Privacy policy

Website data protection statement and information for data subjects pursuant to Article 13 and Article 14 of the EU General Data Protection Regulation

A. General Information

Information about the controller

Company:

Celonis SE

Legal representative:

Mr. Bastian Nominacher, Mr. Alexander Rinke

Address:

Theresienstr. 6, 80333 Munich, Germany

Contact details for data protection officer:

Dr. Sebastian Kraska, skraska@ittr.de

B. General data processing information

Affected data:

Personal data is only collected if you communicate it to us yourself. Apart from that, no personal data is collected. Any processing of your personal data that goes beyond the scope of the statutory permission is only possible on the basis of your express consent.

Processing purpose:

Contract execution.

Categories of recipients:

  • Public authorities in the event of priority legislation.

  • External service providers or other contractors.

  • Other external bodies in so far as the data subject has given his consent or a transmission is permitted due to a prevailing interest.

Third-country transfers:

As part of contractual execution, processors could also be used outside the European Union.

Duration of data storage:

The duration of data storage depends on the statutory storage requirements and is usually 10 years.

C. Specific information about the website

Use of a newsletter

When registering for our newsletter, you provide us with your email address and, where applicable, other contact information. We use these data solely for the purpose of sending you the newsletter. We retain the data that you disclose in your newsletter application until you cancel your subscription to our newsletter. You can unsubscribe at any time via the link in the newsletter intended for this purpose, or by sending us the appropriate notification. By unsubscribing, you revoke the use of your email address.

My.Celonis

When registering for the my.celonis space through our website, you will provide us with your email address, name and other related contact information. We use this data to open and manage your account and related permissions on the my.celonis space. You can delete your account on the my.celonis space at any time by providing us with an appropriate notification. We will delete your my.celonis account including any of your data stored in the account upon receipt of such notification.

We also use your email address, which we receive in connection with the sale of a product or service, and in relation to your registration on my.celonis, exclusively for direct advertising in the form of our newsletter for products or services that we sell that are similar to the ones you ordered, and for user questionnaires, provided that you have not objected to having your email used in this way. You may object to the use of your email address at any time without incurring any costs other than the transmission costs according to the basic rates. Your objection (and thus the cancellation of our newsletter) can be communicated by sending the appropriate message to our email address (see the Legal Notice).

Use of Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc. (โ€œGoogleโ€). Google Analytics uses so-called โ€œcookies,โ€ text files that are stored on your computer and that allow an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the US and stored there. However, in the event IP anonymization is activated on this website, your IP address will be shortened beforehand by Google within member states of the European Union or in other signatory states to the Treaty on the European Economic Area. The full IP address will be transmitted to a Google server in the USA and shortened there only on an exceptional basis. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators, and providing other services to website operators relating to website activity and Internet usage. Google will not associate the IP address transmitted under Google Analytics by your browser with other data held by Google. You may prevent the storage of cookies by selecting the appropriate settings on your browser software; however, we should inform you in this case that you might not be able to enjoy all of the functionality of this website to its full extent. You may additionally prevent the recording of the data (including your IP address) to Google that is generated by the cookie and that pertains to your use of the website, or the processing of these data, by downloading and installing the following browser plug-in available through the following link: https://tools.google.com/dlpage/gaoptout?hl=en. In view of the discussion about the use of analytics tools with full IP addresses, we would like to point out that this website uses Google Analytics with the extension โ€œ_anonymizeIp()โ€ which means that IP addresses are used only in a shortened form in order to prevent any direct correlation to specific persons. For browsers on mobile devices, please click this link to, in future, prevent anonymous tracking by Google Analytics and to activate a so-called โ€œopt-out cookieโ€ for your browser.

Google AdWords Conversion Tracking

This website uses Google AdWords Conversion Tracking, a web analytics service provided by Google Inc. (โ€œGoogleโ€). Google AdWords Conversion Tracking also uses โ€œcookiesโ€ stored on your computer that allow analysis of your use of the website. The information generated by the cookie about your use of this website is transmitted to a Google server in the US and stored there. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators, and providing other services related to website activity and internet usage. Google may also transfer this information to third parties if required by law or in so far as third parties process this data on behalf of Google. Google will in no case connect the data with other data from Google. You can generally prevent the use of cookies by prohibiting the storage of cookies in your browser.

Facebook

Our online presence uses the โ€œFacebook Pixelโ€ developed by Facebook, Inc. (1601 S. California Ave, Palo Alto, CA 94304, USA). This feature makes it possible to track the behavior of users who have clicked on a Facebook ad and been directed to the website of the provider in question. The effectiveness of Facebook ads can then be assessed for statistical and market research purposes, which in turn can help optimize future advertising measures. The data we obtain through this process is anonymous, meaning it gives us no means of tracing the identity of any user. This information is stored and processed by Facebook on servers in Princeville, Oregon (USA), in order to facilitate a connection to each userโ€™s profile. Facebook can then use the data for its own advertising purposes in line with its data usage guidelines (https://www.facebook.com/about/privacy/). As a result, Facebook and its partners can insert ads both on and outside of Facebook. A cookie may also be stored on your computer for these purposes. In your browserโ€™s settings, you can allow or deny cookies as a general rule. Please note, however, that doing so may prevent you from enjoying the full functionality of this website.

Salesforce Pardot

Our website uses Pardot Services, an analysis tool of salesforce.com, Inc., The Landmark @ One Market Street, San Francisco, CA 94105, USA. Pardot Services only set a maximum of three (3) cookies which are stored on your computer and enable analysis of your website usage (โ€žVisitor Cookieโ€œ, โ€žOpt-In Cookieโ€œ and โ€žPardot App Session Cookieโ€œ). The Visitor Cookie generates an identification number which serves to re-identify the website visitor. The identification number is a numeric code which has no meaning outside Pardot Services. The Opt-in Cookie ensures that visitors who have opted for the โ€œdo not trackโ€ option are not applied with a Visitor Cookie. The Pardot App Session Cookie is only placed if a customer is logging onto the Pardot App as a user. All cookies only contain the generated numeric code, personal data are not collected. If you would like to avoid tracking by Pardot, you can ensure this by adjusting your browser settings or through a respective extension of your browser. Data collected though the Pardot Services are not used to identify individuals. None of the identification numbers are matched against other personal information. For further information about data privacy on Salesforce, please visit: https://www.salesforce.com/company/privacy/

Use of our own โ€œcookiesโ€

This website uses its own โ€œcookiesโ€ to increase user-friendliness (โ€œcookiesโ€ are text files sent by the web server to the userโ€™s browser and stored there for later retrieval). Our own โ€œcookiesโ€ never store any personal information. You can prevent the use of โ€œcookiesโ€ in general if you set your browser to disallow the storage of โ€œcookies.โ€

D. Information about other data processing procedures

Specific information about the application process

Affected data:

Application information

Processing Purpose:

Implementation of application process

Categories of recipients:

Public authorities in the event of priority legislation.

External service providers or other contractors.

Other external bodies in so far as the data subject has given his consent or a transmission is permitted due to a prevailing interest.

Third-country transfers:

As part of contractual execution, processors could also be used outside the European Union.

Duration of data storage:

Application data will generally be deleted within four months after communication of the decision, unless consent has been given for a longer period of data storage.

Specific information for the processing of customer data/prospective partiesโ€™ data

Affected data:

Data communicated for contract execution; if necessary, additional data for processing on the basis of your express consent.

Processing Purpose:

Contract execution.

Categories of recipients:

Public authorities in the event of priority legislation.

External service providers or other contractors.

Other external bodies in so far as the data subject has given his consent or a transmission is permitted due to a prevailing interest.

Third-country transfers:

As part of contractual execution, processors could also be used outside the European Union.

Duration of data storage:

The duration of data storage depends on the statutory storage requirements and is usually 10 years.

Specific information on the processing of employee data

Affected data:

Data communicated for contract execution; if necessary, additional data for processing on the basis of your express consent.

Processing Purpose:

Contract execution.

Categories of recipients:

Public authorities in the event of priority legislation.

External service providers or other contractors.

Other external bodies in so far as the data subject has given his consent or a transmission is permitted due to a prevailing interest.

Third-country transfers:

As part of contractual execution, processors could also be used outside the European Union.

Duration of data storage:

The duration of data storage depends on the statutory storage requirements and is usually 10 years.

Specific information for the processing of supplier data

Affected data:

Data communicated for contract execution; if necessary, additional data for processing on the basis of your express consent.

Processing Purpose:

Contract execution.

Categories of recipients:

Public authorities in the event of priority legislation.

External service providers or other contractors.

Other external bodies in so far as the data subject has given his consent or a transmission is permitted due to a prevailing interest.

Third-country transfers:

As part of contractual execution, processors could also be used outside the European Union.

Duration of data storage:

The duration of data storage depends on the statutory storage requirements and is usually 10 years.

E. Further information and contact

In addition, you may invoke your rights to correction or deletion at any time, to restrict processing, to object to processing, and to data portability. Here you will find the option to contact us by email or letter: https://www.celonis.com/legal/. You also have the right to contact the data protection supervisory authority for complaints.