We take the protection of your personal data very seriously and adhere to the rules of data protection laws In this data protection notice, we inform you when we collect which data, how we use and process it and how we handle your personal information
The responsible body within the meaning of the data protection laws is VisioLab GmbH, represented by Tim-Oliver Niekamp Neumarkt 7, 49074 Osnabrück, Germany
E-mail address: hello@visiolab.io
Imprint: https://www.visiolab.io/legal-notice
Personal data is all data that can be related to you personally, e.g. name, address, e-mail addresses, user behaviour.
3.1. Collection of Personal Data When Using the Website:
When using our website for informational purposes only, meaning simply viewing it without contacting us or otherwise providing information, we process the personal data transmitted by your browser to our server. The data described below is technically required for us to display our website to you and ensure stability and security, and therefore must be processed by us. The legal basis is Article 6 (1) sentence 1 lit. f of the GDPR.
3.2. Collection of Personal Data When Contacting Us:
When contacting us (e.g. by post, contact form, email, telephone or via social media) and as part of existing user and business relationships, the details of the enquiring persons are processed insofar as this is necessary to answer the contact enquiries and any requested measures.Types of data processed: Contact data (e.g. email, telephone numbers); content data (e.g. entries in online forms); usage data (e.g., websites visited, interest in content, access times); meta, communication and procedural data (e.g. IP addresses, time information, identification numbers, consent status).Data subjects: Communication partners.Purposes of Processing: Contact requests and communication; Managing and responding to enquiries; Feedback (e.g. collecting feedback via an online form); Provision of our online services and user experience.Legal bases: legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); contract fulfilment and pre-contractual enquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR).We will retain the data you provide when you contact us until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains.
To exercise your rights, please contact us at this email: legal@visiolab.ioYou have the following rights:
4.1. Revocation of consent
You can withdraw your consent to the processing of personal data at any time with effect for the future. The above contact options are available to you for this purpose.
4.2. Further rights
You also have the following rights with regard to your personal data:
You also have the right to complain to a data protection supervisory authority about the processing of your personal data by us.The supervisory authority responsible for us:
The State Commissioner for Data Protection of Lower Saxony
Prinzenstraße 5, 30159 Hanover
Telephone: 05 11/ 120-45 00
Fax: 05 11/ 120 - 45 99
E-mail: poststelle@lfd.niedersachsen.de
Homepage: https://www.lfd.niedersachsen.de
The hosting platform we use is provided by Webflow. The provider is Webflow, Inc, 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA (hereinafter: Webflow). When you visit our website, Webflow collects various log files including your IP addresses. Webflow is a tool for creating and hosting websites. Webflow stores cookies or other recognition technologies that are required to display the page, to provide certain website functions and to ensure security (necessary cookies).In order to ensure data protection-compliant processing, we have concluded an order processing contract (AVV) with Webflow.Details can be found in Webflow's privacy policy: EU & Swiss Privacy Policy | Webflow.To improve the loading speed of content (e.g. images, texts) and to defend against possible attacks, we use the services of Cloudflare, Inc. on the basis of the standard contractual clauses. Cloudflare offers protection and optimisation services that enable the secure and fast transmission of content to our website.Cloudflare does not store any personal data on its servers. However, when you access our content, your end device establishes a connection to Cloudflare's servers, whereby the IP address of your end device is processed. This processing is used exclusively for the secure provision and optimisation of content.
This website uses SSL encryption for security reasons and to protect the transmission of confidential content, such as enquiries. You can recognise an encrypted connection by the fact that the address line of the browser changes from ‘http://’ to ‘https://’ and by the lock symbol in your browser line.
We use cookies to make your visit to our website more attractive and to enable the use of certain functions. These are small text files that your web browser receives and stores on your computer when you visit our website. Some of the cookies are deleted immediately after you close your browser. Other cookies remain permanently on your computer and enable us to recognise you or your computer the next time you visit our website.
Processing of cookie data on the basis of consent:
We use a cookie consent management procedure in which users' consent to the use of cookies or the processing and providers referred to in the cookie consent management procedure can be obtained and managed and revoked by users. In this context, the declaration of consent is stored in order not to have to repeat your request and to be able to prove consent in accordance with the legal obligation.
Types of data processed:
Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
Processing by necessary cookies:
The data processed with the help of necessary cookies is processed on the basis of our legitimate interests (e.g. in the business operation of our online offer and its improvement) or if the use of cookies is necessary to fulfil our contractual obligations.
You can object to the data processing at any time with effect for the future by preventing the storage of cookies through the settings in your browser or by clicking on the following link and changing your currently set preferences in our Cookie Consent Manager:
Manage my cookie settings.
Services and service providers used:
Use of consent technology by CookieHub
This website uses the consent management of CookieHub The provider of this technology is CookieHub ehf, Hafnargata 18, 230 Reykjanesbær, Iceland (hereinafter ‘CookieHub’) When you enter our website, a connection is established to CookieHub's servers in order to obtain your consent and other declarations regarding the use of cookies CookieHub then stores a cookie in your browser in order to be able to assign the consents given or their revocation to you The data collected in this way will be stored until you ask us to delete it, delete the CookieHub cookie yourself or the purpose for data storage no longer applies Mandatory statutory retention obligations remain unaffected This cookie deletes itself automatically after 12 months CookieHub is used to obtain the legally required consent for the use of cookies The legal basis for this is Art. 6 para. 1 lit. c GDPR Further information on the processing of your personal data by CookieHub can be found at: https://www.cookiehub.com/de/produkt/dsgvo
8.1. Use of Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). Our purpose in using this tool is to enable the analysis of user interactions on websites and apps, and to improve and make our offering more interesting to you as a user based on the gathered statistics and reports.
We record user interactions on our website primarily through cookies, data on the device/browser, IP addresses, and website or app activities. Google Analytics also collects your IP address to ensure the service's security and to help us as website operators determine the location of the user (known as “IP geolocation”). For your protection, we use the anonymization feature (“IP Masking”), meaning Google shortens IP addresses by the last octet within the EU/EEA.
Google acts as a processor, and we have concluded a data processing agreement with Google. The information generated by the cookie and the (usually shortened) IP addresses regarding your use of this website is generally transmitted to a Google server in the USA and processed there. Google has committed to maintaining a data protection standard equivalent to the previous EU-US Privacy Shield and has committed to complying with applicable data protection laws for international data transfers. We have also agreed on standard contractual clauses with Google to ensure an adequate level of data protection in third countries. The legal basis for the collection and further processing of information (which occurs for a maximum of 14 months) is your consent (Article 6 (1) sentence 1 lit. a GDPR). You can revoke your consent at any time, which does not affect the legality of processing until the time of withdrawal. In apps, you can reset the advertising ID in the Android or iOS settings. The revocation can be easily carried out via our consent manager or by installing the Google browser add-on available here: tools.google.com/dlpage/gaoptout?hl=de/. For detailed information about Google Analytics, see marketingplatform.google.com/about/analytics/terms/de/. Google's general privacy policy, which also applies to Google Analytics, can be found at www.google.de/intl/de/policies/privacy/.
8.2. Use of Google Tag Manager
This website uses Google Tag Manager from Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA. This service allows website tags to be managed via an interface. Google Tag Manager only implements tags; it does not use cookies and does not collect personal data. Google Tag Manager triggers other tags that may collect data. However, Google Tag Manager does not access this data. If a deactivation occurs at the domain or cookie level, it remains in place for all tracking tags implemented with Google Tag Manager. For more information on Google Tag Manager, see https://www.google.com/intl/de/tagmanager/use-policy.html.
8.3. Use of SalesViewer
On this website, data is collected and stored using the SalesViewer® technology of SalesViewer® GmbH, based on our legitimate interests (Article 6 (1) lit. f GDPR) for marketing, market research, and optimization purposes. This involves a JavaScript-based code used to collect company-related data and relevant usage. The data collected using this technology is encrypted using a non-reversible hashing function. The data is immediately pseudonymized and is not used to personally identify visitors to this website.
Data stored as part of SalesViewer® is deleted as soon as it is no longer needed for its intended purpose, provided that no legal retention obligations apply. You can object to data collection and storage at any time with future effect by clicking on the following link to prevent data collection by SalesViewer® on this website: https://www.salesviewer.com/opt-out. An opt-out cookie will then be stored on your device for this website. If you delete your cookies in this browser, you will need to click the link again.The legal basis for using analytics tools is Article 6 (1) sentence 1 lit. f GDPR.
Right to Object
You can object to the collection and storage of data for the purpose of usage analysis at any time with future effect by notifying us of your objection, for example, by email to: legal@visiolab.io.
We incorporate functional and content elements into our online offering that are obtained from the servers of their respective providers (hereinafter referred to as ‘third-party providers’). These may be, for example, graphics, videos or city maps (hereinafter uniformly referred to as ‘content’).The integration always requires that the third-party providers of this content process the IP address of the user, as they cannot send the content to their browser without the IP address. The IP address is therefore required to display this content or function. We endeavour to only use content whose respective providers only use the IP address to deliver the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as ‘web beacons’) for statistical or marketing purposes. The ‘pixel tags’ can be used to analyse information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user's device and may contain, among other things, technical information about the browser and operating system, referring websites, time of visit and other information about the use of our online offer and may be linked to such information from other sources.Types of data processed: Usage data (e.g. websites visited, interest in content, access times); Meta, communication and process data (e.g. IP addresses, time data, identification numbers, consent status); Inventory data (e.g. names, addresses); Contact data (e.g. e-mail, telephone numbers); Content data (e.g. entries in online forms).Data subjects: Users (e.g. website visitors, users of online services).Purposes of processing: Provision of our online services and user-friendliness; marketing; profiles with user-related information (creation of user profiles).Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).In addition, we maintain online presences within social networks and process user data in this context in order to communicate with the users active there or to offer information about us.Further information on processing operations, procedures and services:YouTube videos: Video content; YouTube videos are integrated via a special domain (recognisable by the component ‘youtube-nocookie’) in the so-called ‘extended data protection mode’, whereby no cookies are collected on user activities in order to personalise video playback. Nevertheless, information on user interaction with the video (e.g. remembering the last playback point) may be stored; service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR); Website: https://www.youtube.com; Privacy Policy: https://policies.google.com/privacy; Basis for third country transfers: Data Privacy Framework (DPF).
We process personal data for the purpose of online marketing, which may include in particular the marketing of advertising space or the presentation of advertising and other content (collectively referred to as ‘content’) based on the potential interests of users and the measurement of its effectiveness.For these purposes, so-called user profiles are created and stored in a file (the so-called ‘cookie’) or similar procedures are used, by means of which the information about the user relevant to the presentation of the aforementioned content is stored. This may include, for example, content viewed, websites visited, online networks used, but also communication partners and technical information, such as the browser used, the computer system used and information on usage times and functions used. If users have consented to the collection of their location data, this can also be processed.The IP addresses of users are also stored. However, we use available IP masking procedures (i.e. pseudonymisation by shortening the IP address) for user protection. In general, no clear user data (such as e-mail addresses or names) is stored as part of the online marketing process, but pseudonyms. This means that neither we nor the providers of the online marketing procedures know the actual identity of the users, but only the information stored in their profiles.
In principle, we only receive access to summarised information about the success of our advertisements. However, as part of so-called conversion measurements, we can check which of our online marketing processes have led to a so-called conversion, i.e., for example, to the conclusion of a contract with us. The conversion measurement is used solely to analyse the success of our marketing measures.
Processed data types: Usage data (e.g. page views and length of stay, click paths, intensity and frequency of use, device types and operating systems used, interactions with content and functions); meta, communication and process data (e.g. IP addresses, time data, identification numbers, persons involved).
Data subjects: Users (e.g. website visitors, users of online services).Purposes of Processing: Web Analytics (e.g. access statistics, recognition of returning visitors); Targeting (e.g. profiling based on interests and behaviour, use of cookies); Custom Audiences; Marketing; Profiles with user-related information (Creating user profiles); Conversion tracking (Measurement of the effectiveness of marketing activities).
Storage and deletion: Deletion in accordance with the information in the section ‘General information on data storage and deletion’; storage of cookies for up to 2 years (Unless otherwise stated, cookies and similar storage methods may be stored on users' devices for a period of two years).
Security measures: IP masking (pseudonymisation of the IP address).
Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR); Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Further information on processing processes, procedures and services:
10.1.
Google Ads and conversion measurement: online marketing process for the purpose of placing content and adverts within the service provider's advertising network (e.g. in search results, in videos, on websites, etc.) so that they are displayed to users who are presumed to be interested in the adverts. In addition, we measure the conversion of the adverts, i.e. whether users have taken them as an opportunity to interact with the adverts and use the advertised offers (so-called conversions). However, we only receive anonymous information and no personal information about individual users; service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://marketingplatform.google.com; Privacy Policy: https://policies.google.com/privacy; Basis for third country transfers: Data Privacy Framework (DPF); Further information: Types of processing and data processed: https://business.safety.google/adsservices/; Data processing conditions between controllers and standard contractual clauses for third country transfers of data: https://business.safety.google/adscontrollerterms.
10.2.
LinkedIn Insight Tag: Code that is loaded when a user visits our online offering and tracks the user's behaviour and conversions and stores them in a profile (possible purposes: measuring campaign performance, optimizing ad delivery, building custom and lookalike audiences); Service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR); Website: https://www.linkedin.com; Privacy Policy: https://www.linkedin.com/legal/privacy-policy, Cookie Policy: https://www.linkedin.com/legal/cookie_policy; Data processing agreement: https://www.linkedin.com/legal/l/dpa; Basis for third country transfers: Data Privacy Framework (DPF); Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
We only send newsletters, e-mails and other electronic notifications (hereinafter referred to as “newsletters”) with the consent of the recipient or with legal permission. To subscribe to our newsletter, it is usually sufficient to provide your e-mail address. However, we may ask you to provide a name for the personal address in the newsletter or further information if this is necessary for the purposes of the newsletter.Double opt-in procedure: Registration for our newsletter always takes place in a so-called double opt-in procedure. This means that after registering, you will receive an e-mail asking you to confirm your registration. This confirmation is necessary so that no one can register with other e-mail addresses. Registrations for the newsletter are logged in order to be able to prove the registration process in accordance with legal requirements. This includes storing the time of registration and confirmation as well as the IP address. Changes to your data stored by the mailing service provider are also logged.Deletion and restriction of processing: We may store unsubscribed e-mail addresses for up to three years on the basis of our legitimate interests before deleting them in order to be able to prove previously given consent. The processing of this data is limited to the purpose of a possible defense against claims. An individual request for erasure is possible at any time, provided that the previous existence of consent is confirmed at the same time. In the event of obligations to permanently observe objections, we reserve the right to store the e-mail address in a blacklist (so-called “blacklist”) solely for this purpose.The registration process is logged on the basis of our legitimate interests for the purpose of proving that it has been carried out properly. Content: Information about us, our services, promotions and offers.Types of data processed: Inventory data (e.g., names, addresses); Contact data (e.g., e-mail, telephone numbers); Meta, communication and process data (e.g., IP addresses, time data, identification numbers, consent status); Usage data (e.g., websites visited, interest in content, access times).Data subjects: Communication partners; users (e.g. website visitors, users of online services).Purposes of processing: direct marketing (e.g. by email or post); provision of contractual services and customer service.Legal grounds: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR); legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).Possibility of objection (opt-out): You can unsubscribe from our newsletter at any time, i.e. revoke your consent, or object to further receipt. You will find a link to unsubscribe from the newsletter either at the end of each newsletter or you can use one of the contact options listed above, preferably email.
Further information on processing, procedures and services:
HubSpot: Email marketing platform; Service provider: HubSpot, Inc., 25 First St., 2nd Floor, Cambridge, Massachusetts 02141, USA; Legal basis: Legitimate interests in an efficient and secure mailing system (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://www.hubspot.de; Privacy Policy: https://legal.hubspot.com/de/privacy-policy; Data Processing Agreement: https://legal.hubspot.com/dpa; Standard Contractual Clauses (Safeguarding the level of data protection when processing in third countries): https://legal.hubspot.com/dpa.Measurement of opening and click rates: The newsletters contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved from our server when the newsletter is opened or, if we use a dispatch service provider, from their server. In the course of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and the time of retrieval, is initially collected. This information is used for the technical improvement of our newsletter based on the technical data or the target groups and their reading behavior based on their retrieval locations (which can be determined with the help of the IP address) or the access times. This analysis also includes determining, whether the newsletters are opened, when they are opened and which links are clicked on. This information is assigned to the individual newsletter recipients and stored in their profiles until they are deleted. We use the analyses to identify the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.
If you would like to view our vacancies, you will be redirected to the Personio careers website.Personio: HR software platform; Service provider: Personio SE & Co. KG Seidlstraße 3 80335 München Phone: +49 (89) 1250 1005; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://www.personio.de/; Privacy Policy: www.personio.de/datenschutz/
Your personal data will only be passed on to third parties in the context of contract processing, in particular for the delivery of the goods, to the company commissioned with the delivery, insofar as this is necessary for the delivery of the goods, or to the credit institution commissioned with payment processing, insofar as this is necessary for payment processing. Data will only be passed on to other third parties if we are legally obliged to do so, if we are required to do so by a court order or if the transfer is necessary for law enforcement or criminal prosecution.
Your personal data will only be passed on to third parties in the context of contract processing, in particular for the delivery of the goods, to the company commissioned with the delivery, insofar as this is necessary for the delivery of the goods, or to the credit institution commissioned with payment processing, insofar as this is necessary for payment processing. Data will only be passed on to other third parties if we are legally obliged to do so, if we are required to do so by a court order or if the transfer is necessary for law enforcement or criminal prosecution.
We reserve the right to amend this privacy policy at any time in compliance with data protection law. The current version of the privacy policy is always available on our website.The German text of this privacy policy takes precedence over the English text. The English text is merely a non-binding practical translation.Status: November 2024