With this privacy policy, we would like to inform you about how we process personal data. We are aware of the importance of processing personal data for the user and therefore comply with all relevant legal requirements. The protection of your privacy is of the utmost importance to us. It therefore goes without saying that we comply with the statutory provisions on data protection.

Contact us

amily GmbH
Sandstr. 33
80335 Munich

 

External data protection officer

ePrivacy GmbH
represented by Prof Dr Christoph Bauer
Burchardstr. 14
20095 Hamburg
datenschutz@amily.de

If you wish to communicate directly with our data protection officer (for example, because you have a particularly sensitive request), please contact him by post, as communication by e-mail can always have security gaps. Please state in your enquiry that your request relates to the company amily GmbH.

 

Personal data

Personal data is all information about the personal and factual circumstances of an identified or identifiable person. This includes information and details such as your name, address or other postal address, telephone number or e-mail address.

In the context of an employment relationship, we also collect and process contact and address information, as well as payment information, health insurance information, insurance information, tax information including your religious affiliation, images taken of you, information about your work performance including your health-related absences and correspondence from which a personal reference to you is made. Other personal data that we collect may include information about your employment relationship, such as the date you joined and left the company, your job and title, working time records and pension scheme data.

Legal basis

We base the processing of your data on the following legal bases:

 

- Your consent, if you have given us such consent (Art. 6 para. 1 lit. a) GDPR),

- the initiation or performance of a contract with you (Art. 6 para. 1 lit. b) GDPR),

- the fulfilment of legal obligations (Art. 6 para. 1 lit. c) GDPR),

- the realisation of our legitimate interests (Art. 6 para. 1 lit. f) GDPR)

 

Legitimate interests

We pursue the following legitimate interests when processing your data:

• Improvement of our offer
• Protection against misuse
• Direct marketing
• Statistics

 

Data sources

Unless otherwise stated, we receive the data from you (including about the devices you use).

Storage duration

We store your data,

• if you have consented to the processing, at most until you withdraw your consent,
• if we need the data to fulfil a contract, at most for as long as the contractual relationship with you exists or statutory retention periods apply,
• if we use the data on the basis of a legitimate interest, at most for as long as your interest in erasure or anonymisation does not prevail.
• if statutory retention obligations exist, until the end of the retention periods.

 

Intended use

Personal data is only collected by us if and to the extent and for the purpose for which you provide us with the data yourself, e.g. as part of a registration.

We use and store your personal data as part of our services for the following purposes only if you have given us your express consent to do so:

- Customer acquisition and offer of services and products: the processing of customer data for the purpose of acquisition and the handling of our business relationships is regulated here

 

- Communication with business partners and customers: personal data of our business partners is processed to support customer relationship management.

 

- Processing business activities on behalf of customers: access to customer data is necessary for our employees to fulfil the commissioned services. This includes data required for project management and technical support.

 

- Invoicing and debt collection: data is processed for this purpose via our accounting department

 

In the context of an employment relationship, we use data to fulfil the employment relationship.

 

 

Data transmission

In the context of an employment relationship, we may transfer the data to involved service providers, group companies of the controller and affiliated companies.

The service providers used fall into the following categories:

Professional associations, tax offices, auditors, health insurance funds, social insurance providers, companies that process salary payments, tax consultants, companies that process personnel data, IT service providers.

Data is only ever passed on to third parties to the extent permitted by law and insofar as this is necessary for the fulfilment of the employment relationship.

 

Competition

If you take part in a competition organised by amily GmbH, e.g. as part of a survey, it is necessary to provide personal data. The participant assures that the personal details provided by him/her, in particular first name, surname and e-mail address, are truthful and correct. The data will be used to inform the winner.

None of the participant's personal data will be passed on to third parties or made available for their use without consent.

The rights of the data subject, storage and deletion as well as the legal basis mentioned in this data protection declaration remain unaffected and also apply.

 

Cookies

Cookies are data records that are stored in the browser's databases. For example, user identification numbers are stored here, which are transmitted to the user's computer when the website is used and managed there. The data records are stored there for later access. Typical uses of cookies are, for example, language selection, consent documentation or user authentication. Most browsers accept cookies automatically. However, you can set your browser so that no cookies are stored or explicit consent is required before a cookie is stored. You can also delete cookies that have already been set at any time. Please note that deactivating cookies may lead to restrictions in the use of our website.

 

Third-party services / data recipients

We use third-party services for various functions of our website.

Newsletter - Brevo (formerly „Sendinblue“)

The newsletter is sent via Sendinblue, a service provided by Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany. A corresponding order processing contract has been concluded.

Firstly, the data entered during registration is processed, such as name, company, but at least the email address and registration information such as the IP address. This data is stored and managed on our server and at Sendinblue.

The newsletters contain a so-called „web-beacon“, i.e. a pixel-sized file that is retrieved from the server of the dispatch service provider when the newsletter is opened. As part of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and time of retrieval, is initially collected. This information is used for the technical improvement of the services based on the technical data or the target groups and their reading behaviour based on their retrieval locations (which can be determined with the help of the IP address) or the access times. The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. Although this information can be assigned to individual newsletter recipients for technical reasons, it is neither our endeavour nor that of the mailing service provider to observe individual users. The analyses serve us much more to recognise the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.

The mailing service provider may use the recipients' data in pseudonymous form, i.e. without assigning it to a user, to optimise or improve its own services, e.g. to technically optimise the mailing and presentation of the newsletter or for statistical purposes. However, the mailing service provider does not use the data of our newsletter recipients to write to them itself or to pass the data on to third parties.

Data processing takes place on the basis of your consent (Art. 6 para. 1 lit. a GDPR) or, if consent is not required, on the basis of the legitimate interest in direct marketing (Art. 6 para. 1 lit. f GDPR). Consent can be withdrawn at any time by unsubscribing from the newsletter, e.g. by clicking on the corresponding link in every newsletter email or by sending us an email. The data processing operations carried out on the basis of the consent prior to revocation remain unaffected.

You can view the Sendinblue/Brevo privacy policy at https://de.sendinblue.com/legal/privacypolicy/ view.

 

We use other third-party services to fulfil the contract concluded with us:

We utilise the services of third parties in the following areas, among others: IT services, office software, marketing, finance, sales, office management, logistics and printing.

Atlassian

We use the products JIRA and Confluence from Atlassian Pty Ltd (Level 6, 341 George Street, Sydney NSW 2000, Australia) to carry out support, sales and project activities. A corresponding order processing agreement has been concluded.

Login and contact data such as name, e-mail and any other data required to fulfil the contract are processed.

Further information about the provider can be found at:
https://www.atlassian.com/legal/privacy-policy#what-this-policy-covers.

Microsoft 365

We use services from the Microsoft 365 product family, such as Outlook, Teams, OneDrive and SharePoint, to communicate and store data required to fulfil the contract.

For further information on data processing, please also refer to the Privacy policy from Microsoft.

For other data processing in the context of Microsoft 365, amily GmbH acts as a processor in accordance with Art. 28 GDPR (exchange of files via Teams, SharePoint or OneDrive or the processing of calendar entries).

 

We use other third-party services as part of an employment relationship:

Factorial

For absence management, digital personnel files and recruiting, we use the services of Factorial from EVERYDAY SOFTWARE, S.L., C/ d'Àlaba, number 61, 5-2, 08005 - Barcelona, Spain. A corresponding data processing agreement has been concluded.

All data necessary for personnel management and recruiting is processed

TeamViewer

We use the remote maintenance software TeamViewer from TeamViewer Germany GmbH, Bahnhofsplatz 2, 73033 Göppingen, Germany, for both internal and external technical support. A corresponding order processing contract has been concluded.

The data entered during registration, such as name and e-mail address, are processed.

TeamFON

For telephony services we use TeamSIP from TeamFON GmbH, Schloßschmidstraße 5 (6th floor) 80639 Munich, Germany. The service offered is a telecommunications service within the meaning of the German Telecommunications Act (TKG).

The data entered during registration, such as name and e-mail address, are processed.

Hornetsecurity

We use products and services from Hornetsecurity GmbH (Am Listholze 78, 30177 Hanover, Germany) to ensure the security of our IT infrastructure and communication systems. These solutions are used in particular to protect our email communication from threats such as spam, phishing, malware and ransomware. They also enable secure encryption, archiving and continuous availability of emails.

The processing of personal data takes place exclusively within the scope of the contractually agreed services and in accordance with the applicable data protection laws, in particular the GDPR. The data processing serves to fulfil our legitimate interest in defending against cyber threats, ensuring GDPR-compliant data processing and maintaining our business continuity.

Further information on data processing by Hornetsecurity can be found in their privacy policy.

 

Transfer to third countries

Data is transferred to countries outside the European Union. We only transfer personal data to third countries where the EU Commission has confirmed an adequate level of protection or where we can ensure the careful handling of personal data through contractual agreements or other suitable guarantees, such as certifications or proven compliance with international security standards.

-       USA (EU-U.S. Data Privacy Framework)

- India (Standard Contractual Clauses)

 

Your rights

As the data subject, you have the following rights:

• to request information about the processing of your data and to receive a copy of your personal data. Among other things, you can request information about the purposes of the processing, the categories of personal data that are processed, the recipients of the data (if a transfer takes place), the duration of the storage or the criteria for determining the duration;
• to receive the personal data concerning you in a structured, commonly used and machine-readable format or to transmit those data to another controller;
• to rectify your data. If your personal data is incomplete, you have the right to complete the data, taking into account the purposes of the processing;
• to have your data deleted or blocked;
• to restrict the processing;
• to object to the processing of your data;
• to revoke your consent to the processing of your data for the future and
• to complain to the competent supervisory authority about unauthorised data processing.

If you have any questions about the data protection measures of amily GmbH, please contact us by e-mail: datenschutz@amily.de or data-protection@amily.de.

 

Requirement or obligation to provide data

Unless expressly stated at the time of collection, the provision of data is not required or mandatory.

 

Status of this privacy policy

09.04.2025

We reserve the right to amend this privacy policy at any time with effect for the future.

If you follow links that open a new frame, you will leave the website of amily GmbH. Please note the data protection declarations shown there. All providers are subject to the legal regulations on data protection. The disclaimer below applies to all links to external providers.

 

Disclaimer

This website and all contributions contained therein are protected by copyright.
The use of content and contributions from this website for non-private purposes requires express prior consent.

The website www.amily.de (as well as adserviceportal.atlassian.com for our support services) is subject to regular changes and additions that serve to update the information provided, in particular to adapt to legal changes.

The operator of this website therefore assumes no liability or guarantee for the topicality, correctness and completeness of the information presented, nor is the operator of this website liable for direct or indirect damages, including loss of profit, arising from the use of the information and functions offered on this website. This also applies in particular to the links to other sites over whose content the operator of this website has no influence and for which it bears and accepts no responsibility. The inclusion of a link also does not imply any identification with the content of the linked site and no „adoption“ of its content.

 

Note from the content supervisor:
Please do not send us any e-mail advertising. We expressly object to the use of our data for any marketing purposes. Infringements will be prosecuted in accordance with the statutory provisions.