We use the platforms systeme.io and IONOS for hosting the website as well as for creating and automating our marketing and sales processes.
systeme.io is used for operating the website, funnels, newsletters, contact forms, calendar bookings, and login areas.
IONOS provides domain and email hosting.

systeme.io,

ITACWT Limited,
2 Cruise Park Rise,
Tyrrelstown, Dublin 15,
Ireland

IONOS SE

Elgendorfer Straße 57
56410 Montabaur
Germany

Depending on the use and application scenario, the following personal data may be processed via systeme.io:

• Name, email address, telephone number

• IP address, browser information, and usage behaviour

• Contents of messages or form entries

• Other data voluntarily provided by users via forms

Data are stored as long as necessary for the respective purpose or until a legal retention period expires. Users can request deletion of their data at any time, provided there are no statutory obligations to retain the data.

systeme.io uses server locations within and outside the EU. If a transfer to third countries occurs, we ensure that appropriate safeguards are implemented in accordance with Art. 44 et seq. GDPR, for example by concluding standard contractual clauses.

Data subjects have the right to:

• Access (Art. 15 GDPR)

• Rectification (Art. 16 GDPR)

• Erasure (Art. 17 GDPR)

• Restriction of processing (Art. 18 GDPR)

• Object to processing (Art. 21 GDPR)

• Data portability (Art. 20 GDPR)

Consents can be revoked at any time with effect for the future.

We have concluded contracts for commissioned data processing with systeme.io and IONOS pursuant to Art. 28 GDPR.

systeme.io and AWS have concluded a data processing agreement for the use of the aforementioned service. This is a legally required agreement ensuring that personal data of our website visitors are processed only according to our instructions and in compliance with the GDPR.

Our website uses so-called “cookies.” Cookies are small data packages and do not cause any damage to your device. They are either stored temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your device until you delete them yourself or automatic deletion by your web browser occurs.

Cookies can originate from us (first-party cookies) or from third-party companies (so-called third-party cookies). Third-party cookies enable the integration of certain services from third-party companies within websites (e.g., cookies for processing payment services).

Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g., the shopping cart function or the display of videos). Other cookies may be used to analyze user behavior or for advertising purposes.

Cookies that are required to carry out the electronic communication process, to provide certain functions requested by you (e.g., for the shopping cart function), or to optimize the website (e.g., cookies for measuring the web audience) (necessary cookies) are stored on the basis of Art. 6 para. 1 lit. f GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of its services. If consent to the storage of cookies and comparable recognition technologies has been requested, processing is carried out exclusively on the basis of this consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG); consent can be revoked at any time.

You can set your browser so that you are informed about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser.

If cookies are deactivated, the functionality of this website may be restricted.

Which cookies and services are used on this website can be found in the Cookie Policy:
https://www.upward-dynamics.com/cookie-policy

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

• Browser type and browser version

• Operating system used

• Referrer URL

• Hostname of the accessing computer

• Time of the server request

• IP address

This data is not merged with other data sources.

The collection of this data is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website; for this purpose, server log files must be collected.

This website uses the cookie consent technology of Usercentrics to obtain your consent for the storage of certain cookies on your device or for the use of certain technologies and to document this in compliance with data protection regulations. The provider of this technology is Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany (hereinafter “Usercentrics”).

When you enter our website, the following personal data is transmitted to Usercentrics:

• Your consent(s) or the withdrawal of your consent(s)

• Your IP address

• Information about your browser

• Information about your device

• Time of your visit to the website

Furthermore, Usercentrics stores a cookie in your browser in order to be able to assign the consents you have given or their withdrawal to you. The data collected in this way is stored until you request deletion from us, delete the Usercentrics cookie yourself, or the purpose for data storage no longer applies.

Usercentrics is used in order to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 para. 1 lit. c GDPR.

If you send us inquiries or calendar bookings via the contact form, the information you provide in the inquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not share this data without your consent.

The processing of this data is based on Art. 6(1)(b) GDPR if your inquiry is related to the performance of a contract or necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of inquiries addressed to us (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) if it has been requested; consent can be revoked at any time.

The data you enter in the contact form remain with us until you request their deletion, revoke your consent to storage, or the purpose for storing the data ceases (e.g., after your inquiry has been fully processed). Mandatory statutory provisions, in particular retention periods, remain unaffected.

If you contact us via email or telephone, your inquiry, including all personal data arising from it (name, inquiry), will be stored and processed by us for the purpose of handling your request. We do not share this data without your consent.

The processing of this data is based on Art. 6(1)(b) GDPR if your inquiry is related to the performance of a contract or necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of inquiries addressed to us (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) if it has been requested; consent can be revoked at any time.

The data you send to us via contact inquiries remain with us until you request their deletion, revoke your consent to storage, or the purpose for storing the data ceases (e.g., after your request has been fully processed). Mandatory statutory provisions, in particular statutory retention periods, remain unaffected.

If, in the course of providing services, the Contractor obtains access to personal data of the Client or of the Client’s customers, employees, or business partners, the Contractor shall process such data exclusively for the purpose of performing the contract and in compliance with the applicable data protection regulations, in particular the General Data Protection Regulation (GDPR).

Any use of such data for the Contractor’s own advertising, marketing, or acquisition purposes is excluded unless the data subject has given separate and explicit consent or a statutory authorization exists.

The Contractor is entitled to use the contact details of its customers for the purpose of conducting non-promotional customer satisfaction and quality surveys in connection with the services provided by the Contractor. Participation in such surveys is voluntary. The results are used exclusively for internal quality improvement purposes. The legal basis for this processing is Art. 6(1)(f) GDPR (legitimate interest in quality assurance and further development of the Contractor’s own services).

The Contractor undertakes to treat the personal data confidentially and not to disclose it to unauthorized third parties.

After termination of the contractual relationship or once the purpose of processing no longer applies, the personal data shall be deleted unless statutory retention obligations prevent such deletion.

If the Contractor processes personal data on behalf of the Client, the parties shall conclude a separate data processing agreement in accordance with Art. 28 GDPR.

If you wish to subscribe to the newsletter offered on the website, we require an email address from you, as well as information that allows us to verify that you are the owner of the specified email address and consent to receiving the newsletter (double opt-in). No further data are collected or only on a voluntary basis. For the management of the newsletter, we use, as described above, systeme.io. The platform also provides tracking of the newsletter (open/click rates).

The processing of the data entered in the newsletter registration form is carried out exclusively based on your consent (Art. 6(1)(a) GDPR). You can revoke the consent given for the storage of the data, the email address, and its use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter. The legality of the data processing that has already taken place remains unaffected by the revocation.

The data you provide to us for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter or the purpose of the newsletter ceases, and will be deleted from the newsletter distribution list after cancellation of the newsletter or after the purpose has ceased. We reserve the right to delete or block email addresses from our newsletter distribution list at our discretion within the scope of our legitimate interest according to Art. 6(1)(f) GDPR.

Data that have been stored with us for other purposes remain unaffected.

After you unsubscribe from the newsletter distribution list, your email address may be stored by us or the newsletter service provider in a blacklist to prevent future mailings to you. The data from the blacklist will only be used for this purpose and will not be merged with other data. This serves both your interest and our interest in complying with legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6(1)(f) GDPR). Storage in the blacklist is not time-limited. You may object to the storage if your interests outweigh our legitimate interest.

If you order goods or services from us and provide your email address, this email address may subsequently be used by us for sending newsletters, provided we inform you in advance. In such a case, the newsletter will only contain direct advertising for our own similar goods or services. You can cancel the sending of this newsletter at any time. A corresponding link is included in each newsletter. The legal basis for sending the newsletter in this case is Art. 6(1)(f) GDPR in conjunction with §7(3) UWG.

This website integrates videos from the website YouTube. The operator of the site is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

When you visit one of these websites on which YouTube is embedded, a connection is established to the YouTube servers. In this process, the YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to directly associate your surfing behavior with your personal profile. You can prevent this by logging out of your YouTube account.

We use YouTube in extended privacy mode. According to YouTube, videos played in extended privacy mode are not used for personalizing surfing on YouTube. Ads displayed in extended privacy mode are also not personalized. In extended privacy mode, no cookies are set. However, so-called Local Storage elements are stored in the user’s browser, which, similar to cookies, contain personal data and can be used for recognition. Details about extended privacy mode can be found here: https://support.google.com/youtube/answer/171780.

Activation of a YouTube video may trigger further data processing operations, over which we have no influence.

The use of YouTube serves the interest of an appealing presentation of our online offerings. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR. If corresponding consent has been requested, processing takes place exclusively on the basis of Art. 6(1)(a) GDPR and §25(1) TDDDG, as far as the consent includes storing cookies or accessing information on the user’s device (e.g., device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.

Further information on data protection at YouTube can be found in their privacy policy at: https://policies.google.com/privacy.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States that ensures compliance with European data protection standards in data processing in the USA. Every company certified under the DPF commits to comply with these data protection standards. Further information can be obtained from the provider at: https://www.dataprivacyframework.gov/participant/5780.

This site uses Google Fonts provided by Google for uniform presentation of fonts. The Google Fonts are installed locally. No connection to Google servers takes place.

Further information on Google Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://policies.google.com/privacy.

This website uses Google Performance Tracking to measure the effectiveness of our marketing activities. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Cookies or similar technologies may be used in the course of tracking to evaluate user interactions (e.g., page views or conversion events). Personal data such as IP address or device information may be processed.

The use is exclusively based on your consent pursuant to Art. 6(1)(a) GDPR and §25(1) TDDDG.

A transfer of data to the USA cannot be excluded. Google is certified under the EU-US Data Privacy Framework (DPF).

Further information: https://policies.google.com/privacy

On our website, there is a link to our company profile on the social network LinkedIn.

The provider of LinkedIn is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

If you click on the LinkedIn link, you will be redirected to a page on LinkedIn. In this process, personal data may be transmitted to LinkedIn. We have no influence on the type and scope of the data collected by LinkedIn.

Further information on data processing by LinkedIn can be found in LinkedIn's privacy policy:
https://www.linkedin.com/legal/privacy-policy

The use of the link is based on our legitimate interest in a contemporary external representation and communication with interested parties (Art. 6(1)(f) GDPR).

We point out that you use the LinkedIn page and its functions at your own responsibility. This applies in particular to the use of interactive features (e.g., commenting, sharing, rating, or sending messages).

The data you enter on LinkedIn are processed by LinkedIn and may be transferred to countries outside the European Union.

We process your personal data when you interact with our LinkedIn company profile (e.g., through messages, comments, likes) in order to communicate with you and present our company.
The legal basis for this processing is Art. 6(1)(f) GDPR (legitimate interest in public relations and communication).

We are jointly responsible with LinkedIn for the processing of so-called “Page Insights” data within the meaning of Art. 26 GDPR.

The agreement on joint responsibility can be found at:

https://legal.linkedin.com/pages-joint-controller-addendum

We integrate payment services from third-party providers on our website. If you make a purchase with us, your payment data (e.g., name, payment amount, account details, credit card number) will be processed by the payment service provider for the purpose of payment processing. The respective contractual and privacy provisions of the respective providers apply to these transactions. The use of the payment service providers is based on Art. 6(1)(b) GDPR (contract execution) as well as in the interest of a smooth, comfortable, and secure payment process (Art. 6(1)(f) GDPR). If your consent is requested for certain actions, Art. 6(1)(a) GDPR is the legal basis for data processing; consents can be revoked at any time for the future.

The following payment services / payment service providers are used on this website:

The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”).

The transfer of data to the USA is based on the Standard Contractual Clauses of the EU Commission. Details can be found here: https://www.paypal.com/de/legalhub/paypal/pocpsa-full?locale.x=en_DE

Further details can be found in PayPal’s privacy policy: https://www.paypal.com/us/webapps/mpp/ua/privacy-full.

For communication with our customers, we use, among others, online conferencing tools. The specific tools we use are listed below. If you communicate with us via video or audio conference over the Internet, your personal data will be collected and processed by us and the provider of the respective conferencing tool.

The conferencing tools record all data that you provide/use for the use of the tools (email address and/or your telephone number). Furthermore, the conferencing tool processes the duration of the conference, the start and end (time) of participation in the conference, the number of participants, and other "context information" related to the communication process (metadata).

In addition, the provider of the tool processes all technical data required to conduct the online communication. This includes, in particular, IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or speaker, as well as the type of connection.

If content is exchanged, uploaded, or otherwise provided within the tool, it is also stored on the servers of the tool providers. Such content includes, in particular, cloud recordings, chat/instant messages, voicemails, uploaded photos and videos, files, whiteboards, and other information shared during the use of the service.

Please note that we do not have full control over the data processing operations of the tools used. Our possibilities are largely determined by the corporate policies of the respective provider. Further information on data processing by the conferencing tools can be found in the privacy policies of the respective tools, which we have listed below this text.

The conferencing tools are used to communicate with prospective or existing contractual partners or to offer certain services to our customers (Art. 6(1)(b) GDPR). Furthermore, the use of the tools serves to generally simplify and accelerate communication with us or our company (legitimate interest within the meaning of Art. 6(1)(f) GDPR). Where consent has been requested, the use of the respective tools is based on this consent; consent can be revoked at any time with effect for the future.

The data directly collected by us via the video and conferencing tools will be deleted from our systems as soon as you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies. Stored cookies remain on your device until you delete them. Mandatory statutory retention periods remain unaffected.

We have no influence on the retention period of your data that is stored by the operators of the conferencing tools for their own purposes. For details, please consult the operators of the conferencing tools directly.

We use the following conferencing tools:

We use Zoom. The provider of this service is Zoom Communications Inc., San Jose, 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA. Details on data processing can be found in Zoom's privacy policy: https://www.zoom.com/en/trust/privacy/privacy-statement/.

The transfer of data to the USA is based on the Standard Contractual Clauses of the EU Commission. Details can be found here: https://www.zoom.com/en/trust/privacy/privacy-statement/.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information can be obtained from the provider at the following link: https://www.dataprivacyframework.gov/participant/5728.

We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is a legally required contract under data protection law, which ensures that personal data of our website visitors is processed only according to our instructions and in compliance with the GDPR.