Privacy Policy
Unic is happy that you have visited our website and that you are interested in our company.
We updated our privacy policy on September 21st 2023.
This privacy policy contains information for the users of this website, in accordance with the German Federal Data Protection Act (BDSG), the German Telemedia Act (TMG), the European Data Protection Regulation (DSGVO) and the Swiss Data Protection Act (DSG), about the type, scope and purpose of personal data collection and use by us – Unic – in line with the legal notice.
We want you to know which personal data we collect during your visit to the website and during your use of the services offered through the website and how we process and use them. You will find out more on this topic below. Moreover, we would like to inform you about measures we take to protect your personal data against manipulation, loss, destruction and misuse.
Please note that security gaps can essentially occur during data transfer on the internet. Complete protection against access by third parties is not possible.
Our Data Protection Officer
Diego Martinez Crestelo and Günter Glasauer, Data Protection Officers.
Email: datenschutzbeauftragter@unic.com or dataprotectionofficer@unic.com
The postal addresses can be found in the Legal notice. You can send your communication to any company address.
General information on data processing
Data transfer to third countries
The DSGVO guarantees an equally high level of data protection within the European Union. When selecting our service providers and cooperation partners, we therefore rely on European partners wherever possible if your personal data is to be processed.
We use the hosting service Vercel (Vercel Inc, 340 S Lemon Ave #4133, Walnut, CA 91789, USA) to provide our website. The website is delivered on the AWS Cloud in Frankfurt (AWS eu-central-1).
We use the digital asset management
provider Cloudinary (Cloudinary UK Ltd, of 38 Chancery Lane, The Cursitor Building,
London WC2A1EN, U.K.) to manage and deliver our images and videos. Our data are stored at the Cloudinary Datacenter in
Frankfurt, Germany (AWS Cloud in Frankfurt).
We use the customer relationship management (CRM) system Microsoft Dynamics 365 Sales & Marketing (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399 USA) to link your contact data with your contact data from project enquiries and existing relationships. Our data are processed in the data center CRM4 in the EU. The legal basis for this data processing is section 25 (1) TTDSG.
We use the content management system (CMS) Contentful (Contentful GmbH Berlin, Germany/ Contentful Inc., 101 Montgomery Street, Suite 1900, San Francisco, CA 94104. USA) to edit our digital content and display it on our website.
We use Office 365 by Microsoft (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA) for our office applications; the data is stored in Switzerland.
Collection and handling of personal data
«Personal data» means any information concerning the personal or material circumstances of an identified or identifiable individual. Therefore, your personal data include all data that permit your identification, such as your name, address, telephone number or email address. We collect, process and use personal data exclusively if and to the extent that you voluntarily provide us with the data concerning you for the particular data collection or use, that a provision of law permits the particular data collection and/or use, or that you have given your prior explicit consent thereto.
We need your personal data for the purpose of effective provision of our services.
Website use / server log files or access data
We collect data about page access and store them as «server log files». The following data are logged in this way:
Time of access
Pages / files accessed
Source / reference from which you reached the page
Browser, version and operating system used
IP address used
Generally, these data are stored for 4 weeks and then automatically deleted. Such storage in so-called server log files is necessary for technical reasons and to ensure system security. This data is evaluated anonymously exclusively for statistical purposes and to improve the quality of our website. An allocation of this data to a specific or determinable natural person is neither carried out by us nor by third parties on our behalf. Personal user profiles are also not created with the help of this data. However, we reserve the right to check the server log files retrospectively if there are concrete indications of illegal use.
The legal basis for the data processing is the exercise of legitimate interests (Art. 6 para. 1 lit. f DSGVO). The legitimate interest lies in the continuous improvement, as well as safe and trouble-free operation of our website.
Communication via contact form
If you contact us via contact form, the collection, processing and use of your voluntarily provided contact data such as first name, surname, email address, telephone number and company will be carried out.
The legal basis for the storage of these contact data, which you have voluntarily provided, is the exercise of legitimate interests. We use these data for the purpose of contacting you and, if necessary, answering your enquiry as well as for technical administration.
For all services, our CRM system Microsoft Dynamics 365 Sales & Marketing combines your contact data with your data from project enquiries and existing relationships, in order for us to provide you with the best possible advice.
The data are deleted as soon as they are no longer required to achieve the purpose for which they were collected. You can object to the use of your personal data for marketing purposes at any time. You can also revoke any consent you may have given separately. A communication in text form to dataprotectionofficer@unic.com or by letter to one of the company addresses is sufficient for this purpose.
Communication by email
If you contact us by email, the collection, processing and use of your voluntarily provided contact data such as title, first name, surname, email address, telephone number and company will only be carried out for a specific purpose, either to receive and, if necessary, answer your enquiry and for technical administration.
We generally process personal data for the performance of our services or in the context of a corresponding contract initiation.
The legal basis for the storage of these contact data, which you have voluntarily provided, is the exercise of legitimate interests. We use these data for the purpose of contacting you and, if necessary, answering your enquiry as well as for technical administration.
As communication by email does not use a secure data connection, please refrain from sending confidential information via this means. The email contact will be saved in the inboxes of the corresponding email addresses.
The data are deleted as soon as they are no longer required to achieve the purpose for which they were collected. You can object to the use of your personal data for marketing purposes at any time. You can also revoke any consent you may have given separately. A communication in text form to dataprotectionofficer@unic.com or by letter to one of the company addresses is sufficient for this purpose.
Communication via Chatbot
For the operation of our chatbot, we rely on the services of the company OpenAI. OpenAI uses strict access controls to limit access to this data and stores your request and the chatbot response securely on servers in the USA for up to 30 days. However, we ask you to refrain from sending confidential information to the chatbot.
If you communicate with us via chatbot, the questions you ask, the chatbot’s answers and the time of the chatbot interaction are also collected by us in anonymised form. The authors of the questions are therefore not traceable or identifiable to us. The data will be deleted as soon as it is no longer required for the purpose for which it was collected.
The legal basis for the storage of this data, which you provide voluntarily, is the pursuit of legitimate interests. We use this data for the specific purpose
Making appointments in Outlook and on Unic.com
We offer the online service of making an appointment directly with a Unic employee via e-mail or on Unic.com.
When you make an appointment, your personal data such as title, first and last name, language, country, company and e-mail address & telephone number are collected, processed and linked to other existing personal data. We use your data to improve our support, marketing and sales and to keep in touch with you.
We use MS Booking from Microsoft as our appointment scheduling solution. Your data is processed in MS Office 365 (Outlook, Teams, Sharepoint, etc) and in our CRM system Microsoft Dynamics Sales & Marketing. The data is stored in Microsoft data centers in the EU, EEA and Switzerland.You can revoke your consent at any time, a notification in text form to datenschutzbeauftragter@unic.com or by letter to one of the site addresses is sufficient for this.
Online job applications
The application data you send us, consisting of first name, surname, telephone, email, date of birth, as well as the documents you provide, will be collected and processed electronically by us for the purpose of processing your application.
The legal basis for the processing of your application is Art. 6 para. 1 lit. b DSGVO.
If your application is followed by the conclusion of an employment contract, your transmitted data may be stored by us in your personnel file for the purpose of the usual organisational and administrative process in compliance with the relevant legal provisions.
Once your data have been entered and transmitted, they are sent directly to the server of our external service provider Rexx Systems Schweiz AG via an encrypted connection. All data are encrypted on the basis of the SSL procedure.
If your job application is rejected, the data transmitted by you will be deleted automatically twelve months after notification of the rejection. This does not apply if longer storage is necessary due to legal requirements or if you have expressly agreed to longer storage in our database of prospects.
Collection and use of data for marketing purposes
We also use your data to communicate with you about Unic's products, services and/or marketing campaigns in accordance with the following subsections and to recommend Unic products or services that may be of interest to you.
We will retain the information we hold for as long as it is necessary for the purpose for which it was collected. Furthermore, we retain the information in order to comply with legal and regulatory documentation and retention obligations and for as long as claims could be asserted against us or as long as this is required by legitimate interests, in particular the security of our data.
In the interests of data minimisation, we only collect and process your business-related data such as title, first name, surname, language, business telephone number, business email address, position, company, company address and country. We only collect personal data such as personal address and date of birth in cases where these have been explicitly transmitted to us voluntarily by you.
Data from contact forms, emails or telephone enquiries are used for marketing purposes if the enquiry involves a possible purchase initiation.
Data from application forms or other sources of applications will not be used for marketing purposes.
You can object to the use of your personal data for marketing purposes at any time. Similarly, you can revoke any consent you may have given separately.
You have the following rights:
You can request information about your personal data and certain aspects of the processing;
You may request rectification of your personal data;
You may request the deletion of your personal data;
You may request the restriction of the processing of your personal data;
You may object to the processing of your personal data.
If you have consented to the collection, processing or transfer of your personal data for a particular purpose, you may withdraw your consent for that particular processing at any time. Once we have received notice that you have withdrawn your consent, we will no longer process your personal data for those particular purposes.
Notification in text form to dataprotectionofficer@unic.com or by letter to one of the site addresses will suffice for this purpose.
Newsletter
For the newsletter, we collect the personal data of salutation, first and last name, language, country, company and email address. In the case of electronic newsletter registrations, we use the so-called double opt-in procedure before storing the information provided in order to ensure the authorship of the email address entered. Accordingly, a newsletter can only be sent by email if you have expressly confirmed this to us beforehand.
We use the Inxmail Professional solutionto send the newsletter and host these data with the provider Inxmail GmbH, 79106 Freiburg/Germany. When sending the newsletter, we collect openings and clicks of the newsletter with the intention of improving our content and newsletters.
In our CRM system Microsoft Dynamics 365 Sales & Marketing, your newsletter data are linked to your contact data from project enquiries and existing relationships.
Employees of our customers receive the newsletter because they already have a business relationship with Unic and the content of the newsletter relates to the same service offering.
If you no longer wish to receive newsletters from Unic at a later date, you can revoke your consent at any time. A click on the link provided or a message in text form to dataprotectionofficer@unic.com or by letter to one of the site addresses is sufficient for this purpose.
Content marketing & news subscriptions
We offer various free whitepapers and studies on our website unic.com.
The free content is available to you directly after confirming the «Send» button. You will also receive an email with a download link to unic.com. The email is sent via Inxmail.
To receive these whitepapers, there are separate forms in which we compulsorily request the data required for the transaction and obtain your consent for Unic to store your email address to send you the resource and to use it for the purpose of direct advertising and contact initiation as part of the services offered by Unic. These data will also be stored for evaluation purposes. Your data will not be passed on to third parties.
Your data are stored in Inxmail and in Office 365. For further use of your data, they are recorded in our CRM system Microsoft Dynamics 365 Sales & Marketing and linked to your contact data from project enquiries and existing relationships.
The data are deleted as soon as they are no longer required to achieve the purpose for which they were collected.
You can object to the use of your personal data for marketing purposes at any time. You can also revoke any consent you may have given separately. A short message via email to dataprotectionofficer@unic.com or a letter to one of our locations is sufficient.
Correction, deletion or restriction of the processing of your data can be found in the section «Your rights as a data subject».
Website tracking technologies
We are a curious digital agency. That's why we want to analyse how people use our website. We use third-party website tracking technologies to provide our services and continuously improve them and so that we can see how often you visit us.
Information about the services, cookies and technologies we use can be found in our «Consent Management Platform». You can also choose which technologies you wish to accept and revoke or change these settings at any time in the privacy settings in the footer with effect for the future.
If services are deactivated for our website, it may no longer be possible to use all thefunctionalities of the website to their full extent.
Services
Usercentrics Consent Management Platform
This website uses the consent management service of Usercentrics GmbH. This service is used on our website as a processor for the purpose of consent management. The legal basis is legitimate interest pursuant to Art. 6 para. 1 let. f DSGVO.
Google Analytics
Our website uses Google Analytics (Universal Analytics, Google Analytics 4), a service provided by Google Ireland Ltd., Google Building Gordon House, Barrow St, Dublin 4, Ireland and Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA; jointly “Google”, whereas Google Ireland Ltd. is responsible for the processing of personal data. The service uses “cookies” – text files that are saved on your device. The information generated by the cookies is usually transferred to a Google server in the US and saved there. This website uses IP anonymisation. Within the member states of the EU and the European Economic Area, the IP addresses of users are truncated so that you cannot be identified as an individual. As part of the agreement on data processing which the website operators have concluded with Google Inc., Google will use the information gathered to analyse website use and website activity and provides services related to internet use. You can prevent cookies from being saved to your device by changing the settings of your internet browser. We cannot ensure you will be able to use all functionalities of this website without limitations if your browser does not allow cookies. You can also use a browser plug-in to prevent the information gathered through cookies (including your IP address) from being sent to Google Inc. and used by Google Inc. The following link takes you to the plug-in: Browser add-on to deactivate Google Analytics
Google Remarketing
This website uses Google Remarketing technology by Google Inc. (“Google”). For this purpose, cookies are saved on your computer that third-party providers including Google use to track which of our pages are visited with your browser. Using this information, our ads may be displayed to you at a later point in time on other websites, for instance, in the Google search or on websites of the Google network. More information on data protection at Google and on remarketing and how it works is available in the Google privacy policy.
You can also deactivate cookies in your browser settings and/or refuse Google Remarketing tracking permanently in Google’s ad settings: Settings for personalised ads
Microsoft Clarity
We use Microsoft Clarity, a web analytics tool provided by Microsoft Corporation. Clarity allows us to collect information about users' interactions with our website in order to improve the user experience and optimize the performance of our website. This includes, but is not limited to, tracking mouse movements, clicks, scrolling, and keystrokes. Please note that we do not collect personally identifiable information such as names or email addresses through Clarity. All data collected through Clarity is for statistical and analytical purposes only.
SalesViewer
On this website, data is collected and stored for marketing, market research and optimization purposes using the SalesViewer® technology of SalesViewer® GmbH on the basis of legitimate interests of the website operator (Art. 6 para.1 lit.f DSGVO).
For this purpose, a javascript-based code is used to collect company-related data and the corresponding usage. The data collected using this technology is encrypted using a non-reversible one-way function (known as hashing). The data is immediately pseudonymized and is not used to personally identify the visitor to this website.
The data stored as part of Salesviewer will be deleted as soon as it is no longer required for its intended purpose and the deletion does not conflict with any statutory retention obligations.
You can object to the collection and storage of data at any time with effect for the future by clicking on this link https://www.salesviewer.com/opt-out to prevent the collection by SalesViewer® within this website in the future. In doing so, an opt-out cookie for this website will be placed on your device. If you delete your cookies in this browser, you must click this link again.
ipmeta.io
This website uses the service ipmeta.io, which is a freely available plugin. We use the plugin to analyse «service provider», «network domain» and «network type». We like to see which companies or universities have visited our website. The retrieval of data for the network-related dimensions is based on your IP address. Unic as well as IpMeta never store any data of the visitor:s, including the IP address. The plugin is only used to convert it to network data. The data collected for this purpose is then immediately deleted.
The following link will take you to the plugin: https://ipmeta.io.
Zapier
For the integration of various databases and tools, we use Zapier, a service by Zapier Inc, 548 Market St #62411, San Francisco, California 94104, USA. In this process, customer data may be transmitted with the exception of payment data.
The following data are collected within the process:
First name
Last name
Company name
Email address
The legal basis is section 25 (1) TTDSG. For more information on Zapier's privacy policy, please visit: https://zapier.com/privacy
Rebrandly
We use the link shortener from Rebrandly, 31 Westland Square, Dublin 2, Ireland, to provide you with short and memorable URLs (website addresses). This will redirect you to the full URL on websites. The personal information used for redirection (such as IP address, browser settings) is not stored or used for any other purpose.
The legal basis is legitimate interest (Art. 6 para. 1 p. 1 lit. f DSGVO).
For more information on Rebrandly's privacy policy, please visit https://rebrandly.com/privacy-policy.
OpenAI
Description of Service
Our chatbot is based on a Large Language Model (LLM) by the company OpenAI. Your requests are sent to the OpenAI servers in the USA via API to obtain answers. The company encrypts all data at rest (AES-256) and in transit (TLS 1.2+) and uses strict access controls to limit access to the data. OpenAI does not train its models based on the data sent by you. The company may only store your request and the chatbot response securely on its servers for up to 30 days in order to provide the services and detect misuse. After 30 days, the data will be removed from OpenAI’s systems unless OpenAI is required by law to retain it. More information is available under the following links:
Processing Company
OpenAI Ireland Ltd, The Liffey Trust Centre, 117–126 Sheriff Street Upper, Dublin 1, D01 YC43, Ireland
Data Protection Officer of Processing Company
You can contact the following data protection officer if you have any questions about the processing of personal data: privacy@openai.com
Data Purposes
Marketing, analytics
Technologies Used
API
Data Collected
User Query, timestep, chatbot response
Location of Processing
USA
Retention Period
OpenAI stores your chatbot interaction anonymously and securely on your servers for up to 30 days. This is to provide the services and detect abuse. After 30 days, the data will be removed from OpenAI’s systems unless OpenAI is required by law to retain it.
Data Recipients
OpenAI Ireland Ltd, The Liffey Trust Centre, 117–126 Sheriff Street Upper, Dublin 1, D01 YC43, Ireland
Click here to read the privacy policy of the data processor: https://openai.com/policies
Social Media Pages
We link to our presences on various social media in some places, such as in the footer or the social media modules. Currently these are Facebook, Twitter, Linkedin, Github and Vimeo. As the social media are only linked, no data are transmitted to the social media when you visit our website.
Facebook presence
Under the URL https://www.facebook.com/unic/ we operate a fan page on the Facebook social network, which is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland («Facebook»). Facebook's privacy policy can be found at: https://www.facebook.com/about/privacy
The call and every interaction on our Facebook fan page leads to the processing of personal data, whereby it makes no difference whether you have an account with Facebook or not. If you are logged in with your Facebook account while accessing our Facebook fan page, Facebook and/or its affiliated companies may combine the information about the access to the Facebook fan page with your account information and may use this to create profiles. If you do not wish to be profiled in this way, please log out of your Facebook account before accessing our Facebook fan page.
Facebook provides us with statistical data on the use of our Facebook fan page via the «Facebook Insights» function. These data are data such as gender, age range, location, page views, interactions and information on paid activities, reach, accounts reached, impressions and impressions per day. Important to know: We cannot infer individual visitors to our Facebook presence from these data. We use the data generated by «Facebook Insights» on the basis of Art. 6 (1f) DSGVO, whereby our legitimate interests lie in making our Facebook fan page more attractive and providing it with content that is tailored to interests.
As we are jointly responsible with Facebook for the processing of your data on our Facebook presence, we have entered into an agreement with Facebook, the content of which you can view here: https://www.facebook.com/legal/terms/page_c ontroller_addendum.
As a data subject, you are entitled to the rights set out in this privacy policy. You can choose to assert these rights against us, or directly against Facebook at https://www.facebook.com/help/contact/54097 7946302970. If you assert your rights against us, we will forward your requests to them in accordance with our agreement with Facebook.
Twitter presence
We operate a presence on the Twitter social network under the URL https://twitter.com/unic. Twitter is operated by the Twitter International Company. Information on which personal data are processed by Twitter for which purposes when you visit our presence can be found at https://twitter.com/de/privacy.
The call and every interaction on our Twitter presence leads to the processing of personal data, whereby it makes no difference whether you have an account with Twitter or not. If you are logged in with your Twitter account while accessing our Twitter presence, Twitter as the operator may combine the information about the call to our Twitter presence with your account information and may use this to create profiles. If you do not wish to be profiled in this way, please log out before accessing our Twitter presence.
LinkedIn presence
Under the URL https://www.linkedin.com/company/unic/mycompany/ we operate a presence on the LinkedIn social network. LinkedIn is a service of LinkedIn Ireland Unlimited Company. Information on which personal data are processed by LinkedIn for which purposes when you visit our presence can be found at https://www.linkedin.com/legal/privacy-policy.
The call and every interaction on our LinkedIn presence leads to the processing of personal data, whereby it makes no difference whether you have an account with LinkedIn or not. If you are logged in with your LinkedIn account while accessing our LinkedIn presence, LinkedIn as the operator may combine the information about the call to our LinkedIn presence with your account information and may use this to create profiles. If you do not wish to be profiled in this way, please log out before accessing our LinkedIn presence.
LinkedIn provides us with statistical data on the use of our LinkedIn presence via the «Page Insights» function. These data are data such as gender, age range, location, page views, interactions and information on paid activities, reach, accounts reached, impressions and impressions per day. Important to know: We cannot infer individual visitors to our LinkedIn presence from these data. We use the data generated by «Page Insights» on the basis of Art. 6 (1f) DSGVO, whereby our legitimate interests are to make our LinkedIn presence more attractive and to provide it with content that is relevant to interests.
As we are jointly responsible with LinkedIn for the processing of your data on our LinkedIn presence, we have entered into an agreement with LinkedIn, the content of which you can view here: https://legal.linkedin.com/pages-jointcontroller-addendum
As a data subject, you are entitled to the rights set out in this privacy policy. You can assert these against us at your discretion. If you assert your rights against us, we will forward your requests to them in accordance with our agreement with LinkedIn.
Vimeo presence
We operate a presence on the Vimeo social network under the URL https://vimeo.com/uniccom. Vimeo is operated by the company Vimeo LLC with its registered office at 555 West 18th Street, New York, New York 10011 USA. Information on which personal data are processed by Vimeo when you visit our presence and for what purposes can be found at: https://vimeo.com/privacy#international_data_ transfers_and_certain_user_rights.
The call and every interaction on our Vimeo presence leads to the processing of personal data, whereby it makes no difference whether you have an account with Vimeo or not. If you are logged in with your Vimeo account while accessing our Vimeo presence, it is possible that Vimeo, as the operator, may combine the information about the access to our presence with your account information and may use this to create profiles. If you do not wish to be profiled in this way, please log out before accessing our website.
Your rights as a data subject
Unic endeavours to respect the rights of data subjects in accordance with the GDPR Chapter III. In addition to the comprehensive duty to inform and communicate on this page, we draw the attention of data subjects to the following rights to which they are entitled:
Data subjects are entitled to assert a comprehensive right to information (GDPR Art. 15) regarding their personal data.
If you wish to exercise your right to rectification (GDPR Art. 16), erasure (GDPR Art. 17) or restriction of processing (GDPR Art. 18), please contact the Data Protection Officer.
As a data subject, you also have the right to lodge a complaint with a data protection supervisory authority, as well as a right to compensation in the event of damage (GDPR Art. 82).
Data subjects can object to the way in which their data are used, or to the entire use, at any time (GDPR Art. 21). Make your claim to the data protection officer.
If you wish to exercise your right to data portability (GDPR Art. 20), Unic will send your data to your postal address in a suitable format.