About us
This privacy policy ("PrivacyPolicy") explains how we process and protect your personal data when you use this Website or our services provided via https://www.dartlabs.io/(together, the "Website").
The Website is operated by DART Labs GmbH, c/o Impact Hub Zürich AG, Sihlquai 131, 8005 Zurich, Switzerland (the "COMPANY","we", "our", or "us"). TheCompany is the controller for the data processing described below.
Unless otherwise defined in this PrivacyPolicy, the definitions used in this Privacy Policy have the same meaning as inthe Swiss Federal Act on Data Protection or the EU General Data ProtectionRegulation.
In Germany,we have appointed an EU representative in accordance with Article 27 of the GDPR. If you are visiting us from the EU/EEA,you can also contact LEXR Germany Rechtsanwalts GmbH
by e-mail to: contact@lexr.com
by mail to: LEXR Germany Rechtsanwalts GmbH, Gormannstr. 14, 10119 Berlin
1 Personal data we collect
We may collect or receive personal information for a number of purposes connected with our business operations when you use our website or our services. This may include the following:
· Client requests (e.g. details about your inquiries).
· Contact details (e.g. name, address, phone number).
· Recruitment details (e.g. CV, letter of motivation).
· Website visitor details (e.g. IP address, log files).
· Personal information that may been tailed in your application (e.g. financial information, pitch deck, support needed).
2 How we collect personal data
We collect information about our users when they use our Website or our services, including taking certain actions within it.
Directly
· When users correspond with us by electronic means.
· When users access, use, or otherwise interact with our Website.
· When users sign up to receive our newsletter and other marketing materials.
· When users submit their data tous (e.g. via the application form).
Indirectly
· From public sources, such as public directories.
· From third parties, such as social media plugins and third-party cookies.
3 Legal basis and purposes
Our legal basis for collecting and using the personal data described in this Privacy Policy depends on the personal datawe collect and the specific purposes for which we collect it.
Contract: To perform our contractual obligations or take steps linked to a contract with you. In particular:
· To provide our services.
· To recruit you.
Consent: We may rely on your freely given consent at the time you provided your personal data. In particular:
· To provide users with news, special offers, newsletters, and general information about goods and services which we offer.
· To use non-necessary cookies and analytics tools when you browse our website.
Legitimate interests: We may rely on legitimate interests based on our assessment that the processing is fair and reasonable and does not override your interests or fundamental rights and freedoms. In particular:
· To maintain and improve ourWebsite and services.
· To develop new services.
Necessity for compliance with legal obligations: To meet regulatory and public interest obligations. In particular:
· To comply with applicable regulations and legislation.
· For the legal enforcement of claims and rights.
4 Newsletter
We may send newsletters and other notifications by email and through other communication channels. We may have newsletters and other notifications sent by third parties or send them with the help of third parties.
In principle, you must expressly consent to the use of your e-mail address and other contact addresses, unless the use is permitted for other legal reasons. We use "double opt-in" for any consent in the case of e-mails, i.e. you will receive an e-mail with a web link that you must click to confirm, so that no misuse by unauthorized third parties can take place. We may log such consents including Internet Protocol (IP)address, date and time.
Newsletters and other notifications may contain web links or tracking pixels that record whether an individual newsletter or notification has been opened and which web links were clicked(performance measurement). Such web links and tracking pixels record the use of newsletters and other notifications. We need this statistical recording of usage, including success and reach measurement, in order to be able to offer newsletters and other notifications effectively and in a user-friendly manner, as well as permanently, securely and reliably, based on the reading habits of the recipients.
You can unsubscribe from newsletters and other notifications at any time and thereby object in particular to the aforementioned collection of usage. You can do so by contacting us directly or following the link included in the footer of each newsletter we send you.
5 Data retention
We retain personal data for so long as it is needed for the purposes for which it was collected or in line with legal and regulatory requirements or contractual arrangements.
6 Service Providers
The Company may engage third party companies ("Service Providers") to facilitate the operation of our Website, assist in analyzing the usage of the Website, or perform Website and service-related services, such as payment and the provision of IT infrastructure services. These third parties have access to the user’s personal data only to the extent necessary to perform these tasks on behalf of theCompany.
Type(s) of service providers who might access your personal data:
· Accounting firms.
· Banks.
· Consultants.
· Other group entities.
· Marketing and analytic firms.
· Public authorities.
· IT- and software service providers.
7 Data transfers
The Company and/or the Service Providers may transfer your personal data to and process it in the following countries:
· EU/EEA
· USA
We may use service providers who are partly located in so-called third countries (outside the European Union or theEuropean Economic Area or Switzerland) or process personal data there, i.e.countries whose level of data protection does not correspond to that of the EUor Switzerland.
We safeguard your personal data per our contractual obligations and applicable data protection legislation when transferring data abroad.
Such safeguards may include:
· the transfer to countries that have been deemed to provide an adequate level of protection according to lists of countries published by the Federal DataProtection and Information Commissioner, as well as to countries where there is an adequacy decisions by the European Commission in place;
· applying standard data protection model clauses, binding corporate rules or other standard contractual obligations that provide appropriate data protection.
If a third country transfer takes place and there is no adequacy decision or appropriate safeguards, it is possible and there is a risk that authorities in the third country (e.g. intelligence services) can gain access to the transferred data and that the enforceability of your data subject's rights cannot be guaranteed.
8 Data disclosure
We may disclose your personal data in the good faith belief that such action is necessary:
· To comply with a legal obligation (i.e., if required by law or in response to valid requests by public authorities, such as a court or government agency).
· To protect the security of the Website and defend our rights or property.
· To prevent or investigate possible wrongdoing in connection with us.
· To defend ourselves against legal liability.
9 Data Security
We take reasonable technical and organisational security measures that we deem appropriate to protect your stored data against manipulation, loss, or unauthorised third-party access. Our security measures are continually adapted to technological developments.
We also take internal data privacy very seriously. Our employees and the Service Providers that we retain are required to maintain secrecy and comply with applicable data protection legislation. In addition, they are granted access to personal data only insofar as this is necessary for them to carry out their respective tasks or mandate.
The security of your personal data is important to us but remember that no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security. We recommend using antivirus software, a firewall, and other similar software to safeguard your system.
10 Your rights
You have the below data protection rights. To exercise these rights, you may contact the above address or send an e-mail to: hello@dartlabs.io. Please note that we may ask you to verify your identity before responding to such requests.
· Right of access: You have a right to request a copy of your personal data, which we will provide to you in an electronic form.
· Right to amendment: You have the right to ask us to correct our records if you believe they contain incorrect or incomplete information about you.
· Right to withdraw consent:If you have provided your consent to the processing of your personal data, you have the right to withdraw your consent with effect for the future. This includes cases where you wish to opt-out from marketing communications. Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose(s) to which you initially consented unless there is another legal basis for processing. To stop receiving emails from us, please click on the 'unsubscribe' link in the email you received or contact us at hello@dartlabs.io.
· Right to erasure: You have the right to request that we delete your personal data when it is no longer necessary for the purposes for which it was collected or when it was unlawfully processed.
· Right to restriction of processing: You have the right to request the restriction of our processing of your personal data where you believe it to be inaccurate, our processing is unlawful, or where we no longer need to process it for the initial purpose, but where we are not able to delete it due to a legal obligation or because you do not want us to delete it.
· Right to portability: You have the right to request that we transmit your personal data to another data controller in a standard format such as Excel, where this is data which you have provided to us and where we are processing it on the legal basis of your consent or to perform our contractual obligations.
· Right to object to processing: Where the legal basis for our processing of your personal data is our legitimate interest, you have the right to object to such processing on grounds relating to your particular situation. We will abide by your request unless we have a compelling legal basis for the processing which overrides your interests or if we need to continue to process the personal data for the exercise or defence of a legal claim.
· Right to lodge a complaint with a supervisory authority: You have the right of appeal to a data protection supervisory authority if you believe that the processing of your personal data violates data protection law. The competent data protection authority in Switzerland is the Federal Data Protection andInformation Commissioner (www.edoeb.admin.ch/edoeb/en/home.html). If you use our services from the EU/EEA, you can exercise this right, for example, before a supervisory authority in the MemberState of your residence, your place of work or the place of the alleged infringement. You can find a list of authorities in the EEA here:https://edpb.europa.eu/about-edpb/board/members_en.
11 Links to third-party apps and sites
Our website may contain links to websites or apps that are not operated by us. When you click on a third party link, you will be directed to that third party's website or app. We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third party websites or services.
We maintain online presences on social networks to, among other things, communicate with customers and prospective customers and to provide information about our products and services. If you have an account on the same network, it is possible that your information and media made available there may be seen by us, for example, when we access your profile. In addition, the social network may allow us to contact you. The content communication via the social network and the processing of the content data is thereby subject to the responsibility of the social network. As soon as we transfer personal data into our own system, we are responsible for this independently. This is then done in order to carry out pre-contractual measures and to fulfil a contract. For the legal basis of the data processing carried out by the social networks under their own responsibility, please refer to their data protection declarations. Below is a list of social networks on which we operate an online presence:
· Instagram: Privacy Policy
· LinkedIn: Privacy Policy
· Twitter: Privacy Policy
12 YouTube
Our website uses the video service YouTube, which is offered to persons from Switzerland and the European Economic Area by Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Grand CanalDock, Dublin 4, D04 V4X7, Ireland. When visiting a page of our website with an embedded YouTube video, your browser connects to YouTube’s servers, which results in the transfer of your personal data – e.g. IP address, technical information about your browser type and operating system, activities you perform on our webpage – to YouTube, which may also be located in the USA, whether you have a YouTube account or not. Furthermore, YouTube is also able to track your behaviour once you start watching the videos. If you watch YouTube videos on our website while you are logged into your YouTube profile, your behaviour when watching our embedded YouTube video can also be linked to your YouTube account.If you do not wish this to be associated with your YouTube profile, you must log out of YouTube before accessing our corresponding website.
For more information, please see Google's privacy policy.
13 Microsoft Teams
We use “Teams” to conduct online meetings.Teams is a software from Microsoft Ireland Operations Limited, South CountyBusiness Park, Leopardstown, Dublin 18, Ireland (“Microsoft”). The legal basis for the processing of data to conduct meetings via Teams is our legitimate interest in the effective and simple conduct of online meetings, discussion rounds and presentations. Also, we conduct this data processing on a contractual basis insofar as the meetings are held within the framework of existing contractual relationships with you. We are not responsible for any further data processing on the Teams product website, where the desktop software can be downloaded and the web app can be used.
During a meeting, participant details (e.g.display name, first name, last name, phone), metadata (e.g. meeting topic and description, IP address, time of participant’s last activity on Teams) chat or channel massages, microphone and video recording data and phone use may be processed under certain circumstances. You can deactivate the transmission via microphone and camera at any time via the corresponding settings. We only record meetings or log text data with your consent and prior notification. Microsoft stores and uses the metadata to enable us to analyse and report on the use ofTeams. Microsoft may become aware of the above data as part of its contract with us. You can find more information in Microsoft’s data protection policy under https://privacy.microsoft.com/de-de/privacystatement.
14 Zoom
We use Zoom to conduct online meetings. Zoom is a software from Zoom Video Communications, Inc, 55 Almaden Blvd, Suite 600San Jose, CA 95113 (“Zoom”). The legal basis for the processing of data to conduct meetings via Zoom is our legitimate interest in the effective and simple conduct of online meetings, discussion rounds and presentations. Also, we conduct this data processing on a contractual basis insofar as the meetings are held within the framework of existing contractual relationships with you.We are not responsible for any further data processing on the Zoom product website, where the desktop software can be downloaded and the web app can be used.
During a meeting, the data processed includes participants’ identification (e.g. name, display name, picture, email address, phone number, job information, stated locale, voice, image, user ID and other information provided by the user), preferences and settings (e.g.audio and video settings, recording file location, screen sharing settings),device information (e.g. information about speakers, microphone, camera, OS version, hard disk ID, PC name, MAC address, IP address, operating system and battery level, WiFi information), content generated in Zoom Meetings (e.g.audio, video, in-meeting messages and whiteboards, responses to polls andQ&A, files as well as related context, such as invitation details and meeting/chat name and meeting agenda) and participants’ interaction with Zoom(e.g. time when participant join/leaves the meeting, performance data, tracking data, such mouse movements, clicks and other actions taken during the meeting).
You can deactivate the transmission via microphone and camera at any time via the corresponding settings. We only record meetings or log text data with your consent and prior notification.
For more information, please see Zoom's privacy policy.
15 Slack
We useSlack for faster information sharing and communication with you. Slack is an instant messenger service headquartered in the United States at 500 Howard St,San Francisco, California 94105. The legal basis for the processing of personal data when using Slack is our legitimate interest ineffective and simple communication with you. Also, we conduct this data processing on a contractual basis insofar as the communication is held within the framework of existing contractual relationships with you. We are not responsible for any further data processing on the Slack product website, where the desktop software can be downloaded and the web app can be used.
To add you to DART Labs' own group, we use the email address you provide to us to invite you to join the group. You may decline the invitation to join the group, and you may leave the Slack group at any time. Communication and data exchange takes place via Slack's own servers. In this process, Slack may also process personal data, such as workspace and account information, metadata, log data, device data, location information, contact data, audio and video metadata, as well as data that you transmit in the context of the use of Slack with us (such as messages, files, links).
For more information, please see Slack’s privacy policy.
16 Cookies
This website uses cookies and similar technologies (collectively "Tools") provided either by us or by third parties.
A cookie is a small text file that is stored by the browser on your device. Similar technologies include, but are not limited to, web storage (local / session storage), fingerprints, tags or pixels. Most browsers are set by default to accept cookies and similar technologies. However, you can usually set your browser to reject tools or to store them only with your prior consent. If you reject tools, you may not be able to use all of our services without problems.
You can object to the use of certain tools at any time. To do so, you can simply write to us at hello@dartlabs.io or deselect the relevant technologies in our Cookie Banner under settings. Alternatively, you can also assert your revocation for certain tools directly with the provider.
If personal data is transferred to third countries, we refer you to point 7 of this privacy policy, also with regard to the associated risks.
Google Analytics 4
Our website uses the web analytics service Google Analytics 4, a service provided by Google Ireland Limited, Gordon House,Barrow Street, Dublin 4, Ireland ("Google Analytics 4"). If you have not consented to the use of the analytics tools, your data will not be collected as part of Google Analytics 4.
Google Analytics 4 uses JavaScript and pixels to read information on your terminal device and cookies to store information on your terminal device. This is used to analyse your usage behaviour and to improve our website. The access data is compiled by Google on our behalf into pseudonymous usage profiles and transferred to a Google server in the USA. We will process the information obtained in order to evaluate your use of the website and to compile reports on website activities.
The data collected as part of the usage analysis of Google Analytics 4 is enriched with data from the Google SearchConsole and linked to data from Google Ads, in particular to measure the success of our advertising campaigns (so-called conversions).
The following data may be processed by Google Analytics 4: IP address; user ID and device ID; referrer URL (previously visited page); pages viewed (date, time, URL, title, length of stay);downloaded files; clicked links to other websites; achievement of certain goals(conversions); technical information (operating system; browser type, version and language; device type, brand, model and resolution); approximate location(country, region and city, if applicable, based on anonymised IP address).
17 Changes to this privacy policy
We may update our Privacy Policy from time to time. We, therefore, encourage you to review this Privacy Policy periodically for any changes.
Changes to this Privacy Policy are effective when they are posted on this page.
18 Contact us
If you have any questions about this Privacy Policy, do not hesitate to get in touch with us at: hello@dartlabs.io.