Legal Details
Privacy
We, HeySaaS GmbH, residing for business purposes at Gottfried-Arnold-Strasse 3, 35398 Giessen, Germany are the operator of this website. We take the protection of your personal data very seriously and strictly adhere to all applicable laws and regulations on data protection, in particular the General Data Protection Regulation (GDPR), the German Data Protection Act (Bundesdatenschutzgesetz - BDSG) and the German Digital Services Act (Digitale Dienste Gesetz - DDG). The following explanations will give you an overview of how we ensure this protection, the data we process and for which purpose.
1) Name and address of the controller
The controller within the meaning of Art. 4 No. 7 of the GDPR is HeySaaS GmbH, Gottfried-Arnold-Strasse 3, 35398 Giessen, Germany and you can reach us via privacy@heysaas.de.
2) Your rights as the data subject
You have the following rights regarding your personal data:
Right of access to information
Right to rectification or erasure
Right to restriction of processing
Right to object to processing
Right to data portability
Please send an email to privacy@heysaas.de to exercise one or more of your rights. If you believe that the processing of personal data concerning you violates the GDPR, you have the right to appeal to a supervisory authority, without prejudice to any other remedies.
3) General information regarding data processing
When using the website for information purposes only, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which are technically necessary for us to display our website to you and to provide stability and security (in accordance with Art. 6 para. 1 s. 1 lit. f GDPR):
IP address,
date and time of the request,
time zone difference to Greenwich Mean Time (GMT),
content of the request (specific page),
access status/HTTP status code,
the amount of data transferred in each case,
website from which the request comes,
browser,
operating system and its surface,
language and version of the browser software.
In addition to the aforementioned data, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard disk in the browser you use. Through these cookies we receive certain information from you. Cookies cannot run programs or transmit viruses to your computer. They serve to make the website more user-friendly and effective overall.
We process and store your personal data only for the period necessary to achieve the storage purpose or insofar as required pursuant to applicable laws. If the storage purpose ceases to apply or if a storage period stipulated by applicable laws expires, the personal data is routinely blocked or deleted in accordance with the statutory provisions.
The criterion for the duration of the storage of your personal data is the respective legal retention period. After expiry of this period, the corresponding data will be routinely deleted, if it is no longer required for contractual performance or contract initiation or other legitimate interests.
4) Use of cookies
This website uses the following types of cookies, the scope and functioning of which are explained below:
Transient cookies (see I),
Persistent cookies (see II).
I. Transient cookies are automatically deleted when you close your browser. These include session cookies. Session cookies store a so-called session ID, with which different requests of your browser can be assigned to the common session. This will allow your computer to be recognized when you return to our website. Session cookies are deleted when you log out or close your browser.
II. Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete cookies at any time in the security settings of your browser.
You can configure your browser settings according to your wishes and, for example, refuse the acceptance of third-party cookies or all cookies. Please note that you may not be able to use all the functions of this website as a result.
We use cookies to identify you for follow-up visits if you have an account with us. Otherwise, you will have to log in again for each visit.
The purpose of using technically required cookies is to simplify the use of our website for your benefit. Several functionalities of our website cannot be offered without the use of cookies. These functionalities require that the browser be re-identified. The use of analytical cookies serves the purpose of improving the quality of our website and its content. These cookies show the use of the website, enabling us to optimize what we offer.
The legal basis for the use of cookies is Art. 6 Par. 1 S. 1 lit. f GDPR. Our legitimate interest is covered in the preceding paragraph.
5) Hosting
The HeySaaS website is hosted by Framer B.V., Singel 258, 1016 AB Amsterdam, Netherlands (hereinafter referred to as Framer).
6) Analysis and third-party tools
We use the measures and tools listed below based on Art. 6 para. 1 sentence 1 lit. f GDPR. Using these measures, we ensure a needs-based design and continuous optimization of our website and the services we provide. Furthermore, we use the following measures to statistically record the use of our website and to evaluate it for the purpose of optimizing what we offer to you.
The respective data processing purpose and categories of data are set out in the tools listed below:
a) Framer Website Builder
For the presentation of our website we use Framer B.V., Singel 258, 1016 AB Amsterdam, Netherlands (hereinafter referred to as Framer). When you visit our website, Framer collects various log files including your IP addresses.
Framer is a tool for creating and hosting websites. Framer stores cookies or other recognition technologies that are required to display the page, to provide certain website functions and to ensure security (necessary cookies).
Details can be found in Framer’s privacy policy at: https://www.framer.com/legal/privacy-statement/.
The use of Framer is based on Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in ensuring that our website is displayed as reliably as possible. Where consent has been requested, the processing is carried out exclusively based on Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time.
b) Google Tag Manager
This website uses Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google Tag Manager is a tool that enables us to integrate tracking or statistical tools and other technologies on our website. Google Tag Manager itself does not create any user profiles, nor does it store cookies or t carry out any independent analyses. It is only used to manage and display the tools which are integrated when Google Tag Manager is in use. However, Google Tag Manager records your IP address, which may also be transmitted to Google's parent company in the United States.
The use of Google Tag Manager is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the speedy and uncomplicated integration and management of various tools on its website. Where consent has been requested, the processing is carried out exclusively based on Art. 6 para. 1 lit. a GDPR; the consent can be revoked at any time.
c) Google Analytics
This website uses Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses cookies to help the website analyze how users use the site. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. However, if IP anonymization is activated on this website, Google will shorten your IP address within the Member States of the European Union or in other states party to the Agreement on the European Economic Area prior to its transmission to a Google server in the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. Google will use this information on our behalf to evaluate your use of the website, to compile reports on website activity and to provide us with further services associated with website and Internet use.
The IP address transmitted by your browser in the context of Google Analytics is not merged with other Google data.
You may refuse the use of cookies by selecting the appropriate settings on your browser, however, please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing the data by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en.
This website uses Google Analytics with the extension "_anonymizeIp()". As a result, IP addresses are further processed in abbreviated form, so that identification can be ruled out. Therefore, where the data collected about you enables identification, such a possibility will be excluded immediately.
We use Google Analytics to analyze and regularly improve the use of our website. We can improve what we offer and make it more interesting to you as a user. For the exceptional cases in which personal data is transferred to the USA, Google has submitted to the EU-US Privacy Shield, available at https://www.privacyshield.gov/EU-US-Framework. The legal basis for the use of Google Analytics is Art. 6 Par. 1 S. 1 lit. f GDPR.
Third party information details are as follows: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.
Third party’s terms of use are available at: https://www.google.com/analytics/terms/de.html, Privacy overview: https://www.google.com/intl/de/analytics/learn/privacy.html, and Privacy policy: https://www.google.de/intl/de/policies/privacy.
d) LinkedIn
Our website uses the “LinkedIn Insight Tag” conversion tool from LinkedIn Ireland Unlimited Company. This tool creates a cookie in your web browser that enables the collection of the data, including the IP address, device and browser characteristics and page events (e.g. page views). This data is encrypted and anonymized within seven days and the anonymized data is deleted within 90 days. LinkedIn does not share any personal data with us but offers anonymized reports on the website target group and display performance. In addition, LinkedIn offers the possibility of retargeting via the Insight Tag. We can use this data to display targeted advertising outside the website without identifying you as a website visitor. Further information on data protection at LinkedIn can be found in the LinkedIn privacy policy.
LinkedIn members can control the use of their personal data for advertising purposes in their account settings. To deactivate the Insight tag on our website (“opt-out”) see here: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
e) HubSpot
We use HubSpot (EU Data Center) for marketing activities. When you submit a request using our website form, your data will be processed by Formspark (see (h) above) and stored in HubSpot for further marketing automation. HubSpot is a software company from the USA with a branch office HubSpot Ireland Limited in 2nd Floor 30 North Wall Quay, Dublin 1, Ireland. We use this integrated software solution for our own marketing, lead generation and customer service. This includes email marketing, which regulates the sending of newsletters and automated mailings, social media publishing and reporting, contact management such as user segmentation and CRM, landing pages and contact forms. HubSpot uses cookies, small text files that are stored locally in the cache of your web browser on your end device and enable us to analyze your use of the website. HubSpot evaluates the information collected (e.g. IP address, geographical location, type of browser, duration of the visit and pages accessed) on our behalf so that we can generate reports on the visit and the pages visited. Information collected by HubSpot and the content of our website are stored on the servers of HubSpot's service providers.
Insofar as you have given your consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, the processing on this website is carried out for the purpose of website analysis and, since personal data is transferred to the USA, further protective mechanisms are required to ensure the level of data protection required by the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 para. 2 lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we will endeavor to obtain additional regulations and assurances from the recipient in the USA. The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. You can permanently object to the collection of data by HubSpot and the storage of cookies by changing your browser settings to prevent the storage of cookies. You can object to the processing of your personal data at any time with effect for the future.
f) Calendly
You can make appointments with us online. To provide this functionality we use “Calendly”, a tool to book appointments. Details of the provider are as follows: Calendly LLC, 271 17th St NW, 10th Floor, Atlanta, Georgia 30363, USA (hereinafter “Calendly”).
To book an appointment, enter the requested data and the desired date in the form provided. The data entered will be used for the planning, execution and, if necessary, follow-up on the appointment. The appointment data is stored for us on the servers of Calendly, whose privacy policy you can view here: https://calendly.com/de/pages/privacy.
The data you enter will remain with us until either you ask us to delete it or you revoke your consent to storage or the purpose for data storage no longer exists. Mandatory statutory provisions - in particular retention periods - remain unaffected.
The legal basis for data processing is Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in making appointments with interested parties and customers as uncomplicated as possible. Where consent has been requested, Art. 6 para. 1 lit. a GDPR is the legal basis for data processing; consent can be withdrawn at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. You can find details here: https://calendly.com/pages/dpa.
g) YouTube
We use YouTube, for the integration of videos. YouTube is operated by YouTube LLC, headquartered at 901 Cherry Avenue, San Bruno, CA 94066, USA. YouTube is represented by Google Inc. with headquarters at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
We use plugins from the provider YouTube on some of our websites. When you access the web pages of our website that have such a plugin - for example our media library - a connection to the YouTube servers is established and the plugin is displayed. This tells the YouTube server which of our web pages you have visited. If you are logged in to YouTube as a member, YouTube assigns this information to your personal user account. When you use the plugin, e.g. by clicking the start button of a video, this information is also assigned to your user account. You can prevent this assignment by logging out of your YouTube user account and other user accounts of YouTube LLC and Google Inc. before using our website and deleting the corresponding cookies of those companies.
Further information on data processing and notes on data protection by YouTube (Google) can be found at https://www.google.de/intl/de/policies/privacy/.
h) Oracle NetSuite
We use the service of the cloud-based (EU-Cloud) accounting software OracleNetSuite, 2300 Oracle Way, Austin, TX 78741, P: +1-877-638-7848, to handle our accounting. Oracle NetSuite processes incoming and outgoing invoices as well as the bank transactions of our company to create the financial accounting in a partially automated process.
Further information on OracleNetSuite and its automated processing of data and data protection provisions can be found at https://www.oracle.com/de/security/gdpr/.
8) Data security
We encrypt data transmission to and from our website using the SSL (Secure Socket Layer) method in conjunction with the highest encryption level supported by your browser. As a rule, this is 256-bit encryption. You can recognize the encryption of individual pages of our website by the closed display of the key or lock symbol in the lower status bar and/or address bar of your browser.
We also use suitable technical and organizational security measures (TOMs) to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorized access by third parties. We continuously revise and improve our security measures in line with technological developments.
9) Accuracy and updates to this privacy policy
This privacy policy was last updated December 25, 2024, and is currently valid.
Changing legal or regulatory requirements, developments in case law and further development of our website may make it necessary to amend our privacy policy.
You can access and print out the current version of our privacy policy at any time via the website at: https://heysass.de/privacy