Healthcare Professionals
Please log in for special information and services
New here?
sign up for personal account

Who are we?

The "controller" is the natural or legal person, authority, institution or other body which alone or jointly with others determines the purposes and means of processing personal data. With regard to the processing of your data when using this website, we are the controller in the sense of the GDPR:

AOP Orphan Pharmaceuticals AG
Wilhelminenstr. 91/ II f
1160 Vienna, Austria
Board: Dr. Rudolf Widmann, Mag. Andreas Steiner, Dr. Günther Krumpl
Tel.: + 43 1 503 72 44
Fax.: +43 10 503 72 44 5
e-mail: office@aoporphan.com

We have also appointed a data protection officer in accordance with Article 37 paragraph 4 GDPR:

Christian Zange, AOP Orphan Pharmaceuticals AG
Wilhelminenstraße 91/II f, 1160 Vienna, Austria
e-mail: data-protection@aoporphan.com

What happens when the website is used for purely informative purposes?

(1) If you use our website for purely informative purposes, i.e. if you neither register as a user nor otherwise transmit information, we collect the following data from you:

  • IP address, anonymised by abbreviation
  • Date and time of the request
  • Time zone difference to Greenwich Mean Time (GMT)
  • Content of the request (specific page)
  • Access status/HTTP status code
  • Amount of data transmitted in each case
  • Website from which the request comes
  • Browser, operating system and its interface
  • Language and version of the browser software.

We receive this data via cookies and directly from your browser.

(2) The purpose of this processing is the provision of our website as well as statistical evaluation.

(3) The legal basis for this is Article 6 paragraph 1 sentence 1 lit f GDPR, according to which the processing of personal data may be carried out without the consent of the data subject if the processing is necessary to safeguard the legitimate interests of the controller or of a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular if the data subject is a child. The purposes mentioned above under paragraph 2 are in our economic interest. Insofar as we use cookies, we refer to our explanations under "How do we use cookies on this website", especially with regard to the maximum storage period.

(4) There is no legal obligation to process this data.

What happens during registration for and use of the log-in area?

(1) Our website also contains a log-in area, the use of which is reserved for healthcare professionals, which in Austria includes doctors, pharmacists and nursing staff, because we are obliged under the Medicinal Products Act (AMG) to make information on prescription drugs as well as medical information available exclusively to healthcare professionals and only in the password-protected area. If you register as a healthcare professional for the log-in area, we collect the data you provide during the registration process.

(2) The purpose of the processing is to fulfil our legal obligation to provide the above-mentioned information. The legal basis is therefore Article 6 paragraph 1 sentence 1 lit c GDPR. We store the data as long as you maintain the registration.

What happens when you apply via our website?

(1) Our website also contains a "Career" section where you can apply for job offers advertised in that section if you are interested in working for our company.

(2) In this area of our website we use the recruiting tool "jobbase.io", a tool offered by Prescreen International GmbH, Mariahilfer Straße 17, 1060 Vienna, Austria (https://prescreen.io/de/). We have carefully selected this provider and concluded a data-processing agreement with Prescreen International GmbH in accordance with Article 28 Paragraph 3 GDPR. Details of the legal and technical framework can also be found at https://prescreen.io/de/features/infos-zur-integration/#rechtliche-aspekte-sicherheit.

(3) For all applications received via this recruiting tool but also via other channels, we refer to our privacy policy for applicants.

How do we use Google Analytics?

(1) Among other tools, we use Google Analytics, a web analysis service of Google LLC. ("Google"), which is represented in Europe by Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. An overview of the data protection policy of this provider can be found at https://policies.google.com/privacy?hl=de. In cases where personal data is transferred to the USA, Google has submitted to the EU-US Privacy Shield (https://www.privacyshield.gov/EU-US-Framework). We use Google Analytics to analyze and regularly improve the use of our website. We can use the statistics obtained to improve our offer and make it more interesting for you as a user. You will find more details on how this works in the following paragraphs.

(2) Google Analytics uses so-called "cookies". These are text files which are stored on your computer which enable an analysis of your use of the website. The information thus generated about your use of this website is usually transferred to a Google server in the USA and stored there. However, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there. Google will use this information on our behalf to evaluate your use of the website, to compile reports on the website activities and to provide further services to the website operator in connection with the use of the website and the internet. The IP address transmitted by your browser within the scope of Google Analytics is not merged with other Google data. We also use Google Analytics for a cross-device analysis of visitor flows, which is carried out using a user ID. You can deactivate the cross-device analysis of your usage in your customer account under "my data", "personal data".

(3) For your information, we would like to point out that we use Google Analytics with the extension "_anonymizeIp()". This allows IP addresses to be processed in a shortened form, thus excluding the possibility of personal references. If the data collected about you contain a personal reference, this is immediately excluded, and the personal data are therefore deleted immediately.

(4) The legal basis for the processing described in the above paragraphs is your consent within the meaning of Article 6 paragraph 1 sentence 1 lit a GDPR, which you have given via our cookie banner and which you can revoke in particular by deactivating it in the cookie banner. With your revocation we will delete the data immediately. Without your revocation we will delete the data after 14 months at the latest.  You may also prevent the storage of cookies by adjusting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all functions of this website to their full extent. You can also prevent the collection and transmission of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

(5) The legal basis for the processing which takes place to obtain consent is Article 6 paragraph 1 sentence 1 lit c GDPR. According to this provision, we may process your data if this is necessary to fulfil a legal obligation to which we are subject. The legal obligation to which we are subject arises out of Article 7 paragraph 1 GDPR or Article 5 paragraph 1 GDPR. According to these provisions, we are legally obliged to document the obtaining of consent. This is only possible if we collect your data for verification purposes. We store the data for as long as this is necessary for verification purposes. If you confirm your consent, the retention period only ends after your consent has been revoked plus the period until any civil law claims become time-barred.

(6) Unless explicit reference is made to Article 6 paragraph 1 sentence 1 lit c GDPR, there is no legal obligation to process the data.

How do we use Matomo?

(1) This website uses the web analysis service Matomo to analyze and regularly improve the use of our website. The statistics obtained enable us to improve our offer and make it more interesting for you as a user. For this analysis cookies are stored on your computer. We store the information collected in this way by means of so-called "self-hosting" exclusively on our servers, so that no further data exchange takes place. You can end the evaluation by deleting existing cookies and preventing the storage of cookies. If you prevent the storage of cookies, we point out that you may not be able to use this website to its full extent. The prevention of the storage of cookies is possible through the settings in your browser. The program Matomo is an open source project. Information of the third-party provider on data protection is available at http://Matomo.org/privacy/policy.

(2) The legal basis for the processing described in paragraph 1 is your consent within the meaning of Article 6 paragraph 1 sentence 1 lit a GDPR, which you have given via our cookie banner, which you can revoke in particular by deactivating in the cookie banner. With your revocation we will delete the data immediately. Without your revocation we will delete the data after 14 months at the latest.  If you want to deactivate these cookies, please uncheck the box below (at the end of this section). 
If necessary, you can also prevent the storage of the cookies by adjusting your browser software accordingly. However, we would like to point out that in such a case you may not be able to use all functions of this website to their full extent.

(3) The legal basis for the processing carried out to obtain consent is Article 6 paragraph 1 sentence 1 lit. c GDPR. Under this provision, we may process your data if this is necessary to fulfil a legal obligation to which we are subject. The legal obligation to which we are subject arises out of Article 7 paragraph 1 GDPR or Article 5 paragraph 1 GDPR. According to these provisions, we are legally obliged to document the obtaining of consent. This is only possible if we collect your data for verification purposes. We store the data for as long as this is necessary for verification purposes. If you confirm your consent, the retention period only ends after your consent has been revoked plus the period until any civil law claims become time-barred.

(4) Unless explicit reference is made to Article 6 paragraph 1 sentence 1 lit c GDPR, there is no legal obligation to process the data.

Tracking Opt-Out 

You can opt out from data storage via Matomo by activating in your browser that you do not wish to be included in any such statistics ("Do-not-track"). You can also opt out of being tracked by our Matomo Analytics instance on our website by clicking on the following link below. An opt-out cookie will be set which prevents the collection of your data on future visits to this website. Please note: If you delete all your cookies on your terminal/browser, this has the consequence that also the Matomo opt-out-cookie will be deleted. You must then reactivate your opt-out at your next visit to our website.

Where and how do we maintain company websites on social networks (social media)?

(1) We currently maintain company websites in the following social networks:

a) Facebook

b) Twitter

c) Xing

e) LinkedIn

d) YouTube

We have linked our company pages on this website.

(2) We have no influence on the collected data and data processing procedures, nor are we aware of the full extent of the data collection, the purposes of the processing and the storage periods. We also have no information on the deletion of the collected data by the respective provider.

(3) If you access our company websites, it is possible that the respective provider will save the data collected about you as user profiles and use them for the purposes of advertising, market research and/or the needs-based design of its website. You have a right of objection to the creation of these user profiles, whereby you must contact the respective provider in order to exercise this right of objection.

(4) Further information on the purpose and scope of data collection and its processing by the respective provider can be found in the following privacy policies of these providers. There you will also find further information on your rights and settings to protect your privacy.

(5) If you yourself maintain a profile on these social networks, the legal basis is your consent within the meaning of Article 6 paragraph 1 sentence 1 lit a GDPR, which you have given to the respective provider of the social network. In all other cases, the legal basis is Article 6 paragraph 1 sentence 1 lit f GDPR, according to which your data may be processed if it is necessary to protect our legitimate interests or the interests of a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular if the data subject is a child. We have the economic interest to link our company pages, whereby you click on the links independently and voluntarily. Otherwise, the providers of the respective social networks are responsible, whereby we refer to paragraph 6 for details.

(6) Additional notes:

a)       Facebook Inc., 1601 S. California Avenue, Palo Alto, CA 94304, USA. If and to the extent that we analyze visitor interactions with our company website, we are jointly responsible with Facebook in this respect under data protection law; this in accordance with Article 26 GDPR. The corresponding agreement can be found here: https://www.facebook.com/legal/terms/page_controller_addendum. If and insofar as we commission Facebook to process data for us beyond this, we are clients in the sense of Article 28 GDPR. The corresponding agreement can be found here: https://www.facebook.com/legal/terms/dataprocessing. Palo Alto, California 94304, USA; http://www.facebook.com/policy.php. The data processing is also not precluded by the fact that the data may be processed outside the European Union by Facebook. This is because Facebook is listed in the PrivacyShield framework, so that in this respect Article 45 GDPR in conjunction with Commission implementing decision (EU) 2016/1250 of 12.07.2016 justifies the use of this provider. A privacy policy of the provider can be found here: https://www.facebook.com/policy.php.

b)       Twitter, Inc, 1355 Market St, Suite 900, San Francisco, California 94103, USA. If and to the extent that we analyze visitor interactions with our company website, we are jointly responsible with Twitter for data protection in this respect in accordance with Article 26 GDPR. The corresponding agreement can be found here: https://gdpr.twitter.com/en/controller-to-controller-transfers.html. If and to the extent that we commission Twitter to process data for us beyond this, we are clients within the meaning of Article 28 GDPR. The corresponding agreement can be found here: https://gdpr.twitter.com/en/dpa.html. The data processing does not prevent the data from being processed by Twitter outside the European Union. This is because Twitter is listed in the PrivacyShield framework, so that in this respect Article 45 GDPR in conjunction with Commission implementing decision (EU) 2016/1250 of 12.07.2016 justifies the use of this provider. A privacy policy of the provider can be found here: https://twitter.com/privacy.

c)        Xing AG, Dammtorstaße 30, 20354 Hamburg, Germany. A privacy statement of the provider can be found here: http://www.xing.com/privacy.

d)       LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043, USA; http://www.linkedin.com/legal/privacy-policy. If and to the extent that we analyze visitor interactions with our company website, we are jointly responsible with LinkedIn for data protection in this respect; this is in accordance with Article 26 GDPR. The corresponding agreement can be found here: https://legal.linkedin.com/pages-joint-controller-addendum. If and insofar as we commission LinkedIn to process data for us beyond this, we are clients within the meaning of Article 28 GDPR. The relevant agreement can be found here: https://legal.linkedin.com/dpa. The data processing does not prevent the data from being processed by Facebook outside the European Union. LinkedIn is listed in the PrivacyShield framework, so that Article 45 GDPR in conjunction with the implementing decision (EU) 2016/1250 of the Commission of 12.07.2016 justifies the use of this provider. A privacy policy of the provider can be found here: https://www.linkedin.com/legal/privacy-policy.

(7) Unless explicit reference is made to Article 6 (1) sentence 1 lit c GDPR, there is no legal obligation to process the data.

How do we use Google Maps?

(1) On this website we use the offer of Google Maps. This allows us to display interactive maps directly on the website and enables you to use the map function conveniently.

(2) By visiting the website, Google receives the information that you have called up the corresponding subpage of our website. In addition, the data mentioned in paragraph 3 will be transmitted. This occurs regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged in at Google, your data will be assigned directly to your account. If you do not want your profile to be associated with Google, you must log out before activating the button. Google stores your data as user profiles and uses them for purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) for the purpose of providing needs-based advertising and to inform other users of the social network about your activities on our website. You have a right of objection to the creation of these user profiles, whereby you must contact Google in order to exercise this right.

(3) Further information on the purpose and scope of data collection and its processing by the plug-in provider can be found in the provider's privacy policy. There you will also find further information on your rights in this regard and setting options for protecting your privacy: http://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield (https://www.privacyshield.gov/EU-US-Framework).

(4) The legal basis is your consent within the meaning of Article 6 paragraph 1 sentence 1 lit a GDPR, which you have given via our cookie banner and which you can revoke in particular by deactivating it in the cookie banner. Upon your revocation, we shall delete the data immediately. Without your revocation we will delete the data after 14 months at the latest.

(5) The legal basis for the processing operation to obtain consent is Article 6 paragraph 1 sentence 1 lit c GDPR. Under this provision, we may process your data if this is necessary to fulfil a legal obligation to which we are subject. The legal obligation to which we are subject are Article 7 paragraph 1 GDPR or Article 5 paragraph 1 GDPR. According to these provisions, we are legally obliged to document the obtaining of consent. This is only possible if we collect your data for verification purposes. We store the data for as long as this is necessary for verification purposes. If you confirm your consent, the retention period only ends after your consent has been revoked plus the period until any civil law claims become time-barred.

(6) Unless explicit reference is made to Article 6 paragraph 1 sentence 1 lit c GDPR, there is no legal obligation to process the data.

How do we use YouTube videos? 

(1) We have integrated YouTube videos into our online offer, which are stored at http://www.YouTube.com and can be played directly from our website. These videos are all integrated in "extended data protection mode", which means that no data about you as a user is transferred to YouTube if you do not play the videos. Only when you play the videos will the data mentioned in paragraph 2 be transferred. We have no influence on this data transfer

(2) By visiting the website, YouTube receives the information that you have called up the corresponding subpage of our website. In addition, the data mentioned in paragraph 3 will be transmitted. This occurs regardless of whether YouTube provides a user account through which you are logged in or whether no user account exists. If you are logged in at Google, your data will be assigned directly to your account. If you don't want your profile to be associated with YouTube, you must log out before activating the button. YouTube stores your data as user profiles and uses them for purposes of advertising, market research and/or demand-oriented design of its website. Such evaluation is carried out in particular (even for users who are not logged in) for the purpose of providing needs-based advertising and to inform other users of the social network about your activities on our website. You have a right of objection to the creation of these user profiles, whereby you must contact YouTube in order to exercise this right.

(3) Further information on the purpose and scope of data collection and its processing by YouTube is available in the provider's privacy policy. There you will also find further information on your rights and setting options for the protection of your privacy: https://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield (https://www.privacyshield.gov/EU-US-Framework).

(4) We also maintain a company website with this provider. If you interact with this company site, it is possible that the provider may process your data as described in the preceding paragraphs.

(6) The legal basis is your consent within the meaning of Article 6 paragraph 1 sentence 1 lit a GDPR, which you have given via our cookie banner and which you can revoke in particular by deactivating it in the cookie banner. Upon your revocation we will delete the data immediately. Without your revocation we will delete the data after 14 months at the latest.

(7) The legal basis for the processing which takes place to obtain consent is Article 6 paragraph 1 sentence 1 lit c GDPR. According to this provision, we may process your data if this is necessary to fulfil a legal obligation to which we are subject. The legal obligation to which we are subject arises out of Article 7 paragraph 1 GDPR or Article 5 paragraph 1 GDPR. According to these provisions, we are legally obliged to document the obtaining of consent. This is only possible if we collect your data for verification purposes. We store the data for as long as this is necessary for verification purposes. If you confirm your consent, the retention period only ends after your consent has been revoked plus the period until any civil law claims become time-barred.

(8) Unless explicit reference is made to Article 6 paragraph 1 sentence 1 lit c GDPR, there is no legal obligation to process the data.

How do we use GoogleAds?

(1) We use the Google Ads service to draw attention to us on external websites or to provide information on relevant topics by means of advertising and information media (so-called Google Ads). The provider is Google LLC, 1600 Amphitheater Parkway, Mountainview, USA. In relation to the data of the advertising or information campaigns, we can determine how successful the individual (advertising) measures are. In this way, we pursue the interest in displaying advertising or providing you with information that is of interest to you, to make our website more interesting for you and to achieve a fair calculation of advertising and information costs.

(2) These advertising and information materials are delivered by Google via so-called "Ad Servers". For this purpose, we use ad server cookies, which allow us to measure certain parameters for measuring success, such as the display of ads or clicks by users. If you reach our website via a Google ad, Google Ads will store a cookie in your PC. These cookies usually expire after 30 days and are not intended to identify you personally. For this cookie, the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be addressed) are usually stored as analysis values.

(3) These cookies enable Google to recognize your internet browser. If a user visits certain pages of an ad client's website and the cookie stored on their computer has not expired, Google and the client may recognize that the user clicked on the ad and was redirected to that page. A different cookie is assigned to each AdSense client. Cookies cannot be tracked through the websites of ad clients. We ourselves do not collect and process any personal data in the aforementioned advertising and information measures. We only receive statistical evaluations from Google. On the basis of these evaluations we can identify which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising material, in particular we cannot identify the users on the basis of this information.

(4) Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. We have no influence on the scope and further use of the data collected by Google through the use of these tools and therefore inform you according to our state of knowledge: Through the integration of Google Ads, Google receives the information that you have called up the corresponding part of our website or clicked on an ad from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, it is possible that the provider will find out your IP address and save it.

(5) You can prevent participation in this tracking process in a number of ways: a) by adjusting your browser software settings accordingly, in particular by disabling third-party cookies, which will prevent you from receiving ads from third parties; b) by disabling cookies for conversion tracking by setting your browser to block cookies from the domain "www.googleadservices.com" (https://www.google.de/settings/ads), this setting being deleted when you delete your cookies; c) by disabling interest-based ads from the providers that are part of the self-regulatory campaign "About Ads" (http://www.aboutads.info/choices), this setting being deleted when you delete your cookies; d) by permanently disabling them in your Firefox, Internet Explorer or Google Chrome browsers under the link http://www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to use all functions of this offer to their full extent.

(6) Further information on data protection at Google can be found here: http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html. Alternatively, you can visit the Network Advertising Initiative (NAI) website at http://www.networkadvertising.org. Google has submitted to the EU-US Privacy Shield (https://www.privacyshield.gov/EU-US-Framework).

(7) The legal basis is your consent within the meaning of Article 6 paragraph 1 sentence 1 lit a GDPR, which you have given via our cookie banner and which you can revoke in particular by deactivating it in the cookie banner. Upon your revocation, we shall delete the data immediately. Without your revocation we will delete the data after 14 months at the latest

(8) The legal basis for the processing that takes place to obtain consent is Article 6 paragraph 1 sentence 1 lit c GDPR. According to this provision, we may process your data if this is necessary to fulfil a legal obligation to which we are subject. The legal obligation to which we are subject arises out of Article 7 paragraph 1 GDPR or Article 5 paragraph 1 GDPR. According to these provisions, we are legally obliged to document the obtaining of consent. This is only possible if we collect your data for verification purposes. We store the data for as long as this is necessary for verification purposes. If you confirm your consent, the retention period only ends after your consent has been revoked plus the period until any civil law claims become time-barred.

(9) Unless explicit reference is made to Article 6 paragraph 1 sentence 1 lit c GDPR, there is no legal obligation to process the data.

How do we use FacebookAds?

(1) We use the services of FacebookAds to draw attention to us on Facebook with the help of advertising and information media (so-called FacebookAds) or to provide information on relevant topics. The provider is Facebook Inc. 1601 S California Ave, Palo Alto, California 94304, USA. In relation to the data of the advertising or information campaigns, we can determine how successful the individual (advertising) measures are. In this way, we pursue the interest in displaying advertising or providing you with information that is of interest to you, to make our website more interesting for you and to achieve a fair calculation of advertising and information costs.

(2) These advertising and information materials are delivered through Facebook. If you reach our website via a Facebook ad, FacebookAds will store a cookie in your PC. These cookies are not intended to identify you personally. For this cookie, the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be contacted) are usually stored as analysis values. These cookies enable Facebook to recognize your internet browser. If a user visits certain pages of an ad customer's website and the cookie stored on their computer has not expired, Facebook and the customer can recognize that the user clicked on the ad and was redirected to that page. A different cookie is assigned to each Ad Client. Cookies cannot be tracked through the websites of ad customers. We ourselves do not collect and process any personal data in the aforementioned advertising and information measures. We only receive statistical evaluations from Facebook. On the basis of these evaluations we can identify which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising material, in particular we cannot identify the users on the basis of this information.

(3) Due to the marketing tools used, your browser automatically establishes a direct connection with the Facebook server. We have no influence on the scope and further use of the data collected by Facebook through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of Facebook Ads, Facebook receives the information that you have called up the corresponding part of our website or clicked on an ad from us. If you are registered with a Facebook service, Facebook can assign the visit to your account. Even if you are not registered with Facebook or have not logged in, it is possible that the provider will find out and save your IP address.

(5) You can prevent participation in this tracking process in various ways: a) by making appropriate settings in your browser software, in particular by suppressing third-party cookies, so that you do not receive third-party ads; b) by deactivating cookies for conversion tracking. We would like to point out that in this case you may not be able to use all functions of this offer to their full extent.

(6) Insofar as we commission Facebook to process data for us in this context, we are clients within the meaning of Article 28 GDPR. You can find the corresponding agreement here: https://www.facebook.com/legal/terms/dataprocessing. The data processing does not prevent Facebook from processing the data outside the European Union. This is because Facebook is listed in the PrivacyShield framework, so that in this respect Article 45 GDPR in conjunction with Commission implementing decision (EU) 2016/1250 of 12.07.2016 justifies the use of this provider. A privacy policy of the provider can be found here: https://www.facebook.com/policy.php.

(7) The legal basis is your consent within the meaning of Article 6 (1) sentence 1 lit a GDPR, which you have given via our cookie banner and which you can revoke, in particular by deactivating it in the cookie banner. Upon your revocation, we shall delete the data immediately. Without your revocation we will delete the data after 14 months at the latest.

(8) The legal basis for the processing that takes place to obtain consent is Article 6 paragraph 1 sentence 1 lit c GDPR. According to this provision, we may process your data if this is necessary to fulfil a legal obligation to which we are subject. The legal obligation to which we are subject arises out of Article 7 paragraph 1 GDPR or Article 5 paragraph 1 GDPR. According to these provisions, we are legally obliged to document the obtaining of consent. This is only possible if we collect your data for verification purposes. We store the data for as long as this is necessary for verification purposes. If you confirm your consent, the retention period only ends after your consent has been revoked plus the period until any civil law claims become time-barred.

(9) Unless explicit reference is made to Article 6 paragraph 1 sentence 1 lit c GDPR, there is no legal obligation to process the data.

How do we use LinkedIn Ads?

(1) We use the services of LinkedIn Ads to draw attention to us or to provide information on relevant topics by means of advertising and information media (so-called LinkedIn Ads) on LinkedIn. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043. We can determine how successful the individual (advertising) measures are in relation to the data of the advertising or information campaigns. In this way, we pursue the interest in displaying advertising or providing you with information that is of interest to you, to make our website more interesting for you and to achieve a fair calculation of advertising and information costs.

(2) These advertising and information materials are supplied by LinkedIn. If you access our website via a LinkedIn ad, LinkedIn Ads will store a cookie on your PC. These cookies are not intended to identify you personally. As a rule, the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be contacted) are stored as analysis values for this cookie. These cookies enable LinkedIn to recognize your internet browser. If a user visits certain pages of an ad client's website and the cookie stored on their computer has not expired, LinkedIn and the client may recognize that the user clicked on the ad and was redirected to that page. A different cookie is assigned to each ad client. Cookies cannot be tracked through the websites of ad customers. We ourselves do not collect and process any personal data in the aforementioned advertising and information measures. We only receive statistical evaluations from LinkedIn. These evaluations enable us to identify which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising material, in particular we cannot identify the users on the basis of this information.

(3) Due to the marketing tools used, your browser automatically establishes a direct connection with the LinkedIn server. We have no influence on the scope and further use of the data collected by Google through the use of these tools and therefore inform you according to our state of knowledge: Through the integration of LinkedIn Ads, LinkedIn receives the information that you have called up the corresponding part of our website or clicked on an ad from us. If you are registered with a LinkedIn service, LinkedIn can assign the visit to your account. Even if you are not registered with LinkedIn or have not logged in, there is a possibility that the provider may obtain and store your IP address.

(5) You can prevent participation in this tracking process in various ways: a) by adjusting your browser software settings accordingly, in particular by suppressing third-party cookies; b) by deactivating cookies for conversion tracking. We would like to point out that in this case you may not be able to use all functions of this offer to their full extent.

(6) If we commission LinkedIn to process data for us in this context, we are clients within the meaning of Article 28 GDPR. The corresponding agreement can be found here: https://legal.linkedin.com/dpa. The data processing is also not precluded by the fact that the data may be processed outside the European Union by Facebook. LinkedIn is listed in the PrivacyShield framework, so that Article 45 GDPR in conjunction with the implementing decision (EU) 2016/1250 of the Commission of 12.07.2016 justifies the use of this provider. A privacy policy of the provider can be found here: https://www.linkedin.com/legal/privacy-policy.

(7) The legal basis is your consent within the meaning of Article 6 paragraph 1 sentence 1 lit a GDPR, which you have given via our cookie banner and which you can revoke, in particular by deactivating it in the cookie banner. Upon your revocation, we shall delete the data immediately. Without your revocation we will delete the data after 14 months at the lat

(8) The legal basis for the processing that takes place to obtain consent is Article 6 paragraph 1 sentence 1 lit c GDPR. According to this provision, we may process your data if this is necessary to fulfil a legal obligation to which we are subject. The legal obligation to which we are subject arises out of Article 7 paragraph 1 GDPR or Article 5 paragraph 1 GDPR. According to these provisions, we are legally obliged to document the obtaining of consent. This is only possible if we collect your data for verification purposes. We store the data for as long as this is necessary for verification purposes. If you confirm your consent, the retention period only ends after your consent has been revoked plus the period until any civil law claims become time-barred.

(9) Unless explicit reference is made to Article 6 paragraph 1 sentence 1 lit c GDPR, there is no legal obligation to process the data.

How do we use cookies on this website?

(1) When you use the website, cookies are stored on your computer. Cookies are small text files which are stored on your hard disk assigned to the browser you are using and through which we receive certain information. Cookies cannot execute programs or transfer viruses to your computer. They only serve to make the web presence more user-friendly and effective.

(2) We use transient cookies. Transient cookies are automatically deleted when the user closes the browser. This includes in particular session cookies. These store a so-called session ID, with which various requests from the visitor's browser can be assigned to the common session. This enables the visitor's computer to be recognized when the visitor returns to our website. The legal basis for this is Article 6 paragraph 1 sentence 1 letter f GDPR, according to which the processing of personal data may be carried out without the consent of the data subject if the processing is necessary to safeguard the legitimate interests of the controller or of a third party, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data outweigh the data subject's own interests or fundamental rights and freedoms, in particular if the data subject is a child. The purposes referred to in paragraph 2 are in our economic interest.

(3) We also use persistent cookies to some extent. Persistent cookies are automatically deleted after a specified period of time, which may vary depending on the cookie. The legal basis is your consent within the meaning of Article 6 paragraph 1 sentence 1 lit a GDPR, which you have given via our cookie banner and which you can revoke in particular by deactivating it in the cookie banner. With your revocation we will delete the data immediately. Without your revocation we will delete the data after 14 months at the latest.

(4) The legal basis for the processing required to obtain consent in accordance with paragraph 3 is Article 6 paragraph 1 sentence 1 lit c GDPR. According to this provision, we may process your data if this is necessary to fulfil a legal obligation to which we are subject. The legal obligation to which we are subject arises out of Article 7 paragraph 1 GDPR or Article 5 paragraph 1 GDPR. According to these provisions, we are legally obliged to document the obtaining of consent. This is only possible if we collect your data for verification purposes. We store the data for as long as this is necessary for verification purposes. If you confirm your consent, the retention period only ends after your consent has been revoked plus the period until any civil law claims become time-barred.

(5) Unless explicit reference is made to Article 6 paragraph 1 sentence 1 lit c GDPR, there is no legal obligation to process the data.

How do we use Adobe Typekit?

(1) We use external fonts on our website using Adobe Typekit. This is a Typekit service provided by Adobe Systems Inc, 345 Park Avenue San Jose, California 95110-2704, USA. For general information about the service provider's data processing practices, please refer to the Adobe Privacy Statement at https://www.adobe.com/de/privacy/policy.html (Adobe). When you visit our website, your browser downloads the required fonts directly from Adobe so that they can be displayed correctly on your device. By connecting to Adobe, Adobe will know that your IP address is being used to access our website. The Service Provider states that it does not place or use cookies on websites to offer its fonts. For details about what information is collected, how it is used, and whether and to whom the Service Provider shares information when using Adobe Typekit, please visit https://www.adobe.com/de/privacy/policies/adobe-fonts.html (Adobe Typekit). The use of this service does not prevent the Service Provider from being located outside the EU. This is because the provider is listed in the PrivacyShield Framework (https://www.privacyshield.gov/EU-US-Framework), which, in addition to the use of this service, justifies the use of this provider under Article 45 GDPR in conjunction with Commission Decision (EU) 2016/1250 of 12.07.2016.

(2) The purpose of the processing is to enable the technically error-free and optimized provision of our services, in particular to ensure a uniform typeface on our website.

(3) The legal basis for the processing is Article 6 paragraph 1 sentence 1 lit f GDPR, the interest on our part follows from the purpose described in paragraph 2, your interests are safeguarded by the protective measures described in paragraph 1 and your general rights listed below.

How do we use the Inova software?

(1) We use the software tool "Inova". The provider is Inova Software SA (INOVA), 50, cours de la République, Immeuble les Gémeaux 2, 69100 Villeurbanne, France. For more information on data protection at this vendor, please visit https://www.inova-software.com/security-and-performance/ and https://www.inova-software.com/privacy/. We use this tool to handle points of contact, communication and, if applicable, business relationship between you and us.

(2) We have carefully selected the provider Inova. We have then commissioned the provider in accordance with Article 28 paragraph 3 GDPR and will continue to review the provider in the future without and on an ad hoc basis. The provider processes your data exclusively on our instructions.

(3) For details, please refer to our privacy policy for applicants / employees / customers / suppliers / event participants.

How do we use software offers from IQVIA 
(Nexxus, OneKey)?

(1) We use the CRM system from IQVIA. The provider is IQVIA Information Solutions GmbH, Stella-Klein-Löw-Weg 15, House B, 1020 Vienna, Austria. Further information on data protection at this provider can be found at https://www.iqvia.com/about-us/privacy and https://www.iqvia.com/about-us/privacy/gdpr-at-iqvia.

(2) We have carefully selected and audited this provider. We have then commissioned the provider in accordance with Article 28 Paragraph 3 GDPR and will continue to review the provider in the future without and on an ad hoc basis. The provider processes your data exclusively on our instructions.

(3) IQVIA is, among other things, a CRM system, i.e. a software for the implementation and realization of a customer relationship management, CRM for short. For details, we refer you to our privacy policy for applicants / employees / customers / suppliers / event participants.

How do we guarantee sufficient data security?

We maintain up-to-date technical measures to ensure data security, in particular to protect your personal data from risks during data transmission and from third parties gaining knowledge of them. These measures are always adapted to the current state of the art.

What rights do you have?

With regard to data privacy, you have various rights. However, these rights may be subject to conditions which we will insist on. In detail you have the following rights:

  • Right of access by the data subject (Article 15 GDPR):

In accordance with Article 15 GDPR, you have the right to receive information about your personal data processed by us at any time and free of charge. We will send you this information in electronic form or as a copy upon request.

  • Right to rectification (Article 16 GDPR):

In accordance with Article 16 GDPR, you can demand that we correct processed incorrect personal data.

  • Right to erasure (Article 17 GDPR):

Under the conditions of Article 17 GDPR, you can demand from us the immediate erasure of the personal data concerning you. You can demand the erasure of your personal data if, among other things, they are no longer necessary for the purposes for which they were collected or processed, if you revoke any consent you may have given and no other legal basis applies, if you have objected to the processing and there are no overriding legitimate reasons for the processing or if the data processing was unlawful.

  • Right to restriction of processing (Article 18 GDPR):

You have the right to request that the processing of your personal data be restricted if the conditions of Article 18 GDPR are met.

  • Right to data portability (Article 20 GDPR):

This right exists if the data processing was carried out with your consent or was necessary for the performance of the contract.

  • Right to object (Article 21 GDPR):

Under Article 21 GDPR, you have the right to object at any time to the processing of personal data concerning you for reasons arising from your particular situation. We will then no longer process your personal data unless we can prove compelling and legitimate reasons for processing which outweigh your interests, rights and freedoms, or unless the processing serves to assert, exercise or defend legal claims.

  • Right to lodge a complaint with a supervisory authority (Article 77 GDPR)

Furthermore, you have the right to complain about us to the supervisory authority responsible for us in accordance with 
Article 77 GDPR.

Contact details for requests

For requests for information, correction or deletion, please use the contact options listed above under "Who are we?”.