Privacy policy
1. General information
Scope
This Privacy Policy provides information about the nature, scope, and purpose of the collection and use of personal data by Target GmbH. Personal data refers to all information that can be used to identify a person and which can be traced back to them, such as a person’s name, email address, and phone number.
General
Target Group takes the protection of personal data very seriously and always treats it as confidential in accordance with the applicable legal regulations. Only authorized employees are granted access to stored data. Employees, vicarious agents, and service providers are obliged to maintain the strictest confidentiality.
Collection and processing of personal data
Data is only collected, stored, and processed for reasons that directly relate to the business activities and customer relations of Target Group. The principles of data minimization and purpose limitation are observed.
All data transmitted to Target Group as part of an order to which access or inspection is granted, including the content of documents to be processed, will only be used for the purpose of fulfilling the order. All employees of Target Group who come into contact with the data while fulfilling the order are also obliged to maintain confidentiality.
Freelance employees and vicarious agents are generally obliged by Target Group to maintain confidentiality and to treat data as confidential. Generally, these contractors only collect and process data to the extent necessary for the provision of the commissioned services.
Target Group uses various computer programs and databases, primarily from Microsoft, XTRF Management Systems, Kilgray/memoQ, and SocialPilot, for order processing and data storage. The ordering party is required to find out about the data protection policies of these data processing partner companies.
No data will be misused or improperly passed on by or to third parties. Data shall only be transferred to state institutions and public authorities if required by mandatory national or official legislation.
Right to information, rectification, and deletion
Within the framework of the applicable legal provisions, you have the right to access free information at any time about your stored personal data, its origin and recipient, and the purpose of the data processing and, if necessary, a right to rectification or deletion of this data, unless there is a legal obligation to retain it. You can contact us at any time if you have further questions about this or other issues relating to personal data.
2. General information and mandatory information
Data security
Please note that there may be security gaps when transmitting data via the internet (e.g., when communicating by email). It is not possible to completely protect data against third-party access.
Information about the controller
The data controller on this website is:
Target GmbH
Waldhofer Street 102
69123 Heidelberg
Germany
Phone: +49 6223 9691-960
Email: [email protected]
The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g., names, email addresses, etc.).
Name of the data protection officer (DPO)
Mr. Yury Toporov
Email: [email protected]
Any data subject may contact our data protection officer directly at any time with any questions or suggestions regarding data protection.
Storage duration
If no specific storage period is specified in a separate agreement or declaration, your personal data will remain with us until the reason for the data processing no longer applies. If you make a legitimate request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., retention periods under tax or commercial law); in the latter case, deletion will take place after these reasons no longer apply.
General information on the legal basis for data processing
If you have consented to data processing, we shall process your personal data on the basis of Art. 6(1)(a) GDPR and Art. 9(2)(a) GDPR, but special categories of data shall be processed in accordance with Art. 9(1) GDPR. If explicit consent is given to transfer personal data to third countries, data shall also be processed on the basis of Art. 49(1)(a) GDPR. If you have consented to the storage of cookies or to the retrieval of information from your end device (such as via device fingerprinting), the data shall also be processed on the basis of Section 25(1) of the Telekommunikation-Telemedien-Datenschutz-Gesetz, or TTDSG, (telecommunications and telemedia data protection act). Consent can be revoked at any time. If your data is required to fulfill a contract or to implement precontractual measures, we shall process your data on the basis of Art. 6(1)(b) GDPR. We shall also process your data when this is necessary to fulfill a legal obligation in accordance with Art. 6(1)(c) GDPR. Data may also be processed on the basis of our legitimate interests in accordance with Art. 6(1)(f) GDPR. The following paragraphs of this Privacy Policy provide information on the applicable legal bases for each specific case.
Inquiries by email, phone, or fax
If you contact us by email, phone, or fax, we will store and process your inquiry, including all the resulting personal data, for the purpose of processing your inquiry. We shall not forward this data without your consent.
If your inquiry pertains to the fulfillment of a contract or is necessary for the implementation of precontractual measures, this data shall be processed on the basis of Art. 6(1)(b) GDPR. In all other cases, the data shall be processed on the basis of our legitimate interest in the effective processing of inquiries addressed to us (Art. 6(1)(f) GDPR) or on the basis of your consent (Art. 6(1)(a) GDPR), if this has been requested; consent can be revoked at any time.
We shall retain the data you provide in the contact form until you request its deletion, revoke your consent for it to be stored, or the purpose for which it was stored no longer applies (e.g., after your inquiry has been processed). Mandatory statutory provisions—particularly statutory retention periods—remain unaffected.
Note on data transfer to the USA and other third countries
Among other things, we use tools from companies based in the USA (such as Adobe and Amazon AWS) and other third countries that are not secure in terms of data protection law. When these tools are active, your personal data may be transferred to and processed in these third countries. Please note that a level of data protection comparable to that of the EU cannot be guaranteed in these countries. For example, US companies are obliged to hand over personal data to security authorities, and you as the data subject cannot take legal action to prevent it. For this reason, there is always a possibility that US public authorities (such as intelligence agencies) may process, analyze, and permanently store your data on US servers for monitoring purposes. We have no control over such processing activities.
Withdrawal of your consent to data processing
Many data processing operations are only possible with your express consent. You can withdraw your consent at any time. The lawfulness of the data processing that took place until the withdrawal shall remain unaffected by the withdrawal.
Right to object to the collection of data in special cases and to direct marketing (Art. 21 GDPR)
If data is processed on the basis of Art. 6(1)(e) or (f) GDPR, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation. This also applies to profiling based on these provisions. The applicable legal basis for data processing can be found in this Privacy Policy. If you object, we will no longer process your applicable personal data unless we can provide compelling legitimate grounds which override your interests, rights, and freedoms, or unless the processing thereof serves to establish, exercise, or defend legal claims (objection pursuant to Art. 21(1) GDPR).
If your personal data is processed for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data for the purpose of such marketing. This also applies to profiling related to direct marketing. If you object, your personal data will no longer be used for direct marketing purposes (objection pursuant to Art. 21(2) GDPR).
Right to restriction of processing
You have the right to request the restriction of the processing of your personal data. You can contact us at any time for this purpose. The right to restriction of processing exists in the following cases:
- If you dispute the accuracy of your personal data stored by us, we usually need time to check whether this is the case. For the duration of the review, you have the right to request the restriction of the processing of your personal data.
- If the processing of your personal data was/is carried out unlawfully, you can request the restriction of data processing instead of deletion.
- If we no longer need your personal data, but you need it to exercise, defend, or assert legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.
- If you have lodged an objection pursuant to Art. 21(1) GDPR, a balance must be struck between your interests and ours. Until it has been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.
If you have restricted the processing of your personal data, this data—with the exception of its storage—may only be processed with your consent or in order to assert, exercise, or defend legal claims or to protect the rights of another natural or legal person or for reasons of important public interest of the European Union or a Member State.
Right to data portability
You have the right to have data that we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done to the extent that it is technically feasible.
Right of appeal to the competent supervisory authority
In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their workplace, or the place of the alleged violation. The right of appeal exists without prejudice to other administrative or judicial remedies.
3. Use of the target-group.io website
Data acquisition on this website
Data processing on this website is carried out by the website operator. One way in which we obtain your data is when you provide it to us, for example, when you fill in the contact form. Other data (mainly technical data, such as internet browser, operating system, or time of page view) is collected by our IT systems either automatically or with your consent when you visit the website.
Some of the data is collected to ensure that the website runs smoothly. Other data may be used to evaluate user behavior. This is mainly done using so-called analysis programs. These tools are used in accordance with Art. 6(1)(f) GDPR. We have a legitimate interest in the anonymized analysis of user behavior for the purpose of optimizing both our website and our advertising. If the relevant consent has been requested, the processing shall be carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25(1) TTDSG, provided that the consent covers the storage of cookies or access to information on the user’s end device (such as device fingerprinting) as defined by the TTDSG. Consent can be revoked at any time.
You have the right to receive information about the origin, recipient, and purpose of your stored personal data free of charge and at any time. You also have the right to request the correction or deletion of this data. If you have given your consent to data processing, you can revoke your consent at any time. In addition, you have the right to request the restriction of the processing of your personal data under certain circumstances. You also have the right to lodge a complaint with the competent supervisory authority.
Feel free to contact us at any time if you have further questions about this or other issues relating to data protection.
Hosting
Our website is hosted on Microsoft Azure. By using the website, the user consents to the collection, disclosure, storage, and use of their personal data by Azure in accordance with Azure’s data protection policy (https://azure.microsoft.com/de-de/explore/trusted-cloud/privacy).
Our use of Azure is based on Art. 6(1)(f) GDPR. We have a legitimate interest in ensuring that our website operates as reliably as possible. If the relevant consent has been requested, the processing shall be carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25(1) TTDSG, provided that the consent covers the storage of cookies or access to information on the user’s end device (such as device fingerprinting) as defined by the TTDSG. Consent can be revoked at any time.
We have concluded a data processing contract (DPC) with the above-mentioned supplier. This contract is prescribed by data protection law and ensures that the supplier always processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.
SSL, or TLS, encryption
This site uses SSL, or TLS, encryption for security reasons and to ensure secure transmission of confidential content, such as orders or inquiries that you send to us as the site operator. If the connection is encrypted, a browser’s address line will start with “https://” instead of just “http://” and a lock symbol will be displayed in your browser line.
If SSL, or TLS, encryption is activated, the data you transmit to us cannot be read by third parties.
Cookies
Our website makes use of cookies. Cookies are small text files that are stored on the user’s hard drive or end device via the browser used and through which certain information is transmitted to Target Group as the operator of the website.
Cookies have different functions. Certain cookies are needed for the operation of certain website functions. Users can set the browser to notify them about these cookies, but this will prevent certain parts of the website from working. These cookies do not store any personal data. Other types of cookies are used to evaluate user behavior or for advertising purposes.
Cookies that are required for electronic communication, for the provision of certain functions you have requested, or for the optimization of the website (necessary cookies) are stored on the basis of Art. 6(1)(f) GDPR, unless another legal basis is specified. The website operator has a legitimate interest in the storage of necessary cookies in order to ensure that the website is defect-free and operates optimally. If consent to the storage of cookies and comparable recognition technologies has been requested, processing is carried out exclusively on the basis of this consent (Art. 6(1)(a) GDPR and Section 25(1) TTDSG); consent can be revoked at any time.
You can configure your browser to inform you when cookies are being used and only permit them on an individual basis, accept them in certain cases, block them in general, or activate the automatic deletion of cookies upon closing the browser. The functionality of this website may be restricted if cookies are deactivated.
In some cases, cookies from third-party companies (third-party cookies) may also be stored on your device when you visit our website. These cookies enable us or you to use certain services provided by third-party companies. Target Group has no control over how these providers use personal data. It is the responsibility of the user to obtain information on the websites of the respective providers about their data protection policies.
Server log files
The website provider automatically collects and stores the following information, which is transmitted to us via your browser, in what are known as server log files:
- Browser type and browser version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address
This data is collected in accordance with Art. 6(1)(f) GDPR. The website operator has a legitimate interest in ensuring that its website is defect-free and operates optimally. In order to do so, server log files must be generated. This data shall not be merged with other data sources.
4. Interaction
Notifications
When using an interactive tool, such as the comment or chat function, the user’s IP address is stored. This makes it possible to trace the user’s identity if an applicable law is violated regarding the use of such a tool.
When you send us inquiries using the contact form, the information and specified contact details entered therein are stored by us for the purpose of processing the inquiry and dealing with any follow-up questions. We shall not forward this data without your consent.
If your request pertains to the fulfillment of a contract or is necessary for the implementation of precontractual measures, this data shall be processed on the basis of Art. 6(1)(b) GDPR. In all other cases, the data shall be processed on the basis of our legitimate interest in the effective processing of requests addressed to us (Art. 6(1)(f) GDPR) or on the basis of your consent (Art. 6(1)(a) GDPR), if this has been requested; consent can be revoked at any time.
We shall retain the data you provide in the contact form until you request its deletion, revoke your consent for it to be stored, or the purpose for which it was stored no longer applies (e.g., after your request has been processed). Mandatory statutory provisions—particularly retention periods—remain unaffected.
Objection to promotional emails to Target Group
Contact data, which has been published in accordance with legal information requirements, is herewith prohibited from being used for the transmission of marketing and information material that has not been explicitly requested. The operators of this website expressly reserve the right to take legal action in the event of unsolicited advertising information being sent, for example, by spam email.
5. Plugins and tools
YouTube with enhanced data protection
YouTube videos are embedded in this website. The operator of the website is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. We use YouTube in extended data protection mode. According to YouTube, this mode prevents YouTube from storing any information about visitors to this website before they watch the video. However, the transfer of data to YouTube partners is not necessarily excluded by the extended data protection mode. YouTube establishes a connection to the Google DoubleClick network, whether you watch a video or not.
As soon as you start a YouTube video on this website, a connection to the YouTube servers is established, notifying the YouTube server of which of our pages you have visited. If you are logged into your YouTube account, you allow YouTube to link your browsing activities directly to your personal profile. You can prevent this by logging out of your YouTube account.
Furthermore, after a user starts a video, YouTube can store various cookies on the user’s end device or use comparable recognition technologies (such as device fingerprinting), enabling YouTube to obtain information about visitors to this website. This information is used, in part, to collect video statistics, improve user-friendliness, and prevent fraud attempts. Starting a YouTube video could also trigger further data processing operations that are beyond our control.
We use YouTube to enhance the presentation of our online offerings, which constitutes a legitimate interest as defined by Art. 6(1)(f) GDPR. If the relevant consent has been requested, the processing shall be carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25(1) TTDSG, provided that the consent covers the storage of cookies or access to information on the user’s end device (such as device fingerprinting) as defined by the TTDSG. Consent can be revoked at any time.
You can find more information about YouTube’s data protection in their Privacy Policy at: https://policies.google.com/privacy?hl=en-US.
Google Fonts
In order to display fonts uniformly, this website uses web fonts provided by Google. When you visit a website, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.
To do so, your browser has to connect to Google’s servers, thus informing Google that your IP address has been used to access this website. We use Google Fonts on the basis of Art. 6(1)(f) GDPR. The website operator has a legitimate interest in ensuring that the typeface on its website is uniform. If the relevant consent has been requested, the processing shall be carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25(1) TTDSG, provided that the consent covers the storage of cookies or access to information on the user’s end device (such as device fingerprinting) as defined by the TTDSG. Consent can be revoked at any time. If your browser does not support web fonts, a standard font will be used by your computer.
You can find more information about Google web fonts at https://developers.google.com/fonts/faq and in Google’s Privacy Policy: https://policies.google.com/privacy?hl=en-US.
6. Concluding remarks
The measures described above do not guarantee that data will not be accessed, forwarded, altered, or destroyed as a result of a breach of data protection regulations. By using the services of Target Group or by using the website, customers or users confirm that they understand and accept these risks and agree to the storage and use of their data as described in this Privacy Policy.
Target Group reserves the right to change the website, terms of use, data protection provisions, as well as the general terms and conditions in whole or in part at its own discretion at any time without prior notice. Users are therefore advised to regularly check the current provisions published on the website.
Should any of the above provisions be or become invalid, this shall not affect the validity of the remaining provisions. The invalid provision shall be replaced by a valid provision that most closely reflects the economic purpose of the invalid provision.