eyeo Privacy Information

Privacy Policy Website (eyeo.com)

Privacy Notice (short version)

The following privacy notice shall provide you with a general overview about the collection, processing and use (hereinafter together referred to as “processing”) of your personal data. For more information regarding our processing activities, please view our complete Privacy Policy.

What kind of data do we process?

  1. While using the eyeo.com website (by default):
    1. IP address (stored separately)
    2. Date and time of access
    3. Browser name/version
    4. URL of previously visited webpage
    5. Amount of data sent
    6. Language preferences
  2. When applying for a job:
    1. Name
    2. Email address
    3. CV and all other data voluntarily uploaded / shared by you
  3. When subscribing to a newsletter or using the “BECOME A PARTNER” button (voluntarily):
    1. Name
    2. Email address
    3. Communication data
  4. On eyeo.com/2018-ad-blocking-report, eyeo.com/2019-uk-ad-blocking-usage-report and eyeo.com/2019-us-ad-blocking-usage-report
    1. Contact data
  5. On our social media pages
    1. Usage profiles
  6. When using our website forms
    1. Name
    2. Email address
    3. Company

How do we collect data?

  • Log files
  • Data provided by user in a form
  • Newsletter sign up and website form
  • Emails
  • Cookies
  • Data you provide to us with via social media
  • In connection with our social media pages: Cookies

How and why do we process your data?

  • For technical purposes, such as, but not limited to, preventing security attacks
  • We use cookies for performance and analytics
  • Evaluating your application for recruitment purposes and offering you jobs
  • If requested by you, to inform you about or contact you in connection with our products and/or sending you reports or other information
  • If requested by you , to discuss and negotiate a partnership with you.
  • In connection with our social media pages, social networks use the data for market research and advertising purposes

How long do we keep data?

  • Website logs for 30 days.
  • Application data for six (6) months after rejection of a candidate.
  • Candidate pool data for two (2) years starting with the declaration of the candidate’s consent.
  • Contact data we received for newsletter services or via the website form for no more than thirty (30) days after unsubscription / deletion request
  • Contact data in connection with eyeo.com/2018-ad-blocking-reporteyeo.com/2019-uk-ad-blocking-usage-report and eyeo.com/2019-us-ad-blocking-usage-report until you have withdrawn your consent or if no longer necessary, whichever period is shorter
  • Partner data for a period of 10 years after the end of a contract.

What is the legal basis of data processing?

We process your personal data in compliance with the European General Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”), the applicable EU laws and German national data protection laws.

Our values

We collect as little data as possible. As far as anonymous or pseudonymous use is possible we anonymize or pseudonymize your data.

What rights do you have?

  • Receive and access information about the personal data stored by us about you.
  • Rectify inaccurate personal data and restrictive details.
  • Receive all your personal data in a structured, commonly used and machine-readable format, as well as having such data transmitted to another controller.
  • Request erasure of your data, unless such data needs to be retained for legal purposes.
  • Object to the processing of your data.
  • Withdraw your consent at any time, when you have provided us with your consent to the processing of your personal data.
  • Lodge a complaint with the respective supervisory authority.

Questions?

Contact our Data Protection Officer, Carlo Piltz, at privacy@eyeo.com.

Privacy Policy

(long version)

Your protection and data confidentiality is of utmost importance to us (“eyeo” “we” “our”). We take the protection of your personal data very seriously and collect as little data as possible. Nevertheless, some personal data are necessary to provide our website and/or our application tools for candidates. This privacy policy shall inform you about the personal data we collect and how exactly that data is processed. We gather and use personal data firmly within the provisions of the European General Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”), the applicable EU Laws and German national data protection laws. In the following text we will inform you about the specific data, the scope and purpose of the collection and use of personal data by us when using eyeo.com, the legal basis for such collection and processing as well as your rights to protect your personal data.

Who is responsible for the data collection and processing (contacts)?

The legal person responsible for the collection, processing and/or use of personal data in connection with eyeo.com (“Controller”) is:

eyeo GmbH
Lichtstraße 25
50825 Cologne
Germany

Data Protection Officer

If you have any queries relating your personal data, please do not hesitate to contact our Data Protection Officer:

Carlo Piltz

Email: privacy@eyeo.com

Fax: +49 (0) 221 / 6430 6372

What is personal data?

The purpose of data protection is to protect personal data. Personal data means any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. This information includes, for example, details such as name, postal address, email address or telephone number but also nicknames, certificates and information about your interests.

What kind of Data do we collect and process and how?

Automatically collected and processed information:

Website logs

While using eyeo.com website, we are automatically recording website logs and thereby collecting the following data for technical and for security reasons:

  • IP address (stored separately)
  • Date and time of access
  • Browser name/version [1]
  • URL of previously visited webpage [2]
  • Amount of data sent

This data is stored purely for technical reasons and cannot be linked to any individual person. We do not combine website log data with any other information about you.

[1] For more information, please refer to https://tools.ietf.org/html/rfc7231#section-5.5.3.

[2] For more information, please refer to https://tools.ietf.org/html/rfc7231#section-5.5.2.

Information you give us on a voluntary basis:

For non-EU/EEA users only: Google Analytics

By accepting the cookies of Google Analytics on our website, you consent to our use of Google Analytics, a web analytics service from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, ("Google"), on our website. Google Analytics uses so-called permanent "cookies". These are text files stored on your computer that enable us to analyze your use of our website, range measurement and build target groups. Information generated by the cookies, including your abbreviated IP address, usage data and metadata, is transmitted to and stored at a Google server in the European Union. Google uses this information to assess your use of our website, to compile activity reports, and to provide more services connected with the use of our website. It is possible that Google may transmit this information to third parties if required by law, or if third parties process this information on behalf of Google. Please refer to Google’s privacy policy for more information: https://policies.google.com/privacy.

You can revoke consent by following these instructions:

For non-EU/EEA users only: Google Tag Manager

Our website uses Google Tag Manager for the implementation of Google Analytics. Google Tag Manager, provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google”), is a solution that allows marketed website tags to be managed using an interface. The Tag Manager tool itself (which implements the tags) is a cookie-less domain and does not register personal data. The tool causes other tags to be activated. These tags then may register data under certain deactivated domains or on a cookie level. This setting will remain in place for all tracking tags implemented with Google Tag Manager.

For non-EU/EEA users only: Google Optimize

By accepting the cookies of Google Optimize on our website you consent to our use of the web analysis and optimization service Google Optimize provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google”). We use the Google Optimize service to increase the attractiveness, content and functionality of our website by playing new features and content to a percentage of our users and statistically evaluating the usage change (A/B testing). Google Optimize is a sub-service of Google Analytics.

Google Optimize uses cookies, which enable us to optimize and analyze your use of our Website. The information generated by these cookies about your use of our website is usually transferred to a Google server in the European Union and stored there. We use Google Optimize with activated IP anonymization so that your IP address is shortened by Google within member states of the European Union, or within the European Economic Area. Google will use this information for the purpose of evaluating your use of our website, compiling reports on optimization tests and related website activity and providing other services relating to website activity and internet usage.

Application Data

If you are applying online for a job at eyeo you need to fulfil our online application form. In order to evaluate your application properly we need at least your name, email address and a CV. On a voluntary basis you may further add a telephone number, a cover letter, additional documents, such as, but not limited to certificates, a website and additional information about you.

We collect and process those data for the sole purpose of managing eyeo’s recruitment related activities as well as for organizational planning purposes. Consequently, eyeo may use your personal data in relation to the evaluation and selection of applicants including for example setting up and conducting interviews and tests, evaluating and assessing the results thereto and as is otherwise needed in the recruitment processes including the final recruitment.

On a voluntary basis, we offer to keep your data in a candidate pool for future roles in case you have provided us with your consent. We use this data to offer you jobs and add you to the application process again.

Newsletter & Website forms

We provide you with a newsletter service free of charge. We use the newsletter to inform you about new products, updates on our products and to send you general information about eyeo. We need your email address in order to send you the newsletter. You can enter your email address at eyeo.com. We will store and use your email address solely to send you the newsletter.

Each newsletter contains information on how to unsubscribe (‘right to withdraw your consent’) from your subscription at any time with immediate effect.

Similarly, you can provide us voluntarily with your contact details, so we can share with you information about our products and services by email. Also here, you can withdraw your consent to receive such information at any time.

Ad blocking partner integrations

If you click on our “BECOME A PARTNER” button, your email client will open with the option to send an email to us. Your email address and all information you send in this email will solely be used to discuss and negotiate a potential partnership with you. Your contact data will be stored in our Customer Relationship Management System. For more more information on how we process our business partner’s data please check here.

Ad blocking report

You can download our ad-blocking report for free by submitting the following information: name, email address and organization and allowing us to contact you regarding our products and services. We will never pass on your information to a third party for any purpose.

Our social media presence

In order to be able to communicate with our customers and interested parties, and to inform them about our activities and offers on social networks, we are active on Facebook, Instagram, Twitter and LinkedIn. In terms of Facebook, both Facebook and eyeo are jointly responsible for the processing of your personal data (“joint controller”, GDPR Art. 26), even if it is stored exclusively by the respective social network. Therefore, we still inform you about the data processing processes in connection with our presence on the respective social network as follows.

If you follow our respective online presence on one or more of the social networks used by us, please note that your data may be processed outside the European Union / the European Economic Area. However, all the networks we use have agreed to comply with EU data protection standards.

The social networks we use also process your data regularly for market research and advertising purposes. Based on your usage behavior and interests, the networks may create usage profiles which are used, for example, to place advertisements corresponding to your potential interests within and outside the networks. For these purposes, cookies, which store your usage behavior and interests, as well as possibly also the devices you use, are regularly stored on your computer.

For a detailed overview of the respective processing operations and opt-out options, please visit the website of each social network, listed below. For the assertion of your rights and requests for information, we also refer you to the respective social networks, where you can exercise your rights most effectively. This is because the social networks have access to your data and can therefore directly take appropriate measures and provide you with the respective information:

  • Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland), Facebook Fan Page based on a joint controller agreement – Privacy Policy: https://www.facebook.com/about/privacy/, Opt-Out: https://www.facebook.com and https://www.youronlinechoices.com
  • Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) – Privacy Policy / Opt-Out: https://instagram.com.
  • Twitter (Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA) – Privacy Policy: https://twitter.com, Opt-Out: https://twitter.com/personalization
  • LinkedIn (LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland) – Privacy Policy: https://www.linkedin.com/legal/privacy-policy, Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
    • We also use product pages on LinkedIn, which you can use to share your contact details with us, so we can provide you with more information about our products. When subscribing to our product pages on LinkedIn, you provide us with your consent, which legitimizes the use of your contact details in accordance and to the extent of your consent pursuant to Art. 6 (1) a, Art. 7 GDPR. We will store and use your contact details solely to share with you more information about our products, as described on our product pages on LinkedIn. You can withdraw your consent at any time with immediate effect (see below “How to exercise your rights”).

What is the legal basis?

We process personal data in compliance with the European General Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”) and the applicable German national data protection laws:

Processing is necessary for taking steps prior to enter into a contract (Art. 6 (1) b GDPR)
All data you provide us with in connection with your application (more information about the purposes you will find here>) is necessary for the sole purpose of hiring new employees and therefore evaluating and selecting applicants including for example setting up and conducting interviews and tests, evaluating and assessing the results thereto and as is otherwise needed in the recruitment processes including the final recruitment (meaning taking steps prior to enter into an employment contract). If you don’t send us your application data your application cannot be taken into account.

Collection and processing is necessary for compliance with a legal obligation to which the controller is subject – Art. 6 (1) c GDPR
Collection and processing of your personal data may be necessary for compliance with a legal obligation to which we are subject under EU laws or the laws of a EU Member State.

Processing is necessary for the purposes of eyeo’s legitimate interests (Art. 6 (1) f GDPR)
The collection and processing may be necessary for the purposes of our legitimate interests.

  • We collect and process website logs for technical reasons, such as, but not limited to, preventing denial of service attacks. Denial of service is typically accomplished by flooding the targeted machine or resource with superfluous requests in an attempt to overload systems and prevent some or all legitimate requests from being fulfilled. Preventing such overloads of our systems and any security issues by denial of service attacks is in your and our vital interest and therefore we use the website logs.

We use website log data (with anonymized IP addresses) for analyzing purposes to help us improve our website.

  • The processing of your personal data in connection with our presence in social networks is also based on our legitimate interests in effective information and communication with you.

Processing is based on your consent (Art. 6 (1) a, Art. 7 GDPR)

  • When subscribing for our newsletter (more information on purposes) or providing your contact details via our website forms, you provide us with your consent, which legitimizes the use of your email address in accordance and to the extent of your consent.
  • If you have given your consent to the respective social network in terms of data processing as described above, the legal basis for the processing is your consent (GDPR Art. 6 para. 1 lit. a, Art. 7).
  • When agreeing to keep your application data in our candidate pool.

Do we disclose any personal data?

We will not transfer your personal data to third parties as a matter of course without letting you know in advance or asking for your prior permission. We may only transfer your personal data to third parties without informing you separately beforehand in the following exceptional cases as explained below:

  • If required for legal proceedings/investigations, personal data will be transferred to the criminal investigation authorities and, if appropriate, to injured third parties. We will only do this if there are concrete indications of illegal and/or abusive behaviour. We are also legally obliged to give certain public authorities information. These are criminal investigation authorities, public authorities which prosecute administrative offences entailing fines and the German finance authorities.
  • As part of the further development of our business it may happen that the structure of eyeo GmbH changes. The legal structure may be adapted, subsidiaries, business units or components may be created, bought or sold. In such transactions, customer information may be shared with the transmitted part of the company. In the event of a transfer of personal information eyeo GmbH will ensure that it is done in accordance with this Privacy Policy and the German data protection laws.
  • For support purposes we are working with a service provider, PlatinPower.com GmbH, Mündender Straße 31, 34123 Kassel, Germany (“PlatinPower”). PlatinPower will only access and process any of your personal data to the extent required for support purposes and only under our instructions. This is safeguarded by a data processing agreement.

International data transfers
For the following services we are using non-EU/EEA service providers. We have carefully selected these external service providers and review regularly to ensure that your privacy is preserved. The service providers provide sufficient guarantees to ensure an adequate level of data protection and may only use the personal data for the purposes stipulated by us and in accordance with our instructions. We also contractually require the service providers to treat your personal data solely in accordance with this Privacy Policy and the European data protection laws:

For job applications we use external service providers to host the online application for you. Greenhouse collects some information on its website, such as anonymous usage statistics, by using cookies, server logs, and other similar technology. For more information, please refer to Greenhouse’s Privacy Policy. When clicking on the “Apply now” button you will be automatically forwarded to the job application tool, which is provided and hosted by Greenhouse Software, Inc., 110 Fifth Avenue, 3rd Floor, New York, NY 10011 (“Greenhouse”). Your job application information, including all documents provided by you, is stored at Greenhouse, in order to enable them to fulfil their contractual obligations.
In order to ensure an adequate level of data protection, we have entered into the EU Standard Contractual Clauses (processors) with Greenhouse and Adobe. You can request a copy by contacting privacy@eyeo.com.

We are using Adobe fonts for the visual design of our website. Therefore, when accessing our web pages, Adobe Systems Software Ireland Limited, 4-6 Riverwalk, City West Business Campus, Saggart D24, Dublin, Ireland (“Adobe”) may collect information about the fonts being served to your website (e.g., fonts served or Browser version).For more information, please refer to Adobe’s privacy policy.

For content management of our website and for marketing purposes we use services provided by HubSpot. Therefore, HubSpot, Inc., 25 First Street, 2nd Floor, Cambridge, MA 02141 may collect contact information like username and similar information when assessing our web pages. For more details, please refer to HubSpot's privacy policy.

Data Retention

Detailed website logs are retained for a period of 30 days, after which only the aggregated usage statistics that cannot be connected to a single user remain. Everything else is deleted.

Application data will be deleted six (6) months after rejection of a candidate. Data of hired candidates will be kept until the end of the employmentship.

Data in candidate pools is retained for a period of two (2) years starting with the declaration of consent.

Contact data we received for newsletter services or via the website form will be deleted within thirty (30) days after unsubscription / deletion request.

In case you are entering into a partner agreement, please find more information on our retention periods here.

What rights do you have?

In compliance with the GDPR and the applicable EU laws and German national data protection laws and to the extent legally permitted, you have the following rights to protect your personal data collected and processed by us:

Information, access, rectification and restriction rights
You have the right to receive, upon request, information about the personal data stored by us about you and information about how we collect and process your personal data. Where that is the case, you have the right to gain access to such personal data stored by us. You have the right to request from us the rectification of inaccurate personal data, if any. Taking into account the purposes of collecting and processing your data, you have the right to have incomplete personal data completed. You also have the right to request restriction of processing.

Data portability
You also have the right (1) to receive all personal data concerning you and which you have provided to us, in a structured, commonly used and machine-readable format and (2) to transmit those data to another controller.

Erasure of your data
You have the right to demand from us the erasure of your personal data, where – inter alia – one of the following grounds applies:

  • If we no longer need your personal data for the aforementioned purposes.
  • If you withdraw your consent on which the collection and processing is based on Article 6 (1) a GDPR and where there are no other legal grounds for collection and processing.
  • If you object to the collection and processing pursuant to Article 21 (1) GDPR and there are no overriding legitimate grounds for collection and processing.

Please note, if data needs to be retained for legal purposes we will restrict the respective data.

Right to lodge a complaint with a supervisory authority
You have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the collection and processing of personal data relating to you infringes the GDPR.

Right to object to the processing of your data
You have the right to object at any time to the collection and/or processing of your personal data on grounds relating to your particular situation, where collection and processing is based on our legitimate interest (Art. 6 (1) f GDPR).

Right to withdraw your consent at any time
You have the right to withdraw your consent at any time, if you have provided us with your consent to the collection and processing of your personal data for one or more specific purposes. The withdrawal of your consent does not affect the lawfulness of processing based on the consent before its withdrawal.

How to exercise your rights
To exercise your rights, please contact us via privacy@eyeo.com or mail to:

eyeo GmbH
Lichtstraße 25
50825 Cologne
Germany

Changes to this Privacy Policy

This Privacy Policy can be changed from time to time.
The respective current version is available at: https://eyeo.com/privacy

California Privacy Notice

This section only applies to California residents. It explains how we collect and use Personal Information as well as the rights available to California residents under the California Consumer Protection Act (“CCPA”). The words in this section have the same meaning given to them in the CCPA. Please note that the words as described under the CCPA may be broader than their common meaning.

“Personal Information,” for example, refers to information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, to you or your household. Personal Information does not include information that is aggregated or information that cannot be reasonably linked to you.

What types of Personal Information we collect and how we use them

In order to enable and facilitate your use of our websites, we must process certain Personal Information about you. We do not sell any of your Personal Information, and we never will. For a detailed explanation about the kinds of information that we collect and how we use it, please review the information provided above. Here is a summary of the CCPA categories of Personal Information that we may have collected about you over the past 12 months:

  • Identifiers;
  • Internet or other electronic network activity information, including information about your browser and your interaction with our websites;
  • Professional or employment information, if you choose to provide it;
  • Education information, if you choose to provide it; and
  • Information drawn from other Personal Information about you, which may include your preferences and interests so as to personalize your experience.

We may have collected these categories of Personal Information for the following business purposes:

  • To communicate with you about our services, products, and employment opportunities;
  • To evaluate employment applications that you submit to us;
  • To facilitate advertising, market research, and other business services;
  • To ensure the security and functionality of our websites; and
  • To perform other business purposes.

How we share Personal Information

Subject to the limitations in this Privacy Policy, we share your Personal Information with external vendors (“Service Providers”) that are contractually prohibited from retaining, using, or disclosing Personal Information for any purpose other than the specific business purposes described in the contract. These Service Providers include:

  • Service providers that facilitate recruitment and employment processing; and
  • Service providers that analyze your use of their respective social networks for market research and advertising purposes. For detailed explanations of how these service providers collect and use your Personal Information, please review their respective privacy policies linked above.

Additionally, we may also share your Personal Information with law enforcement or other third parties as necessary to comply with legal requirements.

Sources from which we collect Personal Information

We receive Personal Information from you, your interaction with our website and application forms, and our external service providers. The categories of sources from which we have collected or received Personal Information include:

  • You: We collect information that you volunteer, such as contact information and other information that you provide to us in connection with employment inquiries or as part of a request to receive a newsletter from us.
  • Our Website: We collect information about how you interact with and use our website.
  • Service Providers: We engage vendors to perform business purposes on our behalf and share information with them to provide us with such business purposes including, analytics, recruitment and employment processing, and market research and advertising purposes.

What are your rights under the CCPA?

The CCPA provides you with the following rights:

  • Right to Know: you have the right to request that we disclose to you the categories of Personal Information that we have collected, the categories of sources from which we have collected the Personal Information, the business purpose for collecting Personal Information, the categories of third parties with whom we have shared Personal Information, and the specific pieces of Personal Information about you that we have collected;
  • Right to Request Deletion: you have the right to request that we delete any Personal Information about you that we have collected; and
  • Right to Non-Discrimination: we will not discriminate against you for exercising any of these rights.

Please note that we have a duty to verify your identity whenever you exercise your Right to Know and/or your Right to Request Deletion. In order to do so, we will request Personal Information from you to match against the Personal Information in our records. In some cases, we may also request additional documentation to verify your identity.

Please also note that the CCPA allows you to exercise these rights yourself or to designate an authorized agent who will exercise these rights on your behalf. In the event that an authorized agent exercises rights on your behalf, we may request a written permission from you that establishes the individual as your authorized agent as well as other information necessary to verify the identity of the authorized agent

To exercise any of these rights, please submit a request to privacy@eyeo.com 

Contact for more information

If you have any questions about this section or how to exercise your rights under the CCPA, please contact us.

Privacy Information Business Partner

Information on how we, at eyeo, process your personal data and your information rights in accordance with Articles 13, 14, and 21 of the General Data Protection Regulation (“GDPR”).

We hereby inform you about the processing of your personal data by us and the claims and rights to which you are entitled under the data protection regulations.

1. General Information

Who is responsible for data processing and who can I contact?

Controller

The legal person responsible for the collection, processing and / or use of personal data in connection with our websites and products (“Controller”) is:

eyeo GmbH
Lichtstraße 25
50825 Cologne
Germany

Data Protection Officer

Carlo Piltz

Email: privacy@eyeo.com

Fax: +49 (0) 221 / 6430 6372

What sources and data categories do we use for processing your personal data?

Sources

Data you provided directly to us or indirectly through our PR agency Rocket Science, who may have initiated our first contact; business cards; emails; professional social networks; your company website.

Categories of Personal Data

Contact data, contact person, communication data, bank details.

The purposes for processing data

This data is collected and processed:

  • to identify you as our partner;
  • to communicate with you; and
  • for invoicing purposes.

Legal Basis to Process Data

Collection and processing is necessary for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior to entering into a contract (GDPR Art. 6(1)(b))

The personal data will be processed if required for (i) entering into a contract, (ii) the appropriate processing of our contract, or (iii) for the mutual fulfilment of obligations arising from the contract in accordance with Article 6(1)(b) of the GDPR.

Processing is necessary for our legitimate interests (GDPR Art. 6(1)(f))

If necessary, we process your data beyond the actual scope of performance of our contract to protect our legitimate interests and those of third parties, e.g. newsletters about our products sent by our service providers.

Processing is based on your consent (GDPR Arts. 6(1)(a), 7)

Please note that withdrawing your consent will only affect processing of personal information that would have occurred after the time of the withdrawal. Processing that took place before your withdrawal will remain unaffected by such withdrawal.

By giving us your consent to process personal data for specific purposes (e.g. to send you newsletters), our processing your personal data for those purposes is permitted. Consent that has been given can be withdrawn at any time. This also applies to withdrawing declarations of consent which may have been given to us before the GDPR became enforceable, i.e. before 25 May 2018.

Processing is necessary for compliance with a legal obligation (GDPR Art. 6(1)(c))

As a company, we are also subject to various additional legal obligations, i.e. legal requirements. These additional obligations may include, but are not limited to:

  • complying with legal requirements (e.g. tax matters, notifications to the financial supervisory authorities),
  • fulfilling legal obligations to provide information (court orders, investigations, etc.).

What Happens to Your Data

Who may access your data?

Within eyeo GmbH, certain departments (e.g. respective executives) may receive the data as needed to fulfill our contractual and legal obligations (e.g. accounting receives invoicing data).

In addition, we make use of various service providers and freelancers to fulfill our contractual and legal obligations. We may also transfer your personal data to other recipients outside of eyeo GmbH if this is necessary to fulfill any contractual and legal obligations. These other recipients may include, but are not limited to:

  • authorities (e.g. tax authorities, courts, data protection supervisory authorities)
  • bank details (SEPA payment medium)

Contractors that we use, which include but are not limited to service providers and freelancers, may also receive personal data for these purposes (GDPR Art. 28). Such contractors include companies that provide banking services, accounting services, marketing services, IT services, software tools, logistics, printing services, telecommunications, debt collection, consulting, and sales and marketing.

How long do we store personal data?

Any personal data which we collect for the purposes of our contractual relationship will be stored until the end of the legal obligation to retain contract data (6 or 10 years after the end of the calendar year in which the contractual relationship was terminated). After this term, the data will be deleted, unless we can prove that continued retention is necessary for compliance with any obligation in accordance with GDPR Art. 6(1)(c). Such obligations may include, but are not limited to, tax and commercial-legal storage and documentation obligations under the German Commercial Code (HGB), the German Criminal Act (StGB), or the German Revenue Code (AO). Storage terms exceeding 6 or 10 years after the termination of a contract may also apply if agreed to in writing (GDPR Art. 6(1)(a)).

Rights of Data Subjects

What rights do you have?

In compliance with the GDPR and applicable EU and German national data protection laws, and to the extent legally permitted, you have the following rights to protect your personal data collected and processed by us:

Information, access, rectification and restriction rights

Upon request, you have the right to receive information about the personal data stored by us about you and information describing how we collect, process, and store your personal data. Further, you have the right to gain access to any of your personal data stored by us. You have the right to request from us the rectification of inaccurate personal data about you that we store. Taking into account the purposes of collecting and processing your data, you have the right to have incomplete personal data completed. You have the right to request restrictions on the processing of your personal data.

Information, access, rectification and restriction rights

You also have the right (1) to receive in a structured, commonly used, and machine-readable format all personal data about you that you have provided to us, and (2) to transmit that data to another controller.

Right to erasure of your data

You have the right to demand from us the erasure of your personal data, where – inter alia – one of the following grounds applies:

  • If we no longer need your personal data for any of the aforementioned purposes;
  • If you withdraw your consent on which the collection and processing of your personal data is based on and where there are no other legal grounds for the collection and processing of your personal data; or
  • If you object to the collection and processing and there are no overriding legitimate grounds for continuing collection and processing of your personal data

Please note, if data needs to be retained pursuant to the erasure exemptions provided in Article 17(3) of the GDPR, we will restrict the use of the respective data.

Right to lodge a complaint with a supervisory authority

You have the right to lodge a complaint with a supervisory authority in the Member State of your habitual residence, your place of work, or the place of the alleged infringement if you believe that the collection and processing of your personal data infringes the protections provided by the GDPR.

Right to object to the processing of your data

You have the right to object at any time to the collection and processing of your personal data on grounds relating to your particular situation when collection and processing of such data was based on our pursuing legitimate business interests (GDPR Art. 6(1)(f)).

Right to withdraw your consent at any time

You have the right to withdraw your consent at any time, when you have provided us with your consent for the collection and processing of your personal data for one or more specific purposes.

How to exercise your rights

To exercise your rights, please contact us via email privacy@eyeo.com or mail to:

eyeo GmbH
Lichtstraße 25
50825 Cologne
Germany

Are you obliged to provide personal data to us?

In connection with our contractual relationship, you are only obligated to provide us with personal data that is necessary for the performance of our contract or in order to take those steps that are necessary for you voluntarily entering into a contract, e.g. contact data, contact person, and bank details.

2. Your right to object

You have the right to object at any time to the collection and processing of your personal data on grounds relating to your particular situation when collection and processing of such data was based on our legitimate business interests (GDPR Art. 6(1)(f)). This also applies to any profiling (GDPR Art. 4) that was based on our legitimate business interests (GDPR Art. 6(1)(f) GDPR).

If you object, we will no longer process your personal data, unless (1) we can prove compelling reasons to continue processing your personal data that outweigh your interests, rights, and freedoms; or (2) the processing serves to assert, exercise, or defend legal claims.

To object, please contact us via email privacy@eyeo.com or mail to:

eyeo GmbH
Lichtstraße 25
50825 Cologne
Germany

3. Subcontractors / processors

eyeo GmbH is currently using the following categories of subcontractors in connection with the processing of your personal data. These subcontractors have entered into data processing agreements with us and will only process your personal data under our instructions:

Category of subcontractors - Main subject of subcontracted services

Software service provider - Customer Relation Management (CRM) tool, office tool for communication and filing, synchronisation between email and CRM, collecting electronic signatures, invoicing, newsletter

Freelancer - Technical account management, contract support service

Privacy Information Journalists / Press

Information on how we process your personal data and your information rights in accordance with Articles 13, 14, and 21 of the General Data Protection Regulation (“GDPR”).

We hereby inform you about the processing of your personal data by us and the claims and rights to which you are entitled under the data protection regulations.

1. General Information

Who is responsible for data processing and who can I contact?

Controller

The legal person responsible for the collection, processing and / or use of personal data in connection with our websites and products (“Controller”) is:

eyeo GmbH
Lichtstraße 25
50825 Cologne
Germany

Data Protection Officer

Carlo Piltz

Email: privacy@eyeo.com

Fax: +49 (0) 221 / 6430 6372

What sources and data categories do we use for processing your personal data?

Sources

Data you provided directly to us or indirectly through business cards; emails; professional social networks; the Stamm Datenbank Redaktionsadressen; your (company) website.

Categories of Personal Data

Contact data, contact person, communication data.

The purposes for processing data

This data is collected and processed to inform you about news concerning one or several of eyeo’s products or any news linked to eyeo as a company.

Legal Basis to Process Data

Collection and processing is necessary for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior to entering into a contract (GDPR Art. 6(1)(b))

The personal data will be processed if required for (i) entering into a contract, (ii) the appropriate processing of our contract, or (iii) for the mutual fulfilment of obligations arising from the contract in accordance with Article 6(1)(b) of the GDPR.

Processing is necessary for our legitimate interests (GDPR Art. 6(1)(f))

If necessary, we process your data beyond the actual scope of performance of our contract to protect our legitimate interests and those of third parties, e.g. newsletters about our products sent by our service providers.

Processing is based on your consent (GDPR Arts. 6(1)(a), 7)

By giving us your consent to process personal data for specific purposes (e.g. to send you newsletters), our processing your personal data for those purposes is permitted. Consent that has been given can be withdrawn at any time. This also applies to withdrawing declarations of consent which may have been given to us before the GDPR became enforceable, i.e. before 25 May 2018.

Please note that withdrawing your consent will only affect processing of personal information that would have occurred after the time of the withdrawal. Processing that took place before your withdrawal will remain unaffected by such withdrawal.

Processing is necessary for compliance with a legal obligation (GDPR Art. 6(1)(c))

As a company, we are also subject to various additional legal obligations, i.e. legal requirements. These additional obligations may include, but are not limited to:

  • complying with legal requirements (e.g. tax matters, notifications to the financial supervisory authorities),
  • fulfilling legal obligations to provide information (court orders, investigations, etc.).

What Happens to Your Data

Who may access your data?

Within eyeo GmbH, certain departments (e.g. respective executives) may receive the data as needed to fulfill our contractual and legal obligations (e.g. accounting receives invoicing data).

In addition, we make use of some service providers and freelancers to fulfill our contractual and legal obligations. We may also transfer your personal data to other recipients outside of eyeo GmbH if this is necessary to fulfill any contractual and legal obligations.

Contractors that we use, which include but are not limited to service providers and freelancers, may also receive personal data for these purposes (GDPR Art. 28). Such contractors may include companies that provide banking services, accounting services, marketing services, IT services, software tools, logistics, printing services, telecommunications, debt collection, consulting, and sales and marketing.

How long do we store personal data?

Right after you have objected to the use of your data or two (2) years after our last contact, whichever is earlier.

Rights of Data Subjects

What rights do you have?

In compliance with the GDPR and applicable EU and German national data protection laws, and to the extent legally permitted, you have the following rights to protect your personal data collected and processed by us:

Information, access, rectification and restriction rights

Upon request, you have the right to receive information about the personal data stored by us about you and information describing how we collect, process, and store your personal data. Further, you have the right to gain access to any of your personal data stored by us. You have the right to request from us the rectification of inaccurate personal data about you that we store. Taking into account the purposes of collecting and processing your data, you have the right to have incomplete personal data completed. You have the right to request restrictions on the processing of your personal data.

Right to data portability

You also have the right (1) to receive in a structured, commonly used, and machine-readable format all personal data about you that you have provided to us, and (2) to transmit that data to another controller.

Right to erasure of your data

You have the right to demand from us the erasure of your personal data, where – inter alia – one of the following grounds applies:

  • If we no longer need your personal data for any of the aforementioned purposes;
  • If you withdraw your consent on which the collection and processing of your personal data is based on and where there are no other legal grounds for the collection and processing of your personal data; or
  • If you object to the collection and processing and there are no overriding legitimate grounds for continuing collection and processing of your personal data

Please note, if data needs to be retained pursuant to the erasure exemptions provided in Article 17(3) of the GDPR, we will restrict the use of the respective data.

Right to lodge a complaint with a supervisory authority

You have the right to lodge a complaint with a supervisory authority in the Member State of your habitual residence, your place of work, or the place of the alleged infringement if you believe that the collection and processing of your personal data infringes the protections provided by the GDPR.

Right to object to the processing of your data

You have the right to object at any time to the collection and processing of your personal data on grounds relating to your particular situation when collection and processing of such data was based on our pursuing legitimate business interests (GDPR Art. 6(1)(f)).

Right to withdraw your consent at any time

You have the right to withdraw your consent at any time, when you have provided us with your consent for the collection and processing of your personal data for one or more specific purposes.

How to exercise your rights

To exercise your rights, please contact us via email privacy@eyeo.com or mail to:

eyeo GmbH
Lichtstraße 25
50825 Cologne
Germany

Are you obliged to provide personal data to us?

In connection with our contractual relationship, you are only obligated to provide us with personal data that is necessary for the performance of our contract or in order to take those steps that are necessary for you voluntarily entering into a contract, e.g. contact data, contact person, and bank details.

2. Your right to object

You have the right to object at any time to the collection and processing of your personal data on grounds relating to your particular situation when collection and processing of such data was based on our legitimate business interests (GDPR Art. 6(1)(f)). This also applies to any profiling (GDPR Art. 4) that was based on our legitimate business interests (GDPR Art. 6(1)(f) GDPR).

If you object, we will no longer process your personal data, unless (1) we can prove compelling reasons to continue processing your personal data that outweigh your interests, rights, and freedoms; or (2) the processing serves to assert, exercise, or defend legal claims.

To object, please contact us via email privacy@eyeo.com or mail to:

eyeo GmbH
Lichtstraße 25
50825 Cologne
Germany

3. Subcontractors / processors

eyeo GmbH is currently using the following categories of subcontractors in connection with the processing of your personal data. These subcontractors have entered into data processing agreements with us and will only process your personal data under our instructions:

Category of subcontractors - Main subject of subcontracted services

Software service provider - Customer Relation Management (CRM) tool, office tool for communication and filing, synchronisation between email and CRM, collecting electronic signatures, invoicing, newsletter

Freelancer - Technical account management, contract support services

Privacy Information eyeo DSP

Privacy Notice (short version)

The following privacy notice shall provide you with a general overview about the collection, processing and use (hereinafter together referred to as “processing”) of your personal data. For more information regarding our processing activities, please view our complete Privacy Policy.

What kind of data do we process?

  1. When contacting us via our form or by sending us an email (voluntarily):
    1. Name
    2. Email address
    3. Company name
    4. Title
    5. Communication data
    6. Optional: phone number
  2. When using the eyeo DSP platform (log in required)
    1. Email address
    2. Passwort

How do we collect data?

  • Contact form
  • Customer relation management tool
  • Emails
  • Cookies

How and why do we process your data?

  • To provide our services to you.

How long do we keep data?

  • Contact data: 
    • As long as necessary in order to communicate with you
  • If we have entered into a partnership agreement, until the end of the legal obligation to retain the contract data

What is the legal basis of data processing?

We process your personal data in compliance with the European General Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”), the applicable EU laws and German national data protection laws.

Our values

We collect as little data as possible. As far as anonymous or pseudonymous use is possible we anonymize or pseudonymize your data.

What rights do you have?

  • Receive information about the personal data processed by us and how we process your data as well as to gain access to such data.
  • Rectify inaccurate personal data and restrictive details.
  • Receive all your personal data in a structured, commonly used and machine-readable format, as well as having such data transmitted to another controller.
  • Request erasure of your data, unless such data needs to be retained for legal purposes.
  • Object to the processing of your data.
  • Withdraw your consent at any time, when you have provided us with your consent to the processing of your personal data.
  • Lodge a complaint with the respective supervisory authority.

Questions?

Contact our Data Protection Officer, Carlo Piltz, via email at privacy@eyeo.com .

Privacy Policy (long version)

Your protection and data confidentiality is of utmost importance to us ("eyeo", "we", "our"). We take the protection of your personal data very seriously and collect as little data as possible. Nevertheless, collecting data helps our products and websites function correctly, and allows us to communicate with you. Our general privacy policy is to avoid collecting more data than necessary. Collected data is anonymized, if possible, and deleted when no longer needed. This privacy policy shall inform you about the collection, processing and use of your personal data. We gather and use personal data firmly within the provisions of the European General Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”), the applicable EU Laws and German national data protection laws. In the following text we will inform you about the specific data, the scope and the purpose of the collection and use of personal data by eyeo when using our products and visiting our websites.

What is personal data?

The purpose of data protection is to protect personal data. Personal data means any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. This information includes, for example, details such as name, postal address, email address or telephone number but also nicknames, certificates and information about your interests.

What kind of data do we collect and process and how?

Automatically collected and processed information:

Information you give us on a voluntary basis

Contact and communication data

We process contact and communication data sent by you in the respective message you are providing to us by using our contact form or sending us an email to respond, and to communicate, and to discuss potential partnerships with you. Contact data includes:

  • Name
  • Email address
  • When using the form:
    • Company name
    • Title
    • Optional: phone number

Data you provide to us in connection with the use of eyeo DSP 

We are offering our partners to manage campaigns on the eyeo DSP platform. Therefore, you have to register by adding your first and last name, an email address and choosing a password. 

We may use your email address to verify it, to respond to your requests, send you reports, transfer subscription payments, etc.

To create your account, you also need to enter your name and, if applicable, the name of your business, date of birth, nationality and your country of residence. This data is needed for Processing transactions.

What is the legal basis?

We process personal data in compliance with the European General Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”) and the applicable German national data protection laws:

Processing is necessary for taking steps prior to entering into a contract (Art. 6 (1) b GDPR)

The collection and processing of your personal data may be necessary for the performance of a contract to which you may be a party. Prior to entering into such a contract, the collection and processing of your personal data may also be necessary in order to take steps at your request. 

Collection and processing is necessary for compliance with a legal obligation to which the controller is subject – Art. 6 (1) c GDPR

Collection and processing of your personal data may be necessary for compliance with a legal obligation to which we are subject under EU laws or the laws of a EU Member State.

Processing is necessary for the purposes of eyeo’s legitimate interests (Art. 6 (1) f GDPR)

The collection and processing may be necessary for the purposes of our legitimate interests, e.g., to recognize signed-in users or to store your privacy preferences.

Processing is based on your consent (Art. 6 (1) a, Art. 7 GDPR)

We will always ask for your consent to collect and process your personal data for the aforementioned specific purposes, unless the collection and processing of your personal data is permitted by statutory laws. Where you have provided us with your consent to the collection and processing of your personal data for the aforementioned specific purposes, you have the right to withdraw your consent at any time.

Do we disclose any personal data?

We will not transfer your personal data to third parties as a matter of course without letting you know in advance or asking for your prior permission. We may only transfer your personal data to third parties without informing you separately beforehand in the following exceptional cases as explained below:

  • If required for legal proceedings/investigations, personal data will be transferred to the criminal investigation authorities and, if appropriate, to injured third parties. We will only do this if there are concrete indications of illegal and/or abusive behaviour. We are also legally obliged to give certain public authorities information. These are criminal investigation authorities, public authorities which prosecute administrative offences entailing fines and the German finance authorities.
  • As part of the further development of our business it may happen that the structure of eyeo GmbH changes. The legal structure may be adapted, subsidiaries, business units or components may be created, bought or sold. In such transactions, customer information may be shared with the transmitted part of the company. In the event of a transfer of personal information, eyeo GmbH will ensure that it is done in accordance with this Privacy Policy and the German data protection laws.

International data transfers

For the following services we are using non-EU/EEA service providers. We have carefully selected these external service providers and review regularly to ensure that your privacy is preserved. The service providers provide sufficient guarantees to ensure an adequate level of data protection and may only use the personal data for the purposes stipulated by us and in accordance with our instructions. We also contractually require the service providers to treat your personal data solely in accordance with this Privacy Policy and the European data protection laws:

For providing the eyeo DSP platform we use an external service provider, BeeswaxIO Corporation, 275 7th Avenue, 21st Floor, New York, NY 10001, USA. In order to ensure an adequate level of data protection, we have entered into a data processing agreement with BeeswaxIO Corporation that includes the EU Standard Contractual Clauses (processors). You can request a copy of the agreement by sending an email to privacy@eyeo.com.

We use an external service provider tool for email (GSuite) and for web analytics and A/B testing (Google Analytics and Google Optimize). These services are provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. In order to ensure an adequate level of data protection, we have entered into a data processing agreement including the EU Standard Contractual Clauses (processors).. You can access a copy of this agreement here.

In addition, we use the customer relation management tool from Salesforce, Inc., Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA and a web integration from Zapier, Inc., 548 Market Street #62411, San Francisco, California 94104, USA, for customer relation management and its web integration. In order to ensure an adequate level of data protection, we have entered into a data processing agreement with Salesforce, Inc. and Zapier, Inc. that include the EU Standard Contractual Clauses (processors). You can request copies of the agreements by sending an email to privacy@eyeo.com 

We are using Adobe fonts for the visual design of our website. Therefore, when accessing our web pages, Adobe Systems Software Ireland Limited, 4-6 Riverwalk, City West Business Campus, Saggart D24, Dublin, Ireland (“Adobe”) may collect information about the fonts being served to your website (e.g., fonts served or Browser version).For more information, please refer to Adobe’s privacy policy.In order to ensure an adequate level of data protection, we have entered into a data processing agreement with Adobe that includes the EU Standard Contractual Clauses (processors). You can request a copy of the agreement by sending an email to privacy@eyeo.com.  

Data Retention

Contact and communication data will be deleted as soon as they are not necessary for communication with you.

What rights do you have?

In compliance with the GDPR and the applicable EU laws and German national data protection laws and to the extent legally permitted, you have the following rights to protect your personal data collected and processed by us:

Information, access, rectification and restriction rights

You have the right to receive, upon request, information about the personal data stored by us about you and information about how we collect and process your personal data. Where that is the case, you have the right to gain access to such personal data stored by us. You have the right to request from us the rectification of inaccurate personal data, if any. Taking into account the purposes of collecting and processing your data, you have the right to have incomplete personal data completed. You also have the right to request restriction of processing.

Data portability

You also have the right (1) to receive all personal data concerning you and which you have provided to us, in a structured, commonly used and machine-readable format and (2) to transmit those data to another controller.

Erasure of your data

You have the right to demand from us the erasure of your personal data, where – inter alia – one of the following grounds applies:

  • If we no longer need your personal data for the aforementioned purposes.
  • If you withdraw your consent on which the collection and processing is based on Article 6 (1) a GDPR and where there are no other legal grounds for collection and processing.
  • If you object to the collection and processing pursuant to Article 21 (1) GDPR and there are no overriding legitimate grounds for collection and processing.

Please note, if data needs to be retained for legal purposes we will restrict the respective data.

Right to lodge a complaint with a supervisory authority

You have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the collection and processing of personal data relating to you infringes the GDPR.

Right to object to the processing of your data

You have the right to object at any time to the collection and/or processing of your personal data on grounds relating to your particular situation, where collection and processing is based on our legitimate interest (Art. 6 (1) f GDPR).

Right to withdraw your consent at any time

You have the right to withdraw your consent at any time, if you have provided us with your consent to the collection and processing of your personal data for one or more specific purposes. The withdrawal of your consent does not affect the lawfulness of processing based on the consent before its withdrawal.

How to exercise your rights

To exercise your rights, please contact us privacy@eyeo.com or mail to:

eyeo GmbH

Lichtstr. 25

50825 Cologne

Germany

California Privacy Notice

This section only applies to California residents. It explains how we collect and use Personal Information as well as the rights available to California residents under the California Consumer Protection Act (“CCPA”). The words in this section have the same meaning given to them in the CCPA. Please note that the words as described under the CCPA may be broader than their common meaning.

Personal Information,” for example, refers to information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, to you or your household. Personal Information does not include information that is aggregated or information that cannot be reasonably linked to you. 

What Personal Information we collect and how we use it

In order to enable and facilitate your use of our websites, we must process certain Personal Information about you. We do not sell any of your Personal Information, and we never will. For a detailed explanation about the kinds of information that we collect and how we use it, please review the information provided above. Here is a summary of the CCPA categories of Personal Information that we may have collected about you over the past 12 months:

  • Identifiers;
  • Internet or other electronic network activity information, including information about your browser and your interaction with our websites;
  • Contact Information, if provided by you;
  •  Information drawn from other Personal Information about you, which may include your preferences and interests so as to personalize your experience.

We may have collected these categories of Personal Information for the following business purposes:

  • To communicate with you about our services, products and partnership opportunities;
  •  To facilitate advertising, market research and other business services;
  • To ensure the security and functionality of our websites; and
  • To perform other business purposes.

How we share Personal Information

Subject to the limitations in this Privacy Policy, we share your Personal Information with external vendors (“Service Providers”) that are contractually prohibited from retaining, using, or disclosing Personal Information for any purpose other than the specific business purposes described in the contract. These Service Providers include:

  • Service providers that facilitate customer relation management; and

Additionally, we may also share your Personal Information with law enforcement or other third parties as necessary to comply with legal requirements.

Sources from which we collect Personal Information

We receive Personal Information from you, your interaction with our website and application forms, and our external service providers. The categories of sources from which we have collected or received Personal Information include:

  •  You: We collect information that you volunteer, such as contact information and other information that you provide to us in connection with contacting us.
  • Our Website: We collect information about how you interact with and use our website.
  • Service Providers: We engage vendors to perform business purposes on our behalf and share information with them to provide us with such business purposes including customer relation data processing purposes.

What are your rights under the CCPA?

The CCPA provides you with the following rights:

  • Right to Know: you have the right to request that we disclose to you the categories of Personal Information that we have collected, the categories of sources from which we have collected the Personal Information, the business purpose for collecting Personal Information, the categories of third parties with whom we have shared Personal Information, and the specific pieces of Personal Information about you that we have collected;
  •  Right to Request Deletion: you have the right to request that we delete any Personal Information about you that we have collected; and
  • Right to Non-Discrimination: we will not discriminate against you for exercising any of these rights.

Please note that we have a duty to verify your identity whenever you exercise your Right to Know and/or your Right to Request Deletion. In order to do so, we will request Personal Information from you to match against the Personal Information in our records. In some cases, we may also request additional documentation to verify your identity.

Please also note that the CCPA allows you to exercise these rights yourself or to designate an authorized agent who will exercise these rights on your behalf. In the event that an authorized agent exercises rights on your behalf, we may request a written permission from you that establishes the individual as your authorized agent as well as other information necessary to verify the identity of the authorized agent.

To exercise any of these rights, please submit a request to privacy@eyeo.com.

Contact for more information

If you have any questions about this section or how to exercise your rights under the CCPA, please contact us.