Privacy policy

This Privacy Policy is effective as of 13 October 2020.

Staffbase cares about your privacy and the protection of your personal information. In this Privacy Policy we describe how we collect, use, store and disclose your personal information. This Privacy Policy applies to the information collected and processed by Staffbase on its own behalf for the purposes described in this Privacy Policy. In other words, Staffbase processes the information as a data controller. This includes any information collected on our websites available via and its subdomains (together the “Staffbase Website”) or through other channels as described in this Privacy Policy. 

This Privacy Policy does not apply to the processing of Customer Data (as defined in our Terms of Service) by Staffbase in its capacity as a service provider of the Staffbase Services (in other words, as a data processor). If your employer uses the Staffbase Services and you want to understand how your information is processed, please contact your employer directly.

    1. Contact information. When you contact us, when you sign up for our newsletters, or when you fill out any of our online forms (either on the Staffbase Website or on a third party website), we collect the contact details you provide us. Contact details may consist of your full name, private or company email address, and your phone number. Sometimes we may also ask you for your job title, role, or other relevant information. We also collect all other information that you decide to share with us, including any attachments sent by you.
    2. Staffbase Website visitor activities. We strive to continuously improve the Staffbase Website and the way we interact with you. For this reason we collect and analyze information about what sections of the Staffbase Website you visit, how long your visit lasts, and how you engage with certain content or features.
    3. Device and location information. When you visit the Staffbase Website we automatically collect the following information that is linked to the device you use: IP address, browser type, domain names, internet service provider (ISP), operating system, and cookies. You can find more information about the cookies we use in our Cookie Notice
    4. Information from third parties and publicly available sources. We may collect information about you or your company from third party sources, including partners with which we engage in joint marketing activities. Information from third parties may contain: company name, company description and website, company revenue and employee range, company industry, employment role and title, seniority and contact information.
    5. Any other information voluntarily provided by you. If you participate in user experience interviews or any other activities or events organised by Staffbase, we collect additional information that you voluntarily provide to us. 
    We process the above-mentioned collected information for the following purposes:
    1. Improve your browsing experience. We process Staffbase Website visitor activities, device and location information to determine how we should improve the Staffbase Website and to better tailor our content to your interests. We process your information for this purpose based on our legitimate interests. We also collect information about your visit through the use of cookies. You can find more information about cookies in our Cookie Notice below. 
    2. Communicate and provide support. We use your contact information to provide you with relevant support and information upon request. We process your information for this purpose based on (pre)contractual necessity.
    3. Send you relevant information about our product and services. We use your contact information to send you any information you have asked for and to send you information which we believe may interest you. If you no longer wish to receive our marketing emails, you can unsubscribe at any time by clicking the unsubscribe link at the bottom of our email. We process your information for this purpose based on your consent or, where relevant and permitted under applicable law, our legitimate interests.
    4. Expand our business through marketing and sales channels. In order to develop our business, we make use of third parties that supply us with information collected from publicly available sources. The information is often company related, like company size and industry type. We use that information to make sure we only approach people and companies that we believe would benefit from our product and services. The additional information supports us to understand specific needs of a lead, prospect or a customer. We collect this information based on our legitimate interests.
    5. Secure the Staffbase Website
      We process device and location information to operate and maintain the Staffbase Website and to investigate and help prevent security issues. We process this information based on our legitimate interests.
    1. Third party services. We may employ third parties service providers to provide services on our behalf. For example, we use chat and support services, analytics services to improve the Staffbase Website and we use third-parties software to enhance our customer relationship management. These third party service providers may have access to (part of) your information. However, our service providers may only process your personal information to perform their tasks on our instructions and are obligated not to disclose or use it for any other purpose. 
    2. Third party websites and social media providers. The Staffbase Website may also contain or embed links to websites or services that are not owned or controlled by Staffbase. We’re not responsible for the privacy practices, policies, of those third parties, even if we have embedded a link to them. We encourage you to read and understand the privacy practices, policies, notices, and content of any linked websites or services that you visit.
    3. Staffbase partners. We may share your information with our partners, for example to organise an event. In those cases we will inform you about this in advance. We will also let you know which party will receive your information and how they may use it. 
    4. Staffbase entities and business transfers. To provide our service to you and to efficiently structure tasks of Staffbase we may share your information with all Staffbase affiliate entities and subsidiaries. We also reserve the right to disclose and transfer the information in connection with a merger, divestiture, restructuring, reorganization, dissolution or other sale or transfer of some or all of Staffbase’s assets. 
    5. Government authorities. We will not share your information with government authorities, except when we are required to by applicable law, or if we reasonably believe based on the opinion of legal counsel that use or disclosure is necessary to protect our rights or legitimate interests.
    6. Transfers outside the EEA. Third parties to whom we provide your data may be located outside the European Economic Area (“EEA”) or they may use servers that are located outside the EEA. In that event we will ensure that adequate protection of your data is provided as required by applicable law, for instance by concluding standard contractual clauses issued by the European Commission. 
    We have implemented security procedures and technical restrictions to protect your personal information from unauthorised access, destruction or modification. We only retain your information for as long as necessary to fulfil the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Anonymous and aggregated information may be stored indefinitely.
    1. Your rights under the GDPR. When the EU General Data Protection Regulation (“GDPR”) applies to the processing of your personal information, you can exercise the following rights. You have the right to know whether we hold personal data about you and, if we do, to access that information. You can also request us to correct, update, or delete your personal data, have us restrict the processing of your information and you have the right to data portability. To exercise any of these rights please contact us via Please make sure to clarify what request you have in the email subject line. Keep in mind, we might ask for additional information to verify your identity, before we can start working on your request. We may not always be able to fulfil your request, for instance if we have a legal obligation or a legitimate interest to keep your information. You also have the right to complain to a data protection authority about our collection and use of your personal information. 
    2. Withdrawal of your consent. If you have given us your consent to process certain information, you may withdraw your consent at any time. In that case we will stop processing the relevant information unless we’re legally required to keep the information.
    3. Right to object. If we process your personal information based on our legitimate interests, you have the right to object to the relevant processing activity. 
    4. No automated decision making. We do not use any automated decision making techniques that have a legal or similarly significant effect on you.
    The Staffbase Website is not intended for anyone under the age of 13. We do not knowingly collect personal information from children under 13. When we learn we have collected or received personal information from a child under 13, we will delete that information. If you are a parent or a legal guardian and you are aware that your child under 13 has provided us with personal information, please contact us at:
    If you have any questions about this Privacy Policy you can contact us and our Data Protection Officer at any time on

    Staffbase GmbH
    Annaberger Straße 73
    09111 Chemnitz

    Site notice: