top of page
Imprint
Information pursuant to § 5 TMG
DeepSpin GmbH
​
Berlin Office
Kurfürstenstraße 56
10785 Berlin
Germany
​
Potsdam Office
Wetzlarer Str. 86
14482 Potsdam
Germany
​
E-Mail: info@deepspin.io
Managing directors: Clemens Tepel, Pedro Silva
​
Registernummer: HRB 214034 B
Registergericht: AG Charlottenburg
USt-IdNr.: DE332956075
Website: www.deepspin.io
​
​
​
Privacy Statement
Definitions
Our data protection declaration is based on the terms used by European legislators within the framework of the Data Protection Ordinance (DSGVO). Our data protection declaration should be readable and comprehensible to the public, but also to our customers and business partners. To ensure this, we would first like to explain some of the terms used.
1. Personal Data
Personal data are any information about a particular or identifiable natural person ("data subject"). An identifiable natural person is a person who can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or based on one or more specific characteristics of the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
2. Data subject
A data subject is an identified or identifiable natural person whose personal data are processed by the controller.
3. Processing
Processing means any operation or any set of operations involving personal data or personal data, whether automatically collected, recorded, organized, structured, stored, adapted or modified, retrieved, consulted, used, made accessible, aligned or combined, restricted, deleted or destroyed by transmission, dissemination or any other means.
4. Profiling
Profiling is any form of automated processing of personal data consisting of the use of personal data to evaluate certain aspects of a natural person, in particular, to analyze or predict aspects of his/her work performance, economic situation, health, personal preferences, interests, reliability, conduct, location or movements.
5. Pseudonymization
Pseudonymization is the processing of personal data in such a way that the personal data can no longer be assigned to a specific person without the use of additional information, provided that this additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not assigned to a specific or identifiable natural person.
6. Controller
A controller is a natural or legal person, authority, agency or another body which, alone or in association with others, determines the purposes and means of processing personal data; if the law of the Union or the Member States determines the purposes and means of such processing, the controller or the specific criteria for its appointment may be determined by the law of the Union or the Member States.
7. Processor
A processor is a natural or legal person, authority or another body that processes personal data on behalf of the responsible person or controller.
8. Recipients
The recipient is a natural or legal person, authority, agency or any other body to which the personal data is disclosed, irrespective of whether or not it is a third party. However, authorities which may receive personal data in the course of a special investigation under the law of the Union or of a Member State shall not be considered recipients; the processing of such data by those authorities shall be carried out in accordance with the applicable data protection rules in accordance with the purposes of the processing.
9. Third parties
Third parties are natural or legal persons, authorities, agencies or institutions with the exception of the data subject, the data controller, the data processor and persons authorized to process personal data under the direct supervision of the data controller or data processor.
10. Consent
The data subject's consent is any clear, specific, informed and unambiguous statement of the data subject's wishes by which he/she declares his/her consent to the processing of his/her personal data by means of a declaration or a clear affirmation.
Name of the person responsible
The person responsible within the meaning of the DSGVO/GDPR and other national data protection laws of the member states as well as other data protection regulations is
DeepSpin GmbH,
Kurfürstenstraße 56,
10785 Berlin,
Germany
E-Mail: info@deepspin.io
Website: www.deepspin.ai
Data Protection Officer
You can contact our data protection officer as follows:
DeepSpin GmbH
Data Protection Officer
Kurfürstenstraße 56
10785 Berlin
Germany
General information on the collection and processing of your data
1. Scope of processing
We only process personal data of our website visitors and users if this is necessary to provide a functional website as well as our contents and services. The processing of personal data of our users takes place regularly only after consent of the user. An exception applies in those cases where prior consent cannot be obtained for real reasons and the law permits the processing of the data.
2. Legal basis
Insofar as we obtain the consent of the data subject for the processing of personal data, Art. 6 Abs. 1 lit. a DSGVO serves as the legal basis. In the processing of personal data required for the performance of a contract to which the data subject is a party, Art. 6 Abs. 1 lit. b DSGVO serves as the legal basis. This also applies to processing operations that are necessary to carry out pre-contractual measures. Insofar as the processing of personal data is required to fulfill a legal obligation to which our company is subject, Art. 6 Abs. 1 lit. c DSGVO serves as the legal basis. If the vital interests of the data subject or another natural person require the processing of personal data, Art. 6 Abs.1 lit. d DSGVO serves as the legal basis. If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 Abs. 1 lit. f DSGVO serves as the legal basis for processing.
3. Storage and deletion of your data
We delete or block personal data of the data subject as soon as the purpose of storage ceases to apply. Furthermore, data may be stored if this has been provided for by European or national legislators in EU regulations, laws or other regulations to which our company is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.
Provision of the website and creation of log files
1. Scope of processing
Every time you visit our website, our system automatically collects data and information from the computer system of the calling computer. This includes information such as
- Information about the type and version of your Internet browser,
- The operating system of your computer or smartphone,
- Your Internet service provider,
- Your IP address,
- Date and time of your access,
- Internet pages from which you came to us,
- Internet pages which you visit from our site.
The legal basis for temporary storage is Art. 6 Abs. 1 lit. f DSGVO.
We collect such technical information in so-called "log files" so that you can see our website correctly and we can identify the causes of any technical problems, for the technical optimization of our website, and for the security of our computer systems and networks. Our legitimate interest in data processing also lies in these purposes pursuant to Art. 6 Abs. 1 lit. f DSGVO.
The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. Typically, this technical information is deleted or made unrecognizable after seven days at the latest.
The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility of objection on the part of the user.
Contact forms
1. Description and scope of data processing
On our website, you can contact us via a contact form. If you take advantage of this option, the data entered in the input mask will be transmitted to us and saved. In addition to the specific input data, the IP address and the date and time of the request are collected and stored. You give your consent for the processing of the data within the framework of the sending process.
Alternatively, you can contact us by e-mail. In this case, the user's personal data transmitted by e-mail will be stored.
In this context, no data is passed on to third parties. In any case, the data is used exclusively for processing the conversation.
2. Legal basis for processing
The legal basis for the processing of data is Art. 6 Abs. 1 lit. a DSGVO if the user has given his consent.
The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 Abs. 1 lit. f DSGVO. If the e-mail contact aims at the conclusion of a contract, then the additional legal basis for the processing is Art. 6 exp. 1 lit. b DSGVO.
3. Purpose of data processing
The processing of the personal data from the input mask serves us alone for the treatment of your inquiry. In the event of contact by e-mail, this also constitutes the necessary legitimate interest in the processing of the data.
The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.
4. Duration of storage
We delete the data as soon as they are no longer necessary to achieve the purpose of their collection. For the personal data from the input mask of the contact form and those that were sent by e-mail, this is the case when the respective conversation with the user is finished. The conversation is terminated when it can be inferred from the circumstances that the facts in question have been finally clarified.
The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.
5. Possibility of opposition and deletion
The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by e-mail, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued.
All personal data stored in the course of contacting us will be deleted in this case.
You become a partner of DeepSpin
1. Description and scope of data processing
We offer the possibility to become a partner by providing personal data. The data is collected and stored in the contract process. The data will not be passed on to third parties. The following data is collected during the registration process:
- Your e-mail address,
- First name and surname,
- Company affiliation, if applicable,
- further data that we request from you and
any data that we receive in the course of the business relationship.
2. Legal basis for processing
The legal basis for processing the data is Art. 6 Abs. 1 lit. a DSGVO and Art. 6 Abs. 1 lit. b DSGVO if the user has given his consent, for the implementation of pre-contractual measures.
3. Purpose of data processing
Registration is required to fulfill the partner contract or to carry out pre-contractual measures.
4. Duration of storage
The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. This is the case for those during the registration process to fulfill a contract or to carry out pre-contractual measures when the data is no longer required for the execution of the contract. Even after conclusion of the contract, it may still be necessary to store personal data of the contractual partner in order to fulfill contractual or legal obligations. In particular, our company must observe the storage obligations of § 257 HGB in this context.
5. Possibility of opposition and elimination
As a user, you can change the data stored about you at any time. If the data is required to fulfill a contract or to carry out pre-contractual measures, premature deletion of the data is only possible insofar as there are no contractual or statutory obligations to the contrary.
Cookies and Tracking Technologies
1. What are cookies and tracking technologies?
Web browser cookies
A web browser cookie is a small text file sent from a website to your computer or mobile device, where it is stored by your web browser. Web browser cookies may store information such as your IP address or another identifier, your browser type and information about the content you display and interact with on the digital services. By storing such information, web browser cookies can store your preferences and settings for online services and analyze how you use online services.
Tracking technologies: Web beacons/Gifs, pixels, page tags, script
Email and mobile applications can contain small, transparent image files or lines of code to record how you interact with them. This information is used to help website and app publishers better analyze and improve their services.
2. Use, legal basis, and purpose
We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change.
We also use cookies on our website which enable an analysis of the user's surfing behavior.
When accessing our website, the user is informed about the use of cookies for analytical purposes and his or her consent to the processing of personal data used in this context is obtained. In this context, reference is also made to this data protection declaration.
The legal basis for the processing of personal data using technically necessary cookies is Art. 6 Abs. 1 lit. f DSGVO.
The legal basis for the processing of personal data using cookies for analytical purposes is Art. 6 Abs. 1 lit. a DSGVO.
The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For this, it is necessary that the browser is recognized even after a page change. We need cookies for the following applications: Currently none. The user data collected by technically necessary cookies are not used to create user profiles. The analysis cookies are used to improve the quality of our website and its content. Through the analysis cookies, we learn how the website is used and can thus continuously optimize our offer.
3. Duration of storage, possibility of objection and deletion
Cookies are stored on the user's computer and transmitted to our site. Therefore, you as a user also have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website in full.
Use of Google Analytics (with anonymization function)
1. Description and scope of data processing
We use the web analysis service Google Analytics (with anonymization function) to collect and analyze data about the behavior of website visitors. A cookie is placed on the user's computer for this purpose. When you visit our website, the following data is stored, among other things:
- IP address of the user's calling system (anonymized),
- the website from which the user has accessed the accessed website (so-called referrer),
- the subpages that are called up from the called up web page,
- the length of stay on the website or the subpages,
- the frequency with which the website or its sub-pages are accessed.
For web analysis via Google Analytics, we use the application "_gat. _anonymizeIp". Through this application, Google shortens your IP address and makes it anonymous when you access our websites from a member state of the European Union or another signatory state to the Agreement on the European Economic Area.
Each time you visit our website, such personal data, including the IP address of Internet access, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may pass on this personal data to third parties.
2. Legal basis for processing
The legal basis for processing the data is Art. 6 Abs. 1 lit. a DSGVO and additionally Art. 6 Abs. 1 lit. f DSGVO if the user has given his consent.
3. Purpose of data processing
The processing of users' personal data enables us to analyze the surfing behavior of our users. We are in a position to compile information about the use of the individual components of our website by evaluating the data obtained. This helps us to continuously improve our website and its user-friendliness. For these purposes, it is also in our legitimate interest to process the data in accordance with Art. 6 para. 1 lit. f DSGVO. By anonymizing the IP address, users' interest in protecting their personal data is sufficiently taken into account.
4. Duration of storage
The data will be deleted as soon as they are no longer needed for our recording purposes. The cookie has a duration of 60 days.
5. Possibility of opposition and deletion
As described above, you can prevent cookies at any time by making the appropriate settings in your browser and thus permanently prevent the setting of cookies. This would also prevent Google Analytics from setting a cookie. In addition, cookies already used by Google Analytics can be deleted via the browser at any time. Furthermore, you have the possibility to object to the collection of data by Google Analytics in connection with the use of this website as well as the processing of this data by Google and to exclude it. To do this, you must download and install a browser add-on from the link https://tools.google.com/dlpage/gaoptout This browser add-on informs Google Analytics via JavaScript that data and information about visits to websites may not be transmitted to Google Analytics. The installation of the browser add-ons is considered a contradiction by Google. If you later delete, reset or reset your settings, you will need to reinstall the browser add-on to disable Google Analytics.6 Further informationFor more information and Google's privacy policy, please visit https://www.google.com/intl/en/policies/privacy/ and http://www.google.com/analytics/terms/us.html. Google Analytics is explained at the following link: https://www.google.com/analytics/.
Privacy statement for the use of other services and technologies
1. Use of recruiting website (Talentlyft)
This recruitment website is operated by Talentlyft, which offers a human resource and applicant management software solution (https://help.talentlyft.com/en/articles/92705-general-terms-of-use). Data transmitted as part of your application will be transferred using TLS encryption and stored in a database. The sole controller of this data within the meaning of article 24 of the GDPR is the enterprise carrying out this online application process. Talentlyft’s role is limited to operating the software and this recruitment website and, in this context, being a processor under article 28 of the GDPR. In this case, the processing by Talentlyft is based on an agreement for the processing of orders between the controller and Talentlyft. In addition, Talentlyft processes further data, some of which may be personal data, to provide its services, in particular for operating this recruitment website.
2. Use of website builder & hoster (Wix)
We build and host this website on Wix. The privacy policy of Wix can be found here: https://www.wix.com/about/privacy
​
3. Use of script libraries (Google Web Fonts)
In order to present our contents correctly and graphically appealing across all browsers, we use script libraries and font libraries such as Google Web Fonts (https://www.google.com/webfonts/) on this website. Google Web Fonts are transferred to your browser's cache to avoid multiple loading. If your browser does not support Google Web Fonts or does not allow access, content will be displayed in a default font.
Calling script libraries or font libraries automatically triggers a connection to the library operator. In theory, it is possible - but currently also unclear whether and, if so, for what purposes - that operators of corresponding libraries collect data.
The privacy policy of the library operator Google can be found here: https://www.google.com/policies/privacy/
Underage persons
Our services are not intended for children under 13 years of age. We do not knowingly collect data from children under the age of 13. If you have not yet reached the age limit, do not use the services and do not give us your personal data. If you are a parent of a child below the age limit and you become aware that your child has submitted personal data to DeepSpin, please contact us at contact@deepspin.io and insist on exercising your rights to privacy.
Your rights
If your personal data is processed, you are affected within the meaning of the DSGVO and - after successful identification - you have the following rights vis-à-vis us:
1. Right to information
You can ask our company to confirm whether we process personal data concerning you by emailing us at contact@deepspin.io.
If such processing is available, you can request information from us in accordance with the DSGVO on a variety of issues, such as
(1) the purposes for which your personal data are processed;
(2) the categories of personal data being processed;
(3) the recipients or categories of recipients to whom your personal information has been or will be disclosed;
(4) the planned duration of the storage of your personal data or, if specific information is not possible, criteria for determining the storage period;
(5) the existence of a right to have your personal data corrected or deleted, a right to have processing restricted by our company or a right to object to such processing;
(6) the existence of a right of appeal to a supervisory authority;
(7) all available information about the origin of your personal data, provided that your personal data was not collected from you;
(8) the existence of automated decision-making including profiling in accordance with Art. 22 Abs. 1 and 4 DSGVO and - at least in these cases - meaningful information on the logic involved and the scope and intended effects of such processing for the data subject.
You have the right to request information as to whether the personal data concerning you are transferred to a third country or to an international organization. In this context, you may request to be informed of the appropriate guarantees pursuant to Art. 46 DSGVO in connection with the transmission.
2. Right to correction
You have the right to correct and/or complete your personal data if it is incorrect or incomplete. We will make the correction immediately.
3. Right to the limitation of processing.
Under certain conditions, you may request that the processing of your personal data be restricted.
(1) if you dispute the accuracy of the personal data concerning you for a period of time that enables us to verify the accuracy of the personal data;
(2) if the processing is unlawful and you refuse to delete your personal data and instead request that the use of your personal data be restricted;
(3) if we no longer need your personal data for the purposes of processing, but you do need it to assert, exercise or defend legal claims, or
(4) if you have filed an objection against the processing and it has not yet been determined whether the justified reasons of our group of companies and affiliated subsidiaries outweigh your reasons. If the processing of your personal data has been restricted, we may only process this data - apart from its storage - with your consent or to assert, exercise or defend legal claims or to protect the rights of another natural or legal person.
If the restriction of processing has been restricted in accordance with the above conditions, you will be informed by us before the restriction is lifted.
4. Right to cancellation
You can ask us to delete your personal data immediately and we are then obliged to delete this data immediately if one of the following reasons applies:
(1) Your personal data are no longer necessary for the purposes for which they were collected or otherwise processed;
(2) You revoke your consent, on which the processing was based pursuant to Art. 6 Abs. 1 lit. a or Art. 9 para. 2 lit. a DSGVO, and there is no other legal basis for the processing.
(3) You file an objection against the processing pursuant to Art. 21 Abs. 1 DSGVO and there are no overriding legitimate reasons for the processing, or you file an objection against the processing pursuant to Art. 21 Abs. 2 DSGVO.
(4) The personal data concerning you have been processed unlawfully.
(5) The deletion of personal data relating to you is necessary to fulfill a legal obligation under Union law or the law of the Member States to which the data controller is subject.
If we have made your personal data public and we are obliged to delete them pursuant to Art. 17 Abs. 1 DSGVO, we must take appropriate measures to inform other companies that process your personal data that you have requested them to delete all links to your personal data (and all copies thereof) ("right to be forgotten"), taking into account the available technology and the implementation costs.
The right to cancellation does not exist insofar as the processing is necessary
(1) to exercise freedom of expression and information;
(2) for the performance of a legal obligation required for processing under the law of the Union or of the Member States to which the controller is subject or for the performance of a task in the public interest or in the exercise of the official authority conferred on the controller;
(3) for reasons of public interest in the field of public health pursuant to Art. 9 Abs. 2 lit. h and i and Art. 9 Abs. 3 DSGVO, or
(4) to assert, exercise or defend legal claims.
5. Right of our company to inform third parties
If you have exercised your right of rectification, deletion or restriction of processing against our company, we are obliged to inform all recipients to whom we have disclosed your personal data of this rectification or deletion of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort. You also have the right to be informed by us of these recipients.
6. Right to data
You have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format. In addition, you have the right to pass this data on to another person in charge without obstruction by the person in charge to whom the personal data was provided, provided that
(1) processing is based on consent pursuant to Art. 6 Abs. 1 lit. a DSGVO or Art. 9 Abs. 2 lit. a DSGVO or on a contract pursuant to Art. 6 Abs. 1 lit. b DSGVO and
(2) processing is carried out by means of automated methods.
In exercising this right, you also have the right to request that the personal data concerning you be transferred directly from one data controller to another data controller, insofar as this is technically feasible. The freedoms and rights of other persons must not be affected by this.
The right to transferability shall not apply to the processing of personal data necessary for the performance of a task in the public interest or in the exercise of the official authority conferred on the controller.
7. Right of objection
You have the right to object at any time, for reasons arising from your particular situation, to the processing of personal data concerning you under Article 6(1)(e) or (f) of the DSBER; this also applies to profiling based on these provisions.
In this case, we will no longer process the personal data concerning you, unless there are compelling reasons for the processing which are worthy of protection and which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
If the personal data concerning you are processed for direct marketing purposes, you have the right to object at any time to the processing of the personal data concerning you for the purpose of such advertising; this also applies to profiling, insofar as it is associated with such direct marketing.
If you object to the processing for direct marketing purposes, we will no longer process the personal data concerning you for these purposes.
8. Right to revoke the data protection declaration of consent
You have the right to revoke your data protection declaration of consent at any time. The revocation of consent shall not affect the legality of the processing carried out on the basis of the consent until revocation.
9. Automated decision in individual cases including profiling
You have the right not to be subject to a decision based exclusively on automated processing - including profiling - that has legal effect against you or significantly impairs you in a similar manner.
This does not apply if the decision
(1) is necessary for the conclusion or performance of a contract between you and us,
(2) due to the legislation of the Union or of the Member States to which the person responsible is subject is admissible and that legislation contains appropriate measures to safeguard your rights and freedoms and your legitimate interests, or
(3) with your express consent.
In the cases mentioned in (1) and (3), the person responsible takes appropriate measures to protect the rights and freedoms as well as your legitimate interests, including at least the right to obtain the intervention of a person from our company to state his own position and to challenge the decision.
10. Right of appeal to the supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right of appeal to a supervisory authority, in particular in the Member State where you reside, work or suspect of infringement, if you believe that the processing of personal data concerning you is contrary to the DSGVO. Names and contact information of the competent supervisory authorities in the European Union can be found at http://ec.europa.eu/justice/data-protection/article-29/structure/data-protection-authorities/index_en.htm
The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy under Article 78 DSGVO.
Data security and integrity
Protecting the information you give us or we receive about you is a priority for us. We take appropriate security measures to protect your data from loss, misuse, and unauthorized access, alteration, disclosure or destruction. DeepSpin has taken steps to ensure the ongoing confidentiality, integrity, availability, and resilience of systems and services that process personal data and will restore availability and access to information in a timely manner in the event of a physical or technical incident.
Links to other websites
This data protection declaration applies to the websites of DeepSpin. Our website contains links to other websites. When you submit personal or other information to one of these websites, your information is subject to their privacy notices. We recommend that you read carefully the privacy policy of every website you visit.
Updates
We reserve the right to update this privacy policy from time to time. In the event that we make material changes that limit your rights or DeepSpin's obligations under this Privacy Policy, we will post a prominent notice in this section of this Privacy Policy informing users when they are updated.
Last updated: April 20, 2021
bottom of page