Privacy policy

Version May 2021

General data protection

1. Who is responsible for data processing?

Shiftmove GmbH
Warschauer Street 57
10243 Berlin

2. How can I contact the data protection officer?

Shiftmove GmbH
Data Protection Officer
Warschauer Street 57
10243 Berlin
Mail: /

3 Why and on what legal basis do we process personal data?

When you browse the website, order or use products or contact us, we receive personal data from you. In principle, we process data:

If you give us your express consent (Art. 6 I lit. a GDPR), e.g. you would like us to contact you directly, subscribe to newsletters or receive promotional offers. Measures in accordance with Art. 7 III UWG remain unaffected by this, see GTC.
to fulfill contractual obligations (Art. 6 I lit. b GDPR), e.g. if you purchase and use our product.

If we are subject to a legal obligation (Art. 6 I lit. c GDPR). For example, we are obliged to retain certain documents under tax and commercial law.
on the basis of a legitimate interest of us or third parties (Art. 6 I lit. f GDPR). This includes data processing for the purposes of direct advertising, sales promotion, IT security and fraud prevention, as well as the creation of pseudonymous user profiles for the analysis and needs-based design of the website. You can object to this in accordance with Art. 21 I 1 GDPR. You can find further information under 10.

4. Data processing on our website

Further information can be found here: Data protection on our website

5. Career

If you do not wish to purchase any of our products, but would like to receive further information regarding the handling of your data in the context of an application, please refer to our data protection policy for applicants.

6. Data processing by our products

In order to properly fulfill the contractual objectives, it is necessary to collect and evaluate Vimcar user data. Only by linking the Vimcar plug and the respective user account is it possible to use the Vimcar products. The legal basis is Art. 6 I lit. b GDPR.

7. Data processing when contacting us

Vimcar uses communication service providers to receive and process inquiries. Vimcar uses external customer service software from Zendesk (Zendesk Inc., 1019 Market Street San Francisco, CA 94103 United States) to process inquiries.Zendesk is used to integrate contact forms and to forward your inquiries to us. The use of Zendesk is optional. If you do not agree to Zendesk collecting your data, we offer you alternative contact options for submitting service requests by telephone. The security of the transmission is regularly checked via. Standard Contractual Clauses and Binding Corporate Rules (SCCs) have been concluded with Zendesk Inc. to protect your data.
You can ask us questions and send us messages via the contact form, our e-mail addresses, the software applications or by telephone. We only process your data in order to contact you in the desired way and to process your request. The legal basis is Art. 6 I lit. a or b GDPR, depending on the customer's request.

Please note Zendesk's data protection information.

8. Will my data be transmitted to third parties?

In order for Vimcar to process your data in accordance with the purposes described above, it may be necessary for recipients other than Vimcar to view and process your data.

8.1 External service providers (processors)
Your data will be passed on to service partners if they work on our behalf and support Vimcar in the provision of their services. For example, if you subscribe to our newsletter, we have commissioned a service provider to send the mailing.
Processing of your personal data by commissioned service providers takes place within the framework of order processing in accordance with Art. 28 GDPR.

8.2 Other service providers, partners and third parties
Vimcar may also work with third parties if it is necessary to fulfill our service offers or if we are legally obliged to disclose data. This may involve the following:Bodies that carry out credit checksPublic bodies or a court order.

9. will my data be processed outside the EU? How is data protection ensured?

We attach great importance to processing your data within the EU. However, we may use service providers that operate outside the EU. In these cases, we ensure that these service providers have an adequate level of data protection before transferring the personal data. This means that a level of data protection comparable to the general principles of data transfer within the EU is achieved via EU standard contracts, an adequacy decision in accordance with Art. 45 GDPR, suitable guarantees in accordance with Art. 46 GDPR or binding internal data protection regulations in accordance with Art. 47 GDPR (cf. Art. 44 ff. GDPR).

10. How long will my data be stored?

If no explicit storage period is specified in the information provided above or at the time of collection, your personal data will be deleted as soon as the purpose of storage no longer applies and statutory retention periods such as § 147 I AO, § 357 HGB and §§ 195, 199 BGB do not prevent deletion. In these cases, the data will be blocked or deleted after the retention periods have expired, unless there is a need for further storage of the data in order to conclude or fulfill a contract or to assert our rights.

11 What rights am I entitled to and how can I assert them?

You have the following rights vis-à-vis us with regard to your personal data:

11.1 General rights
You have the right of access (Art. 15 GDPR), rectification (Art. 16 GDPR) and erasure (Art. 17 GDPR). In addition, to data portability (Art. 20 GDPR) and restriction of processing (Art. 18 GDPR). If data processing is based on your consent, you can revoke this consent at any time with future effect (Art. 21 GDPR).

As a rule, you can assert your rights informally and without giving reasons. In individual cases, a copy of an identity document may be required in order to clearly assign the data to your person and to prevent abusive requests for information. Information that is not necessary to establish your identity should be blacked out by you. You will be informed of this separately. The data on the copy of the ID card or passport is subject to strict purpose limitation. They are used exclusively to verify your identity, but are not included in our database. After verification, the proof will be deleted.

Further information can be found here: BfDI - Data protection - My rights

11.2 Rights in data processing based on legitimate interest
In accordance with Art. 21 I GDPR, you have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Art. 6 I lit. e GDPR (data processing in the public interest) or on Art. 6 I lit. f GDPR (data processing for the purposes of a legitimate interest); this also applies to profiling based on this provision. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims. Please note that if you object, you may no longer be able to use our products, as the data processing is necessary for their use.

11.3 Rechte bei Direktwerbung
If we process your personal data for the purpose of direct marketing, you have the right under Art. 21 II GDPR to object at any time to the processing of personal data concerning you for the purpose of such marketing, including profiling, insofar as it is related to such direct marketing.

If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes.

11.4 Right to lodge a complaint with a supervisory authority
In accordance with Art. 77 I GDPR, you have the right to lodge a complaint about the processing of your data with a data protection supervisory authority (competent authority: Friedrichstr. 219, 10969 Berlin)

12. Other

This data protection declaration is continuously adapted in the course of the further development of the Internet or our offer. Please check this declaration regularly for any changes. We will inform you of any significant changes in good time.

Our websites and Vimcar software applications may contain links to websites of other providers. We would like to point out that this data protection declaration applies exclusively to the websites and software applications provided by Vimcar. We do not monitor compliance with the applicable data protection regulations by other providers and have no influence on this.