XAIN, the eXpandable AI Network, is a Berlin-based technology company. At XAIN, we tackle the dilemma of unlocking the full power of AI, without compromising data privacy.
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations (EU-General Data Protection Regulation „GDPR“) as well as this data protection declaration.
The use of our website is generally possible without providing personal data; apart from the collection of data for the provision of the website (the storage of the data in logfiles is mandatory for the operation of the website). Insofar as personal data (e. g. name, address or e-mail addresses or other data) are collected on our pages, this is always done on a voluntary basis as far as possible. These data will not be passed on to third parties without your express consent.
In the following, we will tell you what data is collected during your visit to our website, as well as the legal basis for the processing of personal data, the purpose of the data processing and how it is used, the duration of the storage and your rights in this context.
1. General information on data processing
1.1. Scope of the processing of personal data
We collect and use the personal data of our users only insofar as this is necessary for the provision of a functional website as well as our content and services. The collection and use of our users' personal data is regularly only carried out with the user's consent. An exception shall apply in cases where prior consent cannot be obtained for factual reasons and where the processing of data is permitted by legal regulations.
1.2. Legal basis for the processing of personal data
Insofar as we obtain the consent of the data subject for the processing of personal data, Article 6 paragraph 1 lit. a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis for the processing of personal data.
Article 6 paragraph 1 lit. b) of the GDPR serves as the legal basis for the processing of personal data required for the performance of a contract to which the data subject is a party. This shall also apply to processing operations necessary for the implementation of pre-contractual measures.
Insofar as a processing of personal data is necessary for the fulfilment of a legal obligation to which our company is subject, Article 6 paragraph 1 lit. c) GDPR serves as a legal basis.
In the event that the vital interests of the data subject or another natural person necessitate the processing of personal data, Article 6 paragraph 1 lit. d) GDPR serves as the legal basis.
If the processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the party concerned do not outweigh the first mentioned interest, Article 6 paragraph 1 lit. f) GDPR serves as the legal basis for the processing.
1.3. Data erasure and storage duration
The personal data of the person concerned will be deleted or blocked as soon as the purpose of the storage no longer applies. In addition, data may also be stored if the European or national legislature has provided for this in Union regulations, laws or other provisions to which the person responsible is subject. Data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a requirement for further storage of data for the conclusion of a contract or fulfilment of a contract.
2. Provision of the website and creation of logfiles
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- browser type and browser version
- operating system used
- the internet service provider of the user
- the IP address of the user
- hostname of the accessing computer
- time of the server inquiry
- websites from which the user's system reaches our website
- websites accessed by the user's system via our website
The data is also stored in the log files of our system. These data are not stored together with other personal data of the user and is not combined with other data sources. We reserve the right to check this data at a later date if we become aware of specific indications of illegal use.
The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f) GDPR.
The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer. The storage in logfiles is done to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context. For this purpose, the user's IP address must be stored for the duration of the session. Our legitimate interest in data processing pursuant to Art. 6 para. 1 lit. f) of the GDPR also lies in these purposes.
The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended. The storage of data in logfiles will be done after seven days at the latest. Additional storage is possible. In this case, the IP addresses of the users are deleted or changed, so that an assignment of the calling client is no longer possible.
The collection of data for the provision of the website and the storage of the data in logfiles is mandatory for the operation of the website. Consequently, there is no possibility of objection on the part of the user.
Some of the Internet pages use so-called cookies. Cookies do not cause any damage to your computer and do not contain viruses. Cookies are used to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser. This cookie contains a characteristic string of characters that allows the browser to be uniquely identified when you return to the website.
Some elements of our website require that the calling browser can be identified even after a page change. The following data is stored and transmitted in the cookies:
- language settings
- frequency of page views
- use of website functions
The data collected in this way will be pseudonymised by technical precautions. It is therefore no longer possible to assign the data to the calling user. The data are not stored together with other personal data of the users.
The legal basis for the processing of personal data using cookies is Art. 6 para. 1 lit. f) GDPR.
Most of the cookies we use are so-called "session cookies". They will be automatically deleted at the end of your visit. Other cookies remain stored on your device until you delete them. These cookies enable us to recognize your browser the next time you visit our website.
You can set your browser in such a way that you are informed about the setting of cookies and allow cookies only in individual cases, you can exclude the acceptance of cookies for certain cases or generally and you can activate the automatic deletion of cookies when closing the browser. When cookies are disabled, the functionality of this website may be limited.
4. Contact form and email contact
In addition, the following data are stored at the time of sending the message:
- the IP address of the calling computer/ user
- Full name
- Phone number
- Company name
- Subject of Contact
- date and time of the registration
For the processing of the data, your consent will be obtained and referred to this data protection declaration.
Alternatively, it is possible to contact us via the provided email address. In this case, the personal data of the user transmitted by email will be stored. In this context, the data will not be passed on to third parties. The data will only be used for the processing of the conversation.
The legal basis for the processing of data is Art. 6 para. 1 lit. a) GDPR, if the user gives his/her consent. The legal basis for the processing of data transmitted by email is Art. 6 para. 1 lit. f) GDPR.
The processing of personal data from the input mask serves us solely for the purpose of processing the contact. If you contact us by email, this is also the reason for the necessary legitimate interest in processing the data. The other personal data processed during the sending process is used to prevent misuse of the contact form and to ensure the security of our information technology systems.
The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected. For personal data from the input mask of the contact form and those sent by email, this is the case when the respective conversation with the user has ended. The conversation ends when the circumstances indicate that the matter in question has been conclusively clarified. The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.
The user has the possibility to revoke his or her consent to the processing of personal data at any time. If the user contacts us by email, he can object to the storage of his personal data at any time. In such a case, the conversation cannot continue.
In this case, all personal data stored in the course of making contact will be deleted.
NOTES ON EMAIL COMMUNICATION
We will of course make every effort to store your personal data in such a way that they are not accessible to third parties by using all technical and organisational means. However, full data security cannot be guaranteed when communicating by email, so we recommend that you send confidential information by post.
NOTES ON SSL ENCRYPTION
This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as requests you send to us as the site operator. An encrypted connection can be recognized by the fact that the address line of the browser changes from "http://" to "https://" and the lock symbol in your browser line.
If SSL encryption is enabled, the information you provide to us cannot be read by third parties.
5. Rights of the person concerned
Every user of our website has the right to demand information at any time about which data is stored about him or her and for what purpose this storage takes place. In addition, a correction of incorrect data or the deletion of data whose storage is inadmissible or no longer necessary may be demanded.
UPON WRITTEN REQUEST, WE WILL BE PLEASED TO INFORM YOU ABOUT THE PERSONAL DATA STORED ON YOUR PERSON AND OF COURSE WE WILL ALSO COMPLY WITH YOUR FURTHER ASSERTED CLAIMS.
If personal data is processed by you, you are affected within the meaning of the GDPR and you have the following rights vis-à-vis the person responsible:
5.2. Right to information
You can ask the person in charge to confirm whether we process personal data concerning you. In the event of such processing, you may request the following information from the person responsible:
- the purposes for which the personal data are processed;
- the categories of personal data which are processed;
- the recipients or categories of recipients to whom the personal data concerning you have been or will be disclosed;
- the planned duration of the storage of personal data concerning you or, if specific information is not possible, criteria for determining the storage duration;
- the existence of a right to correct or delete personal data concerning you, a right to restrict the processing by the controller or a right of objection to such processing;
- the existence of a right of appeal to a supervisory authority;
- all available information on the origin of the data if the personal data are not collected from the data subject;
- the existence of automated decision-making, including profiling in accordance with Article 22 paragraph 1 and 4 of the GDPR and, at least in these cases, meaningful information on the logic involved and the scope and intended impact of such processing on the data subject.
You have the right to request information on whether the personal data concerning you are transferred to a third country or to an international organisation. In this context, you may request to be informed of the appropriate guarantees pursuant to Article 46 GDPR in connection with the transmission.
5.3. Right of rectification
You have the right to correct and/or complete your personal data with regard to the person in charge if the personal data processed concerning you is incorrect or incomplete. The person responsible must make the correction without delay.
5.4. Right to restrict processing
Under the following conditions, you may request that the processing of your personal data be restricted:
- if you deny the accuracy of the personal data relating to you for a period of time that enables the person responsible to verify the accuracy of the personal data;
- the processing is unlawful and you refuse to delete the personal data and instead request the restriction of the use of the personal data;
- the controller no longer needs the personal data for the purposes of processing, but you need them to assert, exercise or defend legal claims; or
- if you have lodged an objection against the processing pursuant to Article 21 paragraph 1 GDPR and it has not yet been determined whether the legitimate reasons of the person responsible outweigh your grounds.
Where the processing of personal data relating to you has been restricted, such data may not be processed except with your consent or for the purpose of asserting, exercising or defending legal claims or protecting the rights of another natural or legal person, or for reasons of an important public interest of the Union or of a Member State, except for their storage.
If the restriction on processing has been restricted in accordance with the above-mentioned conditions, you will be informed by the person responsible before the restriction is lifted.
5.5. Right of deletion
Obligation to delete
You may demand that your personal data will be deleted immediately and the person in charge is obliged to delete this data immediately if one of the following reasons applies:
- The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
- You revoke your consent to the processing in accordance with Art. 6 para. 1 lit. a) or Art. 9 para. 2 lit. a) GDPR and there is no other legal basis for the processing.
- In accordance with Art. 21 para. 1 of the GDPR, you submit an objection to the processing and there are no primordial justifiable reasons for the processing or you lodge an objection against the processing pursuant to Art. 21 para. 2 of the GDPR.
- The personal data concerning you have been processed illegally.
- The deletion of personal data concerning you is necessary to fulfil a legal obligation under Union law or the law of the Member States to which the data controller is subject.
- The personal data concerning you have been collected in relation to the information society services offered in accordance with Art. 8 para 1 of the GDPR.
Information to third parties
If the person in charge has made the personal data concerning you public and if he is obliged to delete them in accordance with Art. 17 para. 1 of the GDPR, he shall take appropriate measures, taking into account the available technology and the implementation costs, including technical measures, to inform those responsible for data processing who process the personal data that you, as the person concerned, have requested that they delete all links to these personal data or from copies or replicas of these personal data.
The right to be deleted does not exist if the processing is necessary.
- the exercise of the right to freedom of expression and information;
- in order to fulfil a legal obligation requiring processing under Union or national law to which the person responsible is subject, or to carry out a task which is in the public interest or in the exercise of official authority delegated to the person responsible;
- for reasons of public interest in the field of public health in accordance with Art. 9 para. 2 lit. h) and lit. i) and Art. 9 para. 3 GDPR;
- for archival purposes in the public interest, scientific or historical research or for statistical purposes in accordance with Art. 89 para. 1 GDPR, insofar as the right referred to in 4. a) above is likely to make it impossible or seriously prejudice the achievement of the objectives of such processing; or
- for asserting, exercising or defending legal claims.
5.6. Right to be informed
If you have asserted the right to correct, delete or restrict the processing of your personal data, the controller is obliged to inform all recipients to whom the personal data concerning you have been disclosed of this correction or deletion of the data or limitation of the processing, unless this proves to be impossible or involves a disproportionate effort.
You have the right to be informed of these recipients.
5.7. Right to transfer data
You have the right to obtain the personal data relating to you that you have provided to the data controller in a structured, current and machine-readable format. In addition, you have the right to transfer this data to another responsible person without hindrance by the person to whom the personal data has been made available, provided that
- the processing is based on a consent pursuant to Art. 6 para. 1 lit. a) GDPR or Art. 9 para. 2 lit. a) GDPR or on a contract pursuant to Art. 6 para. 1 lit. b) GDPR and
- processing shall be carried out by means of automated procedures.
In exercising this right, you also have the right to obtain that the personal data concerning you are transmitted directly by one person in charge to another person in charge, as far as this is technically feasible. Freedoms and rights of other persons may not be affected thereby.
The right to transfer data shall not apply to the processing of personal data necessary for the performance of a task which is in the public interest or in the exercise of official authority delegated to the data controller.
5.8. Right of objection
For reasons arising from your particular situation, you have the right to object at any time to the processing of personal data concerning you, which is carried out on the basis of Art. 6 para. 1 lit. e) or f of the GDPR; this also applies to profiling based on these provisions.
The controller will no longer process the personal data concerning you, unless he can prove that there are compelling grounds worthy of protection for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
If the personal data concerning you are processed in order to carry out direct advertising, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling, insofar as it is associated with such direct advertising. If you object to the processing for the purposes of direct marketing, the personal data concerning you will no longer be processed for these purposes.
You have the possibility of exercising your right of objection to the use of information society services, without prejudice to Directive 2002/58/EC, by means of automated procedures using technical specifications.
5.9. Right to revoke the declaration of consent under data protection law
You have the right to revoke your declaration of consent under data protection law at any time. The revocation of the consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.
5.10. Automated decision in individual cases including profiling
You have the right not to be subject to a decision based solely on automated processing - including profiling - which has legal effect on you or which significantly impairs you in a similar manner. This does not apply if the decision
- is necessary for the conclusion or performance of a contract between you and the person responsible,
- that the legislation of the Union or of the Member States to which the person responsible is subject is admissible and that such legislation contains appropriate measures to protect your rights and freedoms and your legitimate interests; or
- with your express consent.
However, these decisions may not be based on special categories of personal data in accordance with Art. 9 para. 1 GDPR, unless Art. 9 para. 2 lit. a) or g) GDPR applies and appropriate measures have been taken to protect the rights and freedoms as well as your legitimate interests.
With regard to the cases referred to in (1) and (3), the person responsible shall take appropriate measures to safeguard the rights and freedoms and your legitimate interests, including at least the right to obtain action by the person responsible, to state his or her own position and to challenge the decision.
5.11. Right to appeal to a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to appeal to a supervisory authority, in particular in the Member State where you are resident, at your workplace or at the place of the alleged infringement, if you consider that the processing of the personal data relating to you infringes the GDPR.
The supervisory authority to which the complaint has been lodged shall inform the complainant of the state of play and the results of the complaint, including the possibility of legal remedy in accordance with Article 78 of the GDPR.
6. Integration of third-party services and content
Insofar as we integrate third party content on our website, such as videos or other content from a third party website, the possibility to consume such content via our website presupposes that your IP address is transmitted to the providers of such content ("third party providers"). Otherwise, this content could not be sent to your browser. The IP address is therefore required for the presentation of this content. We make every effort to use only those contents whose respective providers use the IP address solely for sending the integrated contents. If a third party provider stores your IP address for other purposes, e. g. for statistical purposes, we have no influence on it and cannot provide you with any information in this regard due to a lack of knowledge.
6.1. Google Analytics
This website uses the functions of the web analytics service Google Analytics. Provider is Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.
Google Analytics uses so-called "cookies". These are text files that are stored on your computer and allow an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there.
Google will use this information to evaluate your use of our website, to compile reports on website activity and to provide other services associated with the use of the website and the Internet. Google may also transfer this information to third parties if required by law or if third parties process this data on behalf of Google.
You can prevent the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all the functions of this website in full. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plugin available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en
Opposition to data collection
You can prevent Google Analytics from collecting your information by clicking on the link below. An opt-out cookie is set to prevent your data from being collected when you visit this website in the future: disable Google Analytics
Demographic features in Google Analytics
This website uses the "demographic features" feature of Google Analytics. This allows reports to be created that contain information about the age, gender and interests of the visitors to the site. This data originates from Google's interest-based advertising and visitor data from third-party providers. This data cannot be assigned to a specific person. You can disable this feature at any time through your Google Account's ad settings, or disallow the collection of your information by Google Analytics as shown in the "Disclaimer" section.
6.3. Leadfeeder (Analytics)
Simultaneously with the use of Google Analytics, this website uses the service Leadfeeder, which is operated by Liidio Oy, Mikonkatu 17, 0100 Helsinki, Finland. Leadfeeder accesses the list of IP addresses of website visitors provided by Google Analytics in the evaluation and links the list of IP addresses with information about the companies that can be found on the Internet under these IP addresses. Due to the shortening of the IP addresses of website visitors already carried out when using Google Analytics, a direct personal reference is not established. A personal reference can result from the review of the linked company information as a presumption.
6.4. Facebook social plugins
Our website uses social plugins ("plugins") of the social network facebook. com, which is operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook"). The list and the appearance of the Facebook social plugins can be viewed here: https://developers.facebook.com/docs/plugins/.
When you access a feature of our website that includes such a plugin, your device establishes a direct connection to Facebook's servers. The content of the plugin is transmitted by Facebook directly to the user's device and is integrated into the Internet offer by the user. User profiles can be created from the processed data. We have no control over the amount of data that Facebook collects using this plug-in and can therefore only provide you with information on our level of knowledge.
By integrating the plugin, Facebook receives the information that a user has called up a corresponding page on our website. If you are logged in to Facebook, Facebook can associate your visit with your Facebook account. If you interact with the plugins, for example by clicking on the Like button or by making a comment, the corresponding information is sent directly from your device to Facebook and stored there. If you are not a Facebook member, there is still the possibility that Facebook will find out your IP address and save it. According to Facebook, only one anonymous IP address is stored i. e. in Germany.
If you are a Facebook member and do not want Facebook to collect information about you through our website and link it to your Facebook-membership information, you must log out/log out and delete your cookies before using our websites. Further settings and inconsistencies regarding the use of data for advertising purposes can be made within the Facebook profile settings:
https://www.facebook.com/settings?tab-ads or via the US-American site: http://www.aboutads.info/choices or the EU site: http://www.youronlinechoices.com. The settings are platform-independent, i. e. they are applied to all devices, such as desktop computers or mobile devices.
6.5. Using the Twitter buttons
Our website uses the Twitter buttons, operated by Twitter Inc., One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland, recognizable by a stylized bird. With the help of the button it is possible to share a contribution or page of our offer on Twitter or to follow us on Twitter.
When you access a page of our website that contains such a button, your browser establishes a direct connection with the servers of Twitter. Twitter sends the contents of the Twitter button directly to your browser. We have no influence on the amount of data that Twitter collects with the help of this plugin and will inform you according to our knowledge. Accordingly, only your IP address and the URL of the respective website will be transmitted with the button, but not used for purposes other than displaying the button.
6.6. Incorporation of YouTube-videos and –channel
We have incorporated YouTube-videos into our Website, which are stored on: http://www.youtube.com and are directly accessible from our website. These are all implemented in "extended privacy mode". That means no data about you as a user will be transferred to YouTube if you do not play the videos. Only when you are playing the videos will the immedialety descibed data be transmitted. We have no influence on this data transfer.
By visiting the website, Youtube is informed that you have accessed the corresponding page of our website. This is done regardless of whether Youtube provides a user account that you are logged into, or whether there is no user account. If you are logged into Youtube, this data is directly assigned to your account. If you do not want the assignment with your profile on Youtube, you must log out before activating the button.
Youtube stores these data as usage profiles and uses them for purposes of advertising, market research and / or needs-oriented design of its website. Such an evaluation is carried out in particular (also for non-logged-in users) for the provision of on-demand advertising and to inform other users of the social network about your activities on our website. You have a right of objection to the formation of these user profiles, to do so, you have to contact Youtube.
Addresses of Youtube and URL with their privacy notice: YouTube LLC, headquartered in 901 Cherry Avenue, San Bruno, CA 94066, USA, is represented by Google Inc., located in 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. For more information about Google's data processing and data protection, please visit www.google.com/intl/en/policies/privacy/.
Further information on the purpose and scope of data collection and its processing by Youtube can be found in the above linked data protection statement of Youtube. You will also receive further information on your rights and settings to protect your privacy.
6.7. Using the LinkedIn social plugin
On our website, the social networking plugin of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA ("LinkedIn") is implemented. You can recognize the plugin by the "LinkedIn" logo or the corresponding "Share-Button", with which you can make a "recommendation" via the LinkedIn network. If you call a page of our website on which the LinkedIn plugin is integrated, a direct connection between your browser and the LinkedIn server is established via the plugin. LinkedIn receives the information that a user accesses this website via the IP address assigned to you at that time. If you have already registered with LinkedIn during your visit to our website or click the "Share" button, LinkedIn can assign your visit to our website to your LinkedIn profile.
We have no influence on the extent and also no knowledge of the concrete contents or the use of the data that LinkedIn collects with the help of this plugin. Please find out about the current details of data collection, your rights and in particular your profile setting options on the LinkedIn website, which you can find here: https://www.linkedin.com/legal/privacy-policy.
6.8. Using the Instagram application
On our website, we have integrated components of the service Instagram. Instagram is a service that may be qualified as an audiovisual platform, which allows users to share photos and videos, as well as disseminate such data in other social networks.
The operating company of the services offered by Instagram is Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, USA.
With each call-up to one of the individual pages of this Internet site, which is operated by the controller and on which an Instagram component (Insta button) was integrated, your Internet browser is automatically prompted to the download of a display of the corresponding Instagram component of Instagram. During the course of this technical procedure, Instagram becomes aware of what specific sub-page of our website you are visiting.
If you are logged in at the same time on Instagram, Instagram detects with every call-up to our website by you—and for the entire duration of your stay on our Internet site—which specific sub-page of our Internet page you are visiting. This information is collected through the Instagram component and is associated with your respective Instagram account. If you are clicking on one of the Instagram buttons integrated on our website, then Instagram matches this information with your personal Instagram account and stores the personal data.
Instagram receives information via the Instagram component that you are visiting our website provided that you are logged in at Instagram at the time of the call to our website. This occurs regardless of whether you click on the Instagram button or not. If such a transmission of information to Instagram is not desirable for you, then you can prevent this by logging off from your Instagram account before a call-up to our website is made.
Further information and the applicable data protection provisions of Instagram may be retrieved under: https://help.instagram.com/155833707900388 and www.instagram.com/about/legal/privacy/.
We reserve the right to amend the data protection declaration in order to adapt it to changed legal situations or in the event of changes to the service and data processing. However, this applies solely with regard to declarations on data processing. If your consent is required or if parts of the data protection declaration contain regulations of the contractual relationship with you, changes will only be made with your consent.
You are asked to inform yourself regularly about the content of our data protection declaration.
8. Name and address of the responsible body
The responsible body within the meaning of the EU General Data Protection Regulation and other national data protection laws of the EU member states as well as other data protection regulations is:
Unter den Linden 42
10117 Berlin (Germany)