Privacy Policy

The controller responsible for data processing is:

CYKEN GmbH

Bilker Straße 29a

40213 Düsseldorf

Germany

info@cyken.de

We are pleased about your interest in our website. Protecting your privacy is very important to us. Below we inform you in detail about how we handle your data.

1. Access Data and Hosting

You can visit our websites without providing any personal information.
Every time a webpage is accessed, the web server automatically stores a so-called server log file, which contains, for example, the name of the requested file, your IP address, date and time of access, the amount of data transferred, and the requesting provider (access data), and documents the access.
These access data are evaluated exclusively for the purpose of ensuring a trouble-free operation of the site as well as improving our services. This serves to safeguard our legitimate interests in the proper presentation of our offering, which prevail in the context of a balancing of interests pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR.
All access data are only processed as long as it is necessary for achieving the above-mentioned processing purposes.

1.1 Hosting

The services for hosting and displaying the website are partly provided by our service providers within the scope of processing on our behalf. Unless otherwise explained in this privacy policy, all access data as well as all data collected in the forms provided on this website are processed on their servers.
If you have any questions about our service providers and the basis of our cooperation with them, please use the contact information described in this privacy policy.

Our service providers are located in and/or use servers in the following countries, for which the European Commission has determined by decision an adequate level of data protection: USA.

The adequacy decision for the USA serves as the basis for third-country data transfers, provided that the respective service provider is certified. Service providers based in the USA are generally certified under the EU-U.S. Data Privacy Framework (DPF). If service providers used are not certified under the DPF, standard contractual clauses have been concluded as an appropriate safeguard.

1.2 Content Delivery Network

For the purpose of reducing load times, we use a so-called Content Delivery Network (“CDN”) for some of our offerings. This service delivers content, such as large media files, via regionally distributed servers of external CDN providers. As a result, access data are processed on the servers of these providers. Our service providers act on our behalf as part of a data processing agreement.
If you have any questions about our service providers and the basis of our cooperation with them, please use the contact information described in this privacy policy.

Our service providers are located in and/or use servers in the following countries, for which the European Commission has determined by decision an adequate level of data protection: USA.

2. Data Processing for Contact and Customer Communication

Contacting Us

In the context of contacting us, we collect personal data pursuant to Art. 6 para. 1 sentence 1 lit. b GDPR if you voluntarily provide them to us when contacting us (e.g. via contact form, live chat tool, or email) for the purpose of handling your inquiry. Mandatory fields are marked as such, as we require the data in these cases to process your inquiry. The data collected can be seen from the respective input forms. After your inquiry has been fully processed, your data will be deleted unless you have expressly consented to further use of your data pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR or we reserve the right to use the data beyond this as permitted by law and as explained in this privacy policy.

Once your customer inquiry has been fully completed, your data will be restricted from further processing and deleted after the expiry of the statutory retention periods under tax and commercial law pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR, unless you have expressly consented to further use of your data pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR or we reserve the right to further use of the data, which is permitted by law and about which we inform you in this privacy policy.

3. Cookies and Other Technologies

3.1 General Information

To make the visit to our website attractive and to enable the use of certain functions, we use technologies on various pages, including so-called cookies. Cookies are small text files that are automatically stored on your end device. Some of the cookies we use are deleted after the browser session ends, i.e. after you close your browser (so-called session cookies). Other cookies remain on your end device and allow us to recognize your browser on your next visit (persistent cookies).

Protection of Privacy on End Devices

When using our online services, we use technologies that are strictly necessary to provide the telemedia service you have expressly requested. In this respect, the storage of information on your end device or access to information already stored on your end device does not require consent.

For functions that are not strictly necessary, the storage of information on your end device or access to information already stored on your end device requires your consent. We would like to point out that if you do not provide your consent, certain parts of the website may not be fully usable. Any consent you may have given remains valid until you adjust or reset the corresponding settings on your end device.

Any Subsequent Data Processing Through Cookies and Other Technologies

We use such technologies that are strictly necessary for the use of certain features of our website (e.g. website preference settings). These technologies collect and process your IP address, the time of your visit, device and browser information, and information about your use of our website (e.g. your preference settings). This serves, within the scope of a balancing of interests, to safeguard our overriding legitimate interest in an optimized presentation of our services pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR.

In addition, we use technologies to comply with legal obligations to which we are subject (e.g. to be able to prove consent to the processing of your personal data), as well as for web analytics and online marketing. Further information on this, including the respective legal basis for data processing, can be found in the following sections of this privacy policy.

Cookie Settings

You can find the cookie settings for your browser at the following links: Microsoft Edge™ / Safari™ / Chrome™ / Firefox™ / Opera™

If you have consented to the use of technologies in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, you may revoke your consent at any time by sending a message to the contact details provided in this privacy policy. Alternatively, you can access the following link: https://www.cyken.de/cookie-einstellungen
Please note that if you do not accept cookies, the functionality of our website may be limited.

3.2 Use of the Jimdo Consent Manager Tool for managing consents

We use the Jimdo Consent Manager Tool on our website to inform you about the cookies and other technologies we use and to obtain, manage, and document your consent, if required, to the processing of your personal data by these technologies. This is necessary in accordance with Art. 6 para. 1 sentence 1 lit. c GDPR to fulfill our legal obligation under Art. 7 para. 1 GDPR to be able to prove your consent to the processing of your personal data.
The Jimdo Consent Manager Tool is a service provided by Jimdo GmbH, Stresemannstrasse 375, 22761 Hamburg, Germany (“Jimdo”). After you submit your cookie declaration on our website, Jimdo’s web server stores your IP address, the date and time of your declaration, browser information, language, the URL from which the declaration was sent, and information about your consent behavior. A cookie is also set, which contains the information about your consent behavior. Your data will be deleted after 365 days unless you have expressly consented to further use of your data pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR or we reserve the right to use the data beyond this, which is legally permitted and about which we inform you in this privacy policy.

Our service providers are located in and/or use servers in the following countries, for which the European Commission has determined by decision an adequate level of data protection: USA.

The adequacy decision for the USA serves as the basis for third-country data transfers, provided that the respective service provider is certified. Until our service providers are certified, data transfers continue to be based on this safeguard: Standard Contractual Clauses of the European Commission.

Jimdo Tracking

We use the tracking and analytics tool provided by Jimdo GmbH, Stresemannstrasse 375, 22761 Hamburg, Germany. This serves, in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR, to safeguard our legitimate interests within the scope of a balancing of interests — namely for statistical evaluation of user behavior on our website and to ensure a demand-oriented, user-friendly design and continuous optimization of our services.
Jimdo tracking does not use cookies. Your data (IP address, time of visit, device and browser information) is automatically collected, aggregated, and processed using pseudonymized usage profiles for the purposes mentioned above.
Your data is shortened, stored as a hash value, and additionally encrypted using a random value that changes every 24 hours. This prevents identification of individual users. No further merging of the data takes place.

4. Use of cookies and other technologies

We use the following cookies and other technologies from third-party providers on our website. Unless otherwise stated for individual technologies, this is done on the basis of your consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR. After the purpose has ceased to apply and the respective technology is no longer used by us, the data collected in this context will be deleted. You can revoke your consent at any time with effect for the future. Further information on your revocation options can be found in the section “Cookies and Other Technologies.” Additional information, including the basis of our cooperation with individual providers, can be found under the respective technologies. If you have questions about the providers and the basis of our cooperation with them, please use the contact details provided in this privacy policy.

Use of Google Services

We use the following technologies provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). The information automatically collected by Google technologies about your use of our website is generally transmitted to a server of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and stored there. Unless otherwise specified for individual technologies, data processing is based on an agreement between joint controllers pursuant to Art. 26 GDPR. Further information on data processing by Google can be found in Google’s privacy policy.

Our service providers are located in and/or use servers in countries outside the EU and the EEA for which the European Commission has determined an adequate level of data protection by decision.

Our service providers are also located in and/or use servers in countries outside the EU and the EEA for which there is no adequacy decision by the European Commission. Our cooperation with these providers is based on standard data protection clauses of the European Commission.

Google Analytics

For the purpose of website analytics, data (IP address, time of visit, device and browser information, as well as information about your use of our website) is automatically collected and stored using Google Analytics, from which usage profiles are created using pseudonyms. Cookies may be used for this purpose.
If you visit our website from within the EU, your IP address is stored on a server located in the EU for the purpose of deriving location data and is then immediately deleted before the traffic is forwarded to other Google servers for processing.
Data processing is carried out on the basis of a data processing agreement with Google.

Google Maps

For the visual display of geographic information, Google Maps collects data about your use of the map functions, particularly your IP address and location data, transmits it to Google, and processes it there.
We have no influence over this subsequent data processing.

5. Social Media

Our online presence on X (formerly Twitter), LinkedIn, Xing

If you have given your consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR to the respective social media provider, your data will be automatically collected and stored for market research and advertising purposes when visiting our online profiles on the aforementioned social media platforms. Usage profiles are created from this data using pseudonyms.
These may be used, for example, to display advertisements inside and outside the platforms that are presumably aligned with your interests. Cookies are generally used for this purpose.
For detailed information on how the respective social media provider processes and uses your data, as well as for contact details and your rights and settings options for protecting your privacy, please refer to the privacy policies of the respective providers linked below.
If you require further assistance, you are welcome to contact us.

is a service provided by Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland (“X”).
The information about your use of our online presence on X that is automatically collected by X is generally transmitted to a server of X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, and stored there.

Our service providers are located in and/or use servers in countries outside the EU and the EEA for which the European Commission has determined an adequate level of data protection by decision.

LinkedIn is a service provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”). The information automatically collected by LinkedIn about your use of our online presence on LinkedIn is generally transmitted to a server of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA, and stored there.

Our service providers are located in and/or use servers in the following countries, for which the European Commission has determined by decision an adequate level of data protection: USA.

The adequacy decision for the USA serves as the basis for third-country data transfers, provided that the respective service provider is certified. A certification is in place.

Xing is a service provided by New Work SE, Am Strandkai 1, 20457 Hamburg, Germany.

6. Contact Options and Your Rights

6.1 Your Rights

As a data subject, you have the following rights:

Pursuant to Art. 15 GDPR, the right to obtain information about your personal data processed by us, to the extent specified therein;

Pursuant to Art. 16 GDPR, the right to request the immediate rectification of inaccurate or the completion of your personal data stored by us;

Pursuant to Art. 17 GDPR, the right to request the deletion of your personal data stored by us, unless further processing is necessary
- for exercising the right of freedom of expression and information;
- for compliance with a legal obligation;
- for reasons of public interest; or
- for the establishment, exercise or defence of legal claims;

Pursuant to Art. 18 GDPR, the right to request the restriction of the processing of your personal data, insofar as:
- the accuracy of the data is contested by you;
- the processing is unlawful, but you oppose the erasure of the data;
- we no longer need the data, but you require it for the establishment, exercise or defence of legal claims; or
- you have objected to the processing pursuant to Art. 21 GDPR;

Pursuant to Art. 20 GDPR, the right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request the transmission of those data to another controller;

Pursuant to Art. 77 GDPR, the right to lodge a complaint with a supervisory authority. As a rule, you can contact the supervisory authority of your habitual residence or place of work or of our company headquarters.

Right to Object
Where we process personal data to safeguard our overriding legitimate interests as part of a balancing of interests as explained above, you have the right to object to this processing with effect for the future.
If the processing is carried out for direct marketing purposes, you may exercise this right at any time as described above.
If the processing is carried out for other purposes, you have the right to object only if there are reasons arising from your particular situation.
Once you have exercised your right to object, we will no longer process your personal data for these purposes unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or if the processing serves the establishment, exercise or defence of legal claims.
This does not apply if the processing is for direct marketing purposes. In that case, we will no longer process your personal data for this purpose.

6.2 Contact Options

If you have any questions about the collection, processing or use of your personal data, or if you wish to request information, rectification, restriction or deletion of data, as well as withdraw any consent given or object to a specific use of your data, please contact us directly using the contact details provided in our legal notice (imprint).

Privacy Policy

To which email address should the whitepaper be sent?