments via other contact channels offered on our website. Further details on the handling of user data can be found in Microsoft's privacy policy.

(3) Facebook

We use Facebook Pixel on our website. This is a conversion measurement tool from Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). With its help, we can track the actions of users after they have seen or clicked on a Facebook ad. This allows us to record the effectiveness of Facebook ads for statistical and market research purposes. The data collected in this way is anonymous to us, i.e. we do not see the personal data of individual users. However, this data is stored and processed by Facebook. At the same time, Facebook can use this data to define our website visitors as its own target group for advertising.

We do not carry out an extended comparison with data such as e-mail addresses and transaction data from online stores.

Facebook can also link this data to your Facebook account and use it for its own advertising purposes in accordance with its own data usage policy (https://www.facebook.com/about/privacy/). You can enable Facebook and its partners to place advertisements on and outside of Facebook. A cookie may also be stored on your computer for these purposes. This consent may only be given by users over the age of 13. If you are younger, please ask your legal guardian for advice. You can object to the use of data by Facebook here: https://www.facebook.com/settings/?tab=ads.

(4) LinkedIn Services

This website uses LinkedIn services to improve the user experience on the website and to enable you to apply via LinkedIn, to facilitate the use of the LinkedIn social network and to make contact with other LinkedIn users. The provider is LinkedIn Corporation, 599 N Mathilda Ave, Sunnyvale, CA 94085, USA.

LinkedIn receives information about your visits and interactions with the LinkedIn services we offer, e.g. when you log in via LinkedIn or use plug-ins (e.g. "Share with LinkedIn" or "Apply with LinkedIn"). When you use the LinkedIn services on our website, LinkedIn uses your login information, cookies, device information and Internet Protocol ("IP") addresses to identify you and log your usage. You can find more information about the cookies used by LinkedIn at: https://www.linkedin.com/legal/cookie-policy.

If you are a member of the provider's social network and are logged into the social network during your visit to this website, your data and information about your visit to this website may be linked to your profile on the social network. We have no influence on the exact scope of the data collected about you by the provider. For more information about the scope, type and purpose of data processing, retention periods and your rights and privacy settings, please refer to the LinkedIn privacy policy at https://www.linkedin.com/legal/privacy-policy and https://www.linkedin.com/legal/privacy-policy-summary.

In cases where you expressly consent to the processing of your data, e.g. if you as a LinkedIn member agree to our request for access to your resources on LinkedIn, your consent is the legal basis for the data processing (Art. 7 GDPR). In other cases, e.g. if you apply to us via LinkedIn, the processing of your personal data is necessary for the establishment of the employment relationship (Art.6 para.1 lit.b GDPR and § 26 BDSG).

To prevent LinkedIn from collecting data for advertising purposes, you can set a cookie via this link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
In addition, you can make further data protection adjustments via this link: https://www.linkedin.com/help/linkedin/answer/62931/manage-advertising-preferences?lang=en

(5) LinkedIn Marketing Solutions

We use LinkedIn Marketing Solutions on our website. LinkedIn Marketing Solutions stores and processes information about your user behavior on our website.

We use LinkedIn Marketing Solutions for marketing and optimization purposes, in particular to analyze the use of our website and to continuously improve individual functions and offers as well as the user experience.
You can also prevent the installation of cookies by deleting existing cookies and deactivating the storage of cookies in the settings of your web browser. We would like to point out that in this case you may not be able to use all the functions of our website to their full extent.

(6) Webflow

A&B uses the Webflow platform to create and manage the website. Webflow is an online toolkit provided by Webflow, Inc, 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA. With this tool, users can design websites without programming knowledge using a drag-and-drop system. When using our website, various personal data is collected from visitors, which is provided depending on the interaction via contact forms, product purchases or newsletter subscriptions. The data collected may include name, email address, IP address and payment details. This information is transmitted to Webflow to ensure the functionality and security of the website and to enable an optimal display of content.

Webflow stores data and uses cookies and other recognition technologies that are necessary for the secure provision of certain functions and for the presentation of the site. Data is transferred to the USA on the basis of the European Commission's adequacy decision and the EU-US data protection agreement (Data Privacy Framework), through which Webflow is certified. This ensures that a comparable level of data protection is guaranteed.

Data is collected and processed on the basis of the user's consent in accordance with Art. 6 para. 1 lit. a GDPR. The stored data will only be kept for as long as is necessary for the respective purpose and deleted as soon as this purpose has been fulfilled. Users can withdraw their consent at any time and object to further data collection and processing. Such a revocation may mean that certain functions are no longer available or that communication cannot be continued.

The data processed by Webflow includes:
- Cookies: Webflow uses cookies to store session settings and to provide functions such as shopping cart and visitor statistics. Users can adjust the cookie settings in their browser to decide which cookies are allowed or rejected.
- Server log files: Webflow automatically collects information such as browser type, operating system, referrer URL, host name of the accessing computer, time of the request and IP address. This data is used for the optimization and error-free presentation of the website.
- Contact forms: When contact forms are used, the data provided is stored in order to process inquiries and to be available for follow-up questions. The data will only be passed on with the express consent of the user.

By using our website, you consent to the described collection and processing of your data by Webflow. Further information about data processing by Webflow can be found in Webflow's privacy policy.

(8) Weglot

This website uses the Weglot translation service, operated by Weglot SAS, 138 rue Pierre Joigneaux, 92270 Bois-Colombes, France, registered in the Nanterre Trade and Companies Register under number 818 164 964.

Weglot is activated when our website is loaded in order to offer you the option of changing the language of the website via the language symbol in the footer. This establishes a direct connection between your browser and the Weglot servers, whereby Weglot receives, among other things, your IP address and the information that you have visited our website.

The data is stored and processed in accordance with Art. 6 para. 1 lit. f GDPR, as we have a legitimate interest in providing our international visitors with content in different languages. If consent has been requested (e.g. for the storage of cookies), the data processing is carried out exclusively on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR, which you can revoke at any time. Further information can be found in Weglot's privacy policy: [https://weglot.com/privacy/](https://weglot.com/privacy/).

c) Recruitment

We rely on the services of the following companies to improve our employee recruitment:

(1) Zoho One

You have the opportunity to apply for vacancies in our company via our website. We use the services of Zoho One to optimize the application process.

This service is provided by Zoho B.V., Beneluxlaan 4B, 3527 HT UTRECHT.

However, due to the storage of the data on the provider's systems, we have also obligated the provider to comply with data protection as a processor.

The provider's servers are located within the EU.

If you wish to apply for a vacancy via our website, you will be redirected to our Zoho One Recruit website, which has been implemented as a web service on our website, by clicking on the relevant application button.

When you visit our Recruit website, your personal access data (e.g. IP address, device used) is processed to optimize the presentation of the website and to prepare the application process.

We process the applicant data only for the purpose and in the context of the application process. Applicant data is processed to fulfill our (pre-)contractual obligations in the context of the application process within the meaning of Art. 6 para. 1 lit. b, f GDPR, § 26 BDSG if data processing (e.g. in the context of legal proceedings) becomes necessary for us.

Applicant data generally includes your personal details, postal and contact addresses and the documents relating to your application, such as cover letter, CV and references. Applicants can also voluntarily provide us with additional information.

By submitting your application to us, you consent to the processing of your data for the purposes of the application process in accordance with the type and scope set out in this privacy policy.

Insofar as special categories of personal data within the meaning of Art. 9 para. 1 GDPR are voluntarily communicated as part of the application process, their processing is also carried out in accordance with Art. 9 para. 2 lit. b GDPR (e.g. health data, such as severely disabled status or ethnic origin). Insofar as special categories of personal data within the meaning of Art. 9 para. 1 GDPR are requested from applicants as part of the application process, their processing is also carried out in accordance with Art. 9 para. 2 lit. a GDPR (e.g. health data if this is necessary for the exercise of the profession).

Subject to a justified revocation by the applicant, the data will be deleted after the purpose has been fulfilled or after twelve months after the vacancy has been filled in order to be able to answer any follow-up questions regarding the application.

Further information on data protection at Zoho One can be found at https://www.zoho.com/gdpr.html and at https://www.zoho.com/privacy.html.

d) Analysis services

(1) Google Analytics (with anonymization function) - GA-4

This website uses Google Analytics, a web analysis service of Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA), to analyze the use of our website by users. Google Analytics uses cookies, which are small text files that are stored on your end device and enable your use of the website to be analyzed. The information generated by the cookies about your use of this website is usually transmitted to a Google server in the USA and stored there.

IP anonymization is used on this website. This means that your IP address will be truncated within the member states of the European Union or in other signatory states to the Agreement on the European Economic Area prior to transmission. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. This anonymization prevents any direct personal reference. As part of the agreement on order processing, Google uses the information collected to compile reports on the use of the website and website activities and provides other services related to website use.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. In addition, you can prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available under the following link: [https://tools.google.com/dlpage/gaoptout?hl=de](https://tools.google.com/dlpage/gaoptout?hl=de).

Further information on data use by Google, settings and objection options can be found on the Google website at [https://support.google.com/analytics/answer/6004245?hl=de](https://support.google.com/analytics/answer/6004245?hl=de).

(2) Google Tag Manager

We use GTM on our website, a cookie-free domain that forwards data to other web analysis tools. The service is provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

The tool itself does not collect any personal data, but ensures that other tags can collect data. If you have deactivated the use of cookies, this deactivation will also remain in place for all other tags implemented via the GTM.

Further information on data protection can be found at https://policies.google.com/privacy?hl=de&gl=de and at https://www.google.com/intl/de/tagmanager/use-policy.html.

e) Delivery of media content

(1) Youtube

We use the provider YouTube for the integration of videos. YouTube is operated by YouTube LLC, headquartered at 901 Cherry Avenue, San Bruno, CA 94066, USA. YouTube is represented by Google Inc. with its registered office at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

We use plug-ins from the provider YouTube on some of our web pages. When you access the web pages of our website that have such a plug-in - for example our homepage - a connection to the YouTube servers is established and the plug-in is displayed. This tells the YouTube server which of our web pages you have visited. If you are logged in to YouTube as a member, YouTube assigns this information to your personal user account. When you use the plug-in, e.g. by clicking on the start button of a video, this information is also assigned to your user account. You can prevent this assignment by logging out of your YouTube user account and other user accounts of YouTube LLC and Google Inc. before using our website and deleting the corresponding cookies of the companies.

For further information on YouTube and the data protection settings, please refer to the data protection information (https://policies.google.com/privacy?hl=de) and the terms of use (https://www.google.com/analytics/terms/de.html) of Google Inc.

f) Social media accounts

We use the social networks LinkedIn, Instagram, Twitter and Facebook

We have integrated links to our appearances in the social networks on our website.

LinkedIn is an Internet-based social network that enables users to connect with existing business contacts and make new business contacts. The operating company of LinkedIn is LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA. LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland, is responsible for data protection matters outside the USA. If you follow the link to our presence on LinkedIn, LinkedIn will recognize your visit to our site and will evaluate your user data in accordance with the privacy policy and terms and conditions. You can find details on this at https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy.

Instagram is a platform that allows users to share photos and videos and also to redistribute such data in other social networks. The operating company of Instagram's services is Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, USA. Further information and Instagram's applicable data protection provisions can be found at https://help.instagram.com/155833707900388 and https://help.instagram.com/519522125107875?helpref=page_content.

The Twitter short message service is provided by Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. As a user, you can share our texts and images and let us know via the short message service whether you like the content. You can also subscribe to us as the author of the content. You can find out more about how Twitter handles data protection at https://twitter.com/de/privacy.

As a social network, Facebook enables its users to communicate with each other and interact in virtual space. It therefore also serves as a platform for exchanging opinions and reports or enables the Internet community to provide personal or company-related information. Among other things, Facebook gives its users the opportunity to create private profiles, download photos to the network or network with friends, customers or business partners via friend requests. Company profiles can also be presented via the social network. The operating company of Facebook is Facebook, Inc, 1 Hacker Way, Menlo Park, CA 94025, USA. The controller for the processing of personal data for all persons living outside the USA and Canada is Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. The privacy policy published by Facebook, which is available at https://de-de.facebook.com/about/privacy/, provides information about the processing of personal data by Facebook.

g) Protection against bot networks and prevention of abuse

We use "Google reCAPTCHA" (hereinafter referred to as "reCAPTCHA") on our websites. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google").

The purpose of reCAPTCHA is to check whether data is entered on our websites (e.g. in a contact form) by a human or by an automated program. For this purpose, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent on the website by the website visitor or mouse movements made by the user). The data collected during the analysis is forwarded to Google.

The reCAPTCHA analyses run completely in the background. Website visitors are not informed that an analysis is taking place.

Data processing is carried out on the basis of Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its website from abusive automated spying and SPAM.

Further information about Google reCAPTCHA and Google's privacy policy can be found at the following links: https://www.google.com/intl/de/policies/privacy/ and https://www.google.com/recaptcha/intro/android.html.

5. OUR USE OF COOKIES AND THIRD-PARTY CONTENT ON THE WEBSITE

Our website is operated using cookies, among other things. Cookies are text files that are placed and stored on your computer system via your Internet browser.

Numerous websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier for the cookie. It consists of a character string that allows websites and servers to be assigned to the specific Internet browser in which the cookie was stored. This enables the websites and servers visited to distinguish your individual browser from other Internet browsers that contain other cookies. A specific Internet browser can be recognized and identified via the unique cookie ID.

Through the use of cookies, our website can provide you with more user-friendly services that would not be possible without the setting of cookies.

By means of a cookie, the information and offers on our website can be optimized in your interest. Cookies therefore enable us to recognize you. Cookies are small files that are set when you visit websites. With their help, your Internet browser remembers that you have already visited our website.

The purpose of this recognition is to make it easier for users to use our website. For example, when you use our website, you do not have to re-enter your access data each time you visit the website because this is taken over by our website and the cookie stored on your computer system.

In order to provide you with the legally prescribed options for controlling the use of cookies and the functions of third-party content, we have integrated a consent tool into our website, which you can use to control your individual consent.

You can access the tool for subsequent adjustment of the settings here.

6. WHAT RIGHTS DO YOU HAVE?

As part of the General Data Protection Regulation, the European legislator has given you a number of options for asserting your rights, including against us. In order to comply with our duty to provide information in this regard, your rights are set out below:

Right to confirmation

You have the right to request confirmation from us as to whether your personal data is being processed. If you would like to exercise this right of confirmation, you can contact our contact person listed below at any time.

Right to information

You have the right to receive free information from us at any time about your stored personal data (e.g. the purpose of processing or the categories of data being processed) and a copy of this information. If this is the case, you have a right to information about this personal data.
You also have a right to information about whether your personal data has been transferred to a third country or to an international organization. If this is the case, you also have the right to obtain information about the appropriate guarantees in connection with the transfer.
If you would like to exercise this right to information, you can contact our contact person listed below at any time.

Right to rectification

You have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you. Taking into account the purposes of the processing, you also have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
If you wish to exercise this right to rectification, you can contact our contact person listed below at any time.

Right to erasure (right to be forgotten)

You have the right to demand that we delete your personal data immediately. We are also obliged to delete personal data immediately if there is a reason that does not justify the processing of the data (e.g. personal data was collected for such purposes or processed in any other way for which it is no longer necessary).
If one of the above reasons applies and you wish to request the deletion of your personal data stored by us, you can contact our contact person below at any time. They will ensure that your request for erasure is complied with immediately.
If we have made your personal data public and we are obliged to erase it, we will take appropriate measures, including technical measures, taking into account the available technology and the implementation costs, to inform data controllers who process the personal data that you have requested us to erase all links to this personal data or copies or replications of this personal data.

Right to restriction of processing

You have the right to obtain from us restriction of processing where one of the following applies:

The accuracy of the personal data is contested by you, for a period enabling us to verify the accuracy of the personal data.
The processing is unlawful, you oppose the erasure of the personal data and request the restriction of the use of the personal data instead.
We no longer need the personal data for the purposes of the processing, but you need it for the establishment, exercise or defense of legal claims.
You have objected to the processing pursuant to Art. 21 (1) GDPR and it is not yet clear whether our legitimate reasons outweigh yours.

If one of the above conditions is met and you wish to request the restriction of your personal data stored by us, you can contact our contact person listed below at any time.
We will inform you of any rectification or erasure of your personal data or restriction of processing, unless this proves impossible or involves disproportionate effort. We will inform you about these recipients if you request this.

Right to data portability

You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format. You also have the right to transmit this data to another controller without hindrance from us to whom the personal data has been provided.
To assert your right to data portability, you can contact our contact person listed below at any time.

Right to object

You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6(1) GDPR. This also applies to profiling based on these provisions.
We will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.

Right to withdraw consent under data protection law

You have the right to withdraw your consent to the processing of personal data at any time.
If you wish to withdraw your consent, you can contact the following office at any time, irrespective of other withdrawal options provided for in the specific individual case:

Alice&Bob.Company GmbH
Grünberger Str. 54
10245 Berlin
hello@aliceandbob.company

7. SUPERVISORY AUTHORITY AND COMPLAINT

If you wish to contact a public authority regarding your queries about data protection, you can send your concerns and queries to the Data Protection Officer of the State of Berlin. You also have the right to lodge a complaint with the supervisory authority.

8. DATA SECURITY

We use the widespread SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser when you visit our website. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.

We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

9. AMENDMENT AND UPDATING OF THE PRIVACY POLICY

This privacy policy is currently valid and is dated February 2021.

It may become necessary to amend this privacy policy as a result of the further development of our website and services or due to changes in legal or official requirements. You can access and print out the current privacy policy at any time on the website at https://aliceandbob.company/datenschutz.

‍