Privacy Policy

Agreement for data processing according to Art. 28 GDPR

Declaration on the processing of (personal) data by the website operator (Timly Software AG)

Status: 12.03.2021

 

1. General
This website is provided by Timly Software AG, a company based in Switzerland that develops and offers software. We make this site available to you in order to inform you about how we handle your personal data collected on the site.

 

2. Responsible entity
The responsible body for processing under its own responsibility in the sense of data protection law is:

Timly Software AG
Talstrasse 58
8001 Zürich
Schweiz
Tel.: +41 (0)44 500 35 20

 

3. Access and activity logs (“server logs”)
Every time this site is accessed, general log data, so-called server logs, are automatically recorded. These data are usually pseudonyms and therefore do not allow any conclusions to be drawn about a natural person. Without this data, it would not be technically possible in part to deliver and display the contents of the website. In addition, the processing of this data is absolutely necessary for security reasons, in particular for access, input, transfer and storage control. Furthermore, the anonymous information can be used for statistical purposes as well as for optimising the offer and the technology. In addition, the log files can be subsequently checked and evaluated in the event of suspicion of illegal use of the website.

Data such as the domain name of the website, the web browser and web browser version, the operating system, the IP address and the time stamp of access to the website are generally recorded. The scope of this logging does not exceed the usual scope of any other website on the Internet. The storage period of these access logs is up to 7 days. There is no right of objection.

 

4. Error logs
For the purpose of error identification and correction, so-called error logs are created. This is absolutely necessary in order to be able to react to possible problems in the presentation and implementation of content as promptly as possible (legitimate interest, Art. 6, 1S. 1 lit. F DSGVO). These data are usually pseudonyms and therefore do not allow any conclusions to be drawn about a natural person.

When an error message occurs, general data such as the domain name of the website, the web browser and web browser version, the operating system, the IP address and the timestamp when the corresponding error message/specification occurred are recorded.

The storage period of these error logs is up to 7 days. There is no right of objection.

 

5. Use of cookies
In some cases, so-called cookies are used on the site. These are small text files which are stored on the device with which you access the website. In principle, cookies are used in particular to ensure security when visiting a website (“absolutely necessary”), to implement certain functionalities such as standard language settings (“functional”) or to improve the user experience or performance on the website (“performance”).

Right to object: You can determine yourself via your browser settings whether you want to allow cookies or object to the use of cookies. Please note that disabling cookies may result in limited or completely disabled functionality of the website.

 

6. Use of third-party tools
In order to provide and continuously improve our services, we rely on the services of the following third-party providers, through which personal data may also be processed. We have selected these third party providers carefully and in accordance with the provisions of the GDPR.

A. Google
Unless otherwise stated in this privacy policy, the operator of all Google services mentioned here is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).

Google Tag Manager
The “Google Tag Manager” service is used on this website. The Tag Manager is a tool for managing so-called tags, which are used for tracking in online marketing. The Tag Manager itself does not process any personal data, as it is used purely for the administration of other services – e.g. Google Analytics, etc. Further information on the Tag Manager can be found at google.com.

Google Analytics
The “Google Analytics” service is used on this website. The operator of this service is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States. Google Analytics is a web analysis service and enables us to draw conclusions about user behaviour on our website by setting cookies and the information thus obtained. The information generated by the cookies is sent to a Google server in the USA and stored there.
The use is based on legitimate interests according to Art. 6 para. 1 p. 1 lit. f DSGVO. Our legitimate interest in using this service is that we need to be able to analyse and optimise the use of our website. Google is Privacy Shield certified and in this respect guarantees Swiss and European data protection law.

On our website, the Google Analytics service is used exclusively pseudonymously. Your IP address is only recorded in abbreviated form and thus anonymised.

Google Audiences / Remarketing
We use the “Google Audiences” service on this website. The purpose of this service is the interest-based display of advertisements for users. This requires an analysis of website usage, which is carried out using cookies. The cookies store anonymised or pseudonymised data relating to the use of the website. No personal data is stored. If you visit other websites that also use these services, you will be presented with advertisements that correspond to your previous interests. It cannot be ruled out that your data will be transmitted to the USA in the process.

The use is based on legitimate interests according to Art. 6 para. 1 p. 1 lit. f DSGVO. Our legitimate interest in using this service is to target the users of the website with advertising.

You can find more information at google.com.

Google AdWords
The “Google AdWords” service is used on this website. The purpose of this service is so-called “conversion tracking”, i.e. we can see what has happened after you have clicked on one of our ads. Cookies are set for this purpose, which have a limited validity and do not contain any personal data. A personal identification of the user is therefore not possible.

The use is based on legitimate interests according to Art. 6 para. 1 p. 1 lit. f DSGVO. Our legitimate interest in using this service is to analyse and optimise the operation of our website.

Further information and the Google privacy policy can be found at: https://www.google.de/policies/privacy/.

Doubleclick by Google
The “Doubleclick by Google” service is used on this website. This service uses cookies to show you advertisements that are relevant to you. This is done by means of a pseudonymous identification number (pID), which is assigned to your browser. This pID enables the service to recognise which advertisements have already been displayed to you and which have been called up. The cookies used do not contain any personal data. Rather, the cookies are used to serve advertisements across websites by enabling Google to identify the pages visited. The information generated by the cookies is transferred by Google to a server in the USA for evaluation and stored there. A transfer of data by Google to third parties only takes place on the basis of legal regulations or within the framework of commissioned data processing. Under no circumstances will Google combine your data with other data collected by Google.

By using our website, you consent to the processing of your data by Google in accordance with the description and purposes set out above. You can prevent the use of cookies by making the appropriate settings in your browser. However, such a setting may mean that the website cannot be used without restrictions.

Further information on data protection at Google can be found here: https://policies.google.com/technologies/ads?hl=de

B. YouTube
This website uses the “YouTube” service to embed videos on the site. The operator of the plug-in required for this is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. When you visit a page with embedded YouTube videos / the YouTube plug-in, a connection to YouTube servers is established. This tells YouTube which pages you are visiting.

If you start a video, the operator uses cookies, which collect data on user behaviour.

Further information on data protection at “YouTube” can be found in the operator’s data protection statement at: https://www.google.de/intl/de/policies/privacy/

C. Facebook Custom Audiences
The “Facebook Custom Audiences” service is used on this website. Facebook Custom Audiences is a service of Facebook Inc. (1601 S. California Ave, Palo Alto, CA 94304, USA; hereinafter “Facebook”). This service enables us to target users with interest-based advertising on the Facebook social network.
To make this possible, we have implemented the Facebook Remarketing tag on our website. This tag establishes a direct connection with the Facebook servers when the website is visited. Facebook thereby receives information about the pages you have visited on our website. Facebook then matches this information with your Facebook user account. The next time you visit Facebook, you will then be shown personalised, interest-based advertisements “Facebook Ads”.

This is done on the basis of legitimate interests according to Art. 6 para. 1 p. 1 lit. f DSGVO. Our legitimate interest in using this service is to target the users of the website with advertising. Facebook is Privacy Shield certified: https://www.facebook.com/about/privacyshield

Further information can be found in Facebook’s privacy policy: https://www.facebook.com/about/privacy/

D. BingAds
The “BingAds” service is used on this website. BingAds is a conversion and tracking service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.

Microsoft sets cookies on users’ devices that analyse user behaviour on our website. This assumes that the user has reached our website through a BingAds advertisement. This only provides us with information on the total number of users who have clicked on such an ad. No IP addresses are stored and no personal information about the identity of our users is disclosed.

The use is based on legitimate interests according to Art. 6 para. 1 p. 1 lit. f DSGVO. Our legitimate interest in using this service is that we need to be able to analyse and optimise the use of our website. Microsoft is Privacy Shield certified: https://www.privacyshield.gov/participant?id=a2zt0000000KzNaAAK&status=Active

For more information, please see Microsoft’s privacy policy: https://privacy.microsoft.com/de-de/privacystatement

E. HubSpot
On this website we use HubSpot for our online marketing activities. HubSpot is a software company from the USA with a branch in Ireland. Contact: HubSpot, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland, Telephone: +353 1 5187500.

This is an integrated software solution that we use to cover various aspects of our online marketing. These include:

Email marketing (newsletters as well as automated mailings, e.g. to provide downloads), social media publishing & reporting, reporting (e.g. traffic sources, hits, etc. …), contact management (e.g. user segmentation & CRM), landing pages and contact forms.

Our sign-up service (demo and other contact forms) allows visitors to our website to learn more about our company, download content, and provide their contact information and other demographic information. This information, as well as our website content, is stored on servers operated by our software partner HubSpot. It may be used by us to contact visitors to our website and to determine which of our company’s services are of interest to them. All information we collect is subject to this privacy policy. We use all information collected exclusively to optimise our marketing measures.

The use is based on legitimate interests according to Art. 6 para. 1 p. 1 lit. f DSGVO. Our legitimate interest in the use of this service is the optimisation of our marketing measures and the improvement of our service quality on the website.

HubSpot is certified under the terms of the “EU – U.S. Privacy Shield Framework” and is subject to TRUSTe ‘s Privacy Seal as well as the “U.S. – Swiss Safe Harbor” Framework.

F. LinkedIn
We use the retargeting tool and conversion tracking of LinkedIn Ireland, Wilton Plaza, Wilton Place, Dublin 2, Ireland (“LinkedIn”). For this purpose, the LinkedIn Insight Tag is integrated on our website, which enables LinkedIn to collect statistical, pseudonymous data about your visit and use of our website and to provide us with corresponding aggregated statistics on this basis. As a rule, the following information, among others, is collected: LinkedIn user ID (cookie ID), IP address, metadata of the website visit, such as browser type, website visited.

In addition, this information is used to be able to show you interest-specific and relevant offers and recommendations after you have informed yourself about certain services, information and offers on the website. The relevant information is stored in a cookie.

Further information on data processing can be found in the LinkedIn privacy policy.

 

7. Contact forms
Various forms are used on the website to collect personal data, such as the contact form or registration forms for newsletters, webinars, web demos, events, test accounts or similar. We use the services of HubSpot to process this data. For this purpose, we forward your data to HubSpot, which processes the data exclusively on our behalf. See data protection declaration on “HubSpot” under point 6.

 

8. Data security
On our website, we use the widespread TSL (Transport Layer Security) procedure in conjunction with the highest encryption level supported by your browser. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.

We also use appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.

 

9. Data subjects’ rights
Insofar as personal data is processed by Timly Software AG as the data controller, you as the data subject have certain rights depending on the legal basis and purpose of the processing, in particular the right to information, right to rectification, right to erasure, right to restriction of processing, right to data portability, right to object, right to revocation.

To exercise your data protection rights in relation to the data processed for the operation of this website, please contact us via the contact form on timly.com. Please note that in order to assert your data protection rights arising from processing by us as a processor of our customers, you must contact the controller directly. We reserve the right not to answer corresponding requests or to pass them on to the relevant company.

 

10. Right of appeal
We would like to point out that you have the right to complain to the supervisory authority if you believe that your personal data is not being processed lawfully by us.

 

11. Right of objection
If your personal data is processed on the basis of legitimate interests in accordance with the GDPR, you have the right to object to the processing of your personal data in accordance with Article 21 GDPR, provided there are reasons for this, which arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which we will implement without specifying a particular situation.

If you would like to exercise your right to object, an email to contact@timly.com or by contacting us at the contact address mentioned in section 2 is sufficient.

 

12. Final provisions
Timly Software AG reserves the right to adapt this data protection declaration at any time so that it always complies with the current legal requirements or in order to implement changes to the services in the data protection declaration, e.g. when introducing new services or changes to the website. The new data protection declaration will then apply for a renewed call-up of this website / software.