Catégories

Mon compte

Mot de passe oublié?
Connexion

Social login

  • Vous n'avez pas encore d'article dans votre panier.

Préavis de vie privé

Vie privée et protection de données

 

Dans ce qui suit, nous vous informons sur le relevé de données personnelles en utilisant notre site Web (www.mmoga.fr). Les données personnelles sont toutes les données relatives à vous, p.ex. nom, adresse, adresses électroniques.

 

I. Nom et adresse du responsable

Le responsable dans le sens du Règlement général sur la protection des données et d'autres lois nationales sur la protection des données des États membres ainsi que d'autres dispositions relatives à la protection des données est la :
MMOGA Ltd.
705 A, Silvercord
Tower 2, 30 Canton Road, Tsim Sha Tsui, Kowloon
Hong Kong
E-mail : info@mmoga.com
Tél : +852 8191 4934
www.mmoga.fr

 

II. Nom et adresse du représentant de l'Union

Selon l'art. 27 RGPD, le représentant dans l'Union est :
GDPR-Rep.eu
Maetzler Rechtsanwalts GmbH & Co KG
Attorneys at Law
c/o MMOGA Ltd.
Schellinggasse 3/10, 1010 Vienna, Austria

Please add the following subject to all correspondence:
GDPR-REP ID: 16925667

 

III. Nom est adresse du commissaire à la protection des données


Le commissaire à la protection des données du responsable est :
Sir Eric Chen
MMOGA Ltd.
705 A, Silvercord
Tower 2, 30 Canton Road, Tsim Sha Tsui, Kowloon
Hong Kong
E-mail : Eric@mmoga.com

 

IV. Généralités sur le traitement des donnés

1. Volume du traitement de données personnelles
Nous relevons et utilisons des données personnelles de nos utilisateurs de principe uniquement dans la mesure où cela est nécessaire à la mise à disposition d'une site Web fonctionnelle ainsi que de nos contenus et prestations. Le relevé et l'utilisation de données personnelles s'effectue régulièrement uniquement après l'autorisation de l'utilisateur. Une exception est valable dans les cas où une obtention préalable d'une autorisation n'est pas possible pour des raisons matérielles et le traitement des données est autorisée par des dispositions légales.

 

2. Législation pour le traitement de données personnelles

Pour autant que nous obtenions une autorisation de la personne concernée pour des processus de traitement de données personnelles, l'art. 6 al. 1 lit. a Règlement Général européen sur la Protection des Données (RGPD) fournit la base juridique au traitement de données personnelles. 
Dans le cas du traitement de données personnelles nécessaires à l'exécution d'un contrat dont le parti contractante est la personne concernée, l'art. 6 al. 1 lit. b RGPD en fournit la base juridique. Il en va de même pour les processus de traitement nécessaires à l'exécution de mesures pré-contractuelles. 
Pour autant qu'un traitement de données personnelles soit nécessaire à l'exécution d'une obligation légale auquelle notre entreprise est soumise, l'art. 6 al. 1 lit. c RGPD en fournit la base juridique.
Si le traitement est nécessaire à la défense d'un intérêt légitime de notre entreprise ou d'un tiers et que les intérêts, droits fondamentaux et libértes fondamentales de la personne concernée n'excèdent pas le premier intérêt, l'art. 6 al. 1 lit. f RGPD fournit la base juridique au traitement.

 

3. Suppression des données et durée de conservation Les données personnelles de la personne concernée sont supprimées ou bloquées tant que l'objectif de la conservation n'est plus pertinent. Une conservation peut, en outre, se faire si ceci a été prévu par le législateur européen ou nationale dans des règlements, lois ou autres dispositions du droit de l'Union auxquels le responsable est soumis. Un blocage ou une suppression se fait également si un délai de conservation imposé par les normes mentionnées expire, à moins qu'une nécessité à la conservation prolongée des données existe pour une conclusion de contrat ou une exécution de contrat.

 

V. Mise à disposition de la page Web et la création de fichiers log

1. Description et volume du traitement des données
À chaque nouvelle visite de notre page Internet, notre système prélève des données et informations de façon automatisée du système informatisé de l'ordinateur appelant.
Les données suivantes sont prélevées à cette occasion :
(1) Informations sur le type de navigateur et la version utilisée
(2) Le système d'exploitation de l'utilisateur
(3) Le fournisseur de services Internet de l'utilisateur
(4) L'adresse IP de l'utilisateur
(5) Date et heure de l'accès
(6) Sites Web depuis lesquels le système de l'utilisateur arrive sur notre page Web
(7) Sites Web appelés par le système de l'utilisateur à travers notre site Web.
Les données sont également sauvegardées dans les fichiers log de notre système. Une conservation de ces données avec d'autres données personnelles de l'utilisateur n'a pas lieu.

 

2. Base juridique pour le traitement de données
L'art. 6 al. 1 lit. f RGPD est la base juridique pour la conservation des données et des fichiers log.

 

3. Objectif du traitement des données
La conservation temporaire de l'adresse IP par le système est nécessaire pour rendre possible une expédition de la page Web à l'ordinateur de l'utilisateur. Dans ce but, l'adresse IP de l'utilisateur doit rester conservé pendant la durée de la séance. 
La conservation des fichiers log se fait pour garantir la fonctionnalité de la page Web. En outre, les données nous servent à optimiser la page Web et à garantir la sécurité de nos systèmes informatiques. Une évaluation des données à des fins de marketing n'a pas lieu dans ce contexte.
Notre intérêt légitime au traitement des données selon l'art. 6 al. 1 lit. f RGPD se situe également dans ces objetcifs. 

 

4. Durée de la conservation 

Les données seront supprimées tant qu'elles ne sont plus nécessaires à obtenir l'objectif de leur prélèvement. Dans le cas du prélèvement des données pour la mise à disposition de la page Web, ceci est le cas quand la séance respective est terminée.
Dans le cas de la conservation des données dans des fichiers log, ceci est le cas après sept jours au plus tard. Une conservation au-delà est possible. Dans ce cas, les adresses IP des utilisateurs sont supprimées ou distanciées de sorte que le client appelant ne puisse plus être attribué.

 

5. Possibilité de contradiction et de suppression Le prélèvement des données pour la mise à disposition de la page Web et la conservation des données dans des fichiers log est indispensable au fonctionnement de la page Web. Il n'y a donc aucune possibilité de contradiction de la part de l'utilisateur.

 

VI. Utilisation de témoins

1. Description et volume du traitement de données
Pour rendre la visite de notre page Web attirante et permettre l'utilisation de certaines fonctions, nous utilisons des soi-disants témoins sur différents sites. Il s'agit par ici de petits fichiers de texte qui sont déposés sur votre terminal. Quelques-uns des témoins utilisés par nous seront à nouveau supprimés après la session du navigateur, donc après la fermeture de votre navigateur (témoins dits transitoires). D'autres témoins restent sur le terminal et nous permettent ou nos entreprises partenaires de reconnaître votre navigateur lors de la prochaine visite (témoins dits persistants).
Les témoins transitoires sont supprimés automatiquement quand vous fermez le navigateur. Surtout les témoins de session en font partie. Ceux-ci sauvegardent une ID dite de session avec laquelle différentes demandes de votre navigateur peuvent être attribuées à la session commune. Ainsi, votre ordinateur peut être reconnu si vous retournez à notre page Web. Les témoins de session sont supprimés quand vous vous déconnectez ou fermez le navigateur.
Dans les témoins persistants, les données suivantes sont sauvegardées et transmises :
(1) Informations sur des participants à notre programme d'affilié à travers la liaison desquels un client est venu dans notre boutique. 

 

2. Base juridique pour le traitement des données
L'art. 6 al. 1 lit. f RGPD est la base juridique pour le traitement de données à caractère personnel sous l'utilisation de témoins.

 

3. Objectif du traitement des données
L'objectif de l'utilisation de témoins techniquement nécessaires est de faciliter l'utilisation de pages Web aux utilisateurs. En outre, nous avons en partie besoin de témoins pour pouvoir attribuer des ventes au participant correspondant de notre programme d'affilié. Quelques fonctions de notre site Internet ne peuvent pas être proposées sans l'utlisation de témoins. Pour ceux-ci, il est nécessaire que le navigateur soit reconnu aussi après un changement de sites.
Nous avons besoin de témoins pour les applications suivantes :
(1) Panier 
(2) Connection au processus de paiment
(3) Mesure de la performance de participants au programme d'affilié
Les données d'utilisateurs prélevées par des témoins techniquement nécessaires ne sont pas utilisées pour créer des profils d'utilisateurs.
Notre intérêt légitime au traitement des données à caractère personnel selon l'art. 6 al. 1 lit. f RGPD se situe également dans ces objectifs.

 

4. Durée de la conservation, la possibilité de contradiction et de suppression
Les témoins sont sauvegardés sur l'ordinateur de l'utilisateur et transmis à notre site par celui-ci. Pour cette raison, vous avez, comme utilisateur, le contrôle total de l'utilisation de témoins. Par une modification des paramètres dans votre navigateur Internet, vous pouvez désactiver ou limiter la transmission de témoins. Des témoins déjà sauvegardés peuvent être supprimés à tout moment. Ceci peut se faire aussi automatiquement. Si les témoins pour notre page Web sont désactivés, il est possible que toutes les fonctions de la page Web ne peuvent plus être utlisées dans leur intégralité.

 

VII. Infolettre

1. Description et volume du traitement des données
Par votre consentement, vous pouvez vous abonner à notre infolettre par laquelle nous vous informons sur nos offres intéressantes actuelles. Les marchandises et services promus sont nommés dans la déclaration de consentement.
Pour l'inscription à notre infolettre, nous utilisons le processus dit d'option d'inclusion confirmée. Cela veut dire qu'après votre inscription, nous vous envoyons un courrier électronique à l'adresse électronique indiquée dans lequel nous vous demandons de confirmer que vous souhaitez l'envoi de l'infolettre. Si vous ne confirmez pas votre inscription dans les 24 heures, vos informations sont bloquées et supprimées automatiquement après un mois. En outre, nous sauvegardons respectivement vos adresses IP utilisées et dates d'inscription et de confirmation. L'objectif de la procédure est de prouver votre inscription et, le cas échéant, pouvoir élucider un abus possible de vos données personnelles. 
Seule votre adresse électronique est une mention obligatoire à l'envoi de l'infolettre. Après votre confirmation, nous sauvegardons votre adresse électronique en vue d'envoyer l'infolettre.

 

2. Base juridique pour le traitement des donnés
L'art. 6 al. 1 lit. a RGPD est la base juridique.

 

3. Objectif du traitement des données
Le relevé de l'adresse électronique de l'utilisateur sert à distribuer l'infolettre.

 

4. Durée de conservation
L'adresse électronique est sauvegardée aussi longtemps que dure l'abonnement à l'infolettre. 

 

5. Possibilité de contradiction et suppression
Vous pouvez, à tout moment, révoquer votre consentement à l'envoi de l'infolettre et vous désabonner de l'infolettre. Vous pouvez déclarer la révocation en cliquant sur le lien mis à disposition dans chaque courrier d'infolettre, par courrier électronique à accounts@mmoga.de ou par un message aux données de contact indiquées dans les mentions légales.

 

VIII. Enregistrement

1. Description et volume du traitement des données
Sur notre site Internet, nous offrons la possibilité à nos utilisateurs de s'enregister sous l'indication de données personnelles. Dans ce cas, les données sont entrées dans un masque de saisie et nous transmises et sauvegardées. Une transmission des données à des tiers n'a lieu que dans la mesure où nos entreprises partenaires ont besoin des données aux fins du traitement des commandes. Les données suivantes sont prélevées dans le cadre du processus d'enregistrement sur notre page Web :
(1) Sexe
(2) Nom et prénom
(3) Adresse électronique
(4) Adresse
(5) Mot de passe
Au moment de l'enregistrement, les données suivantes sont sauvegardées de plus↓:
(1) Adresse IP
(2) Date et heure de l'enregistrement
Un accord de l'utilisateur au traitement de ces données est obtenu dans le cadre du processus d'enregistrement.

 

2. Base juridique pour le traitement des données
L'art. 6 al. 1 lit. a RGPD est la base juridique pour le traitement des données dans le cas d'un accord de l'utilisateur.
Si l'enregistrement sert à l'exécution d'un contrat dont le parti contractuel est l'utilisateur ou à l'exécution de mesures pré-contractuelles, l'art. 6 al. 1 lit. b RGPD est la base juridique supplémentaire pour le traitement des données.

 

3. Objectif du traitement des données
Un enregistrement de l'utlisateur est nécessaire à l'exécution d'un contrat avec l'utilisateur ou à l'exécution de mesures pré-contractuelles.

 

4. Durée de la conservation
Les données sont supprimées tant qu'elles ne sont plus nécessaires pour atteindre l'objectif de leur prélèvement.
Pendant l'enregistrement pour exécuter un contrat ou des mesures pré-contractuelles, ceci est le cas quand les données pour l'exécution du contrat ne sont plus nécessaires. De même après la conclusion du contrat, il peut y avoir une nécessité de sauvegarder des dates à caractère personnel de la partie contractante pour satisfaire à des obligations contractuels ou légales. 

 

5. Possibilité de contradiction et de suppression
En tant qu'utilisateur, vous avez, à tout moment, la possibilité d'annuler l'enregistrement. Vous pouvez, à tout moment, faire modifier les données sauvegardées sur vous.
Pour ce faire, contactez-nous sous l'adresse indiquées dans les mentions légales écrivez un courrier électronique à accounts@mmoga.de.
Si les données sont requises pour exécuter un contrat ou des mesures pré-contractuelles, une suppression anticipée des données n'est possible que dans le mesure où des obligationsts contractuelles ou légales ne s'opposent pas à une obligation de suppression.

 

IX. Utilisation de notre boutique en ligne

Si vous voudriez faire une commande dans notre boutique en ligne, il est nécessaire pour la conclusion du contrat que vous indiquiez vos données personnelles dont nous avons besoin pour le traitement de votre commande. Les données obligatoires requises pour le traitement des contrats sont marquées séparément, d'autres indications sont volontaires. Nous traitons les données que vous indiquer pour l'exécution de votre commande. Pour ce faire, nous pouvons transmettre vos données à des tiers (participants de notre programme d'affilié et prestateurs de services de paiement). La base juridique pour cela est l'art. 6 al. 1 lit. b RGPD. En raison de dispositions du droit du commerce et du droit fiscal, nous sommes obligés de sauvegarder vos données d'adresse, de paiement et de commande pour une durée de dix ans. Toutefois, après [deux ans], nous effectuons une restriction du traitement, c'est-à-dire que vos données ne sont utilisées que pour le respect des obligations légales.

 

X. Formulaire de contact et contact par e-mail

1. Description et volume du traitement des données
Sur notre page Web, il y a un formulaire de contact qui peut être utilisé pour la prise de contact électronique. Si un utilisateur saisit cette possibilité, les données indiquées dans la masque de saisie nous sont transmises et sauvegardées. Ces données sont :
(1) Adresse électronique
(2) Heure de l'envoi du courrier électronique
Pour le traitement des données, votre consentement est obtenu et il est renvoyé à cette déclaration de protection des données dans le cadre du processus d'envoi.
Alternativement, il est possible de prendre contact à travers l'adresse électronique disponible. Dans ce cas, les données à caractère personnel de l'utilisateur transmises avec le courrier électronique sont sauvegardées. 
Dans ce contexte, les données ne sont pas transmises à des tiers. Les données sont utilisées uniquement pour le traitement de la conversation.

 

2. Base juridique du traitement des données
L'art. 6 al. 1 lit. a RGPD est la base juridique pour le traitement des données dans le cas d'un accord de l'utilisateur. 
L'art. 6 al. 1 lit. f RGPD est la base juridique pour le traitement des données transmises dans le cadre d'un envoi d'un courrier électronique. Si le contact électronique vise à la conclusion d'un contrat, l'art. 6 al. 1 lit. b RGPD est la base juridique supplémentaire pour le traitement.

 

3. Objectif du traitement des données
Le traitement des données à caractère personnel de la masque de saisie nous sert uniquement à traiter la prise de contact. Dans le cas d'une prise de contact par courrier électronique, l'intérêt légitime nécessaire se porte ici aussi au traitement des données. 
Les autres données à caractère personnel traitées pendant le processus d'envoi servent à empêcher un abus du formulaire de contact et à garantir la sécurité de nos systèmes informatiques.

 

4. Durée de la conservation
Les données sont supprimées dès qu'elles ne sont plus nécessaires pour atteindre l'objectif de leur collecte. Pour les données à caractère personnel de la masque de saisie du formulaire de contact et celles qui ont été envoyées par courrier électronique, ceci est le cas quand la conversation respective avec l'utilisateur est terminée. La conversation est terminée quand on peut déduire des circonstances que les faits concernés ont été clarifiés définitivement.
Les données à caractère personnel collectées en plus pendant le processus d'envoi sont supprimées après un délai de sept jours au plus tard.

 

5. Possibilité de contradiction et de suppression L'utilisateur a, à tout moment, la possibilité de révoquer son consentement au traitement des données à caractère personnel. Si l'utilisateur prend contact avec nous par courrier électronique, il peut, à tout moment, contredire la conservation de ses données à caractère personnel. Dans un tel cas, la conversation ne peut pas être continuée.
Dans ce cas, contactez-nous sous l'adresse indiquée dans les mentions légales ou écrivez un courrier électronique à accounts@mmoga.de.
Toutes les données à caractère personnel sauvegardées dans le cadre de la prise de contact sont supprimées dans ce cas.

 

XI. Remarque concernant Google Analytics

Cette page Web utilise Google Analytics, un service d'analyse de sites Web fourni par Google Inc. („Google“). Google Analytics utilise des soi-disant „témoins“, fichiers de texte sauvegardés sur votre ordinateur et permettant une analyse de l'utilisation de la page Web par vous. Les informations sur votre utilisation de cette page Web créés par le témoin sont, en général, transmises à un serveur de Google aux Etats-Unis et y sauvegardées. Dans le cas de l'activation de l'anonymisation de l'IP sur cette page Web, votre adresse IP sera pourtant auparavant raccourcie par Google aux Etats membres de l'Union européenne ou dans d'autres Etats contractants de l'accord sur l'Espace économique européen. Uniquement dans des cas exceptionnels, la pleine adresse IP est transmise à un serveur de Google aux Etats-Unis et raccourcie là-bas. Par ordre de l'exploitant de cette page Web, Google utilisera ces informations pour analyser votre utilisation de la page Web, pour composer des rapports sur les activitiés de la page Web et pour fournir d'autres services liés à l'utilisation de la page Web et l'utilisation d'Internet à l'exploitant de la page Web.
L'adresse IP transmise par votre navigateur dans le cadre de Google Analytics ne sera pas fusionnée avec d'autres données de Google.
Vous pouvez empêcher la sauvegarde des témoins moyennant un réglage correspondant de votre logiciel de navigation ; nous attirons pourtant votre attention sur le fait que vous ne pourrez éventuellement pas utiliser toutes les fonctions de cette page Web dans leur intégralité dans ce cas. En outre, vous pouvez empêcher la collecte des données créés par le témoin et reliées à votre utilisation de la page Web (y compris votre adresse IP) à Google ainsi que le traitement de ces données par Google en téléchargeant et installant le plug-in de navigateur disponible sous le lien suivant : http://tools.google.com/dlpage/gaoptout?hl=de.
Nous utilisons Google Analytics pour analyser l'utilisation de notre page Web et pourvoir amélioer celle-ci régulièrement. Grâce aux statistiques obtenues, nous pouvons améliorer notre offre et la rendre plus intéressante pour vous comme utilisateur. Pour les cas d'exception, dans lesquels des données personnelles sont transmises aux Etats-Unis, Google s'est soumis au Privacy Shield américain et européen, https://www.privacyshield.gov/EU-US-Framework.
L'art. 6 al. 1 lit. f RGPD est la base juridique pour l'utilisation de Google Analytics.
Informations du fournisseur tiers : Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Irlande, fax : +353 (1) 436 1001. Conditions d'utilisation : http://www.google.com/analytics/terms/de.html, Aperçu sur la protection des données : http://www.google.com/intl/de/analytics/learn/privacy.html, ainsi que la déclaration de protection des données : http://www.google.de/intl/de/policies/privacy.

Vous pouvez à tout moment révoquer votre consentement avec effet pour l'avenir en écrivant un courrier électronique à accounts@mmoga.de.

 

XII. Google Remarketing

Cette page Web utilise l'application de Google Remarketing. Il s'agit par ici d'une procédure par laquelle nous voudrions vous séduire à nouveau. A cause de cette application, nos annonces publicitaires peuvent vous être affichées après une visite de notre page Web lors de l'utilisation Internet suivante. Ceci se fait par l'intermédiaire de témoins sauvegardés dans votre navigateur à travers lesquels votre comportement d'utilisateur est enregistré et évalué par Google lors de la visite de différentes pages Web. Ainisi, Google peut constater votre visite préalable sur notre page Web. Une fusion des données collectées dans le cadre du remarketing avec vos données à caractère personnel, qui sont sauvegardées le cas échéant par Google, n'a pas lieu par Google d'après ses propres indications. Selon Google, une pseudonymisation se fait surtout dans le cas du remarketing. L'art. 6 al. 1 lit. f RGPD est la base juridique pour ceci. Nous portons un intérêt légitime à notre intérêt de markéting et à pouvoir vous informer sur nos produits et services.

 

XIII. Intégration de Twich.tv

Nous avons intégré le lecteur et le chat de Twitch.tv directement sur notre page Web. Nous ne transmettons nous-même pas de données à Twitch.tv.
L'art. 6 al. 1 lit. f RGPD est la base juridique pour l'intégration de twich.tv sur notre page Web.
Dans la déclaration de protection des données de Twitch.tv, vous pouvez consulter quelles données Twitch.tv collecte ainsi qu'obtenir des informations sur l'objectif et le volume de la collecte de données et leur traitement par Twitch.tv. Vous y obtenez aussi de plus amples informations sur vos droits et les possibilités de réglage pour la protection de votre vie privée. [Lien déclaration de protection des données Twitch.tv https://www.twitch.tv/p/legal/privacy-policy/].

 

XIV. Intégration de vidéos YouTube

(1) Dans notre offre en ligne, nous avons intégré des vidéos YouTube qui sont sauvegardées sur http://www.YouTube.com et sont directement retransmises depuis notre page Web. [Celles-ci sont toutes intégrées dans le „mode de protection des données avancé“, c.-à-d. que les données sur vous comme utilisateur ne sont pas transmises à YouTube si vous ne passez pas les vidéos. Ce n'est que si vous passez les vidéos que les données mentionnées dans le paragraphe 2 sont transmises. Vous n'avez pas d'influence sur cette transmission de données. L'art. 6 al. 1 lit. f RGPD est la base juridique pour l'intégration de YouTube.
(2) Par le biais de la visite sur notre page Web, YouTube reçoit l'information que vous avez appelé la sous-page correspondante de notre page Web. De plus, les données mentionnées sous alinéa IV de cette déclaration sont transmises. Ceci se fait indépendamment du fait si YouTube met un compte d'utilisateur à disposition à travers lequel vous êtes connecté, ou si'il n'y a pas de compte d'utilisateur. Si vous êtes connecté à Google, vos données sont attribuées directement à votre compte. Si vous ne désirez pas l'attribution avec votre profil sur  YouTube, vous devez vous déconnecter avant l'activation du bouton.
YouTube sauvegarde vos données comme profils d'utilisation et les utilise à des fins publicitaires, d'étude de marché et/ou de conception conforme aux besoins de sa page Web. Une telle évaluation s'effectue en particulier (même pour les utilisateurs non connectés) pour la réalisation de publicité adaptée aux besoins et pour informer d'autres utilisateurs du réseau social sur les activités sur notre page Web. Vous avez un droit de contradiction contre la création de ces profils d'utilisation, mais pour exercer celui-ci, vous devez vous adresser à YouTube. (3) Pour de plus amples informations sur l'objectif et le volume de la collecte des données et leur traitement par YouTube, consultez la déclaration de la protection des données. Vous y obtenez aussi des informations supplémentaires sur vos droits et les possibilités de réglage pour la protection de votre vie privée : https://www.google.de/intl/de/policies/privacy. Google traite vos données à caractère personnel également aux Etats-Unis et s'est soumis au Privacy Shield américain et européen, https://www.privacyshield.gov/EU-US-Framework.

 

XV. Vos droits


Vous avez les droits suivants envers nous en vue des données à caractère personnel qui vous concernent :
1. Droit d'information,
2. Droit à correction ou suppression,
3. Droit à limitation du traitement,
4. Droit à contradiction du traitement,
5. Droit à la portabilité des données,
6. En outre, vous pouvez de principe révoquer à tout moment un consentement donné par vous au préalable à la collecte, le traitement et l'utilisation de vos données à caractère personnel, révocation prenant effet pour l'avenir. La légitimité du traitement effectué en raison du consentement jusqu'à la révocation n'est pas touchée par la révocation du consentement.


Vous avez de plus le droit de vous convaincre du traitement de vos données à caractère personnel par nous auprès d'une autorité de contrôle de la protection des données. 

 

Date : mai 2018



Web Analytics

Web Analytics Privacy Policy Overview
👥 Affected parties: visitors to the website
🤝 Purpose: Evaluation of visitor information to optimise the website.
📓 Processed data: Access statistics that contain data such as access location, device data, access duration and time, navigation behaviour, click behaviour and IP addresses. You can find more details on this from the respective web analytics tool directly.
📅 Storage period: depending on the respective web analytics tool used
⚖️ Legal basis: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What is Web Analytics?

We use software on our website, which is known as web analytics, in order to evaluate website visitor behaviour. Thus, data is collected, which the analytic tool provider (also called tracking tool) stores, manages and processes. Analyses of user behaviour on our website are created with this data, which we as the website operator receive. Most tools also offer various testing options. These enable us, to for example test which offers or content our visitors prefer. For this, we may show you two different offers for a limited period of time. After the test (a so-called A/B test) we know which product or content our website visitors find more interesting. For such testing as well as for various other analyses, user profiles are created and the respective data is stored in cookies.

Why do we run Web Analytics?

We have a clear goal in mind when it comes to our website: we want to offer our industry’s best website on the market. Therefore, we want to give you both, the best and most interesting offer as well as comfort when you visit our website. With web analysis tools, we can observe the behaviour of our website visitors, and then improve our website accordingly for you and for us. For example, we can see the average age of our visitors, where they come from, the times our website gets visited the most, and which content or products are particularly popular. All this information helps us to optimise our website and adapt it to your needs, interests and wishes.

Which data are processed?

The exact data that is stored depends on the analysis tools that are being used. But generally, data such as the content you view on our website are stored, as well as e. g. which buttons or links you click, when you open a page, which browser you use, which device (PC, tablet, smartphone, etc.) you visit the website with, or which computer system you use. If you have agreed that location data may also be collected, this data may also be processed by the provider of the web analysis tool.

Moreover, your IP address is also stored. According to the General Data Protection Regulation (GDPR), IP addresses are personal data. However, your IP address is usually stored in a pseudonymised form (i.e. in an unrecognisable and abbreviated form). No directly linkable data such as your name, age, address or email address are stored for testing purposes, web analyses and web optimisations. If this data is collected, it is retained in a pseudonymised form. Therefore, it cannot be used to identify you as a person.

The storage period of the respective data always depends on the provider. Some cookies only retain data for a few minutes or until you leave the website, while other cookies can store data for several years.

Duration of data processing

If we have any further information on the duration of data processing, you will find it below. We generally only process personal data for as long as is absolutely necessary to provide products and services. The storage period may be extended if it is required by law, such as for accounting purposes for example for accounting.

Right to object

You also have the option and the right to revoke your consent to the use of cookies or third-party providers at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data processing by cookies by managing, deactivating or erasing cookies in your browser.

Legal basis

The use of Web Analytics requires your consent, which we obtained with our cookie popup. According to Art. 6 para. 1 lit. a of the GDPR (consent), this consent represents the legal basis for the processing of personal data, such as by collection through Web Analytics tools.

In addition to consent, we have a legitimate interest in analysing the behaviour of website visitors, which enables us to technically and economically improve our offer. With Web Analytics, we can recognise website errors, identify attacks and improve profitability. The legal basis for this is Art. 6 para. 1 lit. f of the GDPR (legitimate interests). Nevertheless, we only use these tools if you have given your consent.

Since Web Analytics tools use cookies, we recommend you to read our privacy policy on cookies. If you want to find out which of your data are stored and processed, you should read the privacy policies of the respective tools.

If available, information on special Web Analytics tools can be found in the following sections.

Google Analytics Privacy Policy

Google Analytics Privacy Policy Overview
👥 Affected parties: website visitors
🤝 Purpose: Evaluation of visitor information to optimise the website.
📓 Processed data: Access statistics that contain data such as the location of access, device data, access duration and time, navigation behaviour and click behaviour. You can find more details on this in the privacy policy below.
📅 Storage period: Customizable, GA4 stores data for 14 months by default.
⚖️ Legal basis: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What is Google Analytics?

On our website, we use the analytics tracking tool Google Analytics in the Google Analytics 4 (GA4) version provided by the American company Google Inc. For the European region, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. Google Analytics collects data about your actions on our website. By combining various technologies such as cookies, device IDs, and login information, you can be identified as a user across different devices. This allows your actions to be analyzed across platforms as well.

For example, when you click on a link, this event is stored in a cookie and sent to Google Analytics. With the reports we receive from Google Analytics, we can better tailor our website and service to your needs. In the following, we will provide more information about the tracking tool and specifically inform you about the data processed and how you can prevent it.

Google Analytics is a tracking tool used for website traffic analysis. The basis for these measurements and analyses is a pseudonymous user identification number. This number does not include personally identifiable information such as name or address but is used to assign events to a device. GA4 utilizes an event-based model that captures detailed information about user interactions such as page views, clicks, scrolling, and conversion events. Additionally, GA4 incorporates various machine learning features to better understand user behavior and certain trends. GA4 employs modeling through machine learning capabilities, meaning that based on the collected data, missing data can be extrapolated to optimize the analysis and provide forecasts.

In order for Google Analytics to function properly, a tracking code is embedded in the code of our website. When you visit our website, this code records various events that you perform on our website. With GA4’s event-based data model, we, as website operators, can define and track specific events to obtain analyses of user interactions. This allows us to track not only general information such as clicks or page views but also specific events that are important for our business, such as submitting a contact form or making a purchase.

Once you leave our website, this data is sent to and stored on Google Analytics servers.

Google processes the data, and we receive reports on your user behavior. These reports can include, among others, the following:

  • Audience reports: Audience reports help us get to know our users better and gain a more precise understanding of who is interested in our service.
  • Advertising reports: Advertising reports make it easier for us to analyze and improve our online advertising.
  • Acquisition reports: Acquisition reports provide helpful information on how we can attract more people to our service.
  • Behavior reports: Here, we learn about how you interact with our website. We can track the path you take on our site and which links you click on.
  • Conversion reports: Conversion refers to an action you take as a result of a marketing message, such as going from being a website visitor to becoming a buyer or newsletter subscriber. Through these reports, we gain insights into how our marketing efforts resonate with you, with the aim of improving our conversion rate.
  • Real-time reports: With real-time reports, we can see what is currently happening on our website. For example, we can see how many users are currently reading this text.

In addition to the above-mentioned analysis reports, Google Analytics 4 also offers the following functions:

  • Event-based data model: This model captures specific events that can occur on our website, such as playing a video, making a purchase, or subscribing to our newsletter.
  • Advanced analytics features: With these features, we can gain a better understanding of your behavior on our website or certain general trends. For example, we can segment user groups, conduct comparative analyses of target audiences, or track your path on our website.
  • Predictive modeling: Based on the collected data, missing data can be extrapolated through machine learning to predict future events and trends. This can help us develop better marketing strategies.
  • Cross-platform analysis: Data collection and analysis are possible from both websites and apps. This enables us to analyze user behavior across platforms, provided you have consented to data processing.

Why do we use Google Analytics on our website?

Our goal with this website is clear: we want to provide you with the best possible service. The statistics and data from Google Analytics help us achieve this goal.

The statistically evaluated data gives us a clear picture of the strengths and weaknesses of our website. On one hand, we can optimize our site to make it more easily found by interested people on Google. On the other hand, the data helps us better understand you as a visitor. We know exactly what we need to improve on our website in order to provide you with the best possible service. The data also helps us conduct our advertising and marketing activities in a more personalized and cost-effective manner. After all, it only makes sense to show our products and services to people who are interested in them.

What data is stored by Google Analytics?

With the help of a tracking code, Google Analytics creates a random, unique ID associated with your browser cookie. This way, Google Analytics recognizes you as a new user, and a user ID is assigned to you. When you visit our site again, you are recognized as a “returning” user. All collected data is stored together with this user ID, making it possible to evaluate pseudonymous user profiles.

To analyze our website with Google Analytics, a property ID must be inserted into the tracking code. The data is then stored in the corresponding property. For each newly created property, the default is Google Analytics 4 Property. The data storage duration varies depending on the property used.

Through identifiers such as cookies, app instance IDs, user IDs, or custom event parameters, your interactions, if you have consented, are measured across platforms. Interactions encompass all types of actions you perform on our website. If you also use other Google systems (such as a Google account), data generated through Google Analytics can be linked to third-party cookies. Google does not disclose Google Analytics data unless we, as website operators, authorize it, except when required by law.

According to Google, IP addresses are not logged or stored in Google Analytics 4. However, IP address data is used by Google for deriving location data and is immediately deleted thereafter. All IP addresses collected from users in the EU are deleted before the data is stored in a data center or on a server.

Since GA4 focuses on event-based data, the tool uses significantly fewer cookies compared to previous versions such as Google Universal Analytics. However, there are still some specific cookies used by GA4. These can include:

Name: _ga
Value: 2.1326744211.152123654789-5
Purpose: By default, analytics.js uses the _ga cookie to store the user ID. It is used to distinguish website visitors.
Expiration: After 2 years

Name: _gid
Value: 2.1687193234.152123654789-1
Purpose: This cookie is also used to distinguish website visitors.
Expiration: After 24 hours

Name: gat_gtag_UA Value: 1
Purpose: Used to reduce the request rate. If Google Analytics is deployed via Google Tag Manager, this cookie will be named dc_gtm .
Expiration: After 1 minute

Note: This list cannot claim to be exhaustive, as Google may change their choice of cookies from time to time. GA4 aims to improve data privacy and offers several options for controlling data collection. For example, we can determine the storage duration ourselves and control data.

Here we provide an overview of the main types of data collected by Google Analytics:

Heatmaps: Google creates heatmaps to show the exact areas you click on. This provides us with information about your interactions on our site.

Session Duration: Google refers to session duration as the time you spend on our site without leaving. If you are inactive for 20 minutes, the session automatically ends.

Bounce Rate: Bounce rate refers to when you view only one page on our website and then leave.

Account Creation: If you create an account or place an order on our website, Google Analytics collects this data.

Location: IP addresses are not logged or stored in Google Analytics. However, location data is derived shortly before the IP address is deleted.

Technical Information: Technical information includes your browser type, internet service provider, and screen resolution, among others.

Source of Origin: Google Analytics is interested in the website or advertisement that brought you to our site.

Additional data may include contact information, reviews, media playback (e.g., if you play a video on our site), sharing of content via social media, or adding to favorites. This list is not exhaustive and serves only as a general guide to the data storage by Google Analytics.

Where and how long are the data stored?

Google has servers distributed worldwide. You can find precise information about the locations of Google data centers at: https://www.google.com/about/datacenters/locations/?hl=en

Your data is distributed across multiple physical storage devices. This ensures faster access to data and better protection against manipulation. Each Google data center has emergency programs in place for your data. In the event of hardware failure or natural disasters, the risk of service interruption at Google remains low.

The retention period of data depends on the properties used. The storage duration is always set separately for each individual property. Google Analytics offers us four options for controlling the storage duration:

  • 2 months: This is the shortest storage period.
  • 14 months: By default, data is stored in GA4 for 14 months.
  • 26 months: Data can also be stored for 26 months.
  • Data is only deleted manually.

In addition, there is also the option for data to be deleted only if you do not visit our website within the selected time period. In this case, the retention period is reset every time you revisit our website within the defined time frame.

Once the defined period has expired, the data is deleted once a month. This retention period applies to data linked to cookies, user identification, and advertising IDs (e.g., cookies from the DoubleClick domain). Report results are based on aggregated data and are stored independently of user data. Aggregated data is a combination of individual data into larger units.

How can I delete my data or prevent data storage?

Under the data protection laws of the European Union, you have the right to access, update, delete, or restrict your data. By using the browser add-on to deactivate Google Analytics JavaScript (analytics.js, gtag.js), you can prevent Google Analytics 4 from using your data. You can download and install the browser add-on at: https://tools.google.com/dlpage/gaoptout?hl=en Please note that this add-on only disables data collection by Google Analytics.

If you want to disable, delete, or manage cookies in general, you can find the respective instructions for the most common browsers in the “Cookies” section.

Legal basis

The use of Google Analytics requires your consent, which we obtained through our cookie popup. According to Art. 6(1)(a) of the GDPR, this consent constitutes the legal basis for the processing of personal data that may occur during the collection by web analytics tools.

In addition to consent, we also have a legitimate interest in analyzing the behavior of website visitors to improve our offering technically and economically. By using Google Analytics, we can identify website errors, detect attacks, and improve efficiency. The legal basis for this is Art. 6(1)(f) of the GDPR (legitimate interests). However, we only use Google Analytics if you have given your consent.

Google processes data from you, among other things, in the USA. Google is an active participant in the EU-US Data Privacy Framework, which regulates the correct and secure transfer of personal data from EU citizens to the USA. More information can be found at https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en.

Additionally, Google uses so-called Standard Contractual Clauses (Article 46(2) and (3) GDPR). Standard Contractual Clauses (SCC) are template clauses provided by the EU Commission and are designed to ensure that your data complies with European data protection standards, even when transferred and stored in third countries (such as the USA). Through the EU-US Data Privacy Framework and the Standard Contractual Clauses, Google commits to maintaining the European data protection level when processing your relevant data, even if the data is stored, processed, and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding Standard Contractual Clauses here: https://ec.europa.eu/commission/presscorner/detail/en/ip_21_2847.

You can find the Google Ads Data Processing Terms, which refer to the Standard Contractual Clauses, at: https://business.safety.google/intl/en/adsprocessorterms/

We hope we have provided you with the most important information regarding the data processing by Google Analytics. If you want to learn more about the tracking service, we recommend the following links: https://marketingplatform.google.com/about/analytics/terms/en/ and https://support.google.com/analytics/answer/6004245?hl=en

If you want to learn more about data processing, you can refer to the Google Privacy Policy at: https://policies.google.com/privacy?hl=en.

Google Analytics Reports on demographic characteristics and interests

We have turned on Google Analytics’ functions for advertising reports. These reports on demographic characteristics and interests contain details about age, gender and interests. Through them we can get a better picture of our users – without being able to allocate any data to individual persons. You can learn more about advertising functions at auf https://support.google.com/analytics/answer/3450482?hl=en&amp%3Butm_id=ad.

You can terminate the use of your Google Account’s activities and information in “Ads Settings” at https://adssettings.google.com/authenticated via a checkbox.

Google Analytics e-commerce Measurement

We also use the e-commerce measurement function of the web analysis tool Google Analytics for our website. This allows us to analyse very precisely how you and all our other customers interact with our website. E-commerce measurement is all about purchasing behaviour. Based on the data obtained, we can adapt and optimise our service to your wishes and expectations. With this data we can also use our online advertising measures in a more targeted manner, to only show our advertising to people who are interested in our products or services. The e-commerce measurement function records e. g. which orders were placed, how much time you took to decide on purchasing a product, the average order value or the shipping costs. All this data can be recorded and stored under a specific ID.

Google Analytics in Consent Mode

Depending on your consent, Google Analytics will progress your personal data in the so-called “consent mode”. You can choose whether or not you want to accept Google Analytics cookies, and thus which of your data Google Analytics may process. The retained data is mainly used to measure user behaviour on the website, to serve targeted advertising and to provide us with web analysis reports. Usually, you would consent to Google’s data processing via a cookie consent tool. If you do not consent to data processing, only aggregated data will be collected and processed. This means that data cannot be assigned to individual users and therefore no user profile will be created for you. You also have the option to only agree to statistical measurement, meaning that none of your personal data will be processed and used for advertising or advertising measurement sequences.

Google Analytics IP Anonymisation

We implemented Google Analytics’ IP address anonymisation to this website. Google developed this function, so this website can comply with the applicable privacy laws and the local data protection authorities’ recommendations, should they prohibit the retention of any full IP addresses.
The anonymisation or masking of IP addresses takes place, as soon as they reach Google Analytics’ data collection network, but before the data would be saved or processed.

You can find more information on IP anonymisation at https://support.google.com/analytics/answer/2763052?hl=en.

Google Remarketing Privacy Policy

We use Google Remarketing, an advertising analysis tool, for our website. The provider of this service is the American company Google Inc. The entity responsible for all Google services in Europe is the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland).

Google processes data from you, among other things, in the USA. Google is an active participant in the EU-US Data Privacy Framework, which regulates the correct and secure transfer of personal data from EU citizens to the USA. More information can be found at https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en.

Additionally, Google uses so-called Standard Contractual Clauses (Article 46(2) and (3) GDPR). Standard Contractual Clauses (SCC) are template clauses provided by the EU Commission and are designed to ensure that your data complies with European data protection standards, even when transferred and stored in third countries (such as the USA). Through the EU-US Data Privacy Framework and the Standard Contractual Clauses, Google commits to maintaining the European data protection level when processing your relevant data, even if the data is stored, processed, and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding Standard Contractual Clauses here: https://ec.europa.eu/commission/presscorner/detail/en/ip_21_2847.

Google holds a contract on commissioned processing in accordance with Art. 28 DSGVO, which acts as the data protection law basis for our customer relationship with Google. This refers to the EU standard contractual clauses in terms of content. Here you can find the order processing conditions: https://business.safety.google/intl/en/adsprocessorterms/

You can find out more about the data that is processed through the use of Google Remarketing in their Privacy Policy at https://policies.google.com/privacy?hl=en.

Google Tag Manager Privacy Policy

Google Tag Manager Privacy Policy Overview
👥 Affected parties: website visitors
🤝 Purpose: Organisation of individual tracking tools
📓 Processed data: Google Tag Manager itself does not store any data. The data record tags of the web analytics tools used.
📅 Storage period: depending on the web analytics tool used
⚖️ Legal bases: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What is Google Tag Manager?

We use Google Tag Manager by the company Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) for our website.
This Tag Manager is one of Google’s many helpful marketing products. With it, we can centrally integrate and manage code sections of various tracking tools, that we use on our website.

In this privacy statement we will explain in more detail, what Google Tag Manager does, why we use it and to what extent your data is processed.

Google Tag Manager is an organising tool with which we can integrate and manage website tags centrally and via a user interface. Tags are little code sections which e.g. track your activities on our website. For this, segments of JavaScript code are integrated to our site’s source text. The tags often come from Google’s intern products, such as Google Ads or Google Analytics, but tags from other companies can also be integrated and managed via the manager. Since the tags have different tasks, they can collect browser data, feed marketing tools with data, embed buttons, set cookies and track users across several websites.

Why do we use Google Tag Manager for our website?

Everybody knows: Being organised is important! Of course, this also applies to maintenance of our website. In order to organise and design our website as well as possible for you and anyone who is interested in our products and services, we rely on various tracking tools, such as Google Analytics.
The collected data shows us what interests you most, which of our services we should improve, and which other persons we should also display our services to. Furthermore, for this tracking to work, we must implement relevant JavaScript Codes to our website. While we could theoretically integrate every code section of every tracking tool separately into our source text, this would take too much time and we would lose overview. This is the reason why we use Google Tag Manager. We can easily integrate the necessary scripts and manage them from one place. Additionally, Google Tag Manager’s user interface is easy to operate, and requires no programming skills. Therefore, we can easily keep order in our jungle of tags.

What data is stored by Google Tag Manager?

Tag Manager itself is a domain that neither uses cookies nor stores data. It merely functions as an “administrator“ of implemented tags. Data is collected by the individual tags of the different web analysis tools. Therefore, in Google Tag Manager the data is sent to the individual tracking tools and does not get saved.

However, with the integrated tags of different web analysis tools such as Google Analytics, this is quite different. Depending on the analysis tool used, various data on your internet behaviour is collected, stored and processed with the help of cookies. Please read our texts on data protection for more information on the articular analysis and tracking tools we use on our website.

We allowed Google via the account settings for the Tag Manager to receive anonymised data from us. However, this exclusively refers to the use of our Tag Manager and not to your data, which are saved via code sections. We allow Google and others, to receive selected data in anonymous form. Therefore, we agree to the anonymised transfer of our website data. However, even after extensive research we could not find out what summarised and anonymous data it is exactly that gets transmitted. What we do know is that Google deleted any info that could identify our website. Google combines the data with hundreds of other anonymous website data and creates user trends as part of benchmarking measures. Benchmarking is a process of comparing a company’s results with the ones of competitors. As a result, processes can be optimised based on the collected information.

How long and where is the data stored?

When Google stores data, this is done on Google’s own servers. These servers are located all over the world, with most of them being in America. At https://www.google.com/about/datacenters/inside/locations/?hl=en you can read in detail where Google’s servers are.

In our individual data protection texts on the different tools you can find out how long the respective tracking tools store your data.

How can I delete my data or prevent data retention?

Google Tag Manager itself does not set any cookies but manages different tracking websites’ tags. In our data protection texts on the different tracking tools you can find detailed information on how you can delete or manage your data.

Please note that when using this tool, your data may also be stored and processed outside the EU. Most third countries (including the USA) are not considered secure under current European data protection law. Data must not be transferred, stored and processed to insecure third countries, unless there are suitable guarantees (such as EU standard contractual clauses) between us and the non-European service provider.

Legal basis

The use of the Google Tag Manager requires your consent, which we obtained via our cookie popup. According to Art. 6 para. 1 lit. a GDPR (consent), this consent is the legal basis for personal data processing, such as when it is collected by web analytics tools.

In addition to consent, we have a legitimate interest in analysing the behaviour of website visitors and thus technically and economically improving our offer. With the help of Google Tag Managers we can also improve profitability. The legal basis for this is Art. 6 para. 1 lit. f GDPR (legitimate interests). We only use Google Tag Manager if you have given us your consent.

Google processes data from you, among other things, in the USA. Google is an active participant in the EU-US Data Privacy Framework, which regulates the correct and secure transfer of personal data from EU citizens to the USA. More information can be found at https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en.

Additionally, Google uses so-called Standard Contractual Clauses (Article 46(2) and (3) GDPR). Standard Contractual Clauses (SCC) are template clauses provided by the EU Commission and are designed to ensure that your data complies with European data protection standards, even when transferred and stored in third countries (such as the USA). Through the EU-US Data Privacy Framework and the Standard Contractual Clauses, Google commits to maintaining the European data protection level when processing your relevant data, even if the data is stored, processed, and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding Standard Contractual Clauses here: https://ec.europa.eu/commission/presscorner/detail/en/ip_21_2847.

You can find the Google Ads Data Processing Terms, which refer to the Standard Contractual Clauses, at: https://business.safety.google/intl/en/adsprocessorterms/

If you want to learn more about Google Tag Manager, we recommend their FAQs at https://support.google.com/tagmanager/?hl=en#topic=3441530.

Online Marketing

Online Marketing Privacy Policy Overview
👥 Affected parties: visitors to the website
🤝 Purpose: Evaluation of visitor information for website optimisation
📓 Processed data: Access statistics containing data such as access location, device data, access duration and time, navigation behaviour, click behaviour and IP addresses. Personal data such as name or email address may also be processed. You can find more details on this from the respective Online Marketing tool.
📅 Storage period: depending on the Online Marketing tools used
⚖️ Legal basis: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What is Online Marketing?

Online Marketing refers to all measures that are carried out online to achieve marketing goals, such as increasing brand awareness or doing business transactions. Furthermore, our Online Marketing measures aim to draw people’s attention to our website. In order to be able to show our offer to many interested people, we do Online Marketing. It mostly is about online advertising, content marketing or search engine optimisation. For this, personal data is also stored and processed, to enable us to use Online Marketing efficiently and targeted. On the one hand, the data help us to only show our content to people who are interested in it. On the other hand, it helps us to measure the advertising success of our Online Marketing measures.

Why do we use Online Marketing tools?

We want to show our website to everyone who is interested in our offer. We are aware that this is not possible without conscious measures being taken. That is why we do Online Marketing. There are various tools that make working on our Online Marketing measures easier for us. These also provide suggestions for improvement via data. Thus, we can target our campaigns more precisely to our target group. The ultimate purpose of these Online Marketing tools is to optimise our offer.

Which data are processed?

For our Online Marketing to work and to measure its success, user profiles are created and data are e.g. stored in cookies (small text files). With the help of this data, we can not only advertise in the traditional way, but also present our content directly on our website in the way you prefer. There are various third-party tools that offer these functions and thus collect and store your data accordingly. The aforementioned cookies e.g. store the pages you visit on our website, how long you view these pages, which links or buttons you click or which website you came from. What is more, technical information may also be stored. This may include e.g. your IP address, the browser and device you use to visit our website or the time you accessed our website as well as the time you left. If you have agreed for us to determine your location, we can also store and process it.

Your IP address is stored in pseudonymised form (i.e. shortened). What is more, distinct data that directly identify you as a person, such as your name, address or email address, are only stored in pseudonymised for advertising and Online Marketing purposes. With this data we cannot identify you as a person and only retain the pseudonymised information that is stored in your user profile.

Under certain circumstances, cookies may also be utilised, analysed and used for advertising purposes on other websites that use the same advertising tools. Thus, your data may then also be stored on the servers of the respective provider of the advertising tool.

In rare exceptions, unique data (name, email address, etc.) may also be stored in the user profiles. This can happen, if you are for example a member of a social media channel that we use for our Online Marketing measures and if the network connects previously received data with the user profile.

We only ever receive summarised information from the advertising tools we use that do store data on their servers. We never receive data that can be used to identify you as an individual. What is more, the data only shows how well-placed advertising measures have worked. For example, we can see what measures have caused you or other users to visit our website and purchase a service or product. Based on these analyses we can improve our advertising offer in the future and adapt it more precisely to the needs and wishes of people who are interested.

Duration of data processing

Below we will inform you on the duration of data processing, provided we have this information. In general, we only process personal data for as long as is absolutely necessary to provide our services and products. Data stored in cookies are retained for different lengths of time. Some cookies are deleted after you leave a website, while others may be stored in your browser for a number of years. However, in the respective privacy policies of the respective provider, you will usually find detailed information on the individual cookies this provider uses.

Right of withdrawal

You also retain the right and the option to revoke your consent to the use of cookies or third-party providers at any time. This can be done either via our cookie management tool or via other opt-out functions. You can for example also prevent data collection by cookies if you manage, deactivate or erase cookies in your browser. The legality of the processing remains unaffected to the point of revocation.

Since Online Marketing tools usually use cookies, we also recommend you to read our privacy policy on cookies. If you want to find out which of your data is stored and processed, you should read the privacy policies of the respective tools.

Legal basis

If you have consented to the use of third-party providers, then this consent is the legal basis for the corresponding data processing. According to Art. 6 para. 1 lit. a GDPR (consent) , this consent is the legal basis for personal data processing, as may be done when data is collected by online marketing tools.

Moreover, we have a legitimate interest in measuring our online marketing activities in anonymised form, in order to use this data for optimising our offer and our Marketing. The corresponding legal basis for this is Art. 6 para. 1 lit. f GDPR (legitimate interests) . Nevertheless, we only use these tools if you have given your consent.

Information on special online marketing tools can be found in the following sections, provided this information is available.

ADCELL Privacy Policy

We use the online marketing platform ADCELL for our website. The service provider is the German company Firstlead GmbH, Rosenfelder Str. 15-16, 10315 Berlin, Germany.

You can find out more about the data processed by using ADCELL in the privacy policy at https://www.adcell.de/datenschutz.

Microsoft Advertising Privacy Policy

Microsoft Advertising Privacy Policy Overview
👥 Affected parties: visitors to the website
🤝 Purpose: economic success and service optimisation.
📓 Processed data: Access statistics that contain data such as access location, device data, access duration and time, navigation behaviour, click behaviour and IP addresses. Personal data such as name or email address may also be processed.
📅 Storage period: Microsoft stores the data until it is no longer needed for the intended purpose
⚖️ Legal basis: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What is Microsoft Advertising?

We also use the Microsoft Advertising program by Microsoft Corporation, located in One Microsoft Way, Redmond, WA 98052-6399, USA, for our online marketing measures. With the help of Microsoft Advertising, we want to draw many people’s attention to the high quality of our products and/or services. For this, we use a technology (conversion tracking tool) by Microsoft on our website, which also stores your data. In this privacy policy, we will go into more detail about this service, show you which of your data is stored, managed, and processed and how you can prevent this data retention.

Perhaps you know Microsoft Advertising by its former name “Bing Ads”. It is an advertising program by Microsoft which is based on a Pay-Per-Click system. This means that advertisers can advertise through the search engines Bing and Yahoo! and only pay when a user clicks the ad.

Why do we use Microsoft Advertising?

We are convinced of our offers, and therefore, we of course want to show them to a wider public. With Microsoft Advertising, we can bring our products or services closer to precisely those people who are specifically interested in them. Moreover, we want to present our products not only on the famous search engine Google, but also on Bing and Yahoo! Microsoft Advertising also gives us the option of placing ads in the so-called “Microsoft Audience Network”. This allows us to also place advertisements on LinkedIn for example. Furthermore, conversion tracking for example tells us, which advertisement you used to find us, which one of our subpages you particularly like and which actions you are taking on our website. This data enables us to tailor our website, our advertisements, and our offers much better to your needs.

What data is stored by Microsoft Advertising?

We have integrated a conversion tracking tag (i.e. a small code snippet) from Microsoft Advertising to our website. This snippet is known as the Universal Event Tracking (UET) tag. If you come to our website via a Microsoft advertisement, we can use this tracking tool to find out more about your user behaviour on our website. For example, we can find out which keyword or ad led you to us, what you clicked on our website, how long you stayed on our website, as well as how many people visit our website via Microsoft Ads. All these data relate to user behaviour but not to any personal information. In this sense, we only receive data or analyses of your web behaviour, but none of your personal information. Microsoft uses the data to optimise its own promotional offer as well as other services. If you have a Microsoft account yourself, the data collected may be linked to your account. Moreover, Microsoft might also recognise and store your IP address. To save all data on your user behaviour, the following cookie is set in your browser after you have visited our website via a Microsoft ad:

Name: MUIDB
Value: 08A53CA3313F6255044C307E353F61CD
Purpose:This cookie is set by our embedded Microsoft tag (UET tag) and is used for synchronisation purposes across various Microsoft websites. This allows users to be recognised across different domains.
Expiry date: after one year

However, if you access our website via a Bing ad, other cookies may also be placed in your browser. In the following we will show you a selection of possible cookies:

Name: ABDEF
Value: V=0&ABDV=0&MRNB=1594294373452&MRB=0123654789-7
Purpose: We could not find any detailed information on this cookie.
Expiry date: after one year

Name: SRCHD
Value: AF=NOFORM
Purpose: This cookie is responsible for the functionality of the tracking and the website itself.
Expiry date: after one year

Name: SRCHHPGUSR
Value: WTS=63729889193&HV=1594294374&CW=1920&CH=937&DPR=1&UTC=120&DM=0
Purpose: This cookie tracks and saves your user behaviour on our website, as well as the interaction with the Bing map interface.
Expiry date: after one year

Name: SRCHUID
Value: V=2&GUID=157B20CCF36A43F3A4AE9790346EB7A7&dmnchg=1
Purpose: This cookie tracks and stores your user behaviour on our website and the interaction with the Bing map API.
Expiry date: after one year

Name: _EDGE_S
Value: mkt=de-at&SID=2EE7002D956A61511D280F2F9474607123654789-2
Purpose: This cookie collects and stores your user behaviour across multiple websites. The aim of targeting is to better adjust our advertising measures to our target group.
Expiry date: after end of the browser session

Name: _SS
Value: SID=2EE7002D956A61511D280F2F94746077123654789-9
Purpose : Among other things, this cookie serves the purpose of recognising when you as a user have accessed our website (i.e. which advert led you to our website).
Expiry date: after one year

How long and where are the data stored?

We have no influence on how Microsoft continues to use your collected user data. The company are using various servers accross the world. Most of them are in the United States. Therefore, your data may also be stored, managed, and processed on American servers. Microsoft stores data (especially personal data) for as long as it is necessary for both, delivering their services or products and for legal purposes. Furthermore, Microsoft states that the actual time data are retained, depends on the respective product and may vary strongly.

Microsoft deletes your stored Bing search requests after 6 months by deleting your IP address. Cookie-IDs which are be generated via the Cookie MUID for example, are encrypted after 18 months.

How can I delete my data or prevent data retention?

You always have the possibility to opt out of Microsoft Ads’ conversion tracking. If you do not want interest-based adverts by Microsoft Advertising to be shown to you, you can deactivate the function at https://account.microsoft.com/privacy/ad-settings/signedout. Moreover, you can deactivate, manage, or delete any cookies in your browser. Since this works a little different for every browser, you can find instructions for the most common browsers here:

Chrome: Clear, enable and manage cookies in Chrome

Safari: Manage cookies and website data in Safari

Firefox: Clear cookies and site data in Firefox

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete cookies in Microsoft Edge

Legal basis

If you have consented to the use of Microsoft Advertising, the legal basis for the corresponding data processing is your consent. According to Art. 6 paragraph 1 lit. a GDPR (consent) your consent is the legal basis for personal data processing, as may occur when it is collected by Microsoft Advertising.

We also have a legitimate interest in using Microsoft Advertising to optimise our online service and marketing measures. The corresponding legal basis for this is Art. 6 para. 1 lit. f GDPR (legitimate interests). Nevertheless, we only use Microsoft Advertising if you have consented to it.

Microsoft processes data from you, among other things, in the USA. Microsoft is an active participant in the EU-US Data Privacy Framework, which regulates the correct and secure transfer of personal data from EU citizens to the USA. More information can be found at https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en.

Additionally, Microsoft uses so-called Standard Contractual Clauses (Article 46(2) and (3) GDPR). Standard Contractual Clauses (SCC) are template clauses provided by the EU Commission and are designed to ensure that your data complies with European data protection standards, even when transferred and stored in third countries (such as the USA). Through the EU-US Data Privacy Framework and the Standard Contractual Clauses, Microsoft commits to maintaining the European data protection level when processing your relevant data, even if the data is stored, processed, and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding Standard Contractual Clauses here: https://ec.europa.eu/commission/presscorner/detail/en/ip_21_2847.

You can find more information about the standard contractual clauses at Microsoft at https://learn.microsoft.com/en-us/compliance/regulatory/offering-eu-model-clauses

We hope we could give you an overview on data processing by Microsoft Ad’s conversion tracking. Of course, it is always possible for Microsoft’s privacy guidelines to change. For finding more information and always staying up-to-date, we recommend you to read Microsoft’s privacy policy at https://privacy.microsoft.com/en-gb/privacystatement.

Affiliate Programs Introduction

Affiliate Programs Privacy Policy Overview
👥 Affected parties: website visitors
🤝 Purpose: economic success and the optimisation of our service.
📓 Data processed: Access statistics, including data such as access locations, device data, access duration and time, navigation behaviour, click behaviour and IP addresses. Personal data such as your name or email address may also be processed.
📅 Duration of storage: personal data is usually stored by affiliate programs until it is no longer needed
⚖️ Legal bases: Article 6 paragraph 1 lit. a GDPR (consent), Article 6 paragraph 1 lit. f GDPR (legitimate interests)

What are affiliate programs?

We use affiliate programs of different providers on our website. By using an affiliate program, your data may be transferred to the respective affiliate program provider, where it can be stored and processed. In this privacy policy, we will give you a general overview of data processing by partner programs and show you how you can prevent or revoke this data transmission. Every affiliate program (also called partner program) is based on the principle of commission. For this, a link or an advertisement with a link is placed on our website and if you are interested, click on it and purchase a product or service this way, we receive a commission for this (reimbursement of advertising costs)

Why do we use affiliate programs on our website?

Our goal is to provide you with a pleasant time with lots of helpful content. We put a lot of work and time into the development of our website. With the help of partner programs, we have the opportunity to be paid a little for our efforts. Every partner link is of course always related to our theme and shows offers that might interest you.

Which data is processed?

In order to trace whether you have clicked on one of our placed links, the affiliate program provider needs to know that it was you who followed the link via our website. Any affiliate program links used must therefore be correctly assigned to the following actions (business deal, purchase, conversion, impression, etc.). Only then can the allocation of the commission take place.

For this mapping to work, a value may be appended to a link (in the URL) or certain information may be stored in cookies. This may for example be, data on which page you came from (referrer), when you clicked on the link, an identifier for our website, which offer it is as well a specific user identifier.

Therefore, whenever you interact with an affiliate program’s products and services, the provider also retains your data. Exactly which data is stored depends on the individual providers. For example, the Amazon affiliate program distinguishes between active and automatic data. Active data include name, email address, phone number, age, payment information, or location information. In the case of the Amazon affiliate program, automatically stored data include user behaviour, IP address, device information and the URL.

Duration of data processing

We will inform you below about the duration of data processing, provided we have further information on this. In general, personal data is only processed for as long as is necessary to provide the services and products. Data stored in cookies are retained for different lengths of time. Some cookies are deleted as soon as you leave the website, while others may be stored in your browser for several years if they are not actively erased. The exact duration of data processing depends on the provider used. But in most cases you should account for a storage period of several years. In the respective privacy policies of the individual providers, you will most probably find precise information about the duration of data processing.

Right to object

You always have the right to information, rectification and erasure of your personal data. If you have any questions, you can also contact the person responsible for the partner program provider used at any time. Contact details can be found either in our specific data protection declaration or on the website of the relevant provider.

You can erase, disable or manage cookies that providers use for their functions in your browser. Depending on which browser you use, this can be done in different ways.

Legal Basis

If you have consented to the use of the affiliate program, the legal basis for the corresponding data processing is this consent. According to Art. 6 Paragraph 1 lit. a GDPR (consent) your consent represents the legal basis for the processing of personal data, as may occur when collected by an affiliate program.

We also have a legitimate interest in using an affiliate program to optimise our online service and our marketing activities. The corresponding legal basis for this is Art. 6 Paragraph 1 lit. f GDPR (legitimate interests). However, we only use the partner program if you have given your consent.

Information on special affiliate programs, if available, can be found in the following sections.

Awin Affiliate Program Privacy Policy

Awin Affiliate Program Privacy Policy Overview
👥 Affected parties: visitors to the website
🤝 Purpose: economic success and the service optimisation.
📓 Processed data: Access statistics containing data such as access location, device data, access duration and time, navigation behaviour, click behaviour and IP addresses. Personal data such as name or email address can also be processed.
📅 Storage period: Awin stores the data until the purposes have been implemented and accounting and reporting requirements have been met
⚖️ Legal basis: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit.f GDPR (legitimate interests)

What is the Awin affiliate program?

We work with the affiliate and advertising company AWIN AG (Eichhornstrasse 3, 10785 Berlin, Germany). Awin uses tracking tools to perform its services and to be able to save and trace a user action (e.g. the purchase of a product). This means that your data will also be sent to the company in pseudonymised form where it will then be stored. In this privacy policy, we want to explain not only why we use this affiliate program, but also which of your data is stored, how it is stored and how you can prevent this data retention.

Awin is an affiliate marketing network. Its members are advertisers and website operators who offer an advertising platform for the products or services offered. In affiliate marketing, website operators are usually referred to as publishers. They place advertisements for advertisers on their platform (website) and receive a commission in the event of a click or sale.

Why do we use the Awin affiliate program on our website?

In addition to our content, products or services, we also want to provide you with interesting advertisements that fit our theme. We also offer our website as advertising space and the Awin affiliate network provides us with many contacts to advertisers. This enables us to place selected advertisements on our website and receive a commission for successful transactions (leads, sales).

What data is stored by the Awin affiliate program?

Awin needs certain user data to be able to reconstruct the path from us (publisher) to the advertiser. This means that when you click on an advertisement on our website and land on the advertiser’s website, it will be documented by cookies. Awin also creates a restricted user profile (without your name and identity), which documents the path from an advertisement to a sale.

In order to trace this path, Awin uses so-called tracking domain cookies, journey tags and device fingerprinting. The cookies are set in your browser when you click on one of the ads on our website. The journey tags are integrated into the advertiser’s website as JavaScript code so that Awin can receive transaction data. Moreover, fingerprinting enables Awin to uniquely identify a device by taking browser or device attributes into account. The cookies for example store which advertising material was clicked on what website and when it was clicked.

Below we will show you a list of exemplary cookies that are set in your browser when you click on an advertisement on our website.

Name: AWSESS
Value: 360701:2483145123654789-1
Purpose: This cookie stores data on when you see or click an advertisement. This information is then used to avoid showing you the same ads over and over again.
Expiry date: after end of the session

Name: aw11354
Value: 512465|0|0|1606813823||aw|24336851897
Purpose: This cookie is set as soon as you click on a link that leads to the advertiser. The ID stores our web address, the ad you clicked, the time, the ad type ID and the product ID.
Expiry date: after 30 days

Name: bId
Value: HLEX_5fc6087ff90540.34189752123654789-8
Purpose: This cookie sets a browser-specific ID to identify a new click on the same browser.
Expiry date: after one year

All this data is used only to understand a publisher’s marketing efforts and sales. Furthermore, the members of the network are provided with an analysis report based on the collected data. This data is only ever passed on in summarised form, which does not allow any conclusions to be drawn about you as a person. According to Awin, the collected data are not used for users’ interest or personality profiles. Moreover, for each transaction Awin retains an individual sequence of numbers that contains information about the campaign and the devices used. Awin only processes so-called “pseudonymous” user data, which cannot identify you directly.

How long and where are the data stored?

According to Awin, all data is saved until the designated purposes have been implemented and the accounting and reporting requirements no longer require it to be stored. There are no details available on the company’s website. The data is stored on European servers. Furthermore, since Awin only processes pseudonymous data, no information can be given about personal data such as IP addresses for example.

How can I erase my data or prevent data retention?

Should any of your personal data be collected, you of course reserve the right to access and delete them at any time. However, Awin usually only stores pseudonymous data that cannot identify you as a person. Nevertheless, data is of course collected with cookies. If you want to prevent this, you have the option of managing, deactivating or deleting cookies in your browser. This works a little differently for each browser. Below you will find the instructions for the most common browsers:

Chrome: Clear, enable and manage cookies in Chrome

Safari: Manage cookies and website data in Safari

Firefox: Clear cookies and site data in Firefox

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete cookies in Microsoft Edge

Legal basis

If you have agreed to the use of the Awin Partner Program, your consent is the legal basis for the corresponding data processing. According to Art. 6 para. 1 lit. a GDPR (consent), this consent is the legal basis for personal data processing, as it may be done when it is collected by the Awin Partner Program.

We also have legitimate interest in using the Awin Partner Program to optimise our online service and marketing measures. The corresponding legal basis for this is Art. 6 para. 1 lit. f GDPR (legitimate interests). We only use the Awin Partner Program tracking tool if you have consented to it.

We hope we could provide you with the most important information about Awin and their data processing. If you would like more information on Awin’s privacy guidelines, we recommend you to read their privacy policy at https://www.awin.com/gb/privacy. If you have any questions you can also send an email to global-privacy@awin.com at any time.

Commission Junction Affiliate Programme Privacy Policy

We use the affiliate programme Commission Junction for our website. The provider of this service is the British company Conversant Europe Limited, 1st Floor, 40 Dukes Place, London, EC3A 7NH, United Kingdom.

With the UK leaving the European Union, the GDPR is no longer applicable to data transfer there. However, on the basis of Art. 45 GDPR, the European Commission has decided that the UK offers an appropriate level of protection that can be compared to the GDPR. Data transfer there is therefore permitted. You can view the decision here (download): https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32021D1772

You can find out more about the data that is processed through the use of Commission Junction in their Privacy Policy at https://www.cj.com/legal/privacy-uk.

Content Delivery Networks

Content Delivery Networks Privacy Policy Overview
👥 Affected parties: website visitors
🤝 Purpose: Service performance optimisation (to increase website loading speeds)
📓 Processed data: data such as your IP address
You can find more details on this below as well as in the individual Privacy Policies.
📅 Storage period: most data is stored until it is no longer needed for the provision of the service.
⚖️ Legal bases: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What is a Content Delivery Network?

On our website we use a so-called content delivery network or CDN. This helps to load our website quickly and easily, regardless of your location. Moreover, your personal data will also be stored, managed and processed on the respective CDN provider’s servers. In the following, we will go into more general detail on this service and the data processing associated with it. You can find detailed information on how your data is handled in the provider’s Privacy Policy.

Each content delivery network (CDN) is a network of regionally distributed servers that are connected to each other via the internet. Through this network, website content (especially very large files) can be delivered quickly and smoothly, even when large loading peaks occur. To make this possible, CDNs create a copy of our website on their servers. The website can be delivered quickly because these servers are distributed all around the world. Any data transfer to your browser is therefore significantly shortened by the CDN.

Why do we use a Content Delivery Network for our website?

A fast loading website is part of our service. Of course, we know how annoying it is when a website loads at a snail’s pace. Most of the time, you lose your patience and click away before the website is fully loaded. But of course we want to avoid that. Therefore, to us a fast loading website is an obligatory part of our website offer. With the use of a content delivery network, our website loads significantly faster in your browser. Furthermore, CDNs are particularly helpful when you are abroad, as the website is always delivered from a server in your area.

Which data are processed?

If you access a website or its content and it gets cached in a CDN, the CDN forwards the request to the server closest to you which then delivers the content. Content delivery networks are built in a way that JavaScript libraries can be downloaded and hosted on npm and Github servers. Alternatively, WordPress plugins can also be loaded on most CDNs, provided they are hosted on WordPress.org. Moreover, your browser can send personal data to the content delivery network we use. This includes data such as IP addresses, browser type, browser version, the accessed website or the time and date of the page visit. This data is collected and stored by the CDN. Whether cookies are used for data storage depends on the network that is being used. For more information on this, please read the Privacy Policy of the respective service.

Right to object

If you want to prevent this data transfer altogether, you can use a JavaScript blocker (see for example https://noscript.net/) on your computer. However, our website can then of course no longer offer its usual service (such as a fast loading speeds).

Legal basis

If you have consented to the use of a content delivery network, your consent represents the the legal basis for the corresponding data processing. According to Art. 6 paragraph 1 lit. a (consent) your consent represents the legal basis for the processing of personal data, as it can occur when collected by a content delivery network.

We also have a legitimate interest in using a content delivery network to optimise our online service and make it more secure. The corresponding legal basis for this is Art. 6 para. 1 lit. f GDPR (legitimate interests). Nevertheless, we only use the tool if you have consented to it.

Provided this information is available, you can find out more about the particular content delivery networks in the following sections.

Cloudflare Privacy Policy

Cloudflare Privacy Policy Overview
👥 Affected parties: website visitors
🤝 Purpose: service performance optimisation (to accelerate website loading times)
📓 Processed data: data such as IP address, contact and protocol information, security fingerprints and website performance data
You can find more details on this in the Privacy Policy below.
📅 Storage duration: most of the data is stored for less than 24 hours
⚖️ Legal basis: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What is Cloudflare?

We use Cloudflare by the company Cloudflare, Inc. (101 Townsend St., San Francisco, CA 94107, USA) on our website to enhance its speed and security. For this, Cloudflare uses cookies and processes user data. Cloudflare, Inc. is an American company that offers a content delivery network and various security services. These services take place between the user and our hosting provider. In the following, we will try to explain in detail what all this means.

A content delivery network (CDN), as provided by Cloudflare, is nothing more than a network of servers that are connected to each other. Cloudflare has deployed servers around the world, which ensure websites can appear on your screen faster. Simply put, Cloudflare makes copies of our website and places them on its own servers. Thus, when you visit our website, a load distribution system ensures that the main part of our website is delivered by a server that can display our website to you as quickly as possible. The CDN significantly shortens the route of the transmitted data to your browser. Thus, Cloudflare does not only deliver our website’s content from our hosting server, but from servers from all over the world. Cloudflare is particularly helpful for users from abroad, since pages can be delivered from a nearby server. In addition to the fast delivery of websites, Cloudflare also offers various security services, such as DDoS protection, or the web application firewall.

Why do we use Cloudflare on our website?

Of course, we want our website to offer you the best possible service. Cloudflare helps us make our website faster and more secure. Cloudflare offers us web optimisations as well as security services such as DDoS protection and a web firewall. Moreover, this includes a Reverse-Proxy and the content distribution network (CDN). Cloudflare blocks threats and limits abusive bots as well as crawlers that waste our bandwidth and server resources. By storing our website in local data centres and blocking spam software, Cloudflare enables us to reduce our bandwidth usage by about 60%. Furthermore, the provision of content through a data centre near you and certain web optimizations carried out there, cut the average loading time of a website in about half. According to Cloudflare, the setting “I’m Under Attack Mode” can be used to mitigate further attacks by displaying a JavaScript calculation task that must be solved before a user can access a website. Overall, this makes our website significantly more powerful and less susceptible to spam or other attacks.

What data is stored by Cloudflare?

Cloudflare generally only transmits data that is controlled by website operators. Therefore, Cloudflare does not determine the content, but the website operator themselves does. Additionally, Cloudflare may collect certain information about the use of our website and may process data we send or data which Cloudflare has received certain instructions for. Mostly, Cloudflare receives data such as IP addresses, contacts and protocol information, security fingerprints and websites’ performance data. Log data for example helps Cloudflare identify new threats. That way, Cloudflare can ensure a high level of security for our website. As part of their services, Cloudflare process this data in compliance with the applicable laws. Of course, this also includes the compliance with the General Data Protection Regulation (GDPR).

Furthermore, Cloudflare uses a cookie for security reasons. The cookie (__cfduid) is used to identify individual users behind a shared IP address, and to apply security settings for each individual user. The cookie is very useful, if you e.g. use our website from a restaurant where several infected computers are located. However, if your computer is trustworthy, we can recognise that with the cookie. Hence, you will be able to freely and carelessly surf our website, despite the infected PCs in your area. Another point that is important to know, is that this cookie does not store any personal data. The cookie is essential for Cloudflare’s security functions and cannot be deactivated.

Cookies by Cloudflare

Name: __cfduid
Value: d798bf7df9c1ad5b7583eda5cc5e78123654789-3
Purpose: Security settings for each individual visitor
Expiry date: after one year

Cloudflare also works with third party providers. They may however only process personal data after the instruction of Cloudflare and in accordance with the data protection guidelines and other confidentiality and security measures. Without explicit consent from us, Cloudflare will not pass on any personal data.

How long and where is the data stored?

Cloudflare stores your information primarily in the United States and the European Economic Area. Cloudflare can transfer and access the information described above, from all over the world. In general, Cloudflare stores domains’ user-level data with the Free, Pro and Business versions for less than 24 hours. For enterprise domains that have activated Cloudflare Logs (previously called Enterprise LogShare or ELS), data can be stored for up to 7 days. However, if IP addresses trigger security warnings in Cloudflare, there may be exceptions to the storage period mentioned above.

How can I erase my data or prevent data retention?

Cloudflare only keeps data logs for as long as necessary and in most cases deletes the data within 24 hours. Cloudflare also does not store any personal data, such as your IP address. However, there is information that Cloudflare store indefinitely as part of their permanent logs. This is done to improve the overall performance of Cloudflare Resolver and to identify potential security risks. You can find out exactly which permanent logs are saved at https://developers.cloudflare.com/1.1.1.1/commitment-to-privacy/privacy-policy/privacy-policy/. All data Cloudflare collects (temporarily or permanently) is cleared of all personal data. Cloudflare also anonymise all permanent logs.

In their privacy policy, Cloudflare state that they are not responsible for the content you receive. For example, if you ask Cloudflare whether you can update or delete content, Cloudflare will always refer to us as the website operator. You can also completely prevent the collection and processing of your data by Cloudflare, when you deactivate the execution of script-code in your browser, or if you integrate a script blocker to your browser.

Legal basis

If you have consented to the use of Cloudflare, your consent is the legal basis for the corresponding data processing. According to Art. 6 paragraph 1 lit. a (Consent) your consent is the legal basis for the processing of personal data, as can occur when it is collected by Cloudflare.

We also have a legitimate interest in using Cloudflare to optimise our online service and make it more secure. The corresponding legal basis for this is Art. 6 para. 1 lit.f GDPR (legitimate interests). Nevertheless, we only use Cloudflare if you have given your consent to it.

Cloudflare processes data from you, among other things, in the USA. Cloudflare is an active participant in the EU-US Data Privacy Framework, which regulates the correct and secure transfer of personal data from EU citizens to the USA. More information can be found at https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en.

Additionally, Cloudflare uses so-called Standard Contractual Clauses (Article 46(2) and (3) GDPR). Standard Contractual Clauses (SCC) are template clauses provided by the EU Commission and are designed to ensure that your data complies with European data protection standards, even when transferred and stored in third countries (such as the USA). Through the EU-US Data Privacy Framework and the Standard Contractual Clauses, Cloudflare commits to maintaining the European data protection level when processing your relevant data, even if the data is stored, processed, and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding Standard Contractual Clauses here: https://ec.europa.eu/commission/presscorner/detail/en/ip_21_2847.

You can find out more about the standard contractual clauses and the data that is processed by Cloudflare at https://www.cloudflare.com/en-gb/privacypolicy/.

Security & Anti-spam

Security & Anti-Spam Privacy Policy Overview
👥 Affected parties: website visitors
🤝 Purpose: for cyber security
📓 Processed data: Data such as your IP address, name or technical data such as browser version
More details can be found below and in the individual privacy policies.
📅 Duration of storage: In most cases, data is stored until it is no longer required in order to provide the service
⚖️ Legal bases: Article 6 paragraph 1 lit. a GDPR (consent), Article 6 paragraph 1 lit. f GDPR (legitimate interests)

What is Security & Anti-spam software?

So-called security & Anti-spam software can protect you and us from various spam or phishing emails and other potential cyber-attacks. Spam includes advertising emails from mass mailings that you did not sign up for yourself. Such emails are also called data garbage and can also cause costs. Other spam such as phishing emails, on the other hand, are messages that aim to gain trust via fake messages or websites in order to obtain personal information. Anti-spam software usually protects against unwanted spam messages or malicious emails that could inject viruses into our system. We also use general firewall and security systems that protect our devices from unwanted network attacks.

Why do we use Security & Anti-spam software?

We put great importance on our website’s security. After all, this is not just about our safety, but also about your safety. Unfortunately, cyber threats are now part of everyday life in the world of IT and the internet. Hackers e. g. often try to steal personal data from IT systems with the help of cyber attacks. And therefore a good defence system is absolutely necessary. A security system monitors all incoming and outgoing connections to our network or computer. In order to achieve even greater security against cyber attacks, we also use other external security services on our devices in addition to standardised security systems. Unauthorised data transmissions are thus better prevented and this is how we protect ourselves from cybercrime.

Which data are processed by Security & Anti-spam software?

The data that is collected and stored of course depends on the respective service. However, we always try to only use programs that collect data very sparingly or only store data that is necessary for the fulfilment of the offered service. In general, the service may store data such as name, address, IP address, email address and technical data such as browser type or browser version. Any performance and log data may also be collected in order to identify possible incoming threats in good time. This data will be processed as part of the provided services and in compliance with applicable laws. This also includes the GDPR for US providers (via the Standard Contractual Clauses). In some cases, security services also work with third parties who may store and/or process data under instructions and in accordance with privacy policies and other security measures. Data is usually stored using cookies.

Duration of data processing

We will inform you below about the duration of data processing, provided we have further information on this. For example, security programs store data until you or we revoke data storage. In general, personal data is only stored for as long as is absolutely necessary for the provision of the services. Unfortunately, in many cases, we do not have precise information from the providers about their data storage periods.

Right to object

You also have the right and the option to revoke your consent to the use of cookies or third-party security software at any time. This can be done either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection through cookies by managing, deactivating or erasing the cookies in your browser.

Since cookies may also be used with security services, we recommend you read our privacy policy on cookies. To find out exactly which of your data is stored and processed, you should read the privacy policies of the respective tools.

Legal Basis

We use security services mainly on the basis of our legitimate interests (Art. 6 Para. 1 lit. f GDPR) in a good security system and protection against various cyber attacks.

Certain data processing requires your consent – in particular, the use of cookies and security functions. If you have agreed to the processing and storage of your data by integrated security services, your consent is the legal basis for data processing (Article 6 (1) (a) GDPR). Most of the services we use set cookies on your browser to store data. We, therefore, recommend you read our privacy policy on cookies carefully and consult the privacy policy or cookie policy of the relevant service provider.

Information on special tools – if available – can be found in the following sections.

Google reCAPTCHA Privacy Policy

Google reCAPTCHA Privacy Policy Overview
👥 Affected parties: website visitors
🤝 Purpose: Service optimisation and protection against cyber attacks
📓 Processed data: data such as IP address, browser information, operating system, limited location and usage data
You can find more details on this in the Privacy Policy below.
📅 Storage duration: depending on the retained data
⚖️ Legal bases: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What is reCAPTCHA?

Our primary goal is to provide you an experience on our website that is as secure and protected as possible. To do this, we use Google reCAPTCHA from Google Inc. (1600 Amphitheater Parkway Mountain View, CA 94043, USA). With reCAPTCHA we can determine whether you are a real person from flesh and bones, and not a robot or a spam software. By spam we mean any electronically undesirable information we receive involuntarily. Classic CAPTCHAS usually needed you to solve text or picture puzzles to check. But thanks to Google’s reCAPTCHA you usually do have to do such puzzles. Most of the times it is enough to simply tick a box and confirm you are not a bot. With the new Invisible reCAPTCHA version you don’t even have to tick a box. In this privacy policy you will find out how exactly this works, and what data is used for it.

reCAPTCHA is a free captcha service from Google that protects websites from spam software and misuse by non-human visitors. This service is used the most when you fill out forms on the Internet. A captcha service is a type of automatic Turing-test that is designed to ensure specific actions on the Internet are done by human beings and not bots. During the classic Turing-test (named after computer scientist Alan Turing), a person differentiates between bot and human. With Captchas, a computer or software program does the same. Classic captchas function with small tasks that are easy to solve for humans but provide considerable difficulties to machines. With reCAPTCHA, you no longer must actively solve puzzles. The tool uses modern risk techniques to distinguish people from bots. The only thing you must do there, is to tick the text field “I am not a robot”. However, with Invisible reCAPTCHA even that is no longer necessary. reCAPTCHA, integrates a JavaScript element into the source text, after which the tool then runs in the background and analyses your user behaviour. The software calculates a so-called captcha score from your user actions. Google uses this score to calculate the likelihood of you being a human, before entering the captcha. reCAPTCHA and Captchas in general are used every time bots could manipulate or misuse certain actions (such as registrations, surveys, etc.).

Why do we use reCAPTCHA on our website?

We only want to welcome people from flesh and bones on our side and want bots or spam software of all kinds to stay away. Therefore, we are doing everything we can to stay protected and to offer you the highest possible user friendliness. For this reason, we use Google reCAPTCHA from Google. Thus, we can be pretty sure that we will remain a “bot-free” website. Using reCAPTCHA, data is transmitted to Google to determine whether you genuinely are human. reCAPTCHA thus ensures our website’s and subsequently your security. Without reCAPTCHA it could e.g. happen that a bot would register as many email addresses as possible when registering, in order to subsequently “spam” forums or blogs with unwanted advertising content. With reCAPTCHA we can avoid such bot attacks.

What data is stored by reCAPTCHA?

reCAPTCHA collects personal user data to determine whether the actions on our website are made by people. Thus, IP addresses and other data Google needs for its reCAPTCHA service, may be sent to Google. Within member states of the European Economic Area, IP addresses are almost always compressed before the data makes its way to a server in the USA. Moreover, your IP address will not be combined with any other of Google’s data, unless you are logged into your Google account while using reCAPTCHA. Firstly, the reCAPTCHA algorithm checks whether Google cookies from other Google services (YouTube, Gmail, etc.) have already been placed in your browser. Then reCAPTCHA sets an additional cookie in your browser and takes a snapshot of your browser window.

The following list of collected browser and user data is not exhaustive. Rather, it provides examples of data, which to our knowledge, is processed by Google.

  • Referrer URL (the address of the page the visitor has come from)
  • IP-address (z.B. 256.123.123.1)
  • Information on the operating system (the software that enables the operation of your computers. Popular operating systems are Windows, Mac OS X or Linux)
  • Cookies (small text files that save data in your browser)
  • Mouse and keyboard behaviour (every action you take with your mouse or keyboard is stored)
  • Date and language settings (the language and date you have set on your PC is saved)
  • All Javascript objects (JavaScript is a programming language that allows websites to adapt to the user. JavaScript objects can collect all kinds of data under one name)
  • Screen resolution (shows how many pixels the image display consists of)

Google may use and analyse this data even before you click on the “I am not a robot” checkmark. In the Invisible reCAPTCHA version, there is no need to even tick at all, as the entire recognition process runs in the background. Moreover, Google have not given details on what information and how much data they retain.

The following cookies are used by reCAPTCHA: With the following list we are referring to Google’s reCAPTCHA demo version at https://www.google.com/recaptcha/api2/demo.
For tracking purposes, all these cookies require a unique identifier. Here is a list of cookies that Google reCAPTCHA has set in the demo version:

Name: IDE
Value: WqTUmlnmv_qXyi_DGNPLESKnRNrpgXoy1K-pAZtAkMbHI-123654789-8
Purpose: This cookie is set by DoubleClick (which is owned by Google) to register and report a user’s interactions with advertisements. With it, ad effectiveness can be measured, and appropriate optimisation measures can be taken. IDE is stored in browsers under the domain doubleclick.net.
Expiry date: after one year

Name: 1P_JAR
Value: 2019-5-14-12
Purpose: This cookie collects website usage statistics and measures conversions. A conversion e.g. takes place, when a user becomes a buyer. The cookie is also used to display relevant adverts to users. Furthermore, the cookie can prevent a user from seeing the same ad more than once.
Expiry date: after one month

Name: ANID
Value: U7j1v3dZa1236547890xgZFmiqWppRWKOr
Purpose: We could not find out much about this cookie. In Google’s privacy statement, the cookie is mentioned in connection with “advertising cookies” such as “DSID”, “FLC”, “AID” and “TAID”. ANID is stored under the domain google.com.
Expiry date: after 9 months

Name: CONSENT
Value: YES+AT.de+20150628-20-0
Purpose: This cookie stores the status of a user’s consent to the use of various Google services. CONSENT also serves to prevent fraudulent logins and to protect user data from unauthorised attacks.
Expiry date: after 19 years

Name: NID
Value: 0WmuWqy123654789zILzqV_nmt3sDXwPeM5Q
Purpose: Google uses NID to customise advertisements to your Google searches. With the help of cookies, Google “remembers” your most frequently entered search queries or your previous ad interactions. Thus, you always receive advertisements tailored to you. The cookie contains a unique ID to collect users’ personal settings for advertising purposes.
Expiry date: after 6 months

Name: DV
Value: gEAABBCjJMXcI0dSAAAANbqc123654789-4
Purpose: This cookie is set when you tick the “I am not a robot” checkmark. Google Analytics uses the cookie personalised advertising. DV collects anonymous information and is also used to distinct between users.
Expiry date: after 10 minutes

Note: We do not claim for this list to be extensive, as Google often change the choice of their cookies.

How long and where are the data stored?

Due to the integration of reCAPTCHA, your data will be transferred to the Google server. Google have not disclosed where exactly this data is stored, despite repeated inquiries. But even without confirmation from Google, it can be assumed that data such as mouse interaction, length of stay on a website or language settings are stored on the European or American Google servers. The IP address that your browser transmits to Google does generally not get merged with other Google data from the company’s other services.
However, the data will be merged if you are logged in to your Google account while using the reCAPTCHA plug-in. Google’s diverging privacy policy applies for this.

How can I erase my data or prevent data retention?

If you want to prevent any data about you and your behaviour to be transmitted to Google, you must fully log out of Google and delete all Google cookies before visiting our website or use the reCAPTCHA software. Generally, the data is automatically sent to Google as soon as you visit our website. To delete this data, you must contact Google Support at https://support.google.com/?hl=en-GB.

If you use our website, you agree that Google LLC and its representatives automatically collect, edit and use data.

Please note that when using this tool, your data can also be stored and processed outside the EU. Most third countries (including the USA) are not considered secure under current European data protection law. Data to insecure third countries must not simply be transferred to, stored and processed there unless there are suitable guarantees (such as EU’s Standard Contractual Clauses) between us and the non-European service provider.

Legal basis

If you have consented to the use of Google reCAPTCHA, your consent is the legal basis for the corresponding data processing. According to Art. 6 Paragraph 1 lit. a GDPR (consent) your consent is the legal basis for the processing of personal data, as can occur when processed by Google reCAPTCHA.

We also have a legitimate interest in using Google reCAPTCHA to optimise our online service and make it more secure. The corresponding legal basis for this is Art. 6 para. 1 lit. f GDPR (legitimate interests). Nevertheless, we only use Google reCAPTCHA if you have given your consent to it.

Google processes data from you, among other things, in the USA. Google is an active participant in the EU-US Data Privacy Framework, which regulates the correct and secure transfer of personal data from EU citizens to the USA. More information can be found at https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en.

Additionally, Google uses so-called Standard Contractual Clauses (Article 46(2) and (3) GDPR). Standard Contractual Clauses (SCC) are template clauses provided by the EU Commission and are designed to ensure that your data complies with European data protection standards, even when transferred and stored in third countries (such as the USA). Through the EU-US Data Privacy Framework and the Standard Contractual Clauses, Google commits to maintaining the European data protection level when processing your relevant data, even if the data is stored, processed, and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding Standard Contractual Clauses here: https://ec.europa.eu/commission/presscorner/detail/en/ip_21_2847.

You can find the Google Ads Data Processing Terms, which refer to the Standard Contractual Clauses, at: https://business.safety.google/intl/en/adsprocessorterms/

You can find out a little more about reCAPTCHA on Google’s web developer page at https://developers.google.com/recaptcha/. Google goes into the technical development of the reCAPTCHA in more detail here, but you will look in vain for detailed information about data storage and data protection issues. A good overview of the basic use of data by Google can be found in the in-house data protection declaration at https://policies.google.com/privacy?hl=en-GB.

Audio & Video

Audio & Video Privacy Policy Overview
👥 Affected parties: website visitors
🤝 Purpose: service optimisation
📓 Processed data: Data such as contact details, user behaviour, device information and IP addresses can be stored.
You can find more details in the Privacy Policy below.
📅 Storage period: data are retained for as long as necessary for the provision of the service
⚖️ Legal bases: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What are audio and video elements?

We have integrated audio and video elements to our website. Therefore, you can watch videos or listen to music/podcasts directly via our website. This content is delivered by service providers and is obtained from the respective providers’ servers.

Audio and video elements are integrated functional elements of platforms such as YouTube, Vimeo or Spotify. It is usually free of charge to use these portals, but they can also contain paid content. With the integrated elements, you can listen to or view any of their content on our website.

If you use audio or video elements on our website, your personal data may get transmitted to as well as processed and retained by service providers.

Why do we use audio & video elements on our website?

We of course want to provide you with the best offer on our website. And we are aware that content is no longer just conveyed in text and static images. Instead of just giving you a link to a video, we offer you audio and video formats directly on our website. These are entertaining or informative, but ideally they are both. Our service therefore gets expanded and it gets easier for you to access interesting content. In addition to our texts and images, we thus also offer video and/or audio content.

Which data are retained by audio & video elements?

When you visit a page on our website with e.g. an embedded video, your server connects to the service provider’s server. Thus, your data will also be transferred to the third-party provider, where it will be stored. Certain data is collected and stored regardless of whether you have an account with the third party provider or not. This usually includes your IP address, browser type, operating system and other general information about your device. Most providers also collect information on your web activity. This e.g. includes the session duration, bounce rate, the buttons you clicked or information about the website you are using the service on. This data is mostly stored via cookies or pixel tags (also known as web beacons). Any data that is pseudonymised usually gets stored in your browser via cookies. In the respective provider’s Privacy Policy, you can always find more information on the data that is stored and processed.

Duration of data processing

You can find out exactly how long the data is stored on the third-party provider’s servers either in a lower point of the respective tool’s Privacy Policy or in the provider’s Privacy Policy. Generally, personal data is only processed for as long as is absolutely necessary for the provision of our services or products. This usually also applies to third-party providers. In most cases, you can assume that certain data will be stored on third-party providers’ servers for several years. Data can be retained for different amounts of time, especially when stored in cookies. Some cookies are deleted after you leave a website, while others may be stored in your browser for a few years.

Right to object

You also retain the right and the option to revoke your consent to the use of cookies or third-party providers at any time. This can be done either via our cookie management tool or via other opt-out functions. You can e.g. also prevent data retention via cookies by managing, deactivating or erasing cookies in your browser. The legality of the processing up to the point of revocation remains unaffected.

Since the integrated audio and video functions on our site usually also use cookies, we recommend you to also read our general Privacy Policy on cookies. You can find out more about the handling and storage of your data in the Privacy Policies of the respective third party providers.

Legal basis

If you have consented to the processing and storage of your data by integrated audio and video elements, your consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). Generally, your data is also stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in maintaining fast and good communication with you or other customers and business partners. We only use the integrated audio and video elements if you have consented to it.

YouTube IFrame Player Privacy Policy

We also use the YouTube IFrame Player to embed videos on our website. The provider of this service is the American company Google Inc. The responsible entity for the European region is the Irish company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Irland).

Google processes data from you, among other things, in the USA. Google is an active participant in the EU-US Data Privacy Framework, which regulates the correct and secure transfer of personal data from EU citizens to the USA. More information can be found at https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en.

Additionally, Google uses so-called Standard Contractual Clauses (Article 46(2) and (3) GDPR). Standard Contractual Clauses (SCC) are template clauses provided by the EU Commission and are designed to ensure that your data complies with European data protection standards, even when transferred and stored in third countries (such as the USA). Through the EU-US Data Privacy Framework and the Standard Contractual Clauses, Google commits to maintaining the European data protection level when processing your relevant data, even if the data is stored, processed, and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding Standard Contractual Clauses here: https://ec.europa.eu/commission/presscorner/detail/en/ip_21_2847.

You can find the Google Ads Data Processing Terms, which refer to the Standard Contractual Clauses, at: https://business.safety.google/intl/en/adsprocessorterms/

You can find out more about Googles’ data processing in their privacy policy at https://policies.google.com/privacy?hl=en-US.

Video Conferencing & Streaming

Video Conferencing & Streaming Privacy Policy Overview
👥 Affected parties: users of our video conferencing or streaming tools
🤝 Purpose: communication and presentation of content
📓 Processed data: Access statistics such as your name, address, contact details, email address, telephone number or IP address. You can find more details on this directly at the video conference or streaming tool that is being used.
📅 Storage duration: depending on the video conferencing or streaming tool
⚖️ Legal bases: Article 6 (1) (a) GDPR (consent), Article 6 (1) (f) GDPR (legitimate interests), Article 6 (1) (b) GDPR (contract)

What are video conferences & streamings?

We use software programs that enable us to hold video conferences, online meetings, webinars and to utilise display sharing and/or streaming. In a video conference or a streaming, information is transmitted simultaneously via sound and moving images. With such video conference or streaming tools, we can communicate quickly and easily with customers, business partners, clients and employees via the Internet. Of course, when selecting the service provider, we consider the given legal framework.

Generally, third-party providers can process data as soon as you interact with the software program. Third-party video conference providers or streaming solutions use your data and metadata for different purposes. The data helps to e.g. make the tool more secure and to improve the service. Most of the time, the data may also be used for the respective third-party provider’s own marketing purposes.

Why do we use video conferencing & streaming on our website?

We want to communicate digitally, quickly, easily and securely with you, our customers and our business partners. This works best with video conferencing solutions that are very easy to use. Most tools also work directly in your browser and with just a few clicks you can get right to your video meeting. The tools also offer helpful additional features such as chat and screen sharing functions or the possibility of sharing content between meeting participants.

Which data are processed?

If you join our video conference or streaming, your data will also be processed and stored on the servers of the respective service provider.

The exact data that gets stored depends on the respective software. Each provider stores and processes data differently. Generally, however, most providers store your name, address, contact details such as your email address or telephone number and your IP address. Information about the device you are using may also get stored, along with usage data, such as which websites you visit, when you visit a website or which buttons you click. Data that is shared within the video conference (photos, videos, texts) may also be retained.

Duration of data processing

Below we will inform you about the duration of the data processing of the service that is being used, provided we have further information on this. In general, we only process personal data for as long as is absolutely necessary to provide our services and products. Moreover, it is possible that the provider may store your data according to their own requirements, which we have no influence on.

Right to object

You always have the right to information, rectification and erasure of your personal data. If you have any questions, you can always contact the person responsible for the respective video conferencing or streaming tool. You can find contact details either in our specific privacy policy or on the website of the relevant provider.

In your browser you can erase, deactivate or manage cookies that providers use for their functions. This works slightly different, depending on which browser you are using. Please note, however, that functions may not keep working as usual after doing so.

Legal basis

If you have consented to the processing and storage of your data by the respective video or streaming solution, this consent is the legal basis for data processing (Art. 6 para. 1 lit. a GDPR). We may also offer a video conference as part of our services, if there has been a contractual agreement with you in advance (Art. 6 para. 1 lit. b GDPR). Generally, your data is also stored and processed on the basis of our legitimate interest (Art. 6 para. 1 lit. f GDPR) to maintain fast and good communication with you or other customers and business partners, provided you have priorly given consent. Most video or streaming solutions also place cookies in your browser to store data. We therefore recommend you to read our privacy policy about cookies carefully and to take a look at the privacy policy or the cookie policy of the respective service provider.

Provided it is available, you can find information on special video conference and streaming solutions in the following sections.

Twitch Privacy Policy

On our website we use Twitch, which is a live streaming portal for Videogames. The provider of this service is the American company Interactive, Inc., 350 Bush Street, 2nd Floor, San Francisco, CA 94104, USA.

Twitch also processes data in the USA, among other countries. We would like to note, that according to the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This can be associated with various risks to the legality and security of data processing.

Twitch uses standard contractual clauses approved by the EU Commission as basis for data processing by recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway and especially in the USA) or data transfer there (= Art. 46, paragraphs 2 and 3 of the GDPR). These clauses oblige Twitch to comply with the EU‘s level of data protection when processing relevant data outside the EU. These clauses are based on an implementing order by the EU Commission. You can find the order and the clauses here: https://ec.europa.eu/commission/presscorner/detail/en/ip_21_2847

You can find out more about the data processed by using Twitch in the Privacy Policy at https://www.twitch.tv/p/de-de/legal/privacy-notice/.


All texts are copyrighted.




SUPPORT CENTER
m_key:ZyjefvgE8GPporHyfgKl