Privacy Policy
1. An overview of Data Protection
General information
This section provides a clear summary of how your personal data is handled when you visit our website. “Personal data” refers to any information that can identify you as an individual. For more detailed information on data protection matters, please refer to our Data Protection Declaration included below.
Data Collection on our Website
Responsibility for Data Collection
The entity responsible for processing data on this website (referred to as the “controller”) is the operator of the website. You can find their contact information under the “Information about the responsible party (referred to as “controller” in the GDPR)” in this Privacy Policy.
Methods of Data Collection
Your data is collected when you provide it to us, such as when you fill out our contact form. Additionally, certain technical information (e.g., web browser, operating system, access time) is automatically recorded by our IT systems when you visit our website or provide consent for such recording.
Purpose of Data Usage
We use some information to ensure the website functions smoothly without errors. Other data helps us analyze user patterns and improve our services.
Your Rights Regarding Your Information You have the right to request information about your stored personal data, including its source, recipients, and purpose. You can also request the rectification or deletion of your data. If you have given your consent for data processing, you can revoke it at any time, affecting future processing. Additionally, you can request the restriction of data processing under certain circumstances and file a complaint with the relevant supervisory authority.
2. General Information and Mandatory Information
Data Protection
At Wissen Research, we value the protection of your personal data and adhere to all applicable data protection laws and regulations. Your personal information will be treated as confidential and used in accordance with this Data Protection Declaration.
Responsible Party (Controller) Information
We, Wissen Research, are the data processing controller for this website. You can contact us at the provided address and email.
Wissen Research Pvt. Ltd.
World Tech 67, 7th Floor
Plot No. ITC-10, Sector -67,
Mohali, Punjab- 160062
Phone: (+91) 7814300364
E-mail: info@wissenresearch.com
Storage Duration
We will retain your personal data as long as necessary to fulfill the intended purposes, unless legal retention periods require a longer storage duration. If you make a valid request for deletion or withdraw your consent for data processing, we will delete your data, unless there are other legal reasons that allow us to retain your personal information, such as tax or commercial law obligations. In such a situation, the deletion will occur once these reasons are no longer applicable.
Legal Basis for Data Processing
If you give your consent to data processing, we will process your personal data under the following GDPR articles:
- Article 6(1)(a) and Article 9(2)(a) for special categories of data.
- Article 9(1) for specific conditions of data processing.
- Article 49(1)(a) for data transfer to third countries with explicit consent.
For processing data related to cookies or accessing device information, the basis is § 25 (1) TTDSG. You can withdraw your consent at any time.
We process data based on:
- Article 6(1)(b) for contract fulfillment or pre-contractual measures.
- Article 6(1)(c) for legal obligations.
- Article 6(1)(f) for legitimate interests.
Details can be found in the relevant paragraphs of our privacy policy.
Designation of a Data Protection Officer
We have appointed a data protection officer for our company. You can reach them at the provided email address.
TUSHAR GUPTA
E-mail: tushar@wissenresearch.com
Revocation of Consent
You can withdraw your consent for data processing at any time. However, this will not affect the legality of data processing before your revocation.
Right to Object to the collection of data in special cases; right to object to direct advertising (Art. 21 GDPR)
Under certain circumstances, you have the right to object to the processing of your personal data, especially if it is based on our legitimate interests.
In the event that your personal data is processed based on Art. 6(1)(E) or (F) of the General Data Protection Regulation (GDPR), you have the right to object to the processing of your data at any time, provided it is based on grounds specific to your unique situation. This right also extends to any profiling carried out under these provisions. To determine the legal basis on which any data processing is conducted, please refer to this data protection declaration. Should you raise an objection, we will cease processing your affected personal data, except in cases where we can demonstrate compelling and legitimate reasons for the processing that outweigh your interests, rights, and freedoms, or if the processing is necessary for the establishment, exercise, or defence of legal claims (objection pursuant to Art. 21(1) GDPR).
Furthermore, if your personal data is being processed for direct advertising purposes, you have the right to object to the processing of your affected data at any time. This also applies to profiling that is associated with such direct advertising. Upon your objection, your personal data will no longer be used for direct advertising purposes (objection pursuant to Art. 21(2) GDPR).
Right to log a complaint with the competent supervisory agency
If you believe your rights under the GDPR have been violated, you have the right to log a complaint with the relevant supervisory authority.
If there are breaches of the GDPR, individuals have the right to file a complaint with a supervisory agency. This right applies specifically in the member state where they usually reside, work, or where the alleged violation took place. It’s important to note that this right to lodge a complaint remains valid independently of any other administrative or legal actions that may be available as legal recourses.
Right to Data Portability
You have the right to receive your personal data in a commonly used, machine-readable format if the processing is based on consent or contract fulfillment.
Information, Rectification, and Eradication of Data
You have the right to access information about your stored personal data, and you can request its rectification or erasure.
Under the relevant legal regulations, you possess the entitlement to request details regarding your stored personal data, including their origin, recipients, and the purpose for which they are being processed. Furthermore, you might also have the option to request the correction or deletion of your data. Should you have any inquiries pertaining to this matter or any other concerns related to your personal data, feel free to reach out to us whenever you wish.
Right to demand processing restrictions
You have the right to request limitations on the processing of your personal data. If you believe that the data we have about you is incorrect, you can ask us to restrict its processing while we verify its accuracy. Likewise, if we have processed your data unlawfully, you can request restrictions instead of complete erasure.
Furthermore, if we no longer need your personal data for our purposes but you require it to exercise legal rights or defend claims, you can ask for processing restrictions rather than its deletion.
In situations where you’ve raised an objection under Art. 21(1) of the GDPR, your rights and ours will be balanced until a decision is reached. During this time, you can request restrictions on the processing of your personal data.
If we grant the restriction, your data (except for archiving purposes) will only be processed with your consent or for legal claims, defense, protection of rights of others, or important public interests recognized by the European Union or an EU member state. If you wish to exercise this right, you can contact us at any time.
SSL and/or TLS Encryption
To secure the transmission of sensitive information, such as purchase orders or inquiries, we use SSL or TLS encryption. One can identify an encrypted connection by verifying if the browser’s address line changes from “http://” to “https://” and observing the presence of a lock icon in the browser.
With SSL or TLS encryption enabled, any data you send to us becomes unreadable by unauthorized individuals.
Rejection of Unsolicited E-mails
We do not consent to receiving unsolicited promotional or information material based on the contact information provided in our Site Notice. We reserve the right to take legal action against unsolicited promotional messages.
3. Recording of Data on this Website
General Cookie Information
Cookies, small text files, are harmless to your device. They can be either temporary for the duration of your session or permanently stored on your device. Temporary ones vanish once you leave, while permanent ones persist until you manually delete them or your browser removes them automatically.
Occasionally, third-party cookies might be stored on your device when you visit our site. These cookies allow either you or us to utilize specific services provided by the third party, such as payment processing services.
Cookies serve various functions. Some are essential for the proper functioning of certain website features, like the shopping cart or video display. Others might be used for user pattern analysis or displaying promotional messages.
Cookies, necessary for the smooth functioning of electronic communication transactions or to enable specific features you desire (e.g., shopping cart functionality), and those essential for website optimization (required cookies), which provide valuable insights into the web audience, will be stored according to Art. 6(1)(f) GDPR, unless a different legal basis is mentioned. The website operator has a legitimate interest in storing required cookies to ensure the flawless and optimized delivery of their services. In case your consent is requested for storing cookies and similar recognition technologies, such processing will be solely based on the obtained consent (Art. 6(1)(a) GDPR and § 25(1) TTDSG); and you have the right to revoke this consent at any time.
You can customize your browser settings to receive notifications whenever cookies are placed and allow cookies only in specific situations. Additionally, you have the option to refuse cookies in certain cases or altogether, or enable automatic deletion of cookies when you close the browser. It’s important to note that disabling cookies might limit some functionalities of this website.
If third-party cookies are utilized or cookies are employed for analytical purposes, we will inform you separately through our Data Protection Policy and, if necessary, seek your consent.
Server Log Files
The website’s provider automatically gathers and retains information through server log files, which are transmitted to us by your web browser. This information includes:
The type and version of the browser you are using.
The operating system you have.
The URL of the referring website.
The hostname of your device accessing the website.
The time when the server was accessed.
Your IP address.
It is essential to clarify that this data is not combined with any other data sources. The recording of this data is done based on Art. 6(1)(f) of the General Data Protection Regulation (GDPR). The website’s operator has a legitimate interest in ensuring the technical accuracy and optimization of the website. To achieve this goal, it is necessary to maintain server log files.
Request by Email, Telephone, or Fax
If you get in touch with us through email, telephone, or fax, any information you provide, including personal data such as your name and request, will be stored and processed by us to fulfill your request. We respect your privacy and will not share this data with anyone else unless you explicitly consent to it.
The processing of this data is based on the provisions of Art. 6(1)(b) of the General Data Protection Regulation (GDPR) when your inquiry is related to a contract or necessary for pre-contractual measures. In other cases, we process the data based on our legitimate interest in efficiently handling inquiries (Art. 6(1)(f) GDPR) or with your explicit consent (Art. 6(1)(a) GDPR), which you can withdraw at any time.
Your data, which you send to us through contact requests, will be retained by us until you ask us to delete it, withdraw your consent for storage, or until the purpose for data storage is no longer valid (e.g., after fulfilling your request). Any required legal obligations, such as statutory retention periods, will still apply and remain unaffected.
4. Online-based Audio and Video Conferences (Conference Tools)
Data Processing During Conferences
We employ online conference tools, among various other means, to communicate with our clients. Detailed information about the tools we utilize can be found below. When you engage in video or audio conferences with us via the internet, both the provider of the conference tool and ourselves collect and process your personal data. This data includes your email address and/or phone number, as well as any information you provide or access while using the tools (metadata), such as the conference duration, start and end times of your participation, and the number of participants.
Moreover, the conference tool provider processes all the technical data necessary for facilitating the online communication, which encompasses IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or loudspeaker specifications, and the type of connection.
Any content exchanged, uploaded, or shared within the tool, including cloud recordings, chat/instant messages, voicemail, photos, videos, files, whiteboards, and other information, is also stored on the provider’s servers.
It is essential to note that we do not have complete control over the data processing procedures of the tools we employ. Our abilities are largely governed by the corporate policies of the respective providers. For more details on how the conference tools handle data, please refer to the data protection declarations of the tools listed below this text.
Purpose and legal bases
The conference tools have a dual purpose: firstly, they facilitate communication with potential or current contractual partners and allow us to offer specific services to our customers, as per Art. 6(1)(b) of the GDPR. Secondly, their usage is driven by our legitimate interest, aiming to streamline and expedite communication with our company, in accordance with Art. 6(1)(f) of the GDPR. Should consent be sought, the tools will be employed based on that consent, which can be withdrawn at any time, starting from the date of revocation.
Duration of storage
Any data we gather directly through video and conference tools will be promptly deleted upon your request for deletion, withdrawal of consent, or when the purpose of data storage is no longer applicable. Cookies that are stored on your device will persist until you remove them. However, mandatory legal retention periods will not be affected.
It’s important to note that we do not have control over how long your data is stored by the conference tool operators for their own purposes. For more information, please reach out to the operators of the conference tools directly.
Conference tools used
We employ the following conference tools:
Microsoft Teams
5. Custom Services
Handling Applicant Data
We provide website visitors with the chance to apply for job positions by various means, such as via email, postal services, or through an online job application form. In the following, we will provide you with information about the extent, purpose, and utilization of the personal information gathered during the application procedure. Rest assured that we will handle the collection, processing, and utilization of your data in full adherence to applicable data privacy regulations and other legal provisions, ensuring that your information remains strictly confidential at all times.
Scope and purpose of the collection of data
Upon submitting a job application to us, we will handle any relevant personal information (such as contact details, communication data, application documents, and interview notes) necessary for making a decision regarding your potential employment with us. The legal basis for this process is § 26 BDSG, in accordance with German Law (Negotiation of an Employment Relationship), Art. 6(1)(b) GDPR (General Contract Negotiations), and, if applicable, Art. 6(1)(a) GDPR, provided you have given your consent. You retain the right to withdraw your consent at any time.
Within our organization, access to your personal data will be limited to individuals involved in the job application process.
If your application leads to your recruitment, the submitted data will be stored in our data processing system, following the requirements of § 26 BDSG and Art. 6(1)(b) GDPR, for the purpose of implementing the employment relationship.
Data Archiving Period
In case we are unable to offer you a job, or you decide to reject our job offer or withdraw your application, we may retain the information you provided for up to six months after the application process concludes (either rejection or withdrawal). This retention is based on our legitimate interests under Art. 6(1)(f) of the GDPR. After this period, we will delete the data, including any physical application documents. The purpose of this storage is primarily to have evidence in case of any legal dispute that may arise. If it becomes evident that the data will be necessary beyond the initial six-month period (for instance, due to an impending or ongoing legal dispute), deletion will occur when the purpose for retaining the data no longer applies.
Longer storage may also take place if you have given your agreement (Article 6(1)(a) GDPR) or if statutory data retention requirements preclude the deletion.
6. Our Social Media Appearances
Data Processing through Social Networks
We maintain publicly accessible profiles on various social networks, such as Facebook and Twitter. These networks have the capability to extensively analyze your user behavior when you visit our social media pages or any website containing integrated social media content, like buttons or banner ads.
During your visit to our social media pages, several data processing operations related to data protection take place, which can be explained as follows:
If you are logged into your social media account while visiting our page, the social media platform’s operator can link your visit to your user account. Even if you are not logged in or don’t have an account with the specific social media platform, your personal data might still be collected. This data collection may occur through cookies stored on your device or by recording your IP address.
The data collected by the social media platforms enables them to create user profiles that store your preferences and interests. Consequently, you may encounter interest-based advertisements both within and outside of your social media presence. Furthermore, if you have an account with the social network, you may see interest-based ads across all your logged-in devices.
It is essential to be aware that we cannot trace all the processing operations carried out by the social media portals. Depending on the platform, additional processing operations may occur, as described in the terms of use and privacy policy of each respective social media portal.
Legal basis
We should aim to have a broad online presence through our social media activities. This objective aligns with a legitimate interest as defined in Art. 6 (1) lit. f of the GDPR. The social networks may utilize various legal grounds for their analysis processes, as determined by the operators of these platforms (e.g., consent according to Article 6 (1) (a) GDPR).
Responsibility and assertion of rights
When you access any of our social media platforms (e.g., Facebook), both we and the social media platform’s operator are jointly responsible for the data processing activities that occur during your visit. You have the right to protect your data and exercise your rights (such as obtaining information, making corrections, requesting deletion, limiting processing, data portability, and filing complaints) not only with us but also with the operator of the specific social media platform (e.g., Facebook).
It is important to acknowledge that while we share responsibility with the social media platform operators, we do not have complete control over the data processing operations carried out by the social media platforms. Our capabilities are subject to the policies set forth by the respective provider.
Storage time
The data obtained directly from us through our social media presence will be promptly deleted upon your request to do so, or if you withdraw your consent for its storage or if the purpose for data storage no longer exists. However, any stored cookies on your device will remain until you choose to delete them. It’s essential to note that mandatory legal requirements, such as retention periods, will still apply and won’t be affected.
Regarding the data stored by social network operators for their own purposes, we have no control over their storage duration. For more information, please contact the social network operators directly, which can be found in their privacy policy provided below.
Individual social networks
LinkedIn
For information regarding the handling of personal data on LinkedIn, please refer to LinkedIn’s Privacy Policy at: https://www.linkedin.com/legal/privacy-policy
Facebook
For information regarding the handling of personal data on Facebook, please refer to Facebook’s Privacy Policy at: https://www.facebook.com/privacy/policy/
For information regarding the handling of personal data on Twitter, please refer to Twitter’s Privacy Policy at: https://twitter.com/en/privacy