Legal & Privacy Policy

1. Contact options

This privacy policy applies to data processing by:

Novexx Solutions GmbH
Ohmstrasse 3
86343 Eching

Phone: + 49 8165 925-0
Fax: + 49 8165 925-327
E-mail: solutions@novexx.com
Webseite: www.novexx.com

If you have any questions about data protection, you can contact us at the following email address: datenschutz@novexx.com

2. Legal basis for data processing

The processing of personal data can be based on various legal bases. If we need your data to fulfill a contract with you or to respond to inquiries from you regarding a contract, the legal basis for this data processing is Art. 6 para. 1 p. 1 lit. b GDPR.

If we obtain your consent for certain data processing, the legal basis is Art. 6 para. 1. p. 1 lit. a GDPR.

We carry out some data processing on the basis of our legitimate interest, whereby a balancing of your interests worthy of protection and our legitimate interests is always carried out. The legal basis for this is Art. 6 para. p. 1 lit. f GDPR.

Insofar as the processing is necessary for the fulfillment of a legal obligation to which we are subject, the legal basis is Art. 6 para. 1 p. 1 lit. c GDPR.

Below we explain how we process personal data via our website.

a) Data processing when accessing the website

When you visit our website, the browser used on your terminal device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automated deletion:

IP address
Date and time of the request
Time zone difference from Greenwich Mean Time (GMT)
Content of the request (concrete page)
Access status/HTTP status code
Data volume transferred in each case
Website from which the request comes
Browser type together with version
Operating system and its interface
Language and version of the browser software
Name of the accessed web page
Message about successful retrieval

The data will be processed by us for the following purposes:

Ensuring a smooth connection of the website,
Ensuring a comfortable use of our website,
Evaluation of system security and stability, and
for other administrative purposes.

The legal basis is Art. 6 para. 1 p. 1 lit. f GDPR; insofar as an absolutely necessary access to information stored in the user’s terminal equipment takes place, also Section 25 para. 2 no. 2 TTDSG. Our legitimate interest follows from the purposes listed above. In no case do we use the collected data for the purpose of drawing conclusions about your person.

b) Contact via e-mail or contact form

When you contact us by e-mail or via a contact form, the data you provide (your e-mail address, name and telephone number, if applicable) will be stored by us in order to answer your questions and process your requests. The legal basis in this respect is Art. 6 para. 1 p. 1 lit. f GDPR.

Insofar as we request information via our contact form that is not required for contacting us, we have always marked this as optional. This information is used to specify your request and to improve the processing of your request.

The disclosure of information is made on a voluntary basis and with your consent, Art. 6 para. 1 p. 1 lit. a GDPR. Insofar as this involves information on communication channels (for example, e-mail address, telephone number), you also consent to us contacting you in this way to answer your request. You can revoke this consent at any time for the future.

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. Which means your request has been fully processed and no further communication with you is necessary or desired by you.

3. Applications

You can apply to our company electronically. Please note that unencrypted e-mails will not be transmitted with access protection.

Your information will be used for processing your application and deciding on the establishment of an employment relationship. The legal basis is Section 26 (1) in conjunction with Abs. 8 p. 2 BDSG. Furthermore, your personal data may be processed insofar as this should be necessary for the defense of asserted legal claims against us arising from the application process. The legal basis for this is Art. 6 para. 1 p. 1 lit. f GDPR. The stated purposes also constitute the legitimate interest in the processing.

Insofar as an employment relationship arises between you and us, we may, in accordance with Section 26 (1) of the German Federal Data Protection Act (BDSG), further process the personal data already received from you for the purposes of the employment relationship if this is necessary for the performance or termination of the employment relationship or for the exercise or fulfillment of the rights and obligations of the employee representative body resulting from a law or a collective agreement, a works agreement or a service agreement (collective agreement).

Your application data will not be processed beyond the described use.

Your personal data will be deleted after completion of the application process at the latest after 6 months , provided that no other legitimate interests on our part oppose deletion or no consent for longer storage was given. Other legitimate interest in this sense is, for example, a duty to provide evidence in proceedings under the German General Equal Treatment Act (AGG).

Use of cookies

Cookies are data that are stored on your computer by a website you visit and allow your browser to be reassigned. Cookies transmit information to the entity that sets the cookie. Cookies can store various information, such as your language setting, the duration of your visit to our website or the entries you have made there. This prevents you, for example, from having to re-enter required form data each time you use the site. The information stored in cookies can also be used to recognize preferences and to tailor content according to areas of interest.

There are different types of cookies: session cookies are sets of data that are only temporarily held in memory and are deleted when you close your browser. Permanent or persistent cookies are automatically deleted after a predetermined duration, which may vary depending on the cookie. The information can also be stored in text files on your computer with this type of cookie. However, you can also delete these cookies at any time via your browser settings.

First-party cookies are set by the website you are currently visiting. Only that website is allowed to read information from these cookies. Third-party cookies are set by organizations that do not operate the website you are visiting. For example, these cookies are used by marketing companies.

The legal basis for possible processing of personal data using cookies and their storage period may vary. Insofar as you have given us your consent, the legal basis is Art. 6 para. 1 p. 1 lit. a GDPR. Insofar as the data processing is based on our overriding legitimate interests, the legal basis is Art. 6 para. 1 p. 1 lit. f GDPR. The stated purpose then corresponds to our legitimate interest.

Insofar as we use cookies or similar technologies to access a terminal device used by you within the meaning of Section 2 (2) No. 6 TTDSG by storing or reading out information there regardless of personal reference, we will obtain your purpose-related, voluntary and informed consent in accordance with Section 25 (1) TTDSG beforehand.

Insofar as consent under the GDPR and the TTDSG can be bundled, we will obtain it uniformly.

No consent under the TTDSG is required to access information in your terminal device that is already stored there and was sent to us by its active transmission, this concerns the public IP address of the terminal device, the address of the website accessed, the user agent string with browser and operating system incl. version and the language set.

Furthermore, no consent is required under the TTDSG if the cookie or similar technology is used to ensure the execution of the transmission of a message via a public telecommunications network (Section 25 (2) No. 1 TTDSG) or to the extent that the setting of the cookie and thus the storage of information in your terminal equipment or access to information already stored in your terminal equipment is absolutely necessary for the provision of a telemedia service expressly requested by you (Section 25 (2) No. 2 TTDSG).

We use cookies to ensure the proper operation of the website, to provide basic functionality, to measure reach and – with your consent – to tailor our services to preferred areas of interest.

You can delete cookies already stored on your terminal device at any time. If you wish to prevent cookies from being stored, you can do so via the settings in your internet browser. Alternatively, you can also install so-called ad blockers. Please note that individual functions of our website may not work if you have disabled the use of cookies.

When calling up our website, all users of our website are also informed by an info banner about our use of cookies and referred to this data protection notice. As a user, you will also be asked for your consent to the use of certain cookies, in particular for the personalization of services and for marketing measures. Once you have given your consent, you can revoke it at any time with future effect by click on “” in our footer.

5. Borlabs

Borlabs is a consent management platform that enables websites to protect user privacy and comply with the GDPR when it comes to cookies and tracking. “Borlabs” is an offer of the provider Borlabs GmbH, Rübenkamp 32, 22305 Hamburg, Germany, hereinafter referred to as “Borlabs”.

Through the “Borlabs” function, we inform our website visitors about the use of cookies on our website and enable them to make a decision about their use.

If the visitor gives his/her consent to the use of cookies, the following data is automatically logged:

– The IP number of the user
– Date and time of consent
– User agent of the end user’s browser
– The URL of the provider
– An anonymous, random and encrypted key.

The encrypted key and the cookie status are stored by means of a cookie on the end user’s device in order to establish the corresponding cookie status during future page visits. This cookie is automatically deleted after 12 months.

The legal basis for the storage of the data is Art. 6 para. 1 p. 1 (f) GDPR, Section 25 (2) No. 2 TTDSG, as Usercentrics is used to fulfill requirements under the TTDSG.

The installation of the cookie as well as its storage, and thus his cookie consent, can be prevented or terminated by the user at any time by settings of his browser.

Further information on Usercentrics can be found at: https://usercentrics.com/de/datenschutzerklaerung

6. Google fonts

This page uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly. We have opted for the offline variant, in which the Google Fonts are stored locally on our web server. The management of the fonts is then possible – using CSS – as with any other font family. A transmission of the IP address and other data to Google does not take place.

The use of Google Web Fonts is in the interest of a uniform and appealing presentation of our online offerings with regard to efficiency and cost-saving considerations. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR, Section 25 para. 2 No. 2 TTDSG. If your browser does not support web fonts, a standard font from your computer will be used.

You can find more information about Google Web Fonts at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://www.google.com/policies/privacy/“.

7. Google Tag Manager

We use the Google Tag Manager by Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA on our website. The responsible entity for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.

Google Tag Manager makes it easy for us to integrate and manage our tags. Tags are small pieces of code that are used, among other things, to measure traffic and visitor behavior, track the impact of online advertising and social channels, set up remarketing and targeting, and test and optimize websites. Through the tags, the Tag Manager collects relevant information for the services that we have built into our website through Google Tag Manager. The services may be necessary website elements or third-party analytics and marketing tools.

A processing of the collected end device information and personal data does not take place by the Google Tag Manager itself, in fact the data is forwarded to the respective third party provider. The forwarding initiated by the Google Tag Manager represents a processing activity within the meaning of Art. 4 No. 2 GDPR.

Insofar as not only technically necessary website elements from third-party providers are integrated via Google Tag Manager, but also an integration of marketing and analysis tools takes place, the Google Tag Manager can also be classified as a marketing service.

We use the Tag Manager for Google Analytics , Google DoubleClick and Albacross. The data processing by Google Tag Manager is thus based on your consent pursuant to Art. 6 para. 1 p. 1 lit. a GDPR, Section 25 para. 1 TTDSG. Your voluntary consent can be withdrawn at any time with effect for the future.

Insofar as data is processed outside the EEA, where there is no level of data protection corresponding to the European standard, we have concluded EU standard contractual clauses with the service provider to establish a secure level of data protection.

For more information on Google Tag Manager, see: https://www.google.com/intl/de/tagmanager/use-policy.html

8. DoubleClick by Google

We have integrated the online marketing tool DoubleClick by Google LLC (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) on our website. The responsible entity for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. DoubleClick uses cookies to display ads which are relevant to users, to improve campaign performance reports, or to prevent users from seeing the same ads more than once. Google records which ads are displayed in which browser via a cookie ID. This prevents the same ad from being displayed more than once. In addition, DoubleClick can use cookie IDs to record so-called conversions with reference to ads. This is the case, for example, when a user sees a DoubleClick ad and later uses the same browser to visit the advertiser’s website and make a purchase.

When you visit a website that uses DoubleClick and for which the DoubleClick script is permitted, your browser automatically establishes a direct connection with the Google server. We as the website operator have no influence on the scope and further use of the data collected by Google through the use of this tool. We inform you according to our state of knowledge: Through the integration of DoubleClick, Google receives the information that you visited our website or clicked on our advertisement. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is the possibility that the provider learns your IP address and stores it.

For more information about DoubleClick by Google, please visit https://www.google.de/doubleclick and about Google privacy in general: https://www.google.de/intl/de/policies/privacy . Alternatively, you can visit the Network Advertising Initiative (NAI) website at https://www.networkadvertising.org.

The data collection and storage only takes place after explicit voluntary consent according to Art. 6 para. 1 p. 1 lit. a GDPR, Section 25 para. 1 TTDSG. This can be withdrawn at any time with effect for the future.

9. Google Analytics

Insofar as you have given your consent, Google Analytics, a web analytics service provided by Google LLC, is used on this website. The responsible entity for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).

Google Analytics uses cookies that enable an analysis of your use of our website. The information collected by means of the cookies about your use of this website is usually transferred to a Google server in the USA and stored there.

We use the User ID feature. User ID allows us to assign a unique, persistent ID to one or more sessions (and the activities within those sessions) and analyze user behavior across devices.

In the event that IP anonymization is activated on this website, your IP address will be truncated beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator.

We use Google Analytics to analyze and regularly improve the use of our website. The statistics obtained allow us to improve our offer and make it more interesting for you as a user. In addition, we receive information about the functionality of our site (for example, to detect navigation problems).

On behalf of the operator of this website, Google will use this information for the purpose of evaluating your (pseudonymous [NOT USING USER ID]) use of the website and compiling reports on website activity. The reports provided by Google Analytics are used to analyze the performance of our website [OPTIONAL] and the success of our marketing campaigns.

Receiver

Recipients of the data are/could be

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (as processor according to Art. 28 GDPR)
Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
Alphabet Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA

Third country transfer

Insofar as data is processed outside the EU/EEA and there is no level of data protection corresponding to the European standard, we have concluded EU standard contractual clauses with the service provider to establish an appropriate level of data protection. The parent company of Google Ireland, Google LLC, is based in California, USA. A transfer of data to the USA and access by US authorities to the data stored by Google cannot be ruled out. The USA is currently considered a third country from a data protection perspective. You do not have the same rights there as within the EU/EEA. You may not be entitled to any legal remedies against access by authorities.

Storage duration

The information sent by us and linked to cookies is automatically deleted after 14 months. The deletion of data whose retention period has been reached occurs automatically once a month.

Legal basis

The legal basis for this data processing is your consent pursuant to Art.6 para. 1 p. 1 lit. a GDPR, Section 25 para. 1 TTDSG. Your voluntary consent can be withdrawn at any time with effect for the future.

For more information about Google Analytics’ terms of use and Google’s privacy policy, please visit https://marketingplatform.google.com/about/analytics/terms/de/ and https://policies.google.com/?hl=de.

Withdrawal

You can withdraw your consent at any time with effect for the future by accessing the cookie settings HERE and changing your selection there. The legality of the processing carried out on the basis of the consent until the withdrawal remains unaffected.

Alternatively, you can prevent the storage of cookies from the outset by setting your browser software accordingly. However, if you configure your browser to refuse all cookies, you may experience limitations in functionality on this and other websites. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google, by

Not giving your consent to the setting of the cookie or
downloading and installing the browser add-on to disable Google Analytics HERE.

For more information on Google Analytics’ terms of use and Google’s privacy policy, please visit https://marketingplatform.google.com/about/analytics/terms/de/

and at https://policies.google.com/?hl=de

10. Albacross

We use Albacross from the provider Albacross Nordic AB (Kungsgatan 26, 111 35, Stockholm, Sweden) on our website.

Albacross can use cookies to analyze the use of our website and your surfing behavior. In this context, we also collect data on which website a user came to our website from (so-called referrer), which subpages of the website were accessed or how often and for how long a subpage was viewed. This helps us to design our offers in a user-friendly way, to find errors and to improve our offers.

The legal basis for this data processing is your consent pursuant to Art. 6 para.1 p. 1 lit.a GDPR, Section 25 para. 1 TTDSG. Your voluntary consent can be withdrawn at any time with effect for the future.

For more information, please visit: www.albacross.com/privacy-policy/

11. Linkedin

On our website, we have included screenshots of the content on our LinkedIn company page. Below the image is a link which refers to LinkedIn. When you click on “View post on LinkedIn >>” you will be redirected to our LinkedIn company page.

When you visit our LinkedIn company page, LinkedIn collects personal data, even if you are not logged in or registered with LinkedIn. We have no influence on the scope of the data collected by LinkedIn.

Further information on data protection at LinkedIn, in particular on the scope, nature, purpose of data processing and your rights can be found at https://www.linkedin.com/legal/privacy-policy and https://www.linkedin.com/legal/privacy-policy-summary.

12. YouTube (enhanced privacy mode)

We use services of YouTube, LLC, 901 Cherry Ave, 94066 San Bruno, CA, USA, a subsidiary of Google Inc, Amphitheatre Parkway, Mountain View, CA 94043, USA, on our website. For users who are habitually resident in the European Economic Area or Switzerland, Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland is the data controller for your data.

Here, we use a two-click solution to protect your personal data. When you call up a page in which a YouTube video is embedded, a connection to the YouTube servers is not established until you click on the “Confirm” button. In this case, YouTube will set cookies and use your visit data for its own purposes. If you are logged in to YouTube at this time, the information about the videos you have viewed will be assigned to your member account with YouTube. You can prevent this by logging out of your member account before visiting our website. Insofar as data is processed outside the European Economic Area / the EU, where there is no level of data protection equivalent to the European standard, Google states that it uses standard contractual clauses.

Further information on YouTube’s data protection is provided by Google under the following link: https://www.google.de/intl/de/policies/privacy/

13. Data transmission

A transfer of your data to third parties will not take place except in the cases mentioned, unless we are legally obliged to do so, or the data transfer is necessary for the implementation of the contractual relationship or you have previously expressly consented to the transfer of your data.

External service providers and partner companies, such as IT service providers, only receive your data to the extent that this is necessary. In these cases, however, the scope of the transmitted data is limited to the necessary minimum. As far as our service providers come into contact with your personal data, we ensure within the framework of order processing pursuant to Art. 28 GDPR that they comply with the provisions of data protection laws in the same manner. Please also note the respective data protection notices of the providers. The respective service provider is responsible for the content of third-party services, whereby we check the services for compliance with the legal requirements within the scope of reasonableness.

We value processing your data within the EU / EEA. However, we may use service providers that process data outside the EU / EEA in some cases. If this happens, we ensure that an adequate level of data protection comparable to the standards within the EU is established at the recipient prior to the transfer of your personal data.

14. Data security

We have taken extensive technical and operational precautions to protect your data from accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security procedures are regularly reviewed and adapted to technological progress.

15. Your rights

You have the following rights with respect to personal data concerning you. To exercise your above rights, please contact us by e-mail at datenschutz@novexx.com.

a) General rights

We will gladly provide you with information as to whether personal data relating to you is being processed. If this is the case, you have a right to get access to the information listed in detail in Art. 15 GDPR. In addition, you have the right to rectification (Art. 16 GDPR), the right to restriction of processing (Art. 18 GDPR), the right to erasure (Art. 17 GDPR) and the right to data portability (Art. 20 GDPR) under the respective legal conditions.

b) Rights in the processing of data according to the legitimate interest

Pursuant to Article 21 (1) GDPR, you have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data which is carried out on the basis of Article 6 (1) sentence 1 lit. e GDPR (data processing in the public interest) or on the basis of Article 6 (1) sentence 1 lit. f GDPR (data processing for the protection of a legitimate interest). In the event of your objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

c) Right of complaint

The supervisory authority responsible for us is:

Bavarian State Office for Data Protection Supervision (BayLDA).

Promenade 18

91522 Ansbach

P.O. Box 1349

91504 Ansbach

Germany

Cookie Settings Customize

1. Contact options