Privacy policy | Ray Sono

Offering Industries Cases Perspectives About us Careers Let’s talk

Ray Sono GmbH Data Privacy Policy

Welcome to our website – we appreciate your interest in our company and take the protection of your personal data very seriously. We process your data in accordance with the applicable legal provisions governing the protection of personal data, in particular the General Data Protection Regulation (GDPR) and the country-specific laws of implementation that apply to us. This privacy policy provides comprehensive information on how Ray Sono GmbH processes your personal data as well as the rights you are entitled to.

Personal data is information that makes it possible to identify a natural person. This specifically includes your name, date of birth, address, telephone number, e-mail address as well as your IP address.

Anonymous data is data that does not allow a natural person to be identified.

To our Transparency and information obligations for customers, suppliers, contractual partners and interested parties

Controller and Data Protection Officer

Address: Ray Sono GmbH, Tumblingerstrasse 32, 80337 Munich, Germany

Contact information: https://www.raysono.com | Tel. +49 89 746 46-0 | hello@raysono.com

To contact the Data Protection Officer, please e-mail datenschutz@raysono.com

Your rights as a data subject

To begin with, we would like to inform you here about your rights as a data subject. These rights are codified in articles 15 to 22 of the GDPR. They include:

The right to information (Art. 15 GDPR),
The right to erasure (Art. 17 GDPR),
The right to rectification (Art. 16 GDPR),
The right to data portability (Art. 20 GDPR),
The right to restriction of data processing (Art. 18GDPR),
The right to object to data processing (Art. 21 GDPR).

To exercise these rights, please contact datenschutz@raysono.com. You can also contact us at this address if you have any questions about data processing in our company. Additionally, you have the right to file a complaint with a data protection supervisory authority.

Right of objection

Please note the following in connection with your right of objection:

If we process your personal data for purposes of direct marketing, you have the right to object to this data processing at any time without giving a reason. This also applies to profiling insofar as it is related to direct advertising.

If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes. You may object free of charge and without using a special form. Simply send your objection to hello@raysono.com.

If we process your data to protect legitimate interests, you may object to this processing at any time on grounds relating to your particular situation; this also applies to profiling based on these provisions.

We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds that override your interests, rights and freedoms, or unless we must process your data to assert, exercise or defend legal claims.

Purposes and legal bases of data processing

When processing your personal data, we comply with all provisions of the GDPR, the BDSG (new) and all other applicable data protection regulations. The legal basis for the data processing result in particular from Art. 6 GDPR.

We use your data to initiate business, fulfil contractual and legal obligations, carry out the contractual relationship, offer products and services, and to strengthen the customer relationship. This may also include analyses for marketing purposes and direct advertising.

Under the data protection law, your consent is required for permission. We will now inform you about the purposes of data processing and about your right of revoke permission. If your consent also refers to the processing of special categories of personal data, we will expressly point this out to you in the consent agreement, Art. 88 para. 1 GDPR in conjunction with. § 26 para. 3 BDSG.

Processing of special categories of personal data within the meaning of Art. 9 (1) GDPR shall only take place if this is required by legal provisions and there is no reason to assume the existence of a legitimate interest on your part to exclude this processing, cf. Art. 88 para. 1 GDPR in conjunction with § 26 para. 3 BDSG.

Disclosure to third parties

We will only pass on your data to third parties within the framework of statutory provisions or with your consent. Otherwise, we will not disclose your data to third parties unless we are obliged to do so by mandatory legal provisions (disclosure to external bodies such as supervisory authorities or law enforcement agencies).

Data recipients / categories of recipients

We ensure that within our company, only persons who need your data to fulfil contractual and legal obligations have access to this data.

In many cases, service providers support our technical departments to perform their tasks. We conclude all necessary data protection contracts with such service providers.

Third-country transfer / intention to transfer to third countries

Data is only transferred to third countries (outside the European Union or the European Economic Area) if necessary to fulfil the contractual relationship, if required by law, or if you have consented to this.

We transfer your personal data to a service provider or to group companies outside the European Economic Area: USA.

When data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you having any legal recourse. However, we take the possible measures required under data protection law in accordance with Art. 44 et seq. GDPR to establish the level of data protection in the third country.

Third-country transfer to Google

If you give us your consent to use Google services (see Use of Google Analytics and Use of Google Tag Manager), we transmit data to Google. This transfer takes place within the framework of job processing based on standard data protection clauses (see also https://privacy.google.com/businesses/processorterms/mccs/).

Furthermore, within the scope of embedded YouTube videos (see YouTube platform), data is forwarded to the USA.

Third-country transfer to LinkedIn

If you give us your consent to use LinkedIn services (see LinkedIn Insight Tag / LinkedIn Ads), we will transfer data to LinkedIn.

LinkedIn bases such transfers on appropriate safeguards, in particular standard contractual clauses of the EU Commission pursuant to Art. 46 GDPR. It cannot be ruled out that data may also be transferred to the USA.

Further information on data processing by LinkedIn can be found in LinkedIn's privacy policy. https://www.linkedin.com/legal/privacy-policy

Third-country transfer to Hubspot

If you give us your consent to use Hubspot services, we will transfer data to LinkedIn.

Hubspot bases such transfers on appropriate safeguards, in particular standard contractual clauses of the EU Commission pursuant to Art. 46 GDPR. It cannot be ruled out that data may also be transferred to the USA.

Further information on data processing by Hubspot can be found in Hubspot's privacy policy. https://legal.hubspot.com/privacy-policy

Data Storage Period

We store your data as long as they are needed for the respective processing purpose. Please note that numerous retention periods require that data continues to be stored. This relates in particular to retention obligations under commercial or tax law (e.g. Commercial Code, Fiscal Code, etc.). If there are no further storage obligations, the data is routinely deleted after achievement of its purpose.

In addition, we may retain data if you have given us permission to do so or if legal disputes arise and we use evidence under the legal statutes of limitations, which can be up to thirty years; the regular statute of limitations is three years.

Secure transfer of your data

We use appropriate technical and organizational security measures to protect all stored data as best as possible against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. We continuously review these security levels in collaboration with security experts and adapt them to new security standards.

Data exchange to and from our website is encrypted. We use the HTTPS transmission protocol for our website, using the latest encryption protocols. In addition, there is the option of using alternative communication channels (e.g. by post).

Obligation to provide data

Various personal data are necessary for the establishment, execution and termination of the contractual relationship and the fulfilment of the associated contractual and legal obligations. The same applies to the use of our website and the various functions it provides.

In certain cases, data must also be collected or made available due to legal provisions. Please note that it is not possible to process your enquiry or fulfil the underlying contractual obligation without providing this data.

Data categories, sources, and origin

Which data we process is determined by the respective context. This depends, for example, on whether you place an order online or enter an inquiry using our contact form, or whether you send us an application or submit a complaint.

Please note that we may also provide information for special processing situations in other suitable places, e.g. when uploading application documents or when a contact request is made.

When you visit our website, we collect and process the following data:

Name of the Internet service provider
Information about the website you are visiting us from
Web browser and operating system used
The IP address assigned by your Internet Service Provider
Files requested, amount of data transferred, downloads/file exports
Information about the web pages you load from us, incl. date and time
For reasons of technical security (in particular to defend against attempted attacks on our web server), this data is stored in accordance with Art. 6 (1) lit. f GDPR.

For online applications, we collect and process the following data:

Pronouns
Surname, first name
If provided: links to your LinkedIn profile
Email address (also for later login to the applicant portal)
Telephone number
Password (for later login to the applicant portal)
The uploaded application documents and other documents
Information on how you became aware of us
Salary expectations
Desired start date

For online applications, we collect and process the following data:

Email (required so that we can contact you)
First name, last name
Reason for contact
Message (optional)

If you write to us via the contact form, we process the data you provide to contact you and answer your questions and requests.

In doing so, we observe the principle of data economy and data avoidance by having you only provide the data we absolutely need to contact you (e-mail). In addition, we do process your IP address out of technical necessity and for legal protection. Answers for all other data fields are optional (e.g. to answer any individual questions).

To protect the security and confidentiality of your data as best as possible, we implement appropriate security measures. Your enquiry is transmitted to us encrypted via HTTPS.

If you contact us by e-mail, we process the personal data you provide in the e-mail solely for the purpose of processing your enquiry. If you do not use the forms offered for contacting us, no further data collection will take place.

Marketing campaigns by e-mail (Art. 6 para. 1 lit. a GDPR)

You can subscribe to free marketing campaigns in several places on our website. The email address you provide when registering and your name will be used to send you personalized marketing campaigns.

The principle of data minimization and data avoidance is observed here, as only the email address and name are marked as mandatory fields. For technical reasons and for legal protection, your IP address is also processed when you order the newsletter.

We use the so-called double opt-in procedure for sending marketing campaigns by email. This means that you will only receive marketing campaigns by email if you have expressly confirmed beforehand that we should activate this service. We do this by sending you a notification email and asking you to confirm that you wish to receive our marketing campaigns at this email address by clicking on a link contained in this email.

You can, of course, unsubscribe at any time using the unsubscribe option provided in the marketing campaign and thus revoke your consent. When you unsubscribe from the marketing campaigns, Hubspot will also stop analyzing them.

We use the service provider Hubspot (Hubspot Inc., 25 First Street, Cambridge, MA 02141 USA) to send the newsletter. Hubspot receives the data provided exclusively for the purpose of sending the newsletter. This transfer takes place in accordance with Art. 6 para. 1 lit. f GDPR and serves our legitimate interest in using an effective, secure and user-friendly newsletter system. Hubspot enables us to analyze our marketing campaigns.

Our marketing campaigns sent with Hubspot enable us to analyze the behaviour of recipients. Among other things, we can analyze how many recipients opened the message and how often each link in the email was clicked. By registering for our marketing campaigns, you consent to the analyzis of the email as described above (legal basis Art. 6 para. 1 lit. a GDPR).

We have concluded an order processing contract with Hubspot, in which we oblige Hubspot to protect our customers' data and not to pass it on to third parties.

For further information, see HubSpot (CRM, Marketing Automation & Analytics)

You can view Hubspot's privacy policy here: https://legal.hubspot.com/privacy-policy

Consent Layer - Cookiebot

Our website contains a Consent Layer made by Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark. The consent layer allows you to consent to any data processing done on our website. This also includes opening the domain https://www.cookiebot.com/.

When you provide your consent on our website, the following information is automatically logged with Cybot:

The end user’s IP number in anonymized form (the last three digits are set to '0').
The date and time of consent.
The user agent of the end user’s browser.
The URL from which consent was sent.
An anonymous, random, and encrypted key.
The consent status of the end user, which serves as proof of consent.

The key and consent status are stored in your browser in the “CookieConsent” cookie so that our website can automatically read and follow your consent in all subsequent page requests and future end-user sessions for up to 12 months. The key is used for proof of consent and for an option to verify that the consent status stored in the end user’s browser is unchanged from the original consent submitted to Cybot.

Furthermore, up-to-date information about the data processing operations for which your consent is required is reloaded from a central database of Cybot.

The purpose of this data processing is the proper implementation of your decision to consent to the respective data processing operations. It is thus technically necessary. You can view Cybot's privacy policy here: https://www.cookiebot.com/en/privacy-policy/

Applicant Portal (Art. 6 para. 1 lit. a, b GDPR)

We always treat your personal data confidentially and use it only to process your application, e.g. for arranging interviews, identifying suitable alternative areas of work, and other purposes related to the application as part of the personnel selection process.

Through technical and organizational measures, we ensure that during the application process, only the responsible employees of the HR department and the respective department have access to your personal data.

Operator of the Applicant Portal

Our applicant portal is operated by Personio GmbH, a company based in Germany, which offers personnel administration and applicant management software (https://www.personio.com/legal-notice/). The data transmitted as part of your application is transferred via TLS encryption and stored in a database. Personio is only the operator of the applicant portal and in this context is a processor according to Art. 28 GDPR. The basis for processing by Personio in this regard is a contract for commissioned processing between us and Personio.

In the course of providing the applicant portal, personal data is transferred to Personio GmbH. This is access data (IP addresses, access times, operating system, browsers used, crash reports, etc.). The transmission of this data is technically necessary to ensure the functionality of the applicant portal. Personio deletes the access data after 7 days.

Applicant Pool

During the application process, you can give your consent for your application to be stored even if you receive a rejection for the position you applied for. If you agree to this, we may add you to our applicant pool and contact you again when suitable positions matching your profile become available.

We use technical and organizational measures to ensure that only those persons who are directly involved in the selection process and who need the data for this purpose have access to your data.

Once your application has been added to the applicant pool or forwarded, it will be stored for a maximum of 12 months, after which we will anonymize and delete your data in accordance with data protection regulations.

Of course, you will not suffer any disadvantages if you do agree to inclusion in the applicant pool.

In no case will we make an exclusively automated decision about a job placement.

Also with respect to the applicant pool, Ray Sono always ensures the secure and confidential treatment of your data and uses appropriate state-of-the-art technical and organizational measures to protect your data in accordance with applicable law.

Data Storage Period

Your data will be stored at Ray Sono for the above-mentioned purpose until the application process is completed and any legal deadlines in this regard have expired. Ray Sono will anonymize your data immediately after the expiration of these periods, at the latest after 6 months, unless the above-noted provisions regarding the applicant pool apply.

Data Subject Rights

Of course, the previously mentioned data subject rights and complaint options remain open to you. (see above: Your rights as a data subject).

Revocation of your Declaration of Consent You are entitled to revoke your consent to the use of your personal data at any time. To do so, simply send an e-mail to bewerbung@raysono.com.

Advertising Purposes for Existing Customers (Art. 6 para. 1 lit. f GDPR)

Ray Sono GmbH is interested in maintaining the customer relationship with you and to send you information and offers about our products / services. We thus process your data so that we can send you relevant information and offers by e-mail.

If you do not want us to do this, you can object at any time to the use of your personal data for the purpose of direct advertising; this also applies to profiling insofar as it relates to direct advertising. If you object to this, we will no longer process your data for this purpose.

You can file an objection free of charge and without a special form. You do not have to provide any reason. You should preferably call us at +49 89 746 46-0, send a written objection to hello@raysono.com or by postal mail to Ray Sono GmbH, Tumblingerstrasse 32, 80337 Munich.

Data protection notice on participation in webinars and related recording options/advertising consent (Art. 6 para. 1 lit. a GDPR)

You have the opportunity to participate in our webinars voluntarily. As part of the registration process, we collect personal data such as your title, your first and last name, your e-mail address and your company. To participate in the webinar, you consent to Ray Sono GmbH storing this data and using it for marketing purposes.

If you have not yet given your consent, this will be done using the double opt-in procedure: After your registration, you will receive a confirmation e-mail asking you to click on a link to confirm that you wish to receive information about future webinars and other events by e-mail.

The webinar will be recorded for marketing purposes of Ray Sono GmbH. During the webinar, your name and profile picture may be recorded in Chat/F&A. However, in order to protect your privacy, these will be removed when the recordings are processed further.

We strictly adhere to the principle of data minimization and data avoidance. For technical reasons and for legal protection, your IP address is also processed during the registration process.

You can revoke your consent at any time without giving reasons. You can inform us of your cancellation directly by e-mail to datenschutz@raysono.com or by post to Ray Sono GmbH, Tumblingerstrasse 32, 80337 Munich. With the revocation, the further processing of your personal data also ends.

Cookies (Art. 6 para. 1 lit. a, f GDPR, § 25 para. 1, 2 TDDDG)

Our website uses so-called cookies. They serve to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your end device and saved (locally) by your browser. Cookies only contain pseudonymous, usually even anonymous data. Some cookies remain in place for the duration of a browser session (so-called session cookies), others are stored for longer periods (so-called persistent cookies, e.g. consent settings). The latter are automatically deleted after the specified time (usually 6 months). In addition to our own cookies, we also use cookies that are controlled by third-party providers. These use the information contained in the cookies, e.g. to show you content or to record the pages you have visited.

Due to our legitimate interest (Art. 6 para. 1 lit. f GDPR), we use technically necessary cookies that are absolutely essential for the operation of the website and to ensure its functionality. Furthermore, we use cookies without your consent if their sole purpose is to store or access information stored on the end device for the transmission of messages or if they are absolutely necessary for the provision of the service you have expressly requested, § 25 para. 2 TDDDG.

With your consent, additional cookies are used that enable us or third parties to analyse the use of our services, for example. This allows us to tailor content to user needs. Cookies also enable us to measure the effectiveness of a particular advertisement and to place it, for example, depending on the thematic interests of users. The legal basis for this is your express consent (Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TDDDG).

You can revoke your consent at any time with future effect via our consent banner and change your cookie settings. Please note that changes must be made separately for each device.

Change your consent via the cookie information

If you have accounts with the third-party providers we use and are logged in there, your data may be linked to the respective account. You can avoid such a merger by not giving your consent to the relevant cookies or by revoking it, or by logging out of the respective third-party providers beforehand.

Most browsers automatically accept cookies. However, you can also manually deactivate, restrict or delete cookies on your device via your browser settings or with the aid of software. If you deactivate the setting of cookies, this may mean that our website cannot be used or can only be used to a limited extent.

Please also note our information in the section of the respective service that uses cookies.

User Profiles / Web Tracking Methods

Use of Google Analytics

We use the tracking tool Google Analytics from Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA: ‘Google’) on our website. If you are resident in the European Economic Area or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the controller of your data collected in these processes. This tool systematically collects, stores and analyses the interactions of visitors to our website using cookies and JavaScript functions. The following data is collected: anonymised IP address (only three bytes are collected), the website accessed via the Google ID, the previously accessed website, the length of time spent on the websites and the frequency of visits to the websites. Your data is transmitted to Google and processed there for its own purposes. If you have a Google account, Google may also merge the data obtained from Google Analytics tracking. Data is transferred to third countries. See Third-country transfer/transfer intention Based on the GDPR, we have concluded a corresponding data processing agreement with Google. We use this tool to collect information about the use of our website and to design and optimise our website according to your needs. This data is used to create usage profiles across websites. The use of the tool is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TDDDG. You can revoke your consent at any time by clicking here:

Change your consent via the cookie information

The objection is valid only for the device and the web browser on which it was set. Please repeat the process on all devices if desired. If you delete the opt-out cookie, you will be asked again for your consent for data transfer.

Furthermore, you can download a browser add-in for the deactivation of Google Analytics here: https://tools.google.com/dlpage/gaoptout?hl=de. This add-in is provided by Google for popular browser versions.

Data Storage Period

The data obtained via this procedure is deleted as soon as it is no longer required for our purposes. In our case, this is the case after 14 months.

Google Tag Manager (GTM)

We use Google Tag Manager from Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; ‘Google’) on our website.

The Tag Manager is used to manage the functions of the Google Analytics tracking tool. Initially, Google Tag Manager also controls your user decision (consent) via the so-called consent mode. This adapts the behaviour of the Google tools to your consent to this processing in accordance with Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TDDDG.

Your user decision is read via corresponding scripts and cookies. If you have not consented to the use of Google Analytics or Google AdManager, Google Tag Manager prevents these tools from collecting data. The following data is collected: timestamp, user agent, referring URL, Boolean information on consent status, random number generated for each page view, information on the consent management platform used by the website owner (e.g. developer ID). For technical reasons, your IP address, device information, browser information and URL are also transmitted to Google when the corresponding script is called up.

Your data will be transferred to Google. A transfer to a third country takes place.

We use Google Tag Manager to store and implement your consent status and to control our Google tools (Google Analytics and Google AdManager).

The use of Google Tag Manager is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR, § 25 para. 1 TDDDG. Data processing is technically necessary in order to implement your consent for the Google Analytics tools.

Your personal data is not stored by Google Tag Manager beyond the respective session within the scope of the consent mode. The Google Analytics tool controlled by Google Tag Manager is only stored for the duration of your consent in the respective sections.

HubSpot (CRM, marketing automation & analytics)

Purpose of processing

We use services provided by HubSpot Inc., 25 First Street, Cambridge, MA 02141, USA, and HubSpot Ireland Limited, Ground Floor, Two Dockland Central, Guild Street, Dublin 1, Ireland (‘HubSpot’) on our website.

HubSpot is used for:

Customer relationship management (CRM)
Lead generation and lead management
Marketing automation (e.g. automated email campaigns, follow-ups)
Analysis of user behaviour on our website
Optimisation of marketing and sales measures

Collection and processing of personal data

When using HubSpot, we process the following personal data in particular:

Contact and master data (e.g. name, email address, telephone number, company),
Data from forms, newsletter registrations or similar interactions,
Communication content and history (e.g. emails, calls, meetings, notes) for customer and lead management,
Usage and interaction data in connection with our marketing measures.

This data is stored in the HubSpot CRM and used for structured tracking of customer and prospect relationships.

Lead generation & marketing automation

The processed data is used to personalise marketing and sales activities, in particular for:

automated and personalised email campaigns,
targeted follow-up communication,
lead scoring and evaluation of potential customers based on their usage and interaction behaviour,
segmentation of target groups for marketing and sales purposes.

Website tracking & usage analysis

HubSpot uses tracking technologies such as cookies, pixels and IP-based methods to analyse the behaviour of visitors to our website. In particular, the following information may be collected:

pages and content visited,
clicks, downloads and other interactions,
length of stay,
approximate location data (derived from the IP address).

Link to Google Analytics

If HubSpot is linked to Google Analytics, visit and interaction data can be merged for advanced website analysis and marketing optimisation.

Link to LinkedIn

If HubSpot is integrated with LinkedIn Ads or LinkedIn Analytics, data collected there (e.g. ad interactions, clicks, page visits) can be synchronised with HubSpot data. This serves the following purposes:

campaign optimisation,
and retargeting measures on platforms such as LinkedIn or Google Ads.

Legal basis

Unless required for the initiation or fulfilment of a contract, your data will be processed exclusively on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TDDDG.

Storage period and handling of consent (HubSpot)

The storage period depends on the purpose of the processing and on the consent you have given or revoked:

Marketing unsubscription / revocation of marketing consent
If you revoke your consent, your data will no longer be used for marketing campaigns. However, your contact details will remain stored in our CRM unless you request their deletion and there are no legal obligations to delete them.
Revocation of consent to tracking
If you revoke your consent to tracking (e.g. via the consent banner), no further tracking will be carried out. Existing data records in the CRM will remain, but will not be further enriched or used for tracking purposes.
Deletion request
If you exercise your right to deletion, we will delete your personal data from the CRM, provided that there are no legal retention periods or other legitimate reasons preventing deletion.

LinkedIn Insight Tag / LinkedIn Ads

Purpose of processing

We use the LinkedIn Insight Tag from LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (‘LinkedIn’) on our website.

It is used for the following purposes:

Conversion tracking (measuring whether users perform certain actions after seeing a LinkedIn ad, e.g. enquiries or form submissions)
Retargeting (re-engaging website visitors with LinkedIn ads)
Target group analysis and creation of so-called matched audiences,
Optimisation and personalisation of LinkedIn advertising campaigns (branding, content placement, lead generation).

Processed data

When using the LinkedIn Insight Tag, the following data in particular may be processed:

IP address (truncated or hashed),
browser and device information (e.g. operating system, screen resolution),
Referrer URL,
Pages visited, interactions (e.g. clicks on ads or forms),
Dwell time and scrolling behaviour,
Location data (derived from the IP address).

Link to LinkedIn profiles

If you are logged into LinkedIn while visiting our website, LinkedIn can assign the collected data to your LinkedIn profile. This enables LinkedIn to:

display personalised advertising on the LinkedIn platform,
analyse user interests,
link website interactions with LinkedIn content and advertisements.

Further processing of this data is carried out by LinkedIn on its own responsibility.

Legal basis

Your data is processed on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TDDDG.

You can revoke your consent at any time with future effect using our consent management tool.

Storage period

The evaluations we collect via LinkedIn are only stored for as long as they are necessary for the purposes stated. LinkedIn determines the storage period for the data processed by LinkedIn on its own responsibility.

YouTube Platform

We embed videos from the YouTube platform on our website. YouTube is operated by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

To embed YouTube videos, we use the technical procedure known as framing. Framing is the process of simply inserting an HTML link provided by YouTube into the code of a website to create a playback frame on a third-party site, which allows the video stored on YouTube servers to be played.

We use the framing codes generated by YouTube in the so-called “extended data protection mode”. According to information on the YouTube platform, the cookie activity and the data collection initiated by it are linked only to usage of the video playback function itself. This prevents any collection of data through the mere use of a website that features framed content.

When you visit the website on which videos from the YouTube platform are embedded, a connection to the YouTube servers is established. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

After activating a YouTube video, further data processing operations may be triggered over which we have no influence.

The use of YouTube is in the interest of an appealing presentation of our online offers. The processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR und § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user's end device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time. YouTube videos are deactivated by default and only start when you interact with the video.

You can find more information about data protection at YouTube in their privacy policy at: https://policies.google.com/privacy?hl=en.

Automated Individual Case Decisions

We do not use automated processing to arrive at any decisions.

Children and Online Offers

Persons under the age of 16 may not transmit personal data to us or provide a declaration of consent without the consent of their legal guardian. We encourage parents and guardians to actively participate in their children's online activities and interests.

Disclaimer

Copyright

The content of these pages has been carefully edited and reviewed. However, Ray Sono AG does not guarantee the timeliness, accuracy, completeness, or quality of the information provided. Liability claims against Ray Sono GmbH regarding damage caused by using any information provided, including any kind of information which is incomplete or incorrect, will thus be rejected unless it can be proven that Ray Sono GmbH acted with intent or gross negligence. Ray Sono GmbH expressly reserves the right to change, supplement, delete, or cease publication of parts or the entire site without prior notice.

Security principles

To protect the data we store about our employees/customers/suppliers from accidental or intentional manipulation, loss, destruction, or access by unauthorized persons, we take appropriate technical and organizational measures. We continuously review these security levels in cooperation with security experts and adapt them to new security standards.

Links to other providers

Our website also contains clearly recognisable links to the websites of other companies. We have no influence on the content of other providers’ websites. We can thus assume no warranty or liability for these contents. The respective provider or operator of those websites is always responsible for their content.

At the time of linking, the linked websites were checked for possible legal violations. No illegal content was recognisable at the time the websites were linked. Permanent control of the content of the linked websites, however, cannot be reasonably expected without concrete evidence of a legal violation. If we become aware of any infringements, we will remove such links immediately.

Social Media Links

Our website contains links to the social media services of Instagram, LinkedIn, and Kununu. The links to the websites of these social media services can be recognised by their respective company logos. Following one of these links opens Ray Sono GmbH´s corporate presence on that service. Clicking a link to one of these social media services establishes a connection to the its servers. This communicates to the servers of the social media service the information that you have visited our website. In addition, further data is transferred to the provider of the social media service. These include, for example:

The address of the web page on which the activated link is located
The date and time the website was accessed or the link was activated
Information about the browser and operating system used
The IP address

If you are already logged in to the corresponding social media service at the time the link is activated, the provider of the social media service may be able to determine your username and possibly even your real name from the transmitted data and connect this information to your personal user account with the social media service. You can prevent the possibility of this information from being connected to your personal user account by previously logging out of your user account.

The servers of the social media services are located in the USA and other countries outside the European Union. The data can therefore also be processed by the social media service provider in countries outside the European Union. Please note that companies in these countries are subject to data protection laws that do not generally protect personal data to the same extent as European Union member states protect this personal data.

Please note that we have no influence on the scope, type, and purpose of the data processing by the provider of these social media services. For more information on the use of your data by the social media services integrated on our website, please refer to the privacy policy of the respective social media service.

Notes on Data Protection in Social Media

Ray Sono GmbH maintains a social media presence on Facebook, Instagram, LinkedIn, Xing, Kununu, and YouTube. To the extent that we can control how your data is processed, we ensure compliance with the applicable data protection regulations.

The following section contains the most important information on data protection law as it relates to our web presences.

Name and Address of the Persons Responsible for the Operation

In addition to Ray Sono GmbH, the following companies are responsible for the company websites within the meaning of the General Data Protection Regulation (GDPR) and other data protection regulations:

Instagram (Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland)
LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Irland)
Kununu (New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany)
YouTube (Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Irland)
Facebook (Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland)
Xing (New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany)

However, you yourself are responsible for the use of these platforms and their functions. This particularly applies to the use of interactive functions (e.g. commenting, sharing, rating).

We would also like to point out that your data may be processed outside the European Union. The corresponding contract required under data protection law has been concluded.

Purpose and Legal Basis

We ourselves maintain our fan pages to communicate with page visitors and inform them about our offers.

In addition, we collect data for statistical purposes to further develop and optimise our content and make our offers more attractive. The data we need for this purpose (e.g. total number of page views, page activity and data provided by visitors, interactions) is processed by the social networks and provided to us. We have no influence on the generation and presentation.

In addition, your personal data is processed by social media providers for market research and advertising purposes. It is possible, for example, that usage profiles are created based on your usage behaviour and resulting interests. This can result in the placement of ads matching your interests – both inside and outside the platforms. Cookies are usually stored on your computer for this purpose. Regardless of this, data that is not collected directly on your end devices may also be stored in your usage profiles. The storage and analysis also take place across devices; this applies in particular, but not exclusively, if you are registered as a member and logged in to the respective platforms.

The processing of your personal data by Ray Sono GmbH is based on our legitimate interests in effective information and communication pursuant to Art. 6 para. 1 lit. f. GDPR.

If you are asked for consent to data processing, i.e. if you declare your consent by confirming a button or similar (opt-in), the legal basis for this processing is Art. 6 para. 1 lit. a., Art. 7 GDPR.

Your Rights / Option to Object

If you are a member of a social network and do not want the network to collect data about you via our presence and link it to your stored membership data with the respective network, you must

log out of the respective network before visiting our fan page,
delete the cookies present on your device and
exit and restart your browser.

After logging in again, however, you will once more be recognisable to the network as a specific user.

For a detailed description of the respective processing and the options to object (opt-out), please refer to the information linked below:

Instagram: Data protection statement: https://help.instagram.com/519522125107875 Opt-out: http://www.networkadvertising.org/managing/opt_out.asp and https://www.youronlinechoices.com

LinkedIn: Data protection statement: https://www.linkedin.com/legal/privacy-policy Opt-out: https://www.linkedin.com/legal/cookie-policy and https://www.youronlinechoices.com

Kununu: Data protection statement: https://privacy.xing.com/de/datenschutzerklaerung Opt-out: http://www.youronlinechoices.com

YouTube: Data protection statement: https://policies.google.com/privacy Opt-out: https://tools.google.com/dlpage/gaoptout?hl=de and http://www.youronlinechoices.com

Facebook: Data protection statement:https://www.facebook.com/about/privacy/ Opt-out: https://www.facebook.com/settings?tab=ads and https://www.youronlinechoices.com

Xing: Data protection statement: https://privacy.xing.com/de/datenschutzerklaerung Opt-Out: https://www.youronlinechoices.com

Overall, you are already entitled to the rights described above regarding the processing of your personal data.

However, since Ray Sono GmbH does not have complete access to your personal data, you should contact the social media providers directly if you wish to assert your rights, as they each access the personal data of their users and can take appropriate measures and provide information.

If you still need help, we would be happy to provide you with support. Please contact hello@raysono.com.

Notes on Copyright and Artistic Copyright

If you wish to publish pictures, texts, plans, videos, music, etc. on our website, you should know that you may thereby be assigning all rights of use to the network, which could ultimately have legal consequences for you if you are not the author or hold the rights to these yourself.