Privacy Policy emmy-sharing.de

Thank you for your interest in our company and our web pages. We take the protection of your personal data and your privacy very seriously. Below we would like to inform you about how we handle your data. This privacy policy applies to our web pages such as our Facebook page, our Twitter account, our profiles on Xing and LinkedIn, our YouTube channel as well as our Instagram page.

The responsible party is:

Electric Mobility Concepts GmbH
Alboinstraße 17-23
12103 Berlin
Telephone: +49 (0)30 – 220 124 40
Email: kontakt@emmy-sharing.de

Our data protection officer can be reached at the following address:

Mr. Markus Strauss
tacticx Consulting GmbH
Walbecker Straße 53
47608 Geldern
Email: datenschutz@emmy-sharing.de

When you use the services of Electric Mobility Concepts GmbH, such as the use of our websites, for example, your personal data is processed.

We process your data strictly confidentially and only for the purpose of which we’ve informed you upon collection of the data. The legal basis for the processing is the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG) and other applicable data protection legislation.

1. Provision of websites

  • Each time you visit one of our web pages, a series of general data and information, including personal data, are collected by our systems. The following data is stored in the log files of our server:
  • IP address (if applicable, in anonymized, shortened form)
  • Date and time of the request (time stamp)
  • Request details and destination address (protocol version, HTTP method, referrer, UserAgent string)
    Name of the retrieved file and amount of data transferred (requested URL incl. query string, size in bytes)
  • Notification whether the request was successful (HTTP status code)
  • Website from which the request came
  • Browser type or app used
  • Operating system and respective interface
  • Language and browser software version

The data processed cannot be used to establish your identity. Neither a personal evaluation nor an evaluation of the data for marketing purposes or profiling takes place.

The legal basis for the data processing is provided for under Article 6(1) point (f) of the GDPR. The processing of the data is necessary for technical reasons to provide our websites and to ensure the stability and security of our systems. This is also in our legitimate interest. It is not possible to use our websites without such data processing taking place, i. e. you have no option to object.

Your data shall be deleted as soon as you leave our website and thus the respective session has ended. Your IP address shall be deleted no later than seven days after your last visit to one of our websites.

2. Use of cookies

We use cookies on our websites. Cookies are stored on your computer and transmitted to our websites from said device. A cookie contains a characteristic string of characters that allows your web browser to be uniquely identified when you visit one of our websites.

We distinguish between essential cookies (section 2.1), cookies for reach measurement (section 2.2) and cookies for usage analysis (section 2.3).

You can configure the cookie settings in your browser. By changing the settings in your browser, you can disable or restrict the transfer of cookies. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our websites, it is possible that certain functions can no longer be used to their full extent. You can find more information on the websites of your respective browser provider here:

2.1 Essential cookies

Essential cookies are, for technical reasons, necessary for the proper operation of our websites. Some essential cookies ensure the technical stability of our websites and enable security-relevant features. The use of certain functions, such as our shopping cart or our contact form, is only made possible through the use of cookies. It is not possible to use our web pages without such data processing taking place, i. e. you have no option to object.

We use this type of cookie to increase the security and functionality of our websites and offered online applications. Essential cookies do not contain any personal data, i. e. no IP addresses or other information that could be traced back to your person are collected. We use the essential cookies listed below:

Cookie Provider Purpose Deletion period Type
PHP_SessionId PHP server Retains the user status for all page requests Session 3rd party/ HTTPS

The legal basis for the processing of personal data using essential cookies is provided for under Article 6(1) point (f) of the GDPR.

By using technically essential cookies, we aim to simplify the use of our websites for you. Some of the functions on our websites cannot be utilized without the use of cookies. For these, it is necessary for the browser to be recognized even after leaving the respective page. These purposes are also in our legitimate interest.

We do not use personal data collected via technically essential cookies to create user profiles.

2.2 Cookies for reach measurement

Reach measurement cookies enable us to receive anonymous statistical data regarding the use of our websites and to understand how visitors interact with them. These cookies allow us, for example, to determine the number of visitors to our websites and to optimize our site content. We use the cookies listed below for reach measurement:

Cookie Provider Purpose Deletion period Type
_ga [x4] Google (Google Analytics) Registers a unique ID that is used to generate statistical data over how the visitor uses the website. 2 years 3rd party/ HTTPS
_gid [x4] Google (Google Tag Manager) Registers a unique ID that is used to generate statistical data over how the visitor uses the website. 1 day 3rd party/ HTTPS
_fbc Facebook Registers a unique ID that is used to generate statistical data over how the visitor uses the website. 3 months

3rd party/

HTTPS

TDCPM, TDID The Trade Desk Registers a unique ID that is used to generate statistical data over how the visitor uses the website. 3 months

3rd party/

HTTPS

OTZ, NID, SAPISID, SSID, SID, SIDCC, UULE, APISID, HSID, 1P_JAR,

DV, OGPC, SEARCH_SAMESITE, __Secure-3PAPISID, __Secure-3PSIDCC, __Secure-3PSID+E25, CONSENT

Google These cookies are used by Google to show personalized advertisements on Google websites based on recent searches and past interactions. You can find further information here: http://www.google.com/policies/privacy/ 2 years

3rd party/

HTTPS

Your consent pursuant to Article 6(1) point (a) of the GDPR provides the legal basis for the processing of personal data using reach measurement cookies.

Google Tag Manager

On our websites, we use the service “Google Tag Manager” from the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland („Google“). Google Tag Manager implements tags and also triggers other tags. When a tag is triggered, data related to your person may be processed by Google. In that regard, it cannot be ruled out that the personal data is transmitted by Google to a server in the United States. For more information, please visit: https://policies.google.com/privacy/frameworks?gl=de.

The following data in particular is processed by Google Tag Manager:
• Online identifiers (incl. Cookie identifiers)
• IP address

For more information about how Google uses data from websites that include Google services, please visit: https://policies.google.com/technologies/partner-sites?hl=de.

The purpose of using Google Tag Manager is to simplify and provide for a clear integration of various codes and services as well as to optimize the loading times of various services. If you have disabled individual tracking services, this setting will remain in place for all affected tracking tags that are integrated via Google Tag Manager.

For more information about data processing by Google, your rights as a data subject and settings options for protecting your privacy, please refer to Google’s privacy policy: https://policies.google.com/privacy?hl=de. You can find more information on your privacy settings here: https://safety.google/privacy/privacy-controls/.

The legal basis for the processing is provided for under Article 6(1) point (a) of the GDPR.

Right to object
You have the right to withdraw your consent at any time with future effect on grounds relating to your particular situation. If you do not consent to the future transmission of your data to Google in conjunction with the use of our websites, you have the option to disable Google Tag Manager in your browser settings (see section 2 above). In such event, it is possible that certain functions on our websites can no longer be used to their full extent.

You are not obligated to provide your personal data. The provision thereof is neither legally or contractually required, nor is it necessary for the conclusion of a contract. However, failure to provide such data could result in you not being able to use our websites or not being able to use them to their full extent.

2.3 Cookies for usage analysis

Usage analysis cookies allow us to analyze how you use our web pages. With these cookies, we are able to test the efficacy of our web pages and detect any bugs. Furthermore, these cookies provide insight into how we can optimize our services as well as insight for web analytics. We use the usage analysis cookies listed below:

Tool Provider Purpose Retention period Type
_gat [x2] Google (Google Analytics) Used by Google Analytics to limit the request rate. 1 day 3rd party/ HTTPS
_gcl_au Google Ads (Google Tag Manager) Used by Google AdSense to experiment with advertising efficiency on websites that use their services. 3 months 3rd party/ HTTPS

Your consent pursuant to Article 6(1) point (a) of the GDPR is the legal basis for the processing of your personal data using cookies for usage analysis.

2.3.1 Google Analytics

On our websites, we use the service “Google Analytics” from the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland („Google“). Google Analytics uses cookies that enable an evaluation of your use of our websites (including your IP address). The information generated by the cookies is transferred to a Google server, possibly in the United States or in another third country, where it is then stored. For more information, please visit: https://policies.google.com/privacy/frameworks?gl=de.

An IP anonymization function is activated on our websites. This means that your IP address is shortened by Google prior to being transmitted to a server in the United States, so as to rule out any reference to your person.

The legal basis for the processing is provided for under Article 6(1) point (a) of the GDPR.

Right to object
You have the right to withdraw your consent at any time with future effect on grounds relating to your particular situation. If you do not consent to the future transmission of your data to Google in conjunction with the use of our websites, you have the option to disable Google Analytics in your browser settings (see section 2 above). You can also stop your data from being processed by Google via the use of a browser add-on to disable Google Analytics. You can find further information as well as the add-on here: https://tools.google.com/dlpage/gaoptout?hl=de.

In such event, it is possible that certain functions on our websites can no longer be used to their full extent.

For more information on Google Analytics’ privacy policy, please visit: https://www.google.de/intl/de/policies/.

You are not obligated to provide your personal data. The provision thereof is neither legally or contractually required, nor is it necessary for the conclusion of a contract. However, failure to provide such data could result in you not being able to use our websites or not being able to use them to their full extent.

2.3.2 Google Ads / AdWords/ Conversion Tracking

On our websites, we use the service “Google Ads” and, in the context of “Google AdWords”, “Conversion Tracking”, an analysis service from the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland („Google“).

We, for our part, do not collect or process any personal data in conjunction with the aforementioned advertising tools. We only receive statistical evaluations from Google that allow us to identify which of the advertising tools used was most effective. We do not receive any further data through the use of the advertising tools, more particularly we cannot use this information to establish your identity. Due to the type of marketing tools used, your browser automatically establishes a direct connection to the Google server.

The legal basis for the processing is provided for under Article 6(1) point (a) of the GDPR.

Right to object
You have the right to withdraw your consent at any time with future effect on grounds relating to your particular situation. If you do not consent to the future transmission of your data to Google in conjunction with the use of our websites, you have the option to disable Google Ads in your browser settings (see section 2 above). You also have the option to object to interest-based advertisements from Google by adjusting your settings accordingly at: www.google.de/settings/ads.

In such event, it is possible that certain functions on our websites can no longer be used to their full extent.

For more information on Google’s privacy policy, please visit: https://www.google.de/intl/de/policies/.

You are not obligated to provide your personal data. The provision thereof is neither legally or contractually required, nor is it necessary for the conclusion of a contract. However, failure to provide such data could result in you not being able to use our websites or not being able to use them to their full extent.

2.3.3 Google Remarketing

On our websites, we use the service “Google Remarketing” from the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland („Google“). Google Remarketing allows us to display advertisements during further internet usage after you have visited one of our websites. This is done via cookies stored in your browser which enable the collection and evaluation of usage behavior data when visiting various websites. In doing so, Google can determine when you last visited one of our websites. According to Google, the data collected in the course of remarketing is not merged with your personal data, which may be stored by Google.

More particularly, according to Google, pseudonymization is used in the course of the remarketing. The information generated by the cookies is transferred to a Google server, possibly in the United States or in another third country, where it is then stored. For more information, please visit: https://policies.google.com/privacy/frameworks?gl=de.

We use Google Remarketing for marketing and optimization purposes, in particular to serve you relevant and interest-based ads and to improve campaign performance reports.

The legal basis for the processing is provided for under Article 6(1) point (a) of the GDPR.

Right to object
You have the right to withdraw your consent at any time with future effect on grounds relating to your particular situation. If you do not consent to the future transmission of your data to Google in conjunction with the use of our websites, you have the option to disable Google Remarketing in your browser settings (see section 2 above). You also have the option to object to interest-based advertisements from Google by adjusting your settings accordingly at: www.google.de/settings/ads.

In such event, it is possible that certain functions on our websites can no longer be used to their full extent.

For more information on Google’s privacy policy, please visit: https://www.google.de/intl/de/policies/.

You are not obligated to provide your personal data. The provision thereof is neither legally or contractually required, nor is it necessary for the conclusion of a contract. However, failure to provide such data could result in you not being able to use our websites or not being able to use them to their full extent.

2.3.4 Facebook Pixel

On our websites, we use Facebook Pixel, a service from Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA (hereafter referred to as “Facebook“). Facebook Pixel allows us to display our ads on Facebook, so-called “Facebook Ads”, only to Facebook users who have visited one of our internet sites, in particular users who show interest in our online content. Moreover, Facebook Pixel allows us to check whether you are redirected to our website after clicking on one of our Facebook Ads. Facebook Pixel uses cookies that are stored locally in the browser cache of your terminal device. When you are logged in to Facebook with your user account, your visit to our site will be recorded in said account. All personal data collected is anonymized and as such cannot be used to establish your identity. However, this data can be linked to your Facebook user account by Facebook. If you have a Facebook user account and are registered for our services, Facebook can link any visit to your user account.

The information generated by the cookies in regard to your usage of our websites (incl. IP address) may be transferred to a Facebook server, possibly in the United States or in another third country, where it is then stored. For more information on Facebook’s privacy policy, please visit: https://www.facebook.com/about/privacy.

By using Facebook Pixel, we aim to optimize our marketing tools, in particular the placement of interest-based ads that are relevant to you.

The legal basis for the processing is provided for under Article 6(1) point (a) of the GDPR.

Right to object
You have the right to withdraw your consent at any time with future effect on grounds relating to your particular situation. If you do not consent to the future transmission of your data to Facebook in conjunction with the use of our websites, you have the option to disable Facebook Pixel in your browser settings (see section 2 above). You can also stop the data processing via the following link: https://www.facebook.com/help/443357099140264?helpref=about_content.

In the event of an objection, it is possible that certain functions on our websites can no longer be used to their full extent.

You are not obligated to provide your personal data. The provision thereof is neither legally or contractually required, nor is it necessary for the conclusion of a contract. However, failure to provide such data could result in you not being able to use our websites or not being able to use them to their full extent.

3. Integration of third-party services

3.1 YouTube

On our websites, we have integrated content from the video platform service YouTube. YouTube is a service provided by YouTube LLC („YouTube“), 901 Cherry Ave., San Bruno, CA 94066, USA. YouTube LLC is a subsidiary of Google Ireland Limited („Google“), Gordon House, Barrow Street, Dublin 4, Ireland.

YouTube is integrated by embedding the service on our websites using a so-called “iFrame”. When loading this iFrame, it cannot be ruled out that YouTube or Google may process your personal data and transfer it to a server in a third country.

The legal basis for the processing is provided for under Article 6(1) point (f) of the GDPR.

We integrate content from YouTube into our websites in order to make various videos directly available to you without you having to access the content externally via YouTube. This allows us to optimize our services and provide you with an interesting user experience. This is also in our legitimate interest.

Right to object (Art. 21 GDPR)
You have the right to object at any time to the processing of your personal data with future effect, e. g. via email to datenschutz@emmy-sharing.de.

We shall not process your personal data any further unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defense of any legal claims.

Further information on data processing by Google in conjunction with the use of Google services can be found in this privacy under section 3.1 “Integration of Google services”.

You are not obligated to provide your personal data. The provision thereof is neither legally or contractually required, nor is it necessary for the conclusion of a contract. However, failure to provide such data could result in you not being able to use our websites or not being able to use them to their full extent.

3.2 Zendesk

On our websites, we use the services of Zendesk Inc., 989 Market Street #300, San Francisco, CA 94102, USA. We use Zendesk to provide you with contact forms, our support pages, or when you contact us via email. Requests sent via email are stored in the Zendesk ticket system. We process the personal data you provide us, your IP address as well as any messages and shall store this information until you request the deletion thereof or the legitimate purpose for the data storage is no longer applicable (e. g. after we have completed processing your request). For more information on Zendesk’s terms of use and privacy policy, please visit: https://www.zendesk.de/company/customers-partners/privacy-policy/.

Insofar as the data collected contains any personal reference, the processing is carried out on the basis of our legitimate interest in effective customer service pursuant to Article 6(1) point (f) of the GDPR. Insofar as the processing serves to facilitate pre-contractual measures or the exchange of information for the fulfilment of a contract, Article 6(1) point (b) of the GDPR provides the additional legal basis for the processing.

Suitable guarantees for the transfer of data to the United States are provided for by binding corporate rules and standard contractual clauses as set forth in Article 46 of the GDPR.

Right to object (Art. 21 GDPR)
You have the right to object at any time to the processing of your personal data with future effect.
We shall not process your personal data any further unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defense of any legal claims.

You are not obligated to provide your personal data. The provision thereof is neither legally or contractually required, nor is it necessary for the conclusion of a contract. However, failure to provide such data could result in you not being able to contact us via email.

If you do not consent to us processing your request via Zendesk, you can alternatively contact us by mail or phone.

 

3.3 AppsFlyer

On our websites, we use the service AppsFlyer Inc, San Francisco, 100 1st Street, Floor 25, San Francisco, CA 94105, USA. We use AppsFlyer for marketing purposes and to optimize our services, in particular to serve ads that are relevant and interesting to you and to improve campaign performance reports.  Further information on AppsFlyer’s terms of use and privacy policy can be found at https://www.appsflyer.com/legal/services-privacy-policy/.

The evaluation of usage behavior on the website and app serves, pursuant to Art. 6 para. 1 p. 1 lit. f DSGVO, to protect the legitimate interests of Emmy in the optimization of our website and our sharing app, which prevail in the context of a balancing of interests.

Suitable guarantees for the transfer to the USA are given standard contractual clauses according to Art. 46 DS-GVO.

Right to object (Art. 21 DS-GVO).

You have the right to object to the processing of your personal data at any time with effect for the future, for example by sending an email to datenschutz@emmy-sharing.de.

We will subsequently not process your personal data any further unless we can demonstrate compelling legitimate grounds for our processing that override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

3.4 Braze

We use the services of Braze (Braze Inc. New York City 330 W 34th St 18th floor, New York, NY 10001, United States) to analyze user behavior in order to interact with you in a targeted manner via message transmission. This involves determining responses to user behavior based on metrics and keywords, such as the automated generation of messages or the notification of any offers/promotions. For the processing by Braze, we have entered into agreements in accordance with the requirements of the GDPR. The processing is carried out strictly according to our instruction. However, some processing may also take place outside the EU or the EEA, in particular in the USA. In these cases, emmy has entered into the privacy agreements officially prescribed by the EU Commission (so-called EU standard contractual clauses) with Braze to ensure the appropriate level of data protection.

Further information can be found in the data protection information at https://www.braze.com/company/legal/privacy.

Right to object (Art. 21 DS-GVO).

You have the right to object to the processing of your personal data at any time with effect for the future, for example by sending an email to datenschutz@emmy-sharing.de.

We will subsequently not process your personal data any further unless we can demonstrate compelling legitimate grounds for our processing that override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

4. Contact

There are several ways you can get in touch with us.

4.1 Scope of the data processing

On our web pages we have provided several ways for you to get in touch with us (email, post, telephone). In this case, we store the personal data transmitted to us that is associated with your contacting us (e. g. email address, address data, telephone number, or other data resulting from the content).

4.2 Legal basis

Insofar as your contacting us concerns a contract or a pre-contractual correspondence, Article 6(1) point (b) of the GDPR provides the legal basis. In all other cases, Article 6(1) point (f) of the GDPR provides the legal basis for data processing. It is in our legitimate interest to process your contact requests.

Right to object (Art. 21 GDPR)
You have the right to object at any time to the processing of your personal data with future effect, e. g. via email to datenschutz@emmy-sharing.de. We shall not process your personal data any further unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defense of any legal claims.

4.3 Purpose of the data processing

The purpose of the data processing is the handling of your contact request. The collected data is processed solely for this purpose. When contacting us via email or through our support pages, the collected data is processed by our service provider Zendesk (see section 3.3 Zendesk)

4.4 Retention period for your personal data

After completing the processing of a contact request, we restrict your data from being used for further processing. Your data shall be deleted after expiration of the retention periods specified in applicable tax and commercial law. The period shall be 10 years for accounting records as set forth in Section 147(1) of the German Fiscal Code (AO) and 6 years for company records as set forth in Section 257(1) of the German Commercial Code (HGB).
You are not obligated to provide your personal data. The provision thereof is neither legally or contractually required, nor is it necessary for the conclusion of a contract. However, failure to provide such data could result in you not being able to use our websites to their full extent or being able to contact us.

5. Newsletter

On our web pages you have the option to subscribe to our free newsletter.

5.1 Scope of the data processing

In the event of a registration for our newsletter, we shall process the following personal data:
• Name
• Email address
• IP address of the respective computer
• Date and time of dispatch
We obtain your consent to data processing in the course of the registration process. The registration is secured by a so-called „double opt-in” procedure. In doing so, we ensure that the email address provided in conjunction with the newsletter subscription actually belongs to you. After you have entered the required information (name, email address) in the respective input masks, you will receive an automated email with an activation link. By clicking the link, you confirm your subscription to our newsletter.

Our promotional emails contain so-called tracking pixels. These are thumbnails that are embedded in emails sent via HTML format to enable the recording of log files and the analysis of statistical log files. An embedded pixel allows us to see if and when a promotional e-mail has been opened, which links in the email have been accessed, what the device’s screen size and resolution settings are, which browser version is being used, the approximate device location (IP location) as well as the language setting. In doing so, we aim to optimize our online marketing campaigns.

5.2 Legal basis

The legal basis for the processing of your personal data is provided for under Article 6(1) point (a) of the GDPR.

Right to object
You have the right to object, on grounds relating to your particular situation, at any time to the processing of your personal data with future effect, e. g. by clicking the link provided in any of our emails to end your subscription.

5.3 Purpose of the processing

The purpose of the data processing is the provision of the newsletter subscription service. The collected data is processed solely for this purpose.

5.4 Retention period for your personal data

We store your personal data for the duration of your respective subscription to our newsletter.

You are not obligated to provide your personal data. The provision thereof is neither legally or contractually required, nor is it necessary for the conclusion of a contract. However, failure to provide such data could result in you not being able to subscribe to our newsletter.

We share your data with our service providers Sendinblue and Braze to the extent permitted by law. More information on these providers’ privacy policies can be found at https://de.sendinblue.com/legal/privacypolicy/ and https://www.braze.com/company/legal/privacy.

6. Product information via e-mail

6.1 Scope of the data processing

If we have received your personal data (name, e-mail-address) in connection with the sale of a product or service, we reserve the right, in accordance with Section 7 para. 3 UWG (german law on unfair competition), to send you regular e-mail offers for services similar to those you have already purchased from our product range, as long as you have not objected to this.
Our promotional e-mails contain so-called tracking pixels. These are thumbnails that are embedded in e-mails sent via HTML format to enable the recording of log-files and the analysis of statistical log-files. The embedded tracking pixel allows us to see if and when a promotional email has been opened and which links of the email have been accessed. In doing so, we aim to optimize our online marketing campaigns.

6.2 Legal basis

The purpose of the data processing is the implementation of marketing measures.
The legal basis for the processing of your personal data is Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in addressing our customers with advertising.

Right to object (Art. 21 DS-GVO)
You have the right to object to the processing of your personal data at any time with effect for the future, for example by sending an e-mail to datenschutz@emmy-sharing.de, or via the link in every promotional e-mail. As a consequence, we will stop the processing of your personal data unless we can demonstrate compelling legitimate grounds for our processing that override your interests, rights and freedoms, or the processing serves the purpose of establishing, exercising or defending legal claims.

6.3 Purpose of data processing

The purpose of the data processing is the implementation of marketing measures.
We share your data with our service providers Sendinblue and Braze to the extent permitted by law. Further information can be found in the privacy policies of those companies at https://de.sendinblue.com/legal/privacypolicy/ or https://www.braze.com/company/legal/privacy.

6.4 Retention period for your personal data

We store your personal data until your objection. After your objection, we delete your personal data, if the data processing is not permitted by law for other reasons.
You are not obliged to provide your personal data. The provision is neither legally or contractually required nor necessary for the conclusion of a contract. However, if you do not provide us with the mentioned data, it will not be possible to send you product information by e-mail.

7. Job application

You can find information about our job openings via our websites.

7.1 Scope of the data processing

7.1.1 Applying via online tool

On our websites, we offer the opportunity to apply for job openings by providing certain personal information. We store the personal information you provide us in connection with your application. Via the respective input forms, you can see which data is processed. On these forms, only the fields indicated as mandatory are absolutely necessary to use the respective service.

To the extent permitted by law, we share your personal data with our service provider, Personio GmbH, Rundfunkplatz 4, 80335 München (https://www.personio.de), who assists us with the applicant selection process. This company, for its part, is obligated to comply with applicable data protection legislation. In particular, the company shall process the data solely for the fulfillment of their duties on our behalf and only in accordance with our instruction.

To participate in the application process, you are required to provide personal information derived from the documents you provide to us, e. g. cover letter, resume, application photo, certificates, or other professional qualifications. This information may include, among other things, master data such as first and last name, address, date of birth, contact data such as telephone number or address, as well as information related to your educational and/or professional background, e. g. school and work references, data related to vocational trainings, internships, or previous employers.

7.1.2 Applying via other contact channels

In addition to applying via the online tool, you also have the option of applying for a vacant position using one of the specified contact channels (see section 4).

To participate in the application process, you are required to provide personal information derived from the documents you provide to us, e. g. cover letter, resume, application photo, certificates, or other professional qualifications. This information may include, among other things, master data such as first and last name, address, date of birth, contact data such as telephone number or address, as well as information related to your educational and/or professional background, e. g. school and work references, data related to vocational trainings, internships, or previous employers.

7.2 Purpose of the processing

The personal data provided to us in the course of your application will be processed solely for purposes related to the applicant selection process. For the processing of applications, we are limited to the information you directly provide us. This may also include information that you have provided on professional online networks or job exchanges. Insofar as we request you provide your sex/gender in the course of the application process in regard to your desired form of address, the sole reason for doing so is to ensure that we address you the proper way, both in writing and verbally.

7.3 Legal basis

The legal basis for the processing of personal data is provided for under Article 88(1) of the GDPR in conjunction with Section 26 of the Federal Data Protection Act (BDSG).

7.4 Retention period for your personal data

In the event that an application results in employment, your personal data will be transferred to your personnel file.

In the event that an application is rejected, we will anonymize the associated data within 90 days from the date of rejection.

8. Internal area/User account

8.1 Scope of the data processing

We offer you access to the protected internal area on our websites. To receive access, you must register with a valid user account in conjunction with the login data provided to you on request. We store the personal data transmitted in this context. Via the respective input form, you can see which data is processed. On this form, only the fields indicated as mandatory are absolutely necessary to use the respective service. Once you have entered your information, you will receive a registration email to your provided email address, which contains a link that you can use to confirm your registration and complete the registration process. After successful registration, you can access the internal area of our websites at any time by entering your email address and password.

8.2 Legal basis

The legal basis for the data processing is provided for under Article 6(1) point (a) of the GDPR.

Right to object
You have the right to withdraw your consent at any time on grounds relating to your particular situation with future effect, e. g. by deactivating your user account.

In such event, however, you will no longer be able to access the internal area of our websites.

8.3 Purpose of the processing

We use the data collected to manager your user account. If necessary, we shall, to the extent permitted by law, share your data with our partner companies that assist us in assuring the proper fulfillment of existing contracts. These companies, for their part, are obligated to comply with applicable data protection legislation; in particular, these companies shall process the data solely for the fulfillment of their duties on our behalf and only in accordance with our instruction.

8.4 Retention period for your personal data

In the event your user account is deactivated, your personal data shall be deleted after expiration of the retention periods specified in applicable tax and commercial law. The period shall be 10 years for accounting records as set forth in Section 147(1) of the German Fiscal Code (AO) and 6 years for company records as set forth in Section 257(1) of the German Commercial Code (HGB).

You are not obligated to provide your personal data. The provision thereof is neither legally or contractually required, nor is it necessary for the conclusion of a contract. However, should you fail to provide us with such data, it will not be possible to set up a user account.

9. Online presence on social media

We operate an online presence on social media networks and platforms (Social Media Presence). We regularly publish and share content, promotional offers and product recommendations via our Social Media Presence.

9.1 Scope of the processing

With every interaction on our social media sites, your personal data is automatically collected and stored by the provider of the respective social network for market research and advertising purposes. As such, it cannot be ruled out that the collected data may also be processed outside the European Union. This can, among other things, make it more difficult to enforce the rights of data subjects. So-called “usage profiles” are created from the collected data via the use of pseudonyms. The can be used, for example, to display advertisements on and outside of the respective social networks that presumably correspond to your interests. To this end, cookies or similar technologies used to record usage behavior are stored on your terminal device.

We generally collect all communications, content and other information shared with us doing your visit to our social media sites, e. g. when you publish a post on one of our social media sites or send us private messages. In the event that you have a user account with the respective social network, we are also able to view your public information, such as your username, profile information, and any content you share with a public audience. The nature, scope, and purposes of the processing of your personal data on social networks are primarily determined by the providers of the respective networks. For further information on data processing by the respective provider, your rights in this regard and settings options for protecting your privacy, please refer to the privacy policy of the respective provider:

9.2 Usage analysis (Page Insights)

We operate a Facebook page (“Page”). In the context thereof, Facebook provides us with so-called “Page Insights”. Any time you interact with a Page, Facebook records your usage behavior via cookies and similar technologies. These are anonymized statistics that can provide us information about interactions with our posts or other content. It is not possible to link this information to your person. We do not have access to the personal data used by Facebook to create Page Insights (“Page Insights Data”). The selection and processing of data collected in the context of Page Insights is carried out solely by Facebook.

The service Page Insights allows us to gain insight into how you use our Pages, what your particular interest in our Pages is, and which topics and content are particularly popular. As a result, we are able to optimize the activities on our Pages, for example, by better responding to the interests and usage habits of our audience. Together with Facebook we are jointly responsible for the data processing in the context of Page Insights. To this end, we have entered into an agreement with Facebook specifying which company is to fulfill which data protection obligations as set forth in the GDPR with regard to the processing of Page Insights data. You can view the agreement with Facebook here: https://www.facebook.com/legal/terms/page_controller_addendum.

A compilation of the essential contents of this agreement (including a list of Page Insights data) can be found here: https://www.facebook.com/legal/terms/information_about_page_insights_data.

9.3 Legal basis for the processing

Insofar as the respective social network provider requests your consent for data processing, Article 6(1) point (a) of the GDPR provides the legal basis. The legal basis is otherwise provided for under Article 6(1) point (f) of the GDPR. We have an overriding legitimate interest in an optimized display of our services and effective communication with our customers and otherwise interested parties.

Right to object
You have the right to withdraw your consent at any time on grounds relating to your particular situation with future effect. If you do not agree to the future transmission of your data when using our social media sites, you have the option to object to the data processing:

In the event of an objection, it is possible that certain functions on our websites can no longer be used to their full extent.

Right to object (Art. 21 GDPR)
You have the right to object at any time to the processing of your personal data with future effect, e. g. via email to datenschutz@emmy-sharing.de.

We shall not process your personal data any further unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defense of any legal claims. For the joint processing of your Page Insights data with Facebook, we have reached a mutual agreement that Facebook is the party primarily responsible for providing you with information regarding the processing of your Page Insights data and for enabling you to exercise the data privacy rights to which you are entitled under the GDPR (e. g. Right to object). For more information about your data privacy rights with regard to Page Insights and how to exercise these rights directly with Facebook, please visit: https://www.facebook.com/legal/terms/information_about_page_insights_data

You can also exercise your rights with regard to processing activities that concern our joint responsibility with Facebook with us, e. g. via email to datenschutz@emmy-sharing.de. In such case, you request will be immediately forwarded to Facebook.

9.4 Purpose of the processing

The aim of our online presence is to ensure effective communication with our customers and any interested parties as well as an optimized display of our services.

You are not obligated to provide your personal data. The provision thereof is neither legally or contractually required, nor is it necessary for the conclusion of a contract. However, failure to provide such data could result in you not being able to use our websites to their full extent.

10. Rights of the data subject

Insofar as we process your personal data, you are a data subject as defined in Article 4(1) of the GDPR and can exercise the following rights:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Notification obligation regarding rectification or erasure of personal data or restriction of processing (Art. 19 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)
  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
  • Right to withdrawal of consent (Art. 7(3) GDPR)

You have the right to withdraw your consent at any time, e. g. by informing us thereof via email. The withdrawal of consent shall not affect the legality of the data processing based on consent before its withdrawal.

Right to object (Art. 21 GDPR)
Pursuant to Article 21 of the GDPR, you have the right to object at any time to the processing of your personal data collected on the basis of Article 6(1) point (e) or (f) for reasons arising from your particular situation. This also applies to profiling carried out on the basis of these regulations. You can direct your objection to any of our contact addresses, e. g. datenschutz@emmy-sharing.de.

We shall not process your personal data any further unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defense of any legal claims.

If you would like to exercise any of your rights, please contact our data protection officer at datenschutz@emmy-sharing.de.

We would like to point out that, in certain cases, we may request additional information from you in order to verify your identity. This allows us to ensure your information is not shared with unauthorized parties, e. g. when exercising your right of access.

No automated decision-making takes place on our web pages.

11. Data security

We utilize technical and organizational security measures to prevent your personal data from being manipulated, lost, destroyed, or accessed by unauthorized parties, whether accidentally or intentionally. We are continuously improving our security measures in line with the latest technological developments.

12. Liability for external content

Our websites contain links to sites from third-party providers. We have no control over this and are unable to monitor other providers’ compliance with applicable data protection legislation. If you believe that any linked third-party sites violate applicable law or contain otherwise inappropriate content, please let us know. We will investigate further and remove the external link if necessary. We are not responsible for the content and availability of any linked third-party websites.

13. Validity of this privacy policy

Further development of our web pages or the implementation of new technologies may render it necessary to amend this privacy policy. We reserve the right to change this privacy policy at any time with future effect. The most current version always applies at the time of your visit.

Status as of July 2021

 

Privacy Policy emmy App

Thank you for your interest in our company and our app. We take the protection of your personal data and your privacy very seriously. Below we would like to inform you about how we handle your data. This privacy policy applies to our app „emmy“.

The responsible party is:

Electric Mobility Concepts GmbH
Alboinstraße 17-23
12103 Berlin
Telephone: +49 (0)30 – 220 124 40
Email: kontakt@emmy-sharing.de

Our data protection officer can be reached at the following address:

Mr. Markus Strauss
tacticx Consulting GmbH
Walbecker Straße 53
47608 Geldern
Email: datenschutz@emmy-sharing.de

When you use the services of Electric Mobility Concepts GmbH, such as the use of our websites, for example, your personal data is processed.

We process your data strictly confidentially and only for the purpose of which we’ve informed you upon collection of the data. The legal basis for the processing is the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG) and other applicable data protection legislation.

  1. Which data is processed?

We process the following data in connection with the installation and use of the emmy app:

1.1 Technical communication data of your mobile device

We collect and use data automatically transmitted to us via your terminal device and the data required for communication with said device. This includes, in particular:
– Device name
– Operating system and app version
– Mobile phone provider
– IP address.

1.2 Location data (optional)

You can consent to the app accessing and transmitting your location data by checking the respective box. Alternatively, you will be asked to consent to emmy accessing your location upon opening the app.

1.3 emmy account data

The app functions relate directly to your personal emmy account. Therefore, it is necessary for you to log in or register with your personal login credentials in order to use the app.

In the app, we collect or use the following data in order to provide the desired app functions:

  • Your master data (name, address, date of birth, e-mail address, telephone number, if applicable)
  • Payment information (Payment method, credit card or bank account details)
  • Driver’s license information
  • Your voluntary data
  • Your consent, if given, to conduct advertising and market researchIhre Login-Daten

We have obtained your emmy-account-data from you either by registering directly with emmy or with a company belonging to the GmbH (GoTo Global, felyx Deutschland GmbH).

1.4 App usage data

We analyze how you interact with our app, your login behavior, and which features of the app are frequently used:

  • Demographic indicators
  • Number of logins
  • Activity in the app
  1. Purpose of processing

The data transmitted upon installation and usage of the “emmy app” is necessary for us to be able to offer our services. The purposes of the data processing are in particular:

– The management of your customer account and customer support.

– The fulfillment of the contracts concluded with you (provision of vehicles, billing, payment tracking)

– The identification of your person and verification of your driving license

– The verification and prosecution of traffic violations

– The prevention and detection of fraud attempts

– The compliance with legal storage periods.

In addition, we use your data to earn which products or other subject areas you may be interested in and which information and offers are relevant to you, so we can provide you with these kind of information and promotional offers (via email, etc.) on the basis of and with your consent.

 

  1. App permissions

In order to provide you with full functionality of the “emmy app”, the app must be able to access various functions and data on your mobile device. Access to the device functions is necessary to ensure full functionality of the app. The legal basis for this data processing is our legitimate interest as provided for in Article 6 para. 1 lit. f of the GDPR, your consent as provided for in Article 6 para. 1 lit. a) of the GDPR or – insofar as a contract exists – the fulfillment of our contractual obligations (Article 6 para. 1 lit. a and lit. b of the GDPR).

4.1 Internet access

This permission is necessary in order for the app to be able to connect to and communicate with our server via the internet.

4.2 Location (optional)

This permission is necessary to determine your current location. This permission allows the app to access your GPS data, WiFi identifiers and/or Bluetooth connection to determine your location, depending on which function you have enabled.

  1. Third-party services in the app

We use various third-party functions and services, e. g. to analyze user behavior or to enable certain interactions within our app. In doing so, data is transmitted to or processed by the respective third-party provider. For the processing by third-party providers, we have entered into agreements with these providers in accordance with the requirements of the GDPR.

5.1 Google Firebase

We use the services of Google Firebase (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) to store and process app usage data and to analyze usage behavior. This involves the processing of account data and IP addresses, interactions within the app, demographic indicators, access metrics, etc. For the processing by Google Firebase, we have entered into agreements in accordance with the requirements of the GDPR. The processing is carried out strictly according to our instruction. However, some processing may also take place outside the EU or the EEA, in particular in the USA. In these cases, emmy has entered into the privacy agreements officially prescribed by the EU Commission (so-called EU standard contractual clauses) with Google Firebase to ensure the appropriate level of data protection.

For more information on how Google handles data, please see their privacy policy at https://policies.google.com/privacy?hl=en-US.

5.2 Sendinblue

We use the services of Sendinblue (Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin) to send newsletters via email or other notifications, e. g. by SMS. For the processing by Sendinblue, we have entered into agreements in accordance with the requirements of the GDPR. The processing is carried out strictly according to our instruction.

For information about Sendinblue’s handling of personal data, please see their privacy policy: https://www.sendinblue.com/legal/privacypolicy/.

5.3 Wunder Mobility

We use the “Wunder Fleet” service from Wunder Mobility for management of our fleet and user administration purposes (Wunder Mobility, Hongkongstraße 2-4, 20457 Hamburg). This involves the processing of user data, information regarding payment methods, and any booked vehicle. For the processing by Wunder Mobility, we have entered into agreements in accordance with the requirements of the GDPR. The processing is carried out strictly according to our instruction. However, some processing may also take place outside the EU or the EEA, in particular in the USA. In these cases, emmy has entered into the privacy agreements officially prescribed by the EU Commission (so-called EU standard contractual clauses) with Wunder Mobility to ensure the appropriate level of data protection. You can find further information on Wunder Mobility’s privacy policy here: https://www.wundermobility.com/privacy.

5.4 Onfido

We use the services of Onfido (Onfido LTD, 3 Finsbury Avenue, 5th Floor, London, England, EC2M 2PA) to identify users or verify any documents associated with the user, such as driver’s licenses, and to verify the authenticity thereof. For the processing by Onfido, we have entered into agreements in accordance with the requirements of the GDPR. The processing is carried out strictly according to our instruction. You can find further information on data privacy at Onfido here: https://onfido.com/privacy/#The%20Information%20We%20Collect%20and%20the%20Onfido%20Identity%20Lifecycle.

5.5 Sentry

We use the services of Sentry (Functional Software, Inc. d/b/a Sentry, 132 Hawthorne Street San Francisco, CA 94107, United States) to monitor our app for diagnostics, troubleshooting, and optimization. This involves processing IP addresses, interactions within the app, access metrics, error codes, device information, and account data. For the processing by Sentry, we have entered into agreements in accordance with the requirements of the GDPR. The processing is carried out strictly according to our instruction. However, some processing may also take place outside the EU or the EEA, in particular in the USA. In these cases, emmy has entered into the privacy agreements officially prescribed by the EU Commission (so-called EU standard contractual clauses) with Sentry to ensure the appropriate level of data protection.

Visit https://sentry.io/privacy/ for more information about Sentry’s privacy practices.

5.6 Braze

We use the services of Braze (Braze Inc. New York City 330 W 34th St 18th floor, New York, NY 10001, United States) to analyze user behavior in order to interact with you in a targeted manner via message transmission. This involves determining responses to user behavior based on metrics and keywords, such as the automated generation of messages or the notification of any offers/promotions. For the processing by Braze, we have entered into agreements in accordance with the requirements of the GDPR. The processing is carried out strictly according to our instruction. However, some processing may also take place outside the EU or the EEA, in particular in the USA. In these cases, emmy has entered into the privacy agreements officially prescribed by the EU Commission (so-called EU standard contractual clauses) with Braze to ensure the appropriate level of data protection.

Further information can be found in the data protection information at https://www.braze.com/company/legal/privacy.

5.7 AppsFlyer

On our websites, we use the service AppsFlyer Inc, San Francisco, 100 1st Street, Floor 25, San Francisco, CA 94105, USA. We use AppsFlyer for marketing purposes and to optimize our services, in particular to serve ads that are relevant and interesting to you and to improve campaign performance reports.  Further information on AppsFlyer’s terms of use and privacy policy can be found at https://www.appsflyer.com/legal/services-privacy-policy/.

The evaluation of usage behavior on the website and app serves, pursuant to Art. 6 para. 1 p. 1 lit. f DSGVO, to protect the legitimate interests of Emmy in the optimization of our website and our sharing app, which prevail in the context of a balancing of interests.

Suitable guarantees for the transfer to the USA are given standard contractual clauses according to Art. 46 DS-GVO.

Right to object (Art. 21 DS-GVO).

You have the right to object to the processing of your personal data at any time with effect for the future, for example by sending an email to datenschutz@emmy-sharing.de.

We will subsequently not process your personal data any further unless we can demonstrate compelling legitimate grounds for our processing that override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

  1. Use of Cookies

This app uses cookies. Cookies are stored on your terminal device and transmitted to our server via said device. A cookie contains a characteristic string of characters that allows your device to be uniquely identified when you visit our web pages.

We use cookies to continue to identify your smartphone when you are using the app, but also to detect when you’ve stopped using the app and recognize your device upon subsequent use.

You can delete these cookies by deleting the “emmy app”.

  1. Product information via e-mail

7.1 Scope of the data processing

If we have received your personal data (name, e-mail-address) in connection with the sale of a product or service, we reserve the right, in accordance with Section 7 para. 3 UWG (german law on unfair competition), to send you regular e-mail offers for services similar to those you have already purchased from our product range, as long as you have not objected to this.
Our promotional e-mails contain so-called tracking pixels. These are thumbnails that are embedded in e-mails sent via HTML format to enable the recording of log-files and the analysis of statistical log-files. The embedded tracking pixel allows us to see if and when a promotional email has been opened and which links of the email have been accessed. In doing so, we aim to optimize our online marketing campaigns.

7.2 Legal basis

The purpose of the data processing is the implementation of marketing measures.
The legal basis for the processing of your personal data is Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in addressing our customers with advertising.

Right to object (Art. 21 DS-GVO)
You have the right to object to the processing of your personal data at any time with effect for the future, for example by sending an e-mail to datenschutz@emmy-sharing.de, or via the link in every promotional e-mail. As a consequence, we will stop the processing of your personal data unless we can demonstrate compelling legitimate grounds for our processing that override your interests, rights and freedoms, or the processing serves the purpose of establishing, exercising or defending legal claims.

7.3 Purpose of data processing

The purpose of the data processing is the implementation of marketing measures.
We share your data with our service providers Sendinblue and Braze to the extent permitted by law. Further information can be found in the privacy policies of those companies at https://www.sendinblue.com/legal/privacypolicy/ or https://www.braze.com/company/legal/privacy.

7.4 Retention period for your personal data

We store your personal data until your objection. After your objection, we delete your personal data, if the data processing is not permitted by law for other reasons.
You are not obliged to provide your personal data. The provision is neither legally or contractually required nor necessary for the conclusion of a contract. However, if you do not provide us with the mentioned data, it will not be possible to send you product information by e-mail.

  1. Declaration of consent and withdrawal

In the app, you can consent to receiving email newsletters and the use of your app data for advertising and market research purposes.
You can withdraw your consent at any time in the app or via email at datenschutz@emmy-sharing.de.
Upon withdrawing your consent to the use of your data for advertising and market research purposes, you will no longer be able to use the functions of the “emmy app”. However, upon withdrawing your consent to receive email newsletters, you can continue to use the app, but will no longer receive the respective information via email.
The withdrawal of consent shall not affect the legality of the processing based on consent before its withdrawal.

  1. Rights of the data subject

Insofar as we process your personal data, you are a data subject as defined in Article 4(1) of the GDPR and can exercise the following rights:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Notification obligation regarding rectification or erasure of personal data or restriction of processing (Art. 19 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)
  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
  • Right to withdrawal of consent (Art. 7(3) GDPR)

If you would like to exercise any of your rights, please contact our data protection officer at datenschutz@emmy-sharing.de.

We would like to point out that, in certain cases, we may request additional information from you in order to verify your identity. This allows us to ensure your information is not shared with unauthorized parties, e. g. when exercising your right of access.

  1. Data security

Please note, however, that misuse by a third party cannot be ruled out for any data stored locally on your device, e. g. if your mobile phone is stolen. We therefore recommend that you secure your device accordingly, for example by setting a passcode.
In the event of a deinstallation of the “emmy app”, all personal data in the app shall be deleted, insofar as no legal retention obligations apply. The emmy user account shall not be affected by the app deletion (see website Terms and Conditions).

  1. Liability for external content

Our app may contain links to sites from third-party providers. We have no control over this and are unable to monitor other providers’ compliance with applicable data protection legislation. If you believe that any linked external sites violate applicable law or contain otherwise inappropriate content, please let us know. We will investigate further and remove the external link if necessary. We are not responsible for the content and availability of any linked third-party websites.

  1. Validity of this privacy policy

Further development of our app or the implementation of new technologies may render it necessary to amend this privacy policy. We reserve the right to change this privacy policy at any time with future effect. The most current version always applies at the time of your visit.

Status as of March 2023