We thank you for your interest in our website. The protection of your personal information is very important to us. Below we shall communicate with you in detail about the handling of your data. If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain the user’s consent.
The processing of personal data, such as the name, address, e-mail address or telephone number of a data subject, is carried out in accordance with the requirements of the General Data Protection Regulation (GDPR).
Name and Address of Responsible Body
The body responsible with regards to the GDPR is:
Evale GmbH
Vor der Eulenkammer 2
27383 Scheeßel
T: 0163/5111237
W: www.evale.ai
M: privacy@evale.ai
Collection of General Data and Information
The Evale GmbH website collects a range of general data, personal data and information each time you or an automated system accesses it. This general data and information is stored in the log files of the server.
The following can be collected:
- the type of browser and version used,
- the operating system used by the accessing system,
- the website from which an accessing system reaches our website,
- the sub websites which are accessed via an accessing system on our website,
- the date and time of access to the website
- an internet protocol (IP) address,
- the internet service provider of the accessing system and
- other similar data and information used in the case of attacks on our information technology systems.
When using this data and information, Evale GmbH does not draw conclusions about you and does not collate your data with other personal data of yours.
Rather, this information is needed in order to:
- correctly deliver the contents of our website requested by you,
- optimize the contents of our website as well as the advertising for these,
- ensure the long-term functionality of our information technology systems and the technology of our website, and
- to provide law enforcement agencies with the information necessary for law enforcement in the event of a cyber attack. This anonymously collected data and information is therefore statistically evaluated by Evale GmbH and with the aim of increasing data protection and data security in our company with the end goal of ensuring an optimal level of protection for the personal data we process.
Cookies
Some of our Internet pages use “cookies”. Cookies do not cause any damage to your computer and do not contain any viruses. Cookies serve to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Such cookies are not only set by Evale itself but also on its behalf by third parties such as Facebook (see below) or Clerk. In order to do this, these third-party companies place cookies which record usage data on the user’s computer on behalf of Evale.
This is regarding such data that can be collected, for example, while the user moves around the Evale website or clicks on advertising.
When you access the website from our data protection regulations, cookies are also set which are stored beyond your current visit to the website (your “session”).
Ability to object: If the user does not want to use cookies or wishes to delete existing cookies, she can switch them off and remove them via her internet browser. More information on deleting or disabling cookies can be found in the help texts of the browsers used or on the Internet, for example, under the search words “Deactivate cookies” or “Delete cookies” (deletion instructions in Microsoft Internet Explorer. Deletion instructions in Mozilla Firefox. Deletion instructions in Safari). If the user decides to disable cookies, this can reduce the scope of the service and have a negative impact on the use of Evale services.
Cookies, which are necessary for the execution of the electronic communication process, are stored on the basis of Art. 6 para. 1 letter f GDPR. Evale GmbH has a legitimate interest in the storage of cookies for the technically error-free and optimized provision of its services. As far as other cookies (e.g., cookies for the analysis of your surfing behavior) are stored, these will be treated separately in this data protection policy.
Data Protection for Applications and in Application Procedures
Evale GmbH collects and processes the personal data of applicants for the purpose of processing the application procedure. Processing may also be carried out electronically. This is particularly the case if an applicant sends corresponding application documents to Evale GmbH by electronic means, for example, by e-mail or via our applicant portal.
If Evale GmbH concludes an employment contract with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If Evale GmbH does not conclude an employment contract with the applicant, the application documents will be automatically deleted six months after communication of the rejection decision, provided that there are no other legitimate interests of Evale GmbH to the contrary. Other legitimate interests in this sense are, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).
Data Protection Regulations of Evale GmbH in Connection with the Free Offer of Digital Content
Collected data and purpose of use
We collect the following data from you if you wish to obtain digital content from us, e.g., White Paper, Case Studies, etc…
- Surname: personal user salutation in e-mails
- First name: personal, gender-specific user salutation in e-mails
- Business e-mail address: Confirmation of e-mail address and of the sending of digital content and offers
- Professional title: Adaptation of the sent contents and offers to the user’s role / job title for reasons of relevance
- Phone number (optional): this will be asked in order to be able to contact you if you tick the optional “I would like to be called and learn more about Evale” checkbox.
Sending the digital content requested by the user by e-mail:
After submitting the form, we will send you an e-mail in which you can confirm your e-mail address and the download request for the corresponding content by clicking on the confirmation link. The confirmation link then refers you directly to the content requested in the form (e.g., White Paper, eBook, etc.)
Sending other, similar content and offers by e-mail:
If you have confirmed your e-mail address as described under number 1, we will send you other e-mails in the course of the following weeks which refer to other, similar digital content and offers from Evale GmbH. These are based on the content already requested, your role, and the size of the company. You can also revoke the future sending of content by sending an e-mail to privacy@evale.ai.
Right of affected persons
One of the objectives of the GDPR is to protect and clarify the data protection rights of EU citizens and users within the EU. This means that you as a user still have various rights with regard to your data, even if you have already given it to us. These rights are described in more detail below.
If you wish to contact us in connection with these rights, please contact our data protection officer (the contact details can be found under number II) or directly at privacy@evale.ai. We will aim to answer your request as quickly as possible, in any case within one month (extensions may be applied to which we are legally entitled).
Please note that we may keep records of our communications in order to better resolve any problems you raise.
You have the following rights:
a) Right to confirmation
Every user of our website has the right to request confirmation from us as to whether we are processing his personal data. If the user wishes to make use of this right, he can contact our data protection officer at any time or contact us directly at privacy@evale.ai.
b) Right to information
Every user has the right to receive information from us at any time, free of charge, about the personal data stored about him/her as well as a copy of this information. Furthermore, the user can obtain information about the following:
- purposes of processing
- the categories of personal data to be processed• the recipients or categories of recipients to whom the personal data have been or are still being disclosed,• if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration
- the existence of a right of rectification or deletion of personal data concerning him or of a restriction on processing by the responsible party, or of a right of opposition to such processing
- the existence of a right of appeal to a supervisory authority
- if the personal data is not collected from the data subject: All available information about the origin of the data
- the existence of automated decision-making, including profiling in accordance with Article 22 para. 1 and 4 GDPR and, at least in these cases, meaningful information on the logic involved and the scope and intended effects of such processing for the data subject.
Furthermore, the user has the right to information as to whether personal data has been transferred to a third country or to an international organization. If this is the case, the user has the right to obtain information about the appropriate guarantees in connection with the transmission. If a user wishes to make use of this right to information, he or she can contact our data protection officer or contact us directly at privacy@evale.ai at any time.
c) Right to rectification
Every user has the right to demand the immediate correction of incorrect personal data concerning him. Furthermore, the user has the right, taking into account the purposes of the processing, to request the completion of incomplete personal data, also by means of a supplementary declaration.
If the user wishes to make use of this right to rectification, he can contact our data protection officer or contact us directly at privacy@evale.ai at any time.
d) Right to deletion (right to be forgotten)
Every user has the right to demand from us that the personal data concerning her be deleted immediately, provided that one of the following reasons applies and insofar as processing is not necessary:
- the personal data has been collected or otherwise processed for such purposes for which they are no longer necessary.
- the user withdraws his consent on which the processing was based pursuant to Article 6 para. 1 letter a GDPR or Article 9 para. 2 letter a GDPR, and there is no other legal basis for the processing.
- the user objects to the processing in accordance with Article 21 para 1 GDPR and there are no overriding legitimate grounds for the processing, or the person concerned objects to the processing in accordance with Article 21 para. 2 GDPR.
- the personal data has been processed unlawfully.
- the deletion of personal data is necessary to fulfill a legal obligation under Union law or the law of the Member States to which Evale is subject.
- the personal data was collected in relation to information society services offered pursuant to Art. 8 para. 1 GDPR.
If one of the aforementioned reasons applies and a user wishes to have personal data that is stored with us deleted, she can contact our data protection officer or contact us directly at privacy@evale.ai at any time.
e) Right to limitation of processing
Every user has the right to request us to limit processing if one of the following conditions is met:
- the accuracy of the personal data is disputed by the user for a period that enables us to verify the accuracy of the personal data.
- the processing is unlawful, the user refuses to delete the personal data and instead requests the limitation of the use of the personal data.
- Evale no longer needs the personal data for the purposes of processing, but the user needs it to assert, exercise or defend legal claims.
- the user has filed an objection to the processing according to Art. 21 para. 1 GDPR and it has not yet been determined whether Evale’s justified reasons outweigh those of the user.
If one of the above conditions is met and the user wishes to request the limitation of personal data stored with us, he can contact our data protection officer or contact us directly at privacy@evale.ai at any time.
f) Right to data transferability
Every user has the right to receive the personal data concerning him, which was made available to us by the user, in a structured, current and machine-readable format. Furthermore, she also has the right to transmit this data to another responsible person without our interference, provided that the processing is based on the consent according to Art. 6 para. 1 letter a GDPR, or Art. 9 para. 2 letter a GDPR, or on a contract according to Art. 6 para. 1 letter b GDPR and the processing is carried out using automated procedures, provided that the processing is not necessary for the performance of a task in the public interest or in the exercise of public authority which has been transferred to us.
In addition, when exercising their right to data transferability pursuant to Art. 20 para. 1 GDPR, the user has the right to ensure that the personal data be transferred directly from one responsible party to another responsible party, insofar as this is technically feasible and provided that the rights and freedoms of other persons are not affected by this.
To assert the right to data transferability, the user can contact our data protection officer or contact us directly at privacy@evale.ai at any time.
g) Right to object
Every user has the right to object at any time to the processing of personal data concerning her on the basis of Art. 6 para. 1 letter e or f GDPR for reasons arising from her particular situation.
h) Right to revoke consent under data protection law
Every user has the right to revoke his consent to the processing of personal data at any time.
If a user wishes to exercise his right to revoke his consent, he can contact our data protection officer or contact us directly at privacy@evale.ai at any time.
i) Right to appeal to a supervisory authority
The user has the right to file a complaint with the competent local supervisory authority. Details on how to contact the authority can be found here:
Die Landesbeauftragte für den Datenschutz Niedersachsen
Prinzenstraße 5
30159 Hannover
Data Protection Regulations for the Use and Application of Third-Party Vendors
Below you can find all the companies we may share data with, with an explanation of why. If you have any more questions about the data we share, please get in touch by writing to privacy@evale.ai.
DigitalOcean, LLC.
- Purpose: Infrastructure services for data storage, communications, and security
- Personal data transferred? All data managed by the Evale website (like IP address) can potentially be stored and transferred by Digital Ocean.
- Sensitive data: No
- Location of data storage: EU (Frankfurt)
- Link to Privacy Policy of DigitalOcean, LLC.
Storyblok GmbH
- Purpose: Providing the content for the website through it’s headless CMS
- Personal data transferred? No.
- Sensitive data: No
- Location of data storage: EU (Frankfurt)
- Link to Privacy Policy of DigitalOcean, LLC.
Typeform SL:
- Purpose: Collecting surveys from interested parties like customers, experts and prospects looking for support
- Personal data transferred? Name, business email address, company
- Sensitive data: No
- Location of data storage: EU
- Link to Privacy Policy of Typeform SL
Clerk Inc.:
- Purpose: Allowing users to login to custom areas and view, edit and delete their profile.
- Personal data transferred? Depending on the login form the name, email address, company name and phone number could be stored with Clerk (Evale does not store any personal account data)
- Sensitive data: No
- Location of data storage: US
- Link to Privacy Policy of Clerk Inc.
Plausible Insights OÜ:
- Purpose: Analyzing website traffic to ensure functionality and improve website experience
- Personal data transferred? No. Plausible tracks overall trends in your website traffic, not individual visitors. They don’t use cookies, they don’t generate any persistent identifiers and don’t collect or store any personal or identifiable data. All of the data is aggregated data only and it has no personal information.
- Sensitive data: No
- Location of data storage: EU (Frankfurt)
- Link to Privacy Policy of Clerk Inc.
Google Inc. (Workspace)
- Purpose: Email and document management for presentations, word processes, spreadsheets, etc. to support any business activity.
- Personal data transferred? Potentially any data from customers can be processed with this service eventually.
- Sensitive data: No
- Location of data storage: EU
- Link to Privacy Policy of Google Inc.
Notion Labs, Inc.
- Purpose: Documentation and knowledge management
- Personal data transferred? Potentially any data from customers can be processed with this service eventually.
- Sensitive data: No
- Location of data storage: US
- Link to Privacy Policy of Notion Labs, Inc.
Contact Form
When contacting us by e-mail or via a contact form, we store the data you provide in order to answer your questions. The data is deleted after storage is no longer required. If there are legal storage obligations, we shall restrict processing. We delete the data arising in this context after storage is no longer necessary, or limit processing if legal storage obligations exist.
Right of Modification
We reserve the right to change these data protection regulations at any time within the scope of applicable laws.