We as Comet Rocks ("we", "us", "our," "Comet Rocks") appreciate your interest in our company, our products and our services. We take the protection of your privacy when using our website www.comet.rocks ("Website") very seriously.
In the following, you can find further information on to the processing of your personal data when using the Website as well as your rights under the applicable data protection law, in particular the European General Data Protection Regulation (GDPR).
Responsible for the processing of personal data (hereinafter also only "data") in the context of this Website is:
Comet Rocks GmbH
Cuvrystrasse 1
10997 Berlin
Germany
If you have data privacy related inquiries, you can contact our data protection team under the aforementioned address or via email at: privacy@comet.rocks
Our data protection officer is heyData GmbH, Schützenstraße 5, 10117 Berlin, www.heydata.eu, datenschutz@heydata.eu.
In the course of using the Website you provide and we process various categories of personal data for different purposes. In the following you can find further information on the specific data and the purposes we process such data for as well as the legal basis for such processing.
Provision of the Website to users involves use of so-called cookies and similar technologies (e.g. javascript objects, local storage, scripts, tracking pixels, plugins). Cookies and similar technologies allow storage of certain information on the terminal device as well as access to information already stored therein (e.g. your language preference or login information).
Some of the cookies and similar technologies we use on the Website are automatically deleted after the end of the browser session, i.e. after you close your browser (so-called session cookies). Other cookies remain on your terminal device and enable us to recognize your browser the next time you visit our Website (so-called persistent cookies).
Please note that we only use cookies and similar technologies if and to the extent you give us your consent. This does not apply to cookies and similar technologies which are strictly necessary for proper operation of the Website and the functions and services provided there; such strictly necessary cookies do not require your consent.
You can withdraw your consent at any time with effect for the future by accessing the settings in our consent management tool and changing your selection there.
When you visit our Website, we process the following protocol data which are transmitted from your browser to our server and stored in form of server log-files: Name of the retrieved web page, date and time of retrieval, time difference to Greenwich Mean Time, access status, amount of data transferred, browser type and version, the operating system you are using, the referrer URL (previously visited website), your IP address and the requesting provider.
Legal basis for the processing of your data is Art. 6 para. 1 lit. f GDPR. We have a legitimate interest to process the data in order to provide users with proper access to the Website and to ensure sufficient security of the Website.
When you visit our Website, we may offer you the option to participate in user survey. Participation in such user surveys are voluntary. In this context, we process the information provided by you in the user survey, such as name, address, e-mail-address, time of the survey and other information provided (e.g. your answers).
The legal basis for the processing is Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in optimising and further develop the services and functionalities provided on our Website.
You can register for our newsletter on the Website in order to regularly receive information about our offers, products and services.
When you register for the newsletter, we process the data you enter to complete the registration process (name, e-mail address). Furthermore, we collect information whether our newsletter was delivered, whether it has been opened and whether links have been clicked.
Legal basis for the provision of the newsletter service and the involved data processing is your consent pursuant to Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time via the unsubscribe link included in each newsletter email.
We use Google Analytics on our Website. Google Analytics is a web analytics service provided by Google. The responsible entity for operating Google Analytics in the European region is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.
Google Analytics uses cookies that enable the analysis of your use of our Website. The information collected by means of the cookies about your use of our Website is generally transferred to a Google server in the USA and stored there.
The legal basis for this data processing is your consent pursuant to Art.6 para.1 lit. a GDPR. You can withdraw your consent at any time with effect for the future by accessing the settings of our consent management tool and changing your selection there.
We use LinkedIn Analytics on our Website. LinkedIn Analytics is a conversion tracking and retargeting technology provided by LinkedIn. The responsible entity for operating LinkedIn Analytics in the European region is LinkedIn Ireland, Wilton Plaza, Wilton Place, Dublin 2, Ireland.
The legal basis for this data processing is your consent pursuant to Art.6 para.1 lit. a GDPR. You can withdraw your consent at any time with effect for the future by accessing the settings of our consent management tool and changing your selection there.
On the Website we offer you the option to contact us via the functions and forms provided there (e.g. if you have any questions or other inquiries).
Legal basis for the processing of your data by us is Art. 6 para. 1 lit. f GDPR. We have a legitimate interest to process your data in order to properly respond to your request.
On our Website we provide merchants and publishers with access to our Comet Platform. The Comet Platform is an online self-service platform with multiple services and functionalities operated by Comet Rocks under the term "Comet".
The legal basis for the processing is Art. 6 para. 1 lit. b and lit. f GDPR. The purpose of the processing is the initiation and execution of the agreement based on our terms of use concluded with the respective merchant or publisher.
When you use our Website, we may ask you to provide us with the data necessary for providing certain functionalities on the Website. Please note that without such personal data, we may not be able to offer you the full functionalities of the Website and our services may be limited. However, there is no legal or contractual obligation to provide us with your personal data when you visit our Website.
When using the Website your data may be processed by and/or transferred to third party recipients. Such recipients involve external service providers which we use to process personal data when providing the Website and its functionalities and services to you.
When using the Website, your data may be processed by or transferred to various service providers including but not limited to: Google (Analytics, Single Sign On), LinkedIn (Analytics), Webflow (Hosting), Microsoft (Clarity and Advertising), HubSpot (CRM), Intercom (Customer Support), and others as detailed in our full privacy documentation.
When using our Website your data is transferred to certain third party recipients located in countries outside the EU/EEA (so-called third countries) to the extent that such transfer is necessary for the purposes set out in this Privacy Policy.
A transfer to a third country will only take place in compliance with the applicable data protection regulations, in particular the guarantee of an adequate level of data protection through EU Commission adequacy decisions or EU-Standard Contractual Clauses.
In general, we process your data in connection with the use of our Website for the duration of the respective usage process, unless storage beyond this point in time is necessary to fulfil the respective processing purposes.
In addition, we are subject to various statutory storage and retention obligations. These storage and retention periods stipulated can be up to ten years. Furthermore, the storage period is also assessed according to the statutory limitation periods, which can be up to thirty years under German law, whereby the regular limitation period is three years.
You have the right of access (Art. 15 GDPR), the right to rectification (Art. 16 GDPR), the right to erasure (Art. 17 GDPR), the right to restriction of processing (Art. 18 GDPR) and the right to data portability (Art. 20 GDPR).
When personal data is processed based on your consent, you have the right to withdraw your consent according to Art. 7 para. 3 GDPR. Please keep in mind that your withdrawal only affects future processing based on your consent.
As far as the personal data is processed for the purpose of our legitimate interest according to Art. 6 para. 1 lit. f GDPR, you have the right to object according to Art. 21 GDPR.
If you are of the opinion that the processing of your personal data is unlawful, you have the right to lodge a complaint with the competent supervisory authority (Art. 77 GDPR).
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you on the basis of Art. 6 para. 1 lit. f GDPR (processing of personal Data based on a balancing of interests); this includes profiling based on those provisions (Art. 4 no. 4 GDPR).
Should you decide to object the processing, we will stop to process personal data concerning you, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the purpose of establishment, exercise or defence of legal claims.
You also have the right to object at any time to processing of personal data concerning you for the purpose of advertising; this also applies to profiling insofar as it is associated with advertising.
STATUS: September 2023