Privacy Policy

https://www.vivascope.de

Privacy policy

(as at: March 2024)

Thank you for your interest in VivaScope GmbH and its website at the URL https://www.vivascope.de (hereinafter referred to as the “website”). Below we inform you in detail about the handling of your data that we collect in connection with the operation of our website.

1. responsible persons

The controller within the meaning of data protection law is VivaScope GmbH, Stahlgruberring 5, 81829 Munich, hereinafter referred to as “VivaScope” or “we”), e-mail address info@vivascope.de.

2. contact the data protection officer

Our data protection officer can be contacted as follows: privacy@vivascope.de

3. call up the website

You can visit our website without providing any personal details. We temporarily store your access data, which is summarised in a log file on our web servers. The access data includes the following information:

 IP address of the requesting end device,

• Date and time of access,
• Name and URL of the retrieved file,
• Amount of data transferred,
• Message indicating whether the call was successful,
• Recognition data of the browser and operating system used,
• the website from which the access is made and
• Name of your Internet access provider.

The aforementioned data is technically necessary to enable your device to access our website and use its functions. The data is collected for pre-contractual purposes or in our legitimate interest in showing you the content of this website (Art. 6 para. 1 sentence 1 b), f) GDPR).

4. cookies used by us

We use cookies on our website to make your visit more attractive and to enable the use of certain functions. Cookies are small text files that are sent from our web server to your browser and stored on your end device. Cookies are only set if they are technically necessary for the operation of the website (so-called “necessary cookies”) or if you have consented to this via the entry banner on our website and your browser settings allow cookies to be set (Art. 6 para. 1 sentence 1 a), f) GDPR).

The cookies contain the following data records:

 Necessary cookies:

STATISTICAL COOKIES

MARKETING-COOKIES

5 Google services belonging to the cookies

The Google services listed here are offered by Google Ireland Limited (“Google”). You can configure your data protection settings for your Google account here: https://myaccount.google.com/intro/privacycheckup?utm_source=accounts&utm_medium=callout&utm_campaign=new_privacy_checkup

Google’s privacy policy can be found here: http://www.google.de/intl/de/policies/privacy

Google stores the data in Germany, but reserves the right to process the data on servers in the USA.  The USA is currently considered a country with an adequate level of data protection (see adequacy decision of the EU Commission of 10 July 2023, C (2023) 4745 final), and Google LLC USA has certified itself accordingly: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active

5.1 Google Analytics

We use Google Analytics, a web analysis service from Google, which enables us to analyse your use of the website. The information generated by the cookie about your visit to this website will be transmitted to and stored by Google on servers in the United States. Google uses this information to analyse your use of the website, to compile reports on website activity for us and to provide us with other services relating to website activity and internet usage. We are joint controllers with Google and have concluded a joint control agreement (Google Controller-Controller Data Protection Terms (safety.google)) via our account with Google.

Summary of the joint control agreement with Google:

•         Each party is responsible for ensuring that there is a legal basis for the respective data processing.
•         Data subject rights are implemented by Google insofar as this does not involve exclusive data processing by us. However, you can contact us and/or Google to assert your rights as a data subject.
•         The reporting of data protection violations in accordance with Art. 33 GDPR is handled by Google.  We are obliged to report immediately if a data protection breach is suspected.

The IP address is automatically recorded only in anonymised form.

You can also prevent the storage of these cookies by setting your browser accordingly. You can also prevent Google from collecting the data generated by the cookie and relating to your use of our website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link

http://tools.google.com/dlpage/gaoptout?hl=de

Alternatively, you can prevent the collection and use of your data by Google by clicking on the following link:

Deactivate Google Universal Analytics

Clicking this link sets an opt-out cookie that prevents your data from being collected by Google.

You can find more information on Google’s terms of use and privacy policy for this service at the following links:

http://www.google.com/analytics/terms/de.html
http://www.google.com/intl/de/analytics/learn/privacy.html

Data is collected by Google in particular from users of a Gmail account, as Google is also the operator here. You can change your advertising settings for this at https://adssettings.google.com/authenticated so that activities and information are no longer collected for personalised advertising.

5.2 Google AdWords

This website also uses the online advertising programme “Google AdWords” from Google, in particular conversion tracking. A conversion can be, for example, a registration, a page view or an enquiry. Google has developed a tool with which these conversions and ultimately the effectiveness of AdWords adverts can be measured. The conversion tracking cookie is set on your end device when you click on an advert placed by Google. These cookies lose their validity after 30 days and are not used for personal identification. If you visit certain pages of this website and the cookie has not yet expired, we and Google can recognise that you have clicked on the ad and have been redirected to this page. Each Google AdWords customer receives a different cookie. Cookies can therefore not be tracked via the websites of AdWords customers. The information collected using the conversion cookie is used to generate conversion statistics for AdWords customers who have opted for conversion tracking. The customers, including us, learn the total number of users who clicked on their advert and were redirected to a page with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users. If you do not wish to participate in tracking, you can easily deactivate the Google Conversion Tracking cookie via your Internet browser under user settings. You can also disable the use of these cookies in your Google advertising settings.

5.3 Google Tag Manager

Google Tag Manager is a solution with which we can manage website keywords, i.e. tags, via an interface and thus integrate other services into our website. Tags are pieces of code, such as HTML or JavaScript, that we use on the website for analysis or marketing purposes. They can also be a social media plugin. The Tag Manager itself (which implements the tags) does not, for example, create user profiles or store cookies. Rather, the tags and scripts set cookies that collect data from users in order to create statistics and marketing analyses, such as the Google Analytics service mentioned above. Google only learns the IP address of the user, which is necessary to provide the service.

5.4 Google Maps

This website contains maps from Google Maps to display geographical information. When the website is accessed, Google makes a request (so-called third party request) and establishes a connection with its server by collecting the IP number. The procedure is as described in section 5. If you are logged in to Google when you use the website, Google may link this data to your account. We would like to point out that, as the provider of the website, we have no influence on the collection and use of data by Google. The additional terms of use for Google Maps and Google Earth apply (https://www.google.com/intl/de_US/help/terms_maps.html). The Joint Control Agreement (Google Controller-Controller Data Protection Terms (safety.google)), which is described in more detail in section 5.1 of this privacy policy, also applies.

6. Captcha service

We use the “CAPTCHA” service for our contact forms, which is offered by WebAppz IT-Consulting GmbH, Sportfeldstrasse 8, 63808 Haibach, Germany. This service checks whether the enquiry is being made by an individual and not by a computer.

No cookies are set by this service. For increased security, the solution to the enquiry must be entered within 20 seconds. RSA encryption is used; this is an asymmetric encryption method that is frequently used on the Internet for secure data transmission. The resolution of the question is validated in the backend, i.e. on our web server itself. This means that no further data processing takes place.

7. integrated Vimeo videos

Videos are embedded on our website via the provider Vimeo. The provider of the corresponding plugins and the associated website at https://www.vimeo.com is Vimeo LLC (“Vimeo”), 555 West 18th Street, New York, New York 10011, USA.

The videos are integrated via so-called inline frames (“iframes” for short) in extended data protection mode. An iframe is an element with which content from other websites is integrated directly into our website via HTML. Information is only collected by Vimeo if you give your consent and watch the video. Once you have given your consent, the above-mentioned cookies are set. If you have already consented to playback on another website, Vimeo recognises this by the cookie that is set. If you click on the video, Vimeo receives information about the website from which you are accessing the Vimeo videos. If you are logged into your Vimeo account, Vimeo can assign your surfing behaviour to you personally. You can prevent this by logging out of your Vimeo account beforehand. If you interact with the plugins (e.g. by clicking the start button of a video), this information is also transmitted directly to a Vimeo server and stored there. The purpose and scope of the data collection and the further processing and use of the data by Vimeo as well as your setting options for protecting your data can be found in Vimeo’s data protection information: vimeo.com/privacy.

8. contact form

When using our contact form, which can be accessed via the “Contact” link, you will be asked to provide certain data (such as title, surname, first name, e-mail address, telephone number, institute/company and message to us). The information marked with an asterisk is mandatory. All information is used to process your enquiry. We use the data to process your enquiry and thus for pre-contractual measures or in our legitimate interest to enable enquiries about our company and to respond to them (Art. 6 para. 1 sentence 1 b), f) GDPR). Within the contact form, you also have the option of registering for our newsletter (see section 10).

Unfortunately, you will not receive a response from us if you do not provide the mandatory information. Failure to provide voluntary information will have no consequences.

9. vacancies

You can find out about current vacancies at VivaScope via the “Vacancies” link. It is not possible to apply online. However, you are welcome to send us your application documents to the e-mail address bewerbung@vivascope.com. Please ensure that your data is adequately protected.

All data will be used to process your application and thus for pre-contractual purposes and for a possible employment relationship (Art. 6 Para. 1 S.1 b) GDPR, § 26 BDSG). The e-mail address is required in order to be able to confirm receipt of your application immediately. Contact details are used to get in touch with you, e.g. to arrange an interview.

Your applicant data will be stored for 6 months after the desired training place or position has been awarded or, in the case of an unsolicited application, after rejection. Immediately after the award of the training place or position, the data of applicants (m/f/d) who have not been awarded the contract will be blocked for any use other than the clarification of applicant claims. In the case of unsolicited applications, the data will be blocked after rejection. Any further storage and use of applicant data will only take place if you have given us your express consent to the further storage of your applicant data or in the case of a legitimate interest of VivaScope, e.g. in the case of a burden of proof in legal proceedings. If an employment or training contract is concluded with an applicant, the data will be stored and processed for the implementation and processing of the employment relationship and thus for contractual purposes.

10. Newsletter

You also have the option of subscribing to our newsletter, which will be sent to you by email. This is done on the basis of your express consent (Art. 6 para. 1 sentence 1 a) GDPR) or, if applicable, within the legally permissible framework in the event of a corresponding reference on our part to advertise similar services and products (Section 7 para. 3 UWG). If you have given your consent, you must confirm your consent again via a link in our email (so-called opt-in). Otherwise, the data will be deleted after 48 hours, unless there is another authorisation for storage.

To send the newsletter, we use the Rapidmail service, which is operated by rapidmail GmbH, Wentzingerstraße 21, 79106 Freiburg im Breisgau, Germany. We have concluded an order processing contract with this company for this purpose. You are entitled to unsubscribe from our newsletter at any time in the future.

11. VivaScope Academy

The Academy is primarily aimed at doctors who would like support in using the VivaScope devices and analysing their results. In order to take part in the Academy, you must request the login details by sending an e-mail to marketing@vivascope.com. The login details consist of your first name, surname and e-mail address. The prerequisite is that you have a VivaScope device. This will be sent to you by e-mail. You will receive your password in a separate e-mail.

The processing is carried out for the implementation of training measures and thus for (pre-)contractual purposes in accordance with Art. 6 para. 1 sentence 1 b) GDPR.

12. legal and contractual obligations for provision

The provision of your data as described in this privacy policy is neither contractually nor legally required. However, without the provision of applicant data, we will not be able to consider your application or respond to your enquiry without a contact date.

13. disclosure of your data

We only pass on your data to third parties if we are authorised or obliged to do so under applicable law.

Authorisation exists if you give us your consent or if third parties process the data on our behalf: If we do not carry out our business activities (e.g. operation of the website, product customisation, creation and dispatch of advertising material, data analysis and, if necessary, data cleansing) ourselves, but have them carried out by other contractors, and these activities involve the processing of your data, we have previously contractually obliged these companies to use the data only for the purposes permitted to us by law. We are authorised to monitor these companies in this respect.

In individual cases, we may be legally obliged to pass on personal data to authorities or courts. The associated data processing is therefore based on a legal obligation.

Data is passed on to Google on the basis of joint data processing if you have given us your consent to use these services (see section 5 of this privacy policy).

 14 Storage period and deletion of data

The contact data provided will be stored until we can assume that your request has been dealt with, at the latest three months after the last correspondence. If the data is required as evidence, it will be stored within the framework of the statutory limitation period or until the respective proceedings have been concluded. Log files are deleted 7 days after collection. For applicant data, the deletion periods described under “Job vacancies” apply; the storage period for cookies is also stated above.

Data processing for (pre-)contractual purposes is carried out until the end of the contract and for up to 3 years thereafter in order to be able to clarify any claims and insofar as there are no longer statutory retention obligations (§§ 257 HGB, 147 AO 6-10 years).

15. your rights (objection, cancellation, information, correction, restriction of processing, deletion, transfer, complaint)

15.1 Opposition

You can object to the processing of your personal data by us at any time for reasons arising from your particular situation. To do so, you can use the contact options listed in sections 1 and 2. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms.

15.2 Revocation

Furthermore, you have the right to revoke any consent you have given with effect for the future. However, the legality of the data processing based on your consent remains unaffected by this until you exercise your right of revocation.

15.3 Other rights

You have the right to receive information about your personal data stored by us free of charge at any time, to correct incorrect data and to have the processing of your data restricted or deleted. You also have the right to receive your data in a structured, commonly used and machine-readable format and to have your data transferred by us to someone else. Finally, you have the right to lodge a complaint with a data protection authority.

With the exception of your right to lodge a complaint with the data protection authority, you can address your concerns to us using the contact details provided in sections 1 and 2.

16. data security

This website is SSL-encrypted to protect your data. Vivascope also takes appropriate technical and organisational measures within the meaning of Art. 32 GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the likelihood and severity of the risk to the rights and freedoms of natural persons. Furthermore, the confidentiality, integrity, availability and resilience of the systems and services in connection with the processing and the rapid restoration of the availability of personal data in the event of a physical or technical incident are ensured.

Please be aware that while we endeavour to provide a secure and reliable website for users, the absolute confidentiality of any communication or material transmitted to or from our website cannot be guaranteed.

17. our presence in the social media

17.1      Data processing by social networks

VivaScope operates publicly accessible profiles in social networks. The individual social networks we use are listed below.

Social networks such as Facebook, XING etc. can generally analyse your user behaviour comprehensively if you visit their website or third-party offers with integrated social media content (e.g. like buttons or advertising banners) of these networks. Visiting our social media presences triggers numerous data protection-relevant processing operations.

If you are logged into your social media account and visit our social media presence, the operator of the social media portal can assign this visit to your user account. However, your personal data may also be collected if you are not logged in or do not have an account with the respective social media portal. In this case, this data is collected, for example, via cookies that are stored on your end device or by recording your IP address.

With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, interest-based advertising can be displayed to you inside and outside the respective social media presence. If you have an account with the respective social network, the interest-based advertising can be displayed on all devices on which you are logged in or were logged in.

Further processing operations may be carried out by the operators of the social media portals, for which they are responsible. For details, please refer to the terms of use and data protection provisions on the respective social media portals.

17.2.   Legal basis

Our social media presence is intended to ensure the widest possible presence and address of all age groups on the Internet. This is a legitimate interest within the meaning of Art. 6 para. 1 sentence 1 f) GDPR. The analysis processes initiated by the social networks are based on different legal bases, which must be specified by the operators of the social networks (e.g. consent within the meaning of Art. 6 para. 1 sentence 1 a) GDPR), in particular on a separate user relationship with you and thus on Art. 6 para. 1 sentence 1 b) GDPR.

17.3.    Responsible party and assertion of rights

If you visit one of our social media sites (e.g. Facebook), there may be joint or parallel responsibility with the operator of the social media platform for the data processing operations triggered during this visit. In the case of joint responsibility, you can generally assert your rights as a data subject both against us and against the operator of the respective social media portal (e.g. against Meta).

Please note that despite our joint responsibility with the social media portal operators, we do not have full control over the data processing operations of the social media portals. Our options are largely determined by the specifications of the respective provider.

17.4     Social networks in detail

17.4.1                Facebook / Meta

We operate a company page on Facebook: https://www.facebook.com/VivascopeInternational/

• Responsibility

There is a joint responsibility of two parties: VivaScope is responsible for the data processing on our Facebook page described below. VivaScope is only solely responsible insofar as it processes the data itself.

On the other hand, Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland (hereinafter referred to as “Meta”) is responsible as the operator of the platform. You can contact Meta’s data protection officer by using the Meta form on the website with the URL https://www.facebook.com/help/contact/540977946302970.

• Joint Controller Agreement

Meta has concluded a controller addendum with all page providers and also with us regarding the “Facebook Insights” service, which can be viewed here: https://www.facebook.com/legal/terms/page_controller_addendum.

This so-called “Page Insights Controller Addendum” represents an extension of the terms of use which Facebook alone stipulates for the use of its services. We have no influence on the content of this agreement. You can see the individual responsibilities from the agreement. A description of the main rules can be found at the end of the document.

Please note that despite our joint responsibility, we are also only users of the Facebook platform. Our options are largely determined by the rights that Facebook grants to group administrators.

• Use of the Facebook page without log-in and cookies

You can visit our page on Facebook without having to register on the Facebook platform or provide any personal details. Meta stores your access data, which is summarised in a log file on Meta’s web servers. The access data includes the following information:

• IP address of the requesting end device,
• Date and time of access,
• Name and URL of the retrieved file,
• Amount of data transferred,
• Message indicating whether the call was successful,
• Recognition data of the browser and operating system used,
• the website from which the access is made and
• Name of your Internet access provider.

Meta uses this access data and data that is stored on your end device by setting cookies to provide us with statistical analyses of the reach of the Facebook page. We optimise the design of the Facebook page on the basis of these statistical evaluations. The associated data processing serves our sales interest as a legitimate interest. We only receive the statistical analyses, which are anonymised and therefore no longer fall under the scope of protection of the GDPR.

• Use of the Facebook page with log-in and sending of messages

• Data available to us

If you are registered on the Facebook platform, you enter into a user relationship with Meta. You can then send us messages using the message function or via Messenger. We use the respective message content exclusively to process your request and thus to fulfil the contract.

The message content will be deleted as soon as your request has been dealt with, unless we still need it for legal defence or prosecution. In this case, we will retain the message content for the duration of the limitation period in accordance with Sections 195 et seq. of the German Civil Code (BGB), which is generally 3 years, or until the respective proceedings have been concluded.

Any other actions, such as sending comments or posts, can only be viewed by us like any other visitor to our Facebook page. This data is only stored by Meta on their servers and by us only to the extent that it is required for evidence purposes.

If you become a follower of our site, we can view your profile if you have authorised it for us. Depending on the data you have provided, this may involve use under a pseudonym. As a follower, you will be informed by Meta about the activities on our Facebook page.

• Data use by Meta

If you are logged in to Meta and visit our Facebook page, Meta can assign this visit to your user account. However, your personal data may also be collected if you are not logged in or do not have a Facebook account. In this case, data is collected, for example, via cookies that are stored on your end device or by recording your IP address.

With the help of the data collected in this way, Meta can create user profiles in which your preferences and interests are stored. In this way, interest-based advertising can be displayed to you inside and outside the Facebook platform. If you have a Facebook account, interest-based advertising can be displayed on all devices on which you are logged in or have been logged in.

Please note that we cannot track all processing operations on Facebook. Details on the processing procedures can be found in Facebook’s terms of use and privacy policy:

Privacy policy: https://de-de.facebook.com/privacy/explanation

Terms of use: https://de-de.facebook.com/legal/terms?ref=pf

• Facebook Insights

We use the Facebook Insights function from Meta. Facebook Insights is a tool with which we can call up page statistics for the Facebook page. These page statistics are provided to us by Meta and contain, in particular, information about the gender ratio, age structure and regional distribution and thus about the type of user of the Facebook page. We can use these statistics to optimise the design of the Facebook page to suit the user. This serves our sales interest as a legitimate interest.

Apart from this and the messaging function, we have no influence on the data processing associated with your use of the Facebook page. Furthermore, we have no knowledge of the exact process of statistical analysis by Meta.

In accordance with the aforementioned Joint Control Agreement, Meta assumes primary responsibility for the fulfilment of data protection obligations with regard to Insights data as well as with regard to the fulfilment of information obligations, data subject rights, data security and the reporting of data breaches.

• Data transfers to the USA

Meta reserves the right to also process the data in the USA as the registered office of its parent company Meta Platforms Inc. The USA is currently considered a country with an adequate level of data protection (see EU Commission adequacy decision of 10 July 2023, C (2023) 4745 final), and Meta Platforms Inc. has certified itself accordingly: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000GnywAAC&status=Active

• Data protection information from Meta

Further data protection information on the functionality of Facebook Insights and the cookies set by Meta as well as on data generally collected and processed by Facebook can be found under the following links:

https://de-de.facebook.com/help/pages/insights

https://www.facebook.com/policies/cookies

https://www.facebook.com/privacy/policy

• Recruitment and contact options at Meta

In the following, we would like to give you more information about the setting and contact options on Facebook:

• Summary of the Joint Control Agreement with Meta

• Each party is responsible for ensuring that there is a legal basis for the respective data processing.
• Data subject rights are implemented by Meta, unless the data processing is carried out exclusively by VivaScope. However, you can contact VivaScope and/or Meta to assert your rights.
• Meta is responsible for reporting data protection violations in accordance with Art. 33 GDPR. VivaScope is obliged to report immediately if a data protection breach is suspected.

17.4.2.              Instagram

VivaScope also has a company page on Instagram: https://www.instagram.com/mavig_deutschland/?hl=de

• Responsibility

The operator of this service and responsible is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland (hereinafter referred to as “Meta”) You can contact Meta’s Data Protection Officer by using Meta’s form on the website with the URL https://www.facebook.com/help/contact/540977946302970

https://www.facebook.com/help/contact/540977946302970

There is no service comparable to Facebook Insights and in this respect there is no joint responsibility. Otherwise, the same explanations apply as above for Facebook.

• Data protection information from Instagram

Further data protection information on the functioning of Instagram and the cookies set by Meta as well as on data generally collected and processed by Facebook can be found under the following links:

https://help.instagram.com/1896641480634370

https://privacycenter.instagram.com/policy

Recruitment and contact options on Instagram

In the following, we would like to provide you with further information on the recruitment and contact options at Inst:

17.4.3.              LinkedIn

• Responsibility

VivaScope also operates its own account to represent the company on the social platform LinkedIn at the URL https://www.linkedin.com/company/mavig-gmbh/.

This platform is operated within the European Economic Area by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (hereinafter referred to as “LinkedIn”) (https://www.linkedin.com/legal/impressum).

• Data transfers to the USA

LinkedIn is part of a large group whose parent company LinkedIn Corp. is based in the USA. LinkedIn reserves the right to transfer data to the USA. The USA is currently considered a country with an adequate level of data protection (see adequacy decision of the EU Commission of 10 July 2023, C (2023) 4745 final), and LinkedIn Corp. has certified itself accordingly: https://www.dataprivacyframework.gov/list

If you are active on LinkedIn and use functions such as sharing, posting or liking posts, you do so on your own responsibility and on the basis of your own user relationship with LinkedIn. As things stand at present, there is no joint responsibility in this respect.

• Data protection information from LinkedIn

You can find information about how LinkedIn processes your data in LinkedIn’s privacy policy at the URL https://www.linkedin.com/legal/privacy-policy and the cookie policy at the URL https://www.linkedin.com/legal/cookie-policy. VivaScope has no influence on this data processing, nor can it control it. In particular, confidential messages are processed by LinkedIn and analysis tools are used from which LinkedIn can infer your preferences and interests and determine your location via your IP address and GPS data. This data can be used to send or display targeted advertising. Such data is not made available to VivaScope. You should therefore assert any data subject rights in this regard directly against LinkedIn.

VivaScope only receives personal data about you if you actively network with your profile or follow VivaScope. However, we only receive the information that you have decided to make public to your contacts.

• Recruitment and contact options on LinkedIn

Further important information and setting options for the LinkedIn service are

17.4.4.             Vimeo

VivaScope also has a video account on Vimeo: https://vimeo.com/user71142443

The account is mainly used to display product videos and to integrate them into our website.

The Vimeo service is operated by Vimeo.com Inc. (“Vimeo”), 330 West 34th Street, 5th Floor, New York, New York 10001, USA.

The USA is currently considered a country with an adequate level of data protection (see EU Commission adequacy decision of 10 July 2023, C (2023) 4745 final), but Vimeo is not yet certified. Therefore, the EU standard contractual clauses and other protective measures are applied to ensure an adequate level of data protection.

You can also register for the Vimeo service so that Vimeo can create a user profile for you. Further information can be found in Vimeo’s privacy policy: https://vimeo.com/privacy

Contact is possible via the Vimeo chat bot or via https://vimeo.com/help/contact

17.4.5.YouTube

VivaScope also has a video channel on YouTube:

https://www.youtube.com/channel/UCD8oq0t956IRbAffrd7sSyg

Company videos can be viewed here. YouTube is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

• Data transfers to the USA

Google stores the data in Germany, but reserves the right to process the data on servers in the USA.  The USA is currently considered a country with an adequate level of data protection (see adequacy decision of the EU Commission of 10 July 2023, C (2023) 4745 final), and Google LLC USA has certified itself accordingly: https://www.dataprivacyframework.gov/list

• Data protection information for YouTube

The privacy policy for YouTube can be found here: https://policies.google.com/privacy?hl=de

VivaScope has no influence on this data processing, nor can it control it. In particular, confidential messages are processed by Google and analysis tools are used from which Google can deduce your preferences and interests and determine your location via your IP address and GPS data. This data can be used to send or display targeted advertising. Such data is not made available to VivaScope. You should therefore assert any data subject rights in this regard directly against Google. VivaScope only receives personal data about you if you become a follower of the VivaScope channel. However, we will then only receive the information that you have decided to make public to your contacts.

• Recruitment and contact options on YouTube

Further important information and setting options for the YouTube service are