Our primary goals in collecting information are to provide and improve our Services, to administer your use of the Services, and to enable you to enjoy and easily navigate our Services.
Sapera GmbH will process your data in accordance with the data protection provisions of the Federal Data Protection Act ("BDSG") in the version that took effect on May 25, 2018 and Regulation (EU) 2016/679 (hereinafter the "GDPR").
Responsibilities and contact details
The data controller, i.e., the person responsible for processing your personal data is:
Sapera GmbH Haus Cumberland Kurfürstendamm 194 10707 Berlin, Germany
Represented by the managing director Christopher Wynes.
Our legitimate interest is derived from the above-listed purposes for data collection. In short, we have a legitimate interest in making it technically possible for you to access and use our website. As this is a new kind of service, it is important for us to know how the website is used so we can improve and optimise it. We also need to ensure that abuse is prevented and assure a secure usage for our visitors.
We generally do not use collected data for the purpose of making conclusions about your person. However, we reserve the right to do so to investigate improper page access in certain cases.
Transfer of personal data to other companies and countries
To deliver the experience we want you to have, we rely on the services of special providers that are experts in their dedicated area.
When you visit our website, your browser will automatically send data to our web servers, which is technically necessary to display this website to you. This involves personal data, which is transmitted automatically by your browser to our server, including:
Technical data, including information collected during your visits to our website(s),
Internet Protocol (IP) address
HTTP status code
browser type, version, language and time zone setting
browser plug-in types and versions
browser plug-in types and versions
device type, operating system and platform
date and time of your request
content of the request (information about which specific web page you visited)
transferred data volume
Amazon Web Services, USA
This website is hosted by Amazon Web Services and the data collected on our website is therefore processed on the servers of that service provider. We generally use servers located in Germany, but other servers in other European and non-European countries may also be used.
We use the online video platform "YouTube" to host the embedded videos on the info.graphics website.
"YouTube" is a service provided by Google. To be able to integrate this service, your web browser must connect to a Google server and download the video needed. Google thus receives the information that our website has been accessed from the IP address of your device. While the relevant processor is Google Limited in Ireland, data might also be shared with Google LLC, USA.
The service we offer on this website is unique and new and we are constantly improving the way it works. Therefore it is crucial to gain knowledge about how you interact with the website for reasons of improvement and to find usability issues and bugs. For this reason we collect the following data during your visit:
Profile and Usage Data
time and length of visits
page interaction information such as scrolling, clicks, and roll-overs
page response times and loading duration
We use Amplitude to help with data collection and presentation.
Our website currently contains links to the following social media providers: Facebook, Instagram and Twitter.
Your browser may not establish a direct connection to the servers of the aforementioned services until you click on the links. This means that the information that you have visited our website is indirectly (referrer) forwarded to these services. If you are already logged in to the service with your personal user account during your visit to our website, you can usually click on the social media buttons to "share" the content or leave a comment, etc. If you do not wish any such data transfer, we advise against clicking on the social media buttons.
The purpose and scope of data collection by these social media services, as well as the further processing and use of your data there and your rights and options for setting your privacy preferences can be found in the privacy policies for these services.
Collection of personal data in case of website errors or crashes
As we improve our services to deliver our content to you, we need to collect information about what makes things go wrong. We use external services that help us properly diagnose the errors so that you can continue having a seamless experience on our website.
We do not keep your personal information for longer than necessary for the purposes for which we collected it. In some cases it might be possible that we keep your information for a longer period for historical, statistical or scientific purposes with the appropriate safeguards in place.
What is a cookie?
Cookies are text files containing small amounts of information which are downloaded to your device when you visit a website. Cookies are then sent back to the originating website on each subsequent visit, or to another website that recognises that cookie. Cookies are useful because they allow a website to recognise a user’s device, preferences and generally help to improve your online experience. You can find more information about cookies at www.allaboutcookies.org.
We send newsletters, e-mails and other electronic notifications (hereinafter referred to as "newsletters") only with the consent of the recipient or a legal permission. If the contents of the newsletter are specifically described within the scope of registration, they are decisive for the consent of the user. In addition, our newsletters contain information about our services and us.
In order to subscribe to our newsletters, it is generally sufficient for you to enter your e-mail address. However, we may ask you to provide a name for the purpose of addressing you personally in the newsletter.
Information about us, our services, promotions, surveys and offers.
Double opt-in procedure
The registration to our newsletter takes place in a so-called "Double-Opt-In" procedure. This means that you will receive an e-mail after registration asking you to confirm your registration. This confirmation is necessary so that nobody can register with external e-mail addresses. The registrations for the newsletter are logged in order to be able to prove the registration process according to the legal requirements. This includes the storage of the registration and confirmation time as well as the IP address. Likewise the changes of your data stored with the service provider are logged.
Legal bases for processing
The newsletter is sent on the basis of the recipient's consent or, if consent is not required, on the basis of our legitimate interests in direct marketing, provided and to the extent that this is permitted by law, e.g. in the case of existing customer advertising. If we commission a service provider to send e-mails, this is done on the basis of our legitimate interests. The registration process is recorded on the basis of our legitimate interests to prove that it was conducted in accordance with the law.
The newsletters contain a so-called "web beacon", i.e. a file the size of a pixel, which is retrieved from our server or, if we use a dispatch service provider, from its server when the newsletter is opened. In the course of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and the time of retrieval, are first collected.
This information is used for the technical improvement of our newsletter on the basis of technical data or target groups and their reading behaviour on the basis of their retrieval locations (which can be determined with the help of the IP address) or access times. This analysis also includes determining whether newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our endeavour nor, if used, that of the dispatch service provider to observe individual users. Rather, the evaluations serve us to recognise the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.
The evaluation of the newsletter and the performance measurement are carried out, subject to the express consent of the user, on the basis of our legitimate interests for the purposes of using a user-friendly and secure newsletter system which serves both our business interests and the expectations of the user.
A separate revocation of the performance measurement is unfortunately not possible, in which case the entire newsletter subscription must be cancelled or contradicted.
Processed data types: inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), meta/communication data (e.g. device information, IP addresses), usage data (e.g. websites visited, interest in content, access times).
Persons concerned: Communication partner.
Purposes of processing: Direct marketing (e.g. by e-mail or post).
You can cancel the receipt of our newsletter at any time, i.e. revoke your consent or object to further receipt. You will find a link to cancel the newsletter either at the end of each newsletter or you can otherwise use one of the contact options listed above, preferably e-mail.
We may store the deleted e-mail addresses for up to three years on the basis of our legitimate interests before we delete them in order to be able to prove a previously given consent. The processing of this data is limited to the purpose of a possible defence against claims. An individual request for deletion is possible at any time, provided that the former existence of a consent is confirmed at the same time. In the case of obligations to permanently observe contradictions, we reserve the right to store the e-mail address solely for this purpose in a blacklist.
The logging of the registration procedure takes place on the basis of our legitimate interests for the purposes of proving its proper course. If we commission a service provider to send e-mails, this is done on the basis of our legitimate interests in an efficient and secure dispatch system.
Your legal rights in relation to personal data
If you are in the European Economic Area (EEA) you have the following rights:
Access: You have the right to request a copy of the personal data that we hold about you. There are exceptions to this right, so that access may be denied if, for example, making the information available to you would reveal personal data about another person, or if we are legally prevented from disclosing such information. You are entitled to see the personal data held about you. If you wish to do this, please contact us using the contact details provided below.
Objecting: In certain circumstances, you also have the right to object to processing of your personal data and to ask us to block, erase and restrict your personal data. If you would like us to stop using your personal data, please contact us via email.
Portability: You have the right to request that some of your personal data is provided to you, or to another data controller, in a commonly used, machine-readable format.
Deletion: You have the right to request that we delete personal data that we process about you, unless we are required to retain such data in order to comply with a legal obligation or to establish, exercise or defend legal claims.
Withdrawing Consent: If you have consented to our processing of your Personal Data, you have the right to withdraw your consent at any time, free of charge. This includes cases where you wish to opt-out from marketing messages that you receive from us.
Complaints: If you believe that your data protection rights may have been breached, you have the right to lodge a complaint with the applicable supervisory authority, in our case the State Representative for Data Protection of the State of Berlin, or to seek a remedy through the courts.
You can exercise the above rights, where applicable by contacting the data protection team. We will require you to provide satisfactory proof of your identity in order to ensure that your rights are respected and protected. This is to ensure that your personal data is disclosed only to you.
Protecting your personal information
Sapera GmbH is committed to protecting the security of your personal information and we take all reasonable precautions to protect it from unauthorised access, modification or disclosure. Your personal information is stored on secure servers that have SSL Certificates issued by leading certificate authorities, and all data transferred between you and the service is encrypted.
We do not use automated decision-making without human intervention, including profiling, in a way that produces legal effects concerning you or otherwise significantly affects you.