With this privacy statement, we inform you how personal data is collected, processed and used when you visit our website, when you apply, register for, and attend the Project A Tech Day 2023 and how we use the data in connection with the event and afterwards.
The person responsible within the meaning of the EU General Data Protection Regulation (GDPR) for the collection, processing and use of personal data of event participants (hereinafter “you”) in connection with the registration, execution, and documentation of the Project A Tech Day 2023 (hereinafter "Tech Day") is Project A Services GmbH & Co. KG, Julie-Wolfthorn-Straße 1, 10115 Berlin, Germany (hereinafter: "Project A" or "we"). If you have any questions regarding the registration and execution of the event, including the relevant data processing, please contact firstname.lastname@example.org at any time.
If you have any questions or suggestions regarding data protection, please do not hesitate to contact us. You are welcome to address your data protection concerns by e-mail to email@example.com. You can find our complete contact details at https://www.project-a.com/imprint.
In principle, it is possible to visit our website without providing additional personal data. Personal data is only collected if this is necessary for technical reasons to use our website or if you use certain functions or services offered on our website, e.g. the application form. The following access data are automatically recorded every time our website is accessed:
It is necessary to process this data to make it possible to visit the website and to guarantee the long-term functionality, availability and security of our systems. The legal basis for this data processing is Art. 6(1) lit b GDPR.
For the purposes described above, the access data specified is also temporarily stored in internal log files in order to generate statistical data on the use of our website, to further develop our website with regard to the usage habits of our visitors (e.g. if the proportion of mobile devices with which the pages are accessed increases) and for the general administrative maintenance of our website. The legal basis for this data processing is Art. 6(1) lit. f GDPR, based on our legitimate interest in appropriately optimising our website.
The information stored in the log files does not allow any conclusions about your person and we only store IP addresses in the log files in shortened, anonymised form.
We use the external service provider Webflow (Webflow Inc., 398 11th Street, 2nd Floor, 94103 San Francisco, CA, USA) to build and host our website. We do not use Webflow, nor have we instructed Webflow, to collect, analyse or process user data. We have nonetheless concluded a data processing agreement with Webflow, Inc., pursuant to Art. 28 GDPR, to ensure that Webflow processes any data in accordance with our instructions and the European data protection principles. If Webflow transfers data to companies outside Europe (e.g. to the USA), Webflow has taken contractual and technical precautions to ensure compliance with the European data protection principles. However, when personal data is processed outside Europe, it may in individual cases be the case that the rights of EU citizens cannot or cannot fully be enforced.
We have embedded videos on our website that are stored on YouTube and can be played directly on our website. The legal basis for integrating YouTube and the associated data processing is Art. 6(1) lit.f GDPR, based on our legitimate interest in integrating video and visual content to make our website more attractive.YouTube is a service provided by YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA (“YouTube”), which is provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google") for users from the European Economic Area, Switzerland and Liechtenstein and by Google LLC 1600 Amphitheatre Parkway Mountain View, CA 94043, USA for all other users. When you visit subpages on which YouTube videos are embedded, Google receives the information that you have retrieved from the corresponding subpage of our website. This happens regardless of whether you are logged in to Google or a YouTube account or not. If you are logged in, the information that you played the video will be directly assigned to your Google and YouTube accounts. If you do not want this to happen, you will need to log out before playing the video. Google stores your data and may use it for purposes of advertising, market research and the demand-oriented design of its own websites. Such an evaluation even occurs for users who are not logged in. You can configure your browser to refuse the storage of cookies as described above, or you can prevent the recording of data generated by cookies and relating to your use of this website and the processing of this data by Google by disabling the "Ads Personalisation" button in Google’s Ads Settings. In this case, Google will then also only display general advertising in connection with YouTube, which has not been selected based on information collected about you. If Google transfers data to companies outside Europe (e.g. to the USA), Google has taken contractual precautions to ensure compliance with the European data protection principles. However, when personal data is processed outside Europe, it may in individual cases be the case that the rights of EU citizens cannot or cannot fully be enforced, e.g. when US security authorities store and analyse data.
When you visit and use our website, a variety of cookies and comparable technologies (e.g. storage of data in the local memory of your device, so-called local storage technology or counting pixels, which serve to (temporarily) store information on specific users or usage processes) are used. Cookies are small text files stored in your web browser’s memory that contain information that can be used to recognise you when you visit web servers later on. Cookies cannot execute any programs or transfer viruses to your computer. For reasons of readability for cookies and the comparable technologies mentioned, the term "cookies" is used in the following.
In the following, we list the cookies we use by category, informing you in particular about the providers of the cookies, the storage period and the transfer of data to third parties. We also explain in which cases we obtain your voluntary consent to use the cookies and how you can revoke this consent.
All other cookies, in particular those for marketing purposes and optional tools as well as additional functions of our website, we use on the basis of your consent pursuant to Art. 6(1) lit. a GDPR. Access to and storage of information in your device then takes place on the basis of the implementation laws of the ePrivacy Directive of the EU member states, in Germany in accordance with § 25(1) TTDSG. Data processing with the help of these cookies only takes place if we have received your consent for this in advance.
If personal data is transferred to third countries outside Europe, we refer you to section 7 ("Data transfer to third countries"), also with regard to the possible associated risks. We will inform you if we have concluded standard contractual clauses or other guarantees with the providers of certain cookies and tools. If you have given your consent to use optional cookies, we (also) transfer the data processed to third countries on the basis of this consent (Art. 49(1) lit. a GDPR). You can revoke your consent by changing the cookie settings and declining all optional cookies via the cookie settings at the bottom of this page.
Necessary cookies. We use certain cookies to enable the basic functions of our website ("necessary Cookies "). Without these cookies, we would not be able to provide our website. Therefore, necessary cookies are used without your consent in accordance with § 25(2) TTDSG and based on our legitimate interests according to Art. 6(1) lit. f GDPR or to fulfil a contract or to perform pre-contractual measures according to Art. 6(1) lit. b GDPR.
We use such cookies in particular:
You can prevent the storage of cookies by adjusting your browser settings to disable the acceptance of cookies via this website. If you do not accept cookies, however, this may in some cases lead to considerable functional restrictions on our website.
Analysis Cookies. Other optional cookies are used to analyse the use of our websites for statistical purposes. This enables us to find out, for example, which type of device was used to access our websites and how the use was made. This enables us to adjust the pages and the layout and the individual page elements to the most important browser types and end devices and to adapt them to actual usage habits. We only use these analysis cookies if you agree to this use via our cookie banner. The legal basis for the data processing in connection with the analysis cookies is your consent Art. 6 (1) lit. a DSGVO. You can revoke your consent by calling up the cookie settings and declining all optional cookies via the cookie settings adjustment button at the bottom of the page.
We have made the following data protection settings for Google Analytics:
The following data is processed by Google Analytics:
To apply and register for the Project A Tech Day, we collect various personal data. Usually, these are title, surname, first name, position, company and seniority level, functional area as well as contact data (e.g. e-mail address, LinkedIn profile). This data is referred to in the following as "participant data". We collect the participant data as part of the application process. Mandatory data are marked as such. We use your participant data to plan and organize the event (e.g. to the expected number of participants), invite you and to contact you in the course of communication if necessary. The legal basis for this data processing is Art. 6 para. 1 lit. b GDPR. We also collect information regarding your interest in networking at the Project A Tech Day to understand what participants will expect from this year’s Project A Tech Day, improve the overall efficiency and experience of networking at the event and allow interested parties (us or partners of the event) to contact interested participants. You may also have the option of providing further information when registering (e.g. details of interests and wishes with which you can provide us with further details on your planned participation in the event). These data are summarised below as "voluntary data". We would like to meet your needs about your participation in the Project A Tech Day as best as possible and adapt our event optimally to the interests of the participants. The legal basis for this data processing is Art. 6 para. 1 lit. f GDPR, based on our common interest in an event that is as closely related as possible to the interests of the participants. We store the above-mentioned data in our contact database for future contact maintenance (see also Section 2.6 and 2.7) in connection with your existing data, if applicable.
Tally. We use the external service Tally (BV) (Muidepoort 19/ A, 9000, Gent, Belgium) for our registration form. As a European Service Provider, Tally adheres to the GDPR and the European data protection principles.
Make. We use the external service Make from Celonis SE (Theresienstr. 6, 80333 München, Deutschland) to connect several of our tools and services. As a European Service Provider, Celonis adheres to the GDPR and the European data protection principles.
Eventbrite. We use the external service provider Eventbrite (Eventbrite Inc., 535 Mission Street, 8th Floor, 94105 San Francisco, CA, USA) for the onsite registration system and the payment for onsite tickets. We have concluded a data processing agreement with Eventbrite, Inc., pursuant to Art. 28 GDPR, to ensure that Eventbrite processes the data in accordance with our instructions and the European data protection principles. If Eventbrite transfers data to companies outside Europe (e.g. to the USA), Eventbrite has taken contractual precautions to ensure compliance with the European data protection principles. However, when personal data is processed outside Europe, it may in individual cases be the case that the rights of EU citizens cannot or cannot fully be enforced. You can revoke consent and withdraw your registration at any time.
Mailjet. We use the external service provider Mailjet (Mailjet SAS, 30 Rue Blondel, 75002 Paris, France) to send you E-mails for the registration for the event and, if you decide to subscribe to them, for sending our newsletters and managing our subscriptions. As a European Service Provider, Mailjet adheres to the GDPR and the European data protection principles.
In our newsletters, we use market-standard technologies to allow us to measure interactions with the email (e.g. opening of the email, which links are clicked on). We use this data for general statistical evaluations as well as to optimise and further develop our content and customer communication. This is done with the help of small graphics (pixels) embedded in the emails. The data is collected in pseudonymous form only and not linked to your other personal data. The legal basis for this is our aforementioned legitimate interest pursuant to Art. 6(1) lit. f GDPR. With our newsletters, our aim is to share content that is as relevant as possible for our users and to better understand what the readers are actually interested in. If you do not want your usage behaviour to be analysed in this way, you can unsubscribe from the newsletter at any time or disable the display of graphics in your email client by default. The data about how you interact with our newsletters is stored in pseudonymous form for 30 days before being completely anonymised.
During the Project A Tech Day, we may use your participant data for organizational reasons (to determine your attendance or to contact you). The legal basis for this data processing is Art. 6 para. 1 lit. b GDPR.
Recordings (photo and video) will be made during the event. This includes stream recordings for the online part of the event and recordings made by photographers and camera teams for the on-site part. We would like to ensure the possibility of documenting the event for internal purposes or the purpose of external presentations.
We would like to use the images and recordings taken in the context of our external presentation on our website and in our social media profiles (Facebook Fanpage, Twitter, LinkedIn, Xing, YouTube) in connection with the documentation of the Project A Tech Day. To do this, we first want to edit individual recordings (e.g. by selecting the image cut) and upload the edited recordings to the websites. The respective websites are freely accessible on the Internet and can therefore be accessed worldwide. The subpages of these websites, including any recordings, can be found via search engines. The providers of social media platforms process and use data that is posted on the platforms for their purposes if necessary. As soon as the content has been posted on the platforms, third parties (e.g. users of the platforms) can view, share, or download the content. In principle, recordings of speakers in the sessions will be published. Individual participants will only show up on the screen when they ask questions. Messages written to the chat will be shown to all speakers and participants in the session, with your name and title next to them, and might be read by the speaker during the session. There are also other networking features on the event platform, which allow you to interact with other participants, e.g. 1:1 video calls. These will also make your details available to other participants, but won’t be recorded or published.
You can contact us using the contact details given in section 1 and inform us that you wish to object to the use of the recordings on which you can be identified. The legal basis for this data processing is Art. 6 para. 1 lit. f GDPR, based on our legitimate interest in the documentation and advertising of our event as well as our external presentation. The recordings are usually published within a period of up to 48 months after the event.
We will also use your participant data to provide you with further information on workshops, documents, or presentations from us or our speakers or further information on the Project A Tech Day. The legal basis for this data processing is Art. 6 para. 1 lit. b GDPR.
We store the fact that you attended the Project A Tech Day this year in our contact database so that we can inform you by email about similar future events and the next Project A Tech Day.
The legal basis for this data processing is Art. 6 para. 1 lit. f GDPR, based on our interest in advertising our future events. We store this data for the duration of our business relationship. If you do not wish to be contacted again, you have the right to object to this use of your data at any time. Please do not hesitate to contact us at any time using the contact details listed in section 1. You will also always find a link to unsubscribe in the emails.
Our website may contain links to websites and online content of other providers not affiliated with us. If you activate these links, we naturally no longer have any influence on which data is collected by the respective providers and which data they record. For more detailed information on data collection and use, please refer to the privacy policies of the respective providers. Since the collection and processing of data by third parties is beyond our control, we cannot assume any responsibility for this.
We maintain presences in the following social media networks:
If you visit our Facebook fan page, your data may also be processed in countries outside the European Union where the level of data protection is lower than in the European Union (e.g. the USA). We have contractually agreed with Facebook to comply with the European Data Protection Principles, in the case of data processing outside Europe. However, it may in individual cases be possible that the rights of EU citizens cannot be enforced or cannot be fully enforced, e.g. if US security authorities store and analyse data. Please therefore check carefully what personal information and messages you share on Facebook and, if in doubt, use other contact options offered by us to get in touch with us.
For more information on the type and scope of the statistics that we receive from Facebook about the visits and interactions with our fan page (so-called insights), please also see the Facebook information on page insights. Here you will also find a detailed description of the data that is processed when you visit the fan page to create these statistics (e.g. the content accessed, likes, subscriptions, recommendations and comments as well as clicks, mouse movements and date, time, Facebook user ID and demographic data. If you want to assert your rights against Facebook, you can use an online form from Facebook or contact us as mentioned above.
We are responsible for our tweets and information shared by us. Twitter provides the technical platform and infrastructure for message exchange. If you communicate with us via Twitter and respond to our tweets, your data may also be processed in countries outside the European Union where the level of data protection is lower than in the European Union (e.g. in the USA). We have contractually agreed with Twitter to respect the European data protection principles. However, when data is processed outside Europe, it may in individual cases be the case that the rights of EU citizens cannot or cannot fully be enforced, e.g. when US security authorities store and analyse data. Please check carefully what personal information and messages you share on Twitter and, if in doubt, use other contact options offered by us.
We may also receive statistics from Twitter about the reach of our social media activity (e.g. the number of hits, interactions such as retweets and aggregated demographic and other information or audience insights and other statistics about followers).
We are responsible for our own content in our LinkedIn company profile and information shared by us there. LinkedIn provides the technical platform and infrastructure for the social network. If you communicate with us on LinkedIn, your data may also be processed in countries outside the European Union where the level of data protection is lower than in the European Union (e.g. the USA). We have contractually agreed with LinkedIn to respect the European Data Protection Principles. However, when data is processed outside Europe, it may in individual cases not be possible to enforce the rights of EU citizens, or not fully enforce them, e.g. when US security authorities store and analyse data. Please check carefully what personal information and messages you provide via LinkedIn and if in doubt, use other contact options we offer.
We may also receive statistics from LinkedIn regarding the use of our social media presence (such as the number of views of articles and posts, interactions such as "likes" and comments, and aggregated demographic and other information such as aggregated positions and locations of followers and group members or other statistics).
We will pass on the data raised by us in the context of the registration or the event in principle only if:
- you have given your express consent according to Art. 6 para. 1 lit. a GDPR,- the disclosure according to Art. 6 para. 1 lit. f GDPR is necessary for the assertion, exercise, or defense of legal claims and there is no reason to believe that there is an overriding legitimate interest in not disclosing the data,
- we are legally obliged to disclose such information according to Art. 6 para. 1 lit. c GDPR or
- this is legally permissible and, according to Art. 6 para. 1 lit. b GDPR, necessary for the execution of contractual relationships with you or for the implementation of pre-contractual measures which are taken at your request,
- insofar as this is stated in these data protection notices (in particular concerning the publication of photo and video recordings on the social media platforms).
Also, the data may be passed on in connection with official inquiries, court orders, and legal proceedings if this is necessary for legal prosecution or enforcement.
Where this is not possible, we base the transfer of data on exceptions to Art. 49 DSGVO, in particular your express consent or the necessity of the transfer for the performance of the contract or for the implementation of pre-contractual measures.
If a transfer to a third country is provided for and there is no adequacy decision or suitable guarantees, it is possible and there is a risk that authorities in the respective third country (e.g. intelligence services) may gain access to the transferred data in order to collect and analyse it, and that the enforceability of your affected rights cannot be guaranteed.
You have the right to request information about the processing of your personal data by us at any time. We will explain the data processing to you in the context of the provision of information and provide you with an overview of the data stored about your person. If data stored by us is incorrect or no longer up to date, you have the right to have this data corrected. You may also request that your data be deleted. Should deletion not be possible in exceptional cases due to other legal provisions, the data will be blocked so that it is only available for this legal purpose. You can also have the processing of your data restricted, e.g. if you believe that the data stored by us is not correct. You also have the right to data transferability, i.e. we can send you a digital copy of the personal data you have provided on request.
To exercise the rights described here, you can contact us at any time using the contact details listed in section 1 above. This also applies if you wish to receive copies of guarantees proving an adequate level of data protection.
Finally, you have the right to complain to the data protection supervisory authority responsible for us. You may exercise this right with a supervisory authority in the Member State of your residence, workplace, or alleged infringement. The competent supervisory authority is in Berlin: Berlin Commissioner for Data Protection and Freedom of Information, Friedrichstr. 219, 10969 Berlin.
According to Art. 7 para. 3 GDPR, you have the right to withdraw your consent to us at any time. The consequence of this is that we will no longer continue the data processing based on this consent in the future. The revocation of the consent does not affect the legality of the processing carried out based on the consent up to the revocation.
If we process your data based on legitimate interests according to Art. 6 para. 1 lit. f GDPR, you have the right according to Art. 21 GDPR to object to the processing of your data and to give us reasons which arise from your particular situation and which, in your opinion, indicate that your interests worthy of protection prevail. If you wish to object to data processing for direct marketing, you have a general right of objection, which we will also implement without stating reasons. Also, you will always find an unsubscribe link in our information emails on future events. Concerning the preparation of the photo and video recordings, you can also contact the photographer or cameraman at any time and inform them that you do not want any recordings of yourself. If you wish to exercise your right of withdrawal or objection, simply send an informal message to the contact details listed above.
Last update: July 2023