Select Page

Privacy Statement

We appreciate your interest in using our website. The protection of your personal data is important to us, and we want you to feel secure when visiting our website.

1. Information concerning the collection of personal data

(1) In the following, we inform you about the collection of personal data when using our website. Personal data means all data that can be related to you personally, such as your name, address, e-mail addresses, and user behaviour.

(2) Controller as per the EU General Data Protection Regulation (GDPR) is:

Neo Q Quality in Imaging GmbH
Salzufer 15/16
In der Lanolinfabrik
10587 Berlin
Germany
Phone: +49 (0) 30 863 236 440
Fax: +49 (0) 30 863 236 499
E-mail: info@neo-q.de

You can reach our data protection officer by contacting us on the following email address: datenschutz@neo-q.de or by sending us a letter addressed to “Data Protection Officer”.

(3) If we use commissioned service providers for individual functions of our offering or wish to use your data for advertising purposes, we will inform you in detail below about the respective processes.

2. Your Rights as a Data Subject

(1) You have the following rights against us with respect to the personal data concerning you:

  • Right of access by the data subject (Art. 15 GDPR):
    You have the right to request information about your personal data processed by us. In particular, you may obtain information about the purposes of processing, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the envisaged period of storage, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the source of your data if they were not collected by us, and the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details;
  • Right to rectification (Art. 16 GDPR):
    You have the right to request without undue delay the correction of inaccurate personal data concerning you or the completion of your personal data stored by us;
  • Right to erasure (Art. 17 GDPR):
    ou have the right to request the deletion of your personal data stored by us, unless processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise, or defence of legal claims;
  • Right to restriction of processing (Art. 18 GDPR):
    You have the right to request restriction of the processing of your personal data if you contest the accuracy of the data, the processing is unlawful but you oppose the erasure, we no longer need the data, but you require them for the establishment, exercise, or defence of legal claims, or you have objected to processing pursuant to Art. 21 GDPR;
  • Right to data portability (Art. 20 GDPR):
    You have the right to receive your personal data, which you have provided to us, in a structured, commonly used, and machine-readable format, or to request the transmission to another controller;
  • Right to object to processing (Art. 21 GDPR):
    You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you. In particular, you may object to the processing of your personal data for purposes of direct marketing and data analysis as well as related profiling. If you object, please state your reasons why we should not continue processing your personal data as we have been doing. In case of a justified objection, we will review the situation and either cease or adapt the data processing, or demonstrate our compelling legitimate grounds for continuing the processing;
  • Right to withdraw consent (Art. 7 (3) GDPR):
    You have the right to withdraw any consent you have previously given to us at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

 

(2) Please direct any requests concerning your data subject rights to the contact details listed in Section 1 above.

(3)You also have the right to lodge a complaint with a supervisory authority regarding our processing of your personal data. The competent supervisory authority for us is:

Berlin Commissioner for Data Protection and Freedom of Information https://www.datenschutz-berlin.de/.

3. Collection of Personal Data when Visiting our Website

When using the website purely for informational purposes, that is, if you do not register or otherwise transmit information to us, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which are technically necessary for us to display our website to you and to ensure stability and security (the legal basis is Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR):

  • IP address
  • Date and time of the query
  • Time zone difference relative to Greenwich Mean Time (GMT)
  • Content of the request (specific page)
  • Access status/HTTP status code
  • Amount of data transferred in each case
  • Website from which the request originates
  • Browser
  • Operating system and its user interface
  • Language and version of the browser software

 

The aforementioned data are processed by use for the following purposes:

  • Ensuring a smooth connection to the website
  • Ensuring comfortable use of our website 
  • Evaluation of system security and stability 
  • For other administrative purposes

This information is temporarily stored in so-called log files. The aforementioned information is collected automatically and stored until automatic deletion.

4. Use of Cookies

(1) In addition to the data mentioned above, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive and associated with the browser you are using. They allow certain information to be passed to the entity that sets the cookie (in this case, us). Cookies cannot run programs or transmit viruses to your computer. They serve to make the overall Internet offering more user-friendly and effective.

(2) Type of Cookies

This website uses the following types of cookies the scope and functionality of which are explained below:

  • Transient Cookies (see a)
  • Persistent Cookies (see b)

 

a) Transient cookies are automatically deleted when you close the browser. These include, in particular, session cookies. They store a so-called session ID, with which various requests from your browser can be assigned to a common session. This allows your computer to be recognised when you return to our website — for example, to prevent you from having to log in again on each page change. Session cookies are deleted when you log out or close the browser.

b) Persistent cookies are automatically deleted after a specified period, which may differ depending on the cookie. The duration of storage depends on the expiry date of the respective cookie and your browser settings. You can delete cookies at any time in the security settings of your browser. These cookies enable the website to remember your information and settings for future visits, providing you with faster and more convenient access — for example, by remembering your language preferences.

(3) We use cookies either based on our legitimate interests (technically necessary cookies) or based on your consent (optional cookies), according to your selection in the cookie banner displayed when visiting our website. You can also configure your browser settings as you wish and, for example, refuse the acceptance of third-party cookies or all cookies. Please note that this may limit the functionality of our website. Alternatively, you can later change your previously given consent via the black hyperlink at the bottom right of the website. However, please note that if you do so, some functions of this website may no longer be available in full.

5. Recipients or Categories of Recipients of Data

(1) In the course of our activities and services, it may be necessary to disclose personal data concerning you to natural or legal persons or other entities. We conclude data processing agreements (Art. 28 GDPR) with our service providers where applicable to ensure that they may only process your personal data in accordance with our explicit instructions. Furthermore, we ensure that such service providers have implemented the necessary technical and organisational measures to process your data securely and retain it only for as long as necessary. External service providers who may receive personal data generally fall into the following categories of recipients:

  • Credit institutions and payment service providers for billing and payment processing (e.g. online payment providers, parcel carriers)

  • IT service providers and cloud providers for maintaining our IT infrastructure, file management, or online optimisation services

  • Event organisers, e.g. for special promotions or prize draws of selected partners

  • Debt collection agencies and lawyers for collecting receivables and enforcing claims in court. In the event of debt collection, we will inform you in advance if personal data (customer and contact data, payment data, consumption data, and claim data) are to be transferred to a collection service provider.

 

(2) If data are processed in countries outside the EU, we ensure that your personal data are processed in accordance with European data protection standards. If there is no adequacy decision by the European Commission, we will transfer data only to service providers in third countries that provide suitable guarantees pursuant to Art. 46 GDPR (usually EU Standard Contractual Clauses). In cases where this cannot be ensured even through contractual arrangements, we will seek additional safeguards and commitments from the recipient in the respective country.

6. Contact form

(1) When contacting us (for example via e-mail or by using the contact form), the information you provide will be processed for the purpose of handling the inquiry and for the case that follow-up questions arise. The contact form is an additional service provided by us and serves our legitimate interest in enabling you to contact us quickly and easily (Art. 6 para. 1 lit. f GDPR).

(2) The personal data collected by us in this context will be deleted once the matter associated with the contact inquiry has been fully resolved and it can be assumed that the specific contact will not become relevant again in the future, unless statutory retention obligations prevent this.

7. Social Media Presence

(1) We operate online presences in the social networks and platforms listed below (e.g. fan pages or employer review portals). These networks and platforms are operated exclusively by the respective providers. Our presence serves communication with customers, interested parties and users, and aims to promote advertising and market research. If you contact us via our social media channels, we process the data you provide as well as the data necessary to process your inquiry (Art. 6 para. 1 lit. b GDPR). Processing of additional data is based on Art. 6 para. 1 lit. f GDPR due to our legitimate interest in direct communication with users and optimizing the design of our online presence. Where you have given your consent to the operators of the respective social media platforms (e.g. by means of a checkbox opt-in), processing takes place on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time with future effect by contacting the provider of the respective platform.

(2) When you visit our social media pages, your user data are collected and provided to us by the provider. The types of data differ by provider but generally include the following: :

  • Follower: number and stored profiles; information about growth and development over a defined time frame.
  • Reach: number of people who see a specific contribution; number of interactions with a contribution. From this, it can be deduced, for example, which content is better received by the community than others.
  • Ad performance: How many people were reached by a contribution or a paid ad and have interacted with it?
  • Demographics: Average age of visitors, gender, location, language.

 

(3) As our social media channels are operated by the respective network providers, they may also use your personal data independently of us. This often includes recording your IP address, creating statistical evaluations, and processing additional information stored in cookies. These data are often used to display interest-based advertising both within and outside the platforms. We as operators have no influence on this and cannot disable these functions.

(4) Requests for information and the exercise of data subject rights can most effectively be addressed directly to the platform providers, since only they have access to your data. Where our cooperation is required, we will support you in asserting your rights.

(5) On our social media platforms, we are jointly responsible with the respective providers for the data processing operations taking place there. Where possible, we have concluded joint controller agreements pursuant to Art. 26 GDPR.

(6) The following providers are used. Where data processing outside the EU occurs, we have taken the necessary measures to ensure the protection of data (generally by concluding EU Standard Contractual Clauses). For more information on each provider’s terms of use and privacy policies, see:

LinkedIn (LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland): https://www.linkedin.com/legal/privacy-policy.
Xing (New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany): https://privacy.xing.com/de/datenschutzerklaerung/allgemeine-hinweise.
Kununu (Anwendung der New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany): https://privacy.xing.com/de/datenschutzerklaerung/allgemeine-hinweise.
YouTube (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland): https://policies.google.com/privacy?hl=de&gl=de.

Facebook: https://www.facebook.com/privacy/policy/

Instagram: https://www.instagram.com/about/legal/privacy/

 

8. Google Analytics

(1) Where you have given your consent, this website uses Google Analytics 4, a web analytics service of Google LLC. For users in the EU/EEA and Switzerland, the controller is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).

(2) Google Analytics uses cookies to analyze your use of our website. The information collected via cookies about your use of this website is generally transmitted to and stored on Google servers in the USA.

(3) We use the User-ID function to assign a unique, permanent ID to one or more sessions (and the activities within those sessions) and analyze user behavior across devices.

(4) IP anonymization is enabled by default in Google Analytics 4. Within member states of the EU or other EEA contracting states, Google shortens your IP address before transmission. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. The IP address transmitted by your browser is not merged with other Google data.

(5) Google uses the information on behalf of the website operator to evaluate your use of the website, compile reports on website activity, and provide other services relating to website activity and internet usage. The reports provided by Google Analytics serve to analyze the performance of our website and the success of our marketing campaigns.

(6) Recipients of the data may include: Google Ireland Limited (processor), Google LLC (USA), and Alphabet Inc. (USA). It cannot be ruled out that U.S. authorities may access data stored by Google.

(7) The European Commission adopted its adequacy decision for the USA on July 10, 2023. Google LLC is certified under the EU-U.S. Privacy Framework. In addition, EU Standard Contractual Clauses have been concluded with Google to ensure an adequate level of protection.

(8) Data linked to cookies will be deleted after 2 months. The maximum lifetime of Google Analytics cookies is 2 years. Data deletion occurs automatically once the retention period expires.

(9) The legal basis for this processing is your consent pursuant to Art. 6 para. 1 lit. a GDPR and §25 para. 1 TTDSG.

(10) You may withdraw your consent at any time by adjusting your cookie settings. You can also prevent cookie storage through browser settings or install the Google Analytics opt-out browser add-on.

For more information about Google Analytics’ terms of use and Google’s privacy policy, please visit

https://marketingplatform.google.com/about/analytics/terms/en/ and https://policies.google.com/?hl=en

9. Embedding YouTube Videos

(1) For marketing purposes, we have embedded YouTube videos into our website that are stored on www.youtube.com and can be played directly from our website. These are embedded in ‘extended privacy mode’. Legal basis: Art. 6 para. 1 lit. f GDPR.

(2) By visiting the website, YouTube receives the information that you accessed the respective page. Data transfer occurs regardless of whether you are logged in with a YouTube account. If you are logged in to Google, your data are assigned to your account. If you do not wish this, log out before activating the button.

(3) YouTube stores data as user profiles and uses them for advertising, market research, and website design purposes. You have the right to object to the creation of such profiles by contacting YouTube directly. Data may be processed on servers in the USA. Google LLC (YouTube) is certified under the EU-U.S. Privacy Framework.

Further information on the EU-US Privacy Framework can be found at the following link https://www.dataprivacyframework.gov/s/

(4) Further information on the purpose, scope of data collection, your rights, setting options to protect your privacy and processing by YouTube is available under: https://www.google.de/intl/de/policies/privacy, https://policies.google.com/privacy?hl=de&gl=de, https://www.youtube.com/static?gl=DE&template=terms&hl=de, https://support.google.com/youtube/answer/171780?hl=de.

10. Analysis Tools and Advertising

SalesViewer®
Data is collected on this website and stored for marketing and market research as well as optimization purposes using SalesViewer® technology from SalesViewer® GmbH on the basis of the website operator’s legitimate interests (Art. 6 (1) lit. f) of the EU General Data Protection Regulation (GDPR)).

A JavaScript-based code is used for this purpose to collect company-related data and for its usage. Data collected using this technology is encrypted using a non-reversible one-way function (termed ‘hashing’). The data is immediately pseudonymized and is not used to personally identify the visitor to this website.

You can object to the collection and storage of data at any time with effect for the future by visiting the website https://www.salesviewer.com/opt-out in order to prevent the collection of data by SalesViewer® via this website in the future. An opt-out cookie for this website is placed on your device. If you delete your cookies in this browser, you will need to click this link again.

SalesViewer® GmbH is headquartered in Bochum, Germany. More about SalesViewer can be found at: https://www.salesviewer.com/datenschutz.

Newsletter

If the newsletter of our company is subscribed to, the data entered in the respective input mask will be transmitted to the controller responsible for processing.
Subscription to our newsletter takes place through a so-called double opt-in procedure. This means that after registration, you will receive an e-mail asking you to confirm your registration. This confirmation is necessary to ensure that no one can register with someone else’s e-mail address.

When registering for the newsletter, the user’s IP address as well as the date and time of registration are stored. This serves to prevent misuse of the services or of the e-mail address of the person concerned. There is no disclosure of the data to third parties, except where there is a legal obligation to do so.

The data are used exclusively for sending the newsletter. The subscription to the newsletter may be terminated at any time by the data subject. Likewise, consent to the storage of personal data may be revoked at any time. For this purpose, a corresponding link can be found in each newsletter.

The legal basis for the processing of data following subscription to the newsletter, as well as for the sending of the newsletter itself, is Art. 6 para. 1 lit. a GDPR if the user has given consent. The legal basis for sending the newsletter to existing customers as a result of the sale of goods or services, under certain conditions, is § 7 para. 3 UWG.

Google reCaptcha

We use the reCAPTCHA service from Google during newsletter registration. In this process, Google collects certain data to determine whether access to our website is made by a human or a machine, e.g. your IP address, your screen and window resolution, the language set in your browser, the time zone you are located in, the browser’s user agent, and installed browser plug-ins. We have extended the service with the code “get._anonymizeIP();”, which causes Google to shorten your IP address. Further information on the shortening of the IP address can be found in the explanations for Google Analytics.

The recipient of the data is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, as a processor. For this purpose, we have concluded a data processing agreement and the EU Standard Contractual Clauses with Google. In addition, Google has committed itself to the EU-U.S. Data Privacy Framework: https://www.dataprivacyframework.gov/s/participant-search

It cannot be ruled out that U.S. authorities may access data stored by Google. We use this service to distinguish whether entries in our newsletter input form are made by a human or are misused by automated/machine input, and thereby to protect our technical systems.

Legal basis: The legal basis for the data processing is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR.
Retention period: The data collected through Google functions are stored and regularly deleted. You can prevent the storage of cookies by adjusting your browser settings accordingly.

Further information on Google Inc.’s privacy policy can be found at: https://www.google.de/intl/de/policies/privacy/

 

11. Applications

If you apply to us via our “Jobs” section, by e-mail, by post, or via social media (Instagram and Facebook), we process your personal data exclusively for the purpose of conducting the application procedure and filling the advertised position.

When you apply for a position, you will be asked to provide certain personal data (including name, address, and e-mail address). For an application within our company, it is also mandatory to include your professional background.

The information you provide will be treated confidentially and will only be passed on to those persons who are involved in the specific recruitment process.

Application via Social Media

For the targeted approach of potential applicants, we place job advertisements on social media platforms through our service provider Burner Marketing,
Burner Marketing GmbH, Medical Valley Center, Henkestraße 91, 91052 Erlangen, Germany. If you click on such an advertisement, you will be redirected to an application page provided via the tool Perspective, Perspective Software GmbH, Müggelstraße 22, 10247 Berlin, Germany (processor of Burner Marketing).
There, you can directly enter your application data.

Burner Marketing and Perspective process the data on our behalf in accordance with Art. 28 GDPR. Data processing takes place exclusively within the European Union.

Further information about Burner Marketing can be found at: https://www.burnermarketing.com/datenschutzerklarung

Further information about Perspective can be found at: https://www.perspective.co/de/datenschutzerklaerung

Application via Our Career Page and Other Channels

For the management and processing of applications, we use the HR software Personio, Personio SE & Co. KG, Seidlstraße 3, 80335 Munich, Germany.
Data processing is carried out both by us and by Personio as our processor in accordance with Art. 28 GDPR. Processing takes place exclusively within the European Union.

We process applicant data for the purpose of establishing or carrying out an employment relationship (conducting the application process and, if applicable, initiating or concluding an employment contract) on the basis of Art. 88 GDPR in conjunction with § 26 BDSG and Art. 6 para. 1 lit. b GDPR.

Your data will be automatically deleted no later than six months after completion of the application process, unless employment has occurred or an agreement has been made to store your data for a longer period. In the event of employment, your data will be stored for the duration of the employment relationship.

Your data will not be passed on to third parties unless required by law or unless you have given your explicit consent.