Controller
The “controller” in accordance with the General Data Protection Regulation (GDPR) is the company indicated in the imprint, including its responsible person.
General Information on Data Processing
1. Scope of Processing Personal Data
The use of our website is generally possible without providing personal data. If personal data (e.g., name, address, or email addresses) is collected on our pages, this is done on a voluntary basis. These data will not be disclosed to third parties without your explicit consent.
If personal data is necessarily processed in connection with the use of the website, it is done to ensure the functionality of the website. Processing of personal data beyond that is only done with your consent. An exception applies in cases where obtaining prior consent is not possible for factual reasons and the processing of data is permitted by legal regulations.
2. Legal Basis for Processing Personal Data
Where we obtain your consent for the processing of personal data, we do so in accordance with the provisions of Article 6 of the GDPR as the legal basis.
3. Data Deletion and Storage Duration
Personal data is deleted or blocked as soon as the purpose of storage no longer applies. Storage may only occur within the scope of legally provided cases. Data is also blocked or deleted when a legally mandated retention period expires, unless there is a necessity for further data storage for contract formation or performance.
Hosting
The hosting services we utilize are for the purpose of providing the following services: infrastructure and platform services, computing capacity, storage space and database services, security services, as well as technical maintenance services that we use for the operation of the website.
In this context, we or our hosting provider process inventory data, contact data, content data, contract data, usage data, meta- and communication data of customers, interested parties, and visitors to this website based on our legitimate interests in the efficient and secure provision of our website, in accordance with Article 6(1) sentence 1 f) of the GDPR in conjunction with Article 28 of the GDPR.
We collect information about you when you use this website. We automatically gather information about your usage patterns and interactions with us, recording data about your computer or mobile device. We collect, store, and use data about every access to our website (known as server log files). Access data includes:
– Name and URL of the accessed file
– Date and time of access
– Transmitted data volume
– Notification of successful access (HTTP response code)
– Browser type and version
– Operating system
– Referrer URL (i.e., the previously visited page)
– Websites accessed by the user’s system via our website
– User’s internet service provider
– IP address and requesting provider
We use this log data without associating it with your person or any profiling for statistical analysis for the purpose of website operation, security, and optimization. We also use it for anonymously tracking the number of visitors to our website (traffic), as well as the extent and nature of the use of our website and services. This data is also used for billing purposes to measure the number of clicks received from cooperation partners. With this information, we can provide personalized and location-based content, analyze traffic, identify and fix errors, and improve our services. This is also in our legitimate interest under Article 6(1) sentence 1 f) of the GDPR.
We reserve the right to retrospectively check the log data if there is concrete evidence of unlawful use. We store IP addresses for a limited period in the log files if it is necessary for security purposes or for the provision or billing of a service, such as when you use one of our offers. After the order process is canceled or payment is received, we delete the IP address if it is no longer required for security purposes. We also store IP addresses if we have specific suspicions of a crime related to the use of our website. Additionally, as part of your account, we store the date of your last visit (e.g., during registration, login, clicking on links, etc.).
Use of Cookies
1. Description and Scope of Data Processing
We use so-called session cookies to optimize our website. A session cookie is a small text file sent by the respective servers when visiting a website and temporarily stored on your hard drive. This file contains a session ID, which allows different requests from your browser to be associated with the same session. As a result, your computer can be recognized when you return to our website. These cookies are deleted when you close your browser. They are used, for example, to prevent the cookie banner from reappearing.
We also use persistent cookies to a limited extent (also small text files that are stored on your device), which remain on your device and allow us to recognize your browser on your next visit. These cookies are stored on your hard drive and automatically delete themselves after a specified time. Their lifespan ranges from 1 month to 10 years. This allows us to present our offerings in a more user-friendly, effective, and secure manner and to display information tailored to your interests on the website.
Our legitimate interest in using cookies according to Art. 6 para. 1 sentence 1 f) GDPR is to make our website more user-friendly, effective, and secure.
The following data and information are stored in the cookies:
– Login information
– Language settings
– Entered search terms
– Information about the number of visits to our website and the use of individual features of our online presence.
When a cookie is activated, it is assigned an identification number, and no association of your personal data with this identification number is made. Your name, IP address, or similar data that would allow the cookie to be attributed to you are not stored in the cookie. We only receive pseudonymized information based on cookie technology.
You can configure your browser to inform you in advance about the setting of cookies and to decide in individual cases whether to accept cookies for specific cases or in general, or to prevent cookies entirely. This can limit the functionality of the website.
2. Cookie banner
The cookie banner we use to inform you about the use of cookies also stores a cookie. This cookie only contains information about whether you have already seen the cookie banner or not. It does not contain any personal data.
3. Google analytics
We use Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as “Google.” Google Analytics uses “cookies,” which are text files stored on your computer that enable an analysis of your use of the website. The information generated by the cookie about your use of this website by site visitors can be transmitted to and stored on a Google server in the United States. We use Google Analytics based on Art. 6 para. 1 sentence 1 f) GDPR. Our legitimate interest is to operate our website economically.
Google has committed to the Privacy Shield agreement between the European Union and the United States and is certified under it. Google has thus committed to complying with the standards and regulations of European data protection law. Further information can be found in the following link: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.
We have activated IP anonymization on this website (anonymizeIp). This means that Google will truncate your IP address within member states of the European Union or other parties to the Agreement on the European Economic Area before transmitting it to the United States. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. On our behalf, Google will use this information to evaluate your use of the website, compile reports on website activity, and provide us with other services related to website usage and internet usage. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
You can prevent the storage of cookies by configuring your browser software accordingly; however, please note that in this case, you may not be able to use all the functions of this website to their full extent. You can also prevent Google from collecting and processing the data generated by the cookie and related to your use of the website (including your IP address) by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en.
Alternatively, you can click on the following link to set an opt-out cookie within browsers on mobile devices, which will prevent Google Analytics from collecting data on this website in the future (this opt-out cookie works only in this browser and only for this domain; if you delete cookies in your browser, you will need to click this link again): Disable Google Analytics
Contact Form and Email Contact
This website uses links to our social media profiles. For these profiles, the privacy and liability regulations of the respective providers apply, which you can access as described below.
Facebook:
We process your data for the purpose of effectively informing and supporting our customers and prospects. This is in line with our legitimate interests under Art. 6 para. 1 letter f GDPR. The processing is based on the declaration of joint responsibility (https://www.facebook.com/legal/terms/page_controller_addendum).
Further information on data protection:
Provider: Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA
Website: https://facebook.com
Plugins: https://developers.facebook.com/plugins
Data collection: https://facebook.com/help/
Privacy policy: https://facebook.com/policy.php
Facebook Blocker: https://webgraph.com/resources/facebookblocker
Instagram:
Provider: Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA
Website: https://instagram.com
Privacy policy: https://instagram.com/about/legal/privacy
Information about service providers
To operate this website, we integrate external services to make our website more user-friendly, effective, and secure. Our legitimate interest in doing so is in accordance with Art. 6 para. 1 sentence 1 f) GDPR.
YouTube:
YouTube is a video portal provided by YouTube LLC., 901 Cherry Ave., 94066 San Bruno, CA, USA, hereinafter referred to as “YouTube.”
For users residing in the European Union, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, is responsible for processing.
Please read how Google complies with data protection requirements, including data transfers to the USA, at: https://policies.google.com/privacy?hl=en
We use YouTube based on Art. 6 para. 1 sentence 1 f) GDPR. Our legitimate interest is to enhance the offering on our website.
To protect your data, we have activated the “Enhanced Privacy” feature. A connection to YouTube is established only when the video is clicked. At least the IP address is transmitted to YouTube. If you are already logged into YouTube, the connection information is associated with your account. Please log out of YouTube before doing so to prevent this.
Contact Form and Email Contact
1. Description and Scope of Data Processing
On our website, there is a contact form available for electronic communication. If a user chooses to use this option, the data entered into the input form is transmitted to us and stored. Alternatively, users can contact us via the provided email address. In this case, the personal data of the user transmitted with the email is stored. There is no disclosure of this data to third parties in this context. The data is exclusively used for processing the communication.
2. Purpose of Data Processing
The processing of personal data from the input form is solely intended for the purpose of handling the contact request. In the case of contact via email, there is also a legitimate interest in processing the data.
The other personal data processed during the submission process is used to prevent misuse of the contact form and to ensure the security of our information technology systems.
3. The duration of storage
The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. For the personal data from the input form of the contact form and those sent via email, this is the case when the respective conversation with the user is concluded. The conversation is considered concluded when it can be inferred from the circumstances that the matter in question has been finally resolved.
Rights of the Data Subject
If your personal data is processed by us, you are a data subject within the meaning of the GDPR (General Data Protection Regulation), and you have the following rights with respect to the controller:
- Right to Information: You can request confirmation from the controller as to whether personal data concerning you is being processed. If such processing is taking place, you can request the following information: (1) The purposes of the processing of personal data. (2) The categories of personal data being processed. (3) The recipients or categories of recipients to whom the personal data has been or will be disclosed. (4) The planned duration of the storage of the personal data concerning you or, if specific information on this is not possible, criteria for determining the storage duration. (5) The existence of a right to rectify or erase personal data concerning you, a right to restrict processing by the controller, or a right to object to such processing. (6) The existence of a right to lodge a complaint with a supervisory authority. (7) All available information about the source of the data if the personal data was not collected from the data subject. You have the right to request information as to whether the personal data concerning you is transferred to a third country or to an international organization.
- Right to Rectification: You have the right to request the rectification and/or completion of your personal data if it is incorrect or incomplete. The controller shall make the rectification without undue delay. In cases of data processing for scientific, historical, or statistical research purposes, your right to rectification may be limited if it is likely to make it impossible or seriously impair the achievement of the research or statistical purposes, and the restriction is necessary for the fulfillment of those purposes.
- Right to Restriction of Processing: Under certain conditions, you can request the restriction of processing of your personal data: (1) When you contest the accuracy of your personal data, the controller will restrict processing until its accuracy has been verified. (2) When the processing is unlawful, and you oppose the erasure of your personal data and request the restriction of its use instead. (3) When the controller no longer needs the personal data for the purposes of the processing, but you require it for the establishment, exercise, or defense of legal claims. (4) When you have objected to processing pursuant to Article 21(1) of the GDPR and it is not yet clear whether the legitimate grounds of the controller override your grounds.
If the processing of your personal data has been restricted, such data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State. If processing is restricted under the aforementioned conditions, you will be informed by the controller before the restriction is lifted.
- Right to Erasure: You have the right to obtain from the controller the erasure of personal data concerning you without undue delay if one of the following grounds applies: (1) The personal data concerning you is no longer necessary for the purposes for which it was collected or otherwise processed. (2) You withdraw your consent on which the processing is based according to Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, and there is no other legal ground for the processing. (3) You object to the processing pursuant to Art. 21(1) GDPR, and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21(2) GDPR. (4) The personal data concerning you has been unlawfully processed. (5) The personal data concerning you must be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject. (6) The personal data concerning you has been collected in relation to the offer of information society services referred to in Article 8(1) GDPR.
The right to erasure does not apply to the extent that processing is necessary: (1) For exercising the right of freedom of expression and information. (2) For compliance with a legal obligation that requires processing by Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller. (3) For reasons of public interest in the area of public health in accordance with Article 9(2)(h) and (i) and Article 9(3) GDPR. (4) For archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes in accordance with Article 89(1) GDPR insofar as the right referred to in paragraph 1 is likely to render impossible or seriously impair the achievement of the objectives of the processing, or (5) For the establishment, exercise, or defense of legal claims.
- Right to Notification: If you have exercised your right to rectify, erase, or restrict processing of your personal data, the controller is obliged to communicate any rectification or erasure of personal data or restriction of processing to each recipient to whom the personal data have been disclosed, unless this proves impossible or involves disproportionate effort. You have the right to be informed about these recipients.
- Right to Data Portability: You have the right to receive the personal data concerning you, which you have provided to a controller, in a structured, commonly used, and machine-readable format. You also have the right to transmit this data to another controller without hindrance from the controller to which the personal data was provided, where: (1) The processing is