Yellow Tree GmbH & Co. KG Yellow Tree GmbH & Co. KG

Privacy policy

Privacy policy at a glance

General information

The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is any data by which you can be personally identified. Detailed information on the subject of data protection can be found in our privacy policy listed below this text.


Data collection on our website

Who is responsible for data collection on this website?
Data processing on this website is carried out by the website operator. You can find their contact details in the website’s legal notice (imprint).

How do we collect your data?
Some data is collected when you provide it to us. This may include, for example, data you enter in a contact form.

Other data is automatically collected by our IT systems when you visit the website. This data is primarily technical (e.g., browser type, operating system, or the time of page access). The collection of this data happens automatically as soon as you enter our website.

What do we use your data for?
Part of the data is collected to ensure the proper functioning of the website. Other data may be used to analyze user behavior.

What rights do you have regarding your data?
You have the right to receive information free of charge at any time about the origin, recipients, and purpose of your stored personal data. You also have the right to request the correction, blocking, or deletion of this data. For this purpose, as well as for other questions concerning data protection, you can contact us at any time at the address provided in the imprint. You also have the right to lodge a complaint with the competent supervisory authority.

Furthermore, under certain circumstances, you have the right to request the restriction of the processing of your personal data. Details can be found in the section “Right to restriction of processing” in our privacy policy.

Analysis tools and tools from third parties

When visiting our website, your browsing behavior may be statistically evaluated. This is done primarily using cookies and analytics programs. The analysis of your browsing behavior is usually anonymous; your behavior cannot be traced back to you.You can object to this analysis or prevent it by not using certain tools. Detailed information can be found in the following privacy policy.

You can object to this analysis. We will inform you about the options for objecting in this privacy policy.


General notes and mandatory information

Data protection

The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

When you use this website, various personal data are collected. This privacy policy explains which data we collect and what we use it for. It also explains how and for what purpose this happens.

Please note that data transmission over the Internet (e.g., when communicating by email) can have security gaps. A complete protection of the data from access by third parties is not possible.


Information about the entity responsible

The entity responsible for data processing on this website is:

YELLOW TREE GMBH & CO. KG
Obere Leimbach 4A
57074 Siegen

T: 0271 / 70 30 64-0
F: 0271 / 70 30 64-99

datenschutznoSpam@yellowtreenoSpam.de

The entity responsible is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g., names, E-Mail addresses, etc.).

Revocation of your consent to data processing

Many data processing operations are only possible with your explicit consent. You can revoke your consent at any time. An informal E-Mail to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to object to data collection in special cases and to direct advertising (Art. 21 GDPR)

If the data processing is based on Article 6(1)(e) or (f) of the GDPR, you have the right at any time to object, on grounds relating to your particular situation, to the processing of your personal data, including profiling based on those provisions. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves to assert, exercise, or defend legal claims (objection pursuant to Article 21(1) GDPR).

Where your personal data is processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing; this also applies to profiling to the extent that it is related to such direct marketing. If you object, your personal data will no longer be used for direct marketing purposes (objection pursuant to Article 21(2) GDPR).

Right to lodge a complaint with a supervisory authority

In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, place of work, or the place of the alleged violation. This right exists without prejudice to other administrative or judicial remedies.

Right to data portability

You have the right to have data that we process on the basis of your consent or in fulfillment of a contract automatically handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done if technically feasible.

Information, blocking, deletion, and correction

Within the framework of applicable legal provisions, you have the right at any time to free access to your stored personal data, its origin, recipients, and the purpose of the data processing and, if necessary, a right to correction, blocking, or deletion of this data. For further questions on personal data, you can contact us at any time at the address given in the imprint.

Right to restriction of processing

You have the right to request the restriction of the processing of your personal data. You can contact us at any time at the address given in the imprint for this purpose. The right to restriction of processing applies in the following cases:

  • If you dispute the accuracy of your personal data stored with us, we usually need time to verify this. During the verification period, you have the right to request the restriction of the processing of your personal data.
  • If the processing of your personal data was/is unlawful, you can request the restriction of data processing instead of deletion.
  • If we no longer need your personal data, but you require it for the exercise, defense, or assertion of legal claims, you have the right to request restriction of the processing instead of deletion.
  • If you have objected pursuant to Article 21(1) GDPR, a balance must be struck between your interests and ours. As long as it is not yet clear whose interests prevail, you have the right to request the restriction of the processing of your personal data.

If you have restricted the processing of your personal data, such data – apart from being stored – may only be processed with your consent or for the establishment, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a member state.

Audio and video conferences

Data processing:
To communicate with our customers, we use online conferencing tools. The specific tools we use are listed below. When you communicate with us via video or audio conference online, your personal data will be collected and processed by us and the provider of the respective conferencing tool. These tools collect the data you provide (e.g., E-Mail address, telephone number), as well as metadata such as duration, start and end times, participant count, and other communication context. The tools also process technical data necessary for the service (e.g., IP address, MAC address, device IDs, device type, OS version, hardware info). If you share or upload content via the tool, that content may also be stored on the provider’s servers (e.g., recordings, chat messages, files). Please note that our control over data processing by the providers is limited and subject to their own policies. For more details, please refer to the providers’ privacy policies.
 

Purpose and legal basis:
The use of conferencing tools is based on Art. 6(1)(b) GDPR (contract performance) and Art. 6(1)(f) GDPR (legitimate interest in efficient communication). Where consent is required, processing is based on Art. 6(1)(a) GDPR and may be withdrawn at any time.

Storage duration:
Data collected directly by us is deleted when it is no longer necessary, you request deletion, or you withdraw consent. Cookies remain until deleted by you. Statutory retention obligations remain unaffected. We have no influence over the retention periods set by the conferencing tool providers.

We use the following conferencing tools:

Google Meet:
Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland Privacy Policy: policies.google.com/privacy We have concluded a data processing agreement with Google in accordance with GDPR requirements.

Data collection on our website

Server log files

The provider of this website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These include:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • Time of the server request
  • IP address

This data is not merged with other data sources.

The collection of this data is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of his website – for this purpose, server log files must be collected.

Our social media presence

Data processing by social networks

We maintain publicly accessible profiles on social networks. The specific social networks we use are listed below.

Social networks like Facebook, Google+, etc., can generally analyze your user behavior extensively when you visit their website or a website with integrated social media content (e.g., like buttons or advertising banners). By visiting our social media presence, numerous data processing operations relevant to data protection are triggered. Specifically:

If you are logged into your social media account and visit our social media presence, the operator of the social media portal can assign this visit to your user account. Your personal data may also be collected if you are not logged in or do not have an account with the respective social media portal. This data collection occurs, for example, via cookies stored on your device or by recording your IP address.

With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. This enables them to display interest-based advertising to you within and outside the respective social media presence. If you have an account with the respective social network, interest-based advertising can be displayed on all devices on which you are logged in or have been logged in.

Please note that we cannot fully trace all processing operations on the social media portals. Depending on the provider, additional processing operations may be carried out by the operators of the social media portals. For details, please refer to the terms of use and privacy policies of the respective social media portals.

Legal basis
Our social media presence aims to ensure a comprehensive presence on the internet. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR. The analysis processes initiated by the social networks may be based on different legal grounds, which must be specified by the operators of the social networks (e.g., consent pursuant to Art. 6(1)(a) GDPR).

Controller and assertion of rights
If you visit one of our social media presences (e.g., Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during this visit. You can assert your rights (information, correction, deletion, restriction of processing, data portability, and complaint) generally both against us and against the operator of the respective social media portal (e.g., against Facebook).

Please note that despite joint responsibility with the operators of the social media portals, we do not have full influence over the data processing operations of the social media portals. Our possibilities are primarily determined by the corporate policy of the respective provider.

Storage duration
The data we collect directly via the social media presence will be deleted from our systems as soon as the purpose for their storage ceases to apply, you request us to delete them, you revoke your consent to storage, or the purpose for data storage ceases to apply. Stored cookies remain on your device until you delete them. Mandatory statutory retention periods remain unaffected.

We have no influence on the storage duration of your data stored by the operators of the social networks for their own purposes. For details, please inform yourself directly with the operators of the social networks (e.g., in their privacy policy).


Social networks in detail

Facebook
We have a profile on Facebook. Provider is Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. Facebook has a certification under the EU-US Privacy Shield.

We have concluded an agreement with Facebook on joint responsibility for data processing (Controller Addendum). This agreement specifies which data processing operations we or Facebook are responsible for when you visit our Facebook fan page. You can view this agreement at the following link:
www.facebook.com/legal/terms/page_controller_addendum

You can adjust your advertising settings independently in your user account. To do this, click on the following link and log in:
www.facebook.com/settings

Details can be found in Facebook's privacy policy:
www.facebook.com/about/privacy/

Instagram
We have a profile on Instagram. Provider is Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA. Details on how they handle your personal data can be found in Instagram's privacy policy:
help.instagram.com/519522125107875

XING
We have a profile on XING. Provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. Details on how they handle your personal data can be found in XING's privacy policy:
privacy.xing.com/de/datenschutzerklaerung

LinkedIn
We have a profile on LinkedIn. Provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn has a certification under the EU-US Privacy Shield. LinkedIn uses advertising cookies.

If you want to deactivate LinkedIn advertising cookies, please use the following link:
www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Details on how they handle your personal data can be found in LinkedIn's privacy policy:
www.linkedin.com/legal/privacy-policy

 

Please note that this translation is provided for informational purposes and should not be considered legally binding. For official matters, it is recommended to consult the original German text or seek legal advice.

 

Say Hello

Wherever you are, wherever you’re headed – We’re ready to grow together.

hellonoSpam@yellowtreenoSpam.de +49 271 70 30 64 – 0