The use of our website is generally possible without providing personal data. Insofar as personal data (e.g. name, address or e-mail addresses) is collected on our pages, this is always done on a voluntary basis as far as possible. This data is stored on servers in Munich. This data will not be passed on to third parties without your express consent.
Your data will only be processed and used for advertising and market research purposes with your express consent. If the declaration of consent for the aforementioned purposes also includes the transfer of your data to other third parties named in the declaration of consent, your data may be passed on to them. Otherwise, no transfer of your data will take place.
1. Scope of application
The provider of this website and the responsible party within the meaning of the applicable legal provisions on the protection of personal data is think tank Business Solutions AG (hereinafter also referred to as “we”).
Our postal address is: Messerschmittstraße 7, 80992 Munich. You can also reach us by e-mail at firstname.lastname@example.org or by telephone at +49 89 55 26 77 0. For further information, please refer to the imprint of our website.
This data protection declaration applies to our Internet offering under the domain thinktank.de and does not apply to other Internet offerings to which we merely refer by means of a link.
2. Accesses to web pages of our Internet offer
Every time a user accesses a page from our website and every time a file is retrieved, our web server automatically stores and processes data about this process in a log file. In detail, the following data is stored for each access/retrieval:
- IP address of the requesting computer
- Date and time of the request
- Page accessed/Name of the file accessed
- data volume transferred
- Message whether the access/retrieval was successful
- Internet address from which the page or file was called up or the desired function was initiated.
- Web browser used
The aforementioned data, including the IP address, are stored for the duration of the communication process in order to enable the use of our internet service. In addition, the IP address is stored for a short period of time to ensure IT security, in particular to protect our IT systems from misuse and to defend against attacks.
We reserve the right to make the data anonymous and to evaluate it for statistical purposes and to improve our Internet offering.
Insofar as Google Analytics is used for the statistical evaluation of access to our website (see below), the IP addresses are shortened for the purpose of anonymisation.
Part of the data is collected to ensure error-free provision of the website. Other data may be used to analyse your user behaviour.
3. Analyses and statistics
You can prevent the storage of cookies via the settings of your web browser software. Web browsers usually provide you with various functions for this purpose, which you can find out more about in the help of your web browser software. You can usually set these so that all cookies are automatically blocked or that only cookies of certain Internet offers are permitted or that you are warned before a cookie is stored. However, we would like to point out that blocking cookies from our website may, under certain circumstances, restrict the functions for using our website and also the websites of other service providers. For further information on blocking and deleting cookies, please refer to the help function of your browser.
We use the consent tool “Real Cookie Banner” to manage the cookies and similar technologies (tracking pixels, web beacons, etc.) used and the related consents. Details on how “Real Cookie Banner” works can be found at https://devowl.io/knowledge-base/real-cookie-banner-data-processing/.
The legal basis for the processing of personal data in this context is Art. 6 para. 1 lit. c DS-GVO and Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the management of the cookies and similar technologies used and the related consents.
The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consents.
3.2 Google Analytics
If you have given your consent, this website uses Google Analytics 4, a web analytics service provided by Google LLC. The responsible party for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).
Scope of the processing
In Google Analytics 4, the anonymisation of IP addresses is activated by default. Due to IP anonymisation, your IP address will be shortened by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
During your visit to the website, your user behaviour is recorded in the form of “events”. Events can be:
- Page impressions
- First visit to the website
- Start of the session
- Your “click path”, interaction with the website
- Scrolls (whenever a user scrolls to the end of the page (90%))
- Clicks on external links
- internal queries
- Interaction with videos
- File downloads
- Ads seen / clicked
- Language setting
- Your approximate location (region)
- Your IP address (in shortened form)
- Technical information about your browser and the end devices you use (e.g. language setting, screen resolution)
- Your internet provider
- the referrer URL (via which website/advertising medium you came to this website)
On behalf of the operator of this website, Google will use this information for the purpose of evaluating your pseudonymous use of the website and compiling reports on website activity. The reports provided by Google Analytics are used to analyse the performance of our website and the success of our marketing campaigns.
Recipients of the data are/may be
- Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (as processor pursuant to Art. 28 DSGVO)
- Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
- Alphabet Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
It cannot be ruled out that US authorities will access the data stored by Google.
Where data is processed outside the EU/EEA and there is no level of data protection corresponding to the European standard, we have concluded EU standard contractual clauses with the service provider to establish an appropriate level of data protection. The parent company of Google Ireland, Google LLC, is based in California, USA. A transfer of data to the USA and access by US authorities to the data stored by Google cannot be ruled out. The USA is currently considered a third country from a data protection perspective. You do not have the same rights there as within the EU/EEA. You may not have any legal remedies against access by authorities.
The data sent by us and linked to cookies are automatically deleted after 2 months. The deletion of data whose retention period has been reached takes place automatically once a month.
Legal basis for this data processing is your consent pursuant to Art.6 para.1 p.1 lit.a DSGVO
You can revoke your consent at any time with effect for the future by calling up the cookie settings here and changing your selection there. The lawfulness of the processing carried out on the basis of the consent until the revocation remains unaffected.
You can also prevent the storage of cookies from the outset by configuring your browser software accordingly. However, if you configure your browser to reject all cookies, this may restrict functionalities on this and other websites. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by selecting the appropriate settings on your browser.
- do not give your consent to the setting of the cookie or
- download and install the browser add-on to disable Google Analytics HERE.
3.3 Google reCAPTCHA
We use the Google service reCaptcha to determine whether a human or a computer is making a certain entry in our contact or newsletter form. Google uses the following data to check whether you are a human or a computer: IP address of the terminal device used, the website that you visit with us and on which the captcha is embedded, the date and duration of the visit, the recognition data of the browser and operating system type used, Google account if you are logged in to Google, mouse movements on the reCaptcha areas and tasks that require you to identify images. The legal basis for the data processing described is Art. 6 (1) lit. f of the General Data Protection Regulation. There is a legitimate interest on our part in this data processing to ensure the security of our website and to protect us from automated entries (attacks).
think tank uses HubSpot, a service of HubSpot Inc. (2nd Floor 30 North Wall Quay, Dublin 1, Ireland), on its websites for analysis purposes.
This uses so-called “web beacons” and also sets “cookies” that are stored on your computer and enable us to analyse your use of the website. HubSpot evaluates the information collected (e.g. IP address, geographical location, type of browser, duration of visit and pages viewed) on behalf of think tank in order to generate reports about the visit and the pages visited on think tank.
If studies and other documents are obtained, HubSpot can also link a user’s visits to think tank websites with personal details (especially name/email address) on the basis of consent given, thus recording them on a personal basis and informing users individually and specifically about preferred subject areas.
If collection by HubSpot is generally not desired, the storage of cookies can be prevented at any time through appropriate browser settings (see 3.1). Further information on how HubSpot works can be found in the data protection declaration of HubSpot Inc. at: http://legal.hubspot.com/de/privacy-policy.
You have the option of sending e-mails to us. If you send us an email or contact us via the contact form, we will store your details, including your email address, to the extent that and for as long as we need your data to process your enquiry. We do not forward this data to third parties.
You can revoke your consent at any time with effect for the future without giving reasons. For the revocation, a notification to our contact details given in the imprint – if possible in text form (e.g. by e-mail) – is sufficient. The revocation can be declared in particular in writing, by e-mail or by telephone to think tank Business Solutions AG, Messerschmittstraße 7, 80992 Munich, e-mail: email@example.com, Tel.: +49 89 55 26 77 0.
Please note that unencrypted e-mails are not protected against unauthorised access or modification by third parties during transmission.
5. Rights of the user: information, correction and deletion / data protection officer
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request the correction, blocking or deletion of this data. For this – and for all other questions regarding data protection and this data protection declaration – please contact our data protection officer, Ms Juliane Billhardt at firstname.lastname@example.org.
5.1 Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke consent you have already given at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
5.2 Right to complain to the competent supervisory authority
In the event of violations of data protection law, the person concerned has the right to lodge a complaint with the competent supervisory authority. The competent supervisory authority for data protection issues is the state data protection commissioner of the federal state in which our company is based. A list of data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
5.3 SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
W hen SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
6. Contact information:
think tank Business Solutions AG