Data Privacy Statement

Personal Data

Scope of personal data processing

Generally, Akarion processes personal data to the extent necessary for the respective processing purpose and/or covered by the data subjects consent only. This also applies to the duration of the processing.

Purpose of personal data processing

Akarion processes personal data for the purpose of performing contracts to which the data subject is party or in order to take steps prior to entering into a contract at the request of the data subject and to comply with legal obligation to which Akarion ist subject. In addition, Akarion may process personal data for the purpose of their own legitimate interests - e.g. to enforce or defend legal claims, to establish contacts or for direct advertising - and for the legitimate interests of third parties.

Duration of personal data processing

Akarion processes personal data until the respective purpose of processing is no longer applicable, the data subjects consent to the processing is revoked or the data subjects legitimately objects the processing.Thereafter personal data will be made unavailable to users or completely deleted. Akarion points out that personal data may be stored even after the purpose of processing has ceased to apply, the consent has been revoked or the processing has been objected to, if the legal provisions to which Akarion is subject require so .

Legitimate basis for personal data processing

The legitimate basis for processing data based on the data subjects’ consent is Art. 6 para. 1 lit. a) GDPR.

The legitimate basis for processing data in connection with the implementation/execution/ performance of a contract between Akarion and the data subject is Art. 6 para. 1 lit. b) GDPR.

If Akarion processes personal data to fulfil its legal obligations, the legal basis for the processing is Art. 6 para. 1 lit. c) GDPR.

If the processing of personal data is carried out for the purpose of Akarions legitimate interests or for the purpose of the legitimate interests of third parties, Art. 6 para. 1 lit. f) GDPR is the legal basis for the processing.

Rights of the data subjects concerned

Right of access, restriction of processing, rectification and erasure

Within the framework of the statutory provisions, data subjects are entitled - at any time and free of charge - to request information about their personal data processed, its origin, potential recipients and the purpose of the processing. In addition, data subjects are entitled to demand the erasure, a correction or a restriction of the processing of their personal data.

Revocation of the declaration of consent for processing of data

If the processing of personal data is based on a data subject’s consent for the processing, this permission can be revoked by an informal notification addressed to Akarion at any time. The legitimacy of the processing carried out until the revocation, as well as statutory retention periods shall remain unaffected by a possible revocation.

Right to object

If the processing of data is not based on the consent of the data subject, the data subject is entitled - at any time - to object to the processing by Akarion. Akarion points out that the statutory retention periods remain unaffected by a possible objection.

Right for data portability

The data subject has the right to receive his or her personal data, which he or she has provided to Akarion, in a structured, commonly used and machine-readable format at any time. Moreover the data subject may request the transmission of those data to another controller without hindrance.

Enforcement of the data subjects’ rights

To exercise one of the rights listed, the data subject may contact Akarion via E-Mail to: datenschutz@akarion.com or contact Akarion by post at the address mentioned above.

Right of appeal to the competent supervisory authority

Whenever a data subject is concerned about a misuse of its personal data by Akarion, it is entitled to file a complaint to the competent supervisory authority - at any time.

Data Security

Akarion maintains technical and organizational measures to ensure data security, in particular to protect personal data from the dangers of data transmission and from access by unauthorized third parties.

When using this website, encrypted transmission takes place via SSL (Secure Socket Layer) or TLS (Transport Layer Security), if the website is accessed via https://akarion.com.

Disclosure of personal data

The processing of personal data at Akarion is partly carried out by processors. Akarion only uses processors who offer sufficient guarantees that suitable technical and organizational measures are implemented in a way that ensures the processing is carried out in accordance with the requirements of data protection regulations and that the rights of data subjects are protected.

The processing of personal data by processors of Akarion shall in any case be based on a corresponding contract between Akarion and the processor. Unless explicitly agreed otherwise or unless justified by another legitimate basis, third parties will not have access to personal data processed by Akarion.

Automated decision-making, including profiling

Akarion renounces processes of automated decision-making, including profiling.

Processing of data in the course of job applications

In the course of a job application, Akarion processes the application documents and contact data submitted by the applicant personally or by an agency with the applicant's consent for the purpose of selecting suitable candidates for an employment relationship. In the event of rejection, application documents and contact data will be kept for a maximum of 7 months unless the person concerned expressly agrees to a longer storage period.

Processing of data in the course of general use of the website

To enable the use of this website, the following information is transmitted to Akarion at visit:

• IP-address

• Date and time of the request

• Time zone difference to Greenwich Mean Time (GMT)

• Contents of the request (concrete page)

• Access status/HTTP-status-code

• Volume of data transferred in each case

• Website from which the request originates

• Browser and browser settings, operating system and its interface

• Language and version of the browser software

The IP-address will be stored for the duration of the use of the website and will subsequently be deleted or anonymised by shortening it, except where it is necessary to store it for a longer period in order to ensure the functionality or security of the website (e.g. in the event of attacks to the website or other online-attacks).

The IP address is captured and stored to protect Akarion, i.e. in purpose of its legitimate interest. In the event of attacks to the website offered, the collection and storage of the IP-address is necessary for the assertion, exercise or defence of any legal claims by Akarion.

The remaining data mentioned are stored for a limited period of time, whereby a personal reference is no longer producible from these data after the associated IP-address is deleted or anonymised.

Akarion processes this data for the operation of this website, in particular to detect and eliminate errors, to determine the utilization of the website and to make adjustments or improvements.

Processing of personal data when using the the contact form / register for the newsletter or contacting Akarion via e-mail

Personal data (first name, last name, e-mail address, etc.) provided to Akarion in course of using the contact form / register for the newsletter / contacting Akarion via e-mail is voluntarily submitted.

Akarion processes such data for the purpose of providing the associated services (sending newsletters / processing enquiries). The duration of the processing is limited to the duration of the existence of the purpose, i.e. ends with the discontinuation of the purpose. However, this shall only apply if no longer processing period is subsequently required for other purposes - e.g. the performance of a contract to which the data subject is party or the assertion or defence of legal claims by Akarion. Moreover, the storage of personal data by Akarion may be necessary even after the original purpose of processing no longer applies, if Akarion is legally obliged to do so - e.g. to comply with legal storage periods.

As mentioned in the section ‘rights of the data subjects’ the consent given with the transmission of the personal data concerned may be revoked at any time without cause (datenschutz@akarion.com).

Processing of data in course of registration for and participation in webinars

The submission of personal data (first name, last name, e-mail address, etc.) provided to Akarion when registering for or participating in an Akarion Webinar is done voluntarily. Akarion will process this data in order to provide you with the webinar dial-in data, to remind you of the upcoming webinar date, to plan the utilization of the webinars (number of participants) and the structure of the webinars, and, if necessary, to be able to address you personally during the webinar. After the webinar, Akarion will contact you again for further questions.

Use of social media plugins

Akarion renounces any integration of social media plugins or other integrations of social media providers on this website.

Use of cookies

Akarion does not set any non-functional cookies without asking you. If you decide to not allow third party plugins like our video player we store your decision in a functional cookie so we don’t annoy you with asking you over and over again.

For website optimization we set cookies after you consent. Read more about this below.

Inclusion of third party technology on this website

On this website services and/or libraries of third parties - e.g. Cloudflare - are integrated in order to optimise the loading rate. The resources of these providers are accessed from external servers that may be located outside the European Union. In this context, the data collected on the website may also be processed on external servers, possibly outside the European Union.

Further information on the purpose and scope of data processing by these third parties, as well as further information about data subjects’ rights in this regard and privacy protection settings, can be found in the respective privacy statements of the provider.

This website uses technologies of the following third parties:

• Cloudflare (https://cloudflare.com): Operation of the Domain;

• Heroku (https://www.heroku.com): Hosting on Amazon AWS servers (https://aws.amazon.com/) in the EU;

• Google (https://www.google.com/gmail/): e-mail hosting

• Hubspot for contacting Akarion (forms or email) and as a CRM, registration and marketing automation system (https://legal.hubspot.com/de/privacy-policy).

Website optimization using Piwik Pro

We use Piwik PRO Analytics Suite as our website/app analytics software and consent management tool. We collect data about website visitors based on cookies. The collected information may include a visitor’s IP address, operating system, browser ID, browsing activity and other information. See the scope of data collected by Piwik PRO.

In case you do not consent we will collect only completely anonymized data related to the use of the website.

We calculate metrics like bounce rate, page views, sessions and the like to understand how our website/app is used. We may also create visitors’ profiles based on browsing history to analyze visitor behavior, show personalized content and run online campaigns.

We host our solution on Microsoft Azure in Germany/Netherlands/United States/Hong Kong/ElastX in Sweden, and the data is stored for 14/25 months.

The purpose of data processing: analytics and conversion tracking based on consent. Legal basis: Art. 6 (1)(a) GDPR.

Piwik PRO does not send the data about you to any other sub-processors or third parties and does not use it for its own purposes. For more, read Piwik PRO’s privacy policy.