Datenschutz
(as of September 2024)
deeploi GmbH (hereinafter "we" “us” “our”) is pleased that you are visiting our Website https://www.deeploi.io (hereinafter "Website"). Data protection and data security when using our Website are very important to us. We would therefore like to take this opportunity to inform you about the personal data we collect from you when you visit our Website and the purposes for which it is used.
§ 1 Responsible / Controller
The controller within the meaning of the General Data Protection Regulation (hereinafter "GDPR") for the data processing of personal data on our Website is
deeploi GmbH
Ackerstr. 3
10115 Berlin
Germany
You can contact our data protection team at our postal address and via E-Mail at [email protected].
§ 2 Data Protection Officer
Our appointed data protection officer is:
Kertos GmbH
Dr. Kilian Schmidt
Nymphenburger Str. 86
80636 München
Deutschland
E-Mail: [email protected]
§ 3 What is personal data?
Personal data is any information relating to an identified or identifiable natural person. This includes, for example, information such as your name, age, address, telephone number, date of birth, email address or IP address. Information for which we cannot (or can only with disproportionate effort) establish a link to your person, e.g. by anonymising the information, is not personal data. The processing of personal data (e.g. the collection, retrieval, use, storage or transmission) always requires a legal basis such as your consent.
§ 4 Data processing on our Website
1) Provision and use of the Website
a) Scope and purpose of data processing
We collect and use our users' personal data only insofar as this is technically necessary to provide a functional Website and our content and services or information.
When you access and use our Website, we collect the personal data that your browser automatically transmits to our server. This information is temporarily stored in a so-called log file.
The following information is collected without any action on your part and stored until it is automatically deleted:
• IP address of the requesting computer,
• Date and time of access,
• Name and URL of the retrieved file,
• Website from which the access is made (referrer URL),
• the browser used and, if applicable, the operating system of your computer and the name of your access provider.
We process the aforementioned data for the following purposes:
• Ensuring a smooth connection to the Website
• Ensuring the convenient use of our Website
• For IT-Security purposes
b) Legal basis
Art. 6 para. 1 lit. f GDPR serves as the legal basis. The processing of the aforementioned data is necessary for the provision of a Website and to enable secure and convenient use and thus serves to safeguard a legitimate interest of our company.
c) Storage period and data erasure
As soon as the aforementioned data is no longer required to display the Website, it is deleted (latest within 30 days). The collection of data for the provision of the Website and the storage of data in log files is absolutely necessary for the operation of the Website. Consequently, the user has no option to object. Further storage will take place in individual cases if this is required by law.
d) Third Parties
For the hosting of the Website we use an external service provider, Webflow, Inc., 398 11th St., Floor 2, San Francisco, CA 94103 (in the following called “Webflow”). Your personal data will be passed on to Webflow in order to host the website. For more information, please refer to Webflow’s Privacy Policy (https://webflow.com/legal/privacy) or ask us about the DPA that has been concluded.
2) Contact by E-Mail
a) Scope and purpose of data processing
On our Website, we offer you the opportunity to contact us by E-Mail. When you contact us, the personal data you provide such as title, name, content of the e-mail and your e-mail address, will be processed.
This data is processed by us for the purpose of enabling us to process your enquiry properly. If you contact us by e-mail, your personal data will not be passed on to third parties.
b) Legal basis
The data processing described above for the purpose of establishing contact is carried out in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interests in being able to process your enquiry. If your enquiry serves to prepare the conclusion of a contract, Art. 6 para. 1 lit. b GDPR is an additional legal basis.
c) Storage period and data erasure
As soon as your enquiry has been dealt with and the matter in question has been conclusively clarified, your personal data processed via the contact form will be deleted. Further storage may take place in individual cases if this is required by law or is necessary for the fulfilment of the contract.
3) Contact form
a) Scope and purpose of data processing
On our website, we offer you the opportunity to get in touch with us via a contact form, e.g. regarding a consultation.
If you contact us via this form, the following personal data will be processed:
- Name
- E-mail address
- Telephone number
- Nationality
- Reason for the enquiry
This data is processed by us for the purpose of enabling us to process your enquiry properly. When using the contact form, your personal data will not be passed on to third parties.
b) Legal basis
The data processing described above for the purpose of establishing contact is carried out in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interests in being able to process your enquiry. If your enquiry serves to prepare the conclusion of a contract, Art. 6 para. 1 lit. b GDPR is an additional legal basis.
c) Storage period and data erasure
As soon as your enquiry has been dealt with and the matter in question has been finally clarified, your personal data processed via the contact form will be deleted. Further storage may take place in individual cases if this is required by law or is necessary for the fulfilment of the contract.
d) Third Parties
For the provision of the contact form we use an external service provider, Rocketgenius, Inc., 1620 Centerville Turnpike, Suite 102, Virginia Beach VA 23464-6500, Untied States (in the following called “Gravity Forms”). Your personal data will be passed on to Gravitiy Forms so that Gravity Forms can provide the services. For more information, please refer to Gravity Form’s privacy policy (https://www.gravityforms.com/privacy/) or ask us about the DPA that has been concluded.
4) Newsletter
a) Scope and purpose of data processing
On our Website, we offer you the opportunity to subscribe to our newsletter. If you choose to subscribe, the personal data you provide (Name, Surname and E-Mail Address), will be processed. The newsletter will only be sent with your express consent. After entering your personal data, you will receive a confirmation E-Mail to the E-Mail address provided. The newsletter will only be sent after explicit confirmation by clicking on a link in the confirmation E-mail (so-called double opt-in).
This data is processed by us for the purpose to send you regular updates and news of our Branche.
b) Legal basis
The data processing described above for the purpose of sending our newsletter is carried out in accordance with Art. 6 para. 1 lit. a GDPR. If you are already an existing customer, we rely on the legal basis of legitimate interest according to Art. 6 para. 1 lit. f GDPR, specifically our interest in providing you with updates on our products.
c) Storage period and data erasure
Your personal data will be stored until you unsubscribe from the newsletter.
5) Application form
a) Type and scope of data processing
On our website, we offer you the opportunity to apply for vacancies using an application form. If you contact us via this form (or per E-Mail), the following personal data will be processed:
- Name
- E-mail address
- Telephone number
- Start date
- Desired salary
- LinkedIn (Optional)
- CV
- Certificates
- Cover Letter
This data is processed by us for the purpose of enabling us to process your application properly.
When using the form, your personal data will not be passed on to third parties.
b) Legal basis
The data processing described above for the purpose of processing applications is carried out in accordance with Art. 6 para. 1 lit. b GDPR in conjunction with § 26 (1) 1 BDSG on the basis of contract initiation.
c) Storage duration
If the application leads to an employment relationship, the processed data will be stored until the end of the employment relationship. If no employment relationship is entered into, we will store your data for 6 months on the basis of the General Equal Treatment Act and then delete it.
d) Third Parties
For the provision of the application form we use an external service provider, Personio GmbH (in the following called “Personio”). Your personal data will be passed on to Personio so that Personio can provide the services. For more information, please refer to Personio’s privacy policy (https://www.personio.de/datenschutzerklaerung/) and/sor ask us about the DPA that has been concluded.
e) Talent pool
If we do not make you a job offer, it may be possible to include you in our applicant pool. If you are accepted, all documents and information from your application will be transferred to the applicant pool so that we can contact you in the event of suitable vacancies. Inclusion in the applicant pool takes place exclusively on the basis of your express consent (Art. 6 para. 1 lit. a GDPR). The provision of consent is voluntary and is not related to the current application process. The data subject may revoke his/her consent at any time. In this case, the data will be irrevocably deleted from the applicant pool, unless there are legal reasons for retention.
§ 5 Cookies
a) Scope and purpose of data processing
We use cookies on our website.
Cookies are small text files that are stored on your computer when you visit our website and enable your browser to be reassigned. Cookies store information such as your language settings, the duration of your visit to our website or the entries you make there.
There are different types of cookies. Session cookies are temporary cookies that are stored in the user's Internet browser until the browser window is closed and the session cookies are deleted. Permanent or persistent cookies are used for repeated visits and are stored in the user's browser for a predefined period of time. First-party cookies are set by the website that the user visits. Only this website is authorised to read information from the cookies. Third-party cookies are set by organisations that do not operate the website that the user is visiting.
A distinction can also be made between technically necessary, functional and advertising cookies. The former are necessary to ensure basic website functions (such as saving the language setting). Functional cookies collect information about the user's behaviour and whether they receive any error messages. Advertising cookies, on the other hand, are used to offer the user customised advertising.
b) Legal basis
Due to the purposes of use described, the legal basis for the processing of personal data using technically necessary cookies is Art. 6 para. 1 lit. f GDPR, as we have an interest in the user-friendly presentation of our website. If you have given us your consent to the use of functional and advertising cookies on the basis of a notice ("cookie banner") provided by us on the website, the legality of the use is also governed by Art. 6 para. 1 sentence 1 lit. a GDPR in connection with § 25 para. 1 TDDDG.
c) Third Parties
For the provision of the cookie banner and obtain your consent we use an external service provider, Usercentrics A/S, Havnegade 39, 1058 Kopenhagen, Denmark (in the following called “Cookiebot”).
Details on the data processing of Cookiebot can be found at https://www.cookiebot.com/de/privacy-policy/. Cookiebot Consent Technology is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 para. 1 sentence 1 lit. c GDPR.
d) Storage period and data erasure
The collected data will be stored until you request us to delete it or until you delete the Cookiebot cookie yourself or until the purpose for storing the data no longer applies. Mandatory legal retention periods remain unaffected.
e) Configuration of the browser settings
Most browsers are set to accept cookies by default. However, you can configure your browser so that it only accepts certain cookies or no cookies at all. However, we would like to point out that you may no longer be able to use all the functions of our website if cookies are deactivated by your browser settings on our website. You can also use your browser settings to delete cookies already stored in your browser or to display the storage period. It is also possible to set your browser to notify you before cookies are stored. As the various browsers may differ in their respective functions, we ask you to use the respective help menu of your browser for the configuration options
§ 6 Analytics
We use tracking and analysis tools to ensure the continuous optimisation and needs-based design of our website. With the help of tracking measures, we are also able to statistically record the use of our website by visitors and to further develop our online offering for you with the help of the knowledge gained. Based on these interests, the use of the tracking and analysis tools described below is justified in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR. If you have given us your consent to the use of cookies on the basis of a notice ("cookie banner") provided by us on the website, the legality of the use is also based on Art. 6 para. 1 sentence 1 lit. a GDPR. The following description of the tracking and analysis tools also shows the respective processing purposes and the processed data.
a) Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyse how users use the site.
The information generated by these cookies, for example about the time, place and frequency of your use of this website, is usually transferred to a Google server in the USA and stored there. When using Google Analytics, it cannot be ruled out that the cookies set by Google Analytics may also collect other personal data in addition to the IP address. Please note that Google may transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf.
Google will use the information generated by cookies on behalf of the operator of this website to analyse your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website activity and internet usage. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
You can generally prevent the storage of cookies by selecting the appropriate settings in your browser software. However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent.
b) Google Ads
This website uses the online advertising program "Google Ads" and the conversion tracking within the framework of Google Ads, operated by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 ESW5, Ireland ("Google"). We use the program of Google Ads to draw attention to our attractive offers with the help of advertising materials (so-called Google Adwords) on external websites. We can determine, in relation to the advertising campaigns data, how successful the individual advertising measures are. We are interested in showing you advertisements that are of interest to you. We want to make our website more interesting for you and to achieve a fair calculation of advertising costs.
The conversion tracking cookie is set on a user’s browser, if he clicks on an ad delivered by Google. Cookies are small text files that are stored on your computer system. These cookies usually lose their validity after 30 days and are not used for personal identification. If the user visits a certain page of this website and if the cookie has not yet expired, Google and we will be able to recognize that the user clicked on the ad and was forwarded to this page. Each Google Ads customer gets a different cookie. Thus, cookies cannot be traced via the website of Google Ads customers. The information collected by the conversion cookies is used to provide aggregate conversion statistics to Google Ads customers who have opted-in for conversion tracking. Customers are informed about the total number of users who clicked on the ad and were forwarded to a conversion tracking tag page. However, they do not get any information enabling them to identify users personally.
Details on the processing operations initiated and on Google's handling of data collected from websites can be found here: https://policies.google.com/technologies/partner-sites?hl=en
c) Google Tag Manager
We are constantly trying to improve the customer experience on our website by providing visitors with more personalized and targeted campaigns and offerings. To do so, we use Google Tag Manager (GTM).
GTM is a little snippet of code that helps us track user behavior across our sites and then pushes the data to our Google Analytics account. Then, all the data is perfectly organized and ready for us to assess and review for potential site improvements and remarketing campaigns.
Learn more about Google Tag Manager.
d) Google Fonts
We use web fonts provided by Google. for uniform representation of fonts on the website. Data processing for the European Economic Area and for Switzerland is carried out by:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
When you call up a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly. To do this, the browser you use must connect to Google's servers. As a result, Google learns that our website has been accessed via your IP address.
For more information about Google Web Fonts, see https://developers.google.com/fonts/faq and Google's privacy policy: https://www.google.com/policies/privacy/.
e) Albacross
We inform you regarding the processing of personal data on the behalf of Albacross Nordic AB (“Albacross”) Kungsgatan 26, 111 35 Stockholm, Sweden, www.albacross.com - [email protected]
Information collected from cookies set in your device that qualify as personal data will be processed by Albacross, a company offering lead identification and ad targeting services with offices in Stockholm and Krakow. Please see above for full contact details.
The purpose for the processing of the personal data is that it enables Albacross to improve a service rendered to us and our website (e.g “Lead Generation” service), by adding data to their database about companies. The Albacross database will in addition to “Lead Generation” be used for targeted advertising purposes towards companies and for this purpose data will be transferred to third party data service providers. For the purpose of clarity, targeted advertising regards companies, not towards individuals.
The data that is collected and used by Albacross to achieve this purpose is information about the IP-address from which you visited our website, and technical information that enables Albacross to tell apart different visitors from the same IP-address. Albacross stores the domain from form input in order to correlate the IP-address with your employer.
For the full information about our processing of personal data, please see Albacross’ Privacy Policy. You can opt out collecting your data at any time with an email to [email protected].
f) Segment
This website uses Segment, a customer data platform provided by Twilio Inc., located at 375 Beale Street, Suite 300, San Francisco, CA 94105, USA ("Segment"). Segment uses "cookies" and similar technologies to track and analyze user interactions with our website. The data collected may include your IP address, device type, browser type, and information about your activities on our website.
The information is transmitted to and stored on servers in the United States. Segment helps us integrate and analyze data from different sources to improve your experience on our website and tailor content to your preferences.
The legal basis for processing your data with Segment is your consent, according to Art. 6 para. 1 sentence 1 lit. a GDPR. You can withdraw your consent at any time by adjusting your cookie preferences or contacting us directly.
The information collected by Segment is transmitted to and stored on servers in the United States. Segment (Twilio) is certified under the EU-U.S. Data Privacy Framework, ensuring that your data is handled in compliance with European data protection standards.
For more details on Segment's data practices, please refer to their privacy policy at https://www.twilio.com/en-us/legal/privacy.
f) Amplitude
This website uses Amplitude, a product analytics platform provided by Amplitude, Inc., located at 201 3rd Street, Suite 200, San Francisco, CA 94103, USA ("Amplitude"). Amplitude uses "cookies" and similar technologies to collect and analyze data on user interactions with our website. The data collected may include your IP address, device type, browser type, and details about your behavior on our website, such as the pages you visit and actions you take.
The information collected by Amplitude is transmitted to and stored on servers in the United States. We use this data to better understand how users interact with our website, enabling us to enhance and optimize our services and user experience.
The legal basis for processing your data with Amplitude is your consent, in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR. You may withdraw your consent at any time by adjusting your cookie settings or contacting us.
The information collected by Amplitude is transmitted to and stored on servers in the United States. Amplitude is certified under the EU-U.S. Data Privacy Framework, ensuring that your data is handled in compliance with European data protection standards.
For more information on Amplitude's data processing practices, please refer to their privacy policy at https://amplitude.com/privacy.
§ 7 Plugins
a) Scope and purpose of data processing
Our presence on social networks and platforms serves to improve active communication with our customers and interested parties. Therefore, a social plugin of the social network "LinkedIn" (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland) is integrated on our Website. Based on the data transmitted to the respective service via the social plugin, the service may be able to assign you to your account with it.
The social plugin is integrated in such a way that no data is transferred directly to LinkedIn. Data is only transferred when you click on the button. By doing so, you leave our Website and establish a direct connection between your browser and the Facebook servers. Information on the data that is subsequently collected by LinkedIn can be found here:
https://de.linkedin.com/legal/privacy-policy
b) Legal basis
The legal basis for this processing of your personal data is your consent (by clicking on the button) according to Art. 6 para. 1 lit. a GDPR.
§ 8 Provision of deeploi Platform (“Online Webportal”)
a) General
When users log in to the deeploi Platform https://app.deeploi.io/auth/login (Online Webportal), we collect certain data to ensure the proper functioning of the platform, manage user sessions, and provide a secure and personalized experience. The data collected includes identification, contact, technical, and usage data, which are essential for user authentication, platform performance monitoring, and enhancing user experience.
Data categories processes:
- Identification data (name, username, organization name)
- Contact information (email address)
- Technical data (device metadata)
- Usage data (log files, access times)
Legal basis for processing is the fulfilment of the contract Art. 6 para. 1 lit. b GDPR.
b) Google Workspace
When a new user is added to our system, our platform can create a Google Workspace account for that user via an API command to Google. This integration streamlines the process for our customers and ensures efficient account setup and management.
We request access to the following types of user data: your email, profile and Google Workspace admin data. This data includes viewing and managing G-Suite licenses for your domain, managing the provisioning of users, managing delegated admin roles and managing data access permissions for users on your domain.
We request this data to provide our services effectively through our platform. Specifically, we need to view and manage Google Workspace for you, which helps in administering and supporting your Google Workspace account. If we plan to access or use a type of user data that was not originally disclosed in our privacy policy when you initially authorized access, we will update our privacy policy and prompt you to consent to any changes before we access that data. This ensures that our practices remain transparent and that you are informed about how your data will be used.
We do not sell, trade, or otherwise share, disclose, or transfer Google User Data to external parties (they can appear in developers’ logs, like Axiom or Sentry). Any information collected from users is strictly used for internal purposes and to enhance the user experience. We maintain appropriate security measures to safeguard user data and prevent unauthorized access.
c) Third Parties
To provide the deeploi Platform services, we rely on the following service providers:
d) Storage period and data erasure
The collected data will be stored until you request us to delete it or 6 months after you no longer use the platform.
§ 9 Provision of deeploi application ("Companion App")
Download and installation of the Companion App
a) General
When users download and install the Companion App from the platform, their technical data and account information are collected to ensure the app functions correctly on their device and to verify compatibility. This includes storing installation IDs and system details to facilitate troubleshooting and provide necessary updates. Data categories processed:
- User Data (account information)
- Technical data (IP Address, device type, operating system, installation ID)
Legal basis for processing is the fulfilment of the contract Art. 6 para. 1 lit. b GDPR.
b) Third Parties
c) Storage period and data erasure
The collected data will be stored until you request us to delete it or 6 months after app uninstallation.
Using the Companion App and Submitting Tickets
a) General
While using the Companion App, users can submit support tickets to request assistance. This process involves collecting identification and contact information, as well as detailed descriptions of issues, to provide effective customer support. Usage data such as access logs and interaction times are also recorded to help improve app performance and user experience. Data categories processed:
- Identification data (name, username)
- Contact information (email address, phone number)
- Ticket data (content of inquiries, attachments)
- Usage data (log files, access times)
- Technical data (e.g. device used, operating system, logged on user)
Legal basis for processing is the fulfilment of the contract Art. 6 para. 1 lit. b GDPR.
b) Third Parties
c) Storage period and data erasure
The collected data will be stored until you request us to delete it or 6 months after app uninstallation.
§ 10 Recipients of personal data
Within our company, only those persons have access to your personal data who need it for the purposes stated in each case. Your personal data will only be passed on to external recipients if we are legally authorized to do so or if we have your consent. Below you will find an overview of the relevant recipients:
- Processors: Group companies or external service providers, for example in the areas of technical infrastructure and processing, maintenance and payment processing, which are carefully selected and checked. The processors may only use the data in accordance with our instructions.
- Public authorities: Authorities and state institutions, such as tax authorities, public prosecutors or courts, to which we (have to) transfer personal data, e.g. to fulfil legal obligations or to protect legitimate interests
§ 11 International data transfer
We process your data mainly within the European Union (EU) and the European Economic Area (EEA). However, some of our service providers may be based outside the EEA in so-called "third countries". The General Data Protection Regulation places high demands on the transfer of personal data to third countries. All our data recipients must fulfil these requirements. Before we transfer your data to a service provider in a third country, each service provider is first checked for its level of data protection. A service provider is only selected if it can demonstrate an adequate level of data protection outside the EEA. Regardless of whether our service providers are based within the EEA or in third countries, each service provider must conclude an order processing agreement with us. Service providers outside the EEA must fulfil additional requirements. In accordance with Art. 44 ff. GDPR, personal data may be transferred to service providers who fulfil at least one of the following requirements:
- The European Commission has decided that the third country guarantees an adequate level of protection (e.g. Israel and Canada).
- Standard contractual clauses have been included in our contract with the data recipient (including any additional measures if necessary).
- Further appropriate safeguards pursuant to Art. 46 GDPR provided (e.g. Binding Corporate Rules).
- In special exceptional cases in accordance with Art. 49 GDPR
§ 12 Data security and security measures
We undertake to treat your personal data confidentially. In order to prevent manipulation, loss or misuse of your data stored by us, we take extensive technical and organizational security precautions, which are regularly reviewed and adapted to technological progress.
However, we would like to point out that due to the structure of the Internet, it is possible that the rules of data protection and the above-mentioned security measures may not be observed by other persons or institutions outside our area of responsibility. In particular, unencrypted data - e.g. when sent by e-mail - may be read by third parties. We have no technical influence on this. It is your responsibility as a user to protect the data you provide against misuse by means of encryption or in any other way.
§ 13 Storage of the data
The personal data of the data subject will be deleted or blocked as soon as the purpose of storage no longer applies. Data may also be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject. The data will also be blocked or erased if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.
§ 14 Data subject rights
You have the following legal rights vis-à-vis us with regard to your personal data:
Right of access
You have the right to request confirmation as to whether we are processing personal data concerning you. If this is the case, you have the right to information about this personal data and to further information, e.g. the processing purposes, the recipients and the planned duration of storage or the criteria for determining the duration.
Right to rectification
You have the right to request the rectification of inaccurate data without undue delay. Taking into account the purposes of the processing, you have the right to request the completion of incomplete data.
Right to erasure ("right to be forgotten")
You have the right to erasure if the processing is not necessary. This is the case, for example, if your data is no longer required for the original purposes, if you have revoked your declaration of consent under data protection law or if the data has been processed unlawfully.
Right to restriction of processing
You have the right to restrict processing, e.g. if you believe that the personal data is incorrect.
Right to data portability
You have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format.
Right to object
You have the right to object at any time, on grounds relating to your particular situation, to the processing of certain personal data concerning you. In the case of direct advertising, you as the data subject have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct advertising.
Right to withdraw your consent under data protection law
You can revoke your consent to the processing of your personal data at any time with effect for the future. However, this does not affect the legality of the processing carried out up to the point of revocation.
Without prejudice to these rights, you have the right to lodge a complaint with a supervisory authority at any time if you believe that the processing of your personal data violates data protection regulations.