Ray Sono AG Data Privacy Policy

To our Transparency and information obligations for customers, suppliers, contractual partners and interested parties 

 

Welcome to our website – we appreciate your interest in our company and take the protection of your personal data very seriously. We process your data in accordance with the applicable legal provisions governing the protection of personal data, in particular the General Data Protection Regulation (GDPR) and the country-specific laws of implementation that apply to us. This privacy policy provides comprehensive information on how Ray Sono AG processes your personal data as well as the rights you are entitled to.

Personal data is information that makes it possible to identify a natural person. This specifically includes your name, date of birth, address, telephone number, e-mail address as well as your IP address.

Anonymous data is data that does not allow a natural person to be identified.

Controller and data protection officer

Address: Ray Sono AG, Tumblingerstrasse 32, 80337 Munich, Germany

Contact information: https://www.raysono.com | Tel. +49 89 746 46-0 | hello@raysono.com

To contact the data protection officer, please e-mail datenschutz@raysono.com

Your rights as a data subject

To begin with, we would like to inform you here about your rights as a data subject. These rights are codified in articles 15 to 22 of the GDPR. They include:

  • The right to information (Art. 15 GDPR),
  • The right to erasure (Art. 17 GDPR),
  • The right to rectification (Art. 16 GDPR),
  • The right to data portability (Art. 20 GDPR),
  • The right to restriction of data processing (Art. 18 GDPR),
  • The right to object to data processing (Art. 21 GDPR).

 

To assert these rights, please contact datenschutz@raysono.com. You can also contact us at this address if you have questions about data processing in our company. Additionally, you have the right to file a complaint with a data protection supervisory authority.

Right of objection

Please note the following in connection with your right of objection:

If we process your personal data for purposes of direct marketing, you have the right to object to this data processing at any time without giving a reason. This also applies to profiling insofar as it is related to direct advertising.

If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes. You may object free of charge and without using a special form. Simply send your objection to hello@raysono.com.

If we process your data to protect legitimate interests, you may object to this processing at any time on grounds relating to your particular situation; this also applies to profiling based on these provisions.

We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds that override your interests, rights and freedoms, or unless we must process your data to assert, exercise or defend legal claims.

Purposes and legal bases of data processing

When processing your personal data, we comply with all provisions of the GDPR, the BDSG (new) and all other applicable data protection regulations. The legal basis for the data processing result in particular from Art. 6 GDPR.

We use your data to initiate business, fulfil contractual and legal obligations, carry out the contractual relationship, offer products and services, and to strengthen the customer relationship. This may also include analyses for marketing purposes and direct advertising.

Under the data protection law, your consent is required for permission. We will now inform you about the purposes of data processing and about your right of revoke permission. If your consent also refers to the processing of special categories of personal data, we will expressly point this out to you in the consent agreement, Art. 88 para. 1 GDPR in conjunction with. Section 26 (3) BDSG.

Processing of special categories of personal data within the meaning of Art. 9 (1) GDPR shall only take place if this is required by legal provisions and there is no reason to assume the existence of a legitimate interest on your part to exclude this processing, cf. Art. 88 (1) GDPR in conjunction with Art. 26 (3) BDSG.

Disclosure to third parties

We will only pass on your data to third parties within the framework of statutory provisions or with your consent. Otherwise, we will not disclose your data to third parties unless we are obliged to do so by mandatory legal provisions (disclosure to external bodies such as supervisory authorities or law enforcement agencies).

Data recipients / categories of recipients

We ensure that within our company, only persons who need your data to fulfil contractual and legal obligations have access to this data.

In many cases, service providers support our technical departments to perform their tasks. We conclude all necessary data protection contracts with such service providers.

Third-country transfer / intention to transfer to third countries

Data is only transferred to third countries (outside the European Union or the European Economic Area) if necessary to fulfil the contractual relationship, if required by law, or if you have consented to this.

We transfer your personal data to a service provider or to group companies outside the European Economic Area: USA.

When data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you having any legal recourse. However, we take the possible measures required under data protection law in accordance with Art. 44 et seq. GDPR to establish the level of data protection in the third country.

Third-country transfer to Google

If you give us your consent to use Google services (see Use of Google Analytics and Use of Google Tag Manager), we transmit data to Google. This transfer takes place within the framework of job processing based on standard data protection clauses (see also https://privacy.google.com/businesses/processorterms/mccs/).

Furthermore, within the scope of embedded YouTube videos (see YouTube platform), data is forwarded to the USA.

Third-country transfer to Meta

If you give us your consent to use Meta services (see Facebook Pixel), we transmit data to Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland (see: www.facebook.com/about/privacy/). However, data transmission to Meta Platforms Inc. in the USA cannot be ruled out as a result.

Data storage period

We store your data as long as they are needed for the respective processing purpose. Please note that numerous retention periods require that data continues to be stored. This relates in particular to retention obligations under commercial or tax law (e.g. Commercial Code, Fiscal Code, etc.). If there are no further storage obligations, the data is routinely deleted after achievement of its purpose.

In addition, we may retain data if you have given us permission to do so or if legal disputes arise and we use evidence under the legal statutes of limitations, which can be up to thirty years; the regular statute of limitations is three years.

Secure transfer of your data

We use appropriate technical and organisational security measures in the best possible way to protect all stored data against accidental or intentional manipulation, loss, destruction, or access by unauthorized persons. We continuously review these security levels in cooperation with security experts and adapt them to new security standards.

The data exchange from and to our website is encrypted. We use the HTTPS transmission protocol for our web presence, in each case using current encryption protocols. The option of alternative communication channels is also possible (e.g. the postal service).

Obligation to provide data

Various personal data are necessary for the establishment, execution and termination of the contractual relationship and the fulfilment of the associated contractual and legal obligations. The same applies to the use of our website and the various functions it provides.

In certain cases, data must also be collected or made available due to legal provisions. Please note that it is not possible to process your enquiry or fulfil the underlying contractual obligation without providing this data.

Data categories, sources, and origin

Which data we process is determined by the respective context. This depends, for example, on whether you place an order online or enter an inquiry using our contact form, or whether you send us an application or submit a complaint.

Please note that we may also provide information for special processing situations in other suitable places, e.g. when uploading application documents or when a contact request is made.

When you visit our website, we collect and process the following data:

  • Name of the Internet service provider
  • Information about the website you are visiting us from
  • Web browser and operating system used
  • The IP address assigned by your Internet Service Provider
  • Files requested, amount of data transferred, downloads/file exports
  • Information about the web pages you load from us, incl. date and time
  • For reasons of technical security (in particular to defend against attempted attacks on our web server), this data is stored in accordance with Art. 6 (1) lit. f GDPR.

For online applications, we collect and process the following data:

  • Salutation, title
  • Last name, first name
  • Contact details
  • If entered: Links to your LinkedIn or Xing profile
  • E-mail address (also for later login to the applicant portal)
  • Password (for later login to the applicant portal)
  • The uploaded application documents and other documents
  • Desired place of work
  • Indication of how you became aware of us
  • Salary requirements
  • Desired starting date
  • Indication of whether you agree to be included in the applicant pool

When you send us an enquiry via our contact form, we process the following data:

  • E-mail (necessary so that we can contact you)
  • First name, last name, and message (optional)
     

If you write to us via the contact form, we process the data you provide to contact you and answer your questions and requests.

In doing so, we observe the principle of data economy and data avoidance by having you only provide the data we absolutely need to contact you (e-mail). In addition, we do process your IP address out of technical necessity and for legal protection. Answers for all other data fields are optional (e.g. to answer any individual questions).

To protect the security and confidentiality of your data as best as possible, we implement appropriate security measures. Your enquiry is transmitted to us encrypted via HTTPS.

If you contact us by e-mail, we process the personal data you provide in the e-mail solely for the purpose of processing your enquiry. If you do not use the forms offered for contacting us, no further data collection will take place.

Your Culture Book Order / Advertising Consent (Art. 6 Para. 1 lit. a GDPR)

We process the data you have entered in the order form solely for the purpose of shipping you your copy of the book, unless you consent to its further use.

We observe the principle of data minimization and avoidance by asking you only for the data that we absolutely require for shipping (namely your name, address, and email address). Additionally, we process your IP address due to technical necessity and for legal protection. Without these data, we regret that we cannot send you the copy. Of course, you are free to provide more information if you wish to do so.

As part of the ordering process, we process the following data:

  • Salutation
  • Last Name, First Name
  • Address
  • Email Address
  • Company
  • Title
     

On the order form, you can also consent to receive advertising materials from us if you desire. Naturally, however, you can complete the order without giving us this consent. If you do give us your consent by checking the respective box, we will also process your data to send you information and offers about our products/services.

As part of this advertising consent (Opt-in), we process the following data:

  • Salutation
  • Last Name, First Name
  • Address
  • Email Address
  • Company
  • Title
     

You may revoke your consent at any time without stating any reason. You can do this informally with an email to datenschutz@raysono.com.

Marketing campaigns by e-mail (Art. 6 para. 1 lit. a GDPR)

You can subscribe to free marketing campaigns in several places on our website. The email address you provide when registering and your name will be used to send you personalised marketing campaigns.

The principle of data minimisation and data avoidance is observed here, as only the email address and name are marked as mandatory fields. For technical reasons and for legal protection, your IP address is also processed when you order the newsletter.

We use the so-called double opt-in procedure for sending marketing campaigns by email. This means that you will only receive marketing campaigns by email if you have expressly confirmed beforehand that we should activate this service. We do this by sending you a notification email and asking you to confirm that you wish to receive our marketing campaigns at this email address by clicking on a link contained in this email.

You can, of course, unsubscribe at any time using the unsubscribe option provided in the marketing campaign and thus revoke your consent. When you unsubscribe from the marketing campaigns, Hubspot will also stop analysing them.

We use the service provider Hubspot (Hubspot Inc., 25 First Street, Cambridge, MA 02141 USA) to send the newsletter. Hubspot receives the data provided exclusively for the purpose of sending the newsletter. This transfer takes place in accordance with Art. 6 para. 1 lit. f GDPR and serves our legitimate interest in using an effective, secure and user-friendly newsletter system. Hubspot enables us to analyse our marketing campaigns.

Our marketing campaigns sent with Hubspot enable us to analyse the behaviour of recipients. Among other things, we can analyse how many recipients have opened the message and how often which link in the email was clicked on. By registering for our marketing campaigns, you consent to the analysis of the email as described above (legal basis Art. 6 para. 1 lit. a  GDPR).

We have concluded an order processing contract with Hubspot, in which we oblige Hubspot to protect our customers' data and not to pass it on to third parties.

You can view Hubspot's privacy policy here: https://legal.hubspot.com/de/privacy-policy.
 

Consent Layer - Cookiebot

Our website contains a Consent Layer made by Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark. The consent layer allows you to consent to any data processing done on our website. This also includes opening the domain www.cookiebot.com.

When you provide your consent on our website, the following information is automatically logged with Cybot:

  • The end user’s IP number in anonymised form (the last three digits are set to '0').
  • The date and time of consent.
  • The user agent of the end user’s browser.
  • The URL from which consent was sent.
  • An anonymous, random, and encrypted key.
  • The consent status of the end user, which serves as proof of consent.
     

The key and consent status are stored in your browser in the “CookieConsent” cookie so that our website can automatically read and follow your consent in all subsequent page requests and future end-user sessions for up to 12 months. The key is used for proof of consent and for an option to verify that the consent status stored in the end user’s browser is unchanged from the original consent submitted to Cybot.

Furthermore, up-to-date information about the data processing operations for which your consent is required is reloaded from a central database of Cybot.

The purpose of this data processing is the proper implementation of your decision to consent to the respective data processing operations. It is thus technically necessary. You can view Cybot's privacy policy here: https://www.cookiebot.com/en/privacy-policy/

Applicant Portal (Art. 6 para. 1 lit. a, b GDPR)

We always treat your personal data confidentially and use it only to process your application, e.g. for arranging interviews, identifying suitable alternative areas of work, and other purposes related to the application as part of the personnel selection process.

Through technical and organisational measures, we ensure that during the application process, only the responsible employees of the HR department and the respective department have access to your personal data.

Operator of the Applicant Portal

Our applicant portal is operated by Personio GmbH, a company based in Germany, which offers personnel administration and applicant management software (https://www.personio.de/impressum/). The data transmitted as part of your application is transferred via TLS encryption and stored in a database. Personio is only the operator of the applicant portal and in this context is a processor according to Art. 28 GDPR. The basis for processing by Personio in this regard is a contract for commissioned processing between us and Personio.

In the course of providing the applicant portal, personal data is transferred to Personio GmbH. This is access data (IP addresses, access times, operating system, browsers used, crash reports, etc.). The transmission of this data is technically necessary to ensure the functionality of the applicant portal. Personio deletes the access data after 7 days.

Applicant Pool

The application form contains a separate data release declaration that allows your application to continue to be stored, even if you receive a rejection for the position you have applied to. If you consent to this, there is a possibility that we will include you in the pool of applicants and contact you again for suitable positions that match your profile.

We take technical and organisational measures to ensure that only those persons who participate directly in the selection process and require the data for this purpose have access to your data.

Your application will be stored for a maximum of 24 months if it is included in the applicant pool or forwarded, after which we will anonymise and delete your data in accordance with data protection regulations.

Of course, you will not suffer any disadvantages if you do agree to inclusion in the applicant pool.

In no case will we make an exclusively automated decision about a job placement.

Also with respect to the applicant pool, Ray Sono always ensures the secure and confidential treatment of your data and uses appropriate state-of-the-art technical and organisational measures to protect your data in accordance with applicable law.

Data Storage

Your data will be stored at Ray Sono for the above-mentioned purpose until the application process is completed and any legal deadlines in this regard have expired. Ray Sono will anonymise your data immediately after the expiration of these periods, at the latest after 6 months, unless the above-noted provisions regarding the applicant pool apply.

Data Subject Rights

Of course, the previously mentioned data subject rights and complaint options remain open to you. (see above: Your rights as a data subject).

Revocation of your Declaration of Consent

You are entitled to revoke your consent to the use of your personal data at any time. To do so, simply send an e-mail to bewerbung@raysono.com.

Advertising Purposes for Existing Customers (Art. 6 para. 1 lit. f GDPR)

Ray Sono AG is interested in maintaining the customer relationship with you and to send you information and offers about our products / services. We thus process your data so that we can send you relevant information and offers by e-mail.

If you do not want us to do this, you can object at any time to the use of your personal data for the purpose of direct advertising; this also applies to profiling insofar as it relates to direct advertising. If you object to this, we will no longer process your data for this purpose.

You can file an objection free of charge and without a special form. You do not have to provide any reason. You should preferably call us at +49 89 746 46-0, send a written objection to hello@raysono.com or by postal mail to Ray Sono AG, Tumblingerstraße 32, 80337 Munich.

 

Data protection notice on participation in webinars and related recording options/advertising consent (Art. 6 para. 1 lit. a GDPR)

You have the opportunity to participate in our webinars voluntarily. As part of the registration process, we collect personal data such as your title, your first and last name, your e-mail address and your company. To participate in the webinar, you consent to Ray Sono AG storing this data and using it for marketing purposes.

If you have not yet given your consent, this will be done using the double opt-in procedure: After your registration, you will receive a confirmation e-mail asking you to click on a link to confirm that you wish to receive information about future webinars and other events by e-mail.

The webinar will be recorded for marketing purposes of Ray Sono AG. During the webinar, your name and profile picture may be recorded in Chat/F&A. However, in order to protect your privacy, these will be removed when the recordings are processed further.

We strictly adhere to the principle of data minimisation and data avoidance. For technical reasons and for legal protection, your IP address is also processed during the registration process.

You can revoke your consent at any time without giving reasons. You can inform us of your cancellation directly by e-mail to datenschutz@raysono.com or by post to Ray Sono AG, Tumblingerstraße 32, 80337 Munich. With the revocation, the further processing of your personal data also ends.

Cookies (Art. 6 para. 1 lit. a, f GDPR, § 25 para. 1, 2 TDDDG)

Our website uses so-called cookies. They serve to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your end device and saved (locally) by your browser. Cookies only contain pseudonymous, usually even anonymous data. Some cookies remain in place for the duration of a browser session (so-called session cookies), others are stored for longer periods (so-called persistent cookies, e.g. consent settings). The latter are automatically deleted after the specified time (usually 6 months). In addition to our own cookies, we also use cookies that are controlled by third-party providers. These use the information contained in the cookies, e.g. to show you content or to record the pages you have visited.

Due to our legitimate interest (Art. 6 para. 1 lit. f GDPR), we set technically necessary cookies, which are absolutely necessary for the operation of the website and to ensure its functionality. Furthermore, we use cookies without your consent if their sole purpose is to store or access information stored in the terminal device for the transmission of messages or if they are absolutely necessary to provide the service you have expressly requested, § 25 para. 2 TDDDG.

Subject to your consent, other cookies are used to enable us or third parties to analyse how our services are used, for example. This allows us to customise the content according to user needs. Cookies also enable us to measure the effectiveness of a particular advert and to place it, for example, depending on the thematic interests of the user. The legal basis for this is your express consent (Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TDDDG).

You can revoke your consent at any time via our consent banner with effect for the future and change the cookie settings. Please note that changes must be made separately for each end device.

Change your consent via the cookie information

If you have accounts with the third-party providers we use and are logged in there, your data may be linked to the respective account. You can avoid such a combination by not giving or revoking your consent to the cookies in question or by logging out of the respective third-party providers in advance.

Most browsers accept cookies automatically. You can also deactivate, restrict or delete cookies on your end device manually via your browser settings or with the help of software. If you deactivate the setting of cookies, you will not be able to use our website to its full extent or only to a limited extent.

Please also note our information in the section of the respective service that uses cookies.

User Profiles / Web Tracking Methods

Use of Google Analytics

We use the tracking tool Google Analytics from Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA: "Google") on our website. If you are a resident of the European Economic Area or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the data controller responsible for your data that are collected in these procedures.

This tool collects, stores and systematically analyses the interactions of visitors to our website using cookies and JavaScript functions. The following data is collected: anonymised IP address (only three bytes are collected), the website accessed via Google ID, the previously accessed website, time spent on the websites, and the frequency of visits to the websites.

Your data are transmitted to Google and processed there for Google's own purposes. If you have a Google account, Google may also merge the data obtained from Google Analytics tracking. A third-country transfer takes place. Cf.: Third-country transfer/intent to transfer. Based on the GDPR, we have concluded a corresponding order processing agreement with Google.

We use this tool to collect information about the use of our website and, based on this data, to be able to design and optimise our website in line with requirements.

Usage profiles are created from this data across all websites.

The tool is used based on your consent according to Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TDDDG. You can withdraw your consent at any time by clicking here:

The objection is valid only for the device and the web browser on which it was set. Please repeat the process on all devices if desired. If you delete the opt-out cookie, you will be asked again for your consent for data transfer.

Furthermore, you can download a browser add-in for the deactivation of Google Analytics here: https://tools.google.com/dlpage/gaoptout?hl=de . This add-in is provided by Google for popular browser versions.
 

Data Storage Period

The data obtained via this procedure is deleted as soon as it is no longer required for our purposes. In our case, this is the case after 14 months.

Google Tag Manager (GTM)

We use the Google Tag Manager Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google") on our website.

The Tag Manager is used to manage functions of the Google Analytics tracking tool and the Google AdManager advertising service. Initially, the Google Tag Manager also controls your user decision (consent) via the so-called consent mode. This adapts the behaviour of the Google tools to your consent to this processing according to Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TDDDG.

Your user decision is read out via corresponding scripts and cookies.  Unless you have consented to the use of Google Analytics or Google AdManager, the Google Tag Manager prevents the collection by these tools. In doing so, the following data is collected: time stamp, user agent, referring URL, boolean information about consent status, random number generated each time the page loads, information about the consent management platform used by the website owner (e.g. developer ID). For technical reasons, the IP address, device information, browser information and URL are also transmitted to Google when the corresponding script is called up.

Your data will be transmitted to Google. Third-country transmission takes place.

We use the Google Tag Manager to store and implement your consent status and to control our Google tools (Google Analytics and Google AdManager).

The use of Google Tag Manager is based on our legitimate interest according to Art. 6 (1) lit. f GDPR, § 25 para. 1 TDDDG. The data processing is technically necessary to implement your consent for the Google Analytics and Google AdManager tools.

Your personal data is not stored by the Google Tag Manager after the respective session in the context of the consent mode. The Google Analytics and Google AdManager tools controlled by the Google Tag Manager are stored only for the duration of the period you consent to in the respective sections.

Facebook Pixel

Our website also uses the “Facebook Pixel” of Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (“Meta”). With its help, we can track the actions of users after they have seen or clicked on a Facebook ad. This allows us to track the effectiveness of Facebook ads for statistical and market research purposes. The data collected in this way is anonymous to us, which means that we do not see the personal data of individual users. However, this data is stored and processed by Meta, about which we are informing you about our present state of knowledge. According to Facebook's data usage policy, Facebook can associate this data with your Facebook account and use it for its own advertising purposes. You can allow Meta and its partners to place ads on and off Facebook. Furthermore, Facebook may store a cookie on your computer for these purposes.

The use of the Facebook pixel is based on your consent pursuant to Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TDDDG.  You can revoke your consent at any time here:

The data obtained via this procedure is deleted as soon as it is no longer required for our purposes. In our case, this is the case after 180 days.

You can find Facebook's privacy policy at https://www.facebook.com/about/privacy/update

Your deactivation option: https://www.facebook.com/policies/cookies/

YouTube Platform and Google AdManager (formerly Doubleclick)

We embed videos from the YouTube platform on our website. YouTube is operated by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

To embed YouTube videos, we use the technical procedure known as framing. Framing is the process of simply inserting an HTML link provided by YouTube into the code of a website to create a playback frame on a third-party site, which allows the video stored on YouTube servers to be played.

We use the framing codes generated by YouTube in the so-called “extended data protection mode”. According to information on the YouTube platform, the cookie activity and the data collection initiated by it are linked only to usage of the video playback function itself. This prevents any collection of data through the mere use of a website that features framed content.

When you visit the website on which videos from the YouTube platform are embedded, a connection to the YouTube servers is established. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

After activating a YouTube video, further data processing operations may be triggered over which we have no influence.

The use of YouTube is in the interest of an appealing presentation of our online offers. The processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user's end device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time. YouTube videos are deactivated by default and only start when you interact with the video.

You can find more information about data protection at YouTube in their privacy policy at: https://policies.google.com/privacy?hl=en.

 

Google AdManager (formerly Doubleclick)

We use Google Ad Manager, a web advertising service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"), on our website. The tool displays advertisements (text ads, banners, etc.) and stores your interaction with the ads. This is done by cookies, pixels and scripts integrated by Google Inc. The stored information can be recorded, collected, and evaluated by Google Inc. or third parties.

In addition, Google Ad Manager may also use so-called (re)marketing tags (invisible graphics, also known as "web beacons") to collect information. Through their use, for example, visitor traffic on the website can be recorded and evaluated.

The basis for the processing of your personal data is your consent, the legal basis is Art. 6 para. 1 p. 1 lit. a GDPR, § 25 para. 1 TDDDG.

Google Ad Manager processes and stores your data in the USA. Google is obliged by corresponding contractual regulations to comply with the data protection standards and the level of data protection in the EU. Data processing or storage in third countries may also take place based on your consent (Art. 49 para. 1 sentence 1 lit. a GDPR), in which case you will be informed of this separately when obtaining your consent.

Google uses the information obtained in this way to carry out an evaluation of your usage behaviour with regard to the Google Ad Manager ads. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf. If you are registered with a Google service, Google may associate your visit with your account. To prevent this, you must first log out of your Google account.

You can prevent the storage of data by using the plug-ins provided by Google under the following link: https://www.google.com/settings/ads/plugin install.

Details about which data Google makes available to us for evaluation and where this data comes from can be found via the following link: https://support.google.com/analytics/answer/2799357?hl=de#where

Furthermore, you can revoke your consent at any time for the future. To do this, simply open our Consent banner and deselect the corresponding setting. Please note that the change in the Consent Banner settings must be made individually for each end device.

Change your consent via the cookie notices

Google is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA, which is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active

 

Automated Individual Case Decisions

We do not use automated processing to arrive at any decisions.
 

Children and Online Offers

Persons under the age of 16 may not transmit personal data to us or provide a declaration of consent without the consent of their legal guardian. We encourage parents and guardians to actively participate in their children's online activities and interests.
 

Disclaimer

Copyright

The content of these pages has been carefully edited and reviewed. However, Ray Sono AG does not guarantee the timeliness, accuracy, completeness, or quality of the information provided. Liability claims against Ray Sono AG regarding damage caused by using any information provided, including any kind of information which is incomplete or incorrect, will thus be rejected unless it can be proven that Ray Sono AG acted with intent or gross negligence. Ray Sono AG expressly reserves the right to change, supplement, delete, or cease publication of parts or the entire site without prior notice.

Security principles

To protect the data we store about our employees/customers/suppliers from accidental or intentional manipulation, loss, destruction, or access by unauthorised persons, we take appropriate technical and organisational measures. We continuously review these security levels in cooperation with security experts and adapt them to new security standards.
 

Links to other providers

Our website also contains clearly recognisable links to the websites of other companies. We have no influence on the content of other providers’ websites. We can thus assume no warranty or liability for these contents. The respective provider or operator of those websites is always responsible for their content.

At the time of linking, the linked websites were checked for possible legal violations. No illegal content was recognisable at the time the websites were linked. Permanent control of the content of the linked websites, however, cannot be reasonably expected without concrete evidence of a legal violation. If we become aware of any infringements, we will remove such links immediately.
 

Social Media Links

Our website contains links to the social media services of Instagram, LinkedIn, and Kununu. The links to the websites of these social media services can be recognised by their respective company logos. Following one of these links opens Ray Sono AG’s corporate presence on that service. Clicking a link to one of these social media services establishes a connection to the its servers. This communicates to the servers of the social media service the information that you have visited our website. In addition, further data is transferred to the provider of the social media service. These include, for example:

  • The address of the web page on which the activated link is located
  • The date and time the website was accessed or the link was activated
  • Information about the browser and operating system used
  • The IP address
     

If you are already logged in to the corresponding social media service at the time the link is activated, the provider of the social media service may be able to determine your username and possibly even your real name from the transmitted data and connect this information to your personal user account with the social media service. You can prevent the possibility of this information from being connected to your personal user account by previously logging out of your user account.

The servers of the social media services are located in the USA and other countries outside the European Union. The data can therefore also be processed by the social media service provider in countries outside the European Union. Please note that companies in these countries are subject to data protection laws that do not generally protect personal data to the same extent as European Union member states protect this personal data.

Please note that we have no influence on the scope, type, and purpose of the data processing by the provider of these social media services. For more information on the use of your data by the social media services integrated on our website, please refer to the privacy policy of the respective social media service.
 

Notes on Data Protection in Social Media

Ray Sono AG maintains a social media presence on Facebook, Instagram, LinkedIn, Xing, Kununu, and YouTube. To the extent that we can control how your data is processed, we ensure compliance with the applicable data protection regulations.

The following section contains the most important information on data protection law as it relates to our web presences.

Name and Address of the Persons Responsible for the Operation

In addition to Ray Sono AG, the following companies are responsible for the company websites within the meaning of the General Data Protection Regulation (GDPR) and other data protection regulations:

  • Instagram
  • (Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)
  • LinkedIn
    (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland)
  • Kununu
    (New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany)
  • YouTube
    (Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland)
     

However, you yourself are responsible for the use of these platforms and their functions. This particularly applies to the use of interactive functions (e.g. commenting, sharing, rating).

We would also like to point out that your data may be processed outside the European Union. The corresponding contract required under data protection law has been concluded.

Purpose and Legal Basis

We ourselves maintain our fan pages to communicate with page visitors and inform them about our offers.

In addition, we collect data for statistical purposes to further develop and optimise our content and make our offers more attractive. The data we need for this purpose (e.g. total number of page views, page activity and data provided by visitors, interactions) is processed by the social networks and provided to us. We have no influence on the generation and presentation.

In addition, your personal data is processed by social media providers for market research and advertising purposes. It is possible, for example, that usage profiles are created based on your usage behaviour and resulting interests. This can result in the placement of ads matching your interests – both inside and outside the platforms. Cookies are usually stored on your computer for this purpose. Regardless of this, data that is not collected directly on your end devices may also be stored in your usage profiles. The storage and analysis also take place across devices; this applies in particular, but not exclusively, if you are registered as a member and logged in to the respective platforms.

The processing of your personal data by Ray Sono AG is based on our legitimate interests in effective information and communication pursuant to Art. 6 para. 1 lit. f. GDPR.

If you are asked for consent to data processing, i.e. if you declare your consent by confirming a button or similar (opt-in), the legal basis for this processing is Art. 6 para. 1 lit. a., Art. 7 GDPR.

Your Rights / Option to Object

If you are a member of a social network and do not want the network to collect data about you via our presence and link it to your stored membership data with the respective network, you must

  • log out of the respective network before visiting our fan page,
  • delete the cookies present on your device and
  • exit and restart your browser.
     

After logging in again, however, you will once more be recognisable to the network as a specific user.

For a detailed description of the respective processing and the options to object (opt-out), please refer to the information linked below:

Facebook:
Data protection statement: https://www.facebook.com/about/privacy/
Opt-Out: https://www.facebook.com/settings?tab=ads and https://www.youronlinechoices.com

Instagram:
Data protection statement: https://help.instagram.com/519522125107875
Opt-Out: http://www.networkadvertising.org/managing/opt_out.asp and https://www.youronlinechoices.com

LinkedIn:
Data protection statement: https://www.linkedin.com/legal/privacy-policy
Opt-Out: https://www.linkedin.com/legal/cookie-policy and https://www.youronlinechoices.com

Kununu:
Data protection statement: https://privacy.xing.com/de/datenschutzerklaerung
Opt-Out: http://www.youronlinechoices.com

YouTube:
Data protection statement: https://policies.google.com/privacy
Opt-Out: https://tools.google.com/dlpage/gaoptout?hl=de and http://www.youronlinechoices.com

Overall, you are already entitled to the rights described above regarding the processing of your personal data.

However, since Ray Sono AG does not have complete access to your personal data, you should contact the social media providers directly if you wish to assert your rights, as they each access the personal data of their users and can take appropriate measures and provide information.

If you still need help, we would be happy to provide you with support. Please contact hello@raysono.com.
 

Notes on Copyright and Artistic Copyright

If you wish to publish pictures, texts, plans, videos, music, etc. on our website, you should know that you may thereby be assigning all rights of use to the network, which could ultimately have legal consequences for you if you are not the author or hold the rights to these yourself.