Data Protection Policy
Please read this policy to find out about the purpose, nature and scope of the personal data collected, processed and used by this website.
The operator of this website is:
For more information about our company and its legal representatives, please see our legal notice.
We have appointed a Data Protection Officer, who can be contacted as follows:
B³ | Informationstechnologie
2. What data is processed?
2.1 Access data
When you visit our website, personal data is processed so we can display the content of the website on your end device,
Your end device’s IP address must be processed to enable your browser to display the website. Other information about your end device’s browser is also collected.
We are also legally bound to ensure the confidentiality and integrity of any personal data processed by our IT systems.
For that reason, we have a legitimate interest to store the following data:
- Your IP address (for a maximum of 7 days)
- Your operating system
- Your browser version
- Name of file accessed
- Date and time of access
- Amount of data transferred
- Referring URL
Your IP address will be deleted from our systems within 7 days of using this website. We will then be unable to link any remaining data to an individual.
However, we will continue to use the data to identify and rectify any errors on our website.
2.2 Lawful basis for data processing
So we can display our website and provide the associated services to you, we process personal data on the following lawful bases:
- The data subject has given consent to the processing (Article 6(1)(a) of the GDPR)
- For the performance of a contract (Article 6(1)(b) of the GDPR)
- For the purposes of a legitimate interest (Article 6(1)(f) of the GDPR)
- For compliance with a legal obligation (Article 6(1)(c) of the GDPR).
We refer to the proper terminology in relation to the respective processing, so that you can determine the basis on which we process personal data.
When we process personal data on the basis of your consent, you have the right to revoke your consent to future processing at any time.
When we process personal data for the purposes of a legitimate interest, you as the data subject have the right to object, pursuant to the provisions of Article 21 of the GDPR.
2.3 Purpose of personal data processing
We process the above mentioned data in order to operate our website, comply with our contractual obligations towards our customers and protect our legitimate interests.
If you make an enquiry with us and you are not yet a customer, we will process your data for sales and marketing purposes. You may revoke your consent to the use of your personal data for marketing purposes at any time.
2.4 Contact form
We provide a contact form on our website, which you can use to request information about our products or services, or to contact us in general. If we need certain details to respond to your enquiry, this will be indicated as a compulsory field. All other fields are optional
We need this data to process your enquiry and contact you with the right information. Data will only be processed in this manner in order to respond to a specific enquiry, and to negotiate or conclude a contract. For all other enquiries, data is processed for the purposes of a legitimate interest.
Information received through the contact form on our website will be processed electronically, so we can respond to your enquiry. If required, we will forward the data you have provided to other persons, departments or third parties.
Whenever we send such data online, this will be done through an encrypted connection.
2.5 Optional information
If you voluntarily provide any data to us, such as through the contact form, and this data is not required for us to comply with our contractual obligations, we will process under the legitimate assumption that the processing and use of such data is in your interest.
3. Sharing your data
As a general rule, we will not share any data you provide to us with third parties. In particular, your data will not be shared with third parties for marketing purposes.
However, we may rely on other service providers in order to operate this website or to offer our products and services. We may share your personal data with these service providers. We choose our service providers carefully, with special regard to data protection and security, and we take all measures required by data protection law to ensure data is processed properly.
We use session cookies, which are automatically deleted by your browser as soon as you leave our website.
We use persistent cookies for analytical purposes, which are not automatically deleted by your browser after you leave our website.
5. Website analysis and tracking services
We use the web analysis tool Matomo on our website. This tool is installed on our own servers.
If you send a ‘Do Not Track Header (DNT)’ through your browser, this will be acknowledged by most browsers and tracking will be disabled.
You may also disable any form of analysis on this website in future with a block cookie or opt-out cookie. You can activate this cookie using the checkbox below. As long as you do not delete this cookie in your browser, your website usage will not be analysed. If you have activated the opt-out cookie, this will be subsequently indicated in a message. You can enable web analysis for this website again at a later point if desired.
We have a lawful basis for the use of tracking under Article 6(1)(f) of the GDPR. We have a legitimate interest for website analysis, which is used for the statistical collection of site usage data, so we can continue to improve our website and services.
5.2 Google Analytics
Google uses this information on our behalf to evaluate the use of our website by users, to compile reports about activities on our website and to provide further services to us related to the use of our website and internet usage. In this case, pseudonymous user profiles may be created from the data processed.
We only use Google Analytics with IP anonymisation activated. This means that user IP addresses will be shortened by Google within Member States of the European Union or in other states which are party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there.
The IP address sent by the user’s browser will not be merged with other data from Google. Users can disable such cookies by modifying their browser settings accordingly. Users may also prevent Google from collecting the data generated by the cookies and related to their use of the website, and from processing such data by downloading and installing the browser plugin available at:
For more information about how Google uses data and about what options are available, please visit the following Google webpages:
How Google uses information from sites or apps that use its services:
Take control of your Google ads experience:
5.3 Google marketing and remarketing services
We use the marketing and remarketing services (hereinafter “Google marketing services”) of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).
Google marketing services allows us to display adverts for and on our website, so users only see adverts which interest them. When users see adverts for products that they have viewed on other websites, this is called remarketing. For these purposes, a code is run directly by Google at the request of our website and others that use Google marketing services, and marketing/remarketing tags (invisible graphics or code, also known as ‘web beacons’) are incorporated into the website. An individual cookie, i.e. a small file, is then saved on the user’s end device (comparable technologies may be used instead of cookies). These cookies can be installed by different domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com and googleadservices.com. This file collects information on which webpages the user has visited, what content interests them and what they have clicked, as well as technical information about the browser and operating system, referring websites, visit time and other information on the use of the website. The user IP address is also recorded. As part of the Google Analytics services, the IP address is shortened within Member States of the European Union or other states which are party to the Agreement on the European Economic Area; only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there. The IP address will not be merged with user data from other Google services. This data may also be related to such information from other sources. If the user then visits other websites, the adverts displayed can be tailored to their interests.
User data is processed by Google marketing services under a pseudonym. This means that Google does not store or process a user’s name or email address, but processes relevant cookie-related data under pseudonymous user profiles. From Google’s perspective, adverts are not administered and displayed in relation to a specifically-identified person, but to the cookie owner, whoever the cookie owner is. This does not apply if a user has explicitly allowed Google to process data without pseudonymisation. The information collected about users by DoubleClick is transmitted to Google and stored on Google’s servers in the USA.
Among the Google marketing services we use is the online advertising service Google AdWords. With Google AdWords, each AdWords customer receives a different conversion cookie. Therefore, cookies cannot be tracked through the websites of AdWords customers. The information collected through the cookie is used to generate conversion statistics for AdWords customers who have opted for conversion tracking. AdWords customers can find out how many users have clicked on their advert and were redirected to a page with a conversion tracking tag. However, they will not receive any information that can personally identify the user.
Another Google marketing service we use is Google Tag Manager, which allows other Google analytics and marketing services to be incorporated into our website (such as AdWords, DoubleClick and Google Analytics).
For more information about how Google uses data for marketing purposes, please visit:
To opt out of data collection by Google marketing services, find out what options are available at:
5.4 Facebook remarketing
Our website uses Facebook Pixel, operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, or if you are based in the EU operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”).
Facebook Pixel helps Facebook to designate our website visitors as a target group to display adverts, known as Facebook Ads. We use Facebook Pixel to display our Facebook Ads only to those Facebook users who have also shown an interest in our website. In other words, we use Facebook Pixel to make sure that our Facebook Ads are in line with the potential interest of users and do not irritate anybody. Facebook Pixel also helps us to understand the effectiveness of Facebook Ads for statistical and market research purposes, so we can see whether users were redirected to our website after clicking on a Facebook Ad.
Facebook Pixel is incorporated into our website directly through Facebook at our request and may store a cookie, i.e. a small file, on your device. If you then log in to Facebook or visit Facebook when logged in, your visit to our website is noted in your profile. The data collected about you is anonymous and does give us any indication about the identity of users. However, the data is stored and processed by Facebook, so that it can be related to the user profile in question. Data is processed by Facebook in line with its Data Usage Policy. For more information about how the Remarketing Pixel works and how Facebook Ads are displayed, please read Facebook’s Data Usage Policy:
You may object your data being collected by Facebook Pixel and used to display Facebook Ads by following the instructions on settings for usage-based advertising at:
You can also opt out at:
The settings take effect regardless of the platform, i.e. they are adopted for all devices, such as desktop computers and mobile devices.
5.5 LinkedIn conversion tracking
Our website uses analysis and conversion tracking technology by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA.
This technology by LinkedIn is used to display relevant adverts that are tailored to your interests.
We have a lawful basis for the storage of conversion cookies under Article 6(1)(f) of the GDPR. Our legitimate interest lies in the analysis of user behaviour in order to optimise our website and advertising.
Moreover, we receive aggregated anonymous advertising reports and information on how you interact with our website from LinkedIn. For more information on data protection with LinkedIn, click here:
You can opt out from user behaviour analysis and recommendations based on your interests on LinkedIn by going to the following site and clicking ‘Opt Out on LinkedIn’ (if you are a LinkedIn member) or ‘Opt Out’ (if you are not a member):
6. Social plugins
Our website uses plugins for the following social networks: Facebook, Twitter, XING and LinkedIn.
We have a lawful basis for the use of social plugins under Article 6(1)(f) of the GDPR. Our legitimate interest and purpose for using the social plugins is to make our website reach a wider audience. The social networks in question are responsible for ensuring their user data is processed in compliance with data protection legislation.
6.1 Facebook social plugins
Our website uses Facebook social plugins, operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”).
The plugins can be identified by the Facebook brand identity (a white ‘f’ on a blue tile, the word ‘Like’ or the ‘thumbs up’ symbol) or by the description ‘Facebook Social Plugin’. The list and appearance of Facebook social plugins can be viewed here:
When a user selects a feature on this website that incorporates such a plugin, their device establishes a direct connection with Facebook servers. The content of the plugin is transmitted from Facebook directly to the user’s device and incorporated into the website. In this case, user profiles may be created from the data processed. We therefore have no influence on the amount of data that Facebook collects through this plugin.
These plugins inform Facebook that a user has accessed the corresponding page of our website. If a user is logged in to Facebook, Facebook can then match the visit to the user’s Facebook account. If a user interacts with the plugins, by clicking ‘Like’ or leaving a comment for example, the information is transmitted from the user’s device directly to Facebook and stored there. If a user is not a member of Facebook, Facebook may still identify and store their IP address. Facebook maintains that only anonymised IP addresses are stored in Germany.
If you are a Facebook member and do not want Facebook to collect data about you through our website and link it to your member data stored on Facebook, you need to log out of Facebook and delete your cookies before using our website. For more information about other settings and opting out from the use of data for promotional purposes, please see the Facebook profile settings:
You can also opt out at:
The settings take effect regardless of the platform, i.e. they are adopted for all devices, such as desktop computers and mobile devices.
You can also share our content on Twitter, operated by Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA.
You can also share our content on XING, operated by XING AG, Dammtorstrasse 30, 20354 Hamburg, Germany.
Your personal data is not stored when visiting this website. XING explicitly does not store your website and your user behaviour is not evaluated. For the latest information on data protection when using the ‘Share’ button, as well as other relevant information, please click here:
You can also share our content on LinkedIn, operated by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA.
By clicking the LinkedIn button, the websites you visit are linked to your LinkedIn account and made known to other users. In doing so, data is sent to LinkedIn. For details on how data is collected and what legal options and settings are available, please see:
7. Data processing outside the European Union
If personal data is processed outside the European Union, this will be indicated.
8. Your rights as the data subject
You have the right to be informed about how your personal data is processed. Please contact us at any time to request this information.
If your request is not submitted in writing, we may ask you to prove your identity; we thank you for your understanding.
You have the right to have your data corrected or erased. You may also ask us to restrict processing, provided this is permitted by law.
Finally, you have the right to object to processing, subject to legal provisions. The same applies to the right to data portability.
We will delete your personal data when requested, unless there is a legal obligation that requires us to store it. This could be when the data is still needed in order to comply with contractual obligations, and to verify, accept or reject warranty or guarantee claims. If such an obligation exists, the data may be deleted only after the applicable retention period has lapsed.
Right to complain to a supervisory authority
You have the right to complain to a data protection supervisory authority about how we process your personal data.
9. Amendments to this Data Protection Policy
We may amend this Data Protection Policy when changes are made to this website or in other cases that may require it. You can always find the most recent version on our website.
Version: 22 June 2018