Privacy Policy

Our Privacy Policy was posted on 30 Sep 2017 and last updated on 15 April 2024.

Please read this statement carefully to understand how we collect, use and process your personal information. We will explain in detail how we protect your privacy, how you can check and adjust your information at any time, and how to control the strict application of this policy.

General Information Security Policy

Protect GlassDollar’s informational and IT assets (including but not limited to all computers, mobile devices, networking equipment, software, and sensitive data) against all internal, external, deliberate, or accidental threats and to mitigate the risks associated with the theft, loss, misuse, damage or abuse of these systems;

Ensure information will be protected against any unauthorized access. Users shall only have access to resources that they have been specifically authorized to access. The allocation of privileges shall be strictly controlled and reviewed regularly.

Protect CONFIDENTIALITY of information. When we talk about confidentiality of information, we are talking about protecting the information from disclosure to unauthorized parties;

Ensure INTEGRITY of information. Integrity of information refers to protecting information from being modified by unauthorized parties;

Maintain AVAILABILITY of information for business processes. Availability of information refers to ensuring that authorized parties can access the information when needed.

Comply with and, wherever possible, exceed, national legislative and regulatory requirements, standards, and best practices;

Develop, Maintain and Test business continuity plans to ensure we stay on course despite all obstacles that we may come across. It is about “keeping calm and carrying on!”;

Raise awareness of information security by making information security training available for all Employees. Security awareness and targeted training shall be conducted consistently, security responsibilities reflected in job descriptions, and compliance with security requirements shall be expected and accepted as a part of our culture;

Ensure that no action will be taken against any employee who discloses an information security concern through reporting or in direct contact with Information Security Management Leader, unless such disclosure indicates, beyond any reasonable doubt, an illegal act, gross negligence, or a repetitive deliberate or willful disregard for regulations or procedures;

Report all actual or suspected information security breaches to security@glassdollar.com

‍Introduction

This privacy policy informs you in accordance with Art. 12 et seq. GDPR about how we handle your personal data when you use our GlassDollar website www.glassdollar.com (hereinafter: our website). It also applies to our processing of business-related data within our venture clienting platform for business matching and collaboration purposes as part of our business partner services (hereinafter: GlassDollar OS).

In particular, it explains:

  • Which data we collect and how we use it,
  • the legal basis and purpose of data processing,
  • how long we keep your data and
  • your rights regarding the processing of your data.

This privacy policy does not apply to websites of other organizations, including websites of close organizations and third party sites. Our website may contain links to the websites of such organizations that have their own privacy policy applied to them.

Controller

GlassDollar GmbH, Urbanstr. 71, 10967 Berlin (hereinafter: GlassDollar) as Controller (Art. 4 No. 7 GDPR) manages the GlassDollar Website and the GlassDollar OS, including all the data and materials it contains.
We have appointed a company data protection officer for our company.

If you have any questions regarding this Privacy Policy, please contact us using the contact details listed below.

privacy@glassdollar.com
or
GlassDollar GmbH
Urbanstr. 71
10967 Berlin

‍What types of data are we collecting and keeping?

‍Our website

The type and amount of data we receive and store depends on the way you use our website. Beside the processing of certain technical data that is necessary to provide you with access to our website and its content, we collect personally identifiable information (such as name, address of residence, telephone number or e-mail address) only if you decide to provide them.

  • Visiting our website: When you visit our website, certain technical data is automatically collected and temporarily stored to ensure the secure and stable operation of our website. This data is transmitted by your browser and includes
    • IP address of the requesting device
    • Date and time of access
    • Requested URL or resource
    • Referrer URL (the previously visited page, if transmitted)
    • Browser type and version (e.g., Chrome 108, Firefox 109)
    • User agent string (including browser type/version and operating system)
    • Installed fonts
    • MIME types supported by the browser
    • Browser language and time zone
    • Installed Browser plugins
    • Silverlight data (if present)
    • HTTP headers
    • Screen resolution

This data is technically necessary to display the website content correctly, ensure stability and security (e.g., defense against DDoS attacks), and to optimize our services (e.g., by anonymized usage analytics and performance statistics ).

In addition, we use cookies, website analytics, social media integrations, click tracking, and navigation analysis tools to gather non-personally identifiable data about your interactions with our content. An overview and further information on the cookies and technologies used can be found in our Consent Management Platform (CMP). This tool can be opened by clicking on the “Cookie settings” link in the page footer. You can view and manage your personal settings there at any time. You can change your selection at any time and give or withdraw your consent. Detailed information can also be found in our Cookie Policy.

  • Contact form: When you use our contact form, we process your
    • name
    • email address
    • and company information
    • any additional information you voluntarily share to respond to your inquiry.
  • Job Application Data: When applying for a job, internship, or volunteer role at GlassDollar, we collect and process your personal data via our recruiting platform. This includes:
    • Full name
    • Email address
    • Telephone number
    • LinkedIn profile link (if provided
    • Curriculum vitae (CV)
    • Cover letter and other submitted documents
    • Educational background and professional experience
    • Any additional information you voluntarily share to process your application and manage your application journey.
  • GlassDollar OS Sign-In: If you use the sign-in function to access your organization’s GlassDollar OS, we collect the necessary login and user data to facilitate secure access, authenticate your identity, and provide personalized services.
  • Book a Call / Request a Demo: If you use the function to book a call or request a demo, we collect your
    • name
    • email address,
    • and company information for the purpose of scheduling and coordinating meetings. Appointment data is processed through our scheduling service.
  • Access Study: When you request access to study results or research content, we collect your
    • name,
    • email address,
    • and company information to verify your request and provide access to the requested materials.
  • Masterclass Registration or Information: When you register for or request information regarding a masterclass, we collect your
    • name,
    • email address,
    • job position,
    • and company information to process your registration and provide you with relevant updates and materials.
  • Consent Management Tool: We use the Consent Management Platform (CMP) from Usercentrics (Usercentrics GmbH. Sendlinger Str. 7, 80331 Munich, Germany to obtain and document consent to the use of cookies and tracking technologies (see section “using cookies” below). Usercentrics collects consent and log file data as our processor in accordance with Art. 28 GDPR. Usercentrics’ JavaScript enables us to inform you about your consent to certain cookies and other technologies on our website and to obtain, manage and document consent. You can generally prevent the execution of JavaScript through browser settings, which also prevents Usercentrics from executing the JavaScript. This results in limited usability of the platform, as technically necessary cookies are also not loaded. When the service is provided, data is also stored in the Usercentrics’ log file.

The following data is collected in connection with the CMP:

  • Consent data (consent ID, consent number, time consent was granted, opt-in or opt-out),
  • Cookie banner language, user settings, template version,
  • End device data (HTTP agent, HTTP referrer),
  • IP address,
  • geo-location.

‍Business Partner Data in GlassDollar OS

Our GlassDollar OS contains publicly available company information, such as the company name, legal form, and general business email address of potential business partners for our customers (hereinafter: Business Partner Data). Customers select startups or potential Business partners they are interested in to further validate their product or service.

We identify potential business partners (e.g., Startups) using publicly available sources such as company websites, professional directories, and professional business platforms such as LinkedIn or Clearbit. The business partner data collected may include:

  • Company name and industry
  • Contact person’s name, job title, and publicly available email address
  • Business-related details such as services, expertise, and previous projects

If a Business partner representative or employee contacts us using a personal business email address or other personal data, we may use this additional personal data to present the business partner in our GlassDollar OS to the extent such additional personal data is relevant to the business partner data set (e.g. additional contact information). In some cases, we may provide Business Partner with a form to update their business information, including contact details and relevant business materials (e.g., pitch decks).

Business partners are informed about the processing of their personal data during the initial contact, including a reference to our Privacy Policy.

‍How do we use the information we collect?

Your personal information will be kept secret. It will be used only for the purposes for which it is collected and in order to comply with our legal obligations and audit obligations.

‍Our website

In order to provide the services we request, we process personal information, such as personal information delivered with the interest to join GlassDollar, and we will use them exclusively for activities related to your interest and providing information about GlassDollar:

  • Visiting our website: To display our website correctly, ensure stability and security (e.g., defense against DDoS attacks), and to optimize our services. The legal basis for the collection and temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is to provide users with access to our website and to ensure the security of the IT systems used, in particular for the detection, elimination and conclusive documentation of security incidents.
  • Cookies/Technologies: To ensure the functionalities of our website, to optimize our website and services. The legal basis for the processing of personal data using technically necessary cookies or technologies is Section 25 (2) TDDDG in conjunction with Art. 6 (1) lit. f GDPR. Our legitimate interest lies in the aforementioned purposes of the functioning and secure provision of our website. The processing of personal data using technically unnecessary cookies or technologies is based on your consent. The legal basis is § 25 para. 1 TDDDG i.V.m. Art. 6 para. 1 lit. a GDPR.
  • Contact Form: To respond to inquiries you submit and provide requested information. The legal basis for the data processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is to contact you as requested by you and to manage your inquiry.
  • Job Application Data: To evaluate your suitability for roles at GlassDollar and to carry out the recruitment process. The legal basis for the data processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is to contact you regarding your application and to manage your application as requested by you.
  • GlassDollar OS Sign-In: To facilitate secure login, authenticate users, and provide personalized access to our services. The legal basis for the data processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is to provide our services that include access to our GlassDollar OS.
  • Book a Call / Request a Demo: To arrange appointments, respond to demo requests, and communicate relevant information. The legal basis for the data processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is to contact you regarding your booking and to manage our services as requested by you.
  • Access Study: To verify your identity and company and provide access to requested study content or research materials. The legal basis for the data processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is to validate your access request and to manage access as requested by you.
  • Masterclass Registration or Information: To process your registration, share updates, and deliver relevant materials for the masterclass. The legal basis for the data processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is to provide our services as requested by you.
  • Consent Management Tool: The legal basis for the processing of personal data in connection with the Usercentrics Consent Management Tool is Section 25 (2) TDDDG in conjunction with Art. 6 para. 1 lit. c GDPR (fulfillment of a legal obligation).

‍Business Partner Data in GlassDollar OS

We collect and process Business Partner Data to facilitate collaboration between our customers and potential business partners. Our GlassDollar OS serves as a platform that enables customers to identify potential business partners such as startups and conduct projects with them.

Usually the identified business partner data involves non-personal company data only like company name, address and neutral company email. But if the company publishes contact information of their representatives or employees, such published personal data may be collected from public sources and will be used to facilitate business relationships and execute projects for our customers. These data are made available in our platform to help customers identify suitable partners for innovation projects. This processing includes:

  • Providing company profiles and relevant contact details to customers
  • Matching Startups with potential business opportunities
  • Documenting and managing relevant business interactions.

The personal data related to any potential business partner may be used to contact the potential business partner to explore potential business relationships. The initial outreach is conducted via email using publicly available general or personal business email addresses, company contact forms, or chats in publicly accessible business platforms.

The use of the publicly available data as well as any additional data voluntarily provided within our contact with the business partner is based on our legitimate interest under Article 6(1)(f) GDPR, as it is necessary to efficiently enable business relationships between our customers and potential business partners. Unless informed otherwise by the potential business partner we assume that this data processing is also in the interest of the potential business partner in identifying relevant business opportunities provided by our customers. Any representative or employee of potential business partners concerned may object to the processing of their personal data at any time by contacting privacy@glassdollar.com.

‍How long do we keep your information?

‍Our Website

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, to comply with legal and audit obligations, or until you withdraw your consent where applicable. Specifically:

  • Visiting our website/Cookies, Technologies: The data collected while visiting our website is deleted when the respective session has ended. If the data is stored in log files, this is the case after seven days at the latest. An overview and further information on cookies and technologies used can be found in our Consent Management Platform (CMP) and our Cookie Policy.
  • Contact Form: Data will be stored for up to 6 months after resolving your inquiry, unless it leads to a contractual relationship. In such case it is deleted after the contractual relationship is ended considering the legal retention periods.
  • Job Application Data: Data is retained for 6 months after the conclusion of the recruitment process.
  • GlassDollar OS Sign-In: Data will be retained and deleted in accordance with the data processing agreement with the organization.
  • Book a Call / Request a Demo: Data will be stored for up to 6 months after your last contact if no further relationship is established. In such case it is deleted after the contractual relationship is ended considering the legal retention periods.
  • Access Study: Data will be retained for up to 6 months after providing access to study content.
  • Masterclass Registration or Information: Data will be retained for up to 6 months after the masterclass has taken place or after information has been provided.
  • Consent Management Tool: The consent data collected via our Consent Management Tool (consent given and withdrawal of consent) is stored for a period of one year. The data will then be deleted immediately.

‍Business Partner Data in GlassDollar OS

Personal data of potential business partners are stored for as long as the business relationship exists or is actively pursued, and for a maximum of 1 year after the last interaction or contact, unless legal retention obligations require a longer storage period.

Representatives or employees of business partners may request the deletion of their personal data at any time by contacting privacy@glassdollar.com. Upon such a request, data will be deleted immediately unless statutory retention obligations or overriding legitimate interests prevent deletion.

We strive to ensure that all personal data we process is accurate and up to date. Business partners and their representatives are encouraged to inform us of any changes to their personal information.

GlassDollar may periodically request updates from business partners to maintain the accuracy of business data. In addition, representatives or employees of business partners may request correction or update of their data at any time by contacting privacy@glassdollar.com.

‍Do we share your personal information?

We will not share your information with third parties, unless we are required to disclose information by law or to provide our services. For such purposes we might share your information with:

  • ‍Internal departments and affiliated companies who are involved in the operation of our website and GlassDollar OS and the provision and use of functions and content (e.g. IT employees, editors, employees from the HR department, employees from departments responsible for answering contact inquiries etc.)
  • Services providers (mainly IT-Providers) that help us providing and improving our website and services. All service providers that process personal data are contractually bound to strict confidentiality and data protection obligations in accordance with Art. 28 GDPR. These include:
    • Hosting and content delivery providers
    • Web analytics and tracking service providers
    • Marketing and retargeting service providers
    • Consent management platforms
    • Communication and contact form service providers
    • Video hosting platforms
    • IT security and support providers
  • ‍We share the data of potential business partners available within GlassDollar OS with our registered customers and authorized users. This is done solely for the business purposes outlined in this policy, particularly to initiate and facilitate collaborations between customers and potential business partners. However, this data:
    • Is not publicly shared or sold to third parties.
    • Is only accessible within the platform to authorized customers that are bound by confidentiality and data protection agreements.

‍Data transfer to third countries

When using our website or processing business partner data in the GlassDollar OS, your personal data may be passed on or disclosed to third parties. These can also be located outside the European Economic Area (EEA), i.e. in third countries. We will inform you about the details of the transfer in the relevant places below.

In some third countries, the European Commission certifies data protection comparable to the EEA standard through so-called adequacy decisions. However, in other third countries to which personal data may be transferred, there may not be a consistently high level of data protection due to a lack of legal regulations. If this is the case, we ensure that data protection is sufficiently guaranteed. This is possible via binding company regulations, standard contractual clauses of the European Commission for the protection of personal data in accordance with Art. 46 Para. 1, 2 lit. c GDPR), certificates or recognized codes of conduct.  

‍Using cookies

For information on how we use Cookies, please refer to our Cookie Policy (https://www.glassdollar.com/cookie-policy)

‍Information on the rights of individuals

You have the right:

  • in accordance with Art. 15 GDPR, to request information about your personal data processed by us. In particular, you can obtain information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, deletion, restriction of processing or objection, the existence of a Right to complain, the origin of your data, if it was not collected by us, as well as the existence of automated decision-making including profiling and, if necessary, meaningful information about its details;
  • in accordance with Art. 16 GDPR, to immediately request the correction of incorrect or complete personal data stored by us;
  • in accordance with Art. 17 GDPR, to request the deletion of your personal data stored by us, unless the processing is carried out to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims is required;
  • in accordance with Art. 18 GDPR, to request the restriction of the processing of your personal data if you dispute the accuracy of the data, the processing is unlawful but you refuse its deletion and we no longer need the data but you use it to assert or exercise your rights or need to defend legal claims or you have objected to the processing in accordance with Art. 21 GDPR;
  • in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transmitted to another person responsible;
  • In accordance with Art. 7 Para. 3 GDPR, you can revoke your consent to us at any time. This means that we are no longer allowed to continue the data processing that was based on this consent in the future
  • to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority at your usual place of residence or place of work.

If your personal data is processed on the basis of legitimate interests in accordance with Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR, you have the right to object to the processing of your personal data in accordance with Article 21 of the GDPR, provided there are reasons for doing so. which arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right to object, which we will implement without specifying a special situation.

The rights outlined in this section apply equally to website users and business partners whose personal data we process.

If you would like to exercise your right of withdrawal or objection, simply send an email to privacy@glassdollar.com

‍Obligation to provide data

In principle, you are not obliged to provide us with your personal data. However, if you do not do this, we will not be able to provide you with our website without restrictions or respond to your inquiries to us. Similarly, if business partners do not provide necessary information, we may be unable to facilitate potential business collaborations or include them in GlassDollar OS for matching with customers.

Personal data that we do not necessarily need for the processing purposes mentioned above are marked as voluntary information.

Automated decision-making/profiling

There is no automated decision making - including profiling - according to Art. 22 GDPR.