Last Update: May 6th, 2021
1. Legal data protection policies
The legal fundamentals of data protection can be found in the European General Data Protection Act (GDPR), the German Federal Data Protection Act (BDSG) and the Telemedia Act (TMG). In this data protection declaration, we use, inter alia, the following terms:
a) Personal data
Personal data means any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
b) Data subject
Data subject is any identified or identifiable natural person, whose personal data is processed by the controller responsible for the processing.
Processing is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
d) Controller or controller responsible for the processing
Controller or controller responsible for the processing is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
Pseudonymisation is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.
f) Third party
Third party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
Consent of the data subject is any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
2. Personal data
The data entered and generated in the context of the use of the Services is exclusively entitled to the user/data subject. When you register for an account, we collect the following personal data to process the contract: first name, last name, email address, club name, job title, IP address, browser type/version, operating system, time of server specification. When processing a paid subscription, we require additional information regarding billing details corresponding to your selected method of payment. This information includes bank account number, bank institute, phone number, street, postcode, city/town and country.
The data provided by you is necessary for the fulfilment of the contract and/or for the execution of pre-contractual measures. Without these data we cannot conclude the contract with you. Data will not be transmitted to third parties, with the exception of the possible transmission of invoice and payment data to processing bank institutes / payment service providers for the purpose of debiting the subscription price and to the analysis and communication tools used and commissioned by us described in section 4 and 5 of this policy.
3. Processing and use of personal data
We are entitled to collect, process and pass on personal data of users to third parties in compliance with the data protection regulations. The personal data is stored on a secure data server and will not be passed on to third parties that are not necessary for contract processing. We may use your personally identifiable information to: (i) provide products and services; (ii) verify your identity and the information you provide; (iii) customize your experience, improve and measure interest in our products and services, and inform you about services, products and updates by e-mail (iv) communicate marketing and promotional offers; (v) settlement of the payment transaction; and (vi) perform certain other business activities.
4. Security, cookies and other important information
We take precautions to protect your information. When you submit sensitive information via website, your information is protected both online and offline. Wherever we collect sensitive information (such as billing data), that information is encrypted and transmitted to us in a secure way. You can verify this by a lock icon in the address bar and looking for “https” at the beginning of the web page. While we use encryption to protect sensitive information transmitted online, we also protect your information offline. Only employees who need the information to perform a specific job (e.g. billing or customer service) are granted access to personally identifiable information.
The computers/servers in which we store personally identifiable information are kept in a secure environment. We use the highly secured data centres of Hetzner Online GmbH. The servers are based in Germany, so that your personal data will be hosted and processed by us in Germany. The data is transferred between the browser and the server via SSL.
We automatically collect and store data in log-files that are transmitted to us by your browser. These data contain: browser type, operating system, referring URL, time of server request. This data is not personal and is not merged with other data sources. We do not pass on these data to third parties, neither for commercial nor for non-commercial purposes. If we become aware of concrete indications of illegal use, we reserve the right to check this data at a later date.
Use of contact information
In addition, we may use your contact information to market to you with information about our products and services, including but not limited to our Services. If you decide at any time that you no longer wish to receive such information or communication from us, please contact us at firstname.lastname@example.org.
5. Web analytics tools
Google Analytics for https://scoutpad.de, https://scoutpanel.com and https://matchmetrics.com
Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website usage and internet usage to us. Our concern in the context of the current data protection regulations is to improve and optimize our content and service.
Google Inc. has signed the EU-US “Privacy Shield” agreement, which aims to achieve a higher level of data protection for non-European countries.
If you do not agree to the storage and evaluation of this data, you can object to its storage and use at any time by clicking the link below. In this case a so-called opt-out cookie is stored in your browser, which means that Google does not collect any sessions data. Please note that the complete deletion of your cookies means that the opt-out cookie will also be deleted and may have to activate again by you.
Your visit is currently tracked by Google Analytics. Click here and your visit will no longer be recorded.
Google Ads and Google Conversion-Tracking
Our websites use Google AdWords. AdWords is an online advertising program from Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, United States („Google“).
Google Ads enables us to only show you products that really interest you when you visit websites that belong to the Google Advertising Network (e.g. in search results, videos, websites, etc.). To this end, cookies are stored by your browser so that you are recognized when you visit Google Advertising websites. Google will associate your web and app browsing history with your Google Account for this purpose. That way, any device that signs in to your Google Account can use the same personalized promotional messaging. An analysis of your website use (e.g. click rates, operating system, browser information, visit times and other information) is used to display ads for products that you have already viewed or that might be of interest to you.
As part of Google AdWords, we use so-called conversion tracking. When you click on an ad served by Google, a conversion tracking cookie is set. The information collected is used by Google to compile conversion statistics for us. However, we only know the anonymous total number of users who clicked on our ad and were directed to a page with a conversion tracking tag. We do not receive any personally identifiable information.
Facebook-Pixel, Custom Audiences and Facebook-Conversion
Our website measures conversions using visitor action pixels from Facebook, Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA (for EU: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland).
Facebook is certified under the EU-US Privacy Shield. The Privacy Shield is an agreement between the European Union (EU) and the US to ensure compliance with European privacy standards in the United States.
Facebook is able to identify you as a visitor of our online offer as a target group for advertising (so-called “Facebook ads”). Accordingly, we use Facebook-Pixel to display the Facebook ads placed by us only to Facebook users who have shown an interest in our online offer or who have certain characteristics (e.g. interests in certain topics or products that are determined on the basis of the websites visited) that we transmit to Facebook (so-called “custom audiences”). Using Facebook pixels, we also want to ensure that our Facebook ads match the potential interest of users and are not annoying. Additionally, we can further track the effectiveness of Facebook ads for statistical and market research purposes by measuring how many users were referred to our website after clicking on a Facebook ad (known as “conversion”).
You can also deactivate the custom audiences remarketing feature in the Ads Settings section at your Facebook account.
We also use the analysis and conversion tracking technology of the LinkedIn platform on our websites. LinkedIn’s technology allows you to receive more relevant ads based on your interests. “Conversion cookies” are stored according to Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in analysing user behaviour in order to optimise both our website and our advertising. LinkedIn also provides us with aggregated and anonymous reports of advertising activity and information on how you interact with our websites.
You can object at any time to LinkedIn’s analysis of your usage behavior and the display of interest-based recommendations here.
On our websites and our products (except app.scoutpanel.com) we use Hotjar, an analysis software of Hotjar Ltd. (“Hotjar”), 3 Lyons Range, 20 Bisazza Street, Sliema SLM 1640, Malta, Europe). With Hotjar it is possible to measure and evaluate the usage behaviour on our web pages in the form of clicks, mouse movements, scroll heights, etc.
You can prevent Hotjar from collecting the data by clicking on the following link and following the instructions provided there.
Matomo (former Piwik) for https://app.scoutpad.de
If you do not agree to the storage and evaluation of this data, you can object to its storage and use at any time by clicking the link below. In this case a so-called opt-out cookie is stored in your browser, which means that Matomo does not collect any sessions data. Please note that the complete deletion of your cookies means that the opt-out cookie will also be deleted and may have to activate again by you.
Please configure here your Matomo tracking preferences:
Matchmetrics Analytics Software
We use a safe and fully encrypted analysis service, which we ourselves operate, in order to analyse and continuously improve the use of our app. Using the statistics obtained, we can improve our offering and design it in a more interesting way for you as a user. The legal basis for this processing of your personal data is Art. 6 Abs. 1 lit. f of the General Data Protection Regulation.
Our own analytics system allows us to gather the following data about how users interact with our products in a secure and anonymized way: (i) Information about how the user interacts within the different product sections. For example, what he clicks on and how long he spends on a page; (ii) Information about browsers and the device the user access the site with; (iii) anonymized IP address to determine only a rough user’s location.
The use of HubSpot primarily include parts of CMS, e-mail dispatch (informative and automated mailings, e.g. for content downloads, double opt-in procedures, sent forms), online reporting (e-mail click and opening rates, user interactions with different content, access figures, conversions, social media, etc.), lead and customer management (clusters of user groups according to various criteria, customer relationship management), landing pages and forms (e.g. downloads of documents/information or registration for mailings, etc.) and social media (publishing of content).
The information collected by HubSpot is processed and stored on HubSpot Inc. servers in the USA. The use of this data serves the sole purpose of improving the Matchmetrics online services and the user experience on www.matchmetrics.com, www.scoupanel.com and www.scoutpad.com. You have the possibility at any time to request, correct or delete these data which are stored by you free of charge. The third-party provider HubSpot has submitted to the requirements of European data protection law by applying the standard contractual clauses of the EU Commission, the corresponding data protection agreement can be found on the website of the third-party provider: http://legal.hubspot.com/de/dpa, https://legal.hubspot.com/privacy-policy.
HubSpot is certified under the Privacy Shield Agreement and thus offers an additional guarantee of compliance with European data protection law if data is processed in the USA.
We provide a limited amount of your information to Intercom Inc., 55 2nd St, 4th Fl., San Francisco, CA 94105 US and utilize Intercom to collect data for improving user experience in our Services. We may use Intercom as a medium for communication, either through email, or through messages within our Services. For this purpose, certain personal data is collected and transmitted to Intercom at regular intervals. Your details (browser type/version, operating system, server time, first name, last name, email, IP address) are collected during registration and transmitted to Intercom via SSL encryption.
We may also use Intercom to analyze and evaluate website usage in order to provide individual support. As a data processor acting on our behalf, Intercom analyzes your use of our website and/or product and tracks our relationship by way of cookies and similar technologies so that we can improve our Services to you. As part of our agreement, Intercom collects publicly available contact and social information about you, such as email address, company, job title, website URLs, to enhance your user experience.
Intercom Inc. has signed the EU-US “Privacy Shield” agreement, which aims to achieve a higher level of data protection for non-European countries.
The user data is stored by Intercom for the duration of the subscription of our Services and deleted 12 months after termination of the contractual relationship at the latest. If you would like to opt out of having this information collected by or submitted to Intercom, please contact us.
In the course of the registration process and its administration we use the MailChimp platform of the US provider Rocket Science Group 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308 US. The personal data provided during registration and account creation (browser type/version, operating system, server time, first name, last name, job title, email, IP address) are stored on MailChimp servers in the US. MailChimp uses this information to send and evaluate the registration form. Furthermore, we use MailChimp to send newsletters to inform you about upcoming updates and specific features. We have concluded a corresponding contract with MailChimp for order data processing.
MailChimp has signed the EU-US “Privacy Shield” agreement, which aims to achieve a higher level of data protection for non-European countries.
The user data is stored by MailChimp for the duration of the subscription of our Services and deleted 12 months after termination of the contractual relationship at the earliest. You can unsubscribe from the newsletter at any time. Please send your cancellation to email@example.com or use the link in the footer of our newsletter.
6. Use of payment service providers
When booking a subscription, we transfer personal data required for billing to one of the following payment service providers:
We use the payment service provider Stripe Payments Europe Ltd., c/o A&L Goodbody, Ifsc, North Wall Quay, Dublin 1, Ireland (hereinafter referred to as “Stripe”) as a processor of order to be able to offer you payment methods such as credit card and debit card (SEPA). The data will be passed on exclusively for the purpose of payment processing with Stripe Payments Europe Ltd. and only to the extent that it is necessary for this purpose.
When paying via PayPal, the necessary data for payment processing (name, address, e-mail address, order and invoice data) is transferred to Paypal (Europe) S.à r.l. et Cie, S.C.A., 5. Etage, 22-24 Boulevard Royal, L-2449 Luxembourg.
7. Confirmation by email
The user agrees revocably at any time that we confirm his personal data, in particular his address and billing details by email. The user assures that only he or his authorized persons have access to his e-mail account. The user is aware that the confidentiality of unencrypted emails is limited.
8. Deletion and rectification od data
The user may revoke his consent regarding the storage and use of his personal data or demand the rectification of data stored about him. Personal data of the user, which are necessary for the completion of a purchase contract concluded before receipt of the revocation, will be deleted only after completion of this purchase contract.
9. Information about stored data
In principle, you have the rights for information, correction, deletion, restriction, data transfer, revocation and objection. The user is entitled to inspect the stored personal data on his person at any time free of charge. This information shall be provided in writing. The request for information must be sent to firstname.lastname@example.org indicated by the email address of the user.
Our contact details: