Privacy

Last Updated: September 2024

Privacy Statement

This Privacy Statement from the AllUnity GmbH (“we”, “us”, “our”), describes the manner in which we collect and process personal data about you when visiting our Website at https://allunity.com/ (“Website”). We process your personal data in accordance with the statutory provisions, in particular the EU General Data Protection Regulation (EU) 2016/679 (“GDPR“) and the German Data Protection Act (Bundesdatenschutzgesetz, “BDSG“). Please read the below carefully.Personal data refers to any information relating to an identified or identifiable natural person (“Data Subject“) , such as our Website visitors, and may include their name, contact details or technical identifiers.

1.Who We Are and How You Can Reach us

1.1 Information About us as Controller [and our Data Protection Officer]

AllUnity
Sandweg 94
Frankfurt
60316

Email: support@allunity.com

Privacy officer: Sven Lindenlauf
Email: dataprivacy@allunity.com

2. How We Process Personal Data When You Visit Our Website

2.1 Personal Data Processing By Our Web Servers

When you visit our Website without providing any personal data other than that is technically necessary for establishing a connection to our web servers and for displaying our Website, your browser will automatically send certain information to our web servers. The following categories of personal data are collected automatically:

Public IP address of the requesting entity or of your end user device;
Date and time of the request, time zone included;
Requested URL, including query parameters and request headers;
Access status/HTTP status code;
Amount of data transferred in each case;
Website from which the request originates (so-called referrer URL);
HTTP headers (including your browser type, version and language; your operating system and interface; name of your Internet Service Provider).

The legal basis we rely on to process your personal data is Art. 6(1), sentence 1, lit. f GDPR, which allows us to process personal data when it is necessary for our legitimate interests. In particular, we process the abovementioned categories of personal data for ensuring the continuity of our business by letting you access our Website without disruptions and maintain the integrity of our IT systems (e.g., for preventing server overload through distributed denial-of-service (DDoS) attacks). Such personal data will be temporarily stored in server log files for as long as necessary to maintain and improve the security and stability of our IT systems over a period of 7 days. After seven days at the latest, the data is anonymized by shortening the IP address at domain level so that it is no longer possible to establish a reference to the individual user.

2.2 Use of Hosting Provider

AlUnity.com is hosted by WP Engine in UK and EU. WP Engine adheres to all regulation relating to data privacy and data transfer. Information on WP Engine’s Security Environment can be found here: https://wpengine.com/support/wp-engines-security-environment/#Security_Process_FAQs

3. How we Process Personal Data when you Contact us

3.1 Via our Contact Form

When you contact us via our contact form on our Website, we will collect, use and store personal data you provide (such as your name, your email address, your company name, and further information provided by you) to process and answer your enquiry adequately. All data that you provide to us via any contact form on this Website are transferred between your browser and our servers in encrypted form.

We process the personal data you provide to us to handle your enquiry or if we are obliged to carry out certain processing activities to fulfill legal obligations (for example under applicable tax laws). In the individual case, we process your data to defend our rights (e.g. transmitting your data to law enforcement authorities in the event of suspected criminal acts and offences, such as deception or forgery).

We will erase such data when storage is no longer necessary according to the circumstances (e.g., when we have provided a final response to your enquiry). Alternatively, we will restrict the processing if there are any applicable legal retention obligations, in particular where federal German laws require us to store our electronic correspondence containing commercial letters and other business and/or tax-related documents for a period of up to six or ten years (see, Sec. 147 of the German Tax Code, Sec. 257 of the German Commercial Code).

The legal basis for such processing is Art. 6(1), sentence 1, lit. f GDPR, unless your enquiry is intended to take steps prior to entering into, to perform or to terminate a contract with us. In this case, the legal basis follows from Art. 6(1), sentence 1, lit. b GDPR. Insofar as we process your data on the basis of a legal obligation, the legal basis is Art. 6(1), sentence 1, lit. c GDPR. The processing of your data in the event of a suspected attempt at deception or suspected falsification is Art. 6(1), sentence 1, lit. f GDPR.

3.2 HubSpot

We are using HubSpot, Inc., 2 Canal Park, Cambridge, MA 02141 United States of America (“HubSpot”) for our customer relationship management. The information you submit to us via our contact form will be transferred to HubSpot. HubSpot processes personal data on our behalf and our instructions in accordance with a data processing agreement (Art. 28 GDPR), which can be found at https://legal.hubspot.com/dpa. In the course of data processing by HubSpot, personal data may be processed outside of the European Union or the European Economic Area, including the United States of America. In this regard we have entered into Standard Contractual Clauses (Module 2: Transfer controller to processor) as appropriate safeguards with HubSpot. You can find a copy of the Standard Contractual Clauses at https://legal.hubspot.com/dpa.

4. Use of Cookies on our Website

A cookie is a small text file that is stored by your web browser when you visit a website. Almost every website uses cookie technology. Cookies may store certain information such as your IP address, information about the content you view, information about the content you provide so that you do not have to re-enter it each time you visit our Website, and your preferences and settings. Cookies also help us provide you with customized content, speed navigation through our Website, and allow us to learn about your visit and your use of online services. Where the placement of cookies involves the processing of personal data, the legal basis for processing personal data in connection with strictly necessary cookies is Art. 6(1), sentence 1, lit. f GDPR, Sec. 25(2) of the German Telecommunications Digital Services Data Protection Act (“TDDDG”) and our legitimate interest in the functioning of our Website. We use only the following strictly necessary cookies.

Cookie Name	Host	Purpose/Description	Source Domain (First Party/Third Party)	Storage Period
elementor	CookieYes	The website’s WordPress theme uses this cookie. It allows the website owner to implement or change the website’s content in real-time.	Third Party	Never Expires
wpEmojiSettingsSupports	CookieYes	WordPress sets this cookie when a user interacts with emojis on a WordPress site. It helps determine if the user’s browser can display emojis properly.	Third Party	Session
__cf_bm	CookieYes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.	Third Party	1 hour
_cfuvid	CookieYes	Calendly sets this cookie to track users across sessions to optimize user experience by maintaining session consistency and providing personalized services	Third Party	Session
JSESSIONID	CookieYes	New Relic uses this cookie to store a session identifier so that New Relic can monitor session counts for an application	Third Party	Session

5. Your Rights as a Data Subject

As a Data Subject, you have the right to obtain confirmation as to whether personal data relating to you are being processed by us and, where that is the case, the right to access to the personal data concerning you and a copy thereof (Art. 15(1) and (3) GDPR).
If we process inaccurate personal data, you have the right to rectification (Art. 16 GDPR).
In some cases described by law, you may request the erasure of personal data concerning you or the restriction of processing (Art. 17 and 18 GDPR).
If processing is based on your consent within the meaning of Art. 6(1), sentence 1, letter a GDPR and/or Art. 9(2), letter a GDPR, you may withdraw your consent at any time (Art. 7(3) GDPR), which would not affect the lawfulness of processing based on consent before its withdrawal. We inform you separately if we require your consent for the processing personal data relating to you for specified, explicit and legitimate purposes not covered by this Notice.
If processing is based on your consent within the meaning of Art. 6(1), sentence 1, letter a GDPR and/or Art. 9(2), letter a GDPR, or on a contract pursuant to Art. 6(1), sentence 1, letter b GDPR, and the data processing is carried out by automated means, you have a right to receive the personal data concerning you in a structured, commonly used and machine-readable format and the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided (data portability) (Art. 20 GDPR).
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you based on Art. 6(1), sentence 1, letter e or f GDPR (Art. 21(1) GDPR).
You may object to the processing of your personal data on the basis of Art. 6(1), sentence 1, letter f GDPR for direct marketing purposes at any time (Art. 21(2) GDPR), without stating grounds relating to your particular situation. However, we would like to point out that we do not process your personal data for this purpose.
Furthermore, you have the right to lodge a complaint with the competent data protection supervisory authority. You can for example contact the supervisory authority in the EU Member State of your habitual residence, place of work or place of the alleged infringement. The data protection supervisory authority responsible for us is the Hessian Commissioner for Data Protection and Freedom of Information, P.O. Box 3163, 65021 Wiesbaden, Germany, Telephone: +49 (0)611 1408- 0, https://datenschutz.hessen.de.

If you have any questions or complaints about how we process your personal data, we recommend that you first contact us (see the contact details under section ‎1.1 above).

6. Technical and Organizational Measures

We have taken appropriate technical and organizational measures to protect the personal data you provide to us against accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access. For example, our employees and all persons acting under our supervision are obliged to comply with data protection laws and to treat personal data confidentially. To protect the personal data of our users, we also use a secure online transmission protocol known as “Transport Layer Security” (TLS) transmission. You can recognize this by a final “s” appended to the URL (“https://”) or a closed lock symbol in your browser. Clicking on the symbol provides you with further information about the TLS certificate used. Symbols and explanations may vary according to the browser you are using. TLS encryption ensures the encrypted and complete transmission of your data.

7. Changes to this Privacy Statement

New legal requirements, corporate decisions or technical developments may lead to changes to this Notice and require us to adapt this Notice accordingly. You will always find the current version on our Website. Please note that external links to third-party websites or their contact information may change over time. If you find any information that is outdated, please let us know.

Contact Us

Imprint

Site Map

© 2024 AllUnity.

AllUnity, Sandweg 94, Frankfurt, 60316