Privacy Policy
We are very delighted that you have shown interest in our enterprise. Data protection is a particularly high priority for the management of the Mercury.ai GmbH. The use of the Internet pages of the Mercury.ai GmbH is possible without any indication of personal data; however, if a data subject wants to use special enterprise services via our website, processing of personal data could become necessary. If the processing of personal data is necessary and there is no statutory basis for such processing, we generally obtain consent from the data subject.
The processing of personal data, such as the name, company, e-mail address, or telephone number of a data subject shall always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regulations applicable to the Mercury.ai GmbH. By means of this data protection declaration, our enterprise would like to inform the general public of the nature, scope, and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed, by means of this data protection declaration, of the rights to which they are entitled.
As the controller, the Mercury.ai Gmbh has implemented numerous technical and organizational measures to ensure the most complete protection of personal data processed through this website. However, Internet-based data transmissions may in principle have security gaps, so absolute protection may not be guaranteed. For this reason, every data subject is free to transfer personal data to us via alternative means, e.g. by telephone.
Each data subject shall have the right granted by the European legislator to obtain from the controller free information about his or her personal data stored at any time and a copy of this information. Furthermore, the European directives and regulations grant the data subject access to the following information:
Each data subject shall have the right granted by the European legislator to obtain from the controller the erasure of personal data concerning him or her without undue delay, and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies, as long as the processing is not necessary:
Each data subject shall have the right granted by the European legislator to object, on grounds relating to his or her particular situation, at any time, to processing of personal data concerning him or her, which is based on point (e) or (f) of Article 6(1) of the GDPR. This also applies to profiling based on these provisions.
Mercury.ai shall no longer process the personal data in the event of the objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defence of legal claims.
If the Mercury.ai processes personal data for direct marketing purposes, the data subject shall have the right to object at any time to processing of personal data concerning him or her for such marketing. This applies to profiling to the extent that it is related to such direct marketing. If the data subject objects to Mercury.ai to the processing for direct marketing purposes, the Mercury.ai will no longer process the personal data for these purposes.
In addition, the data subject has the right, on grounds relating to his or her particular situation, to object to processing of personal data concerning him or her by the Mercury.ai for scientific or historical research purposes, or for statistical purposes pursuant to Article 89(1) of the GDPR, unless the processing is necessary for the performance of a task carried out for reasons of public interest. In order to exercise the right to object, the data subject may contact any employee of Mercury.ai. In addition, the data subject is free in the context of the use of information society services, and notwithstanding Directive 2002/58/EC, to use his or her right to object by automated means using technical specifications.
The data controller shall process and store the personal data of the data subject only for the period necessary to achieve the purpose of storage, or as far as this is granted by the European legislator or other legislators in laws or regulations to which the controller is subject to.
If the storage purpose is not applicable, or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data are routinely blocked or erased in accordance with legal requirements.
Each data subject shall have the right granted by the European legislator to obtain from the controller restriction of processing where one of the following applies:
Each data subject shall have the right granted by the European legislator, to receive the personal data concerning him or her, which was provided to a controller, in a structured, commonly used and machine-readable format. He or she shall have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, as long as the processing is based on consent pursuant to point (a) of Article 6(1) of the GDPR or point (a) of Article 9(2) of the GDPR, or on a contract pursuant to point (b) of Article 6(1) of the GDPR, and the processing is carried out by automated means, as long as the processing is not necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
Furthermore, in exercising his or her right to data portability pursuant to Article 20(1) of the GDPR, the data subject shall have the right to have personal data transmitted directly from one controller to another, where technically feasible and when doing so does not adversely affect the rights and freedoms of others. In order to assert the right to data portability, the data subject may at any time contact any employee of Mercury.ai.
Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member states of the European Union and other provisions related to data protection is:
Mercury.ai GmbH
Alfred-Bozi-Str. 18
33602 Bielefeld
Deutschland
Phone: +49 521 963 77654
Email: hi/at/mercury.ai
Website: https://mercury.ai
The Data Protection Officer of the controller is:
Dr. Christian Rauda
GRAEF Rechtsanwälte
Jungfrauenthal 8
20149 Hamburg
Deutschland
Phone: +494080600090
E-Mail: privacy@mercury.ai
Website: www.graef.eu
Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
Postfach 20 04 44
40102 Düsseldorf
Phone: 0211/38424-0
E-Mail: poststelle@ldi.nrw.de
Website: https://www.ldi.nrw.de/metanavi_Kontakt/index.php
Any person concerned can contact our data protection officer or the data protection complaints office at any time with any questions or suggestions regarding data protection.
The Internet pages of the Mercury.ai GmbH use cookies. Cookies are text files that are stored in a computer system via an Internet browser. Many Internet sites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a character string through which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This allows visited Internet sites and servers to differentiate the individual browser of the dats subject from other Internet browsers that contain other cookies. A specific Internet browser can be recognized and identified using the unique cookie ID. Through the use of cookies, the Mercury.ai GmbH can provide the users of this website with more user-friendly services that would not be possible without the cookie setting.
By means of a cookie, the information and offers on our website can be optimized with the user in mind. Cookies allow us, as previously mentioned, to recognize our website users. The purpose of this recognition is to make it easier for users to utilize our website. The website user that uses cookies, e.g. does not have to enter access data each time the website is accessed, because this is taken over by the website, and the cookie is thus stored on the user's computer system. Another example is the cookie of a shopping cart in an online shop. The online store remembers the articles that a customer has placed in the virtual shopping cart via a cookie.
The data subject may, at any time, prevent the setting of cookies through our website by means of a corresponding setting of the Internet browser used, and may thus permanently deny the setting of cookies. Furthermore, already set cookies may be deleted at any time via an Internet browser or other software programs. This is possible in all popular Internet browsers. If the data subject deactivates the setting of cookies in the Internet browser used, not all functions of our website may be entirely usable.
The website of the Mercury.ai GmbH collects a series of general data and information when a data subject or automated system calls up the website. This general data and information are stored in the server log files. Collected may be
When using these general data and information, the Mercury.ai GmbH does not draw any conclusions about the data subject. Rather, this information is needed to
Therefore, the Mercury.ai GmbH analyzes anonymously collected data and information statistically, with the aim of increasing the data protection and data security of our enterprise, and to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by a data subject.
The website of the Mercury.ai GmbH contains information that enables a quick electronic contact to our enterprise, as well as direct communication with us, which also includes name, family name, phone number, company and a general address of the so-called electronic mail (e-mail address). If a data subject contacts the controller by e-mail or via a contact form, the personal data transmitted by the data subject are automatically stored. Such personal data transmitted on a voluntary basis by a data subject to the data controller are stored for the purpose of processing or contacting the data subject. There is no transfer of this personal data to third parties.
The data controller shall collect and process the personal data of applicants for the purpose of the processing of the application procedure. The processing may also be carried out electronically. This is the case, in particular, if an applicant submits corresponding application documents by e-mail or by means of a web form on the website to the controller. If the data controller concludes an employment contract with an applicant, the submitted data will be stored for the purpose of processing the employment relationship in compliance with legal requirements. If no employment contract is concluded with the applicant by the controller, the application documents shall be automatically erased two months after notification of the refusal decision, provided that no other legitimate interests of the controller are opposed to the erasure. Other legitimate interest in this relation is, e.g. a burden of proof in a procedure under the General Equal Treatment Act (AGG).
We use a Content Delivery Network (CDN) offered by Amazon Web Services, Inc. 410 Terry Avenue North, Seattle WA 98109, United States. CloudFront is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law. A CDN is a service with the help of which contents of our online offer, in particular large media files, such as graphics or scripts, are delivered faster with the help of regionally distributed servers connected via the Internet. The processing of user data is carried out solely for the aforementioned ticks and to maintain the security and functionality of the CDN. The use is based on our legitimate interests, i.e. interest in a secure and efficient provision, analysis and optimisation of our online offer in accordance with Art. 6 para. 1 lit. f. DSGVO. For more information, please see CloudFront's privacy policy: https://aws.amazon.com/compliance/gdpr-center.
Calendly is an online scheduling tool that streamlines appointment booking and meeting organization. The company is headquartered at 3423 Piedmont Rd NE, Atlanta, GA 30305, USA. Calendly simplifies the scheduling process by allowing users to set their availability preferences and share personalized scheduling links. Calendly is committed to ensuring the security and privacy of user data in compliance with GDPR: https://calendly.com/pages/privacy.
Facebook is a social media platform owned by Facebook Inc. The company is headquartered at 1601 Willow Rd, Menlo Park, CA 94025, USA. Facebook allows users to connect, share content, and engage with various online communities. Facebook is dedicated to maintaining user data privacy and security in compliance with GDPR: https://www.facebook.com/about/privacy.
Data protection regulations on the use and application of Google Analytics Google Analytics is a web analytics service provided by Google LLC, headquartered at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The service helps businesses analyze user behavior, engagement, and traffic on their websites and applications. Google Analytics complies with GDPR to ensure user data privacy and security: https://policies.google.com/privacy.
Google Tag Manager is a tag management system provided by Google LLC, headquartered at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The service enables businesses to manage and deploy tracking codes and marketing tags on their websites and applications without needing to modify code. Google Tag Manager adheres to GDPR guidelines to ensure data privacy and security: https://policies.google.com/privacy.
Inxmail is an email marketing service provider that specializes in creating, managing, and sending email campaigns. The company is headquartered at Wentzingerstrasse 17, 79106 Freiburg, Germany. Inxmail offers a variety of tools for designing, personalizing, and tracking email marketing campaigns. Inxmail adheres to GDPR guidelines to ensure the privacy and security of customer data: https://www.inxmail.com/data-privacy.
LinkedIn is a professional networking platform owned by Microsoft Corporation. The platform's headquarters are located at 1000 W Maude Ave, Sunnyvale, CA 94085, USA. LinkedIn enables users to connect, share content, and discover job opportunities with other professionals worldwide. LinkedIn is dedicated to maintaining the privacy and protection of user data in line with GDPR requirements: https://www.linkedin.com/legal/privacy-policy.
Mailchimp is an all-in-one marketing platform that provides tools for businesses to create, manage, and analyze email marketing campaigns. The company is headquartered at 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA. Mailchimp offers services such as email design, automation, and reporting. Mailchimp is committed to GDPR compliance and ensuring user data privacy and security: https://mailchimp.com/legal/privacy/.
Microsoft Teams is a communication and collaboration platform developed by Microsoft Corporation. The platform is part of the Microsoft 365 suite and is headquartered at One Microsoft Way, Redmond, WA 98052, USA. Microsoft Teams enables users to chat, meet, call, and collaborate in a single workspace. Microsoft is committed to GDPR compliance and ensuring user data privacy and security within Microsoft Teams: https://privacy.microsoft.com/en-us/privacystatement.
Mixpanel is an advanced analytics platform that helps businesses understand user behavior and engagement with their digital products. The company is headquartered at 405 Howard St, San Francisco, CA 94105, USA. Mixpanel allows businesses to collect, analyze, and visualize user data to optimize product experiences. Mixpanel is committed to ensuring user data privacy and security in accordance with GDPR: https://mixpanel.com/legal/privacy-policy/.
Salesforce.com is a provider of cloud computing solutions for businesses. Headquartered in 1 Market St #300, San Francisco, CA 94105, USA, the company is a provider of Software as a Service and Platform as a Service and specializes primarily in Customer Relationship Management (CRM) for companies of all sizes. Salesforce sees the DSGVO as an important step towards harmonizing data protection requirements across the EU and as an opportunity for Salesforce to further strengthen its commitment to data protection: https://www.salesforce.com/de/campaign/gdpr.
WhatsApp is a cross-platform messaging and Voice over IP (VoIP) service owned by Facebook Inc. The company's headquarters are located at 1601 Willow Rd, Menlo Park, CA 94025, USA. WhatsApp allows users to send text messages, voice messages, photos, videos, and make voice and video calls. WhatsApp is committed to GDPR compliance and ensuring user data privacy and security: https://www.whatsapp.com/legal/updates/privacy-policy/.
Zoom Video Communications, Inc. is a provider of video conferencing and remote collaboration tools. The company is headquartered at 55 Almaden Blvd, 6th Floor, San Jose, CA 95113, USA. Zoom offers services such as video meetings, webinars, and chat for businesses, educational institutions, and individuals. Zoom is dedicated to GDPR compliance and upholding user data privacy and security: https://zoom.us/privacy.