Skip to content
BeastBI

Data Privacy

DESCRIPTION OF THE GROUPS OF PERSONS AFFECTED

The following groups of personal data or data categories are collected, processed and used to fulfill the intended purpose.

Categories of persons affected by processing:

Customer data, in particular contact data, such as telephone, fax and email data, contact history and other data that is necessary to fulfill the contract

Interested party data, in particular contact details as well as other data, identification data and click paths

Employee data: Employees include in particular: employees, trainees, people undergoing rehabilitation, people who are to be viewed as employees-like people due to their economic dependence, applicants, those who have left the company and interns. Contract data and performance data are processed to the extent that this is necessary for the decision to establish an employment relationship or, after the employment relationship has been established, for its implementation or termination.

Supplier data: Suppliers / service providers / intermediaries / brokers / agencies (in particular contact data, such as telephone, fax and e-mail data, contact and order history and other data necessary to fulfill the contract).

Visitors and users of the online offering.

Below we refer to the affected persons collectively as “users”.

Types of data processed:

Inventory data (e.g., names, addresses).
Contact details (e.g., email, telephone numbers).
Content data (e.g., text entries, photographs, videos).
Contract data (e.g., subject matter of the contract, term, customer category).
Usage data (e.g. websites visited, links clicked, interest in content, access times).
Meta/communication data (e.g., device information, IP addresses).
PROCESSING OF SPECIAL CATEGORIES OF DATA (ART. 9 (1) GDPR)

In principle, no special categories of data are processed unless they are submitted for processing by the user, e.g. entered in online forms.

Principle of data collection, processing or use

Diamond Dragons FZCO offers software development and consulting services and informs interested parties, customers and partners with constantly new information from the world of inbound marketing. If personal data (e.g. names or email addresses) are collected on our website, this is done on a voluntary basis. For the purposes of marketing and website optimization, we record navigation information from website visitors. This is data about your computer and your visit to our website, in particular your IP address, referral source, length of your visit and pages you open.

In the context of the following tasks, personal data is collected:

Provision of the online offer, its contents and functions.
Personalized display of website content
Maintaining the inventory and usage data
acquisition of new customers
Preparation and answering contact inquiries and communication with users.
Further services for customers
Provision of contractual services, service and customer care.
Marketing, advertising and market research.
Safety measures.

date: 31.01.2024

APPLICABLE LEGAL BASIS

In accordance with Art. 13 GDPR, we will inform you of the legal basis for our data processing. If the legal basis is not stated in the data protection declaration, the following applies: The legal basis for obtaining consent is Article 6 Paragraph 1 Letter a and Article 7 GDPR, the legal basis for processing to fulfill our services and implement contractual measures as well Answering inquiries is Art. 6 Para. 1 lit. b GDPR, the legal basis for processing to fulfill our legal obligations is Art. 6 Para. 1 lit. c GDPR, and the legal basis for processing to protect our legitimate interests is Art 6 Paragraph 1 Letter f GDPR. In the event that the vital interests of the data subject or another natural person require the processing of personal data, Article 6 (1) (d) GDPR serves as the legal basis.

Changes and updates of the data protection declaration

We ask you to regularly inform yourself about the content of our data protection declaration. We will adapt the data protection declaration as soon as changes to the data processing we carry out make this necessary. We will inform you as soon as the changes require your cooperation (e.g. consent) or other individual notification.

Security measure

We take appropriate technical measures in accordance with Art. 32 GDPR, taking into account the state of the art, the implementation costs and the type, scope, circumstances and purposes of the processing as well as the different probability of occurrence and severity of the risk for the rights and freedoms of natural persons and organizational measures to ensure a level of protection appropriate to the risk; The measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as the access, input, distribution, ensuring availability and its separation. We have also set up procedures to ensure that the rights of those affected are exercised, data are deleted and data are at risk. Furthermore, we take the protection of personal data into account when developing or selecting hardware, software and processes, in accordance with the principle of data protection through technology design and through data protection-friendly default settings (Art. 25 GDPR).
The security measures include the encrypted transmission of data between your browser and our server or the servers of our suppliers.

COLLABORATION WITH PROCESSORS AND THIRD PARTIES

If, as part of our processing, we disclose data to other people and companies (contract processors or third parties), transmit it to them or otherwise grant them access to the data, this only takes place on the basis of legal permission (e.g. if the data is transmitted to third parties, such as to payment service providers, in accordance with Art. 6 Paragraph 1 lit.
If we commission third parties to process data on the basis of a so-called “order processing contract”, this is done on the basis of Art. 28 GDPR.

TRANSFERS TO THIRD COUNTRIES


If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if this occurs as part of the use of third-party services or disclosure or transmission of data to third parties, this will only occur if it is done to fulfill our (pre-)contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we only process or have the data processed in a third country if the special requirements of Art. 44 ff. GDPR are met. This means that the processing takes place in compliance with officially recognized special contractual obligations (so-called “standard contractual clauses”).

RIGHTS OF THE DATA SUBJECTS

You have the right to request confirmation as to whether the data in question is being processed and to receive information about this data as well as further information and a copy of the data in accordance with Art. 15 GDPR.
You have accordingly. Art. 16 GDPR gives you the right to request that the data concerning you be completed or that incorrect data concerning you be corrected.
In accordance with Art. 17 GDPR, you have the right to demand that the data in question be deleted immediately, or alternatively, in accordance with Art. 18 GDPR, to request a restriction on the processing of the data.
You have the right to request that the data concerning you that you have provided to us be received in accordance with Art. 20 GDPR and to request that it be transmitted to other responsible parties.
In accordance with Article 77 of the GDPR, you also have the right to lodge a complaint with the responsible supervisory authority.

RIGHT OF WITHDRAWAL


You have the right to revoke your consent in accordance with Article 7 Paragraph 3 of the GDPR with effect for the future

RIGHT TO OBJECT


You can object to the future processing of your data at any time in accordance with Art. 21 GDPR. The objection can in particular be made against processing for direct advertising purposes.

Access and storage of information in end devices

By using our website, information (e.g. IP address) or the storage of information (e.g. cookies) can be accessed in your end equipment. This access or storage may involve further processing of personal data within the meaning of the GDPR.

In cases where such access to information or such storage of information is absolutely necessary for the technically error-free provision of our services, this is done on the basis of Section 25 Paragraph 1 Sentence 1, Paragraph 2 No. 2 TTDSG.

In cases in which such a process serves other purposes (e.g. the needs -based design of our website), this is only carried out on the basis of Section 25 (1) TTDSG with your consent in accordance with Art. 6 Para. 1 lit. a GDPR. The consent can be revoked at any time in the future.

Further information on the processing of your personal data and the relevant legal bases in this context can be found in the following sections on the specific processing activities on our website.

COOKIES AND RIGHT TO OBJECT TO DIRECT ADVERTISING

We set temporary and permanent cookies, i.e. small files that are stored on the devices of the users (explanation of the term and the function, see last section of this data protection declaration). Some of the cookies serve security purposes or are necessary to operate our online offering (e.g. to display the website) or to save the user decision when confirming the cookie banner. In addition, we or our technology partners use cookies to measure reach and for marketing purposes, about which users will be informed in the course of the data protection declaration.

A general contradiction to the use of cookies used for the purpose of online marketing can be used for a variety of services, especially in the case of tracking, via the US side http://www.aboutads.info/choices/ or the EU page http://www.youronlinechoices.com/ can be explained. Furthermore, the storage of cookies can be achieved by switching them off in the browser settings. Please note that not all functions of this online offer may then be able to be used.

DELETION OF DATA

The data we process will be deleted or its processing will be restricted in accordance with Articles 17 and 18 of the GDPR. Unless expressly stated in this data protection declaration, the data stored by us will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any legal retention obligations. Unless the data is deleted because it is required for other legally permissible purposes, its processing will be restricted. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax reasons.
According to legal requirements, storage takes place in particular for 6 years in accordance with Section 257 (1) HGB (trade books, inventories, opening balance sheets, annual accounts, trade letters, booking documents, etc.) and for 10 years in accordance with Section 147 (1) AO (books, records, position reports , Booking documents, commercial and business letters, documents relevant to taxation, etc.).

Provision of contractual services

We process inventory data (e.g., names and addresses and contact details of users), contract data (e.g., used services, names of contact persons, payment information) for the purpose of fulfilling our contractual obligations and services in accordance with Art. 6 Para. 1 lit b. GDPR. The entries marked as mandatory in online forms are required for the conclusion of the contract.
Users can optionally create a user account, in particular by being able to view their orders. As part of registration, the required mandatory information is provided to users. User accounts are not public and cannot be indexed by search engines. If users have terminated their user account, their data will be deleted with regard to the user account, unless their retention is necessary for commercial or tax law reasons in accordance with Article 6 (1) (c) GDPR. It is the users' responsibility to back up their data before the end of the contract if the contract is terminated. We are entitled to irretrievably delete all user data stored during the term of the contract.
As part of registration and re-registration as well as use of our online services, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests, as well as the user's protection against misuse and other unauthorized use. In principle, this data will not be passed on to third parties unless it is necessary to pursue our claims or there is a legal obligation to do so in accordance with Article 6 (1) (c) GDPR.
We process usage data (e.g., the websites of our online offer, interest in our products) and content data (e.g., inputs in the contact form or user profile) for advertising purposes in a user profile in order to show the user, for example, starting with product instructions based on your previously used services.
The deletion takes place after the expiry of statutory warranty and comparable obligations; the necessity of storing the data is checked every three years; In the case of legal archiving obligations, deletion occurs after their expiry (end of commercial law (6 years) and tax law (10 years) retention obligations); Information in the customer account remains until it is deleted.

CONTACT

When you contact us (via contact form or email), the user's information will be processed to process the contact request and process it in accordance with Article 6 Paragraph 1 Letter b) GDPR.
The information from the users can be stored in our customer relation hip management system and marketing automation platform ("CRM & Marketing System") or comparable inquiry organization.
We set the CRM, registration and marketing automation system "Hubspot", the provider Hubspot Inc. (25 First Street, 2nd Floor, Cambridge, MA 02141, USA) with branches in Ireland (One Dockland Cenblland (Am Postbahnhof 17 , 10243 Berlin) based on our legitimate interests (efficient and quick processing of user inquiries, applications and optimization of our online offer). For this purpose, we have concluded a contract with so -called standard contract clauses in which HubSpot only for processing the user data in accordance with our instructions and obliged to comply with the EU data protection level. Further information on Hubspots Data protection guidelines here: https://legal.hubspot.com/de/dpa and https://legal.hubspot.com/de/privacy-policy
Our registration service enables visitors to our website to learn more about our company, download content and provide your contact information and further demographic information. This information will be on the servers of our software partner Hubspot. They can be used by us to contact visitors to our website and to determine which services from our company are of interest to them. All information we collect is subject to this Privacy Policy. We use all the information recorded exclusively to optimize our marketing.
We delete the requests if they are no longer necessary. We review the necessity every two years; We permanently store inquiries from customers who have a customer account and refer to the customer account details for deletion. In the case of the statutory archiving obligations, the deletion takes place after the expiry (end of commercial law (6 years) and tax law (10 years).

CONTACT FORM

Diamond Dragons FZCO provides a web form for processing contact requests. When you use this form, your personal data will be processed if this is necessary to process your support request. In order to process your support request, it is necessary to process your contact details (email address), as well as the subject of the request, the category of the request and the content of the request (ticket description). If necessary, file attachments (usually screenshots) provided by you will also be processed. In addition, when you interact with the Hubspot support form, certain personal data is transmitted to the provider HubSpot for technical reasons (your IP address and other technical data such as the http referrer, date and time of the request, file accessed, etc.).

In addition, with your consent, personal data may be processed whose processing is not necessary for the purpose of processing support requests, but which facilitates or accelerates this in your interest. This primarily includes providing your telephone number and possibly also files attached to the support request if they contain personal data about you, the processing of which is not necessary in view of the purpose of the support request.

Please ensure that attached files, especially screenshots, do not contain any personal data from third parties.

If you only transmit data whose processing is necessary to process the support request, this data processing is carried out on the basis of our contractual obligation to you to provide the relevant support services (Art. 6 Para. 1. S. 1 lit. b GDPR). If you voluntarily provide additional, non-essential data, the data will be processed based on your consent (Art. 6 Para. 1 S.1 lit. a GDPR).

In connection with the processing of your support request, the above-mentioned personal data will be transferred to the USA. The recipient of the data is HubSpot (HubSpot, Inc., 25 First St., 2nd floor, Cambridge, Massachusetts 02141, USA). Further information about data protection at Hubspot can be found at: https://legal.hubspot.com/de/privacy-policy

Since personal data is transferred to the USA, further protective mechanisms are required to ensure the data protection level of the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Article 46 (2) (c) GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even through this contractual extension, we take additional security measures to protect our customers' personal data.

COMMENTS AND CONTRIBUTIONS

Users can only write comments and posts after prior registration. This requires consent to the storage and use of the data and acceptance of our data protection declaration.

COLLECTION OF ACCESS DATA AND LOG FILES

Based on our legitimate interests within the meaning of Article 6 Paragraph 1 Letter f of the GDPR, we collect data about every access to the server on which this service is located (so-called server log files). The access data includes the name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider .
Log file information is stored for security reasons (e.g. to investigate acts of abuse or fraud) for a maximum of seven days and then deleted. Data whose further storage is necessary for evidentiary purposes is excluded from deletion until the respective incident has been finally clarified.

ONLINE PRESENCES IN SOCIAL MEDIA

We maintain online presences within social networks and platforms in order to be able to communicate with customers, interested parties and users who are active there and inform them about our services. When accessing the respective networks and platforms, the terms and conditions and data processing guidelines of their respective operators apply.
Unless otherwise stated in the context of our data protection declaration, the data of the users will process if they communicate with us within the social networks and platforms, e.g. write articles on our online presences or send us messages.

COOKIES & RANGE MEASUREMENT

Cookies are information that is transmitted from our web server or third-party web servers to users' web browsers and stored there for later retrieval. Cookies can be small files or other types of information storage.
We use "session cookies" that are only stored on our online presence for the time of the current visit (e.g. in order to enable the use of our online offer at all). A randomly generated unique identification number is stored in a session cookie, a so-called session ID. A cookie also contains information about its origin and the storage period. These cookies cannot store any other data. Session cookies are deleted when you have finished using our online offering and, for example, log out or close the browser.
Users will be informed about the use of cookies as part of pseudonymous reach measurement in the context of this data protection declaration.
If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Saved cookies can be deleted in the browser's system settings. The exclusion of cookies can lead to functional restrictions of this online offer.
You can use the use of cookies that serve the range measurement and advertising purposes via the deactivation page of the network advertising legitiative (http://optout.networkadvertising.org/) and also the US website (http://www.aboutads.info/choices ) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).

Lifting spot

We use Hubspot for marketing activities on our website. Hubspot is a software company from the USA with a Hubspot Ireland Limited branch in 2nd Floor 30 North Wall Quay, Dublin 1, Ireland.
We use this integrated software solution for our own marketing, lead generation and customer service purposes. This includes, among other things, email marketing, which regulates the sending of newsletters and automated mailings, social media publishing and reporting, contact management such as user segmentation and CRM, landing pages and contact forms.
Hubspot uses cookies, small text files that are stored locally in the intermediate memory of your web browser on your device and enable an analysis of your use of the website by us. Hubspot evaluates the information recorded (e.g. IP address, the geographical location, type of browser, duration of the visit and called pages) so that we can generate reports via the visit and the visited pages.
Information recorded as well as the content of our website is stored on the Hubspot service providers. If you have given your consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR, the processing is carried out on this website for the purpose of website analysis.
Since personal data is transferred to the USA, further protective mechanisms are required to ensure the data protection level of the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Article 46 (2) (c) GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even through this contractual extension, we endeavor to obtain additional regulations and commitments from the recipient in the USA.
The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected.
You can permanently contradict the collection of the data by Hubspot and the setting of cookies by preventing the storage of cookies accordingly by your browser settings. You can object to the processing of your personal data at any time with effect for the future.

NEWSLETTER & EMAIL MARKETING AUTOMATION

The sending of the newsletter and the measurement of success are based on the consent of the recipient in accordance with Article 6 Paragraph 1 Letter a, Article 7 GDPR in conjunction with Section 7 Paragraph 2 No. 3 UWG or on the basis of legal permission in accordance with Section 7 GDPR. 7 Para. 3 UWG.
The registration process is logged on the basis of our legitimate interests in accordance with Article 6 Paragraph 1 Letter f of the GDPR and serves to provide proof of consent to receive the newsletter.
Cancellation/revocation - You can cancel your receipt of our newsletter at any time, i.e. revoke your consent. You will find a link to unsubscribe from the newsletter at the end of each newsletter. If users have only registered for the newsletter and canceled this registration, their personal data will be deleted.

INTEGRATION OF THIRD PARTY SERVICES AND CONTENT

Within our online offering, we use content or service offerings from third-party providers based on our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offering within the meaning of Art. 6 Para. 1 lit. f. GDPR) in order to improve their content and To integrate services such as videos (hereinafter referred to as “content”). This always assumes that the third party providers of this content are aware of the user's IP address, as without the IP address they would not be able to send the content to their browser. The IP address is therefore required to display this content. We strive to only use content whose respective providers only use the IP address to deliver the content. Third parties may also use so-called pixel tags (invisible graphics, also known as “web beacons”) for statistical or marketing purposes. The “pixel tags” can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information can also be stored in cookies on the user's device and can contain, among other things, technical information about the browser and operating system, referring websites, visiting time and other information about the use of our online offering, as well as can be linked to such information from other sources.
The following presentation provides an overview of third-party providers and their content, along with links to their data protection declarations, which contain further information on the processing of data and, in some cases already mentioned here, objection options (so-called opt-out):

Videos from the “YouTube” platform of the third-party provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Privacy Policy: https://policies.google.com/privacy, Opt-Out: https://adssettings.google.com/authenticated.
Within our online offering we use the marketing functions (so-called “LinkedIn Insight Tag”) of the LinkedIn network. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Every time one of our pages that contains LinkedIn functions is accessed, a connection is established to LinkedIn servers. LinkedIn is informed that you have visited our website with your IP address. With the help of the LinkedIn Insight Tag, we can analyze the success of our campaigns within LinkedIn or determine target groups for them based on the interaction of users with our online offering. If you are registered with LinkedIn, it is possible for LinkedIn to assign your interaction with our online offering to your user account. Even if you click on LinkedIn's “Recommend button” and are logged into your LinkedIn account, LinkedIn is able to assign your visit to our website to you and your user account. Since personal data is transferred to the USA, further protective mechanisms are required to ensure the data protection level of the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Article 46 (2) (c) GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even through this contractual extension, we endeavor to obtain additional regulations and commitments from the recipient in the USA. Privacy Policy: https://www.linkedin.com/legal/privacy-policy, Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Functions of the service or the Twitter platform can be integrated into our online offering (hereinafter referred to as “Twitter”). Twitter is an offering from Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. The functions include the display of our posts within Twitter within our online offering, the link to our profile on Twitter as well as the possibility of interacting with the posts and the functions of Twitter, as well as measuring whether users are aware of the advertisements we place on Twitter access our online offering (so-called conversion measurement). Since personal data is transferred to the USA, further protective mechanisms are required to ensure the data protection level of the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Article 46 (2) (c) GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even through this contractual extension, we endeavor to obtain additional regulations and commitments from the recipient in the USA. Data protection declaration: https://twitter.com/de/privacy, opt-out: https://twitter.com/personalization.
External code of the JavaScript framework “jQuery”, provided by the third-party provider jQuery Foundation, https://jquery.org.

DATA PROTECTION OFFICER

None need

Disclaimer

Liability for links:
Our offer contains links to external third-party websites over whose content we have no influence. We therefore cannot assume any liability for this external content. The respective provider or operator of the pages is always responsible for the content of the linked pages. The linked pages were checked for possible legal violations at the time of linking. Illegal content was not apparent at the time of linking. However, permanent control of the content of the linked pages is unreasonable without concrete evidence of a legal violation. If we become aware of any legal violations, we will immediately remove such links.

Liability for content:
The contents of our pages were created with great care. However, we cannot guarantee that the content is correct, complete or up-to-date. As a service provider, we are responsible for our own content on these pages in accordance with general laws in accordance with Section 7 Paragraph 1 TMG. However, according to Sections 8 to 10 TMG, as a service provider we are not obliged to monitor transmitted or stored third-party information or to investigate circumstances that indicate illegal activity. Obligations to remove or block the use of information in accordance with general law remain unaffected. However, liability in this regard is only possible from the time of knowledge of a specific legal violation. If we become aware of any corresponding legal violations, we will immediately remove this content.

copyright
The content and works on these pages created by the site operators are subject to German copyright law. Reproduction, processing, distribution and any kind of exploitation outside the limits of copyright law require the written consent of the respective author or creator. Downloads and copies of this page are only permitted for private, non-commercial use. If the content on this site was not created by the operator, the copyrights of third parties are respected. In particular contents of third parties are marked as such. Should you nevertheless become aware of a copyright infringement, we ask that you notify us accordingly. If we become aware of any legal violations, we will immediately remove such content.