Privacy Policy

1. An overview of data protection

General information

The fol­low­ing infor­ma­tion will pro­vide you with an easy to nav­i­gate overview of what will hap­pen with your per­son­al data when you vis­it this web­site. The term “per­son­al data” com­pris­es all data that can be used to per­son­al­ly iden­ti­fy you. For detailed infor­ma­tion about the sub­ject mat­ter of data pro­tec­tion, please con­sult our Data Pro­tec­tion Dec­la­ra­tion, which we have includ­ed beneath this copy.

Data recording on this website

Who is the responsible party for the recording of data on this website (i.e., the “controller”)?

The data on this web­site is processed by the oper­a­tor of the web­site, whose con­tact infor­ma­tion is avail­able under sec­tion “Infor­ma­tion about the respon­si­ble par­ty (referred to as the “con­troller” in the GDPR)” in this Pri­va­cy Policy.

How do we record your data?

We col­lect your data as a result of your shar­ing of your data with us. This may, for instance be infor­ma­tion you enter into our con­tact form.

Oth­er data shall be record­ed by our IT sys­tems auto­mat­i­cal­ly or after you con­sent to its record­ing dur­ing your web­site vis­it. This data com­pris­es pri­mar­i­ly tech­ni­cal infor­ma­tion (e.g., web brows­er, oper­at­ing sys­tem, or time the site was accessed). This infor­ma­tion is record­ed auto­mat­i­cal­ly when you access this website.

What are the purposes we use your data for?

A por­tion of the infor­ma­tion is gen­er­at­ed to guar­an­tee the error free pro­vi­sion of the web­site. Oth­er data may be used to ana­lyze your user patterns.

What rights do you have as far as your information is concerned?

You have the right to receive infor­ma­tion about the source, recip­i­ents, and pur­pos­es of your archived per­son­al data at any time with­out hav­ing to pay a fee for such dis­clo­sures. You also have the right to demand that your data are rec­ti­fied or erad­i­cat­ed. If you have con­sent­ed to data pro­cess­ing, you have the option to revoke this con­sent at any time, which shall affect all future data pro­cess­ing. More­over, you have the right to demand that the pro­cess­ing of your data be restrict­ed under cer­tain cir­cum­stances. Fur­ther­more, you have the right to log a com­plaint with the com­pe­tent super­vis­ing agency.

Please do not hes­i­tate to con­tact us at any time if you have ques­tions about this or any oth­er data pro­tec­tion relat­ed issues.

Analysis tools and tools provided by third parties

There is a pos­si­bil­i­ty that your brows­ing pat­terns will be sta­tis­ti­cal­ly ana­lyzed when your vis­it this web­site. Such analy­ses are per­formed pri­mar­i­ly with what we refer to as analy­sis programs.

For detailed infor­ma­tion about these analy­sis pro­grams please con­sult our Data Pro­tec­tion Dec­la­ra­tion below.

2. Hosting and Content Delivery Networks (CDN)

External Hosting

This web­site is host­ed by an exter­nal ser­vice provider (host). Per­son­al data col­lect­ed on this web­site are stored on the servers of the host. These may include, but are not lim­it­ed to, IP address­es, con­tact requests, meta­da­ta and com­mu­ni­ca­tions, con­tract infor­ma­tion, con­tact infor­ma­tion, names, web page access, and oth­er data gen­er­at­ed through a web site.

The host is used for the pur­pose of ful­fill­ing the con­tract with our poten­tial and exist­ing cus­tomers (Art. 6 para. 1 lit. b GDPR) and in the inter­est of secure, fast, and effi­cient pro­vi­sion of our online ser­vices by a pro­fes­sion­al provider (Art. 6 para. 1 lit. f GDPR).

Our host will only process your data to the extent nec­es­sary to ful­fil its per­for­mance oblig­a­tions and to fol­low our instruc­tions with respect to such data.

We are using the fol­low­ing host:

ALL-INKL.COM — Neue Medi­en Münnich
Inhab­er: René Münnich
Haupt­straße 68 | D‑02742 Friedersdorf

Execution of a contract data processing agreement

In order to guar­an­tee pro­cess­ing in com­pli­ance with data pro­tec­tion reg­u­la­tions, we have con­clud­ed an order pro­cess­ing con­tract with our host.

Cloudflare

We use the “Cloud­flare” ser­vice pro­vid­ed by Cloud­flare Inc., 101 Townsend St., San Fran­cis­co, CA 94107, USA. (here­inafter referred to as “Cloud­flare”).

Cloud­flare offers a con­tent deliv­ery net­work with DNS that is avail­able world­wide. As a result, the infor­ma­tion trans­fer that occurs between your brows­er and our web­site is tech­ni­cal­ly rout­ed via Cloudflare’s net­work. This enables Cloud­flare to ana­lyze data trans­ac­tions between your brows­er and our web­site and to work as a fil­ter between our servers and poten­tial­ly mali­cious data traf­fic from the Inter­net. In this con­text, Cloud­flare may also use cook­ies or oth­er tech­nolo­gies deployed to rec­og­nize Inter­net users, which shall, how­ev­er, only be used for the here­in described purpose.

The use of Cloud­flare is based on our legit­i­mate inter­est in a pro­vi­sion of our web­site offer­ings that is as error free and secure as pos­si­ble (Art. 6 Sect. 1 lit. f GDPR).

Data trans­mis­sion to the US is based on the Stan­dard Con­trac­tu­al Claus­es (SCC) of the Euro­pean Com­mis­sion. Details can be found here: https://www.cloudflare.com/privacypolicy/.

For more infor­ma­tion on Cloudflare’s secu­ri­ty pre­cau­tions and data pri­va­cy poli­cies, please fol­low this link: https://www.cloudflare.com/privacypolicy/.

Execution of a contract data processing agreement

In order to guar­an­tee pro­cess­ing in com­pli­ance with data pro­tec­tion reg­u­la­tions, we have con­clud­ed an order pro­cess­ing con­tract with Cloudflare.

3. General information and mandatory information

Data protection

The oper­a­tors of this web­site and its pages take the pro­tec­tion of your per­son­al data very seri­ous­ly. Hence, we han­dle your per­son­al data as con­fi­den­tial infor­ma­tion and in com­pli­ance with the statu­to­ry data pro­tec­tion reg­u­la­tions and this Data Pro­tec­tion Declaration.

When­ev­er you use this web­site, a vari­ety of per­son­al infor­ma­tion will be col­lect­ed. Per­son­al data com­pris­es data that can be used to per­son­al­ly iden­ti­fy you. This Data Pro­tec­tion Dec­la­ra­tion explains which data we col­lect as well as the pur­pos­es we use this data for. It also explains how, and for which pur­pose the infor­ma­tion is collected.

We here­with advise you that the trans­mis­sion of data via the Inter­net (i.e., through e‑mail com­mu­ni­ca­tions) may be prone to secu­ri­ty gaps. It is not pos­si­ble to com­plete­ly pro­tect data against third-par­ty access.

Information about the responsible party (referred to as the “controller” in the GDPR)

The data pro­cess­ing con­troller on this web­site is:

Gett Gerätetech­nik GmbH
Mit­tlerer Ring 1
D‑08233 Treuen (Vogt­land)
Germany

Phone: +49(0)37468–660‑0
E‑mail: info@gett.de

The con­troller is the nat­ur­al per­son or legal enti­ty that sin­gle-hand­ed­ly or joint­ly with oth­ers makes deci­sions as to the pur­pos­es of and resources for the pro­cess­ing of per­son­al data (e.g., names, e‑mail address­es, etc.).

Storage duration

Unless a more spe­cif­ic stor­age peri­od has been spec­i­fied in this pri­va­cy pol­i­cy, your per­son­al data will remain with us until the pur­pose for which it was col­lect­ed no longer applies. If you assert a jus­ti­fied request for dele­tion or revoke your con­sent to data pro­cess­ing, your data will be delet­ed, unless we have oth­er legal­ly per­mis­si­ble rea­sons for stor­ing your per­son­al data (e.g., tax or com­mer­cial law reten­tion peri­ods); in the lat­ter case, the dele­tion will take place after these rea­sons cease to apply.

Designation of a data protection officer as mandated by law

We have appoint­ed a data pro­tec­tion offi­cer for our company.

Jana Höra,
Mit­tlerer Ring 1,
08233 Treuen

Phone: +49(0)37468–660‑0
E‑mail: datenschutz@gett.de

Information on data transfer to the USA

Our web­site uses, in par­tic­u­lar, tools from com­pa­nies based in the USA. When these tools are active, your per­son­al infor­ma­tion may be trans­ferred to the US servers of these com­pa­nies. We must point out that the USA is not a safe third coun­try with­in the mean­ing of EU data pro­tec­tion law. US com­pa­nies are required to release per­son­al data to secu­ri­ty author­i­ties with­out you as the data sub­ject being able to take legal action against this. The pos­si­bil­i­ty can­not there­fore be exclud­ed that US author­i­ties (e.g. secret ser­vices) may process, eval­u­ate, and per­ma­nent­ly store your data on US servers for mon­i­tor­ing pur­pos­es.  We have no influ­ence over these pro­cess­ing activities.

Revocation of your consent to the processing of data

A wide range of data pro­cess­ing trans­ac­tions are pos­si­ble only sub­ject to your express con­sent. You can also revoke at any time any con­sent you have already giv­en us. This shall be with­out prej­u­dice to the law­ful­ness of any data col­lec­tion that occurred pri­or to your revocation.

Right to object to the collection of data in special cases; right to object to direct advertising (Art. 21 GDPR)

IN THE EVENT THAT DATA ARE PROCESSED ON THE BASIS OF ART. 6 SECT. 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT TO AT ANY TIME OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA BASED ON GROUNDS ARISING FROM YOUR UNIQUE SITUATION. THIS ALSO APPLIES TO ANY PROFILING BASED ON THESE PROVISIONS. TO DETERMINE THE LEGAL BASIS, ON WHICH ANY PROCESSING OF DATA IS BASED, PLEASE CONSULT THIS DATA PROTECTION DECLARATION. IF YOU LOG AN OBJECTION, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA, UNLESS WE ARE IN A POSITION TO PRESENT COMPELLING PROTECTION WORTHY GROUNDS FOR THE PROCESSING OF YOUR DATA, THAT OUTWEIGH YOUR INTERESTS, RIGHTS AND FREEDOMS OR IF THE PURPOSE OF THE PROCESSING IS THE CLAIMING, EXERCISING OR DEFENCE OF LEGAL ENTITLEMENTS (OBJECTION PURSUANT TO ART. 21 SECT. 1 GDPR).

IF YOUR PERSONAL DATA IS BEING PROCESSED IN ORDER TO ENGAGE IN DIRECT ADVERTISING, YOU HAVE THE RIGHT TO AT ANY TIME OBJECT TO THE PROCESSING OF YOUR AFFECTED PERSONAL DATA FOR THE PURPOSES OF SUCH ADVERTISING. THIS ALSO APPLIES TO PROFILING TO THE EXTENT THAT IT IS AFFILIATED WITH SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR DIRECT ADVERTISING PURPOSES (OBJECTION PURSUANT TO ART. 21 SECT. 2 GDPR).

Right to log a complaint with the competent supervisory agency

In the event of vio­la­tions of the GDPR, data sub­jects are enti­tled to log a com­plaint with a super­vi­so­ry agency, in par­tic­u­lar in the mem­ber state where they usu­al­ly main­tain their domi­cile, place of work or at the place where the alleged vio­la­tion occurred. The right to log a com­plaint is in effect regard­less of any oth­er admin­is­tra­tive or court pro­ceed­ings avail­able as legal recourses.

Right to data portability

You have the right to demand that we hand over any data we auto­mat­i­cal­ly process on the basis of your con­sent or in order to ful­fil a con­tract be hand­ed over to you or a third par­ty in a com­mon­ly used, machine read­able for­mat. If you should demand the direct trans­fer of the data to anoth­er con­troller, this will be done only if it is tech­ni­cal­ly feasible.

SSL and/or TLS encryption

For secu­ri­ty rea­sons and to pro­tect the trans­mis­sion of con­fi­den­tial con­tent, such as pur­chase orders or inquiries you sub­mit to us as the web­site oper­a­tor, this web­site uses either an SSL or a TLS encryp­tion pro­gram. You can rec­og­nize an encrypt­ed con­nec­tion by check­ing whether the address line of the brows­er switch­es from “https://” to “https://” and also by the appear­ance of the lock icon in the brows­er line.

If the SSL or TLS encryp­tion is acti­vat­ed, data you trans­mit to us can­not be read by third parties.

Encrypted payment transactions on this website

If you are under an oblig­a­tion to share your pay­ment infor­ma­tion (e.g. account num­ber if you give us the author­i­ty to deb­it your bank account) with us after you have entered into a fee-based con­tract with us, this infor­ma­tion is required to process payments.

Pay­ment trans­ac­tions using com­mon modes of pay­ing (Visa/MasterCard, deb­it to your bank account) are processed exclu­sive­ly via encrypt­ed SSL or TLS con­nec­tions. You can rec­og­nize an encrypt­ed con­nec­tion by check­ing whether the address line of the brows­er switch­es from “https://” to “https://” and also by the appear­ance of the lock icon in the brows­er line.

If the com­mu­ni­ca­tion with us is encrypt­ed, third par­ties will not be able to read the pay­ment infor­ma­tion you share with us.

Information about, rectification and eradication of data

With­in the scope of the applic­a­ble statu­to­ry pro­vi­sions, you have the right to at any time demand infor­ma­tion about your archived per­son­al data, their source and recip­i­ents as well as the pur­pose of the pro­cess­ing of your data. You may also have a right to have your data rec­ti­fied or erad­i­cat­ed. If you have ques­tions about this sub­ject mat­ter or any oth­er ques­tions about per­son­al data, please do not hes­i­tate to con­tact us at any time.

Right to demand processing restrictions

You have the right to demand the impo­si­tion of restric­tions as far as the pro­cess­ing of your per­son­al data is con­cerned. To do so, you may con­tact us at any time. The right to demand restric­tion of pro­cess­ing applies in the fol­low­ing cases:

• In the event that you should dis­pute the cor­rect­ness of your data archived by us, we will usu­al­ly need some time to ver­i­fy this claim. Dur­ing the time that this inves­ti­ga­tion is ongo­ing, you have the right to demand that we restrict the pro­cess­ing of your per­son­al data.
• If the pro­cess­ing of your per­son­al data was/is con­duct­ed in an unlaw­ful man­ner, you have the option to demand the restric­tion of the pro­cess­ing of your data in lieu of demand­ing the erad­i­ca­tion of this data.
• If we do not need your per­son­al data any longer and you need it to exer­cise, defend or claim legal enti­tle­ments, you have the right to demand the restric­tion of the pro­cess­ing of your per­son­al data instead of its eradication.
• If you have raised an objec­tion pur­suant to Art. 21 Sect. 1 GDPR, your rights and our rights will have to be weighed against each oth­er. As long as it has not been deter­mined whose inter­ests pre­vail, you have the right to demand a restric­tion of the pro­cess­ing of your per­son­al data.

If you have restrict­ed the pro­cess­ing of your per­son­al data, these data – with the excep­tion of their archiv­ing – may be processed only sub­ject to your con­sent or to claim, exer­cise or defend legal enti­tle­ments or to pro­tect the rights of oth­er nat­ur­al per­sons or legal enti­ties or for impor­tant pub­lic inter­est rea­sons cit­ed by the Euro­pean Union or a mem­ber state of the EU.

Rejection of unsolicited e‑mails

We here­with object to the use of con­tact infor­ma­tion pub­lished in con­junc­tion with the manda­to­ry infor­ma­tion to be pro­vid­ed in our Site Notice to send us pro­mo­tion­al and infor­ma­tion mate­r­i­al that we have not express­ly request­ed. The oper­a­tors of this web­site and its pages reserve the express right to take legal action in the event of the unso­licit­ed send­ing of pro­mo­tion­al infor­ma­tion, for instance via SPAM messages.

4. Recording of data on this website

Cookies

Our web­sites and pages use what the indus­try refers to as “cook­ies.” Cook­ies are small text files that do not cause any dam­age to your device. They are either stored tem­porar­i­ly for the dura­tion of a ses­sion (ses­sion cook­ies) or they are per­ma­nent­ly archived on your device (per­ma­nent cook­ies). Ses­sion cook­ies are auto­mat­i­cal­ly delet­ed once you ter­mi­nate your vis­it. Per­ma­nent cook­ies remain archived on your device until you active­ly delete them, or they are auto­mat­i­cal­ly erad­i­cat­ed by your web browser.

In some cas­es, it is pos­si­ble that third-par­ty cook­ies are stored on your device once you enter our site (third-par­ty cook­ies). These cook­ies enable you or us to take advan­tage of cer­tain ser­vices offered by the third par­ty (e.g., cook­ies for the pro­cess­ing of pay­ment services).

Cook­ies have a vari­ety of func­tions. Many cook­ies are tech­ni­cal­ly essen­tial since cer­tain web­site func­tions would not work in the absence of the cook­ies (e.g., the shop­ping cart func­tion or the dis­play of videos). The pur­pose of oth­er cook­ies may be the analy­sis of user pat­terns or the dis­play of pro­mo­tion­al messages.

Cook­ies, which are required for the per­for­mance of elec­tron­ic com­mu­ni­ca­tion trans­ac­tions (required cook­ies) or for the pro­vi­sion of cer­tain func­tions you want to use (func­tion­al cook­ies, e.g., for the shop­ping cart func­tion) or those that are nec­es­sary for the opti­miza­tion of the web­site (e.g., cook­ies that pro­vide mea­sur­able insights into the web audi­ence), shall be stored on the basis of Art. 6 Sect. 1 lit. f GDPR, unless a dif­fer­ent legal basis is cit­ed. The oper­a­tor of the web­site has a legit­i­mate inter­est in the stor­age of cook­ies to ensure the tech­ni­cal­ly error free and opti­mized pro­vi­sion of the operator’s ser­vices. If your con­sent to the stor­age of the cook­ies has been request­ed, the respec­tive cook­ies are stored exclu­sive­ly on the basis of the con­sent obtained (Art. 6 Sect. 1 lit. a GDPR); this con­sent may be revoked at any time.

You have the option to set up your brows­er in such a man­ner that you will be noti­fied any time cook­ies are placed and to per­mit the accep­tance of cook­ies only in spe­cif­ic cas­es. You may also exclude the accep­tance of cook­ies in cer­tain cas­es or in gen­er­al or acti­vate the delete func­tion for the auto­mat­ic erad­i­ca­tion of cook­ies when the brows­er clos­es. If cook­ies are deac­ti­vat­ed, the func­tions of this web­site may be limited.

In the event that third-par­ty cook­ies are used or if cook­ies are used for ana­lyt­i­cal pur­pos­es, we will sep­a­rate­ly noti­fy you in con­junc­tion with this Data Pro­tec­tion Pol­i­cy and, if applic­a­ble, ask for your consent.

Cookie Consent with Usercentrics

This web­site uses the cook­ie con­sent tech­nol­o­gy of User­centrics to obtain your con­sent to the stor­age of cer­tain cook­ies on your device or for the use of spe­cif­ic tech­nolo­gies, and to doc­u­ment the for­mer in a data pro­tec­tion com­pli­ant man­ner. The par­ty offer­ing this tech­nol­o­gy is User­centrics GmbH, Rosen­tal 4, 80331 München, Ger­many, web­site: https://usercentrics.com/ (here­inafter referred to as “User­centrics”).

When­ev­er you vis­it our web­site, the fol­low­ing per­son­al data will be trans­ferred to Usercentrics:

• Your declaration(s) of con­sent or your revo­ca­tion of your declaration(s) of consent
• Your IP address
• Infor­ma­tion about your browser
• Infor­ma­tion about your device
• The date and time you vis­it­ed our website

More­over, User­centrics shall store a cook­ie in your brows­er to be able to allo­cate your declaration(s) of con­sent or any revo­ca­tions of the for­mer. The data that are record­ed in this man­ner shall be stored until you ask us to erad­i­cate them, delete the User­centrics cook­ie or until the pur­pose for archiv­ing the data no longer exists. This shall be with­out prej­u­dice to any manda­to­ry legal reten­tion periods.

User­centrics uses cook­ies to obtain the dec­la­ra­tions of con­sent man­dat­ed by law. The legal basis for the use of spe­cif­ic tech­nolo­gies is Art. 6 Sect. 1 Sen­tence 1 lit. c GDPR.

Contract data processing agreement

Our com­pa­ny has exe­cut­ed a Con­tract Data Pro­cess­ing Agree­ment with User­centrics. This is an agree­ment man­dat­ed by data pri­va­cy pro­tec­tion leg­is­la­tion that war­rants that User­centrics process­es all per­son­al data of our web­site vis­i­tors exclu­sive­ly in com­pli­ance with our instruc­tions and in com­pli­ance with the GDPR.

Server log files

The provider of this web­site and its pages auto­mat­i­cal­ly col­lects and stores infor­ma­tion in so-called serv­er log files, which your brows­er com­mu­ni­cates to us auto­mat­i­cal­ly. The infor­ma­tion comprises:

• The type and ver­sion of brows­er used
• The used oper­at­ing system
• Refer­rer URL
• The host­name of the access­ing computer
• The time of the serv­er inquiry
• The IP address

This data is not merged with oth­er data sources.

This data is record­ed on the basis of Art. 6 Sect. 1 lit. f GDPR. The oper­a­tor of the web­site has a legit­i­mate inter­est in the tech­ni­cal­ly error free depic­tion and the opti­miza­tion of the operator’s web­site. In order to achieve this, serv­er log files must be recorded.

Contact form

If you sub­mit inquiries to us via our con­tact form, the infor­ma­tion pro­vid­ed in the con­tact form as well as any con­tact infor­ma­tion pro­vid­ed there­in will be stored by us in order to han­dle your inquiry and in the event that we have fur­ther ques­tions. We will not share this infor­ma­tion with­out your consent.

The pro­cess­ing of these data is based on Art. 6 para. 1 lit. b GDPR, if your request is relat­ed to the exe­cu­tion of a con­tract or if it is nec­es­sary to car­ry out pre-con­trac­tu­al mea­sures. In all oth­er cas­es the pro­cess­ing is based on our legit­i­mate inter­est in the effec­tive pro­cess­ing of the requests addressed to us (Art. 6 Para. 1 lit. f GDPR) or on your agree­ment (Art. 6 Para. 1 lit. a GDPR) if this has been requested.

The infor­ma­tion you have entered into the con­tact form shall remain with us until you ask us to erad­i­cate the data, revoke your con­sent to the archiv­ing of data or if the pur­pose for which the infor­ma­tion is being archived no longer exists (e.g., after we have con­clud­ed our response to your inquiry). This shall be with­out prej­u­dice to any manda­to­ry legal pro­vi­sions, in par­tic­u­lar reten­tion periods.

Request by e‑mail, telephone, or fax

If you con­tact us by e‑mail, tele­phone or fax, your request, includ­ing all result­ing per­son­al data (name, request) will be stored and processed by us for the pur­pose of pro­cess­ing your request. We do not pass these data on with­out your consent.

These data are processed on the basis of Art. 6 Sect. 1 lit. b GDPR if your inquiry is relat­ed to the ful­fill­ment of a con­tract or is required for the per­for­mance of pre-con­trac­tu­al mea­sures. In all oth­er cas­es, the data are processed on the basis of our legit­i­mate inter­est in the effec­tive han­dling of inquiries sub­mit­ted to us (Art. 6 Sect. 1 lit. f GDPR) or on the basis of your con­sent (Art. 6 Sect. 1 lit. a GDPR) if it has been obtained.

The data sent by you to us via con­tact requests remain with us until you request us to delete, revoke your con­sent to the stor­age or the pur­pose for the data stor­age laps­es (e.g. after com­ple­tion of your request). Manda­to­ry statu­to­ry pro­vi­sions — in par­tic­u­lar statu­to­ry reten­tion peri­ods — remain unaffected.

Hubspot CRM

We use Hub­spot CRM on this web­site. The provider is Hub­spot Inc. 25 Street, Cam­bridge, MA 02141 USA (here­after Hub­spot CRM).

Hub­spot CRM enables us, among oth­er things, to man­age exist­ing and poten­tial cus­tomers and cus­tomer con­tacts, to com­mu­ni­cate with you and to plan and exe­cute mar­ket­ing activ­i­ties in line with your inter­ests. Hub­spot CRM enables us to cap­ture, sort and ana­lyze cus­tomer inter­ac­tions via email, social media, or phone across mul­ti­ple chan­nels. The per­son­al data col­lect­ed in this way can be eval­u­at­ed and used for com­mu­ni­ca­tion with the poten­tial cus­tomer or mar­ket­ing mea­sures (e.g., newslet­ter mail­ings). Hub­spot CRM also enables us to col­lect and ana­lyze the user behav­ior of our con­tacts on our website.

The use of Hub­spot CRM is based on Art. 6(1)(f) GDPR. The web­site oper­a­tor has a legit­i­mate inter­est in the most effi­cient cus­tomer man­age­ment and cus­tomer com­mu­ni­ca­tion. If con­sent has been request­ed, the pro­cess­ing is car­ried out exclu­sive­ly on the basis of Art. 6(1)(a) GDPR; con­sent may be revoked at any time.

For details, please refer to Hubspot’s pri­va­cy pol­i­cy: https://legal.hubspot.com/de/privacy-policy.

Data trans­mis­sion to the US is based on the stan­dard con­trac­tu­al claus­es of the EU Com­mis­sion. Details can be found here: https://www.hubspot.de/data-privacy/privacy-shield..

Contract data processing agreement

We have con­clud­ed an order pro­cess­ing con­tract with Hub­spot CRM. This is a con­tract that is required by data pro­tec­tion law and ensures that Hub­spot CRM process­es the per­son­al data of our web­site vis­i­tors only accord­ing to our instruc­tions and in com­pli­ance with the GDPR.

Registration on this website

You have the option to reg­is­ter on this web­site to be able to use addi­tion­al web­site func­tions. We shall use the data you enter only for the pur­pose of using the respec­tive offer or ser­vice you have reg­is­tered for. The required infor­ma­tion we request at the time of reg­is­tra­tion must be entered in full. Oth­er­wise, we shall reject the registration.

To noti­fy you of any impor­tant changes to the scope of our port­fo­lio or in the event of tech­ni­cal mod­i­fi­ca­tions, we shall use the e‑mail address pro­vid­ed dur­ing the reg­is­tra­tion process.

We shall process the data entered dur­ing the reg­is­tra­tion process on the basis of your con­sent (Art. 6 Sect. 1 lit. a GDPR).

The data record­ed dur­ing the reg­is­tra­tion process shall be stored by us as long as you are reg­is­tered on this web­site. Sub­se­quent­ly, such data shall be delet­ed. This shall be with­out prej­u­dice to manda­to­ry statu­to­ry reten­tion obligations.

The comment function on this website

When you use the com­ment func­tion on this web­site, infor­ma­tion on the time the com­ment was gen­er­at­ed and your e‑mail-address and, if you are not post­ing anony­mous­ly, the user­name you have select­ed will be archived in addi­tion to your comments.

Storage of the IP address

Our com­ment func­tion stores the IP address­es of all users who enter com­ments. Giv­en that we do not review the com­ments pri­or to pub­lish­ing them, we need this infor­ma­tion in order to take action against the author in the event of rights vio­la­tions, such as defama­tion or propaganda.

Storage period for comments

Com­ments and any affil­i­at­ed infor­ma­tion shall be stored by us and remain on this web­site until the con­tent the com­ment per­tained to has been delet­ed in its entire­ty or if the com­ments had to be delet­ed for legal rea­sons (e.g., insult­ing comments).

Legal basis

Com­ments are stored on the basis of your con­sent (Art. 6 Sect. 1 lit. a GDPR). You have the right to revoke at any time any con­sent you have already giv­en us. To do so, all you are required to do is sent us an infor­mal noti­fi­ca­tion via e‑mail. This shall be with­out prej­u­dice to the law­ful­ness of any data col­lec­tion that occurred pri­or to your revocation.

5. Analysis tools and advertising

Google Tag Manager

We use the Google Tag Man­ag­er. The provider is Google Ire­land Lim­it­ed, Gor­don House, Bar­row Street, Dublin 4, Ireland

The Google Tag Man­ag­er is a tool that allows us to inte­grate track­ing or sta­tis­ti­cal tools and oth­er tech­nolo­gies on our web­site. The Google Tag Man­ag­er itself does not cre­ate any user pro­files, does not store cook­ies, and does not car­ry out any inde­pen­dent analy­ses. It only man­ages and runs the tools inte­grat­ed via it. How­ev­er, the Google Tag Man­ag­er does col­lect your IP address, which may also be trans­ferred to Google’s par­ent com­pa­ny in the Unit­ed States.

The Google Tag Man­ag­er is used on the basis of Art. 6(1)(f) GDPR. The web­site oper­a­tor has a legit­i­mate inter­est in the quick and uncom­pli­cat­ed inte­gra­tion and admin­is­tra­tion of var­i­ous tools on his web­site. If the rel­e­vant con­sent has been request­ed, the pro­cess­ing is car­ried out exclu­sive­ly on the basis of Art. 6(1)(a) GDPR; the con­sent can be revoked at any time.

Google Analytics

This web­site uses func­tions of the web analy­sis ser­vice Google Ana­lyt­ics. The provider of this ser­vice is Google Ire­land Lim­it­ed (“Google”), Gor­don House, Bar­row Street, Dublin 4, Ireland.

Google Ana­lyt­ics enables the web­site oper­a­tor to ana­lyze the behav­ior pat­terns of web­site vis­i­tors. To that end, the web­site oper­a­tor receives a vari­ety of user data, such as pages accessed, time spent on the page, the uti­lized oper­at­ing sys­tem and the user’s ori­gin. Google may con­sol­i­date these data in a pro­file that is allo­cat­ed to the respec­tive user or the user’s device.

Google Ana­lyt­ics uses tech­nolo­gies that make the recog­ni­tion of the user for the pur­pose of ana­lyz­ing the user behav­ior pat­terns (e.g., cook­ies or device fin­ger­print­ing). The web­site use infor­ma­tion record­ed by Google is, as a rule trans­ferred to a Google serv­er in the Unit­ed States, where it is stored.

This analy­sis tool is used on the basis of Art. 6 Sect. 1 lit. f GDPR. The oper­a­tor of this web­site has a legit­i­mate inter­est in the analy­sis of user pat­terns to opti­mize both, the ser­vices offered online and the operator’s adver­tis­ing activ­i­ties. If a cor­re­spond­ing agree­ment has been request­ed (e.g., an agree­ment to the stor­age of cook­ies), the pro­cess­ing takes place exclu­sive­ly on the basis of Art. 6 para. 1 lit. a GDPR; the agree­ment can be revoked at any time.

Data trans­mis­sion to the US is based on the Stan­dard Con­trac­tu­al Claus­es (SCC) of the Euro­pean Com­mis­sion. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/.

IP anonymization

On this web­site, we have acti­vat­ed the IP anonymiza­tion func­tion. As a result, your IP address will be abbre­vi­at­ed by Google with­in the mem­ber states of the Euro­pean Union or in oth­er states that have rat­i­fied the Con­ven­tion on the Euro­pean Eco­nom­ic Area pri­or to its trans­mis­sion to the Unit­ed States. The full IP address will be trans­mit­ted to one of Google’s servers in the Unit­ed States and abbre­vi­at­ed there only in excep­tion­al cas­es. On behalf of the oper­a­tor of this web­site, Google shall use this infor­ma­tion to ana­lyze your use of this web­site to gen­er­ate reports on web­site activ­i­ties and to ren­der oth­er ser­vices to the oper­a­tor of this web­site that are relat­ed to the use of the web­site and the Inter­net. The IP address trans­mit­ted in con­junc­tion with Google Ana­lyt­ics from your brows­er shall not be merged with oth­er data in Google’s possession.

Browser plug-in

You can pre­vent the record­ing and pro­cess­ing of your data by Google by down­load­ing and installing the brows­er plu­g­in avail­able under the fol­low­ing link: https://tools.google.com/dlpage/gaoptout?hl=en.

For more infor­ma­tion about the han­dling of user data by Google Ana­lyt­ics, please con­sult Google’s Data Pri­va­cy Dec­la­ra­tion at: https://support.google.com/analytics/answer/6004245?hl=en.

Contract data processing

We have exe­cut­ed a con­tract data pro­cess­ing agree­ment with Google and are imple­ment­ing the strin­gent pro­vi­sions of the Ger­man data pro­tec­tion agen­cies to the fullest when using Google Analytics.

Demographic parameters provided by Google Analytics

This web­site uses the “demo­graph­ic char­ac­ter­is­tics” func­tion of Google Ana­lyt­ics, to be able to dis­play to the web­site vis­i­tor com­pat­i­ble ads with­in the Google adver­tis­ing net­work. This allows reports to be cre­at­ed that con­tain infor­ma­tion about the age, gen­der, and inter­ests of the web­site vis­i­tors. The sources of this infor­ma­tion are inter­est-relat­ed adver­tis­ing by Google as well as vis­i­tor data obtained from third-par­ty providers. This data can­not be allo­cat­ed to a spe­cif­ic indi­vid­ual. You have the option to deac­ti­vate this func­tion at any time by mak­ing per­ti­nent set­tings changes for adver­tis­ing in your Google account or you can gen­er­al­ly pro­hib­it the record­ing of your data by Google Ana­lyt­ics as explained in sec­tion “Objec­tion to the record­ing of data”.

Google Analytics E‑Commerce-Tracking

This web­site uses the “E‑Commerce Track­ing” func­tion of Google Ana­lyt­ics. With the assis­tance of E‑Commerce Track­ing, the web­site oper­a­tor is in a posi­tion to ana­lyze the pur­chas­ing pat­terns of web­site vis­i­tors with the aim of improv­ing the operator’s online mar­ket­ing cam­paigns. In this con­text, infor­ma­tion, such as the orders placed, the aver­age order val­ues, ship­ping costs and the time from view­ing the prod­uct to mak­ing the pur­chas­ing deci­sion are tracked. These data may be con­sol­i­dat­ed by Google under a trans­ac­tion ID, which is allo­cat­ed to the respec­tive user or the user’s device.

Archiving period

Data on the user or inci­dent lev­el stored by Google linked to cook­ies, user IDs or adver­tis­ing IDs (e.g., Dou­bleClick cook­ies, Android adver­tis­ing ID) will be anonymized or delet­ed after 14 month. For details, please click the fol­low­ing link: https://support.google.com/analytics/answer/7667196?hl=en

Google Ads

The web­site oper­a­tor uses Google Ads. Google Ads is an online pro­mo­tion­al pro­gram of Google Ire­land Lim­it­ed (“Google”), Gor­don House, Bar­row Street, Dublin 4, Ireland.

Google Ads enables us to dis­play ads in the Google search engine or on third-par­ty web­sites, if the user enters cer­tain search terms into Google (key­word tar­get­ing). It is also pos­si­ble to place tar­get­ed ads based on the user data Google has in its pos­ses­sion (e.g., loca­tion data and inter­ests; tar­get group tar­get­ing). As the web­site oper­a­tor, we can ana­lyze these data quan­ti­ta­tive­ly, for instance by ana­lyz­ing which search terms result­ed in the dis­play of our ads and how many ads led to respec­tive clicks.

The use of Google Ads is based on  Art. 6 Sect. 1 lit. et seq. GDPR. The web­site oper­a­tor has a legit­i­mate inter­est in mar­ket­ing the operator’s ser­vices and prod­ucts as effec­tive­ly as possible.

Data trans­mis­sion to the US is based on the Stan­dard Con­trac­tu­al Claus­es (SCC) of the Euro­pean Com­mis­sion. Details can be found here: https://policies.google.com/privacy/frameworks and https://privacy.google.com/businesses/controllerterms/mccs/.

Google Remarketing

This web­site uses the func­tions of Google Ana­lyt­ics Remar­ket­ing. The provider of these solu­tions is Google Ire­land Lim­it­ed (“Google”), Gor­don House, Bar­row Street, Dublin 4, Ireland.

Google Remar­ket­ing ana­lyzes your user pat­terns on our web­site (e.g., clicks on spe­cif­ic prod­ucts), to allo­cate a cer­tain adver­tis­ing tar­get groups to you and to sub­se­quent­ly dis­play match­ing online offers to you when you vis­it oth­er online offers (remar­ket­ing or retargeting).

More­over, it is pos­si­ble to link the adver­tis­ing tar­get groups gen­er­at­ed with Google Remar­ket­ing to device encom­pass­ing func­tions of Google. This makes it pos­si­ble to dis­play inter­est-based cus­tomized adver­tis­ing mes­sages, depend­ing on your pri­or usage and brows­ing pat­terns on a device (e.g., cell phone) in a man­ner tai­lored to you as well as on any of your devices (e.g., tablet or PC).

If you have a Google account, you have the option to object to per­son­al­ized adver­tis­ing under the fol­low­ing link: https://www.google.com/settings/ads/onweb/.

The use of Google Remar­ket­ing is based on Art. 6 1 lit. et seq. GDPR. The web­site oper­a­tor has a legit­i­mate inter­est in the mar­ket­ing of the operator’s prod­ucts that is as effec­tive as pos­si­ble. If a respec­tive dec­la­ra­tion of con­sent was request­ed, pro­cess­ing shall occur exclu­sive­ly on the basis of Art. 6 Sect. 1 lit. a GDPR; the giv­en con­sent may be revoked at any time.

For fur­ther infor­ma­tion and the per­ti­nent data pro­tec­tion reg­u­la­tions, please con­sult the Data Pri­va­cy Poli­cies of Google at: https://policies.google.com/technologies/ads?hl=en.

Formation of Target Groups with Customer Reconciliation

For the for­ma­tion of tar­get groups, we use, among oth­er things, the Google Remar­ket­ing cus­tomer rec­on­cil­i­a­tion fea­ture. To achieve this, we trans­fer cer­tain cus­tomer data (e.g., email address­es) from our cus­tomer lists to Google. If the respec­tive cus­tomers are Google users and are logged into their Google accounts, match­ing adver­tis­ing mes­sages with­in the Google net­work (e.g., YouTube, Gmail or in a search engine) are dis­played for them to view.

Google Conversion-Tracking

This web­site uses Google Con­ver­sion Track­ing. The provider of this ser­vice is Google Ire­land Lim­it­ed (“Google”), Gor­don House, Bar­row Street, Dublin 4, Ireland.

With the assis­tance of Google Con­ver­sion Track­ing, we are in a posi­tion to rec­og­nize whether the user has com­plet­ed cer­tain actions. For instance, we can ana­lyze the how fre­quent­ly which but­tons on our web­site have been clicked and which prod­ucts are reviewed or pur­chased with par­tic­u­lar fre­quen­cy. The pur­pose of this infor­ma­tion is to com­pile con­ver­sion sta­tis­tics. We learn how many users have clicked on our ads and which actions they have com­plet­ed. We do not receive any infor­ma­tion that would allow us to per­son­al­ly iden­ti­fy the users. Google as such uses cook­ies or com­pa­ra­ble recog­ni­tion tech­nolo­gies for iden­ti­fi­ca­tion purposes.

We use Google Con­ver­sion Track­ing on the basis of Art. 6 Sect. 1 lit. et seq. GDPR. The oper­a­tor of the web­site has a legit­i­mate inter­est in the analy­sis of the user pat­terns with the aim of opti­miz­ing both, the operator’s web pre­sen­ta­tion and adver­tis­ing. If a respec­tive dec­la­ra­tion of con­sent was request­ed (e.g., con­cern­ing the stor­age of cook­ies), pro­cess­ing shall occur exclu­sive­ly on the basis of Art. 6 Sect. 1 lit. a GDPR; the giv­en con­sent may be revoked at any time.

For more infor­ma­tion about Google Con­ver­sion Track­ing, please review Google’s data pro­tec­tion pol­i­cy at: https://policies.google.com/privacy?hl=en

Google DoubleClick

This web­site uses fea­tures of Google Dou­bleClick. The provider is Google Ire­land Lim­it­ed (“Google”), Gor­don House, Bar­row Street, Dublin 4, Ire­land, (here­inafter “Dou­bleClick”).

Dou­bleClick is used to show you inter­est-based ads across the Google Net­work. Adver­tise­ments can be tai­lored to the inter­ests of the view­er using Dou­bleClick.  For exam­ple, our ads may appear in Google search results or in ban­ners asso­ci­at­ed with DoubleClick.

To be able to dis­play inter­est ade­quate pro­mo­tion­al con­tent to users, Dou­bleClick must rec­og­nize the respec­tive vis­i­tor so that it can allo­cate the web­sites vis­it­ed, the clicks and oth­er user pat­tern infor­ma­tion to the user. To do this, Dou­bleClick deploys cook­ies or com­pa­ra­ble recog­ni­tion tech­nolo­gies (e.g., device fin­ger­print­ing). The record­ed infor­ma­tion is con­sol­i­dat­ed into a pseu­do­nym user pro­file so that the respec­tive user can be shown inter­est ade­quate advertising.

The use of Google Dou­bleClick takes place in the inter­est of tar­get­ed adver­tis­ing mea­sures. This con­sti­tutes a legit­i­mate inter­est with­in the mean­ing of Art. 6 para. 1 lit. f GDPR. If a cor­re­spond­ing agree­ment has been request­ed (e.g., an agree­ment to the stor­age of cook­ies), the pro­cess­ing takes place exclu­sive­ly on the basis of Art. 6 para. 1 lit. a GDPR; the agree­ment can be revoked at any time.

For fur­ther infor­ma­tion on how to object to the adver­tise­ments dis­played by Google, please see the fol­low­ing links: https://policies.google.com/technologies/ads and https://adssettings.google.com/authenticated.

6. Newsletter

Newsletter data

If you would like to sub­scribe to the newslet­ter offered on this web­site, we will need from you an e‑mail address as well as infor­ma­tion that allow us to ver­i­fy that you are the own­er of the e‑mail address pro­vid­ed, and con­sent to the receipt of the newslet­ter. No fur­ther data shall be col­lect­ed or shall be col­lect­ed only on a vol­un­tary basis. We shall use such data only for the send­ing of the request­ed infor­ma­tion and shall not share such data with any third parties.

The pro­cess­ing of the infor­ma­tion entered into the newslet­ter sub­scrip­tion form shall occur exclu­sive­ly on the basis of your con­sent (Art. 6 Sect. 1 lit. a GDPR). You may revoke the con­sent you have giv­en to the archiv­ing of data, the e‑mail address and the use of this infor­ma­tion for the send­ing of the newslet­ter at any time, for instance by click­ing on the “Unsub­scribe” link in the newslet­ter. This shall be with­out prej­u­dice to the law­ful­ness of any data pro­cess­ing trans­ac­tions that have tak­en place to date.

The data deposit­ed with us for the pur­pose of sub­scrib­ing to the newslet­ter will be stored by us until you unsub­scribe from the newslet­ter or the newslet­ter ser­vice provider and delet­ed from the newslet­ter dis­tri­b­u­tion list after you unsub­scribe from the newslet­ter or after the pur­pose has ceased to apply. We reserve the right to delete or block e‑mail address­es from our newslet­ter dis­tri­b­u­tion list at our own dis­cre­tion with­in the scope of our legit­i­mate inter­est in accor­dance with Art. 6(1)(f) GDPR.

After you unsub­scribe from the newslet­ter dis­tri­b­u­tion list, your e‑mail address may be stored by us or the newslet­ter ser­vice provider in a black­list to pre­vent future mail­ings. The data from the black­list is used only for this pur­pose and not merged with oth­er data. This serves both your inter­est and our inter­est in com­ply­ing with the legal require­ments when send­ing newslet­ters (legit­i­mate inter­est with­in the mean­ing of Art. 6 para. 1 lit. f GDPR). The stor­age in the black­list is indef­i­nite. You may object to the stor­age if your inter­ests out­weigh our legit­i­mate interest.

7. Plug-ins and Tools

YouTube with expanded data protection integration

Our web­site embeds videos of the web­site YouTube. The web­site oper­a­tor is Google Ire­land Lim­it­ed (“Google”), Gor­don House, Bar­row Street, Dublin 4, Ireland.

We use YouTube in the expand­ed data pro­tec­tion mode. Accord­ing to YouTube, this mode ensures that YouTube does not store any infor­ma­tion about vis­i­tors to this web­site before they watch the video. Nev­er­the­less, this does not nec­es­sar­i­ly mean that the shar­ing of data with YouTube part­ners can be ruled out as a result of the expand­ed data pro­tec­tion mode. For instance, regard­less of whether you are watch­ing a video, YouTube will always estab­lish a con­nec­tion with the Google Dou­bleClick network.

As soon as you start to play a YouTube video on this web­site, a con­nec­tion to YouTube’s servers will be estab­lished. As a result, the YouTube serv­er will be noti­fied, which of our pages you have vis­it­ed. If you are logged into your YouTube account while you vis­it our site, you enable YouTube to direct­ly allo­cate your brows­ing pat­terns to your per­son­al pro­file. You have the option to pre­vent this by log­ging out of your YouTube account.

Fur­ther­more, after you have start­ed to play a video, YouTube will be able to place var­i­ous cook­ies on your device or com­pa­ra­ble tech­nolo­gies for recog­ni­tion (e.g. device fin­ger­print­ing). In this way YouTube will be able to obtain infor­ma­tion about this website’s vis­i­tors. Among oth­er things, this infor­ma­tion will be used to gen­er­ate video sta­tis­tics with the aim of improv­ing the user friend­li­ness of the site and to pre­vent attempts to com­mit fraud.

Under cer­tain cir­cum­stances, addi­tion­al data pro­cess­ing trans­ac­tions may be trig­gered after you have start­ed to play a YouTube video, which are beyond our control.

The use of YouTube is based on our inter­est in pre­sent­ing our online con­tent in an appeal­ing man­ner. Pur­suant to Art. 6 Sect. 1 lit. f GDPR, this is a legit­i­mate inter­est. If a cor­re­spond­ing agree­ment has been request­ed, the pro­cess­ing takes place exclu­sive­ly on the basis of Art. 6 para. 1 lit. a GDPR; the agree­ment can be revoked at any time.

For more infor­ma­tion on how YouTube han­dles user data, please con­sult the YouTube Data Pri­va­cy Pol­i­cy under: https://policies.google.com/privacy?hl=en.

Google Web Fonts (local embedding)

This web­site uses so-called Web Fonts pro­vid­ed by Google to ensure the uni­form use of fonts on this site. These Google fonts are local­ly installed so that a con­nec­tion to Google’s servers will not be estab­lished in con­junc­tion with this application.

For more infor­ma­tion on Google Web Fonts, please fol­low this link: https://developers.google.com/fonts/faq and con­sult Google’s Data Pri­va­cy Dec­la­ra­tion under: https://policies.google.com/privacy?hl=en.

Font Awesome

This page uses Font Awe­some for the uni­form rep­re­sen­ta­tion of fonts and sym­bols. Provider is Fonti­cons, Inc. 6 Porter Road Apart­ment 3R, Cam­bridge, Mass­a­chu­setts, USA.

When you call up a page, your brows­er loads the required fonts into its brows­er cache to dis­play texts, fonts, and sym­bols cor­rect­ly. For this pur­pose, the brows­er you use must con­nect to the servers of Font Awe­some. This allows Font Awe­some to know that your IP address has been used to access this web­site. The use of Font Awe­some is based on Art. 6(1)(f) GDPR. We have a legit­i­mate inter­est in the uni­form pre­sen­ta­tion of the type­face on our web­site. If con­sent has been request­ed (e.g., con­sent to the stor­age of cook­ies), pro­cess­ing will be car­ried out exclu­sive­ly on the basis of Art. 6(1)(a) GDPR; con­sent may be revoked at any time.

If your brows­er does not sup­port Font Awe­some, a stan­dard font from your com­put­er will be used.

Fur­ther infor­ma­tion about Font Awe­some can be found in the Font Awe­some pri­va­cy pol­i­cy at: https://fontawesome.com/privacy.

Google Maps

This web­site uses the map­ping ser­vice Google Maps. The provider is Google Ire­land Lim­it­ed (“Google”), Gor­don House, Bar­row Street, Dublin 4, Ireland.

To enable the use of the Google Maps fea­tures, your IP address must be stored. As a rule, this infor­ma­tion is trans­ferred to one of Google’s servers in the Unit­ed States, where it is archived. The oper­a­tor of this web­site has no con­trol over the data transfer.

We use Google Maps to present our online con­tent in an appeal­ing man­ner and to make the loca­tions dis­closed on our web­site easy to find. This con­sti­tutes a legit­i­mate inter­est as defined in Art. 6 Sect. 1 lit. f GDPR. If a respec­tive dec­la­ra­tion of con­sent has been obtained, the data shall be processed exclu­sive­ly on the basis of Art. 6 Sect. 1 lit. a GDPR. This dec­la­ra­tion of con­sent may be revoked at any time.

Data trans­mis­sion to the US is based on the Stan­dard Con­trac­tu­al Claus­es (SCC) of the Euro­pean Com­mis­sion. Details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

For more infor­ma­tion on the han­dling of user data, please review Google’s Data Pri­va­cy Dec­la­ra­tion under: https://policies.google.com/privacy?hl=en.

Google reCAPTCHA

We use “Google reCAPTCHA” (here­inafter referred to as “reCAPTCHA”) on this web­site. The provider is Google Ire­land Lim­it­ed (“Google”), Gor­don House, Bar­row Street, Dublin 4, Ireland.

The pur­pose of reCAPTCHA is to deter­mine whether data entered on this web­site (e.g., infor­ma­tion entered into a con­tact form) is being pro­vid­ed by a human user or by an auto­mat­ed pro­gram. To deter­mine this, reCAPTCHA ana­lyzes the behav­ior of the web­site vis­i­tors based on a vari­ety of para­me­ters. This analy­sis is trig­gered auto­mat­i­cal­ly as soon as the web­site vis­i­tor enters the site. For this analy­sis, reCAPTCHA eval­u­ates a vari­ety of data (e.g., IP address, time the web­site vis­i­tor spent on the site or cur­sor move­ments ini­ti­at­ed by the user). The data tracked dur­ing such analy­ses are for­ward­ed to Google.

reCAPTCHA analy­ses run entire­ly in the back­ground. Web­site vis­i­tors are not alert­ed that an analy­sis is underway.

Data are stored and ana­lyzed on the basis of Art. 6 Sect. 1 lit. f GDPR. The web­site oper­a­tor has a legit­i­mate inter­est in the pro­tec­tion of the operator’s web­sites against abu­sive auto­mat­ed spy­ing and against SPAM. If a respec­tive dec­la­ra­tion of con­sent has been obtained, the data will be processed exclu­sive­ly on the basis of Art. 6 Sect. 1 lit. a DGDPR. Any such con­sent may be revoked at any time.

For more infor­ma­tion about Google reCAPTCHA please refer to the Google Data Pri­va­cy Dec­la­ra­tion and Terms Of Use under the fol­low­ing links: https://policies.google.com/privacy?hl=en and https://policies.google.com/terms?hl=en.

Zapier

We have inte­grat­ed Zapi­er on this web­site. The provider is Zapi­er Inc, Mar­ket St. #62411, San Fran­cis­co, CA 94104–5401, USA (here­inafter “Zapi­er”).

Zapi­er allows us to link and syn­chro­nize var­i­ous func­tion­al­i­ties, data­bas­es, and tools with our web­site. In this way, it is pos­si­ble, for exam­ple, to auto­mat­i­cal­ly play out con­tent that we pub­lish on our web­site on our social media chan­nels or to export con­tent from mar­ket­ing and analy­sis tools. Depend­ing on the func­tion­al­i­ty, Zapi­er may also col­lect var­i­ous per­son­al data in the process.

The use of Zapi­er is based on Art. 6 para. 1 lit. f GDPR. The web­site oper­a­tor has a legit­i­mate inter­est on the most effec­tive inte­gra­tion of the tools used. If appro­pri­ate con­sent has been obtained, the pro­cess­ing is car­ried out exclu­sive­ly on the basis of Art. 6 Para. 1 lit. a GDPR; con­sent can be revoked at any time.

Data trans­fer to the USA is based on the stan­dard con­trac­tu­al claus­es of the EU Com­mis­sion. You can find details here: https://zapier.com/tos.

Execution of a contract data processing agreement

We have con­clud­ed an order pro­cess­ing con­tract with Zapi­er. This is a con­tract required by data pro­tec­tion law, which ensures that Zapi­er process­es the per­son­al data of our web­site vis­i­tors only accord­ing to our instruc­tions and in com­pli­ance with the GDPR.

8. eCommerce and payment service providers

Processing of data (customer and contract data)

We col­lect, process, and use per­son­al data only to the extent nec­es­sary for the estab­lish­ment, con­tent orga­ni­za­tion or change of the legal rela­tion­ship (data inven­to­ry). These actions are tak­en on the basis of Art. 6 Sect. 1 lit. b GDPR, which per­mits the pro­cess­ing of data for the ful­fil­ment of a con­tract or pre-con­trac­tu­al actions. We col­lect, process, and use per­son­al data con­cern­ing the use of this web­site (usage data) only to the extent that this is nec­es­sary to make it pos­si­ble for users to uti­lize the ser­vices and to bill for them.

The col­lect­ed cus­tomer data shall be erad­i­cat­ed upon com­ple­tion of the order or the ter­mi­na­tion of the busi­ness rela­tion­ship. This shall be with­out prej­u­dice to any statu­to­ry reten­tion mandates.

Data transfer upon closing of contracts for online stores, retailers, and the shipment of merchandise

We share per­son­al data with third par­ties only if this is nec­es­sary in con­junc­tion with the han­dling of the con­tract; for instance, with com­pa­nies entrust­ed with the ship­ment of goods or the finan­cial insti­tu­tion tasked with the pro­cess­ing of pay­ments. Any fur­ther trans­fer of data shall not occur or shall only occur if you have express­ly con­sent­ed to the trans­fer. Any shar­ing of your data with third par­ties in the absence of your express con­sent, for instance for adver­tis­ing pur­pos­es, shall not occur.

The basis for the pro­cess­ing of data is Art. 6 Sect. 1 lit. b GDPR, which per­mits the pro­cess­ing of data for the ful­fil­ment of a con­tract or for pre-con­trac­tu­al actions.

Data transfer upon closing of contracts for services and digital content

We share per­son­al data with third par­ties only if this is nec­es­sary in con­junc­tion with the han­dling of the con­tract; for instance, with the finan­cial insti­tu­tion tasked with the pro­cess­ing of payments.

Any fur­ther trans­fer of data shall not occur or shall only occur if you have express­ly con­sent­ed to the trans­fer. Any shar­ing of your data with third par­ties in the absence of your express con­sent, for instance for adver­tis­ing pur­pos­es, shall not occur.

The basis for the pro­cess­ing of data is Art. 6 Sect. 1 lit. b GDPR, which per­mits the pro­cess­ing of data for the ful­fil­ment of a con­tract or for pre-con­trac­tu­al actions.

Payment services

We inte­grate pay­ment ser­vices of third-par­ty com­pa­nies on our web­site. When you make a pur­chase from us, your pay­ment data (e.g. name, pay­ment amount, bank account details, cred­it card num­ber) are processed by the pay­ment ser­vice provider for the pur­pose of pay­ment pro­cess­ing. For these trans­ac­tions, the respec­tive con­trac­tu­al and data pro­tec­tion pro­vi­sions of the respec­tive providers apply. The use of the pay­ment ser­vice providers is based on Art. 6(1)(b) GDPR (con­tract pro­cess­ing) and in the inter­est of a smooth, con­ve­nient, and secure pay­ment trans­ac­tion (Art. 6(1)(f) GDPR). Inso­far as your con­sent is request­ed for cer­tain actions, Art. 6(1)(a) GDPR is the legal basis for data pro­cess­ing; con­sent may be revoked at any time for the future.

We use the fol­low­ing pay­ment ser­vices / pay­ment ser­vice providers with­in the scope of this website:

PayPal

The provider of this pay­ment ser­vice is Pay­Pal (Europe) S.à.r.l. et Cie, S.C.A., 22–24 Boule­vard Roy­al, L‑2449 Lux­em­bourg (here­inafter “Pay­Pal”).

Data trans­mis­sion to the US is based on the Stan­dard Con­trac­tu­al Claus­es (SCC) of the Euro­pean Com­mis­sion. Details can be found here: https://www.paypal.com/de/webapps/mpp/ua/pocpsa-full.

Details can be found in PayPal’s pri­va­cy pol­i­cy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

9. Online-based Audio and Video Conferences (Conference tools)

Data processing

We use online con­fer­ence tools, among oth­er things, for com­mu­ni­ca­tion with our cus­tomers. The tools we use are list­ed in detail below. If you com­mu­ni­cate with us by video or audio con­fer­ence using the Inter­net, your per­son­al data will be col­lect­ed and processed by the provider of the respec­tive con­fer­ence tool and by us. The con­fer­enc­ing tools col­lect all infor­ma­tion that you provide/access to use the tools (email address and/or your phone num­ber). Fur­ther­more, the con­fer­ence tools process the dura­tion of the con­fer­ence, start and end (time) of par­tic­i­pa­tion in the con­fer­ence, num­ber of par­tic­i­pants and oth­er “con­text infor­ma­tion” relat­ed to the com­mu­ni­ca­tion process (meta­da­ta).

Fur­ther­more, the provider of the tool process­es all the tech­ni­cal data required for the pro­cess­ing of the online com­mu­ni­ca­tion. This includes, in par­tic­u­lar, IP address­es, MAC address­es, device IDs, device type, oper­at­ing sys­tem type and ver­sion, client ver­sion, cam­era type, micro­phone or loud­speak­er and the type of connection.

Should con­tent be exchanged, uploaded, or oth­er­wise made avail­able with­in the tool, it is also stored on the servers of the tool provider. Such con­tent includes, but is not lim­it­ed to, cloud record­ings, chat/ instant mes­sages, voice­mail uploaded pho­tos and videos, files, white­boards, and oth­er infor­ma­tion shared while using the service.

Please note that we do not have com­plete influ­ence on the data pro­cess­ing pro­ce­dures of the tools used. Our pos­si­bil­i­ties are large­ly deter­mined by the cor­po­rate pol­i­cy of the respec­tive provider. Fur­ther infor­ma­tion on data pro­cess­ing by the con­fer­ence tools can be found in the data pro­tec­tion dec­la­ra­tions of the tools used, and which we have list­ed below this text.

Purpose and legal bases

The con­fer­ence tools are used to com­mu­ni­cate with prospec­tive or exist­ing con­trac­tu­al part­ners or to offer cer­tain ser­vices to our cus­tomers (Art. 6 para. 1 sen­tence 1 lit. b GDPR). Fur­ther­more, the use of the tools serves to gen­er­al­ly sim­pli­fy and accel­er­ate com­mu­ni­ca­tion with us or our com­pa­ny (legit­i­mate inter­est in the mean­ing of Art. 6 para. 1 lit. f GDPR). Inso­far as con­sent has been request­ed, the tools in ques­tion will be used on the basis of this con­sent; the con­sent may be revoked at any time with effect from that date.

Duration of storage

Data col­lect­ed direct­ly by us via the video and con­fer­ence tools will be delet­ed from our sys­tems imme­di­ate­ly after you request us to delete it, revoke your con­sent to stor­age, or the rea­son for stor­ing the data no longer applies. Stored cook­ies remain on your end device until you delete them. Manda­to­ry legal reten­tion peri­ods remain unaffected.

We have no influ­ence on the dura­tion of stor­age of your data that is stored by the oper­a­tors of the con­fer­ence tools for their own pur­pos­es. For details, please direct­ly con­tact the oper­a­tors of the con­fer­ence tools.

Conference tools used

We employ the fol­low­ing con­fer­ence tools:

Zoom

We use Zoom. The provider of this ser­vice is Zoom Com­mu­ni­ca­tions Inc, San Jose, 55 Almaden Boule­vard, 6th Floor, San Jose, CA 95113, USA. For details on data pro­cess­ing, please refer to Zoom’s pri­va­cy pol­i­cy: https://zoom.us/en-us/privacy.html.

Data trans­mis­sion to the US is based on the Stan­dard Con­trac­tu­al Claus­es (SCC) of the Euro­pean Com­mis­sion. Details can be found here: https://zoom.us/de-de/privacy.html.

Execution of a contract data processing agreement

We have entered into a con­tract data pro­cess­ing agree­ment with the provider of Zoom and imple­ment the strict pro­vi­sions of the Ger­man data pro­tec­tion agen­cies to the fullest when using Zoom.

Microsoft Teams

We use Microsoft Teams. The provider is Microsoft Cor­po­ra­tion, One Microsoft Way, Red­mond, WA 98052–6399, USA. For details on data pro­cess­ing, please refer to the Microsoft Teams pri­va­cy pol­i­cy: https://privacy.microsoft.com/en-us/privacystatement.

Execution of a contract data processing agreement

We have entered into a con­tract data pro­cess­ing agree­ment with the provider of Microsoft Teams and imple­ment the strict pro­vi­sions of the Ger­man data pro­tec­tion agen­cies to the fullest when using Microsoft Teams.

Our social media appearances

Data processing through social networks

We main­tain pub­licly avail­able pro­files in social net­works. The indi­vid­ual social net­works we use can be found below.

Social net­works such as Face­book, Google+ etc. can gen­er­al­ly ana­lyze your user behav­ior com­pre­hen­sive­ly if you vis­it their web­site or a web­site with inte­grat­ed social media con­tent (e.g. like but­tons or ban­ner ads). When you vis­it our social media pages, numer­ous data pro­tec­tion-rel­e­vant pro­cess­ing oper­a­tions are trig­gered. In detail:

If you are logged in to your social media account and vis­it our social media page, the oper­a­tor of the social media por­tal can assign this vis­it to your user account. Under cer­tain cir­cum­stances, your per­son­al data may also be record­ed if you are not logged in or do not have an account with the respec­tive social media por­tal. In this case, this data is col­lect­ed, for exam­ple, via cook­ies stored on your device or by record­ing your IP address.

Using the data col­lect­ed in this way, the oper­a­tors of the social media por­tals can cre­ate user pro­files in which their pref­er­ences and inter­ests are stored. This way you can see inter­est-based adver­tis­ing inside and out­side of your social media pres­ence. If you have an account with the social net­work, inter­est-based adver­tis­ing can be dis­played on any device you are logged in to or have logged in to.

Please also note that we can­not retrace all pro­cess­ing oper­a­tions on the social media por­tals. Depend­ing on the provider, addi­tion­al pro­cess­ing oper­a­tions may there­fore be car­ried out by the oper­a­tors of the social media por­tals. Details can be found in the terms of use and pri­va­cy pol­i­cy of the respec­tive social media portals.

Legal basis

Our social media appear­ances should ensure the widest pos­si­ble pres­ence on the Inter­net. This is a legit­i­mate inter­est with­in the mean­ing of Art. 6 (1) lit. f GDPR. The analy­sis process­es ini­ti­at­ed by the social net­works may be based on diver­gent legal bases to be spec­i­fied by the oper­a­tors of the social net­works (e.g. con­sent with­in the mean­ing of Art. 6 (1) (a) GDPR).

Respon­si­bil­i­ty and asser­tion of rights

If you vis­it one of our social media sites (e.g., Face­book), we, togeth­er with the oper­a­tor of the social media plat­form, are respon­si­ble for the data pro­cess­ing oper­a­tions trig­gered dur­ing this vis­it. You can in prin­ci­ple pro­tect your rights (infor­ma­tion, cor­rec­tion, dele­tion, lim­i­ta­tion of pro­cess­ing, data porta­bil­i­ty and com­plaint) vis-à-vis us as well as vis-à-vis the oper­a­tor of the respec­tive social media por­tal (e.g. Facebook).

Please note that despite the shared respon­si­bil­i­ty with the social media por­tal oper­a­tors, we do not have full influ­ence on the data pro­cess­ing oper­a­tions of the social media por­tals. Our options are deter­mined by the com­pa­ny pol­i­cy of the respec­tive provider.

Stor­age time

The data col­lect­ed direct­ly from us via the social media pres­ence will be delet­ed from our sys­tems as soon as the pur­pose for their stor­age laps­es, you ask us to delete it, you revoke your con­sent to the stor­age or the pur­pose for the data stor­age laps­es. Stored cook­ies remain on your device until you delete them. Manda­to­ry statu­to­ry pro­vi­sions — in par­tic­u­lar, reten­tion peri­ods — remain unaffected.

We have no con­trol over the stor­age dura­tion of your data that are stored by the social net­work oper­a­tors for their own pur­pos­es. For details, please con­tact the social net­work oper­a­tors direct­ly (e.g. in their pri­va­cy pol­i­cy, see below).

Individual social networks

Face­book

We have a pro­file on Face­book. The provider of this ser­vice is Face­book Ire­land Lim­it­ed, 4 Grand Canal Square, Dublin 2, Ire­land. Accord­ing to Facebook’s state­ment the col­lect­ed data will also be trans­ferred to the USA and to oth­er third-par­ty countries.

We have signed an agree­ment with Face­book on shared respon­si­bil­i­ty for the pro­cess­ing of data (Con­troller Adden­dum). This agree­ment deter­mines which data pro­cess­ing oper­a­tions we or Face­book are respon­si­ble for when you vis­it our Face­book Fan­page. This agree­ment can be viewed at the fol­low­ing link: https://www.facebook.com/legal/terms/page_controller_addendum.

You can cus­tomize your adver­tis­ing set­tings inde­pen­dent­ly in your user account. Click on the fol­low­ing link and log in: https://www.facebook.com/settings?tab=ads.

Details can be found in the Face­book pri­va­cy pol­i­cy: https://www.facebook.com/about/privacy/.

XING

We have a pro­file on XING. The provider is New Work SE, Damm­torstraße 30, 20354 Ham­burg, Ger­many. Details on their han­dling of your per­son­al data can be found in the XING Pri­va­cy Pol­i­cy: https://privacy.xing.com/de/datenschutzerklaerung.

LinkedIn

We have a LinkedIn pro­file. The provider is the LinkedIn Ire­land Unlim­it­ed Com­pa­ny, Wilton Plaza, Wilton Place, Dublin 2, Ire­land. LinkedIn uses adver­tis­ing cookies.

If you want to dis­able LinkedIn adver­tis­ing cook­ies, please use the fol­low­ing link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

For details on how they han­dle your per­son­al infor­ma­tion, please refer to Linked­In’s pri­va­cy pol­i­cy: https://www.linkedin.com/legal/privacy-policy.

YouTube

We have a pro­file on YouTube. The provider is Google Ire­land Lim­it­ed, Gor­don House, Bar­row Street, Dublin 4, Ire­land. Details on how they han­dle your per­son­al data can be found in the YouTube pri­va­cy pol­i­cy: https://policies.google.com/privacy?hl=en.