1. Cookies and similar technology
Most web browsers allow you to automatically remove all cookies when you close the web browser. Additionally, most web browsers allow you to disable the use of third-party cookies. You can always review the cookies that have been stored by your web browser. You may choose to block some or all cookies, or even to delete cookies that have already been set, but you should be aware that you might lose some functions of the website or the digital service.
If you want to restrict or block the cookies that are set by our website or services, or by any site, you may freely change the settings in your web browser. The “Help” function in your web browser should explain how.
3. Technically necessary cookies
We may use technical cookies. These are cookies that are merely required to collect certain information on our platforms to provide a service required or wanted by you as user. This extends to navigation or session cookies that enable smooth navigation and use of the website (and for instance permit access to the restricted area); analysis cookies that are set directly by us to collect aggregated information about the number of users and their behavior; functional cookies that provide you with navigation by certain selected criteria as part of a service optimization (e.g. selected language, purchase of selected products).The legal basis for these cookies is a legitimate interest under Art. 6 (1) sentence 1 f GDPR, namely pursuance of our business purposes and/or the protection of our websites.
4. Analytical cookies
5. Marketing cookies
We may use web technologies (also cookies) from selected partners to be able to provide you with content and advertising specially tailored to you on websites and social media sites. This content is selected and displayed based on your usage behavior.
6. Cookies and technologies that we use via third party providers
7. Description and specification of cookies and technologies that we may use
7.1. Universum cookies
1. Universum – Authentication cookies
Our websites may use authentication cookies to store the user’s authenticated session. These cookies may be used to provide functionality such as single sign-on experience and auto refreshing of authenticated sessions. The cookies are only set upon successful login to the relevant application and may be specific to that application. They may contain personal information of you as the user such as the username, name, email, and other information. All information stored in the cookies needs to have been provided by you, the user or the account creator upon sign up or registration of the user. The cookies are necessary for the application to function as expected and may have a lifetime of up to 4 hours or until the user logs out. The legal basis is a legitimate interest under Art. 6 (1) sentence 1 f GDPR, namely pursuance of our business purposes and the protection of our websites.
7.2. Third party providers’ cookies
1. Akamai – Security analysis techniques from Akamai
Our websites may use load balancing cookies from Amazon Web Services, Inc. and its affiliates (“AWS”). There are two different cookies we may use; both will be indicated as “AWSALB cookies” as both of them are load balancer cookies designed for different browsers. One of the AWS cookies is the AWSALB cookie and the other AWS cookie is the AWSALBCORS cookie. Depending on your browser one or both may be used by us to determine the ideal routing path and to allocate server traffic to optimize the user experience and performance. The AWSALB cookies are encrypted and do not contain any personally identifiable information.
AWS – AWSALB or AWSALBCORS
Both of the AWSALB cookies are set by the load balancer on AWS. From a technical perspective a load balancer is an application that routes and manages the traffic to and from the application. We use load balancers provided as a service from AWS and it is on this level that one of the AWSALB cookies are set. The load balancer sits in between the browser and the actual server hence any request coming from the browser first arrives at the load balancer which redirects that request to an available server.
The purpose of this cookie is to allocate server traffic to make the user experience smooth and fast. Our websites may have multiple instances of the application on different servers behind the load balancer. This means that requests coming from a browser can be served by many different servers. Both AWSALB cookies help the load balancer to identify the optimal final server to which requests coming from a specific browser should be routed to.
The AWSALB cookie is generated on the first request from the browser to the load balancer. It is then stored on the user’s browser and sent with each subsequent request to the load balancer.
You can prevent the storage of cookies or beacons by making a corresponding setting in your browser software; however, note that if you do so you may not be able to use the full functionality of this website. You can view the precise storage duration of the cookies for yourself by accessing this information via your respective browser. The legal basis is a legitimate interest under Art. 6 (1) sentence 1 f GDPR, namely pursuance of our business purposes and the protection of our websites.
3. Facebook Pixel
The “Facebook Pixel” from the social network Facebook, 1601 South California Avenue, Palo Alto, CA 94304, USA, may be used within our websites. This means that what are termed tracking pixels are integrated into our pages. If the Facebook pixel tracking is integrated, the following cookies may be used: “_fbc” is only used when you are directed to our website by having clicked on a Facebook ad, its destination URL uses the click identifier “fbclid”. “_fbp” is used to identify and record you as a unique user. When you visit our pages, the tracking pixel creates a direct link between your browser and the Facebook server. This provides Facebook with the information from your browser for instance that our page was accessed by your device. If you are a Facebook user, Facebook can allocate the visit to our pages to your user account. Please note that as the provider of the pages we are not informed about the content of the data transferred or its use by Facebook. We can merely choose which segments of Facebook users (age, interests) our advertising is to be shown to. By accessing the pixel on your browser, Facebook can also identify whether displaying an advertisement on Facebook was successful, e.g., if it resulted in an online sale being completed. This enables us to record the effectiveness of Facebook advertisements for statistical and market-research purposes. Please click here if you wish to opt out of data recording via Facebook Pixel: https://www.facebook.com/settings?tab=advertisements#_=_. Alternatively, you can deactivate the Facebook Pixel on the Digital Advertising Alliance page via the following link: http://www.aboutads.info/choices/. The transfer is permitted as we have agreed the standard contractual clauses with Facebook according to Art. 46 para. 2 c GDPR.
4. Facebook Connect
With Facebook Connect, you can use your Facebook account to open a new account at Universum. If you create a Universum account via Facebook or log in to an existing Universum account via Facebook, we will gain access to your public profile and your e-mail address. We use this information to pre-populate or update your Universum account and then provide you with the Universum account. Since we use your Facebook data to create a Universum account, the legal basis is the contract for the Universum account pursuant to Art. 6 (1) (b) GDPR, as in described in this clause. We will store your personal data for the purposes and period of the existence of your Universum account.
We may have integrated cookies from Dramdata.io ApS (“Dreamdata”), registered under CVR-nr: 39854783 at Købmagergade 22, 2nd Floor, 1150 Copenhagen in Denmark. Dreamdata provides transparent and actionable analysis. Dreamdata’s cookies are used to analyze and learn how you interact with our website(s), such as which channel you’ve entered a website and which pages are most relevant to you. If you land (for the first time) on one of our websites with a Dreamdata tracking script, you’ll be assigned an anonymous ID which is stored as a first party cookie in your browser. Dreamdata stores all anonymous IDs in their database.
|The following information might be collected||IP address|
Date and time of visit
|Location of processing||European Union|
6. Google Analytics
We may have integrated Google Analytics. Google Analytics is a web analytics service. Web analysis is the collection and evaluation of data on the behavior of visitors to websites. A web analysis service collects, among other things, data about which website a data subject came to a website from (so-called referrers), which subpages of the website were accessed or how often and for what length of stay a subpage was viewed. A web analysis is mainly used for optimizing a website and for the cost-benefit analysis of internet advertising. The operator of the Google Analytics component is Google Ireland Ltd., Google Building Gordon House, 4 Barrow Street, D04 E5W5, Dublin, Ireland.
We may use:
- _ga to distinguish users for usually 2 years
- _gid to distinguish users for usually 24 hours
- _ga_<container-id> is used to persist session state for usually 2 years.
- _gac_gb_<container-id> contains campaign related information for usually 90 days. Universum may link our Google Analytics and Google Ads accounts, Google Ads website conversion tags will read this cookie unless we opted out.
We may use the addition “_gat._anonymizeIp” for web analysis via Google Analytics. By means of this addition, the IP address of the data subject’s internet connection is truncated by Google and anonymized when access to our websites is made from a Member State of the European Union or from another State Party to the Agreement on the European Economic Area. The purpose of the Google Analytics component is to analyze the flow of visitors to our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us that show the activities on our websites, and to provide other services related to the use of our website.
Google Analytics sets a cookie on the information technology system of the data subject. What cookies are has already been explained above. By setting the cookie, Google is able to analyze the use of our website. Every time one of the individual pages of this website is accessed by us and on which a Google Analytics component has been integrated, the Internet browser on the information technology system of the data subject is automatically prompted by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. As part of this technical procedure, Google becomes aware of personal data, such as the IP address of the data subject, which, among other things, serve Google to track the origin of visitors and clicks and subsequently enable commission statements. The cookie is used to store personal information, such as access time, the location, and browser from which access was made and the frequency of visits to our website by the data subject. Every time you visit our websites, this personal data, including the IP address of the internet connection used by you, may be transferred by Google to the USA This personal data may be stored by Google in the USA. Google may pass on this personal data collected through the technical procedure to third parties.
You can prevent the setting of cookies by our website at any time by means of a corresponding setting of the internet browser used and thus permanently object to the setting of cookies. Such a setting of the internet browser used would also prevent Google from placing a cookie on your information technology system. In addition, a cookie already set by Google Analytics can be deleted at any time via the internet browser or other software programs.
7. Google reCAPTCHA
In specific cases we may use the reCAPTCHA service https://www.google.com/recaptcha/intro/ by Google Ireland Ltd., Google Building Gordon House, 4 Barrow Street, D04 E5W5, Dublin, Ireland (“Google”) based on a legitimate interest (i.e. the interest to ensure the correctness of data, avoidance of automatic registrations / orders by so-called bots, and economical operation of our online offering within the meaning of Art. 6 (1) f) GDPR).This is permitted under Art 46 para 2 c GDPR as we agreed the standard contractual clauses with Google. We may use reCAPTCHA to distinguish whether an input is made by a human being or abusively made by automated, mechanical processing. The query in this context includes the sending of the IP address and any other data required by Google for the reCAPTCHA service to Google. Your input will be transmitted to Google and analyzed for this purpose. For more information about Google reCAPTCHA and Google’s Data Protection Policy, please visit the following links: https://policies.google.com/privacy?hl=en and https://www.google.com/recaptcha/intro/android.html.
8. Google Remarketing
9. Google Conversion Tracking
We may use the Intercom messenger, a chat function service of Intercom R&D Unlimited Company, a company registered in Ireland with a registered address at 2nd Floor, Stephen Court, 18-21 Saint Stephen’s Green, Dublin 2, Ireland; Intercom, Inc. a Delaware corporation with offices at 55 2nd Street, 4th Fl., San Francisco, CA 94105, USA; and Intercom’s group companies (“Intercom”) to be able to communicate with you. Intercom R&D Unlimited Company or Intercom, Inc., Intercom Software UK Limited, Intercom Software Australia Pty Ltd, or any other Intercom group company from time to time, might process your personal data if you are a resident within the European Economic Area, meaning your personal data may get transferred outside the European Economic Area into the USA, Australia, or other countries where Intercom is processing personal data.
Intercom may place two kind of cookies intercom-id-[app_id] and intercom-session-[app_id]:
- intercom-id-[app_id] is used as unique anonymous identifier for a duration of 9 months. It is an anonymous visitor identifier cookie which may get used when you visit our websites.
- intercom-session-[app_id] is used to keep track of sessions for a duration of 1 week. It sets an identifier for each unique browser session. This session cookie is refreshed on each successful logged-in ping, extending it to 1 week from that moment. You as a user can access your conversations and have data communicated on logged out pages for 1 week, as long as the session isn’t intentionally terminated with “Intercom(‘shutdown’) ”;, which usually happens when logging out.
13. LinkedIn / LinkedIn Insight Tag
The LinkedIn Insight Tag enables the collection of metadata such as IP address information, timestamp, and events such as page views. All data is encrypted. The LinkedIn browser cookie is stored in a visitor’s browser until they delete the cookie, or the cookie expires (there’s a rolling six-month expiration from the last time the visitor’s browser loaded the Insight Tag).
Some cookies from LinkedIn may also be set as third-party cookies and may include:
|lang||linkedin.com||Used to remember your language setting to ensure LinkedIn.com displays in the language selected by you in your settings.||Session|
|bcookie||linkedin.com||Browser Identifier cookie to uniquely identify devices accessing LinkedIn to detect abuse on the platform and diagnostic purposes||1 year|
|lidc||linkedin.com||To facilitate data center selection||24 hours|
|AnalyticsSyncHistory||linkedin.com||Used to store information about the time a sync took place with the lms_analytics cookie||30 days|
|UserMatchHistory||linkedin.com||LinkedIn Ads ID syncingUsed for id sync process. It stores the last sync time to avoid repeating the syncing process in a frequent manner.||30 days|
|bscookie||.www.linkedin.com||Used for remembering that a logged in user is verified by two factor authentication||1 year|
14. Salesforce Marketing Cloud Account Engagement (formerly Pardot)
We may use Salesforce’s marketing automation tool “Account Engagement” from Salesforce.com, Inc. with its address of principal executive offices at Salesforce Tower, 415 Mission Street, 3rd Fl, San Francisco, California 94105 and/or its affiliates (“Salesforce”). A list of Salesforce affiliates can be found in the List of Affiliates section of Salesforce’s latest 10-K Form, available on the SEC Filings tab by using the Annual Filings filter on the page https://investor.salesforce.com/financials/default.aspx. Salesforce might process personal data outside the European Economic Area by having entered into Binding Corporate Rules in accordance with Art. 46 para. 2 b GDPR and Art. 47 GDPR, for more information please see: https://compliance.salesforce.com/en/salesforce-bcrs.
Account Engagement tracks website visitor and prospect activities on our website and landing pages by setting cookies on your browser. Cookies are set to remember preferences (like form field values) when you return to our site. We also set a cookie for logged-in users to maintain the session and remember table filters.
Account Engagement sets first-party cookies for tracking purposes and sets third-party cookies for redundancy. Using first-party and third-party cookies together is standard in the marketing automation industry. Salesforce doesn’t store personally identifying information, only a unique identifier. First-party cookies are set on Account Engagement domains and tracker subdomains. Universum may not opt to have a tracker subdomain configured, in those cases Salesforce use third-party cookies on https pages.
Here is an overview of the cookies that Universum might use:
- visitor_id<accountid>, the visitor cookie includes a unique visitor ID and the unique identifier for Universum’s account. For example, the cookie name visitor_id12345 stores the visitor ID 1010101010. The account identifier, 12345, makes sure that the visitor is tracked on the correct Pardot account. The visitor value is the visitor_id in Universum’s Pardot account. This cookie is set for visitors by the Account Engagement tracking code.
- pi_opt_in<accountid>, if Tracking Opt-in preferences is enabled, the pi_opt_in cookie is set with a true or false value when you opt in or out of tracking. If you opt in, the value is set to true, and you are cookied and tracked. If you opt out or ignore the opt-in banner, the opt-in cookie value is set to false. Your cookie is disabled, and you are not tracked.
- visitor_id<accountid>-hash, your hash cookie contains the account ID and stores a unique hash. For example, the cookie name visitor_id12345-hash stores the hash “855c3697d9979e78ac404c4ba2c66533”, and the account ID is 12345. This cookie is a security measure to make sure that a malicious user can’t fake a visitor and access corresponding prospect information.
- lpv<accountid>, this LPV cookie is set to keep Salesforce from tracking multiple page views on a single asset over a 30-minute session. For example, if you reload a landing page several times over a 30-minute period, this cookie keeps each reload from being tracked as a page view.
- Pardot, a session cookie named pardot is set in your browser while you’re logged in as a user or when a visitor accesses a form, landing page, or page with Account Engagement tracking code. The cookie denotes an active session and isn’t used for tracking.
Therefore, we may use:
- SL_C_23361dd035530_SID Contains the project key, session ID, and visitor ID. Session and visitor IDs are unique identifiers assigned to new sessions and visitors.
- SL_L_23361dd035530_SID Contains the project key, session ID, and visitor ID. Session and visitor IDs are unique identifiers assigned to new sessions and visitors. Data is stored locally.
The cookies mentioned above are saved for 13 months usually and can be deleted manually by clearing the browser’s cache.
We may use services from Vimeo.com, Inc. (“Vimeo”), registered. Vimeo offers applications to connected devices (“apps”), a Livestream video player and a Vimeo embeddable video player.
Vimeo’s video player:
Vimeo’s embeddable video player uses first-party cookies that they consider essential to the video player experience.
In order to provide an attractive design on our websites, we use YouTube for the integration of videos. YouTube is operated by YouTube LLC, headquartered at 901 Cherry Avenue, San Bruno, CA 94066, USA. YouTube is represented by Google.
On some of our websites we use plugins from YouTube. If you access our websites with such a plug-in – for example a media library – a connection to the YouTube servers will be established and the plugin will be displayed. It will then be communicated to the YouTube server which of our websites you have visited. If you are logged in as a member of YouTube, YouTube can assign this information to your personal user account. When using the plugin, e.g., by clicking on the start button of a video, YouTube can also assign this information to your user account. You can prevent this by logging out of your YouTube user account and other user accounts of the YouTube and Google before using our websites and deleting the corresponding cookies from the companies.
Depending on where you are located YouTube might process your personal data outside the European Economic Area by complying with an adequate legal framework.
The following Google entity may process your personal data:
- Google Ireland Limited is mainly responsible for users of Google services based in the European Economic Area or Switzerland, located at Gordon House, Barrow Street, Dublin 4, Ireland.
- Google LLC is mainly responsible for users of Google services based in the United Kingdom, located at 1600 Amphitheatre Parkway, Mountain View, California 94043, USA.
For more information on how YouTube processes personal data please see: https://www.youtube.com/intl/ALL_uk/howyoutubeworks/our-commitments/protecting-user-data/.