Here you can change your data security: Data Security Settings

Privacy policy

General information

The following notices provide a simple overview of what happens to your personal data when you visit this website. Personal data is any data by which you can be personally identified. For detailed information on data protection, please refer to our privacy policy listed below this text.

1. Data Usage on this website

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. You can find his contact details in the section “Note on the responsible party” in this data protection declaration.

How do we collect your data?

On the one hand, your data is collected by you providing it to us. This may, for example, be data that you enter in a contact form.

Other data is collected automatically or after your consent when you visit the website by our IT systems. This is mainly technical data (e.g. Internet browser, operating system or time of page view). This data is collected automatically as soon as you enter this website.

What do we use your data for?

Some of the data is collected to ensure error-free provision of the website. Other data may be used to analyze your user behavior.

What rights do you have regarding your data?

You have the right at any time to receive information free of charge about the origin, recipient and purpose of your stored personal data. You also have a right to request the correction or deletion of this data. If you have given your consent to data processing, you can revoke this consent at any time for the future. You also have the right to request the restriction of the processing of your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.

For this purpose, as well as for further questions on the subject of data protection, you can contact us at any time.
Analysis tools and third-party tools

When visiting this website, your surfing behavior may be statistically analyzed. This is done primarily with so-called analysis programs.

Detailed information about these analysis programs can be found in the following privacy policy.

The requirements of the Telemedia and Telecommunications Data Protection Act (TTDSG) are particularly taken into account when implementing them on the internet.

2. Hosting

Hetzner

We host our website with Hetzner. The provider is Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen (hereinafter: Hetzner).

For details, please refer to Hetzner’s privacy policy: https://www.hetzner.com/de/rechtliches/datenschutz.

The use of Hetzner is based on Art. 6 para. 1 lit. f DSGVO. We have a legitimate interest in ensuring that our website is presented as reliably as possible. Insofar as a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

Order processing

We have concluded an order processing agreement (AVV) with the above-mentioned provider. This is a contract required by data protection law, which ensures that this provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the DSGVO.

3. General notes and mandatory information

Data protection

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

When you use this website, various personal data are collected. Personal data is data with which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.

We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.
Note on the responsible party

The responsible party for data processing on this website is:

AssistMe GmbH
Bachstr. 12
10555 Berlin

Phone: +49 30 221848700

E-Mail: datenschutz@assistme.io

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses or similar).

Storage period

Unless a more specific storage period has been specified within this data protection declaration, your personal data will remain with us until the purpose for the data processing no longer applies. If you assert a legitimate request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. retention periods under tax or commercial law); in the latter case, the data will be deleted once these reasons no longer apply.

General information on the legal basis for data processing on this website

If you have consented to data processing, we process your personal data on the basis of Art. 6 (1) lit. a DSGVO or Art. 9 (2) lit. a DSGVO, if special categories of data are processed in accordance with Art. 9 (1) DSGVO. If you have consented to the storage of cookies or to the access to information in your terminal device (e.g. via device fingerprinting), the data processing is additionally based on Section 25 (1) TTDSG. The consent can be revoked at any time. If your data is required for the performance of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Art. 6 para. 1 lit. b DSGVO. Furthermore, if your data is required for the fulfillment of a legal obligation, we process it on the basis of Art. 6 para. 1 lit. c DSGVO. Furthermore, the data processing may be carried out on the basis of our legitimate interest according to Art. 6 para. 1 lit. f DSGVO. Information about the relevant legal basis in each individual case is provided in the following paragraphs of this privacy policy.

Note on data transfer to the USA and other third countries

Among other things, we use tools from companies based in the USA or other third countries that are not secure under data protection law. If these tools are active, your personal data may be transferred to these third countries and processed there. We would like to point out that no level of data protection comparable to that in the EU can be guaranteed in these countries. For example, US companies are obliged to hand over personal data to security authorities without you as a data subject being able to take legal action against this. Therefore, it cannot be ruled out that U.S. authorities (e.g. intelligence services) may process, evaluate and permanently store your data located on U.S. servers for monitoring purposes. We have no influence on these processing activities.

Revocation of your consent to data processing

Many data processing operations are only possible with your express consent. You can revoke consent you have already given at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right to object to data collection in special cases and to direct marketing (Art. 21 DSGVO).

IF DATA PROCESSING IS CARRIED OUT ON THE BASIS OF ART. 6 ABS. 1 LIT. E OR F DSGVO, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA CONCERNED UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS, OR THE PROCESSING IS FOR THE PURPOSE OF ASSERTING, EXERCISING OR DEFENDING LEGAL CLAIMS (OBJECTION UNDER ARTICLE 21(1) DSGVO).

IF YOUR PERSONAL DATA ARE PROCESSED FOR THE PURPOSE OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH MARKETING; THIS ALSO APPLIES TO PROFILING INSOFAR AS IT IS RELATED TO SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR THE PURPOSE OF DIRECT MARKETING (OBJECTION PURSUANT TO ARTICLE 21 (2) OF THE GERMAN DATA PROTECTION ACT).

Right of appeal to the competent supervisory authority

In the event of violations of the GDPR, data subjects shall have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged violation. The right of appeal is without prejudice to any other administrative or judicial remedy.

Right to data portability

You have the right to have data that we process automatically on the basis of your consent or in performance of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done insofar as it is technically feasible.

SSL or TLS encryption

For security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Information, deletion and correction

Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of data processing and, if necessary, a right to correction or deletion of this data. For this purpose, as well as for further questions on the subject of personal data, you can contact us at any time.

Right to restriction of processing

You have the right to request the restriction of the processing of your personal data. For this purpose, you can contact us at any time. The right to restriction of processing exists in the following cases:

  • If you dispute the accuracy of your personal data stored by us, we usually need time to verify this. For the duration of the review, you have the right to request the restriction of the processing of your personal data.
  • If the processing of your personal data happened/is happening unlawfully, you can request the restriction of data processing instead of deletion. If we no longer need your personal data, but you need it to exercise, defend or assert legal claims, you have the right to request restriction of the processing of your personal data instead of erasure.
  • If you have lodged an objection pursuant to Art. 21 (1) DSGVO, a balancing of your and our interests must be carried out. As long as it has not yet been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.
  • If you have restricted the processing of your personal data, this data – apart from its storage – may only be processed with your consent or for the assertion, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the European Union or a Member State.

Objection to advertising e-mails

The use of contact data published within the framework of the imprint obligation for the transmission of advertising and information material not expressly requested is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.

4. Data collection on this website

Cookies

Our Internet pages use so-called “cookies”. Cookies are small text files and do not cause any damage to your terminal device. They are stored either temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your terminal device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your end device until you delete them yourself or until they are automatically deleted by your web browser.

In some cases, cookies from third-party companies may also be stored on your terminal device when you enter our site (third-party cookies). These enable us or you to use certain services of the third-party company (e.g. cookies for processing payment services).

Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g. the shopping cart function or the display of videos). Other cookies are used to evaluate user behavior or display advertising.

Cookies that are necessary to carry out the electronic communication process, to provide certain functions that you have requested (e.g. for the shopping cart function) or to optimize the website (e.g. cookies to measure the web audience) (necessary cookies) are stored on the basis of Art. 6 (1) lit. f DSGVO, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of its services. If consent to the storage of cookies and comparable recognition technologies has been requested, processing is carried out exclusively on the basis of this consent (Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG); consent can be revoked at any time.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.

Insofar as cookies are used by third-party companies or for analysis purposes, we will inform you separately about this within the scope of this data protection declaration and, if necessary, request your consent.

Consent with Borlabs Cookie

Our website uses Borlabs Cookie Consent technology to obtain your consent to the storage of certain cookies in your browser or to the use of certain technologies and to document this in accordance with data protection law. The provider of this technology is Borlabs – Benjamin A. Bornschein, Rübenkamp 32, 22305 Hamburg (hereinafter referred to as Borlabs).

When you enter our website, a Borlabs cookie is stored in your browser, in which the consents you have given or the revocation of these consents are stored. This data is not shared with the Borlabs cookie provider.

The collected data will be stored until you request us to delete it or until you delete the Borlabs cookie yourself or until the purpose for storing the data no longer applies. Mandatory legal retention periods remain unaffected. Details on the data processing of Borlabs Cookie can be found at https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/.

Borlabs Cookie Consent Technology is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 para. 1 lit. c DSGVO.
Server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • browser type and browser version
  • Operating system used referrer URL Host name of the accessing computer Time of the server request IP address
  • This data is not merged with other data sources.

The collection of this data is based on Art. 6 para. 1 lit. f DSGVO.

The website operator has a legitimate interest in the technically error-free presentation and optimization of its website – for this purpose, the server log files must be collected.

Contact form

If you send us inquiries via the contact form, your data from the inquiry form, including the contact data you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not pass on this data without your consent.

The processing of this data is based on Art. 6 (1) lit. b DSGVO, if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the requests addressed to us (Art. 6 (1) (f) DSGVO) or on your consent (Art. 6 (1) (a) DSGVO) if this has been requested.

The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies (e.g. after we have completed processing your request). Mandatory legal provisions – in particular retention periods – remain unaffected.
Inquiry by e-mail, telephone or fax

If you contact us by e-mail, telephone or fax, your inquiry including all resulting personal data (name, inquiry) will be stored and processed by us for the purpose of processing your request. We do not pass on this data without your consent.

The processing of this data is based on Art. 6 (1) lit. b DSGVO, if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the requests sent to us (Art. 6 (1) (f) DSGVO) or on your consent (Art. 6 (1) (a) DSGVO) if this has been requested.

The data you send to us via contact requests will remain with us until you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies (e.g. after your request has been processed). Mandatory legal provisions – in particular legal retention periods – remain unaffected.

5. Analysis tool Matomo

We use the web analysis tool “Matomo” to customise the design of our websites. Matomo creates user profiles on the basis of pseudonyms. For this purpose, permanent cookies are stored on your end device and read by us. In this way, we are able to recognise and count returning visitors. We also use the Heatmap & Session Recording modules. Matomo’s heatmap service shows us the areas of our website where the mouse is moved most frequently or which are clicked on most often. The session recording service records individual user sessions. We can play back recorded sessions and thus analyse the use of our website. Data entered in forms is not recorded and is not visible at any time.

Data processing is based on your consent in accordance with Section 25 (1) TTDSG, Art. 6 (1) (a) GDPR, provided you have given your consent via our banner. You can revoke your consent at any time. Please make the appropriate settings via our banner.

Further information on Matomo’s terms of use and data protection regulations can be found at: https://matomo.org/privacy/

6. Plugins and Tools

Google Web Fonts (local hosting)

This site uses so-called web fonts provided by Google for the uniform display of fonts. The Google Fonts are installed locally. There is no connection to Google servers. Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://policies.google.com/privacy?hl=de.

7. audio and video conferencing

Data processing

For communication with our customers, we use online conference tools, among others. The tools we use in detail are listed below. When you communicate with us via video or audio conferencing over the Internet, your personal data is collected and processed by us and the provider of the respective conferencing tool.

The conferencing tools thereby collect all data that you provide/enter to use the tools (email address and/or your phone number). Furthermore, the conference tools process the duration of the conference, start and end (time) of participation in the conference, number of participants and other “context information” related to the communication process (metadata).

Furthermore, the provider of the tool processes all technical data required to handle the online communication. This includes in particular IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or speaker, and the type of connection.

If content is exchanged, uploaded or otherwise made available within the tool, this is also stored on the servers of the tool providers. Such content includes, but is not limited to, cloud recordings, chat/instant messages, voicemails uploaded photos and videos, files, whiteboards, and other information shared while using the Service.

Please note that we do not have full control over the data processing operations of the tools used. Our options are largely based on the company policy of the respective provider. For further information on data processing by the conference tools, please refer to the privacy statements of the respective tools used, which we have listed below this text.

Purpose and legal basis

The conference tools are used to communicate with prospective or existing contractual partners or to offer certain services to our customers (Art. 6 para. 1 lit. b DSGVO). Furthermore, the use of the tools serves the general simplification and acceleration of communication with us or our company (legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO). If consent has been requested, the tools in question are used on the basis of this consent; consent can be revoked at any time with effect for the future.

Storage period

The data collected directly by us via the video and conference tools will be deleted from our systems as soon as you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies. Stored cookies remain on your terminal device until you delete them. Mandatory legal retention periods remain unaffected.

We have no influence on the storage period of your data, which is stored by the operators of the conference tools for their own purposes. For details, please contact the operators of the conference tools directly.

Conference tools used

We use the following conferencing tools: Microsoft Teams (see section Office 365).

8. applicant data

Handling of applicant data

We offer you the opportunity to apply to us (e.g., by e-mail, postal mail or via online application form). In the following, we inform you about the scope, purpose and use of your personal data collected during the application process. We assure you that the collection, processing and use of your data will be carried out in accordance with applicable data protection law and all other statutory provisions and that your data will be treated in strict confidence.
Scope and purpose of data collection

When you send us an application, we process your associated personal data (e.g. contact and communication data, application documents, notes taken during interviews, etc.) to the extent necessary to decide whether to establish an employment relationship. The legal basis for this is Section 26 BDSG under German law (initiation of an employment relationship), Art. 6 (1) lit. b DSGVO (general contract initiation) and – if you have given your consent – Art. 6 (1) lit. a DSGVO. The consent can be revoked at any time. Your personal data will only be passed on within our company to persons who are involved in processing your application.

If the application is successful, the data you submitted will be stored in our data processing systems on the basis of Section 26 of the German Federal Data Protection Act (BDSG) and Article 6 (1) lit. b DSGVO for the purpose of implementing the employment relationship.
Retention period of the data

If we are unable to make you a job offer, if you reject a job offer or if you withdraw your application, we reserve the right to retain the data you have provided for us on the basis of our legitimate interests (Art. 6 (1) (f) DSGVO) for up to 6 months from the end of the application process (rejection or withdrawal of the application). The data will then be deleted and the physical application documents destroyed. This storage serves in particular as evidence in the event of a legal dispute. If it is apparent that the data will be required after the 6-month period has expired (e.g. due to an impending or pending legal dispute), the data will not be deleted until the purpose for continued storage no longer applies.

Longer storage may also take place if you have given your corresponding consent (Art. 6 (1) a DSGVO) or if legal storage obligations prevent deletion.
Inclusion in the applicant pool

If we do not make you a job offer, it may be possible to include you in our applicant pool. If you are accepted, all documents and information from your application will be transferred to the applicant pool so that we can contact you in the event of suitable vacancies.

Inclusion in the applicant pool takes place exclusively on the basis of your express consent (Art. 6 para. 1 lit. a DSGVO). The provision of consent is voluntary and is not related to the current application process. The data subject may revoke his/her consent at any time. In this case, the data from the applicant pool will be irrevocably deleted, unless there are legal reasons for retention.

The data from the applicant pool will be irrevocably deleted no later than two years after consent has been given.

9. Hubspot (CRM)

On this website, we use the service HubSpot for various purposes. HubSpot is a software company from the USA with a branch in Ireland. Contact: HubSpot, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland, phone: +353 1 5187500.

Hubspot is an integrated software solution that we use to cover various aspects of our marketing, sales and customer service. These include:

Email Marketing, Social Media Publishing & Reporting, Reporting, Contact Management (e.g. user segmentation & CRM), Landing Pages and Contact Forms.

Our contact forms (which include meeting resource booking forms) allow visitors to our website to learn more about our company, download content, and provide their contact information and other demographic information. This information, as well as our website content, is stored on servers operated by our software partner HubSpot. It may be used by us to contact visitors to our website and to determine which of our company’s services are of interest to them. All information we collect is subject to this privacy policy. We use all collected information exclusively to optimize our marketing measures.

More information about HubSpot’s privacy policy: https://legal.hubspot.com/privacy-policy

More information from HubSpot regarding EU data protection regulations: https://legal.hubspot.com/data-privacy

More information about the cookies used by HubSpot can be found here: https://knowledge.hubspot.com/articles/kcs_article/reports/what-cookies-does-hubspot-set-in-a-visitor-s-browser & here https://knowledge.hubspot.com/articles/kcs_article/account/hubspot-cookie-security-and-privacy

As part of the optimization of our marketing measures, the following data may be collected and processed via Hubspot:

  • Geographic position
  • Browser type
  • Navigation information
  • Referral URL
  • Performance data
  • Information about how often the application is used
  • Mobile apps data
  • HubSpot subscription
  • service credentials
  • Files that are displayed on site
  • Domain names
  • Pages viewed
  • Aggregated usage
  • Operating system version
  • Internet service provider
  • IP address Device identifier
  • Duration of visit
  • Where the application was downloaded from
  • Operating system
  • Events that occur within the application
  • Access times
  • Clickstream data
  • Device model and version

In addition, we also use Hubspot to provide contact forms. For more information in this regard, please refer to subsection 7 of this Privacy Policy.

The legal basis of the processing is your consent pursuant to Art. 6 (1) lit. a DSGVO. If you do not want the aforementioned data to be collected and processed via Hubspot, you can refuse your consent or revoke it at any time with effect for the future.

The personal data will be kept for as long as it is necessary to fulfill the purpose of processing. The data will be deleted as soon as they are no longer required to achieve the purpose. Within the scope of processing via HubSpot, data may be transferred to the USA. The security of the transfer is secured via so-called standard contractual clauses, which ensure that the processing of personal data is subject to a level of security that corresponds to that of the GDPR. If the standard contractual clauses are not sufficient to ensure an adequate level of security, your consent pursuant to Article 49 (1) (a) of the GDPR may serve as the legal basis for the transfer to third countries. Please refer to the subsection

Hubspot Forms

HubSpot Forms:
Type and scope of processing
We have integrated HubSpot Forms on our website. HubSpot Forms is a service provided by HubSpot, Inc. and offers marketing automation software for marketing services and products, including SEO and content creation, lead management, email marketing and web analytics.

HubSpot Forms is used to store data entered in forms, e.g. when contacting us via a contact form. The data entered may be stored in our customer relationship management system (CRM system).

In this case, your data will be passed on to the operator of HubSpot Forms, HubSpot, Inc, Cambridge, Massachusetts, US.

Purpose and legal basis:
We process your data with the help of HubSpot Forms for the purpose of processing the contact enquiry and its handling in accordance with Art. 6 para. 1 lit. b. GDPR.

The use of HubSpot Forms and the integrated services is subject to our legitimate interest in accordance with Art. 6 para. 1 lit. f. GDPR. GDPR, the optimisation of our marketing measures and the improvement of our service quality on the website.

Storage period:
The specific storage period of the processed data cannot be influenced by us, but is determined by HubSpot, Inc. Further information can be found in the privacy policy for HubSpot Forms: https://legal.hubspot.com/privacy-policy.

10. Forms

We use the HubSpot service to provide the following online forms. For this purpose, we forward your data to HubSpot or Zendesk, which process the data exclusively on our behalf. Please refer to the privacy policy for “HubSpot”.

Please note: If you contact us via contact forms, personal data may be transferred to service providers in third countries. These third countries do not have an adequate level of data protection. If the data is transferred to the U.S., there is a risk that your data may be processed by U.S. authorities for control and monitoring purposes without you possibly having any legal remedies. The security of the transfer is regularly secured via so-called standard contractual clauses and, in the case of Zendesk, via Binding Corporate Rules, which ensure that the processing of personal data is subject to a level of security that corresponds to that of the GDPR. If the standard contractual clauses or Binding Corporate Rules are not sufficient to establish an adequate level of security, your acknowledgement of the privacy policy in the context of the contact forms is deemed to be consent within the meaning of Art. 49 (1) lit.a DSGVO, which justifies a transfer of data to insecure third countries.

a. Free offer of digital content

In order to provide you with our downloadable content, we collect personal data from you, which you actively provide to us. We provide clarification about this data below.

  • Data collected: Email address, last name, first name, title, job title.
  • Purpose: Personalized sending of the requested content.
  • Storage period: The data is generally only stored as long as it is necessary to achieve the purpose. After transmission of the content, the data is deleted.
  • Legal basis: Art. 6 I b DS-GVO

b. Events organized by AssistMe

If you register for free events of AssistMe, you have to provide your email address, name, first name, company name, company size, position in the company, city, country, industry, depending on the form.

By registering for the event, you also automatically agree to your personal data being processed for marketing purposes. The legal basis is your consent given to us beforehand in accordance with Art. 6 (1) lit. a DSGVO. You can separately object to the use of personal data for marketing purposes at any time.

Storage period: The data will generally only be stored for as long as is necessary to achieve the purpose. If consent for marketing purposes is revoked, the data stored by us will be deleted.Legal basis: Art. 6 I b in conjunction with. Art. 6 I a DS-GVO.

c. Newsletter

If you subscribe to our newsletter, we store your e-mail address and use it to send the newsletter. Your email address will not be published or passed on to third parties.

  • Data collected: E-mail address, first name, last name, title of job.
  • Purpose: Sending the requested newsletter.
  • Storage period: The data is generally only stored as long as it is necessary to achieve the purpose. For the newsletter, the data will be stored as long as a newsletter is to be sent and you have not objected to the use of your data.
  • Legal basis: Art. 6 I a DSGVO – Consent.
  • Cancellation: You can unsubscribe from our newsletter at any time via a link contained in each issue. We will then delete your e-mail address from our distribution list. Alternatively, you can unsubscribe from the newsletter at any time by sending an email to newsletter@assistme.io.

d. Webdemo

If you request an appointment for a web demo, then we will use your data to contact you to coordinate and conduct an appointment together.

  • Data collected: Email address, last name, first name, phone number, (company).
  • Purpose: Coordination and execution of the requested web demo as well as preparation and follow-up of the web demo.
  • Storage period: The data is generally only stored as long as it is necessary to achieve the purpose. The data is stored for as long as is necessary to prepare, follow up and carry out the appointment.
  • Legal basis: Art. 6 I b DSGVO

Office 365

Privacy policy for the use of Microsoft 365 applications

Information in accordance with the General Data Protection Regulation (Art. 13 EU-DSGVO).

For reasons of better readability, the simultaneous use of masculine, feminine and diverse forms of language has been dispensed with. All personal designations apply equally to all genders.

This information applies if you use Microsoft 365 applications together with us. This applies in particular to the use of a Microsoft Office application such as Teams, SharePoint, Stream, Forms (hereinafter M365) or similar, for which you will usually receive an invitation from us. M365 is a productivity, collaboration and exchange platform for individual users, teams, communities and networks that can be used across organizational units. When you use M365, personal data about you will be processed. Please note that this privacy notice only informs you about the processing of your personal data by us when you use Microsoft applications together with us. If you require information about the processing by Microsoft, please refer to the relevant statement at the following link: https://privacy.microsoft.com/de-de/privacystatement.

Name and address of the data controller

The controller within the meaning of the General Data Protection Regulation and other data protection laws applicable in the Member States of the European Union is.

AssistMe GmbH
Bachstr. 12
10555 Berlin

(hereinafter “AssistMe”, “we” or “us”) or the respective subsidiary of AssistMe GmbH that collects and processes your personal data in connection with the use of the M365 Applications.

Categories of personal data

When using M365 Applications, various types of data are processed. The scope of this data depends, among other things, on which application is used and what data information you provide. Certain information is already processed automatically as soon as you use M365.

The following personal data may be subject to processing:

  • Identification data (e.g., names, addresses, e-mail, telephone numbers, profile picture (optional), user name).
  • Content data (e.g., text input, audio data, videos, documents).
  • Usage data (e.g. web pages visited, time of access, date, type of access, information about the data/files/documents accessed and all activities related to the usage, such as creating, modifying, deleting a document, setting up a team (and channels in teams), making notes in the notebook, starting a chat, replying in the chat)
  • Meta/communication data (e.g. IP addresses, device/hardware information, location data if shared by the user, live transmission of sound and images)

Functions used in the collection of personal data:

OneDrive

We have integrated OneDrive on this website. The provider is Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA (hereinafter “OneDrive”).

OneDrive allows us to include an upload area on our website where you can upload content. When you upload content, it is stored on OneDrive’s servers. When you enter our website, a connection to OneDrive is also established so that OneDrive can determine that you have visited our website.

The use of OneDrive is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in a reliable upload area on its website. If a corresponding consent has been requested, the processing is based exclusively on Art. 6 (1) lit. a DSGVO; the consent can be revoked at any time.

Microsoft Teams

We use Microsoft Teams. The provider is Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. For details on data processing, please refer to the privacy policy of Microsoft Teams:

https://privacy.microsoft.com/de-de/privacystatement.

Purposes of data processing

To the extent necessary, we process your personal data solely to ensure an effective customer or vendor relationship with you. In this context, your data will be processed in order to be able to use the respective tool in question for the purpose of communication and collaboration. Furthermore, your data may be processed for information security purposes and to ensure the functional reliability and stability of the IT systems.

Legal basis for data processing

The legal basis depends on the reason for your cooperation with us. Below is a description of the legal bases on which we process your personal data when you use M365 applications. Please note that this information is only examples and not a complete or exhaustive list of the possible legal bases for data processing.

Consent (Art. 6 para. 1 lit.a DSGVO).
We process certain personal data only with your prior, explicit and free consent, e.g. when you participate in a survey via Microsoft Forms. The recording of Teams meetings for use outside of the livestream is also based solely on your consent. Consent is given by accepting the meeting invitation and subsequently attending the meeting. There is neither a contractual nor a legal obligation to provide the data. The consent is voluntary and can be revoked in whole or in part at any time with effect for the future. The lawfulness of the processing remains unaffected until the consent is revoked.

Fulfillment of a contract with you (Art. 6 para. 1 lit.b DSGVO).

Your data will be processed on the basis of Art. 6 (1) lit. b) DSGVO if the use is based on a contract.

Fulfillment of a legal obligation (Art. 6 para. 1 lit.c DSGVO).

We are subject to a number of legal requirements and may process your personal data to fulfill our legal obligations. For example, we are legally obliged to provide information to certain public bodies (including law enforcement agencies) upon request.

Safeguarding our legitimate interests or those of a third party (Art. 6 para. 1 lit.f DSGVO).

We process your personal data to safeguard our legitimate interests or the interests of third parties on the basis of Art. 6 (1) (f) DSGVO. However, this is only done if your interests as a data subject do not take precedence over our interests in an individual case. Legitimate interests pursued in the use of M365 are: effective conduct of meetings, optimization of business processes, protection of the vital interests of our employees and thus the fulfillment of our duty of care as an employer by reducing the number of presence appointments during the Corona pandemic.

Recipients or categories of recipients of personal data

We generally ensure that your personal data is only accessible to a limited number of authorized individuals who need to know that data in order to provide the above processing purposes.

Where necessary, your data may be shared with other AssistMe companies, other traffic management companies, school boards, payment service providers or other companies used to provide the service or process the contract.

As part of processing your requests and your use of our services, we also engage external EDP and IT contractors. These service providers are contractually obligated to comply with data protection regulations and process personal data only in accordance with our instructions.

The personal data we collect or process about you may be transferred to recipients who may be located inside or outside the European Economic Area (“EEA”). For recipients located outside the EEA, we have taken appropriate measures to ensure compliance with the requirements of the Data Protection Act, such as the conclusion of appropriate EU Commission model contractual clauses, recognized codes of conduct or recognized certification mechanisms (Article 42 et seq. GDPR). Furthermore, where necessary, we conduct careful assessments of the legal systems of the third countries concerned and take additional measures in line with the ECJ ruling on the transfer of personal data to third countries (“Schrems II”).

For the provision of the service and the associated data processing is Microsoft Corporation as processor. Where individual data is processed outside the EU, Microsoft ensures data protection compliance by agreeing to the EU standard contractual clauses. For more information on Microsoft’s data processing, please refer to the MS Trust Center and the MS Privacy Policy.

Duration of data storage

We delete or anonymize your personal data as soon as they are no longer required for the purposes for which we collected or used them in accordance with the above paragraphs, or are no longer required to be retained due to a statutory retention period. As a rule, we store your personal data for the duration of the contractual relationship with you. Log files are deleted after 90 days at the latest, unless we are entitled or obliged to retain them for a longer period.

Automated decision making

To conduct meetings via teams, we generally do not use automated decision-making pursuant to Art. 22 DSGVO. Should we use these procedures in individual cases, we will inform you separately about this in advance, provided this is required by law.

Data security

We have taken technical and organizational measures suitable to prevent unauthorized or unlawful disclosure of your personal data, unauthorized or unlawful access to your personal data, or loss, destruction, alteration or damage to your personal data, whether accidental or unlawful. These measures ensure a level of security appropriate to the risks presented by the processing and the nature of the personal data to be protected. Our security measures are continuously improved in line with technological developments.

Data subject rights

If you have any questions regarding the processing of your personal data, you can contact our data protection officer at any time, who will be happy to assist you with his team.

Our data protection officer can be reached as follows:
E-mail: datenschutz@assistme.io

As a data subject, you have legal rights with regard to the personal data that our company collects and processes about you. According to the law, you have the following rights:

  • the right to information about data concerning you (right to information),
  • the right to rectify incorrect data or, taking into account the purposes of the processing,
  • the right to have incomplete data completed (right of rectification)

and, if certain grounds apply and the legal requirements are met,

  • the right to erasure of your personal data (right of erasure),
  • the right to restrict the processing of your personal data (right to restriction of processing),
  • the right to receive and transfer the personal data you have provided to us to another controller (right to data portability);
  • and the right to object to the processing of your personal data (right to object).

Furthermore, you have the right to lodge a complaint with the competent supervisory authority for data protection at any time.

Order processing

We have concluded an order processing agreement (AVV) with the above-mentioned provider. This is a contract required by data protection law, which ensures that this provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the DSGVO.

Order processing

We have concluded an order processing agreement (AVV) with the above-mentioned provider. This is a contract required by data protection law, which ensures that the provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

Webflow

Type and scope of processing

Our website was created using the Webflow website construction kit system. Webflow is a service of Webflow, Inc. and offers web development technology, web design and layout tools, domain hosting and other applications for marketing and workflow management.

Among other things, we use Webflow for web hosting and the presentation of our website. In addition, Webflow collects statistical data about visits to our website.

The following data is usually transmitted: website accessed, date and time of access, amount of data transferred, notification of whether an access was successful, browser type and browser version, the user’s operating system, the previously visited website (referrer) and the IP address.

This log data is processed exclusively for the above-mentioned purposes and to maintain the security, functionality and optimisation of the Webflow website.

Purpose and legal basis:
The service is used on the basis of our legitimate interests, i.e. interest in the secure and efficient provision and optimisation of our online offering in accordance with Art. 6 para. 1 lit. f. GDPR. GDPR.

Storage period:
The specific storage period of the processed data cannot be influenced by us, but is determined by Webflow, Inc. Further information can be found in the privacy policy for Webflow: https://webflow.com/legal/privacy.

Up-to-dateness of the data protection information

This privacy policy is currently valid and dated 05.02.2024