Data Protection

Privacy policy, and 


This data protection information applies to the data processing on the website as well as and which is carried out by the following people in charge:


Agentur Frau Wenk +++ GmbH
Conventstr. 8- 10 Haus D

22089 Hamburg

Phone: +49 40 32 90 47 38 0


– in the following „Frau Wenk“ or „we“ –


The company data protection officer of Frau Wenk can be reached under the following contact details:


IITR data protection GmbH

Dr. Sebastian Kraska

Marienplatz 2,

80331 Munich, Germany

Phone: 089-18917360



Collection and storage of personal data and type and purpose of their use

When you visit our websites, and and during the subscription process (e.g. for the newsletter), the browser, you use on your device automatically sends information to the server of our websites. This information is temporarily stored in a so-called log file. The following information is recorded without your intervention and stored until it is automatically deleted, usually after one week:



We process the data mentioned above for the following purposes:



The legal basis for data processing is Article 6(1)(f) DS-GVO. Our legitimate interest follows from the above-mentioned purposes for data collection. As a rule, we do not use the collected data for the purpose of drawing conclusions about your person. We reserve the right to do so, if necessary, in order to clarify abusive page accesses.


In addition, we use cookies and analysis services when you visit our website (see Cookies and Analytics)


Microsoft Cloud Services


On the basis of our legitimate interests in organizing our business processes as efficiently and securely as possible, we use cloud services from Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA (hereinafter „Microsoft“), Art. 6 para. 1 lit. f. DS-GVO. Microsoft is obliged to treat all data strictly in accordance with instructions and confidentially by means of an agreement on order processing. Since our head office is in Germany, Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland is our contractual partner.


The Microsoft cloud services we use are Office applications and therefore include data processing for the following purposes: management of text documents in Word, tables in Excel, presentations in PowerPoint, mail and calendar functions in Outlook and video conferencing in teams. All these applications may also contain personal information.


The general deletion periods apply to the deletion of data in the context of the use of Microsoft cloud services.


For more information about privacy in connection with Microsoft cloud services, see the Microsoft Privacy Statement ( and the special notes on Microsoft Cloud Services.


When contacting us


For questions of any kind we offer you the possibility to contact us by phone or by e-mail. We have provided our contact details on the website. You can also communicate with us using the contact form provided on the website. In addition to the actual message, it is necessary to provide a valid e-mail address and a name so that we can answer the inquiry and address you personally within the scope of communication.


Data processing for the purpose of contacting us is carried out in accordance with Art. 6 Para. 1 lit. a DS-GVO on the basis of your voluntarily given consent or in accordance with Art. 6 Para. 1 lit. b DS-GVO, insofar as the subject of your contact is a (pre-)contractual inquiry addressed to us.


The personal data collected by us within the scope of your contact request will be automatically deleted after completion of your request, unless – in the case of (pre-) contractual requests – there is a legal obligation to keep records or such records arise due to the processing of your request.


If you subscribe for our newsletter


If you have consented in accordance with Art. 6 para. 1 letter a DS-GVO, we will use your e-mail address and your name to send you our newsletter(s) on a regular basis. We process your name so that we can address you personally in our newsletter.


The subscription to our distribution lists is done in a so-called double opt-in procedure, i.e. after subscription you will receive an e-mail asking you to confirm your subscription. The subsequent confirmation is logged by us for verification purposes; the time of subscription and confirmation are stored together with your e-mail address.


Yon can  unsubscribe from newsletters at any time, for example via a link at the end of each newsletter.


Our newsletter is sent via „MailChimp“, a platform of the Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. The e-mail addresses of our newsletter recipients, as well as their further data described in the context of this notice, are in this case also stored on the servers of MailChimp in the USA. MailChimp uses this information to send and evaluate the newsletters on our behalf; this evaluation is limited to information about opening rates and opening hours of the newsletter, which is only provided to us in aggregated, non-personal form. Furthermore, MailChimp may use this data according to its own information to optimize or improve its own services, e.g. for technical optimization of sending and presentation of the newsletters or for economic purposes to determine from which countries the recipients come. However, MailChimp does not use the data of our newsletter recipients to contact them itself or pass them on to third parties.


We have an „Data-Processing-Agreement“ with MailChimp. Further information about the purpose and extent of data collection and processing within the scope of the newsletter using „MailChimp“ is contained in the following privacy policy of „MailChimp“. There you will also find further information about the rights of the users and the possibilities of settings to protect privacy:


You can unsubscribe from newsletters at any time, for example using a link at the end of each newsletter. You can also send the revocation of your consent at any time to by e-mail.


CxO Panel


As part of our CxO Panel, we regularly interview CEOs, board members and managers on current events and meta-topics in the digital economy. In this way we generate valuable market information that we offer to the media for publication.


If you have consented in accordance with Art. 6 para. 1 letter a DS-GVO, we will use your e-mail address and name to send you information on the CxO Panel. We process your name in order to be able to address you personally. Messages may include invitations to surveys.


We also use the mailchimp tool to send information to members of the CxO Panel. (For more information about Mailchimp, please read the previous paragraph about our newsletter.)


You can unsubscribe at any time, for example using a link at the end of each message. You can also send the revocation of your consent at any time to by e-mail.


In order to be able to classify and evaluate the results of a survey, we may ask you to provide some information about your professional field of activity, possibly also about your age. We will evaluate this information and your answers to the questions and compile corresponding statistics. For example, we evaluate whether and what differences there are between companies in different sectors, between men and women or between different age groups. We cannot and do not want to draw direct conclusions about individual persons. If there is nevertheless a possibility of identification on the basis of your details and statements, i.e. if personal details are involved, the legal basis for this evaluation is our justified interest in an analysis of the survey results (Art. 6 Paragraph 1 letter f DS-GVO).


We use service providers such as SurveyMonkey to conduct the surveys.  We have a „Data-Processing-Agreement“ with SurveyMonkey. Further information on the purpose and scope of data collection and its processing in the context of surveys using „Surveymonkey“ is contained in the „Surveymonkey“ data protection declaration provided below. There you will also find further information on the rights of the users and the setting options for protecting privacy:


In order to achieve better results and to get into conversation with the respondents, there is also the additional and voluntary option of providing a name and an e-mail address. We only process such data in the context of a survey if you provide it yourself and wish to enter into a conversation with us. 



We use cookies on our website. All information on the technologies used, processing purposes and legal basis can be found at the bottom left of our web pages in the Usercentrics tool (fingerprint icon).



We use the service of the provider Leadinfo B.V., based in Rotterdam.  This service shows us publicly available company data based on IP addresses, such as company names and addresses. The recognition of companies is based solely on IP addresses. IP addresses are not stored after use.
In addition to this recognition via IP addresses, two first-party cookies are used to obtain information on how visitors use the website (analysis). These cookies are not linked to other information and nothing is passed on to third parties.


Opposition to data collection:
If you wish to disable data collection (tracking), please click on the appropriate button at:


Order data processing:
We have concluded a contract with Leadinfo for commissioned data processing and implement the data protection regulations.


Contact Leadinfo:
Leadinfo B.V.
Rivium Quadrant 141
2909 LC Capelle aan den IJssel
The Netherlands

+49 322 2109 6861


Social Media


On our websites, we use links to the social networks Instagram, YouTube, Facebook, Twitter, LinkedIn and XING on the basis of Art. 6 (1) lit. f DS-GVO in order to make ourselves better known. YouTube is an offer from Google, Instagram a service from Facebook (see Usercentrics). The advertising purpose behind this corresponds to our legitimate interest. The responsibility for the operation of the social networks in accordance with data protection laws must be guaranteed by their respective providers.


This means that when a user visits our sites, no personal data is initially transmitted to the operators. Users can recognise the operator by the mark on the box by its initial letter or the respective logo. We give users the opportunity to communicate directly with the operator via the button. Only when a user clicks on the marked box and thereby calls up the stored link does the operator receive the information that a user has called up the corresponding website of our online offer. In addition, personal data (especially the IP address) is then transmitted to the operator. Some of these operators make this data anonymous as soon as it is collected. By using the button, the user’s personal data may be transmitted to the respective operator and stored there (with US providers in the USA).


We have no influence on the collected data and data processing procedures, nor are we aware of the full scope of data collection, the purposes of processing, the storage periods with the operators. We also have no information about the deletion of the collected data by the operator. There is a joint responsibility with Facebook with regard to the activities on our site there within the meaning of Art. 26 DS-GVO; the agreement concluded with Facebook in this respect can be viewed here:


The respective operator stores the data collected about users of our online offer as user profiles and uses them for the purposes of advertising, market research and/or the design of its own website to meet the needs of the users. Such an evaluation is carried out in particular (also for users who are not logged in) for the purpose of presenting need-based advertising and to inform other users of the social network about the activities of users on our website. Users have the right to object to the creation of these user profiles, whereby a user must contact the respective operator directly in order to exercise this right. Via the buttons we offer users the possibility to interact with the social networks and other users independently, so that we can improve our offer and make it more interesting for our users.


The data is passed on regardless of whether users have an account with the operator and are logged in there. If users are logged in with the operator, their data collected by us is directly assigned to their existing accounts with the operator. If a user clicks the button and, for example, links to the page, the operator also stores this information in the user account in question and publicly communicates it to the user’s contacts.


Further information on the purpose and scope of data collection and its processing by the operators is contained in the following data protection declarations of these providers. There you will also find further information on the rights of users and the setting options to protect privacy within these networks.


  1. a) Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland However, data is also regularly exchanged with Google Inc, 1600 Amphitheater Parkway, Mountainview, California 94043, USA;
  2. b) Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. However, data is also regularly exchanged with the US Facebook Inc, 1601 S California Ave, Palo Alto, California 94304, USA.;,
  3. c) Twitter, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA;;; Twitter Data Processing Addendum
  4. d) LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Irland. However, data is also regularly exchanged with the US LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. LinkedIn Data Processing Agreement
  5. e) Xing AG, Gänsemarkt 43, 20354 Hamburg,  DE;


Rights of Data Subjects


You have right to request information about your personal data processed by us in accordance with Art. 15 DS-GVO. In particular, you may request information on the purposes of processing, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, the existence of a right of rectification, erasure, restriction of processing or opposition, the existence of a right of appeal, the origin of your data, if not collected by us, and the existence of automated decision making including profiling and, where applicable, meaningful information on the details of such data;


We may only refuse to provide information to you if and to the extent that the information would disclose information which must be kept secret under a legal provision or by its nature, in particular because of the overriding legitimate interests of a third party (Section 29 (1) sentence 2 BDSG), the competent public authority has determined vis-à-vis us that disclosure of the data would endanger public security or order or would otherwise be detrimental to the welfare of the Federal Republic or a Land (Section 34 (1) sentence 2 BDSG). 1 No. 1 BDSG in conjunction with Section 33 (1) No. 2 lit. b BDSG), or the data is only stored because it may not be deleted due to legal or statutory storage regulations, or it is used exclusively for the purposes of data back-up or data protection control and the provision of information would require disproportionate effort, and processing for other purposes by appropriate technical and organisational measures is excluded (Section 34 (1) No. 2 BDSG).



In accordance with Art. 7 para. 3 DS-GVO, you can revoke your consent once you have given it to us at any time. As a result, we may no longer continue to process the data which was based on this consent in the future.


If your personal data are processed in accordance with Article 6 (1) sentence 1 lit. f of the DS-GVO, you may, in accordance with Article 21 DS-GVO, object to the processing of your personal data if there are reasons for doing so that arise from your particular situation or if the objection is directed against direct marketing. In the latter case, you have a general right of objection, which we will implement without specifying a special situation.


If you wish to make use of your right of revocation or objection, please e-mail to


You also have a general right of appeal to the data protection supervisory authority responsible for you. The authority responsible for us is


The Hamburg Commissioner for Data Protection and Freedom of Information


Ludwig-Erhard-Str. 22

20459 Hamburg

phone: +49 40 / 428 54 – 4040
fax: +49 40 / 428 54 – 4000


Data security


We use the common SSL (Secure Socket Layer) procedure within the website visit in connection with the highest encryption level supported by your browser. As a rule, this is a 256 bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is being transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.


We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.


Up-to-dateness and modification of this privacy policy


This data protection declaration is currently valid and is valid as of August 2020; it may become necessary to amend this data protection declaration as a result of further development of our website and offers above or due to changes in legal or official requirements. You can access and print out the current data protection declaration at any time on the website


Please note: This privacy policy was translated by machine. ( In case of doubt, the German version under applies.

C-Level Briefing

Jeden Sonntag erfahren, was in der nächsten Woche für Digital-Profis wichtig wird.

Wir versenden unsere Newsletter mit Mailchimp. Informationen zum Datenschutz

Schneller Kontakt

Wie können wir Ihnen helfen?
Rufen Sie uns direkt an
+49 40 32 90 47 38 0
oder schreiben Sie uns.

Informationen zum Datenschutz