Personal data means any information relating to an identified or identifiable natural person. They include particularly all information making it possible to conclude your identity, for instance your name, telephone number, address or e-mail address. Statistical data, which we collect for example when someone visits our website, do not fall under the meaning of personal data.
2. Contact partner
The provider of this website www.talon.one is Talon.One GmbH, Wiener Str. 10, 10999 Berlin, Germany (hereinafter referred to as: “Talon.One” or “we”). Talon.One is also the controller in the sense of the EU General Data Protection Regulation (GDPR) for the collection, processing and use of personal data of website visitors (hereinafter referred to as “you”). We are happy to assist you if you have any questions or suggestions about data protection. Feel free to send your data protection concerns to our data protection officer by email at privacy[at]talon.one
For all questions about matters of data protection in connection with our product or the use of our website you can also contact our Data Protection Officer at any time. They can be reached under the above postal address and under the e-mail address privacy[at]talon.one (mark your communication: “FAO Data Protection Officer”).
3. Data processing on our website
3.1 Accessing our website
Every time our website is used, we collect the access data which your browser automatically transmits to make your visit to the website possible. These access data comprise in particular:
IP address of enquiring device
Date and time of enquiry
Address of the website called up and of the website enquiring
Information on the browser and operating system used
Online identifiers (e.g. device identifiers, session IDs)
It is necessary to process this data to make the visit to the website possible and to ensure the permanent functional capability, availability and security of our systems. Art. 6 (1) lit. b GDPR is the legal basis for this data processing.
3.2 Making contact
You have various possible ways of making contact with us. These include the contact form for booking a demo, getting pricing information and the live chat. In this context we process data solely for the purpose of communication with yourself. The legal basis is Art. 6 (1) lit. b GDPR. During an order process we collect compulsory information needed for handling the contract:
First name and surname
On our website we offer you the service to get in touch with us via our chat to improve the communication with you as user. To enable you the chat, we use the services of Drift.com Inc., 222 Berkeley Street, 6th FL (Drift), Boston, Massachusetts 02116 (“Drift”). In case you have general questions or would like to get a demo of our product, you can write us a message via chat and we will respond to you when we are online. For this service Drift collects your name, contact information (company, business email address and phone number), IP address and Cookie Data. Drift will set a Cookie to monitor your activity at our website and enriches your personal data with information regarding the company you are working for. In case personal date will be transmitted in the USA. Drift has submitted itself to the EU-US Privacy Shield. The legal basis is Art. 6 (1) lit. b, f GDPR.
You can find further information about the service here.
3.3 Newsletter and promotional mailings
You can subscribe to our marketing newsletter, in which we regularly inform you about the latest news about our products and services.
For subscribing to the newsletter we use the so-called double opt-in procedure, i.e. we shall only send you the newsletter by e-mail if you confirm, by clicking a link in our message e-mail, that you own the e-mail address provided. Should you confirm your e-mail address, we shall store your e-mail address, the time of registration and the IP address used for the registration for such time until you cancel the newsletter. This storage serves only the purpose of sending you the newsletter and being able to provide your registration. Unsubscribing from the newsletter is possible at any time, e.g. via the unsubscribe link at the end of every newsletter. A message to the contact details given above or in the newsletter (e.g. by e-mail or letter) is of course likewise sufficient for this. The legal basis is Art. 6 (I) 1 lit. a GDPR.
We also are sending you promotional mailings via email in case you are using our products and services. In these promotional mailings we are informing you about new updates and new functions regarding the explicit services you are using. The legal basis is Art. 6(1) 1 lit. f GDPR.
For the purpose of sending you promotional mailings and newsletters, we work together with service providers to whom we transmit, among other things, your e-mail address and your newsletter registration in order to be able to send you the newsletters and advertising mailings. The legal basis for this data processing is Art. 6 (I) 1 lit. b, f GDPR.
In our newsletter we use technologies usual in the market by which the interactions with the newsletter can be measured (e.g. opening of the e-mail, links clicked). We use these data in pseudonymised form for general statistical evaluations and to further optimise and develop our customer communication. This is done with the aid of graphics which are embedded in the newsletter (so-called pixels). The legal basis for this is also Art. 6 (I) 1 (a) GDPR. We would like to share subjects with our customers which are of maximum relevance to them and to understand better what our readers are actually interested in. If you do not wish your usage pattern to be analysed, you can cancel the newsletter or disable graphics in your e-mail program in a standard way.
3.4 Job applications
You can apply for vacant jobs via our job-application management system. The purpose of the data collection is that of applicant selection for providing possible employment. For receiving and processing your application we collect the following data: first name and surname, e-mail address, application documents (e.g. references, CV), earliest date for taking up the job, and desired salary. The legal basis for the processing of your application documents is Art. 6 (1) lit. b GDPR and Art. 88 (1) GDPR in combination with Sec. 26 (1) 1 of the German Data Protection Act (BDSG).
If you have provided your consent, we will keep you application data in our talent pool for 6 months and automatically delete it thereafter. During this time, we may consider your application and contact you regarding other job opportunities at Talon.One. The legal basis for the processing of your application data in the talent pool is your consent, Art. 6 (1) lit. a GDPR and Art. 88 (1) GDPR in combination with Sec. 26 (2) of the German Data Protection Act (BDSG). You can withdraw your consent at any time by writing an e-mail to firstname.lastname@example.org.
We use the job-application management system Greenhouse, a service by Greenhouse Software, Inc., 18 West 18th Street, 11th Floor, New York, NY 10011 USA. If you apply for a vacant job, your data will be hosted in the EU but may also be processed in the United States. To ensure an adequate level of data protection, we have concluded standard contractual clauses with Greenhouse.
3.5 Insertion of our own cookies
For a part of our service it is necessary for us to insert cookies. A cookie is a small text file which is saved by your browser on your device. Cookies are not inserted to execute programs or to load viruses into your computer. Instead the main purpose of cookies is to provide a product or service especially tailored to yourself and to make use of our services as time-saving as possible.
We use our own cookies in particular
For load distribution;
To store your language settings;
To note that information placed on our website has been displayed to you – so that on your next visit to the website it does not need to be displayed again.
In this way we wish to enable you to use our website in a convenient and individual way. These services are based on our foregoing legitimate interest, and the legal basis is Art. 6 (1) lit. f GDPR.
3.6 Setting of cookies for analytical purposes
The legal basis for the data processing described in the following section is Art. 6 (1) lit. (f) of the GDPR, based on our legitimate interest in the needs-based design and continual optimisation of our website.
3.6.1 Google Analytics
Google will process the information so gained in order to evaluate your use of the website, to assemble reports on the website activities for the website operators, and to supply further services connected with website use and internet use.
As set out above, you can so configure your browser that it rejects cookies, or you can prevent the capture of the data generated by cookies and relating to your use of our websites (including your IP-address) and the processing of this data by Google by downloading and installing the browser add-on provided by Google. As an alternative to the browser-addon or if you browse our website from a mobile device, you can use this opt-out link. This will prevent the data collection of Google Analytics within this website (the opt-out link will only work in this browser and only for this domain). If you delete your cookies in this browser, you have to click on the link again.
You will find more detailed information on this matter in the Privacy Statement of Google Analytics.
We use Hubspot’s CRM tool to:
1. Track and organise sign-ups/accounts created on our website. The purpose of this is to keep track of what companies have signed up, and who the point of contact is. We then use this information to keep a record of the company’s position in a sales pipeline, also organised in Hubspot.
2. Send data to the marketing platform Hubspot about the visitor's device and behaviour. Tracks the visitor across devices and marketing channels.
3. Collect information on user preferences and/or interaction with web-campaign content - This is used on CRM-campaign-platform used by website owners for promoting events or products.
4. Keep track of a visitor's identity. This cookie is passed to the marketing platform HubSpot on form submission and used when de-duplicating contacts.
We use Hotjar in order to better understand our users’ needs and to optimize this service and experience. Hotjar is a technology service that helps us better understand our users’ experience (e.g. how much time they spend on which pages, which links they choose to click, what users do and don’t like, etc.) and this enables us to build and maintain our service with user feedback.
Hotjar stores this information on our behalf in a pseudonymized user profile. Hotjar is contractually forbidden to sell any of the data collected on our behalf.
For further details, please see the ‘about Hotjar’ section of Hotjar’s support site.
In the following section we would like to explain these technologies and the providers used for this purpose in more detail. The data collected includes in particular:
the IP address of the device,
the date and time of access,
the identification number of a cookie,
the device identification of mobile devices
technical information about the browser and the operating system.
However, the collected data is stored pseudonymously so that no direct conclusions can be drawn about the persons.
In the following descriptions of the technologies used by us, you will find information on the possibilities of objection regarding our analysis and advertising measures by means of a so-called opt-out cookie. Please note that after deleting all cookies in your browser or later using another browser and/or profile, an opt-out cookie must be set again.
In the following we describe the possibilities of objection for our analysis and advertising measures.
3.7.1 Bing Ads
You can prevent the storage of cookies by adjusting your browser to that effect (as set out above); we must point out, however, that in this case you may not be able to use all the functions of the website in full. You can further prevent the capture to Microsoft of the data created by the cookies relating to your use of the website and the processing of these data by Microsoft by disabling the personalised advertisements on the Microsoft Opt-Out Page. Please note in this case that, after the deletion of all cookies in your browser or the later use of another browser and/or profile, the objection must be exercised again.
You will find more detailed information on this matter in Microsoft’s Privacy Statement.
3.7.2 Google Ads
If you use a Google Account, Google may link your web and app browsing history to your Google Account and use information from your Google Account to personalize ads, depending on the settings on your Google Account. If you don't want this association with your Google Account, you'll need to sign out of Google before you can visit our website.
You can configure your browser to reject cookies, as shown above. You can also disable the "Personalized advertising" button in Google's advertising preferences. In this case, Google will only display general advertising that is not selected based on information collected about you.
3.7.3 Facebook Ads
For marketing purposes the Site uses so-called conversion and retargeting tags (so-called “Facebook pixels”) from the Facebook social network, a service for users outside the US and Canada by Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland and for all other users by Facebook Inc., 1601 Willow Road, Menlo Park, California, 94025, USA (together “Facebook”). We use Facebook pixels in order to analyse the general use of our websites and to trace the efficacy of Facebook advertising (“conversion”). In addition, we use the Facebook pixels to play you individualised publicity messages based on your interest in our products (“retargeting”). For this purpose Facebook processes data which the service collects via cookies and similar technologies on our websites.
The data accrued in this context may be transmitted by Facebook for evaluation to a server in the USA and stored there. Should personal data be transmitted to the USA, Facebook has acceded both to the EU-US Privacy Shield and Swiss-US Privacy Shield frameworks.
If you are a Facebook member and have allowed Facebook to do so via the privacy settings of your account, Facebook may in addition link with your member account the information about your visit captured by ourselves and use it for the targeted insertion of Facebook Ads. You can view and change the privacy settings in your Facebook profile at any time. If you are not a Facebook member, you can prevent this data processing by Facebook by operating the disable button for the provider “Facebook” on the TrustArc website mentioned above. You can further prevent this data processing by clicking the following button.
Disable Facebook‘s personal analysis & advertising
If you deactivate this data processing by Facebook, Facebook will only display general advertisements, which are not selected on the basis of the information captured about you.
You can find more detailed information in Facebook’s Data Policy.
On our website we have embedded our audio content, which is stored by Soundcloud Ltd, Rheinsberger Str. 76/77, 10115 Berlin (“Soundcloud”) and can be directly played at our website. Soundcloud is an online music platform where users can upload and share their audio data. We use the Soundcloud widget so that you can listen to our podcast.
The legal basis of Soundcloud is Art. 6 Abs. 1 lit. f GDPR. It is in our interest to provide our audio content directly to our user.
Soundcloud collects information about your visit (IP-address, which Talon.One website you are visiting and time stamp of your visit) and your behaviour (e.g. listening to audio content) on our website where the widget is embedded. Soundcloud collects this data even when you are not logged in with your profile. In case you are logged in with your Soundcloud account, this information will be combined with your account. In case you do not want to have this information linked with your Soundcloud Profile, we recommend logging off. Soundcloud is processing the data for advertisement, analysis purposes and to improve the usage of the website.
You can find further information regarding the data processing here and here.
3.7.5 Capterra Ads
Our website uses the service of Capterra Zentrale, 1201 Wilson Blvd, 9th Floor, Arlington, VA 22209 USA (“Capterra”). Capterra will only set a cookie when there is a so-called “conversion event” which happens when you request a demo by our form on our website (“book a demo”). In this case Capterra will track if the request for the demo was generated by a reference of the Capterra platform. Capterra will receive the data which is filled out within the form.
The purpose of the data processing is to monitor the success of our marketing campaigns and to optimize the usage our website.
More information can be found here.
We use the Quora Pixel technology “Ad Service” of Quora Inc., 605 Castro Street, Moutain View, CA 94041 USA (“Quora”) on our website. Quora enables us to tailor the ads and content on the Quora Platform Quora to your interest regarding your browsing activities. Quora also enables us to get further information about how our users are engaging with our ads and contents on the Quora Platform to measure the success of our marketing campaigns. Quora collects your IP-Adress, location, date and time stamp, user agent, cookie ID, URL, time zone and other browser-level data or cookie data. In case you are logged in with your Quora account, Quora is able to link the processed data to your account.
In case you want to object the data processing, you can switch off the processing here.
You can find further information regarding the data processing here and here
Outbrain offers a content marketing service that aims to present users with content that they are interested in, based on their behaviour and preference.
The pixel we've added helps with attribution and overall performance.
3.7.9 Verizon Media
Verizon Media (EMEA Limited, 5-7 Point Square, North Wall Quay, Dublin 1, Ireland) tag records information used for measurement, analytics and retargeting. These third party advertising / targeting cookies collect visit behaviour, such as the pages you have visited and the locations you have viewed, which may be used to improve marketing activity.
More information about Verizon Media Data protection can be found here. For Opt-out click here.
4. Social Media Plug-Ins
We rely on our website on the basis of Art. 6 (I) 1 lit. f GDPR social plug-ins from the social networks Facebook, Twitter, Linkedin, and Instagram, YouTube, Soundcloud, Capterra and Quora to make our company better known. The underlying commercial purpose is to be regarded as a legitimate interest within the meaning of the GDPR. Responsibility for the operation compliant with data protection is to be guaranteed by their respective providers. The integration of these plug-ins by us takes place in the way of the so-called two-click method to protect visitors of our website in the best possible way
Our website uses social media plugins from Facebook to personalize its use. For this, we use the “LIKE" or “SHARE" button. It is an offer from Facebook.
If you visit a page of our website that contains such a plugin, your browser establishes a direct connection to the Facebook servers. The content of the plugin is transmitted by Facebook directly to your browser and integrated by this in the website.
By integrating the plugins, Facebook receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Facebook account or are currently not logged in to Facebook. This information (including your IP address) is transmitted from your browser directly to a Facebook server in the US and stored there.
If you are logged in to Facebook, Facebook can assign the visit to our website directly to your Facebook account. If you interact with the plugins, for example by pressing the “LIKE" or “SHARE" button, the corresponding information is also transmitted directly to a Facebook server and stored there. The information will also be posted on Facebook and displayed to your Facebook friends.
Facebook may use this information for the purpose of advertising, market research, and tailor-made Facebook pages. For this purpose, Facebook uses user, interest and relationship profiles, for example, to evaluate your use of our website in relation to the advertisements displayed on Facebook, to inform other Facebook users about your activities on our website, and to provide other services related to the use of Facebook.
On our website plugins of the short message network of Twitter Inc. (Twitter) are integrated. The Twitter plugins (tweet button) can be recognized by the Twitter logo on our site. An overview of tweet buttons can be found here (https://about.twitter.com/en/resources/buttons).
When you visit a page of our website that contains such a plugin, a direct connection is established between your browser and the Twitter server. Twitter receives the information that you have visited our site with your IP address. If you click on the Twitter “tweet button" while logged in to your Twitter account, you can link the contents of our pages to your Twitter profile. This allows Twitter to associate your visit to our pages with your user account. We point out that we as the provider of the pages are not aware of the content of the transmitted data and their use by Twitter.
If you do not want Twitter to associate your visit to our pages, please log out of your Twitter account.
Our website continues to use the Share feature of the LinkedIn network. Provided by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, United States. If you click on the LinkedIn “Share-Button" (plug-in), you will – if you are logged into your user account at LinkedIn – forwarded in a separate browser window on your user account and the deposited on our website electronic publication with the addition of a comment divide. The plug-in creates a direct connection between your browser and the LinkedIn server. LinkedIn receives the information that you have visited our website with your IP address. In addition, LinkedIn will be able to associate your visit to our website with you and your user account.
We point out that we have no knowledge of the content of the transmitted (personal) data and their use by LinkedIn. For more information, see the LinkedIn privacy statement at: https://www.linkedin.com/legal/privacy-policy.
This website includes videos from the company YouTube, YouTube LLC 901 Cherry Ave., 94066 San Bruno, CA, USA a company of Google Inc., Amphitheatre Parkway, Mountain View, CA 94043, USA, which are stored on http://www.youtube.com and can be played directly from our website.
These are all embedded in "enhanced privacy mode", which means that no data about you as a user is transferred to YouTube if you do not play the videos. Only when you play the videos the data mentioned in the following paragraph will be transferred. Talon.One has no influence on this transmission.
By visiting the website, YouTube receives the information that you have accessed the corresponding subpage of our website. In addition, under the heading "Collection of personal data when visiting our website", the data mentioned in this declaration is transmitted. This occurs regardless of whether YouTube provides a user account through which you are logged in or whether no user account exists. If you are logged in at Google, your data will be assigned directly to your account. If you don't want your profile to be associated with YouTube, you must log out before activating the button. YouTube stores your data as user profiles and uses them for purposes of advertising, market research and/or demand-oriented design of its website. Such evaluation is carried out in particular (even for users who are not logged in) for the purpose of providing needs-based advertising and to inform other users of the social network about your activities on our website. You have a right of objection to the creation of these user profiles, whereby you must contact YouTube to exercise this right.
YouTube is used in the interest of an attractive presentation of our online services. The legal basis is Art. 6 (I) 1 lit. f GDPR.
Further information on the privacy purpose and scope of data collection and its processing by YouTube can be found in the YouTube data protection declaration. There you will also find further information on your rights and setting options for protecting your privacy: https://policies.google.com/?hl=de. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/welcome.
5. Duration of storage
We store personal data only for as long as is necessary to fulfil contractual or statutory duties for which the data were collected. We then erase the data immediately, unless we still need these data until expiry of the statutory period of limitation for purposes of evidence in civil claims or due to statutory duties of storage.
For purposes of evidence we must still store contact data for three years from the end of the year in which business relations with you end. Any claims will expire, under the normal statutory period of limitation, no earlier than at this time.
Thereafter we must also store some of your data for purposes of book-keeping. We have an obligation to do so under statutory duties of documentation which may arise under the German Commercial and Tax Law. The periods stipulated there for storage of documents are six to ten years.
6. Your rights
You have the right to revoke a consent previously provided to us at any time. The consequence of this is that we will no longer process your data in relation to that consent in the future. The revocation of the consent does not affect the legality of the processing carried out on the basis of the consent up to the revocation.If we process your data on the basis of legitimate interests, you have the right to object to the processing of your data at any time for reasons arising out of your particular situation. If you object to data processing for direct marketing purposes, you have a general right of objection, which we will implement without requiring you to state your reasons for objecting.If you wish to exercise your right of revocation or objection, simply send an informal message to the contact details listed above.
Finally, you have the right to complain to the regulatory authority responsible for data protection if you believe that your personal data is being processed in violation of applicable data-protection legislation. You can exercise this right at the regulatory authority in the member country of your place of residence, your place of work, or the place in which the violation allegedly took place. In Berlin where Talon.one GmbH is located the competent regulatory authority is: Data Protection and Freedom of Information Officer, Friedrichstrasse 219, 10969 Berlin.
7. Right of revocation and objection
Under Art. 7 (3) of the GDPR you have the right at any time to withdraw to us any consent which has once been given. This will have as a consequence that in future we no longer continue the data processing based on this consent. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
Insofar as we process your data on the basis of legitimate interests under Art. 6 (1) lit. f GDPR, you have the right under Art. 21 GDPR to object to the processing of your data and to mention grounds relating to your particular situation that in your opinion speak in favour of prevailing legitimate interests. Where personal data are processed for direct marketing purposes, you have a general right of objection which will also be implemented by us without your stating reasons.
If you wish to make use of your right to withdraw or object, a notification without set form to the contact details above will be sufficient.
8. Data security
We maintain up-to-date technical measures to ensure data security, particularly for the protection of your personal data against dangers during data transmissions and against cognizance by third parties. These are amended in each case to reflect the current state of technology. To secure the personal data which you have stated on our website, we use transport layer security (TLS), which encrypts the information which you have entered.
9. Amendments to Data Protection Notice
We occasionally update this Data Protection Notice, for instance when we revise our website or statutory or official regulations change.
Wiener Strasse 10
41 Church Street
B3 2RT Birmingham
One Boston Place, Suite 2600
02108 Boston, MA
1 Scotts Road, #21-10 Shaw Centre