Privacy Policy

https://www.vivascope.de

Privacy Policy

(Last updated: October 2022)

Thank you for placing your trust in VivaScope GmbH, operating the website under the URL https://www.vivascope.de (hereinafter referred to as “Website”). With this privacy policy we inform you in detail on the processing of your data that we collect when operating our website.

1. Controller

VivaScope GmbH, Stahlgruberring 5, 81829 Munich, Germany, in following referred to as “VivaScope” or “we”), e-mail address info@vivascope.de is the “controller” for the processing of your data.

2. Contact Details of our Data Protection Officer

You can contact our data protection officer by email as follows: privacy@vivascope.de

3. Accessing the website

You can visit our website without providing any personal information. We temporarily store your access data, which is stored in a log file on our web servers. The access data includes the following information:

  • IP address of the end device at hand,
  • Date and time of access,
  • Name and URL of the retrieved file,
  • Amount of data transferred,
  • Message as to whether the retrieval was successful,
  • Identification data of the browser and operating system used,
  • The website from which the file was accessed, and
  • Name of your Internet access provider.

 

The abovementioned data is technically required for enabling your end device to access our website and use its functions. The data is collected for pre-contractual purposes or the purposes of our legitimate interests to display the content of this website to you (Art. 6 para. 1 s. 1 b), f) GDPR)

4. Cookies we use

We use cookies on our website to make your visit more attractive and to enable you to use certain functions. Cookies are small text files that are sent from our web server to your browser and stored on your end device. Cookies are only set if you have explicitly agreed to this via the cookie banner on our website and your browser settings allow cookies to be issued (Art. 6 para. 1 s. 1 a) GDPR).

The cookies contain the following data records:

 First-Party Cookies:

Domain

Name

Purpose

Deletion

.vivascope.de

pll_language

Cookie for saving the language settings

 1 year

www.vivascope.de

pll_language

Cookie for saving the language settings

1 year

 

Third-Party Cookies/ Requests

Domain

Name

Purpose

Deletion

cdn.jsdelivr.net

GH und NPM

Open source CDN (content delivery network) – cloud image storage/load time optimization; operated by Prospect One from Sweden.

28 days

 

cdnjs.cloudflare.com

AJAX

Via Prospect One integrated CDN (content delivery network) of Cloudflare Inc, USA-Cloud images storage/load time optimization.

28 days

 

code.jquery.com

UI

jQuery javascript library – for more scripts for WordPress

28 days

 

consent.cookiebot.com

CONSENT

Storage of cookie consent via the banner, offered by the service provider Cybot A/S, Copenhagen Denmark

1 year

consentcdn.cookiebot.com

CONSENTCDN

Cookie consent via banner, offered by the service provider Cybot A/S, Copenhagen Denmark

1 year

 

 

 

 

pixel.wp.com

PIXEL

jetpack pixel – Website statistics and

-Tracking by WordPress, operated by Automattic Inc. USA

1 year

secure.plug1luge.com  

JS

https://www.leadforensics.com/ pixel – External service that allows tracing of detected IPs to business customers. Operated in the United Kingdom.

28 days

sibforms.com

FORMS

ConvertPlus – External service that enables newsletter subscriptions.

28 days

stackpath.bootstrapcdn.com

BOOTSTRAP

Bootstrap framework/ javascript library website layout and functionalities

28 days

stats.wp.com

STATS

jetpack pixel – Website Statistics and tracking 

1 year

www.google-analytics.com

GA, GID und GAT

Google Analytics – website statistics and -tracking.

GA and GID with end of session; GAT after 24 hours

FingerprintingGeneral, Analytics (Google)

See above

Google Analytics – website statistics and

-tracking.

2 years

www.google.com (Content (Google))

See above

Google Analytics – website statistics and

-tracking.

2 years

www.googletagmanager.com

TAG

Google Analytics – website statistics and

-tracking.

depending on browser settings

maps.googleapis.com

 

maps.gstatic.com

Third Party Request

Third Party Request

Google Maps – Publishing a map

 

Google Maps – Publishing a map

with end of the session

with  end of the session

 

5. Google services belonging to the cookies

The Google services listed here are offered by Google Ireland Limited (“Google”). You can make privacy settings with respect to your Google account here: https://myaccount.google.com/intro/privacycheckup?utm_source=accounts&utm_medium=callout&utm_campaign=new_privacy_checkup

Google’s privacy policy can be accessed here: http://www.google.de/intl/de/policies/privacy.

Google stores the data in Ireland but reserves the right to also process data on servers in the USA and, in this respect, has the EU standard contractual clauses and further protective measures (such as Transfer Impact Assessment) applied, which are intended to guarantee an adequate level of data protection (Art. 46 (2) c) GDPR). The USA is currently considered a country with an inadequate level of data protection because data subjects do not provide of rights and remedies comparable to those in the EU to protect their personal data.

 

5.1 Google Analytics

We use Google Analytics, a web analytics service provided by Google, to analyse how you use our website. The information generated by the cookie about your visit to this website will be transmitted to and stored by Google on servers, based in the EU and also in the United States. Google uses this information to evaluate your use of the website, to draft reports on website activity for us and to provide us with other services related to website activity and internet usage. We are joint controllers with Google and have entered into a joint control agreement specified by Google through our account with Google (Google Controller-Controller Data Protection Terms (safety.google). 

Summary of the Joint Control Agreement with Google:

– Each party is responsible for ensuring that a legal basis exists for the respective data processing.

– Data subject rights are performed by Google, insofar as this does not relate to data processing separately performed by us. However, to assert your data protection rights, you can contact us and/or Google.

– The notification of data protection breaches in accordance with Art. 33 GDPR is handled by Google.  We are obliged to report immediately if we suspect a data protection breach.

To ensure anonymized collection of IP addresses, the source code of Google Analytics has been extended by the code “_anonymizeIp” so that IP addresses are only processed in abbreviated form in order to exclude the possibility of personal references.

You can also prevent the storage of these cookies by setting your browser accordingly. You can also prevent the collection of data generated by the cookie and related to your use of our website (incl. your IP address) by Google, as well as the processing of this data by Google, by downloading and installing the browser plug-in available under the following link

http://tools.google.com/dlpage/gaoptout?hl=de

Alternatively, you can prevent the collection and use of your data by Google by clicking on the following link:

Deactivate Google Universal Analytics

Clicking this link sets an opt-out cookie that prevents your data from being collected by Google.

For more information on Google’s terms of use and privacy policy for this service, please visit the following links:

http://www.google.com/analytics/terms/de.html

http://www.google.com/intl/de/analytics/learn/privacy.html

Data by Google is collected among others from users of a Gmail account, as Google is also offering this service. You can change your advertising settings for this at https://adssettings.google.com/authenticated so that no more activities and information are collected for personalized advertising.

 

5.2 Google AdWords

This website also uses the online advertising program “Google AdWords” from Google, including conversion tracking. A conversion can be, for example, a registration, a page access or an enquiry. Google has developed a tool to measure these conversions and the effectiveness of AdWords ads. The conversion tracking cookie is issued on your end device when you click on an ad placed by Google. These cookies expire after 30 days and are not used for personal identification. If you visit certain pages of this website and the cookie has not yet expired, we and Google will be able to track that you clicked on the ad and were redirected to this page. Each Google AdWords customer receives a different cookie. Cookies can therefore not be tracked via the websites of AdWords customers. The information obtained using the conversion cookie is used to create conversion statistics for AdWords customers who have opted for conversion tracking. The customers, which include us, learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users. If you do not wish to participate in the tracking, you can easily deactivate the Google conversion tracking cookie via your internet browser under user settings. Furthermore, you can prevent the use of these cookies in your advertising settings at Google.

 

5.3 Google Tag Manager

The Google Tag Manager is a solution that allows us to manage website keywords, i.e. tags, via an interface and thus integrate other services into our website. Tags are pieces of code, such as HTML or JavaScript, that we use on the website for analysis or marketing purposes. Or they may be a social media plugin. For example, the Tag Manager itself (which implements the tags) does not profile users or store cookies. Rather, the tags and scripts set cookies that collect data from users to create statistics and marketing analyses, like the Google Analytics service mentioned above. Google only learns the user’s IP address, which is necessary to provide the service.

 

5.4 Google reCaptcha

This website uses the reCAPTCHA service from Google to prevent misuse of the services offered on our website. For this purpose, you will be asked questions or given tasks before your data is sent in the event of a request from you, for ensuring that you are an individual and that the request has not been generated by machine or automatically. In this context, your IP address is collected, but also the time you spent on the website or mouse movements you make.

 

For more information on Google reCAPTCHA, please visit the following link:  https://www.google.com/recaptcha/intro/android.html.

 

5.5. Google Maps

This website contains maps from Google Maps for displaying geographical information. When accessing the website, Google makes a request (so-called third party request) and establishes a connection to its server by collecting the IP number. The procedure will be as described in paragraph 5. If you are logged in to Google when using it, Google may be able to link this data to your account. We would like to point out that we, as the provider of the website, have no influence on the collection and use of data by Google. Additional terms and conditions for Google Maps and Google Earth (https://www.google.com/intl/de_US/help/terms_maps.html) apply. In addition, the Joint Control Agreement (Google Controller-Controller Data Protection Terms (safety.google)), which is described in more detail in Section 5.1 of this Privacy Policy, also applies.

 

6. Integrated Vimeo videos

Videos are embedded on our website via the provider Vimeo. The provider of the corresponding plugins and the associated website at https://www.vimeo.com is Vimeo LLC (“Vimeo”), 555 West 18th Street, New York, New York 10011, USA.

The videos are integrated via so-called inline frames (in short “iframes”) in the extended data protection mode. An iframe is an element that integrates content from other websites directly into our website via HTML. Information is only collected by Vimeo if you consent and watch the video. After consent has been given, the cookies mentioned above are issued. If you have already agreed to play the video on another website, Vimeo notices this by the issued cookie. If you click on the video, Vimeo receives the information from which website you are accessing the Vimeo videos. If you are logged into your Vimeo account, Vimeo can assign your surfing activities to you personally. You can prevent this by logging out of your Vimeo account first. If you interact with the plugins (e.g. by clicking on the start button of a video), this information is also transmitted directly to a Vimeo server and stored there. For the purpose and scope of the data collection and the further processing and use of the data by Vimeo, as well as your setting options for protecting your data, please refer to Vimeo’s privacy policy: vimeo.com/privacy.

7. Contact form

When using our contact form, which can be accessed via the “Contact” link, you will be asked to provide certain data (such as title, surname, first name, e-mail address, telephone number, institute/company and message to us). The information marked with an asterisk is mandatory. All information is used to process your request. We use the data to process your enquiry and thus for pre-contractual measures or the purposes of our legitimate interests to enable enquiries about our company and to respond to them (Art. 6 para. 1 s. 1 b), f) GDPR).

Without providing the mandatory information, you will unfortunately not receive a response from us. Failure to provide voluntary information will have no effect.

8. Career

Via the link “Career” you have the possibility to inform yourself about current job offers at VivaScope. An online application is not offered. However, you are welcome to send us your application documents by email to bewerbung@vivascope.com. Please ensure that your data is adequately protected.

All data will be used to process your application and thus for pre-contractual purposes and for a possible employment relationship (Art. 6 para. 1 p.1 b) GDPR, § 26 German Federal Data Protection Act). The e-mail address is required in order to immediately confirm receipt of your application. Contact details are used to get in touch with you, e.g. to arrange an interview.

Your applicant data will remain stored for 6 months after the award of the desired training place or position or, in the case of an unsolicited application, after rejection. Immediately after the award of the training place or position, the data of applicants (m/f/d) who have not been awarded the contract will be blocked for any use other than clarifying applicant claims. In the case of unsolicited applications, the data will be blocked after rejection. Any further storage and use of applicant data will only take place if you have given us your express consent to the further storage of your applicant data or in the case of a justified interest of VivaScope, e.g. in the case of a duty of proof in legal proceedings. If an employment or training contract is concluded with an applicant, the data is stored and processed for the implementation and processing of the employment relationship and thus for contractual purposes.

9. Legal and contractual obligations for provision

The provision of your data as described in this data privacy policy is neither contractually nor legally required. However, without the provision of applicant data, we cannot consider your application, nor can we answer any enquiry without a contact date.

10. Disclosure of your data

We will only disclose your data to third parties if we are entitled or obliged to do so under applicable law.

An entitlement will exist if you give us consent or third parties process the data on our behalf: If we do not carry out our business activities (e.g. operating the website, product customisation, creating and sending advertising material, data analysis and, where applicable, data cleansing) ourselves, but have them carried out by other companies, and these activities involve the processing of your data, we have previously contractually obliged these companies to use the data only for the purposes for which we are legally permitted to do so. We are authorised to monitor these companies in this respect.

In individual cases, we may be legally obliged to pass on personal data to authorities or courts. The associated data processing is thus based on a legal obligation.

Data is passed on to Google on the basis of joint data processing, insofar as you have given us consent to use these services (see point 5. of this data protection declaration).

11. Storage period and deletion of data

Contact data provided will be stored until we can assume that your request has been dealt with, at the latest three months after the last correspondence. If the data is required as evidence, it will be stored within the scope of the statutory limitation regulations or until the respective proceedings have been concluded. Log files are deleted 7 days after collection. For applicant data, the deletion periods shown in the “Careers” section apply; the storage period for cookies is also shown above.

12. Your rights (objection, revocation, information, correction, restriction of processing, deletion, transfer, complaint)

12.1 Objection

You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data by us. To do this, you can use the contact options specified in sections 1 and 2 above. If you object, we will no longer process your personal data, unless we are able to demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms.

12.2 Revocation

In addition, you have the right to revoke any consent given with effect for the future. The lawfulness of the processing activities based on your consent will, however, not be affected up to the exercise of the right of revocation.

12.3 Other rights

You have the right, free of charge, to be provided with information regarding your personal data stored by us, to correct inaccurate data, and to have data blocked or deleted. You also have the right to be provided with your data in a structured, commonly used and machine-readable format and to have your data transmitted by us to another person. Finally, you have the right to lodge a complaint with a supervisory authority.

With the exception of your right to lodge a complaint with a supervisory authority, you may address your relevant request to the contact details specified in sections 1 and 2 above.

13. Data security

This website is SSL-encrypted to protect your data. VivaScope also takes appropriate technical and organisational measures within the meaning of Article 32 of the GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, circumstances and purposes of the processing, as well as the likelihood and severity of the risk to the rights and freedoms of natural persons. Furthermore, we ensure the confidentiality, integrity, availability and resilience of the systems and services in connection with the processing, as well as the rapid restoration of the availability of personal data in the event of a physical or technical incident.

Please note that, while we endeavour to create a secure and reliable website for users, the absolute confidentiality of messages or materials transmitted to, or from, the Website cannot be guaranteed.