You are here: Data Privacy Policy

Data Privacy Policy


The protection of our customers', business partners ’and interviewees’ privacy and the safeguardingof their personal rights as well as the privacy and personal rights of all other visitors to our website are fundamental principles for us, INVISO - Gesellschaft für Kommunikations- und Marketingforschung mbH. We therefore comply strictly with legal requirements for the protection of personal data (European General Data Protection Regulation [GDPR], Federal Data Protection Act [BDSG]) and, as a market research Institute, are committed to the quality standards of the BVM (Berlin) and ESOMAR (Amsterdam) professional associations.

The following statement informs you about the data which we collect and process on this website, the reason for which we collect and process data, and the rights and protection to which you are entitled.

Controller/contact

Please get in touch with us if you have any questions.

Within the meaning of the General Data Protection Regulation, the controller for the collection and processing of your personal data on this website is

INVISO - Gesellschaft für Kommunikations- und Marketingforschung mbH
Schillerstr. 31
30159 Hannover
Germany
Tel. +49 (0)511 3017 900

E-mail info@inviso.de

represented by Managing Director
Frank Gehre.

Data Protection Officer
Dr. Ulrich Götte
Kollwitzstraße 8
33613 Bielefeld
Germany
Tel. +49 (0)163 161 2331
E-mail datenschutz@inviso.de

Collection and use of data

Our website can be used without the need to provide personal data. Personal data are data which can be unambiguously assigned to a specific natural person.

Certain personal data need to be entered for online applications for test subjects (“Becoming a test person”). This is explained separately in the following. The data which you voluntarily provide in this context enable us to contact you and are stored and processed exclusively for this purpose. We only

 pass your data on to third parties if you have given us your explicit written consent or if the following exceptions apply.

Exceptions:

We will disclose your data to state and private agencies which are entitled to receive data by law or by court order. We also retain the right to disclose your personal data to third parties without your consent if this should be necessary to protect ourselves against attacks of a criminal nature or of a nature which could undermine or stop the functioning of our web offer. To the extent that this is technically possible and legally permissible, we will inform you in good time if your data are disclosed in such exceptional cases.

Automatic recording of data in server log files and their purpose:

Whenever you visit this website information is collected in so-called server log files automatically for technical reasons and is stored on the website provider’s server. Under the Common Log Format this is:

 

  • The IP address of the invoking device
  • The date and time of access
  • The browser type and version
  • The operating system used
  • The address of the element being loaded (e.g., website, image elements, documents)
  • The data volume transmitted
  • The status of transmission
  • The address of the referring website (referrer URL)

We have no influence on the structure, contents and storage of the log files. At most, we make use of these data in aggregated form to perform general  statistical analyses and optimisation of our website.

The data (including in particular the IP address of the requesting device) are not linked with other data sources and we cannot therefore assign them to specific people or devices. We reserve the right to check these data at a later time if there are specific grounds for assuming that our website has been used illegally.

The data transmitted by the “Becoming test person” function: You can apply at no cost on our website to become a test person. This involves the collection, storage and processing of your contact data, as well as some personal characteristics which are necessary for eligibility for specific tests. For this purpose we use the double opt-in procedure (e-mail with confirmation link) to ensure that you are the holder of the e-mail address given and that you have agreed to the storage of the data you have provided or to being contacted by us.

We only ever use these data internally to shortlist applicants and to make contact with them. These data are only accessible to authorised INVISO employees and not disclosed to third parties without your explicit written consent. We store the IP address for your application as well as the date and

time in which your application is made in case your data are misused.

You can contact us at any time to find out which data we are currently storing on you or whether yourdata should be changed or erased.

Use of cookies:

“Cookies” are used when you use this website. Cookies are small text files which are placed on yourcomputer and stored in your browser. Cookies are only used to display the website individually to thevisitor and to make our offer more user-friendly, effective and secure.

You can change the settings of your browser so that you are informed every time a cookie is set, toonly accept cookies in specific cases, to exclude them completely, or to have them deletedautomatically when you close your browser. However, if you do this you may not be able to make fulluse of all the functions on our website. Information about the cookie settings of your browser can befound in the help/information pages of your browser.

Organisational and technical security precautionsWe treat your personal data with strict confidentiality in compliance with legal data protection regulations and this data privacy policy. In accordance with the principles of data avoidance and dataeconomy we only store your personal data for as long as is necessary or is prescribed by law(statutory period of storage). We lock or erase the data if the purpose for which data have been collected no longer applies or the period of storage expires.

All our employees are committed to data secrecy. Access authorisation to internal applications arerestricted to the immediate requirements of each organisational function. Individual authentication is required for all access.

Our security precautions comply with the current state-of-the-art and meet high recognised industrystandards. Our servers are in Germany and are subject to the strict German standards for data protection and security.

We have activated the currently customary TLS encryption on our websites to ensure that the datawhich you wish to transmit to us (e.g. via the function “Becoming test person”) cannot be read by third parties. You will recognise an encrypted connection by the “https://” and the lock symbol on the browser bar. However, we do point out that at the present time it is not possible to provide complete protection against access by third parties when data are transmitted via the Internet.

Data use and forwarding

Your personal data which you provide to us via our website or by e-mail (e.g., your name and your address or your e-mail address) are only processed for the purposes of correspondence or contract performance with you and only for the purpose for which you have provided us the data.

The information collected on this website is forwarded to the responsible unit within our company.

We provide assurance that we do not disclose your personal data to third parties unless we are required to do so by law or this is absolutely necessary in order to perform the contract or we haveobtained your consent in advance.

If we use the services of others to carry out particular processing tasks – referred to as orderprocessors – the contractual relationships involved are subject to the provisions of the General Data Protection Regulation (refer to Art. 28 GDPR).

Data are not exported to states outside the EEA.

Links to other websites

Our website includes links to other websites to which this data privacy policy does not apply. The external websites to which links are made have their own data protection guidelines and procedures over which we have no influence. If we have information about these, we will provide it here.

Data protection for children/young people

We will never knowingly and without the consent of those entitled to exercise parental authority collect personal data on persons who are younger than age 16. We ask people who are younger than 16 not to send us any personal data without the consent of those entitled to exercise parental authority.

Lawfulness of data processing

The data sent to us are always processed in accordance with legal regulations. Data processing is lawful on the basis of Article 6 (1) a) and b) of the General Data Protection Regulation if you have consented to such processing or if we process data for the performance of the contract or to take steps prior to entering into a contract.

The purposes of such processing are stated in the corresponding clauses of this data privacy policy.

Your rights as data subject to information, modification, erasure

You are entitled to contact us at any time to exercise your rights at no charge to receive information about the personal data stored on you and the way it is collected, processed and used as well as data portability. The same applies to your right to rectification, locking and erasure of your stored personal data or withdrawal of consent. The statutory periods of storage (e.g. under tax law) remain unaffected.

If you have any questions about this or about data privacy in general, please contact us in writing by e-mail or by post at the above addresses. If you believe that your protection rights have been violated by this website, please contact us immediately for clarification and rectification. You are also entitled to submit a complaint to a supervisory authority.

Updates

Our data privacy policy may be changed to comply with legal requirements or the ongoing development of our website and any associated new services, technical procedures or data protection measures. We therefore reserve the right to change this data privacy policy at any time. In this case we will inform you about such changes here or by means of a notification on our website.

The current version of our data privacy policy is from May 2018.