legal information

Data Privacy Statement

Thank you for your interest in loadbee and our website. Data protection is a very important topic for us and we always undertake to protect your personal data as best as we can within the scope of our online services and to use it exclusively for the purposes indicated. Below you will find information about the type, scope and purpose of processing your personal data as well as about the use of cookies when using the www.loadbee.com website or the loadbee platform.

1. Name and contact details of the controller / service provider. The controller within the meaning of the applicable data protection laws is loadbee GmbH, Karlsruher Straße 3, 70771 Leinfelden-Echterdingen (hereinafter “us” or “we”).
2. Name and contact details of the data protection officer
   Our external data protection officer is
   Attorney Sascha Weller, IDR – Institute for Data Protection Law
   Ziegelbräustraße 7
   85049 Ingolstadt, Germany
   Tel.: +49 841 885 167 15
   Email: ra-weller@idr-datenschutz.de
   Website: https://idr-datenschutz.de (external data protection officer)
3. Hosting
   1. Amazon Web Services (AWS)
      To operate and display our website, we use Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, 1855 Luxembourg (hereinafter referred to as AWS). AWS is a cloud infrastructure service provider that provides us with hosting and storage space for our website.
   2. Processed data
      You can visit our website without providing any personal information. For technical reasons, the website’s web server only collects the data that your service provider and the browser you use automatically transmit via the http header when accessing the website. This includes the following data:
      • IP address
      • Time of access
      • Log files (server logs)
      • Information about the browser and operating system
      • The subpages of our website that you visit
      • The address of the website from which you visit our website

      We do not use this data with any other information that would allow us to identify you personally. The data is evaluated for statistical purposes only, as well as to improve our website. It does not allow us to identify you personally.

   3. Legal basis for data processing
      If the aforementioned data is personal data, processing takes place on the basis of Section 6 (1) a GDPR or Section 6 (1) f GDPR.
   4. Data transfer to third countries
      AWS stores data on servers that may be located in the EU or worldwide, including the USA. The USA is considered a third country under data protection law. An EU adequacy decision for the USA is in place. AWS ensures an appropriate level of data protection in accordance with the requirements of the GDPR through certification according to the EU-US Data Privacy Framework (DPF).
      We have concluded a data processing agreement (DPA) with our hosting partner AWS. This agreement stipulates that the personal data of our website visitors may only be processed in compliance with the GDPR and as per our instructions.
   5. Duration of storage and deletion
      The data stored on the AWS servers will only be retained for as long as necessary for the stated purposes or for the duration of the statutory retention period. As soon as the purpose of data processing ceases or you request us to delete your data, the data will be deleted in accordance with the AWS deletion policies and our internal processes.
4. Cookies
   When you first visit our website from one of your devices, you will be informed that so-called cookies may be loaded onto your device when using the website. If the cookies are required for technical purposes to operate the website properly, this takes place on the basis of our overriding legitimate interest in accordance with Art. 6 (1) (f) GDPR. Other cookies are not technically required. Such cookies will only be set if you explicitly consent to this via the consent banner (Art. 6 Para. 1 a GDPR).
5. Data processing when contacting loadbee
   1. Purpose and legal basis of data processing
      You can contact us by phone, email, via the contact form, or by requesting a demo on the website. The following data provided by you will be processed regularly:
      • Your name
      • The name of your company
      • Your email address
      • Your phone number

      This data will be processed exclusively for the purpose of responding to your request and for any queries you may have. If the aforementioned data is personal data, processing is based on our overriding legitimate interest in accordance with Section 6 (1) (f) GDPR.

   2. Recipients or categories of recipients of the personal data
      The data may be transferred to external recipients if we use software from providers that support our processes. In such cases, we have concluded a data processing agreement (DPA) with the providers. This agreement stipulates that the personal data of our website visitors may only be processed in compliance with the GDPR and as per our instructions.
   3. Transfer of personal data to third countries
      Data can be transferred to third countries using the software used. We ensure that this takes place in compliance with data protection regulations.
   4. Storage period of personal data
      Personal data will be deleted as soon as the purpose of processing no longer applies and in the absence of any statutory retention periods.
6. Data processing when subscribing to the newsletter
   1. Purpose and legal basis of data processing
      You can optionally subscribe to our newsletter. When you register to receive our newsletter, the information you provide will be used exclusively for this purpose on the basis of your consent in accordance with Art. 6 (1) (a) GDPR. We do not process any additional data. To send the newsletter, we use the email address provided by you during registration. To ensure that you are the actual owner of the email address provided, we use the “double opt-in process.” For this we log:
      • Your consent to receive newsletters
      • Sending of the confirmation email
      • Receipt of the reply email

      You can revoke your consent to the processing of your personal data and its use for the provision of newsletters at any time. To do so, click on the unsubscribe link in the newsletter.

   2. Recipients or categories of recipients of the personal data
      To send our newsletter, we use the software “Brevo” from Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany.
      We have concluded a contract for order processing (AVV) with the above service provider. This contract is required by data protection law, which ensures that the personal data of our website visitors is only processed in accordance with our instructions and in compliance with the GDPR.
      The data you provide in order to receive the newsletter will be stored on the servers of Sendinblue GmbH in Germany. The data you provide to us will be stored by us or the newsletter service provider Brevo until you unsubscribe from the newsletter. It will be deleted from the newsletter distribution list after you unsubscribe from the newsletter. Data stored by us for other purposes remains unaffected.
   3. Transfer of personal data to third countries
      No data is transferred to a third country.
   4. Storage period of personal data
      Personal data will be deleted immediately after you revoke your consent to receive the newsletter.
7. Data processing for loadbee customers
   1. Purpose and legal basis of data processing
      If you enter into a contractual relationship with us as a loadbee customer, we will process the data provided for this purpose. In particular:
      • Company name
      • Company address(es)
      • Names and positions of the contact persons at the company
      • Email addresses of the contact persons
      • Telephone numbers of the contact persons

      The processing of your data provided in this regard is carried out to process customer inquiries and orders (legal basis Art. 6 Para. 1 b GDPR) or for marketing activities (legal basis Art. 6 Para. 1 a GDPR).
      The data collected is necessary for the conclusion and execution of a contract for use of the loadbee platform. If you do not provide the data, an agreement cannot be concluded.
      Data for marketing purposes is provided voluntarily by you and processed within the scope of your consent. You can revoke your consent to the processing of data for marketing purposes at any time. Please contact our data protection officer using the contact details provided (see section 2 above). A revocation does not affect the legality of any processing carried out on the basis of the consent prior to revocation.

   2. Recipients or categories of recipients of the personal data
      Advertising agency, IT service provider, suppliers, billing service provider.
   3. Transfer of personal data to third countries
      No data is transferred to a third country.
   4. Storage period of personal data
      Personal data will generally be deleted within three years of the end of the contractual relationship, unless a longer statutory retention period applies in exceptional cases.
8. Data processing by suppliers, service providers, partners, etc.
   1. Purpose and legal basis of data processing
      If you enter into a contractual relationship with us as a supplier, service provider, partner, or similar, we will process the data you provide for this purpose.
      In particular:
      • Company name
      • Company address(es)
      • Names and positions of the contact persons at the company
      • Email addresses of the contact persons
      • Telephone numbers of the contact persons

      The processing of your data provided in this regard is carried out for the purchase and processing of support services to fulfill business purposes (Art. 6 Para. 1 b GDPR), for the purchase and processing of support services to fulfill legal obligations (Art. 6 Para. 1 c GDPR), and for the sending of information materials (Art. 6 Para. 1 b GDPR). The data collected is necessary for the conclusion and execution of a contract. If you do not provide the data, an agreement cannot be concluded.

   2. Recipients or categories of recipients of the personal data
      Authorities, banks, auditors, tax consultants.
   3. Transfer of personal data to third countries
      No data is transferred to a third country.
   4. Storage period of personal data
      Personal data will generally be deleted within three years of the end of the contractual relationship, unless a longer statutory retention period applies in exceptional cases.
9. Data processing during the application process
   1. Purpose and legal basis of data processing
      If you apply for a position with us, we will process the data you provide in this context.
      In particular:
      • Your name
      • Your contact details (address, email address, telephone number)
      • Your CV
      • Your training and further education
      • Your qualifications

      The processing of your data provided in this respect is carried out for the purpose of processing applications/eRecruiting Art. 6 (1) b GDPR), for comparing applicant data with proposals from recruitment consultants (Art. 6 (1) f GDPR), and for inclusion in an applicant pool for subsequent contact (Art. 6 (1) a GDPR).
      The data collected is necessary for the application process. If this information is not provided, the application cannot be completed.
      The comparison of applicant data with suggestions from HR consultants serves to ensure the traceability of applications received without the involvement of an HR consultant.
      For inclusion in an applicant pool, your data is provided voluntarily and processed within the scope of your consent. You can revoke your consent to the processing of your data at any time. Please contact our data protection officer using the contact details provided (see section 2 above). A revocation does not affect the legality of any consent-based processing that may have taken place prior to revocation.

   2. Recipients or categories of recipients of the personal data
      No information will be passed on to third parties.
   3. Transfer of personal data to third countries
      No data is transferred to a third country.
   4. Storage period of personal data
      Personal data will be deleted six months after the end of the application process, taking into account Section 61 (b) Paragraph 1 ArbGG (German Labor Court Act) in conjunction with Section 15 AGG (General Equal Treatment Act). If you are included in the applicant pool, your details will be deleted after two years if no suitable position can be offered.
10. Integration of external providers on our website
    1. Consent management tool CCM19
       We use the consent management tool CCM19 from the German service provider Papoo Software & Media, Auguststraße 4, 53229 Bonn, on our website.
       By integrating a corresponding JavaScript code, a banner will be displayed when you visit our website, which allows you to give your consent to the processing of data via the website, in particular the setting of cookies and cookie-based applications, as well as to exercise your right of revocation for any consent already given. Without your consent, CCM19 will block the setting of cookies that require consent.
       The purpose of data processing is to obtain and document the necessary consent to data processing and thus to comply with the legal obligations (Art. 6 (1) (c) GDPR).
    2. Etracker
       The provider of this website uses services from etracker GmbH from Hamburg, Germany (www.etracker.com) to analyze usage data. By default, we do not use cookies for the web analysis. If we use analysis and optimization cookies, we will ask for your explicit consent in advance. If you consent to this, cookies will be used to enable a statistical analysis of the reach of this website, to measure the success of our online marketing measures and test procedures, e.g., to test and optimize different versions of our online offering or its components. Cookies are small text files that are stored by the internet browser on the user’s device. etracker cookies do not contain any information that allows users to be identified.
       The data generated with etracker is processed and stored exclusively in Germany by etracker on behalf of the provider of this website and is therefore subject to strict German and European data protection laws and standards. etracker has been independently audited, certified, and awarded the ePrivacyseal data protection seal of approval.
       Data processing is carried out on the basis of your explicit consent in accordance with Art. 6 (1) (a) GDPR. Because the privacy of our visitors is important to us, data that may be linked to an individual, such as the IP address, login or device identifiers, are anonymized or pseudonymized as soon as possible. There will be no other use, combination with other data, or transfer to third parties.
       You can withdraw your consent at any time by deactivating the setting in our Cookie Consent Tool.
    3. Hotjar
       We use Hotjar to analyze and optimize the usage behavior of our website. The legal basis is your consent in accordance with Art. 6 (1) (a) GDPR in conjunction with Section 25 (1) TDDDG. This is a web analysis service provided by Hotjar Ltd., Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, based in Malta, Europe, hereinafter referred to as “Hotjar”.
       Hotjar analyzes the use of our website completely anonymously; all personal data is automatically hidden and not processed.
       Hotjar enables the tracking of movement on websites that use Hotjar (so-called heatmaps). For example, we can track how far users scroll and which buttons are clicked and how often. This information is completely anonymous. Furthermore, Hotjar also makes it possible to obtain feedback directly from website users using a survey tool. We use the Hotjar technology to better understand the needs of our users and to optimize the offering and experience on our website.
       Of course, we pay particular attention to the protection of your personal data when using this tool. For example, we can only track which buttons are clicked, the mouse movement history, how far the user scrolls, the screen size of a device, device type and browser information, geographic location (country only), and the preferred language in which our website is displayed. Areas of the website where personal data from you or third parties is displayed are automatically hidden by Hotjar and are therefore not traceable at any time. In order to exclude direct personal reference, IP addresses are only stored and processed anonymously. Hotjar uses cookies and other technologies to collect data about the behavior of our users and their devices. Hotjar stores this information in a user profile on our behalf. Hotjar is contractually prohibited from selling the data collected on our behalf.
       You can prevent Hotjar from collecting your data at any time by objecting to the use of “behavioral cookies” on this website.
       For more information about Hotjar Ltd. and the Hotjar tool, please visit: https://www.hotjar.com
    4. Pipedrive
       We use the Pipedrive software from Pipedrive OÜ, Mustamäe tee 3a, 10615 Tallinn, Estonia (“Pipedrive”). Pipedrive is used as a data processor to manage customer data in various application scenarios. The relationship between the data controller (loadbee) and the data processor (Pipedrive) is subject to Pipedrive’s Data Processing Addendum (DPA), Terms and Conditions and Privacy Policy. These documents serve as a data processing agreement and set out the instructions given by the data controller to Pipedrive regarding the processing of personal data, as well as the rights and obligations of both parties. Pipedrive only processes Customer Data on the basis of instructions provided by the Data Controller. For more information, please see Pipedrive’s Privacy Policy, Terms and Conditions, and Data Processing Addendum (DPA).”
       The data processed via Pipedrive will only be stored for as long as necessary for the respective purpose, unless there are legal retention obligations.
       Pipedrive contact/support form
       If you use our contact or support form, we will process the data you enter (e.g., name, email address, message) exclusively to process your request. Processing is based on our legitimate interest (Art. 6 (1) (f) GDPR) to render the best possible service. Any information provided voluntarily by you will only be used for the intended purpose. The processing of personal data is carried out exclusively in accordance with the principles of Art. 5 GDPR.
       Registration on loadbee platform
       Registration is required to use our loadbee platform. For this purpose, we need information about your company (name, address, country, email) as well as the name of a natural person we can contact. The processed personal data is used to fulfill the contracts concluded with you (Article 6 (1) (b) GDPR). This data is stored electronically and in machine-readable form.
       Use of the Pipedrive chatbot
       We use the Pipedrive chatbot on our website. The Pipedrive chatbot allows us answer your questions and contact you in real time. The chatbot can automatically receive your inquiries and process the information you voluntarily provide in order for us to render targeted assistance.
       When using the Pipedrive chatbot, we process the following data:
       • Communication content (e.g., questions, information you enter via the chat window)
       • Voluntarily provided information for contact purposes, i.e., first name, last name, email address, telephone number
       • Technical data such as IP address, browser information and time of access This data is processed to ensure the flawless functioning of the chatbot and to answer your inquiries. We also use the data to improve the quality of our customer service and website experience. The processing is based on our legitimate interest in accordance with Art. 6 (1) (f) GDPR in order to enable you to contact us quickly and efficiently and to improve the functionality of our website. Any information provided while using the chatbot is given voluntarily.
    5. LinkedIn Analytics
       We use “LinkedIn Analytics” on our website, a service provided by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (hereinafter referred to as: “LinkedIn”). LinkedIn Analytics stores and processes information about your user behavior on our website. Among other things, LinkedIn Analytics uses cookies, i.e., small text files that are stored locally in the cache of your web browser on your end device, which allow us to analyze your use of our websites.
       We use LinkedIn Analytics for marketing and optimization purposes, in particular to analyze the use of our website and to continuously improve individual functions and offers as well as the user experience. The statistical analysis of user behavior enables us to improve our offering and make it more interesting for you as a user. The legal basis is Art. 6 (1) (a) GDPR (consent). You can prevent the installation of cookies by refusing to consent. In this case, please note that you may not be able to use all functions of our website to their full extent.
       Cookie lifespan: maximum 90 days. The legal basis is Art. 6 (1) (a) GDPR (consent). You can revoke your consent at any time without affecting the legality of any consent-based processing that may have taken place prior to revocation.
    6. LinkedIn Marketing Solutions
       We use “LinkedIn Marketing Solutions” on our website, a service provided by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (hereinafter referred to as: “LinkedIn”). LinkedIn Marketing Solutions stores and processes information about your user behavior on our website. Among other things, LinkedIn Marketing Solutions uses cookies, i.e., small text files that are stored locally in the cache of your web browser on your end device and that enable an analysis of your use of our website.
       We use LinkedIn Marketing Solutions for marketing and optimization purposes, in particular to analyze the use of our website and to continuously improve individual functions and offers as well as the user experience. The statistical analysis of user behavior enables us to improve our offering and make it more interesting for you as a user. The legal basis is Art. 6 (1) (a) GDPR (consent). You can prevent the installation of cookies by refusing to consent. In this case, please note that you may not be able to use all functions of our website to their full extent. Cookie lifespan: maximum 90 days. The legal basis is Art. 6 (1) (a) GDPR (consent). You can revoke your consent at any time without affecting the legality of any consent-based processing that may have taken place prior to revocation.
    7. LinkedIn Ads
       We use “LinkedIn Ads,” a service provided by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (hereinafter referred to as: “LinkedIn”). This service enables us to run targeted advertising campaigns and provide relevant content to our users.
       The legal basis for processing is the declaration of consent you gave when accessing this website as part of our cookie banner (Art. 6 (1) (a) GDPR). You can revoke your consent at any time with future effect by adjusting the cookie settings on our website.
       You have the option to object to data collection by LinkedIn Ads. To do so, you can set an opt-out cookie using the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
       Please note that this setting will be deleted if you delete your cookies.
       For more information about data protection on LinkedIn, please see LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy
    8. Google Marketing Platform – Google Ads
       We use Google Ads, an online advertising service provided by Google LLC (“Google”), on our website. Google Ads enables us to place ads in Google search results and on websites in the Google advertising network to draw attention to our services. As part of these advertising measures, we collect certain data, which is explained below. When you click on one of our Google ads, a cookie is placed on your device. This cookie contains a pseudonymized ID and collects information about your use of our website (e.g., pages viewed, interactions, length of stay on the website). This information is transmitted to Google and stored on servers in the USA. The service provider of Google Ads is Google Ireland Limited. However, personal data may also be transferred to the parent company Google LLC. Google is also certified under the EU-US Data Privacy Framework.
       Data processing is carried out for marketing and optimization purposes, in particular to display ads that are relevant and interesting to you, to improve campaign performance reports and to prevent you from seeing the same ads multiple times. The legal basis for processing is the declaration of consent you gave when accessing this website as part of our cookie banner (Art. 6 (1) (a) GDPR). You can revoke your consent at any time with future effect by adjusting the cookie settings on our website.
    9. Google reCAPTCHA
       To protect against the misuse of our website by bots, we use Google reCAPTCHA,, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, when you use our contact forms and our newsletter. Google reCAPTCHA is used to ensure that entries are only made by humans, not by automated programs (bots).
       When using Google reCAPTCHA, various data is collected and transmitted to Google. Including:
       • IP address
       • Information about the device and operating system used
       • Time spent on the website
       • Mouse movements and clicking behavior
       • Cookies from Google services if you are logged into your Google account

       The use of Google reCAPTCHA is based on your consent, which can be revoked at any time, in accordance with Art. 6 (1) (a) GDPR.
       The recipient of the data is Google Ireland Limited and Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google ensures that data is transferred to servers in the USA as a third country in compliance with data protection regulations through certification according to the EU-US Data Privacy Framework (DPF). Google therefore guarantees an appropriate level of data protection in accordance with Art. 45 GDPR. An EU adequacy decision for the USA is in place.
       We do not store any personal data in connection with the use of Google reCAPTCHA. For more information about how long Google stores data, please see Google’s privacy policy: https://policies.google.com/privacy
       Details on how Google reCAPTCHA works and how Google processes data can be found in Google’s Terms of Use: https://policies.google.com/terms

    10. Google Fonts
        We use fonts from Google Fonts on our website to ensure a uniform and appealing appearance of our content. The fonts are stored locally on our web server.
        The use of locally stored Google Fonts is based on our legitimate interest in accordance with Art. 6 (1) (f) GDPR. Our legitimate interest lies in the uniform and user-friendly presentation of our website.
        Since no connection to external Google servers is established when the fonts are integrated, no personal data of visitors is passed on to third parties and, in particular, no data is transmitted to Google servers in the USA.
11. Company pages on third-party platforms
    1. LinkedIn – privacy notice for use of the social media platform
       We use LinkedIn as a social network to connect and communicate with different groups of people. LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland is generally responsible for the processing of personal user data on the LinkedIn websites.
       When you visit our LinkedIn pages, LinkedIn processes certain information about you, even if you do not have a LinkedIn user account or are not logged in to LinkedIn. You can find out more about how LinkedIn processes your data in LinkedIn’s privacy policy at https://www.linkedin.com/legal/privacy-policy?trk=d_org_guest_company_overview_footer-privacy-policy. As the operator of our LinkedIn page, we can view your public profile on LinkedIn. What we can see depends on your profile settings. If you contact us via our LinkedIn page, we will process your name and the content of your messages, inquiries, or other contributions for the purpose of processing your submissions accordingly and, if necessary, responding to them. Depending on your request, we process your personal data in accordance with our legitimate interest as per Art. 6 (1) (f) GDPR or with Art. 6 (1) (b) GDPR if your request is to conclude a contract with us.
       LinkedIn provides us with so-called page analytics data. This data comprises anonymous statistics that we use to evaluate the quality of our LinkedIn page and our content. LinkedIn collects usage data about your interactions on our LinkedIn page and uses this to generate statistics. We have no access to the usage data. There is a so-called joint controllership for the processing of Page Analytics data, to which the following agreement applies (https://legal.linkedin.com/pages-joint-controller-addendum). In this agreement, LinkedIn undertakes to assume responsibility and to fulfill the rights of those affected under the GDPR. The legal basis for the processing of this data is our legitimate interest pursuant to Art. 6 (1) (f) GDPR in order to better understand how users interact with our LinkedIn page (e.g., number of followers, number of views of individual page sections, user statistics by age, geography and language) and to be able to adapt and improve this page to suit the target group. We store your personal data on our systems, i.e., outside LinkedIn, if and for as long as necessary for the purposes of collection or in case of legal retention obligations.
       LinkedIn Ireland Unlimited Company may transfer some of the data collected to other LinkedIn companies located outside the European Union, such as LinkedIn Corporation and its US subsidiaries (“LinkedIn”) based in the USA. To ensure adequate data protection, LinkedIn bases such data transfers on the standard contractual clauses of the European Commission. In addition, as of October 2024, LinkedIn Corporation is an active participant in the EU-US Data Privacy Framework.
       If you wish to exercise your rights as a data subject in relation to LinkedIn, please contact LinkedIn directly. The link above will take you to a contact form where you can contact LinkedIn. For all other matters, please use the contact options listed at the beginning of this privacy policy.
    2. Xing – data protection information for use of the social media channel
       We use XING as a social network to connect and communicate with different groups of people and to inform you about our company, services, and news. New Work SE, Am Strandkai 1, 20457 Hamburg, Germany, is generally responsible for the processing of personal user data on the XING websites.
       When you visit our XING page, XING processes certain information about you independently, even if you do not have a XING user account or are not logged in. We have no influence on the processing of data by XING and we also have no data access. You can find information about how your data is processed in XING’s privacy policy at https://privacy.xing.com/de/datenschutzerklaerung. If you would like to exercise your rights as a data subject in relation to XING, please contact XING directly. You can find further information via the link above.
       As the operator of our XING page, we only process the data visible in your public profile on XING. Which information is visible depends on your profile settings. If you contact us via our XING page, we will process your name and the content of your messages, inquiries, or other contributions in order to process them and possibly respond. We are exclusively responsible for such data processing. Depending on your request, your personal data will be processed either on the basis of our legitimate interest in accordance with Art. 6 (1) (f) GDPR or in accordance with Art. 6 (1) (b) GDPR if your request is aimed at concluding a contract. We only store your personal data on our systems if and for as long as necessary for the purposes of processing or in case of legal retention obligations. If you wish to assert your rights as a data subject, please use the contact options provided in this privacy policy.
    3. Facebook
       We have a company page on the Facebook platform, a service of Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter “Facebook”).
       We expressly point out that any use of the Facebook page and its functions is undertaken at your own risk.
       • Purpose of processing and legal basis
         Our Facebook page is used to communicate with interested parties and users concerning our offers, as well as to provide information about our company and services. We process your data on the basis of our legitimate interest in accordance with Art. 6 (1) (f) GDPR in order to communicate with you and improve our visibility.
         Our primary legitimate interest lies in effectively and specifically addressing our target groups and in improving our offerings and our visibility on a widely used platform.
       • Data processing by Facebook
         When you visit our Facebook page, Facebook also processes your personal data. This includes:
         • Your IP address
         • Details about your device and browser
         • Your interactions with our Facebook page (e.g., likes, comments, messages).

         This data may be processed by Facebook for its own purposes, e.g., to analyze user behavior and display personalized advertising. We have no impact on the processing carried out by Facebook.
         Our Facebook page allows you to send us messages, react to our posts, or comment. Therefore, please check which personal data you would like to share with us on the company website. If you do not wish to transmit your personal data to Meta, you can contact us at any time through another means (e.g., via the website, address, etc.).
         The privacy policy of Meta Platforms applies to the data processing by Facebook (https://www.facebook.com/privacy/policy).

       • Facebook Insights
         When you use our Facebook company page, Meta Platforms Ireland Limited (Facebook) provides us with so-called page insights. This comprises anonymized statistical information that Meta creates based on visitor interactions with our Facebook page. The legal basis for the use of these Facebook Insights is our legitimate interest pursuant to Art. 6 (1) (f) GDPR to analyze the use of our site and to improve it for interested visitors.
         We are jointly responsible with Facebook for the processing of Insights data. You can view the joint controllership agreement under the following link: https://www.facebook.com/legal/terms/page_controller_addendum.
       • Data transfer to third countries
         Meta Platforms may transfer your data to the USA or other third countries. Please note that these countries may not have a level of data protection comparable to that in the EU. Meta Platforms ensures an appropriate level of data protection in accordance with the requirements of the GDPR through certification according to the EU-US Data Privacy Framework (DPF) and the use of standard contractual clauses (SCCs) of the European Commission. Further information on data processing and the protective measures applied can be found in Meta’s privacy policy at: https://www.facebook.com/about/privacy.
       • Storage period
         The controller has only limited influence on the deletion of personal data, as this is largely determined by Facebook. More information is provided under https://www.facebook.com/privacy/policy. If personal data is provided to us as part of an interaction (e.g., messages), we only retain this data for as long as necessary for the purposes of the communication.
       • Your rights
         You can assert your rights to information, correction, objection, portability, and deletion of data both against us and against Facebook (Meta Platforms). Please note that Facebook (Meta Platforms) is primarily responsible for the processing of Insight data. You can find out more about your rights as a data subject on Facebook via the following link: https://de-de.facebook.com/privacy/policy.
       • Required personal data
         You provide the collected data to us or Facebook (Meta) voluntarily. If you do not want your data to be processed, please do not visit our Facebook fan page.
         The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as your rights and setting options to protect your privacy can be found in Facebook’s data protection information (https://www.facebook.com/about/privacy/).
    4. Instagram
       We operate a company page (so-called Instagram Business Page) on the Instagram platform, a service of Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
       We expressly point out that any use of the Instagram page and its functions is undertaken at your own risk.
       • Purpose of processing and legal basis
         Our Instagram page is used to communicate with interested parties and users of our offers, as well as to provide information about our company and services. We process your data on the basis of our legitimate interest in accordance with Art. 6 (1) (f) GDPR in order to communicate with you and improve our visibility.
         Our primary legitimate interest lies in effectively and specifically addressing our target groups and in improving our offerings and our visibility on a widely used platform.
       • Data processing by Instagram
         When you visit our Instagram page, Meta Platforms processes personal data. This includes:
         • Your IP address
         • Details about your device and browser
         • Your interactions with our Instagram page (e.g., likes, comments, messages).

         This data may be processed by Meta Platforms for its own purposes, e.g., to create user profiles and for personalized advertising. We have no influence on the processing by Instagram.
         Our Instagram page allows you to send us messages, react to our posts, or comment. Therefore, please check which personal data you would like to share with us on the company website. If you do not wish to transmit your personal data to Meta, you can contact us at any time through another means (e.g., via the website, address, etc.).
         Data processing by Instagram is subject to the privacy policy of Meta Platforms (https://privacycenter.instagram.com/policy/).

       • Instagram Insights
         We use the “Instagram Insights” feature, which provides us with anonymized statistics about the use of our Instagram page. These statistics are based on personal data that Instagram collects about your interactions with our site.
         The legal basis for the use of Instagram Insights is our legitimate interest pursuant to Art. 6 (1) (f) GDPR to analyze the use of our site and to improve it for interested visitors.
         We are jointly responsible for the operation of our Instagram page with Meta Platforms Ireland Limited. The agreement on joint responsibility (“Page Controller Addendum”) can be viewed here:
         https://www.facebook.com/legal/terms/page_controller_addendum
       • Data transfer to third countries
         Meta Platforms may transfer your data to the USA or other third countries. Please note that these countries may not have a level of data protection comparable to that in the EU. Meta Platforms ensures an appropriate level of data protection in accordance with the requirements of the GDPR through certification according to the EU-US Data Privacy Framework (DPF) and the use of standard contractual clauses (SCCs) of the European Commission. Further information on data processing and the protective measures applied can be found in Meta’s privacy policy at: https://privacycenter.instagram.com/policy.
       • Storage period
         The controller has only limited influence on the deletion of personal data, as this is largely determined by Meta. More information is provided under https://privacycenter.instagram.com/policy. If personal data is provided to us as part of an interaction (e.g., messages), we only retain this data for as long as necessary for the purposes of the communication.
       • Your rights
         You can assert your rights to information, rectification, objection, portability, and erasure of data both against us and against Meta Platforms. Please note that Meta Platforms is primarily responsible for the processing of Insight data. You can find out more about your rights as a data subject on Instagram under the following link: https://privacycenter.instagram.com/policy.
       • Required personal data
         The data provide to us or Instagram (Meta) is given voluntarily by you. If you do not wish your data to be processed, please do not use our Instagram page.
         The purpose and scope of data collection and the further processing and use of the data by Instagram as well as your rights in this regard and setting options to protect your privacy can be found in Instagram’s data protection information (https://privacycenter.instagram.com/policy).
    5. YouTube
       • Data processed by YouTube
         loadbee GmbH uses a YouTube channel owned by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.
         The YouTube channel and its functions are used at the user’s own risk.
         Information about which data is processed by Google and for what purposes can be found in Google’s privacy policy:
         https://policies.google.com/privacy
         loadbee GmbH has no influence on the type and extent of the data processed by Google, the type of processing, and use or the transfer of this data to third parties. Nor does loadbee GmbH have any effective means of control in this regard.
         By using Google, your personal data will be collected, transferred, stored, disclosed, used and, regardless of your place of residence, transferred to, stored, and used in the United States, Ireland, and any other country in which Google conducts business. In addition, data will be transferred to companies affiliated with Google, as well as to other trusted companies or persons who process them on behalf of Google.
         On the one hand, Google processes the data you voluntarily enter, such as your name and user name, email address, and telephone number. Google also processes the content that you create, upload, or receive from others when using the services. This includes, for example, photos and videos you save, documents and spreadsheets you create, and comments you write on YouTube videos. Google also evaluates the content you share to determine which topics you are interested in, stores and processes confidential messages that you send directly to other users, and can determine your location using GPS data, information about wireless networks, or your IP address. Google does this primarily to provide you with advertising or other content.
         Google may use analysis tools such as Google Analytics for evaluation purposes. loadbee GmbH has no influence on the use of such tools by Google and has not been informed of such potential use. If such tools are used by Google for the YouTube channel of loadbee GmbH, loadbee GmbH has neither commissioned this nor supported it in any other way. Furthermore, the data obtained during the analysis will not be made available to loadbee GmbH. Only certain profiles are visible to loadbee GmbH, particularly the profiles of the subscribers to its YouTube channel. Furthermore, loadbee GmbH has no way of preventing or disabling the use of such analysis tools on its YouTube channel.
         Finally, Google also obtains data when you view content, for example, even if you have not created a (Google) account. This so-called “log data” generally includes the IP address, browser type, operating system, information about the previously accessed website, and the pages you viewed, your location, your mobile provider, the device you use (including device ID and application ID), the search terms you use, and cookie information.
         You have the option to restrict the processing of your data in the general settings of your Google account and under the “Privacy and Security” section. In addition to these tools, Google also offers specific privacy settings for YouTube. You can learn more about this in Google’s Privacy Guide to Google Products:
         https://policies.google.com/technologies/product-privacy
         For more information, please see the privacy policy of
         Google under the term “privacy settings”:
         https://policies.google.com/privacy?hl=en&gl=en#infochoices
         You may also request information via the Google privacy form:
         https://support.google.com/policies/troubleshooter/7575787?visit_id=637054532384299914-2421490167&hl=en&rd=2
       • Data processed by loadbee GmbH
         loadbee GmbH also processes your data when you communicate with us via YouTube.
         Processing is carried out for the purpose of responding to your submissions. This constitutes a legitimate interest on our part (Art. 6 (1) (f) GDPR). Further processing of visitors’ personal data will only take place if necessary to process an inquiry or comment.
         Initially, the recipient of the data is Google, from where it may be passed on to third parties for Google’s own purposes and under Google’s responsibility. The recipients of publications include the public, i.e., potentially everyone. The IP addresses of page visitors are also transmitted to Google through the YouTube videos integrated on loadbee GmbH’s website. loadbee GmbH does not collect any data via its YouTube channel.
         However, the data you enter on YouTube, in particular your user name and the content published under your account, will be processed by us insofar as we may respond to your postings under “Discussions.” The content you share and publish voluntarily on YouTube will be included in loadbee GmbH’s offering and made available to your followers.
    6. X (formerly Twitter)
       loadbee GmbH manages its social media account internally and handles all relevant interactions. If you send us a private or direct message via X, it will be stored on Twitter for 18 months.
       Data processed by X
       For the short message service offered here, loadbee GmbH uses the technical platform and services of X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland, is responsible for the processing of data of persons living outside the United States.
       The X messaging service channel and its functions is used at the user’s own risk. This applies in particular to the use of interactive functions (e.g., sharing, rating). See X’s privacy policy for information on what data is processed by Twitter and for what purposes: https://x.com/en/privacy.
       loadbee GmbH has no influence on the type and extent of the data processed by X, the type of processing, and use or transfer of this data to third parties. Nor does loadbee GmbH have any effective means of control in this regard.
       When you use X, your personal information will be collected, transferred, stored, disclosed, used and, regardless of where you reside, transmitted to, retained and utilized by X Corp. in the United States, Ireland and any other country in which X Corp. does business. On the one hand, X processes the data you voluntarily enter, such as your name and user name, email address, telephone number or the contacts in your address book when you upload or synchronize it. X also evaluates the content you share to determine which topics you are interested in, stores and processes confidential messages that you send directly to other users, and can determine your location using GPS data, information about wireless networks, or your IP address. X does this primarily to provide you with advertising or other content.
       For evaluation purposes, X Corp. may use analysis tools such as Twitter or Google Analytics. loadbee GmbH has no influence on the use of such tools by X Corp. and has not been informed of such potential use. If tools of this kind are used by X Corp. for the loadbee GmbH account, loadbee GmbH has neither commissioned this nor supported it in any way. Furthermore, the data obtained during the analysis will not be made available to loadbee GmbH. Only certain non-personal information about the X-activity, such as the number of profile or link clicks through a specific post, is visible to loadbee GmbH via its account. Furthermore, loadbee GmbH has no way of preventing or stopping the use of such tools on its X-Account.
       You may restrict the processing of your data in the general settings of your X account and under the “Data Protection” section. In addition, you can restrict X’s access to contacts, calendar data, photos, location data, etc. in the settings of your mobile devices (smartphones, tablet computers). However, this depends on the operating system used. Further information on these issues is available on the following Twitter support pages:
       https://help.x.com/en/safety-and-security/x-privacy-settings
       You can find out more about viewing your own data at X here:
       https://help.x.com/en/managing-your-account/accessing-your-x-data
       You may also request information using the X-Data Protection Form or the Archive Request Form:
       https://help.x.com/en/forms/privacy
       https://help.x.com/en/managing-your-account/how-to-download-your-x-archive
       Data processed by loadbee GmbH
       loadbee GmbH also processes your data when you communicate with us via X.
       Processing is carried out for the purpose of responding to your submissions. This constitutes a legitimate interest on our part (Art. 6 (1) (f) GDPR). Further processing of visitors’ personal data will only take place if necessary to process an inquiry or comment.
       The initial recipient of the data is X, where it may be passed on to third parties for their own purposes and under X’s responsibility. The recipients of publications include the public, i.e., potentially everyone.
       X Corp. may transfer your data to the USA or other third countries. Please note that these countries may not have a level of data protection comparable to that in the EU. X ensures an appropriate level of data protection in accordance with the requirements of the GDPR through certification according to the EU-US Data Privacy Framework (DPF). Further information on data processing and the protective measures applied can be found in X’s privacy policy at: https://x.com/privacy.
12. Webinars
    We offer you the opportunity to participate in our webinars. The webinars are used to present our products, for training purposes or to provide information on other topics that may be relevant or of interest to you. To participate in and conduct the webinar, we need your contact information, such as the email address, name, company, and position. After registration, you will receive an email notification from us with the login details. Data processing is carried out on the basis of our legitimate interest pursuant to Art. 6 (1) (f) GDPR to ensure that our webinars run effectively and smoothly.
    When conducting webinars, we use the “GoToWebinar” application from LogMeIn Ireland Unlimited Company, The Reflector, 10 Hanover Quay, Dublin 2, D02R573, Ireland (“LogMeIn”). During use, data is transmitted to the provider and processed by them on our behalf. This applies in particular to your registration data, technical session data (e.g., participant IP address, device information) and other data you yourself have provided during the webinar (e.g., via the chat function). The provider of GoToWebinar processes the data exclusively on our instructions in the context of contract processing. When LogMeIn processes data, transfers to the USA cannot be ruled out. The provider bases such transfers on the EU-US Data Privacy Framework, which ensures legally compliant transfer to the USA.
    In addition, we will use the contact details you provide to contact you for sales purposes following a webinar. This takes place on the basis of your consent in accordance with Art. 6 (1) (a) GDPR. You can revoke your consent at any time.
    We would also like to point out that all our webinars are recorded for our own purposes. However, we do not collect any personal data from participants.
13. Links to websites of other providers
    Our website may contain links to websites of other providers to which this privacy policy does not apply. We have no influence on the content of these linked websites. They are subject to the liability of the respective site providers. If the use of the websites of other providers involves the processing of personal data, please note the data protection information of the respective providers.
14. Your rights
    1. You have the following rights with regard to your personal data:
       • Right to information:
         According to the GDPR, any person affected by the processing of personal data has the right to obtain from the controller at any time, free of charge, information about the personal data stored about him or her and a copy of this information. Furthermore, the European legislator has granted the data subject access to the following information:
         • Processing purposes
         • Categories of personal data being processed
         • The recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organizations
         • Where possible, the expected period for which the personal data will be stored, or, where not possible, the criteria used to determine that period
         • The right to rectification or erasure of personal data concerning them or to restriction of processing by the controller or a right to object to such processing
         • The right of appeal to a supervisory authority
         • If personal data is not collected from the data subject: All available information about the origin of the data
         • The existence of automated decision-making, including profiling, referred to in Article 22 (1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and intended consequences of such processing for the data subject

         In addition, the data subject has the right to information as to whether personal data has been transferred to a third country or to an international organization. If this is the case, the data subject also has the right to obtain information about the relevant guarantees in connection with the transfer.
         If a data subject wishes to exercise this right to information, he or she may contact an employee of the controller at any time.

       • Right to withdraw consent to data protection:
         Any person affected by the processing of personal data has the right to withdraw their consent to the processing of personal data at any time.
         If a data subject wishes to exercise this right to withdraw their consent, he or she may contact an employee of the controller at any time and by any means of communication.
       • Right to rectification:
         The data subject has the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. Taking into account the purposes of the processing, the data subject shall have the right to request the completion of incomplete personal data, including by means of providing a supplementary statement.
         If a data subject wishes to exercise this right to information, he or she may contact an employee of the controller at any time.
       • Right to erasure / right to be forgotten:
         The data subject has the right to obtain from the controller the erasure of personal data concerning him or her without undue delay, and the controller has the obligation to erase personal data without undue delay where one of the following grounds applies:
         • The personal data is no longer required for the purposes for which it was collected or otherwise processed.
         • The data subject withdraws their consent on which processing is based according to Article 6 (1) (a), or Article 9 (2) (a), and there is no other legal grounds for processing.
         • The data subject objects to processing pursuant to Article 21 (1) and there are no overriding legitimate grounds for processing, or the data subject objects to processing pursuant to Article 21 (2).
         • The personal data was processed unlawfully.
         • The erasure of personal data is necessary to fulfill a legal obligation under Union or Member State law to which the controller is subject.
         • The personal data was collected in relation to the provision of information society services referred to in Article 8 (1).

         If a data subject wishes to exercise this right to erasure/right to be forgotten, he or she may contact an employee of the controller at any time.
         If we have made the personal data public and are obliged to erase it pursuant to Art. 17 (1) GDPR, we shall take appropriate measures, including technical ones, taking into account the available technology and the implementation costs, to inform data controllers which process the personal data that a data subject has requested the erasure by such controllers of all links to these personal data or of copies or replications of these personal data. Our staff will take the necessary measures.

       • Right to restriction of processing:
         The data subject has the right to demand the controller to restrict processing if one of the following conditions applies:
         • The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify its accuracy
         • Processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead
         • The controller no longer needs the personal data for the purposes of processing, but the data subject needs the data to assert, exercise, or defend legal claims
         • The data subject has objected to processing pursuant to Article 21 (1), pending verification whether the legitimate grounds of the controller override those of the data subject.

         If a data subject wishes to exercise this right to restricted processing, he or she may contact an employee of the controller at any time.

       • Right to object to processing:
         Any person affected by the processing of personal data has the right granted by the GDPR to object at any time to the processing of personal data concerning him or her which is carried out on the basis of Article 6 (1) (e) or (f) GDPR, for reasons arising from his or her particular situation. This also applies to profiling based on these provisions.
         In the event of objection, we will no longer process the personal data unless we can demonstrate compelling legitimate grounds for processing which outweigh the interests, rights, and freedoms of the data subject, or processing serves to assert, exercise, or defend legal claims.
         If we process personal data for direct marketing purposes, the data subject has the right to object at any time to such processing for advertising purposes. This also applies to profiling, insofar as this is related to such direct advertising. If the data subject objects to us processing the data for direct marketing purposes, we will no longer process the personal data for these purposes.
         In addition, the data subject has the right, on grounds relating to his or her particular situation, to object to the processing of personal data concerning him or her by us for scientific or historical research purposes, or for statistical purposes pursuant to Article 89(1) GDPR, unless processing is necessary for the performance of a task carried out for reasons of public interest.
         To exercise the right to object, the data subject may contact any employee directly. Furthermore, in the context of the use of information society services, the data subject is free to exercise his or her right of objection by means of automated procedures using technical specifications, notwithstanding Directive 2002/58/EC.
       • Right to data portability:
         The data subject has the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and has the right to transmit this data to another controller without hindrance from the controller to which the personal data was provided, provided that
         • Processing is based on consent pursuant to Article 6 (1) (a) or Article 9 (2) (a) or on a contract pursuant to Article 6 (1) (b), and
         • Processing is carried out using automated procedures.

         When exercising their right to data portability pursuant to Art. 20 (1) GDPR, the data subject shall have the right to have the personal data transmitted directly from one controller to another, insofar as technically feasible and when doing so does not adversely affect the rights and freedoms of others.
         If a data subject wishes to exercise this right to data portability, he or she may contact an employee of the controller at any time.

       • Automated decision in individual cases including profiling
         Every person affected by the processing of personal data has the right granted by the GDPR not to be subjected to a decision based exclusively on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her, provided that the decision
         • is not necessary for the conclusion or performance of a contract between the data subject and the controller, or
         • is permitted by Union or Member State law to which the controller is subject and which also stipulates appropriate measures to safeguard the rights and freedoms and legitimate interests of the data subject, or
         • with the express consent of the data subject.

         If the decision is necessary for entering into, or the performance of, a contract between the data subject and a data controller, or if the decision is based on the data subject’s explicit consent, we shall implement suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests, including at a minimum the right to request human intervention on the part of the controller, to express his or her point of view and to contest the decision.
         If the data subject wishes to exercise rights with regard to automated decisions, he or she can contact an employee of the controller at any time.

    2. You also have the right to complain to a data protection supervisory authority about our processing of your personal data. The supervisory authority responsible for our company:
       The State Commissioner for Data Protection and Freedom of Information Baden-Württemberg
       Lautenschlagerstraße 20
       70173 Stuttgart
       Tel.: +49 711 615541-0
       Email: poststelle@lfdi.bwl.de