Privacy Policy

Last updated: March 21, 2024

1 - Introduction

Tälist UG is committed to protecting the confidentiality of information and privacy of our candidates, clients, and other users of our websites and services.

All organizations that process personal data are required to comply with data protection legislation. This includes, in particular, the Data Protection Act 1998 (or its successor) and the EU General Data Protection Regulation (together with the 'Data Protection Laws'). The Data Protection Laws give individuals (known as 'data subjects') certain rights over their personal data whilst imposing certain obligations on the organizations that process their data.

Tälist considers your right to privacy and the careful handling of your personal data to be extremely important. We make every effort to ensure that the information you provide us with remains private and is only used strictly in accordance with the policy detailed below.

This page provides details regarding Tälist's Privacy Policy and the measures taken to ensure that your personal information is managed with due care and attention. With the following information, we would like to give you, as a ‘data subject’, an overview of the processing of your personal data by us and your rights under data protection laws.

The processing of personal data, such as your name, address, or e-mail address, is always in line with the German Data Protection Regulation (Datenschutz-Grundverordnung - DS-GVO), and in accordance with the country-specific data protection regulations applicable to the "Tälist UG (haftungsbeschränkt)". By means of this privacy policy, we would like to inform you about the scope and purpose of the personal data we collect, use, and process.

As the controller, we have implemented numerous technical and organizational measures to ensure the most complete protection of personal data processed through this website. Nevertheless, Internet-based data transmissions can generally have security gaps, so absolute protection cannot be guaranteed. For this reason, you are also free to transmit personal data to us by alternative means, for example, by telephone or by mail.

Please note that the policy will be reviewed from time to time to take into account new laws and technology, changes to our operations and practices, and to make sure it remains appropriate to the changing environment. Any information we hold will be governed by the most current version of the Tälist Privacy Policy.

2 - Name and address of the responsible person

The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the member states, as well as other data protection provisions, is the:

Tälist UG (haftungsbeschränkt) (limited liability)
Lohmühlenstr. 65
12435 Berlin, Germany

E-mail: product@talist.org
Website: https://talist.org/
Contact form: https://talist.org/contact-us

3 - General information on data processing

3.1 - Scope of the processing of personal data

We are the sole or joint controller for the sites mentioned in the scope section, as controller we process the personal data of our users only insofar as this is necessary for the provision of a functional website and our content and services. We only process for the purposes communicated to you and or mandated by law. The processing of the personal data of our users is regularly only carried out with the consent of the user, performance of contracts, for safety reasons or legitimate interests. An exception applies in those cases where obtaining prior consent is not possible for actual reasons and the processing of the data is permitted by other legal bases. This applies the domains talist.org, altprotein.jobs and our Linkedin presence.

3.2 - Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for processing operations involving personal data, Art. 6 (1) lit. a of the EU General Data Protection Regulation (GDPR) serves as the legal basis.

When processing personal data that is necessary for the performance of a contract to which the data subject is a party (i.e. the TOU or any other contract between the data subject and Tälist), Art. 6 (1) lit. b DSGVO serves as the legal basis.

This also applies to processing operations that are necessary for the performance of pre-contractual measures. Insofar as the processing of personal data is necessary for the fulfillment of a legal obligation to which our company is subject, Art. 6 (1) lit. c DSGVO serves as the legal basis. In the event that the vital interests of the data subject or another natural person make it necessary to process personal data, Art. 6 (1) lit. d DSGVO serves as the legal basis. If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights, and freedoms of the data subject do not override the former interest, Art. 6 (1) lit. f DSGVO serves as the legal basis for the processing.

3.3 - Data deletion and storage duration

The personal data of the data subject shall be deleted or blocked as soon as the purpose of the storage no longer applies. Storage may also take place if this has been provided for by the European or national legislator in Union regulations, laws, or other provisions to which the controller is subject. Data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires unless there is a need for further storage of the data for the conclusion or performance of a contract.

4 - Overview of your rights under GDPR

If your are in the European Economic Area and your personal data is processed, you are a data subject within the meaning of the GDPR, and you have the following rights vis-à-vis the controller.

4.1 - What is personal data?

Personal data means any information relating to an identified or identifiable natural person (data subject). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, telephone number, postal address, e-mail address, identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

In order to carry out our business as a talent solutions company, Tälist may collect your personal information from you, including but not limited to your name, contact details, qualifications, work history, your right to work in a particular country, language skills, professional qualifications, your work objectives and other information from your CV. If you are to be considered for a particular position, we may also collect references from your nominated referees.

4.2 - Right to information

You may request confirmation from the controller as to whether personal data concerning you is being processed by us.

If there is such processing, you may request information from the controller about the following:

(1) the purposes for which the personal data are processed;

(2) the categories of personal data which are processed;

(3) the recipients or categories of recipients to whom the personal data concerning you have been or will be disclosed;

(4) the planned duration of the storage of the personal data concerning you or, if concrete information on this is not possible, criteria for determining the storage duration;

(5) the existence of a right to rectification or erasure of personal data concerning you, a right to restriction of processing by the controller or a right to object to such processing;

(6) the existence of a right of appeal to a supervisory authority;

(7) any available information on the origin of the data, if the personal data are not collected from the data subject;

(8) the existence of automated decision-making, including profiling, pursuant to Article 22(1) and (4) of the GDPR and, at least in these cases, meaningful information about the logic involved and the scope and intended effects of such processing for the data subject.

You have the right to request information about whether the personal data concerning you is transferred to a third country or to an international organization. In this context, you may request to be informed about the appropriate safeguards pursuant to Art. 46 DSGVO in connection with the transfer.

4.3 - Right to rectification

This right of access may be restricted to the extent that it is likely to render you have a right to rectification and/or completion vis-à-vis the controller, insofar as the impossible or seriously impair the achievement of the research or statistical purposes processed personal data concerning you are inaccurate or incomplete. The controller shall, and the restriction is necessary for the fulfillment of the research or statistical carry out the rectification without undue delay purposes.

4.4 - Right to restriction of processing

Under the following conditions, you may request the restriction of the processing of personal impossible or seriously impair the achievement of the research or statistical purposes data concerning you:

(1) if you contest the accuracy of the personal data concerning you for a period enabling the controller to verify the accuracy of the personal data;

(2) the processing is unlawful, and you object to the erasure of the personal data and request the restriction of the use of the personal data instead;

(3) the controller no longer needs the personal data for the purposes of the processing, but you need them for the assertion, exercise or defense of legal claims, or

(4) if you have objected to the processing pursuant to Art. 21 (1) DSGVO and it has not yet been determined whether the legitimate grounds of the controller outweigh your grounds.

Where the processing of personal data concerning you has been restricted, such data may be processed, with the exception of their storage, only with your consent or for the establishment, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or a Member State.

If the restriction of processing has been restricted in accordance with the above conditions, you will be informed by the controller before the restriction is lifted.

4.5 - Right to deletion

Your have the right to restrict processing however there might be limitations by our or others rights and obligations.

Obligation to delete

In the context of our candidate/job matching platform, the obligation to delete pertains to the removal of personal data when no longer necessary or lawful to retain, in compliance with applicable data protection laws.

Tälist is committed to maintaining the confidentiality and security of personal data of its users, and will delete such data without undue delay if any of the following conditions are met:

(1) The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.

(2) You revoke your consent on which the processing was based pursuant to Art. 6 (1) a or Art. 9 (2) a DSGVO, and there is no other legal basis for the processing.

(3) You object to the processing pursuant to Art. 21 (1) DSGVO, and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21 (2) DSGVO.

(4) The personal data concerning you have been processed unlawfully.

(5) The deletion of the personal data concerning you is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.

(6) The personal data concerning you was collected in relation to information society services offered pursuant to Art. 8 (1) DSGVO.

Information to third parties

If the controller has made the personal data concerning you public and is obliged to erase it pursuant to Article 17(1) of the GDPR, it shall take reasonable measures, including technical measures, having regard to the available technology and the cost of implementation, to inform data controllers which process the personal data that you, as the data subject, have requested that they erase all links to or copies or replications of such personal data.

Exceptions

The right to erasure does not exist insofar as the processing is necessary to:

(1) to exercise the right to freedom of expression and information;

(2) for compliance with a legal obligation that requires processing under Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;

(3) for reasons of public interest in the area of public health pursuant to Art. 9(2)(h) and (i) and Art. 9(3) DSGVO;

(4) for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes pursuant to Article 89(1) of the GDPR, insofar as the right referred to in Section a) is likely to render impossible or seriously prejudice the achievement of the purposes of such processing, or

(5) for the assertion, exercise or defense of legal claims.

4.6 - Right to information

If you have asserted the right to rectification, erasure, or restriction of processing against the controller, the controller is obliged to notify all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.

You have the right to be informed about these recipients by the data controller.

4.7 - Right to data portability

You have the right to receive the personal data concerning you that you have provided to the controller in a structured, commonly used, and machine-readable format. You also have the right to transfer this data to another controller without hindrance from the controller to whom the personal data was provided, provided that

(1) the processing is based on consent pursuant to Art. 6 (1) a DSGVO or Art. 9 (2) a DSGVO or on a contract pursuant to Art. 6 (1) b DSGVO and

(2) the processing is carried out with the help of automated procedures. In exercising this right, you also have the right to have the personal data concerning you transferred directly from one controller to another controller insofar as this is technically feasible. The freedoms and rights of other persons must not be affected by this.

The right to data portability does not apply to the processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

4.8 - Right of objection

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data relating to you, which is carried out on the basis of Article 6 (1) (e) or (f) DSGVO; this also applies to profiling based on these provisions.

The controller shall no longer process the personal data concerning you unless it can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or for the establishment, exercise, or defense of legal claims.

If the personal data concerning you is processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; this also applies to profiling, insofar as it is related to such direct marketing.

If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for these purposes.

You have the possibility, in connection with the use of information society services, notwithstanding Directive 2002/58/EC, to exercise your right to object by means of automated procedures using technical specifications.

At data processing for scientific, historical, or statistical research purposes:

- You also have the right to object, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out for scientific or historical research purposes or for statistical purposes pursuant to Article 89(1) DSGVO.

- Your right to object may be limited to the extent that it is likely to render impossible or seriously impair the realization of the research or statistical purposes, and the limitation is necessary for the fulfillment of the research or statistical purposes.

4.9 - Right to revoke the declaration of consent under data protection law

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

4.10 - Automated decision in individual cases, including profiling

You have the right not to be subject to a decision based solely on automated processing - including profiling - which produces legal effects concerning you or similarly significantly affects you.

This does not apply if the decision

(1) is necessary for the conclusion or fulfillment of a contract between you and the responsible party,

(2) is permitted by the legislation of the Union or the Member States to which the controller is subject and that legislation contains appropriate measures to safeguard your rights and freedoms and your legitimate interests, or

(3) is done with your express consent.

However, these decisions may not be based on special categories of personal data pursuant to Article 9(1) of the GDPR unless Article 9(2)(a) or (g) of the GDPR applies and appropriate measures have been taken to protect the rights and freedoms and your legitimate interests.

With regard to the cases referred to in (1) and (3), the controller shall take reasonable steps to safeguard the rights and freedoms of, and the legitimate interests of, the data subject, which shall include, at least, the right to obtain the intervention of a person on the part of the controller, to express his or her point of view and to contest the decision.

4.11 - Right to complain to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority (contact details for Tälists authority at end of page), in particular in the Member State of your residence, workplace, or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.

The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.

4.12 - Enforcement of rights

All requests regarding individual rights should be sent to the person whose details are listed at the bottom of this policy webpage. Tälist shall act upon any data subject access request or any request relating to rectification, erasure, restriction, data portability or objection, or automated decision-making processes or profiling within one month of receipt of the request. Tälist may extend this period for two further months where necessary, taking into account the complexity and the number of requests.

Where Tälist considers that a request is manifestly unfounded or excessive due to the request's repetitive nature, then we may either refuse to act upon the request or may charge a reasonable fee, taking into account the administrative costs involved.

Routine storage, deletion, and blocking of personal data

We process and store your personal data only for the period of time required to achieve the purpose of storage or if this has been provided for by the legal provisions to which our company is subject.

If the storage purpose ceases to apply or if a prescribed storage period expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.

4.13 - Duration of the storage of personal data

The criterion for the duration of storage of personal data is the respective statutory retention period. After the expiry of the period, the corresponding data is routinely deleted, provided that it is no longer required for the fulfillment or initiation of the contract.

5 - Tälist as data controller

In accordance with the GDPR Article 4(7), Tälist is designated as the Data Controller for the platforms under its operation. This designation signifies that Tälist holds the principal responsibility for determining the purposes and means of processing personal data collected through its services. We implement stringent measures to ensure lawful processing, transparency, data accuracy, and security, aligning our practices with GDPR mandates. We remain committed to upholding user rights and privacy, diligently managing personal information and ensuring its protection throughout our processing activities.

5.1 - How does Tälist collect your data?

In most cases, Tälist collects personal data directly from you by telephone, email, form, or via our website. For example, data will be collected from you when you:

- supply a CV or application form

- fill out and submit a registration form

- subscribe to a mailing list

- sign up for an event

- register for a video conference call

- apply to a job posting on our website

- submit any other information in connection with your application for registration

- submit any other information in connection with our talent solutions services

To the extent that you access our website or read or click on an email from us, we may also collect certain data automatically or through you providing it to us, such as a browser cookie.

5.2 - Purpose of use

Tälist might collect the categories of personal information and will use your personal information for the purposes set out below in compliance with the EU General Data Protection Regulation (GDPR), where applicable, and other relevant laws:

To manage your business relationship with us

To manage your business relationship with us, fulfill your request, provide you with the information you requested, provide our products and services, operate, evaluate, and improve our business (including developing new products and services; enhancing and improving our products, services, websites and mobile apps; managing our communications; analyzing our products and services; and performing accounting, auditing and other internal functions); perform data analyses (including anonymization and aggregation of personal information), protect against, identify, and prevent fraud and other unlawful activity, claims and other liabilities and enforce relevant industry standards, and our policies, or meet our legal obligations, such as to comply with and enforce applicable legal requirements.

Personal information we collect for these purposes might include your name, e-mail address, title, occupation, company, industry, region/country, relationship to Tälist, the reason for contacting Tälist, and topics you are interested in.

For the purposes above, we process your personal information for the fulfillment of contractual obligations (Article 6 (1b) GDPR), on the basis of legal requirements (Article 6 (1c) GDPR), and for the purposes of legitimate interests of Tälist (Article 6 (1f) GDPR).

We will delete your personal information as soon as it is no longer needed for the specific purpose. We are required to retain business and commercial documentation and other tax-relevant documents in order to fulfill our commercial and tax law archiving obligations. Retention periods are determined by the applicable laws.

For marketing activities

To send you marketing communications, including promotional materials or other communications; communicate with you about, and administer your participation in, special events, programs, offers, surveys, and market research.

For the purposes above, we process your personal information on the basis of your consent (Article 6 (1a) and for the purposes of legitimate interests of Tälist (Article 6 (1f) GDPR).

We will delete your personal information as soon as it is no longer needed for the specific purpose. We may retain your personal information for the period of time to which you consented. We may also be required to retain your personal information in accordance with retention periods applicable under the relevant laws.

Tälist may collect personal information and may disclose such information to third-party service providers in aggregate for marketing and promotional purposes.

For recruitment-related activities

The reason that Tälist uses your personal information is so that we can provide you with our recruitment services and help you find a new job that might be suitable for you. We use your personal information so that we can understand your skills, experience, and qualifications in order to find new job opportunities that match your profile. More specifically, Tälist may use your information for the following reasons:

- To provide you with our recruitment services

- To match your details against job vacancies that we feel may be appropriate for you

- To apply for jobs on your behalf by sending your data to clients (upon gaining your consent)

- To market our recruitment services to you

- To inform you about any relevant industry developments

- To send you details of any events or promotions

- To maintain and promote Tälist's business relationships

- To connect you with a potential co-founder

5.3 - Our legal bases for processing your data

Tälist processes personal data in relation to its own staff and candidates and is a data controller for the purposes of Data Protection Laws. The Company has registered with Amtsgericht Charlottenburg, and its registration number is HRB 243191 B.

Tälist will only process personal data where it has a legal basis for doing so:

Consent

Tälist requires that you give your consent to the processing of your personal data in relation to Tälist's services. We believe this explicit consent is essential for both Tälist and you and ensures both parties clearly understand their rights and the intentions of all involved in the consultation process. This basis for processing is in accordance with Article 6(1)(a) of the GDPR, which states, "[you] have given consent to the processing of his/her personal data for one or more specific purposes"

Legitimate interests

As a talent solutions company, it is in both Tälist's interest and yours for Tälist to process your information in order to provide you with the most effective and efficient service. This basis for processing is in accordance with Article 6(1)(f) of the GDPR, which states "processing is necessary for the purposes of the legitimate interests pursued by [Tälist] or by a third party, except where such interests are overridden by the interests or fundamental rights or freedoms of [you] which require protection of personal data."

Contract

Whilst Tälist does not require a formal contract to be signed by the candidates, we believe that there is an agreement between you and Tälist for Tälist to provide you with recruitment services. This agreement is made explicit after you provide Tälist with your personal information for the purposes of Tälist providing you with recruitment services and after you provide your consent for Tälist to hold and process your information. As such, in accordance with Article 6(1)(b) of the GDPR, Tälist processes your personal information "for the performance of a contract to which the [you] are a party or in order to take steps at the request of [you] prior to entering into a contract".

Disclosure of personal data

Tälist may disclose your personal data to third parties:

- To introduce candidates to potential employers (Tälist's business clients) so that they can assess your suitability as an applicant for a position within their organization

- To introduce potential employers (Tälist's business clients) to candidates so that they can assess your suitability as an applicant for a position within their organization

- To introduce candidates to other candidates so that they can assess their suitability as co-founders, if they have clearly stated in their candidate profile that they are searching for a co-founder

- To a professional association or registration body that has a legitimate interest in the disclosure of your personal and sensitive information

- In order to comply with any requests from regulatory or law enforcement authorities to release such personal data if they so require.

- To utilize third-party service providers who perform functions on our behalf (including external consultants and professional advisers such as lawyers, auditors, and accountants, technical support functions, and IT consultants carrying out testing and development work on our IT systems) where we have appropriate processing agreements (or similar protections) in place

- Third-party outsourced IT and document storage providers where we have appropriate processing agreements (or similar protections) in place

- Marketing technology platforms and suppliers

- Project management platforms and suppliers

If Tälist merges with or is acquired by another business or company, we may share personal information with the new owners of the business or company. You would be sent notice of such an event

5.4 - Privacy on our Websites

SSL/TLS Encryption

Our sites use SSL or TLS encryption to ensure the security of data processing and to protect the transmission of confidential content, such as orders, login data, or contact requests that you send to us as the operator. You can recognize an encrypted connection by the fact that there is a "https://" instead of a "http://" in the address line of the browser and by the lock symbol in your browser line.

We use this technology to protect your transmitted data.

Data collection when visiting the website

When you use our website for information purposes only, i.e., if you do not register or otherwise transmit information to us, we only collect data that your browser transmits to our server (in so-called "server log files"). Our website collects a series of general data and information with each call of a page by you or an automated system. This general data and information are stored in the server log files. The following data may be collected:

browser types and versions used,

- the operating system used by the accessing system,

- the website from which an accessing system arrives at our website (the so-called referrer),

- the sub-websites that are accessed via the accessing system on our website,

- the date and time of access to the Internet site,

- an Internet protocol address (IP address),

- the Internet service provider of the accessing system.

When using this general data and information, we do not draw any conclusions about your person. Rather, this information is required in order to:

- to deliver the contents of our website correctly,

- to optimize the content of our website as well as the advertising for it,

- to ensure the long-term functionality of our IT systems and the technology of our website, and

- to provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack.

Therefore, the data and information collected are, on the one hand, statistically analyzed by us and, on the other hand, it is evaluated with the aim of increasing the data protection and data security of our enterprise so as to ultimately ensure an optimal level of protection for the personal data we process. The data of the server log files are stored separately from any personal data provided by a data subject.

The legal basis for the data processing is Art. 6 para. 1 p. 1 lit. f DS-GVO. Our legitimate interest follows from the purposes for data collection listed above.

Encrypted payment transactions

If there is an obligation to transmit your payment data to us (e.g., account number in the case of direct debit authorization) after the conclusion of a contract with costs, this data is required for payment processing.

Payment transactions via the common means of payment (Visa/MasterCard, direct debit) are made exclusively via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

We use this technology to protect your transmitted data.

5.5 - Cookies

General information about cookies

We use cookies and similar technologies on our website. These are small files that your browser automatically creates and that are stored on your IT system (laptop, tablet, smartphone, or similar) when you visit our site.

In the cookie, information is stored that arises in each case in connection with the specific end device used. This does not mean, however, that we thereby gain direct knowledge of your identity.

The use of cookies serves, on the one hand, to make the use of our offer more pleasant for you. For example, we use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our site.

In addition, we also use temporary cookies to optimize user-friendliness, which is stored on your terminal device for a certain fixed period of time. If you visit our site again to use our services, it is automatically recognized that you have already been with us and which entries and settings you have made so that you do not have to enter them again.

On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you. These cookies enable us to automatically recognize that you have already been to our site when you visit it again. These cookies are automatically deleted after a defined period of time.

Legal basis for the use of cookies

The data processed by cookies, which are required for the proper functioning of the website, are thus necessary to protect our legitimate interests as well as those of third parties in accordance with Article 6 (1) sentence 1 lit. f DS-GVO.

For all other cookies, it applies that you have given your consent to this via our opt-in cookie banner within the meaning of Art. 6 (1) lit. a DS-GVO

5.6 - Contents of our websites

Data processing when opening a customer account and for contract processing

Pursuant to Art. 6 (1) lit. b DS-GVO, personal data is collected and processed if you provide it to us for the execution of a contract or when opening a user account on talist.org or altprotein.jobs. Which data collected can be seen from the respective input forms. Deletion of your customer account is possible at any time and can be done by using the "delete profile" function in the account settings.

We store and use the data provided by you for the purpose of processing the contract. After complete processing of the contract or deletion of your customer account, your data will be blocked with regard to tax and commercial law retention periods and deleted after the expiry of these periods unless you have expressly consented to further use of your data or a legally permitted further use of data has been reserved on our part, about which we inform you accordingly below.

Data processing for order processing

The personal data collected by us will be passed on your payment data to the commissioned credit institution within the framework of payment processing insofar as this is necessary for payment processing. If payment service providers are used, we inform you explicitly about this below. The legal basis for the transfer of data is here in Art. 6 para. 1 lit. b DS-GVO.

Contacting us / contact form

In the context of contacting us (e.g., via contact form or e-mail), personal data is collected. Which data is collected in the case of a contact form can be seen from the respective contact form. This data is stored and used exclusively for the purpose of responding to your request or for contacting you and the associated technical administration.

The legal basis for processing the data is our legitimate interest in responding to your request pursuant to Art. 6 (1) lit. f DS-GVO. If your contact aims at the conclusion of a contract, the additional legal basis for the processing is Art. 6 (1) lit. b DS-GVO. Your data will be deleted after the final processing of your request; this is the case if it can be inferred from the circumstances that the matter in question has been conclusively clarified and provided that there are no statutory retention obligations to the contrary.

Services / Digital goods

We transmit personal data to third parties only if this is necessary in the context of contract processing, for example, to the video conference platform used for virtual events.

A further transmission of data does not take place or only if you have expressly consented to the transmission. Your data will not be passed on to third parties without your express consent, for example, for advertising purposes.

The basis for data processing is Art. 6 para. 1 lit. b DS-GVO, which permits the processing of data for the fulfillment of a contract or pre-contractual measures.

Our activities on social networks

So that we can also communicate with you on social networks and inform you about our services, we are represented there with our own pages. If you visit one of our social media pages, we are jointly responsible with the provider of the respective social media platform within the meaning of Art. 26 DS-GVO with regard to the processing operations triggered thereby, which concern personal data.

We are not the original provider of these pages but merely use them within the scope of the possibilities offered to us by the respective providers.

As a precaution, we, therefore, point out that your data may also be processed outside the European Union or the European Economic Area. Use may therefore pose data protection risks for you, as it may be more difficult to protect your rights, e.g., to information, deletion, objection, etc., and the processing in the social networks is often carried out directly for advertising purposes or to analyze user behavior by the providers, without this being able to be influenced by us. If usage profiles are created by the provider, cookies are often used, or the usage behavior is directly assigned to your own member profile of the social networks (if you are logged in here).

The described processing operations of personal data are carried out in accordance with Art. 6 Para. 1 lit. f DS-GVO on the basis of our legitimate interest and the legitimate interest of the respective provider in order to be able to communicate with you in a timely manner or to inform you about our services. If you have to give your consent to the data processing as a user with the respective providers, the legal basis refers to Art. 6 (1) lit. a DS-GVO in conjunction with. Art. 7 DS-GVO.

Since we do not have access to the providers' databases, we would like to point out that it is best to assert your rights (e.g., to information, correction, deletion, etc.) directly with the respective provider. Further information on the processing of your data in the social networks and the possibility of making use of your right of objection or revocation (so-called opt-out), we have listed below the respective provider of social networks used by us:

LinkedIn
(Co-) controller for data processing in Europe:
LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland.

Opt-out and advertising preferences:
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

5.7 - Duration of the Storage of Personal Data

For user data our policy is to store the information for a period of 2 years, provided there has been no activity such as log-ins during this time. After this period, if a user has not logged in or there has been no interaction with their account, we will proceed with the deletion of their data, aligning with our commitment to data minimization and privacy preservation.

Users will be informed appropriately about our data retention practices and will always have the right to request access to, modification of, or deletion of their personal data, in accordance with GDPR. Our objective is to maintain transparency and adherence to legal and ethical standards in the management of personal data, ensuring the rights and preferences of our users are respected and upheld.

6 - Data processors

As we strive to provide an optimal, user-friendly experience on our platforms, we collaborate with a selection of specialized data processors. These entities are instrumental in various aspects of our service delivery, including user interaction analysis, communication, task management, and data storage and processing. While each processor plays a unique role, they all share our unwavering commitment to maintaining the highest standards of user data protection and privacy. Below, we outline our data processors as per GDPR Art. 28, delineating their functions, the nature of the data they process, and the rigorous measures in place to ensure compliance with relevant data protection laws, including the GDPR.

6.1 - Data processor: Amazon Web Services EMEA SARL

Category: Server provision and computation

Amazon Web Services EMEA SARL (AWS) is the backbone of our cloud-based service infrastructure, offering a range of services that empower our web platform altprotein.jobs to function seamlessly and efficiently.

Privacy and Data Handling:
AWS’s privacy policy elucidates its comprehensive practices concerning data collection, processing, and utilization, reflecting its commitment to maintaining the highest standards of data protection and user privacy.

Data Processing and Storage:
AWS is fundamental to our operations, overseeing the processing and storage of user data, including but not limited to, user profiles, contact information, and user-generated content. AWS employs stringent data protection measures and adheres to strict confidentiality norms, ensuring the secure and responsible handling of user information.

Server Location:
To comply strictly with GDPR guidelines, we confirm that all our directly associated servers of Amazon Web Services EMEA SARL, which process or store GDPR-relevant data for altprotein.jobs, are located within the European Union.

We have entered into a robust Data Processing Agreement (DPA) with Amazon Web Services EMEA SARL to ensure GDPR compliance and bolster user data protection. This agreement clearly outlines the responsibilities and practices that AWS must adhere to while processing user data, maintaining the highest standards of confidentiality and security. AWS is mandated to implement appropriate technical and organizational measures to protect user data and to hold its subprocessors to the same stringent data protection standards. AWS is obligated to notify us immediately in the event of any data breaches, ensuring adherence to GDPR’s rigorous notification prerequisites.

Contact information:
Amazon Web Services EMEA SARL
38 Avenue John F. Kennedy
L-1855
Luxembourg
Facsimilie: 352 2789 0057
Contact form: https://aws.amazon.com/contact-us/compliance-support/

6.2 - Data processor: TransIP B.V.

Category: External hosting

This website (talist.org) is hosted by an external service provider (host). Personal data collected on this website are stored on the servers of the host. These may include but are not limited to IP addresses, contact requests, metadata and communications, contract information, contact information, names, web page access, and other data generated through a website.

The host is used for the purpose of fulfilling the contract with our potential and existing customers (Art. 6(1)(b) GDPR) and in the interest of secure, fast, and efficient provision of our online services by a professional provider (Art. 6(1)(f) GDPR).

Our host will only process your data to the extent necessary to fulfill its performance obligations and to follow our instructions with respect to such data.

We have established data processing agreements (DPA) with our hosting provider to ensure adherence to GDPR requirements, safeguarding user data and maintaining compliance with applicable data protection laws.

Contact information:

Company Name:
TransIP B.V.

Address:
Vondellaan 47
2332 AA Leiden

Email address:
support@transip.eu

KvK-nummer:
24345899

VAT-no:
NL812334966B01

6.3 - Data processor: GoDaddy.com, LLC

Category: External hosting

The website (altprotein.jobs) is hosted by an external service provider (host). Personal data collected on this website are stored on the servers of the host. These may include but are not limited to IP addresses, contact requests, metadata and communications, contract information, contact information, names, web page access, and other data generated through a website.

Our host will only process your data to the extent necessary to fulfill its performance obligations and to follow our instructions with respect to such data.

Contact information:

GoDaddy.com, LLC
2155 E. GoDaddy Way Tempe.
AZ 85284
USA

E-MAIL: HQ@GoDaddy.com
TELEFON: 089 21 094 807

GoDaddy.com, LLC
Legal, Office of the DPO,
Hansestraße 79,
51149 Köln, Deutschland

6.4 - Data processor: Squarespace Ireland Limited

Category: Website Builder and Hosting Platform

The website (talist.org) is powered by Squarespace, which provides tools for the statistical analysis of visitor traffic to optimize user experience. Squarespace’s privacy policy elucidates the methodologies adopted for the collection, processing, and utilization of personal data.

Cookie Utilization:
Squarespace employs cookies, stored on your computer, to enable an analysis of the website usage. The cookies generate information about the interaction with our website, which is subsequently stored on servers in the USA. Importantly, your IP address undergoes anonymization post-processing and prior to storage. These cookies are retained on your device unless you opt to delete them.

The processing involved in utilizing cookies is exclusively executed upon receiving explicit consent, in adherence to Art. 6 (1) lit. a GDPR. Users have the autonomy to manage their cookie preferences, enabling them to be informed about the setting of cookies, to allow cookies in individual cases, to exclude the acceptance of cookies for certain cases or in general, and to activate the automatic deletion of cookies when closing the browser. It's important to note that deactivating cookies may limit the functionality of our website.

We have entered into a solid Data Processing Agreement (DPA) with Squarespace to comply with GDPR and safeguard user privacy. This DPA delineates the responsibilities for managing and protecting user data meticulously. Squarespace is obligated to process data only as per our instructions and is committed to maintaining the confidentiality and security of the user data, employing suitable technical and organizational measures. Squarespace is responsible for imposing equivalent data protection obligations on its subprocessors and is mandated to promptly notify us of any data breaches to ensure compliance with GDPR’s notification requirements.

By utilizing Squarespace’s services, we aim to create a harmonious balance between providing seamless online experiences and maintaining utmost respect and protection for user privacy in compliance with GDPR regulations.

Contact information:
Squarespace Ireland Limited
Attention: Legal - Privacy
Squarespace House
Ship Street Great
Dublin 8, D08N12C
Ireland

6.5 - Data processor: Bubble Group, Inc.

Category: Website Builder and Hosting Platform

The website (altprotein.jobs) is developed and run on the Bubble.io platform, a tool that not only enables the creation of web applications but also facilitates the analysis of user interactions to optimize the user experience. Bubble.io's privacy policy, provides extensive details on their practices regarding the collection, processing, and usage of personal data. Bubble.io is a certified provider under the Transatlantic Data Protection Framework https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt00000008W5AAAU&status=Active

Data Processing and Storage:

Bubble.io is integral to our operations, responsible for storing and processing user data, including candidate information such as names, email addresses, detailed candidate profiles, and job preferences. All data acquired through user interactions with our website is subjected to stringent data protection and confidentiality norms, ensuring secure and respectful handling of user information.

Cookie Utilization:

Bubble.io employs cookies, which are stored on your computer, to analyze the usage of the website and enhance user experience. The information generated by these cookies about the usage of our website is subsequently stored on servers, potentially located in various jurisdictions. Rest assured, user IP addresses are anonymized post-processing and before storage. Unless manually deleted, these cookies will remain on your device.

This processing of cookies is conducted only upon acquiring explicit consent from the user, in strict adherence to Art. 6 (1) lit. a GDPR. Users can manage cookie preferences to be informed about the setting of cookies, allow cookies in individual cases, exclude the acceptance of cookies for certain cases or generally, and activate the automatic deletion of cookies when closing the browser. Disabling cookies may result in limited functionality of our website.

We have entered into a solid Data Processing Agreement (DPA) with Bubble.io to comply with GDPR and safeguard user privacy. This DPA delineates the responsibilities for managing and protecting user data meticulously. Bubble.io is obligated to process data only as per our instructions and is committed to maintaining the confidentiality and security of the user data, employing suitable technical and organizational measures. Bubble.io is responsible for imposing equivalent data protection obligations on its subprocessors and is mandated to promptly notify us of any data breaches to ensure compliance with GDPR’s notification requirements.

By leveraging Bubble.io's services, we are committed to delivering an efficient and user-friendly online experience while upholding the highest standards of user privacy and data protection in alignment with GDPR requirements.

Contact information:

Bubble Group, Inc.
22 W 21st Street 2nd Street
New York
NY 10010
US

6.6 - Data processor: Google Analytics

Category: Analytics

Our websites, talist.org and altprotein.jobs, incorporate Google Analytics, a premier web analytics service provided by Google Ireland Limited, designed to optimize user interaction and experience on our platforms.

Purpose & Functionality:

Google Analytics assists us in understanding user behavior, including, but not limited to, time spent on the site, pages visited, user navigation paths, and referral sources. This service utilizes cookies—text files placed on your computer—to collect and analyze user interactions.

Data Collection & Processing:

The information generated by the cookies about your use of the website, including your anonymized IP address, is transmitted to and stored by Google on servers in the United States. This information aids us in enhancing the user experience and ensuring our services align effectively with user needs.

Privacy & Compliance:

Data gathered through Google Analytics is processed with rigorous adherence to Google’s Privacy Policy, and user privacy is paramount in our use of this service. We maintain robust measures to ensure data security and compliance with relevant data protection laws, prioritizing continuous improvement and respect for user preferences and concerns.

User Autonomy & Consent:

Visitors have the option to manage their cookie preferences, and we obtain explicit consent for the use of such analytical tools, pursuant to GDPR regulations, ensuring transparent and lawful processing of user data.

We have formalized a Data Processing Agreement with Google Inc., substantiating our commitment to the responsible and lawful handling of user data processed by Google Analytics. This agreement ensures adherence to the principles and requirements of applicable data protection laws, including the GDPR, fortifying the security and confidentiality of user data processed on our behalf. The establishment of this agreement emphasizes our mutual dedication to maintaining a high standard of data protection and reflects our ongoing efforts to provide secure, compliant, and user-friendly experiences on our platforms, talist.org, and altprotein.jobs.

Contact information:

Google Ireland Limited
Gordon House, Barrow Street
Dublin 4
Ireland

6.7 - Data processor: Google Workspace

Category: Email, calendar and document management

Tälist utilizes Google Workspace, a suite of cloud computing, productivity and collaboration tools, software and products developed by Google Ireland Limited, enabling enhanced organizational coordination, communication, and document management.

Purpose & Functionality:

Google Workspace empowers us with advanced tools for email communication, schedule management, document creation, and storage, thereby facilitating seamless interaction and efficient operational workflow within our organization. It incorporates sophisticated technologies to ensure secure and streamlined access to its services, allowing us to maintain high standards of professional communication and data handling.

Data Collection & Processing:

Information managed through Google Workspace, including emails, documents, and other user-generated content, is processed and stored securely by Google Ireland Limited. This processing is crucial for the effective management of our internal operations and communications, aiding us in maintaining organizational coherence and responsiveness.

Privacy & Compliance:

The utilization of Google Workspace is underpinned by a steadfast commitment to user privacy and data protection. We adhere strictly to Google’s Privacy Policy and implement rigorous measures to ensure the security and confidentiality of data processed through Google Workspace, maintaining compliance with relevant data protection laws and prioritizing user-centric values.

User Autonomy & Consent:

Users interacting with us through services provided by Google Workspace can rest assured that their data is processed transparently and lawfully, with due regard to user consent and preferences, in alignment with GDPR regulations and other applicable laws.

Data Processing Agreement:

We have established a Data Processing Agreement with Google Ireland Limited, reinforcing our commitment to responsible and lawful data processing through Google Workspace. This agreement is designed to ensure compliance with applicable data protection laws, including the GDPR, safeguarding the integrity and confidentiality of user data processed on our behalf. It is a testament to our mutual dedication to uphold the highest standards of data protection, reflecting our continuous endeavor to offer secure, compliant, and user-centric experiences on our platforms, talist.org, and altprotein.jobs.

By leveraging Google Workspace, we aim to optimize our organizational processes and communications while maintaining unwavering respect for user privacy and data security norms. For detailed insights into how Google Workspace collects, processes, and uses personal data, please refer to Google Workspace's Privacy Policy.

Contact information:

Google Ireland Limited
Gordon House, Barrow Street
Dublin 4
Ireland

6.8 - Data processor: MailerLite Limited

Category: Email Marketing Services

We utilize the services of MailerLite Limited, an established company registered in Ireland, to execute our email marketing initiatives.

Purpose & Functionality:

MailerLite enables streamlined communication with our users, allowing us to circulate newsletters, updates, and promotional content efficiently. It employs state-of-the-art technologies, including cookies and pixels, to analyze interactions with our emails, aiding in the optimization and personalization of our communications to meet your preferences and needs.

Data Transfer & Processing:

When opting into our communications, the data you provide—such as your email address, name, and country—is transferred to MailerLite for processing, in accordance with their Privacy Policy and Terms of Service. This ensures the seamless dissemination of our content while maintaining the integrity of your information.

User Interaction & Analytics:

MailerLite provides insights into user engagement with our emails, allowing us to assess the relevance and effectiveness of our communications. The data collected pertains to email open rates and user actions within the emails, facilitating continuous improvement in our communication strategies.

User Rights & Consent Revocation:

Subscribers maintain the right to withdraw consent for receiving our communications at any time, utilizing the 'unsubscribe' link incorporated in every email. We prioritize user autonomy, providing clear options for managing communication preferences.

Commitment to Privacy:

Our collaboration with MailerLite reflects our commitment to maintain the highest standards of user privacy and data protection, aligning our services with legal compliance and user-centric values. For detailed insights into how MailerLite collects, processes, and uses personal data, please refer to their Privacy Policy.

We have entered into a Data Processing Agreement (DPA) with MailerLite Limited to ensure the rigorous protection and lawful processing of your personal data. This agreement fortifies the security and privacy of the user data handled by MailerLite on our behalf and aligns data processing practices with the stringent requirements of applicable data protection laws, including the GDPR. Our collaboration with MailerLite is founded on mutual commitment to uphold the integrity and confidentiality of user information, fostering a secure and compliant environment for email communications.

Contact information:

MailerLite Limited
Ground Floor
71 Lower Baggot Street
Dublin 2
D02 P593
Ireland

6.9 - Data processor: Sendgrid / Twilio

Category: Email Marketing and API Services

We utilize the services of SendGrid/Twilio renowned for its robust email API services and email marketing solutions.

Purpose & Functionality:

SendGrid/Twilio facilitates seamless and efficient communication with our users, enabling us to dispatch newsletters, updates, and promotional materials effectively. It deploys sophisticated technologies, such as cookies and pixels, to monitor interactions with our emails, enhancing the relevance and personalization of our communications to align with user preferences and needs.

Data Transfer & Processing:

Upon subscribing to our communications, the provided data—including email address and name — is conveyed to SendGrid/Twilio for processing, in alignment with their Privacy Policy and Terms of Service. This ensures proficient dissemination of our content while preserving the confidentiality and integrity of user information.

User Interaction & Analytics:

SendGrid/Twilio provides invaluable insights into user engagement with our emails, enabling us to gauge the impact and effectiveness of our communications. The analyzed data, including email open rates and user interactions within the emails, assists in refining our outreach strategies to better resonate with our audience.

User Rights & Consent Revocation:

Subscribers retain the right to revoke consent to our communications at any point, utilizing the 'unsubscribe' link available in every email. User autonomy is paramount, and we provide clear and accessible options to manage communication preferences.

Commitment to Privacy:

Our association with SendGrid/Twilio underscores our steadfast commitment to upholding stringent user privacy and data protection standards, ensuring compliance with relevant legislation and a user-centric approach. For comprehensive details on how SendGrid/Twilio manages, processes, and safeguards personal data, please refer to their Privacy Policy.

To fortify the commitment to responsible data handling, we have established a Data Processing Agreement with SendGrid/Twilio. This agreement consolidates the security, privacy, and compliant handling of user data processed by SendGrid/Twilio on our behalf, adhering to the stringent provisions of applicable data protection laws, including the GDPR. Our partnership with SendGrid/Twilio is rooted in a shared resolve to maintain the highest levels of data protection, ensuring a secure and lawful framework for our email communications.

Contact information:

Twilio Ireland Limited
3 Dublin Landings
North Wall Quay
Dublin 1
Ireland

6.10 - Data processor: ClickUp by Mango Technologies, Inc.

Category: Form processing

We partner with ClickUp, a product of Mango Technologies, Inc., located at 350 Tenth Ave 5th floor, San Diego, CA 92101, USA, leveraging their advanced task management platform to streamline our form processing, particularly during job application procedures.

Purpose & Functionality:
ClickUp serves as an integral tool in our operations, enabling the efficient management of user information, progress monitoring, and fostering effective collaboration among our recruitment team members. It facilitates a streamlined, applicant-centric hiring process and ensures seamless communication between applicants and our team. The form processing functionalities are mainly used for managing applications to Tälist UG (haftungsbeschränkt)

Data Transfer & Processing:
Interactions with our job application processes may result in the transfer of personal information—including but not limited to your name, country, state, phone number, email address, job preferences, and CV—to ClickUp for processing, adhering to their Privacy Policy and Terms of Service. This integration aims at refining our recruitment approaches and matching applicants with suitable opportunities.

User Rights & Confidentiality:
Your personal data is treated with utmost confidentiality and is exclusively used for recruitment purposes and related communications. You reserve the right to modify or delete your data from our systems in adherence to applicable data protection regulations, ensuring a transparent and respectful handling of your information. ClickUp’s privacy policy, available at ClickUp Privacy Policy, details the protocols followed for the collection, processing, and utilization of personal data.

Optimization & Compliance:
Our collaboration with ClickUp enables us to enhance our recruitment processes, aligning them closely with both applicant expectations and qualifications, while assuring compliance with data protection norms. This mutually beneficial partnership supports our commitment to offering a responsive, compliant, and user-friendly recruitment experience.

We have formalized a Data Processing Agreement (DPA) with Mango Technologies, Inc. This agreement underscores our mutual commitment to uphold stringent data protection standards and to process your personal information lawfully and securely. It ensures that all data handling practices by ClickUp align with the established requirements of data protection laws, reinforcing the safeguarding of your data’s integrity and confidentiality in our recruitment processes. This commitment to secure and compliant data processing fortifies the trust and transparency in our interactions with you.

Contact information:
Mango Technologies, Inc.
350 Tenth Ave 5th floor
San Diego

6.11 - Data processor: Slack Technologies, LLC

Category: Community functionalities and internal communications

We partner with Slack, a product of Slack Technologies Limited, located at Salesforce Tower, 60 R801, North Dock, Dublin, Ireland, leveraging their communication platform for internal usage, community management, trainings and classes we perform with participiants.

Purpose & Functionality:

Slack is an essential component in the delivery of our community focused trainings, providing a dynamic and interactive platform for community engagement and resource sharing. By integrating Slack into our masterclass structure, we enhance the learning experience through instant messaging, easy sharing of educational materials, and the seamless integration of various educational tools and services. This integration elevates the way participants communicate and collaborate, ensuring that all course updates, group discussions, and collaborative learning activities are efficiently managed and readily accessible. In addition Slack is used for internal communications.

Data Transfer & Processing:

Interactions with us with regard to trainings and classes will result in the transfer of personal information and interactions with our job application processes may result in the transfer of personal information—including but not limited to your name and email address, to Slack for processing, adhering to their Privacy Policy and Terms of Service.

User Rights & Confidentiality:

Your personal data is treated with utmost confidentiality and is exclusively used for managing the training community and/or recruitment purposes and related communications. You reserve the right to modify or delete your data from our systems in adherence to applicable data protection regulations, ensuring a transparent and respectful handling of your information. Slack's privacy policy details the protocols followed for the collection, processing, and utilization of personal data.

Compliance:

We have formalized a Data Processing Agreement (DPA) with Slack. This agreement underscores our mutual commitment to uphold stringent data protection standards and to process your personal information lawfully and securely. It ensures that all data handling practices by Slack align with the established requirements of data protection laws, reinforcing the safeguarding of your data’s integrity and confidentiality in our recruitment processes. This commitment to secure and compliant data processing fortifies the trust and transparency in our interactions with you. The DPA is accessible here: https://www.salesforce.com/content/dam/web/en_us/www/documents/legal/Agreements/data-processing-addendum.pdf

Contact information:

Slack Technologies Limited
Salesforce Tower
60 R801, North Dock
Dublin
Ireland

6.11 - Data processor: Meetbutter ApS

Category: Live Video-Communication in training settings

We partner with Butter.us, a product of Meetbutter ApS, located at Sortedam Doessering 55, 2100 Copenhagen, Denmark, leveraging their online live-video-communication platform for trainings and classes we perform with participiants.

Purpose & Functionality:

Butter.us is an essential component in the delivery of our trainings, providing a platform for live-video-communication. By integrating Butter.us into our masterclass structure, we enhance the learning experience through live-events. This integration elevates the way participants take part in the training, being able to interact with the speakers in live-sessions.

Data Transfer & Processing:

Interactions with us with regard to trainings and classes will result in the transfer of personal information—including but not limited to your name, email address and video footage, to butter.us for processing, adhering to their Privacy Policy and Terms of Service.

User Rights & Confidentiality:

Your personal data is treated with utmost confidentiality and is exclusively used for recruitment purposes and related communications. You reserve the right to modify or delete your data from our systems in adherence to applicable data protection regulations, ensuring a transparent and respectful handling of your information. Butter.us' privacy policy details the protocols followed for the collection, processing, and utilization of personal data.

Compliance:

We have formalized a Data Processing Agreement (DPA) with Butter.us. This agreement underscores our mutual commitment to uphold stringent data protection standards and to process your personal information lawfully and securely. It ensures that all data handling practices by Butter.us align with the established requirements of data protection laws, reinforcing the safeguarding of your data’s integrity and confidentiality in our recruitment processes. This commitment to secure and compliant data processing fortifies the trust and transparency in our interactions with you. The DPA is accessible here: https://assets.super.so/a49e65cf-5c88-41e8-a906-72b94a5cf456/files/909110ab-d139-441d-911a-97b74c531308.pdf

Contact information:

Meetbutter ApS
Sortedam Doessering 55
2100 Copenhagen
Denmark

7 - Topicality and change of the data protection declaration

This data protection declaration is currently valid and has the status mentioned in the beginning of this document

Due to the further development of our Internet pages and offers or due to changed legal or official requirements, it may become necessary to change this data protection declaration. You can access and print out the current data protection declaration at any time on the website at "https://talist.org/privacy-policy".

Contact

You can contact us by email using this address:
product@talist.org

or in writing at the following address:
Tälist UG (haftungsbeschränkt)
c/o Impact Hub Berlin GmbH
Rollbergstraße 28a
12053 Berlin

or use our contact form:
https://talist.org/contact-us

Data Protection Authority

Berliner Beauftragte für Datenschutz und Informationsfreiheit
Alt-Moabit 59-61
10555 Berlin
Fax: +49 30 2155050
E-Mail: mailbox@datenschutz-berlin.de