Data protection

    Privacy Policy

    Introduction and overview

    We have written this data protection declaration (version 06.01.2022-311912893) in order to provide you with information in accordance with the General Data Protection Regulation (EU) 2016/679 and applicable national laws to explain which personal data (data for short) we as the responsible party - and the processors commissioned by us (e.g. providers) - process, will process in the future and what legal options you have. The terms used are gender-neutral.
    In short: We will provide you with comprehensive information about data that we process about you.

    Privacy statements usually sound very technical and use legal terminology. This data protection declaration, on the other hand, is intended to describe the most important things as simply and transparently as possible. As far as it is conducive to transparency, technical terms are explained in a reader-friendly manner, Links to further information are provided and Graphics used. We are thus informing you in clear and simple language that we only process personal data in the course of our business activities if there is a corresponding legal basis. This is certainly not possible if you make the most concise, unclear and legal-technical statements possible, as they are often standard on the Internet when it comes to data protection. I hope you find the following explanations interesting and informative and maybe there is one or two pieces of information that you did not know.
    If you still have questions, we would like to ask you to contact the responsible person named below or in the imprint Contact the site, follow the links provided and see more information on third party sites. Our contact details can of course also be found in the imprint.

    Area of ​​application

    This data protection declaration applies to all personal data processed by us in the company and to all personal data that companies commissioned by us (processors) process. By personal data we mean information within the meaning of Art. 4 No. 1 GDPR such as a person's name, e-mail address and postal address. The processing of personal data ensures that we can offer and bill our services and products, whether online or offline. The scope of this privacy statement includes:

    • all online presences (websites, online shops) that we operate
    • Social media appearances and e-mail communication
    • mobile apps for smartphones and other devices

    In short: The data protection declaration applies to all areas in which personal data is processed in a structured manner in the company via the channels mentioned. If we enter into legal relationships with you outside of these channels, we will inform you separately if necessary.

    Legal bases

    In the following data protection declaration, we provide you with transparent information on the legal principles and regulations, i.e. the legal bases of the General Data Protection Regulation, which enable us to process personal data.
    As far as EU law is concerned, we refer to REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND THE COUNCIL of April 27, 2016. You can of course read this EU General Data Protection Regulation online at EUR-Lex, the gateway to EU law, at https://eur-lex.europa.eu/legal-content/DE/TXT/?uri=celex%3A32016R0679 .

    We only process your data if at least one of the following conditions applies:

    1. Consent (Article 6 paragraph 1 lit a GDPR): You have given us your consent to process data for a specific purpose. An example would be storing the data you entered on a contact form.
    2. Contract (Article 6 paragraph 1 lit. b GDPR): In order to fulfill a contract or pre-contractual obligations with you, we process your data. For example, if we enter into a sales contract with you, we need personal information in advance.
    3. Legal obligation (Article 6 paragraph 1 lit. c GDPR): If we are subject to a legal obligation, we process your data. For example, we are required by law to keep invoices for accounting purposes. These usually contain personal data.
    4. Legitimate interests (Article 6 paragraph 1 lit. f GDPR): In the case of legitimate interests that do not restrict your fundamental rights, we reserve the right to process personal data. For example, we need to process certain data in order to be able to operate our website securely and economically. This processing is therefore a legitimate interest.

    Further conditions such as the perception of recordings in the public interest and the exercise of official authority as well as the protection of vital interests do not generally apply to us. Insofar as such a legal basis is relevant, it will be indicated in the appropriate place.

    In addition to the EU regulation, national laws also apply:

    • In Austria this is the federal law for the protection of natural persons with regard to the processing of personal data (Data Protection Act), in short DSG.
    • In Germany the Federal Data Protection Act, in short BDSG applies .

    If other regional or national laws apply, we will inform you in the following sections.

    Contact details of the person responsible

    If you have any questions about data protection, you will find the contact details of the person or position responsible below:
    Fa. Fabian Buchler
    Fabian Buchler
    Elsterweg 8, 03130 Spremberg, Germany

    Email: web@flex-autoteile.shop
    Telephone: 03563512333
    Imprint: https://flex-autoteile.shop/pages/datenschutz

    Storage time

    The fact that we only store personal data for as long as is absolutely necessary for the provision of our services and products is a general criterion for us. This means that we delete personal data as soon as the reason for the data processing no longer exists. In some cases, we are legally obliged to store certain data even after the original purpose has ceased to exist, for example for accounting purposes.

    If you wish your data to be deleted or revoke your consent to data processing, the data will be deleted as quickly as possible and provided there is no obligation to store them.

    We will inform you below about the specific duration of the respective data processing if we have further information on this.

    Rights under the General Data Protection Regulation

    According to Article 13 GDPR, you have the following rights to ensure that data is processed fairly and transparently:

    • According to Article 15 GDPR, you have a right to information as to whether we are processing your data.If this is the case, you have the right to receive a copy of the data and to be informed of the following information:
      • for what purpose we carry out the processing;
      • the categories, i.e. the types of data that are processed;
      • who receives this data and if the data is transferred to third countries, how security can be guaranteed;
      • how long the data is stored;
      • the existence of the right to rectification, erasure or restriction of processing and the right to object to processing;
      • that you can complain to a supervisory authority (links to these authorities can be found below);
      • the origin of the data if we did not collect it from you;
      • whether profiling is carried out, i.e. whether data is automatically evaluated in order to obtain a personal profile of you
    • According to Article 16 GDPR, you have the right to have the data corrected, which means that we have to correct data if you find any errors.
    • According to Article 17 GDPR, you have the right to erasure ("right to be forgotten"), which specifically means that you may request the erasure of your data.
    • According to Article 18 GDPR, you have the right to restriction of processing, which means that we may only store the data but not use it any further.
    • According to Article 19 GDPR, you have the right to data portability, which means that we can provide you with your data in a common format upon request.
    • According to Article 21 GDPR, you have a right of objection, which, after enforcement, will result in a change in processing.
      • If the processing of your data is based on Article 6 Paragraph 1 Letter e (public interest, exercise of official authority) or Article 6 Paragraph 1 Letter f (legitimate interest), you can object to the processing. We will then check as quickly as possible whether we can legally comply with this objection.
      • If data is used to operate direct advertising, you can object to this type of data processing at any time. We may no longer use your data for direct marketing after this.
      • If data is used to operate profiling, you can object to this type of data processing at any time. We may no longer use your data for profiling after this.
    • According to Article 22 GDPR, you may have the right not to be subject to a decision based solely on automated processing (e.g. profiling).

    In short: You have rights - do not hesitate to contact the responsible person listed above!

    If you believe that the processing of your data violates data protection law or your data protection rights have been violated in any other way, you can complain to the supervisory authority. This is the data protection authority for Austria, whose website can be found at https://www.dsb.gv.at/ . In Germany there is a data protection officer for each federal state. For more information, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI) . The following local data protection authority is responsible for our company:

    Brandenburg data protection authority

    State Commissioner for Data Protection: Dagmar Hartge
    Address: Stahnsdorfer Damm 77, 14532 Kleinmachnow
    Telephone number: 03 32 03/356-0
    Email address: poststelle@lda.brandenburg.de
    Website: https://www.lda.brandenburgde/lda/de/

    Web hosting introduction

    Web hosting summary
    👥 Affected: Website visitors
    🤝 Purpose: professional hosting of the website and security of operation
    📓 Processed data: IP address, time of website visit, used Browser and other data. More details can be found below or from the web hosting provider used.
    📅 Storage period: depends on the respective provider, but usually 2 weeks
    ⚖️ Legal bases: Art. 6 Para. 1 lit.f GDPR (entitled persons interests)

    What is web hosting?

    When you visit websites today, certain information - including personal data - is automatically created and stored, including on this website. This data should be processed as sparingly as possible and only with justification. By the way, by website we mean the entirety of all web pages on a domain, i.e. everything from the start page (homepage) to the very last subpage (like this one). By domain we mean, for example, example.de or example.com.

    If you want to view a website on a screen, you use a program called a web browser. You probably know a few web browsers by name: Google Chrome, Microsoft Edge, Mozilla Firefox, and Apple Safari.

    This web browser needs to connect to another computer where the website's code is stored: the web server. The operation of a web server is a complicated and time-consuming task, which is why this is usually taken on by professional providers, the providers. These offer web hosting and thus ensure reliable and error-free storage of website data.

    When the browser on your computer (desktop, laptop, smartphone) establishes a connection and during data transmission to and from the web server, personal data may be processed. On the one hand, your computer stores data, on the other hand, the web server also has to store data for a period of time in order to ensure proper operation.

    For illustration:

    Browser und Webserver

    Why do we process personal data?

    The purposes of data processing are:

    1. Professional website hosting and operation security
    2. to maintain operational and IT security
    3. Anonymous evaluation of access behavior to improve our offer and, if necessary, for criminal prosecution or the pursuit of claims

    What data is processed?

    Even while you are visiting our website, our web server, which is the computer on which this website is stored, usually automatically saves data such as

    • the complete internet address (URL) of the accessed website (e.g. https://www.beispielwebsite.de/beispielunterseite.html?tid=311912893)
    • Browser and browser version (e.g. Chrome 87)
    • the operating system used (e.g. Windows 10)
    • The address (URL) of the previously visited page (referrer URL) (e.g. https://www.beispielquellsite.de/vondabinichkommen.html/)
    • the hostname and IP address of the device being accessed from (e.g. COMPUTERNAME and 194.23.43.121)
    • Date and time
    • in files, the so-called web server log files

    How long is data stored?

    As a rule, the above data is stored for two weeks and then automatically deleted. We do not pass on this data, but we cannot rule out that this data will be viewed by authorities in the event of illegal behavior.

    In short: Your visit is logged by our provider (company that runs our website on special computers (servers)), but we do not give your data without consent continue!

    Legal basis

    The lawfulness of the processing of personal data in the context of web hosting results from Article 6 Paragraph 1 lit. f GDPR (protection of legitimate interests), because the use of professional hosting with a provider is necessary to keep the company secure on the Internet and present it in a user-friendly way and to be able to track attacks and claims from this if necessary.

    There is usually a contract between us and the hosting provider for order processing in accordance with Art. 28 f. GDPR, which ensures compliance with data protection and guarantees data security.

    United Domains Privacy Policy

    We use United Domains for our website, including a web hosting provider. Service provider is the German company united-domains AG, Gautinger Straße 10, 82319 Starnberg, Germany. You can find out more about the data processed by using United Domains in the data protection declaration at https://www.united-domains.de/unternehmen/datenschutz/ .

    Google Analytics Privacy Policy

    Google Analytics Privacy Policy Summary
    👥 Affected: Visitors to the website
    🤝 Purpose: Evaluation of visitor information to optimize the website.
    📓 Processed data: Access statistics, data such as locations of access, device data, access duration and time, navigation behavior, click behavior and IP addresses. More details can be found below in this data protection declaration.
    📅 Storage period: depends on the properties used
    ⚖️ Legal basis: Article 6 (1) lit. a GDPR (consent), Article 6 (1) lit. f GDPR (legitimate interests)

    What is Google Analytics?

    On our website we use the analysis tracking tool Google Analytics (GA) from the American company Google Inc. For Europe, the company is Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) for all Google services responsible. Google Analytics collects data about your actions on our website. For example, if you click on a link, this action is stored in a cookie and sent to Google Analytics. The reports we receive from Google Analytics allow us to better tailor our website and service to your needs. In the following we will go into more detail about the tracking tool and, above all, inform you about which data is stored and how you can prevent this.

    Google Analytics is a tracking tool used to analyze data traffic on our website. In order for Google Analytics to work, a tracking code is built into the code of our website. When you visit our website, this code records various actions that you take on our website. As soon as you leave our website, this data is sent to the Google Analytics servers and stored there.

    Google processes the data and we receive reports on your user behavior. These reports may include the following:

    • Target group reports: We use target group reports to get to know our users better and know more precisely who is interested in our service.
    • Ad reports: Ad reports make it easier for us to analyze and improve our online advertising.
    • Acquisition Reports: Acquisition reports provide us with helpful information on how to attract more people to our service.
    • Behaviour reports: Here we learn how you interact with our website. We can understand the path you take on our site and which links you click on.
    • Conversion reports: Conversion is a process in which you perform a desired action based on a marketing message. For example, when you go from being a mere website visitor to a buyer or newsletter subscriber. These reports enable us to learn more about how our marketing measures are resonating with you. This is how we want to increase our conversion rate.
    • Real-time reports: Here we always know immediately what is happening on our website. For example, we can see how many users are reading this text.

    Why do we use Google Analytics on our website?

    Our goal with this website is clear: we want to offer you the best possible service. The statistics and data from Google Analytics help us to achieve this goal.

    The statistically evaluated data give us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimize our site so that interested people can find it more easily on Google. On the other hand, the data helps us to better understand you as a visitor. We therefore know exactly what we need to improve on our website in order to offer you the best possible service. The data also helps us to carry out our advertising and marketing measures more individually and cost-effectively. After all, it only makes sense to show our products and services to people who care.

    What data is stored by Google Analytics?

    Google Analytics uses a tracking code to create a random, unique ID that is linked to your browser cookie. This is how Google Analytics recognizes you as a new user. The next time you visit our site, you will be recognized as a "returning" user. All collected data is stored together with this user ID. This makes it possible to evaluate pseudonymous user profiles in the first place.

    In order to be able to analyze our website with Google Analytics, a property ID must be included in the tracking code. The data is then stored in the corresponding property. For each newly created property, the Google Analytics 4 property is the default. Alternatively, you can also create the Universal Analytics property. Depending on the property used, data is stored for different lengths of time.

    Tags such as cookies and app instance IDs are used to measure your interactions on our website. Interactions are any type of action you take on our website. If you also use other Google systems (such as a Google account), data generated via Google Analytics can be linked to third-party cookies. Google does not pass on Google Analytics data unless we as the website operator approve it. There may be exceptions if required by law.

    The following cookies are used by Google Analytics:

    Name: _ga
    Value: 2.1326744211.152311912893-5
    Purpose: By default, analytics.js uses the _ga cookie to store the user ID. Basically, it is used to differentiate between website visitors.
    Expiry date: after 2 years

    Name: _gid
    Value: 2.1687193234.152311912893-1
    Purpose: The cookie is also used to distinguish between website visitors
    Expiry date: after 24 hours

    Name: _gat_gtag_UA_
    Value: 1
    Purpose: Used to lower the request rate. If Google Analytics is provided via Google Tag Manager, this cookie will be named _dc_gtm_ .
    Expiry date: after 1 minute

    Name: AMP_TOKEN
    Value: no details
    Purpose:The cookie has a token that can be used to retrieve a User ID from the AMP Client ID service. Other possible values ​​indicate an opt-out, a request, or an error.
    Expiry date: after 30 seconds to a year

    Name: __utma
    Value: 1564498958.1564498958.1564498958.1
    Purpose: This cookie is used to track your behavior on the website and measure performance. The cookie is updated each time information is sent to Google Analytics.
    Expiry date: after 2 years

    name: __utmt
    value: 1
    purpose: The cookie is used like _gat_gtag_UA_ to throttle the request rate.
    Expiry date: after 10 minutes

    Name: __utmb
    Value: 3.10.1564498958
    Purpose: This cookie is used to determine new sessions. It is updated every time new data or information is sent to Google Analytics.
    Expiry date: after 30 minutes

    name: __utmc
    value: 167421564
    purpose: This cookie is used to set new sessions for returning visitors. This is a session cookie and is only stored until you close the browser.
    Expiry date: After closing the browser

    Name:__utmz
    Value:m|utmccn=(referral)|utmcmd=referral|utmcct=/
    Purpose: The cookie is used to identify the source of traffic to our website. This means that the cookie stores where you came from on our website. This may have been another page or an advertisement.
    Expiry date: after 6 months

    Name: __utmv
    Value: not specified
    Purpose: The cookie is used to store custom user data. It is always updated when information is sent to Google Analytics.
    Expiry date:after 2 years

    Note: This list cannot claim to be complete, since Google is constantly changing the choice of its cookies.

    Here we show you an overview of the most important data collected with Google Analytics:

    Heatmaps: Google creates so-called heatmaps. Heatmaps show exactly those areas that you click on. This is how we get information about where you are on our site.

    Session duration: Google describes the session duration as the time you spend on our site without leaving the site. If you have been inactive for 20 minutes, the session ends automatically.

    bounce rate Bounce rate): A bounce is when you only view one page on our website and then leave our website

    Account creation: If you create an account or place an order on our website, Google Analytics collects this data.

    IP address: The IP address is only displayed in abbreviated form so that no clear assignment is possible.

    Location: The country and your approximate location can be determined via the IP address. This process is also referred to as IP location determination.

    Technical information: The technical information includes, among other things, your browser type, your Internet provider or your screen resolution.

    Source of origin: Google Analytics or we are of course also interested in which website or which advertisement you came to our site from.

    Further data is contact details, any ratings, playing media (e.g. if you play a video on our site), sharing content via social media or adding it to your favorites. The list does not claim to be complete and only serves as a general guide to data storage by Google Analytics.

    How long and where is the data stored?

    Google has distributed their servers all over the world. Most of the servers are located in America and consequently your data is mostly stored on American servers. Here you can read exactly where the Google data centers are located: https://www.google.com/about/datacenters/inside/locations/?hl=de

    Your data is distributed across different physical media. This has the advantage that the data can be called up more quickly and is better protected against manipulation. Every Google data center has emergency programs for your data. If, for example, Google's hardware fails or natural disasters bring servers down, the risk of a service interruption at Google remains small.

    The retention period of the data depends on the properties used. When using the newer Google Analytics 4 properties, the retention period for your user data is fixed at 14 months. For other so-called event data, we have the option of choosing a retention period of 2 months or 14 months.

    With Universal Analytics properties, Google Analytics has a standardized retention period of 26 months for your user data. Then your user data will be deleted. However, we have the option of choosing the retention period for user data ourselves. We have five variants available for this:

    • Deleted after 14 months
    • Deletion after 26 months
    • deletion after 38 months
    • Deleted after 50 months
    • No automatic deletion

    There is also the option that data will only be deleted if you no longer visit our website within the period of time chosen by us. In this case, the retention period will be reset each time you visit our website again within the specified period.

    When the specified period has expired, the data will be deleted once a month. This retention period applies to your data associated with cookies, user recognition and advertising IDs (e.g. cookies from the DoubleClick domain). Report results are based on aggregated data and are stored independently of user data. Aggregated data is a merging of individual data into a larger unit.

    How can I delete or update my data?prevent data storage?

    Under European Union data protection law, you have the right to access, update, delete or restrict your data by using the browser add-on to disable Google Analytics JavaScript (ga.js, analytics. js, dc.js) prevent Google Analytics from using your data. You can download and install the browser add-on at https://tools.google.com/dlpage/gaoptout?hl=de . Please note that this add-on only disables data collection by Google Analytics.

    If you generally want to deactivate, delete or manage cookies, you will find the corresponding links to the respective instructions for the most popular browsers under the "Cookies" section.

    Legal basis

    The use of Google Analytics requires your consent, which we have obtained with our cookie popup. According to Art. 6 Paragraph 1 lit. a GDPR (consent) the legal basis for the processing of personal data, as it may occur when it is collected by web analytics tools.

    In addition to consent, we have a legitimate interest in analyzing the behavior of website visitors and thus improving our offer technically and economically. With the help of Google Analytics, we can identify errors on the website, identify attacks and improve profitability. The legal basis for this is Art. 6 Paragraph 1 lit. f GDPR (legitimate interests). However, we only use Google Analytics if you have given your consent.

    Google also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the legality and security of data processing.

    Google uses so-called standard contractual clauses (= Art. 46. Para. 2 and 3 GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data also comply with European data protection standards if they are transferred to third countries (such as the USA) and stored there. Through these clauses, Google undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de

    The Google Ads Data Processing Terms, which correspond to the standard contractual clauses and also apply to Google Analytics, can be found at https://business.safety.google/adsprocessorterms /.

    We hope we were able to give you the most important information about data processing by Google Analytics. If you want to learn more about the tracking service, we recommend these two links: http://www.google.com/analytics/terms/de.html and https://support.google.com/analytics/answer/6004245?hl=en.

    Email marketing introduction

    Email marketing summary
    👥 Affected: Newsletter subscribers
    🤝 Purpose: Direct advertising by email, notification of systemically relevant events
    📓 Data processed: Data entered at the registration, however, at least the e-mail address. You can find more details on this in the e-mail marketing tool used.
    📅 Storage period: Duration of the subscription
    ⚖️ Legal basis: Art. 6 para. 1 lit .a GDPR (consent), Article 6(1)(f) GDPR (legitimate interests)

    What is email marketing?

    In order to keep you up to date, we also use e-mail marketing. If you have agreed to receive our e-mails or newsletters, your data will also be processed and stored. Email marketing is a subset of online marketing. It involves emailing news or general information about a company, product, or service to a specific group of people who are interested.

    If you want to take part in our e-mail marketing (usually via newsletter), you usually just have to register with your e-mail address. To do this, fill out an online form and send it off. However, it can also happen that we ask you for your title and your name so that we can write to you personally.

    In principle, subscribing to newsletters works with the help of the so-called "double opt-in procedure". After you have registered for our newsletter on our website, you will receive an e-mail confirming your subscription to the newsletter. This ensures that you own the e-mail address and that no one has signed up with someone else's e-mail address. We or a notification tool used by us logs every single registration. This is necessary so that we can also prove the legally correct registration process. As a rule, the time of registration, the time of registration confirmation and your IP address are saved. In addition, it is also logged if you make changes to your saved data.

    Why do we use email marketing?

    Of course we want to stay in touch with you and always present you with the most important news about our company. Among other things, we use e-mail marketing – often just referred to as “newsletter” – as an essential part of our online marketing. If you consent to this or it is permitted by law, we will send you newsletters, system emails or other notifications by email. When we use the term "newsletter" in the following text, we mean mainly e-mails that are sent regularly. Of course we don't want to bother you in any way with our newsletter. That's why we always try to offer only relevant and interesting content. For example, you can find out more about our company, our services or products. Since we are always improving our offers, you will always find out via our newsletter when there is news or when we are currently offering special, lucrative promotions. If we commission a service provider who offers a professional sending tool for our e-mail marketing, we do this in order to be able to offer you fast and secure newsletters. The purpose of our e-mail marketing is basically to inform you about new offers and also to get closer to our business goals.

    What data is processed?

    If you become a subscriber to our newsletter via our website, you confirm membership in an email list by email.In addition to IP address and e-mail address, your title, name, address and telephone number can also be saved, but only if you agree to this data storage. The data marked as such are necessary so that you can participate in the service offered. Providing this information is voluntary, but not providing it will result in you not being able to use the service. In addition, information about your device or your preferred content can be stored on our website. For more information about how we store data when you visit a website, see the Automatic Data Storage section. We record your declaration of consent so that we can always prove that it complies with our laws.

    Duration of data processing

    If you remove your e-mail address from our e-mail/newsletter distribution list, we may store your address for up to three years on the basis of our legitimate interests so that we can still prove your consent at the time. We are only allowed to process this data if we have to defend ourselves against any claims.

    If you confirm, however, that you have given us your consent to subscribe to the newsletter, you can submit an individual deletion request at any time. If you object to the consent permanently, we reserve the right to save your e-mail address in a blacklist. As long as you have voluntarily subscribed to our newsletter, we will of course keep your e-mail address.

    Right to object

    You can cancel your subscription to the newsletter at any time. All you have to do is revoke your consent to registering for the newsletter. This normally only takes a few seconds or one or two clicks. Most of the time you will find a link at the end of each email to unsubscribe from the newsletter. If you really cannot find the link in the newsletter, please contact us by email and we will immediately cancel your newsletter subscription.

    Legal basis

    Our newsletter is sent on the basis of your consent (Article 6 (1) (a) GDPR). This means that we may only send you a newsletter if you have previously actively registered for it. If necessary, we can also send you advertising messages on the basis of § 7 Para. 3 UWG, provided that you have become our customer and have not objected to the use of your e-mail address for direct advertising.

    Information on special e-mail marketing services and how they process personal data can be found - if available - in the following sections.

    Facebook Privacy Policy

    Facebook Privacy Policy Summary
    👥 Affected: Visitors to the website
    🤝 Purpose: Optimization of our service
    📓 Processed data: Data such as customer data, data on user behavior, information about your device and your IP address.
    You can find more details on this below in the data protection declaration.
    📅 Duration of storage: until the data is no longer useful for Facebook's purposes
    ⚖️ Legal basis: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests)

    What are Facebook tools?

    We use selected Facebook tools on our website. Facebook is a social media network operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. These tools allow us to offer you and people who are interested in our products and services the best possible offer.

    If data is collected and forwarded from you via our embedded Facebook elements or via our Facebook page (fan page), both we and Facebook Ireland Ltd are responsible for this. Facebook is solely responsible for the further processing of this data. Our joint commitments have also been enshrined in a publicly available agreement at https://www.facebook.com/legal/controller_addendum . This states, for example, that we must clearly inform you about the use of Facebook tools on our site. Furthermore, we are also responsible for ensuring that the tools are securely integrated into our website in accordance with data protection law. Facebook, on the other hand, is responsible for the data security of Facebook products, for example. If you have any questions about data collection and data processing by Facebook, you can contact the company directly. If you direct the question to us, we are obliged to forward it to Facebook.

    In the following we give an overview of the various Facebook tools, what data is sent to Facebook and how you can delete this data.

    In addition to many other products, Facebook also offers the so-called "Facebook Business Tools". This is the official name of Facebook. But since the term is hardly known, we decided to just call them Facebook tools. These include:

    • Facebook Pixel
    • social plug-ins (such as the "Like" or "Share" button)
    • Facebook Login
    • Account Kit
    • APIs (programming interface)
    • SDKs (collection of programming tools)
    • Platform integrations
    • Plugins
    • codes
    • Specifications
    • Documentation
    • technologies and services

    Through these tools, Facebook expands services and has the ability to obtain information about user activities outside of Facebook.

    Why do we use Facebook tools on our website?

    We only want to show our services and products to people who are really interested in them. With the help of advertisements (Facebook ads) we can reach exactly these people. In order to be able to show users appropriate advertising, however, Facebook needs information about people's wishes and needs. In this way, information about user behavior (and contact details) is made available to the company on our website. As a result, Facebook collects better user data and can show interested people appropriate advertising about our products or services. The tools thus enable tailor-made advertising campaigns on Facebook.

    Facebook calls data about your behavior on our website “event data”. These are also used for measurement and analysis services. Facebook can thus create "campaign reports" on our behalf about the effect of our advertising campaigns. Furthermore, through analyzes we get a better insight into how you use our services, website or products. As a result, we use some of these tools to optimize your user experience on our website. For example, you can use the social plug-ins to share content on our site directly on Facebook.

    What data is stored by Facebook tools?

    By using individual Facebook tools, personal data (customer data) can be sent to Facebook. Depending on the tools used, customer data such as name, address, telephone number and IP address can be sent.

    Facebook uses this information to match the data with the data it has from you (if you are a Facebook member).Before customer data is transmitted to Facebook, a so-called "hashing" takes place. This means that a data set of any size is transformed into a character string. This is also used to encrypt data.

    In addition to the contact details, "event data" is also transmitted. "Event data" means the information that we receive about you on our website. For example, which subpages you visit or which products you buy from us. Facebook does not share the information it receives with third parties (such as advertisers) unless the company has explicit permission or is legally required to do so. "Event data" may also be linked to contact information. This allows Facebook to offer better personalized advertising. After the matching process already mentioned, Facebook deletes the contact data again.

    In order to be able to deliver advertisements in an optimized manner, Facebook only uses the event data if it has been combined with other data (which was collected by Facebook in another way). Facebook also uses this event data for security, protection, development and research purposes. Much of this data is transmitted to Facebook via cookies. Cookies are small text files that are used to store data or information in browsers. Depending on the tools used and whether you are a Facebook member, a different number of cookies will be created in your browser. In the descriptions of the individual Facebook tools, we go into more detail about individual Facebook cookies. You can also find general information about the use of Facebook cookies at https://www.facebook.com/policies/cookies.

    How long and where is the data stored?

    Basically, Facebook stores data until it is no longer needed for its own services and Facebook products. Facebook has servers all over the world where its data is stored. However, customer data will be deleted within 48 hours after it has been compared with your own user data.

    How can I delete my data or prevent data storage?

    According to the General Data Protection Regulation, you have the right to information, correction, transferability and deletion of your data.

    The data will only be completely deleted if you completely delete your Facebook account. And this is how deleting your Facebook account works:

    1) Click Settings on the right side of Facebook.

    2) Then click on "Your Facebook information" in the left column.

    3) Now click “Deactivation and Deletion”.

    4) Now select "Delete account" and then click on "Next and delete account"

    5) Now enter your password, click on "Next" and then on "Delete account"

    The data that Facebook receives via our site is stored, among other things, via cookies (e.g. with social plugins). You can deactivate, delete or manage individual or all cookies in your browser. Depending on which browser you use, this works in different ways. Under the "Cookies" section you will find the relevant links to the relevant instructions for the most popular browsers.

    If you generally do not want any cookies, you can set up your browser so that it always informs you when a cookie is to be set. So you can decide for each individual cookie whether you allow it or not.

    Legal basis

    If you have agreed that your data can be processed and stored by integrated Facebook tools, this consent is the legal basis for data processing (Art. 6 Para. 1 lit. a DSGVO ).In principle, your data will also be processed on the basis of our legitimate interest (Art 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners stored and processed. However, we only use the tools if you have given your consent. Most social media platforms also set cookies on your browser to store data. We therefore recommend that you read our privacy statement on cookies carefully and consult Facebook's privacy policy or cookie policy.

    Facebook also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the legality and security of data processing.

    Facebook uses so-called standard contractual clauses (= Art. 46. Para. 2 and 3 GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data also comply with European data protection standards if they are transferred to third countries (such as the USA) and stored there. Through these clauses, Facebook undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de

    The Facebook data processing terms, which correspond to the standard contractual clauses, can be found at https://www.facebook.com/legal/terms/dataprocessing.

    We hope we have given you the most important information about the use and data processing by the Facebook tools. If you want to learn more about how Facebook uses your data, we recommend the data guidelines at https://www.facebook.com/about/privacy/update.

    Facebook Social Plugins Privacy Policy

    So-called social plug-ins from the company Facebook Inc. are installed on our website. You can recognize these buttons by the classic Facebook logo, such as the "Like" button (the hand with the thumb raised) or by a clear "Facebook plug-in" label. A social plugin is a small piece of Facebook that is integrated into our site. Each plug-in has its own function. The most used functions are the familiar “Like” and “Share” buttons.

    The following social plug-ins are offered by Facebook:

    • “Save” button
    • Like button, share, send and quote
    • Page Plugin
    • Comments
    • Messenger plugin
    • Embedded posts and video players
    • Group plugin

    On https://developers.facebook.com/docs/plugins you will find more detailed information on how the individual plug-ins are used. On the one hand, we use the social plug-ins to offer you a better user experience on our site and, on the other hand, because Facebook can use them to optimize our advertisements.

    If you have a Facebook account or facebook.com , Facebook has already set at least one cookie in your browser. In this case, your browser sends information to Facebook via this cookie as soon as you visit our site or with social plug-ins (e.g. the "Like" button).

    The information received will be deleted or made anonymous within 90 days. According to Facebook, this data includes your IP address, which website you visited, the date, time and other information relating to your browser.

    To prevent Facebook from collecting a lot of data during your visit to our website and connecting it to Facebook data, you must log out of Facebook while you are visiting the website.

    If you are not logged into Facebook or do not have a Facebook account, your browser will send less information to Facebook because you have fewer Facebook cookies. Nevertheless, data such as your IP address or which website you visit can be transmitted to Facebook. We would like to expressly point out that we do not know the exact content of the data. However, based on our current state of knowledge, we try to inform you as much as possible about data processing. You can also read about how Facebook uses the data in the company's data guidelines at https://www.facebook.com/about/privacy/update .

    The following cookies are at least set in your browser when you visit a website with social plug-ins from Facebook:

    Name: dpr
    Value: Not specified
    Purpose: This cookie is used to make the social plug-ins work on our website.
    Expiry date: after the end of the session

    Name: fr
    Value: 0jieyh4311912893c2GnlufEJ9..Bde09j…1.0.Bde09j
    purpose : The cookie is also necessary for the plug-ins to work properly.
    Expiry date:: after 3 months

    Note: These cookies were set after testing, even if you are not a Facebook member.

    If you are logged in to Facebook, you can change your settings for advertisements yourself at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. If you are not a Facebook user, you can basically manage your usage-based online advertising on http://www.youronlinechoices.com/de/praferenzmanagement/. There you have the option of deactivating or activating providers.

    If you want to learn more about Facebook's privacy policy, we recommend the company's own privacy policy at https://www.facebook.com/policy.php.

    Online Marketing Introduction

    Online marketing data protection declaration summary
    👥 Affected: Visitors to the website
    🤝 Purpose: Evaluation of visitor information to optimize the website.
    📓 Processed data: Access statistics, the data such as locations of access, device data, access duration and time, navigation behavior, click behavior and IP addresses. Personal data such as name or e-mail address can also be processed. You can find more details on this with the online marketing tool used in each case.
    📅 Storage period: depends on the online marketing tool used
    ⚖️ Legal basis: Art. 6 (1) lit. a GDPR (consent), Art 6 paragraph 1 lit.f GDPR (legitimate interests)

    What is online marketing?

    Online marketing refers to all measures that are carried out online in order to achieve marketing goals such as increasing brand awareness or closing a deal. Our online marketing measures also aim to draw people's attention to our website. In order to be able to show our offer to many interested people, we do online marketing. Most of the time it is online advertising, content marketing or search engine optimization. Personal data is also stored and processed so that we can use online marketing efficiently and in a targeted manner. On the one hand, the data helps us to show our content only to those people who are interested in it and, on the other hand, we can measure the advertising success of our online marketing measures.

    Why do we use online marketing tools?

    We want to show our website to everyone who is interested in what we have to offer. We are aware that this is not possible without deliberate measures. That's why we do online marketing. There are various tools that make it easier for us to work on our online marketing measures and, in addition, always provide suggestions for improvement via data. This allows us to target our campaigns more precisely to our target group. The purpose of these online marketing tools used is ultimately to optimize our offer.

    What data is processed?

    So that our online marketing works and the success of the measures can be measured, user profiles are created and data is stored, for example, in cookies (small text files). With the help of this data, we can not only place advertising in the classic way, but also display our content directly on our website in the way you prefer. There are various third-party tools that offer these functions and collect and store data from you accordingly. The named cookies store, for example, which web pages you visited on our website, how long you viewed these pages, which links or buttons you clicked or from which website you came to us. In addition, technical information can also be stored. For example, your IP address, which browser you use, which device you use to visit our website or the time when you accessed our website and when you left it again. If you have consented to us also determining your location, we can also store and process this.

    Your IP address will be stored in pseudonymised form (i.e. abbreviated). Unique data that directly identifies you as a person, such as your name, address or email address, is only stored in a pseudonymised form as part of the advertising and online marketing process. So we cannot identify you as a person, we have only stored the pseudonymised, stored information in the user profiles.

    The cookies may also be used, analyzed and used for advertising purposes on other websites that work with the same advertising tools. The data can then also be stored on the servers of the advertising tool providers.

    In exceptional cases, unique data (name, email address, etc.) can also be stored in the user profiles. This storage occurs, for example, if you are a member of a social media channel that we use for our online marketing measures and the network connects previously received data with the user profile.

    With all the advertising tools we use, which store data from you on their servers, we only ever receive summarized information and never data that makes you identifiable as an individual. The data only shows how well the advertising measures set worked. For example, we can see what actions have persuaded you or other users to come to our website and purchase a service or product there. Based on the analyzes we can improve our advertising offer in the future and adapt it even more precisely to the needs and wishes of interested persons.

    Duration of data processing

    We will inform you below about the duration of data processing if we have further information on this. In general, we only process personal data for as long as is absolutely necessary for the provision of our services and products. Data stored in cookies are stored for different lengths of time. Some cookies are already deleted after leaving the website, others can be stored in your browser for several years. In the respective data protection declarations of the individual providers you will usually receive detailed information about the individual cookies that the provider uses.

    Right to object

    You also have the right and the option to revoke your consent to the use of cookies or third-party providers at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection by cookies by managing, deactivating or deleting the cookies in your browser. The lawfulness of the processing until the revocation remains unaffected.

    Since cookies can usually be used with online marketing tools, we also recommend our general data protection declaration on cookies. To find out exactly which of your data is stored and processed, you should read the data protection declarations of the respective tools.

    Legal basis

    If you have consented to the use of third-party providers, the legal basis for the corresponding data processing is this consent. According to Art. 6 paragraph 1 lit. a GDPR (consent) the legal basis for the processing of personal data, as it may occur when it is collected by online marketing tools.

    We also have a legitimate interest in measuring online marketing measures in an anonymous form in order to use the data obtained to optimize our offer and our measures. The corresponding legal basis for this is Art. 6 Paragraph 1 lit. f GDPR (legitimate interests). However, we only use the tools if you have given your consent.

    Information on special online marketing tools - if available - can be found in the following sections.

    Google Ads (Google AdWords) conversion tracking data protection declaration summary
    👥 Data subjects: visitors to the website
    🤝 Purpose: economic success and the optimization of our service.
    📓 Processed data: Access statistics, which include data such as access locations, device data, access duration and time, navigation behavior, click behavior and IP addresses. Personal data such as name or e-mail address can also be processed.
    📅 Storage period: Conversion cookies usually expire after 30 days and do not transmit any personal data
    ⚖️ Legal basis: Art. 6 para. 1 lit a GDPR (consent), Article 6 Paragraph 1 lit.f GDPR (legitimate interests)

    What is Google Ads conversion tracking?

    We use Google Ads (formerly Google AdWords) as an online marketing measure to advertise our products and services. This is how we want to make more people aware of the high quality of our offers on the Internet. As part of our advertising measures through Google Ads, we use conversion tracking from Google Inc. on our website. In Europe, however, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. This free tracking tool allows us to better tailor our advertising to your interests and needs. In the following article we want to go into more detail about why we use conversion tracking, what data is stored and how you can prevent this data storage.

    Google Ads (formerly Google AdWords) is the in-house online advertising system of the company Google Inc. We are convinced of the quality of our offer and want as many people as possible to get to know our website. In the online area, Google Ads offers the best platform for this. Of course, we also want to get a precise overview of the cost-benefit factor of our advertising campaigns. That's why we use the Google Ads conversion tracking tool.

    But what exactly is a conversion? A conversion occurs when you change from a purely interested website visitor to an acting visitor. This always happens when you click on our ad and then perform another action, such as visiting our website. We use Google's conversion tracking tool to record what happens after a user clicks on our Google Ads ad. For example, we can see whether products are being purchased, services are being used or whether users have signed up for our newsletter.

    Why do we use Google Ads conversion tracking on our website?

    We use Google Ads to draw attention to our offer on other websites. The aim is that our advertising campaigns really only reach those people who are interested in our offers. With the conversion tracking tool, we see which keywords, ads, ad groups and campaigns lead to the desired customer actions. We see how many customers interact with our ads on a device and then convert. This data enables us to calculate our cost-benefit factor, measure the success of individual advertising measures and consequently optimize our online marketing measures. With the help of the data obtained, we can also make our website more interesting for you and adapt our advertising offer even more individually to your needs.

    What data is stored with Google Ads conversion tracking?

    We have included a conversion tracking tag or code snippet on our website to better analyze certain user actions. If you now click on one of our Google Ads ads, the "Conversion" cookie from a Google domain will be stored on your computer (usually in the browser) or mobile device. Cookies are small text files that store information on your computer.

    Here are the data of the most important cookies for Google's conversion tracking:

    Name: Conversion
    Value: EhMI_aySuoyv4gIVled3Ch0llweVGAEgt-mr6aXd7dYlSAGQ311912893-3
    Purpose: This cookie saves every conversion you make on our site after you came to us via a Google Ad.
    Expiry date: after 3 months

    Name: _gac
    Value: 1.1558695989EAIaIQobChMIiOmEgYO04gIVj5AYCh2CBAPrEAAYASAAEgIYQfD_BwE
    Purpose: This is a classic Google Analytics cookie and is used to record various actions on our website.
    Expiry date:after 3 months

    Note: The _gac cookie only appears in connection with Google Analytics. The list above does not claim to be complete, since Google also uses other cookies for analytical evaluation.

    As soon as you complete an action on our website, Google recognizes the cookie and saves your action as a so-called conversion. As long as you surf our website and the cookie has not yet expired, we and Google will recognize that you have found us via our Google Ads ad. The cookie is read and sent back to Google Ads with the conversion data. It is also possible that other cookies are used to measure conversions. Google Ads conversion tracking can be further refined and improved with the help of Google Analytics. For ads that Google displays in various places on the web, cookies with the name “__gads” or “_gac” may be set under our domain. Since September 2017, analytics.js has been storing various campaign information with the _gac cookie. The cookie saves this data as soon as you visit one of our pages for which Google Ads automatic tagging has been set up. Unlike cookies set for Google domains, Google can only read these conversion cookies when you are on our website. We do not collect or receive any personal data. We get a report from Google with statistical evaluations. For example, we learn the total number of users who clicked on our ad and we see which advertising measures were well received.

    How long and where is the data stored?

    At this point we would like to point out that we have no influence on how Google uses the collected data. According to Google, the data is encrypted and stored on secure servers. In most cases, conversion cookies expire after 30 days and do not transmit any personal data. The cookies named "Conversion" and "_gac" (used in connection with Google Analytics) have an expiry date of 3 months.

    How can I delete my data or prevent data storage?

    You have the option not to participate in Google Ads conversion tracking. If you deactivate the Google conversion tracking cookie via your browser, you block the conversion tracking. In this case, you will not be included in the statistics of the tracking tool. You can change the cookie settings in your browser at any time. Each browser works a little differently. Under the "Cookies" section you will find the relevant links to the relevant instructions for the most popular browsers.

    If you generally do not want any cookies, you can set up your browser so that it always informs you when a cookie is to be set. You can decide for each individual cookie whether you allow the cookie or not. Downloading and installing this browser plug-in on https://support.google.com/ads/answer/7395996 will also remove all "advertising cookies “ disabled. Keep in mind that by disabling these cookies you will not prevent the ads, only the personalized advertising.

    Legal basis

    If you have consented to the use of Google Ads Conversion Tracking, the legal basis for the corresponding data processing is this consent.According to Art 6 Paragraph 1 lit Ads conversion tracking may occur.

    Our side also has a legitimate interest in using Google Ads Conversion Tracking to optimize our online service and our marketing measures. The corresponding legal basis for this is Art. 6 Paragraph 1 lit. f GDPR (legitimate interests). However, we only use Google Ads Conversion Tracking if you have given your consent.

    Google also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the legality and security of data processing.

    Google uses so-called standard contractual clauses (= Art. 46. Para. 2 and 3 GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data also comply with European data protection standards if they are transferred to third countries (such as the USA) and stored there. Through these clauses, Google undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de

    The data processing conditions for Google advertising products (Google Ads Controller-Controller Data Protection Terms), which correspond to the standard contractual clauses and also apply to Google Ads, can be found at https://business.safety .google/adscontrollerterms/.

    If you would like to find out more about data protection at Google, we recommend Google's general data protection declaration: https://policies.google.com/privacy?hl=de.

    Google AdSense Privacy Policy

    Google AdSense Privacy Policy Summary
    👥 Affected: Visitors to the website
    🤝 Purpose: Economic success and the optimization of our service.
    📓 Processed data: Access statistics, data such as locations of access, device data, access duration and time, navigation behavior, click behavior and IP addresses. Personal data such as name or e-mail address can also be processed.
    📅 Duration of storage: depends on the cookies used and stored data
    ⚖️ Legal bases: Art. 6 Para. 1 lit. a GDPR (consent), Art 6 paragraph 1 lit.f GDPR (legitimate interests)

    What is Google AdSense?

    We use Google AdSense on this website. This is an advertising program from Google Inc. In Europe, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. With Google AdSense, we can display advertisements on this website that match our topic. We offer you advertisements that ideally represent real added value for you.In the course of this data protection text about Google AdSense, we explain to you why we use Google AdSense on our website, which of your data is processed and stored and how you can prevent this data storage

    The Google AdSense advertising program has been around since 2003. In contrast to Google Ads (formerly: Google AdWords), you cannot place your own advertising here. Advertisements on websites such as ours are played out via Google AdSense. The biggest advantage of this advertising service compared to some others is that Google AdSense only shows you ads that match our content. Google has its own algorithm that calculates which ads you see. Of course, we only want to show you advertising that interests you and offers added value. Based on your interests or your user behavior and based on our offer, Google checks which advertisements are suitable for our website and for our users. At this point we would also like to mention that we are not responsible for the selection of advertisements. With our website we only offer the advertising space. The selection of the displayed advertising is made by Google. Since August 2013, the ads have also been adapted to the respective user interface. This means that whether you visit our website from your smartphone, PC or laptop, the ads adapt to your end device.

    Why do we use Google AdSense on our website?

    Running a quality website takes a lot of dedication and effort. Basically, we never finish working on our website. We always try to maintain our site and keep it as up-to-date as possible. Of course, we also want to achieve economic success with this work. That's why we chose advertising as a source of income. However, the most important thing for us is that these ads do not disturb your visit to our website. With the help of Google AdSense, you will only be offered advertising that matches our topics and your interests.

    Similar to how Google indexes a website, a bot examines the appropriate content and offers on the page. The content of the advertisements is then adapted and presented. In addition to overlapping content between ads and website offerings, AdSense also supports interest-based targeting. This means that Google also uses your data to offer advertising tailored to you. In this way you receive advertising that ideally offers you real added value and we have a better chance of earning a little something.

    What data is stored by Google AdSense?

    So that Google AdSense can display tailor-made advertising tailored to you, cookies are used, among other things. Cookies are small text files that store certain information on your computer.

    In AdSense, cookies are intended to enable better advertising. The cookies do not contain any personally identifiable data. It should be noted, however, that Google considers data such as "pseudonymous cookie IDs" (name or another identification feature is replaced by a pseudonym) or IP addresses as non-personally identifiable information. However, within the framework of the GDPR, this data can be considered personal data. Google AdSense sends a cookie to the browser after every impression (this is always the case when you see an ad), every click and every other activity that leads to a call to the Google AdSense servers. If the browser accepts the cookie, it will be saved there.

    Third-party providers may place and read cookies in your browser as part of AdSense.Use web beacons to store data you receive from serving ads on the website. Web beacons are small graphics that do log file analysis and log file recording. This analysis enables a statistical evaluation for online marketing.

    Google can use these cookies to collect certain information about your user behavior on our website. These include:

    • Information on how you deal with an ad (clicks, impressions, mouse movements)
    • Information as to whether an ad previously appeared in your browser. This data helps to stop showing you an ad more often.

    In doing so, Google analyzes and evaluates the data on the advertising material displayed and your IP address. Google uses the data primarily to measure the effectiveness of an ad and to improve the advertising offer. This data is not linked to any personally identifiable information that Google may have about you through other Google services.

    In the following we present cookies that Google AdSense uses for tracking purposes. Here we refer to a test website that only has Google AdSense installed:

    name: uid
    value: 891269189311912893-8
    purpose: The cookie is stored under the domain adform.net. It provides a uniquely assigned, machine-generated user ID and collects data about activity on our website.
    Expiry date: after 2 months

    name: C
    value: 1
    purpose: This cookie identifies whether your browser accepts cookies. The cookie is stored under the domain track.adform.net
    Expiry date: after 1 month

    Name: cid
    Value: 8912691894970695056,0,0,0,0
    Purpose: This cookie is stored under the domain track.adform.net, stands for client ID and is used to improve advertising for you. It can direct more relevant advertisements to the visitor and helps improve campaign performance reports.
    Expiry date: after 2 months

    Name: IDE
    Value: zOtj4TWxwbFDjaATZ2TzNaQmxrU311912893-1
    Purpose: The cookie is stored under the domain doubleclick.net. It serves to register your actions after the advertisement or after clicking on the advertisement. This allows us to measure how well an advert is received by our visitors.
    Expiry date: after 1 month

    Name: test_cookie
    Value: not specified
    Purpose: The "test_cookies" can be used to check whether your browser supports cookies at all. The cookie is stored under the domain doubleclick.net
    Expiry date: after 1 month

    Name: CT592996
    Value:733366
    Purpose: Will be used under the Domain adform.net saved. The cookie is set as soon as you click on an advertisement. We were not able to find out more detailed information about the use of this cookie.
    Expiry date: after one hour

    Note: This list cannot claim to be complete, as experience has shown that Google changes the choice of its cookies again and again.

    How long and where is the data stored?

    Google collects your IP address and various activities that you carry out on the website.Cookies store this information about the interactions on our website. According to Google, the company collects and stores the information provided in a secure manner on its own Google servers in the USA.

    If you do not have a Google account or are not logged in, Google usually saves the collected data on your browser with a unique identifier (ID). The unique IDs stored in cookies are used, for example, to ensure personalized advertising. If you are logged into a Google account, Google may also collect personal information.

    You can delete some of the data stored by Google at any time (see next section). A lot of information stored in cookies is automatically deleted after a certain period of time. However, there is also data that is stored by Google over a longer period of time. This is the case if Google has to store certain data for an indefinite longer period for economic or legal reasons.

    How can I delete my data or prevent data storage?

    You always have the option of deleting or deactivating cookies that are on your computer. Exactly how this works depends on your browser. Under the "Cookies" section you will find the relevant links to the relevant instructions for the most popular browsers.

    If you generally do not want any cookies, you can set up your browser so that it always informs you when a cookie is to be set. You can decide for each individual cookie whether you allow the cookie or not. Downloading and installing this browser plug-in on https://support.google.com/ads/answer/7395996 will also remove all "advertising cookies “ disabled. Keep in mind that by disabling these cookies you will not prevent the ads, only the personalized advertising.

    If you have a Google account, you can disable personalized advertising on the website https://adssettings.google.com/authenticated . Here, too, you will continue to see ads, but these will no longer be tailored to your interests. However, the ads are displayed based on a few factors, such as your location, browser type, and search terms used.

    Legal basis

    If you have consented to the use of Google AdSense, the legal basis for the corresponding data processing is this consent. According to Art. 6 Paragraph 1 lit. a GDPR (consent) the legal basis for the processing of personal data, as it may occur when it is collected by Google AdSense.

    We also have a legitimate interest in using Google AdSense to optimize our online service and our marketing activities. The corresponding legal basis for this is Art. 6 Paragraph 1 lit. f GDPR (legitimate interests). However, we only use Google AdSense if you have given your consent.

    Google also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the legality and security of data processing.

    Google uses so-called standard contractual clauses (= Art. 46. Para. 2 and 3 GDPR).Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data also complies with European data protection standards when it is transferred to and stored in third countries (such as the USA) and is bound by these clauses Google, when processing your relevant data, will comply with the European data protection level, even if the data is stored, processed and managed in the USA. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de

    The data processing conditions for Google advertising products (Google Ads Controller-Controller Data Protection Terms), which correspond to the standard contractual clauses and also apply to Google AdSense, can be found at https://business.safety .google/adscontrollerterms/.

    You can find out what data Google collects and what they use this data for at https://www.google.com/intl/de/policies/privacy/ read.

    Cookie Consent Management Platform Summary
    👥 Affected: Website visitor
    🤝 Purpose: Obtaining and managing consent to certain cookies and thus the use of certain tools
    📓 Data processed: data to manage the set cookie settings such as IP address, time of consent, type of consent, individual consents. You can find more details on this with the tool used.
    📅 Storage period: Depends on the tool used, you have to be prepared for periods of several years
    ⚖️ Legal bases: Article 6 paragraph 1 lit. a GDPR (consent) , Art. 6 Para. 1 lit.f GDPR (legitimate interests)

    What is a Cookie Consent Management Platform?

    We use Consent Management Platform (CMP) software on our website, which makes it easier for us and you to handle the scripts and cookies used correctly and securely. The software automatically creates a cookie pop-up, scans and controls all scripts and cookies, offers you cookie consent required by data protection law and helps us and you to keep track of all cookies. Most cookie consent management tools identify and categorize all existing cookies. As a website visitor, you then decide for yourself whether and which scripts and cookies you want to allow or not. The following graphic represents the relationship between browser, web server and CMP.

    Consent Management Platform Überblick

    Why do we use a cookie management tool?

    Our goal is to offer you the best possible transparency in the area of ​​data protection. We are also legally obliged to do so. We want to inform you as well as possible about all tools and all cookies that can store and process data from you. It is also your right to decide which cookies you accept and which you do not. In order to grant you this right, we first need to know exactly which cookies landed on our website in the first place. Thanks to a cookie management tool, which regularly scans the website for all existing cookies, we know about all cookies and can provide you with GDPR-compliant information about them. You can then accept or reject cookies via the consent system.

    What data is processed?

    As part of our cookie management tool, you can manage each individual cookie yourself and have complete control over the storage and processing of your data. The declaration of your consent is saved so that we do not have to ask you each time you visit our website and we can also prove your consent if required by law. This is stored either in an opt-in cookie or on a server. Depending on the provider of the cookie management tool, the storage period of your cookie consent varies. This data (e.g. pseudonymous user ID, time of consent, detailed information on the cookie categories or tools, browser, device information) is usually stored for up to two years.

    Duration of data processing

    We will inform you below about the duration of data processing if we have further information on this. In general, we only process personal data for as long as is absolutely necessary for the provision of our services and products. Data stored in cookies are stored for different lengths of time. Some cookies are already deleted after leaving the website, others can be stored in your browser for several years. The exact duration of the data processing depends on the tool used, in most cases you should be prepared for a storage period of several years. In the respective data protection declarations of the individual providers you will usually receive precise information about the duration of the data processing.

    Right to object

    You also have the right and the option to revoke your consent to the use of cookies at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection by cookies by managing, deactivating or deleting the cookies in your browser.

    Information on special cookie management tools, if available, can be found in the following sections.

    Legal basis

    If you agree to cookies, your personal data will be processed and stored via these cookies. If we are allowed to use cookies with your consent (Article 6 paragraph 1 lit. a GDPR), this consent is also the legal basis for the use of cookies or the processing of your data. In order to be able to manage the consent to cookies and to enable you to give your consent, a cookie consent management platform software is used. The use of this software enables us to operate the website in an efficient, legally compliant manner, which represents a legitimate interest (Article 6 (1) (f) GDPR). .

    Payment provider initiation

    Payment provider data protection declaration summary
    👥 Affected parties: Visitors to the website
    🤝 Purpose: Enabling and optimizing the payment process on our website
    📓 Processed data: Data such as name, address, bank details (Account number, credit card number, passwords, TANs, etc.), IP address and contract data
    You can find more details on this in the payment provider tool used.
    📅 Storage period: depends on the payment provider used
    ⚖️ Legal basis: Art. 6 Paragraph 1 lit. b GDPR (performance of a contract)

    What is a payment provider?

    We use online payment systems on our website, which enable us and you to make a secure and smooth payment process. Among other things, personal data can be sent to the respective payment provider, stored and processed there.Payment providers are online payment systems that enable you to place an order via online banking. The payment processing is carried out by the payment provider you have chosen. We will then receive information about the payment made. Any user who has an active online banking account with PIN and TAN can use this method. There are hardly any banks that do not offer or accept such payment methods.

    Why do we use payment providers on our website?

    Of course we want to offer the best possible service with our website and our integrated online shop, so that you feel comfortable on our site and use our offers. We know that your time is precious and that payment processing in particular has to work quickly and smoothly. For these reasons, we offer you various payment providers. You can choose your preferred payment provider and pay in the usual way.

    What data is processed?

    The exact data that is processed naturally depends on the respective payment provider. In principle, however, data such as name, address, bank details (account number, credit card number, etc.) are transmitted. This is necessary data in order to be able to carry out a transaction at all. In addition, any contract data and user data, such as when you visit our website, what content you are interested in or which subpages you click on, can also be stored. Most payment providers also store your IP address and information about the computer you are using.

    The data is usually stored and processed on the servers of the payment providers. As the website operator, we do not receive this data. We are only informed whether the payment worked or not. For identity and credit checks, payment providers may forward data to the appropriate authority. The business and data protection principles of the respective provider always apply to all payment transactions. Therefore, please always take a look at the general terms and conditions and the data protection declaration of the payment provider. You also have the right, for example, to have data deleted or corrected at any time. Please contact the respective service provider regarding your rights (right of withdrawal, right to information and right to be affected).

    Duration of data processing

    We will inform you below about the duration of data processing if we have further information on this. In general, we only process personal data for as long as is absolutely necessary for the provision of our services and products. If it is required by law, for example in the case of accounting, this storage period can also be exceeded. We keep accounting documents (invoices, contract documents, bank statements, etc.) belonging to a contract for 10 years (§ 147 AO) and other relevant business documents for 6 years (§ 247 HGB) after they have been incurred.

    Right to object

    You always have the right to information, correction and deletion of your personal data. If you have any questions, you can also contact the person responsible for the payment provider used at any time. You can find contact details either in our specific privacy policy or on the website of the relevant payment provider.

    Cookies that payment providers use for their functions can be deleted, deactivated or managed in your browser. Depending on which browser you use, this works in different ways. Please note, however, that the payment process may then no longer work.

    Legal basis

    So we offer to process contractual or legal relationships (Art. 6 para. 1 lit. b GDPR) besides other payment service providers to the conventional banking/credit institutions. In the data protection declarations of the individual payment providers (such as Amazon Payments, Apple Pay or Discover) gives you a detailed overview of data processing and data storage. In addition, you can always contact the person responsible if you have any questions about data protection-related topics.

    Information on the special payment providers - if available - can be found in the following sections.

    American Express Privacy Policy

    On our website we use American Express, a global financial service provider. Service provider is the American company American Express Company. For the European area, the company American Express Europe S.A. (Avenida Partenón 12-14, 28042, Madrid, Spain).

    American Express also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the legality and security of data processing.

    American Express uses so-called standard contractual clauses (= Art. 46. Para. 2 and 3 GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data also comply with European data protection standards if they are transferred to third countries (such as the USA) and stored there. Through these clauses, American Express undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de

    See the “European Implementing Principles (https://www.americanexpress.com/en-pl/company/legal/privacy-centre/european-implementing-principles/) for more information the Standard Contractual Clauses at American Express.

    You can find out more about the data processed by using American Express in the Privacy Policy at https://www.americanexpress.com/de/legal /online-datenschutzerklaerung.html.

    Apple Pay Privacy Policy

    We use Apple Pay, a service for online payment methods, on our website. Service provider is the American company Apple Inc., Infinite Loop, Cupertino, CA 95014, USA.

    Apple also processes data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the legality and security of data processing.

    Apple uses standard contractual clauses approved by the EU Commission (= Art. 46. Paragraphs 2 and 3 GDPR).These clauses oblige Apple to comply with EU data protection standards when processing relevant data outside of the EU. These clauses are based on an implementation decision by the EU Commission. You can find the decision and the clauses here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.

    You can find out more about the data processed through the use of Apple Pay in the Privacy Policy at https://www.apple.com/legal/privacy /en-ww/.

    eps transfer privacy policy

    On our website we use eps transfer, a service for online payment methods. Service provider is the Austrian company Stuzza GmbH, Frankgasse 10/8, 1090 Vienna, Austria. You can find out more about the data processed by using eps transfer in the data protection declaration at https://eservice.stuzza.at/de/datenschutzerklaerung.html.

    Google Pay Privacy Policy

    We use the online payment provider Google Pay on our website. The service provider is the American company Google Inc. The company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services in Europe.

    Google also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the legality and security of data processing.

    Google uses so-called standard contractual clauses (= Art. 46. Para. 2 and 3 GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data also comply with European data protection standards if they are transferred to third countries (such as the USA) and stored there. Through these clauses, Google undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de

    The data processing conditions for Google advertising products (Google Ads Controller-Controller Data Protection Terms), which correspond to the standard contractual clauses and also apply to Google Pay, can be found at https://business.safety .google/adscontrollerterms/.

    You can find out more about the data processed by using Google Pay in the privacy policy at https://policies.google.com/privacy.

    iDEAL privacy policy

    On our website we use iDEAL, a service for payment systems. Service provider is the Dutch company Currence B.V., Gustav Mahlerplein 33-35, Amsterdam, Noord-Holland 1082 MS, The Netherlands. You can find out more about the data processed through the use of iDEAL in the privacy policy at https://www.ideal.nl/en/disclaimer-privacy-statement /.

    Klarna Checkout Privacy Policy

    Klarna Checkout Privacy Policy Summary
    👥 Affected: Visitors to the website
    🤝 Purpose: Optimization of the payment process on our website
    📓 Processed data: Data such as name, address, bank details ( Account number, credit card number, passwords, TANs, etc.), IP address and contract data
    You can find more details on this below in this data protection declaration.
    📅 Storage period: Data is stored as long as Klarna needs it for the processing purpose.
    ⚖️ Legal bases: Article 6(1)(c) GDPR (legal obligation), Article 6(1)(f) GDPR (legitimate interests)

    What is Klarna Checkout?

    On our website we use the Klarna Checkout online payment system from the Swedish company Klarna Bank AB. Klarna Bank has its main office at Sveavägen 46, 111 34 Stockholm, Sweden. If you decide to use this service, personal data, among other things, will be sent to Klarna, stored and processed. In this data protection declaration we would like to give you an overview of data processing by Klarna.

    Klarna Checkout is a payment system for orders in an online shop. The user selects the payment method and Klarna Checkout takes over the entire payment process. Once a user has made a payment via the checkout system and entered the relevant data, future online purchases can be made even faster and easier. The Klarna system then recognizes the existing customer after entering the e-mail address and postal code.

    Why do we use Klarna Checkout for our website?

    Our goal with our website and our integrated online shop is to offer you the best possible service. In addition to the overall experience on the website and our offers, this also includes smooth, fast and secure payment processing for your orders. To ensure this, we use the Klarna Checkout payment system.

    What data is stored by Klarna Checkout?

    As soon as you decide to use the Klarna payment service and pay using the Klarna Checkout payment method, you also transmit personal data to the company. Technical data such as browser type, operating system, our Internet address, date and time, language settings, time zone settings and IP address are collected from you on the Klarna checkout page and transmitted to the Klarna servers and stored there. This data is also saved if you have not yet completed an order.

    If you order a product or service through our shop, you must enter your personal data in the fields provided. This data is processed by Klarna for payment processing. The following personal data (as well as general product information) can be stored and processed by Klarna for credit and identity checks:

    • Contact information: names, date of birth, national ID number, title, billing and shipping address, email address, phone number, nationality or salary.
    • Payment information such as credit card details or your account number
    • Product information such as tracking number, type of item and price of the product

    There is also data that can be collected optionally, if you consciously decide to do so. These are, for example, political, religious or ideological beliefs or various health data.

    Klarna can also collect data about the goods or services that you buy or order itself or via third parties (such as via us or via public databases) in addition to the above-mentioned data. This can, for example, be the shipment number or the type of ordered article, but also information about your creditworthiness, your income or the granting of credit. Klarna may also share your personal information with service providers such as software providers, data storage providers or us as a retailer.

    Cookies are always involved when data is automatically entered into a form. If you do not want to use this function, you can deactivate these cookies at any time. Further down in the text you will find instructions on how to delete, deactivate or manage cookies in your browser. Our tests have shown that Klarna does not set any cookies directly. If you choose the payment method “Klarna Sofort” and click on “Order”, you will be redirected to the Sofort website. After the successful payment you will come to our thank you page. There the following cookie is set by sofort.com:

    Name: SOFUEB
    Value: e8cipp378mdscn9e17kajlfhv7311912893-4
    Recipient: This Cookie stores your session ID.
    Expiry date: after the browser session has ended

    How long and where is the data stored?

    Klarna endeavors to store your data only within the EU or the European Economic Area (EEA). However, data may also be transferred outside the EU/EEA. When that happens, Klarna ensures that data protection is in line with the GDPR and the third country is subject to an adequacy decision by the European Union. The data is always stored as long as Klarna needs it for the processing purpose.

    How can I delete my data or prevent data storage?

    You can revoke your consent to Klarna processing personal data at any time. You always have the right to information, correction and deletion of your personal data. All you have to do is contact the company or the company's data protection team by email to datenschutz@klarna.de . You can also contact Klarna directly via the Klarna website "My data protection request".

    Cookies that Klarna may use for its functions can be deleted, deactivated or managed in your browser. Depending on which browser you use, this works in different ways. Under the "Cookies" section you will find the relevant links to the relevant instructions for the most popular browsers.

    Legal basis

    So we offer to process contractual or legal relationships (Art. 6 para. 1 lit. b DSGVO) In addition to the conventional bank/credit institutions, we also offer the payment service provider Klarna Checkout.

    We hope to have given you a good overview of data processing by Klarna. If you want to find out more about how your data is handled, we recommend the Klarna data protection declaration at https://cdn.klarna.com/1.0/shared/content/legal/terms/0 /de_at/privacy.

    Mastercard Privacy Policy

    We use the payment service provider Mastercard on our website. The service provider is the American company Mastercard Inc. The company Mastercard Europe SA (Chaussée de Tervuren 198A, B-1410 Waterloo, Belgium) is responsible for the European area.

    Mastercard also processes data in the USA, among other places.We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This can be associated with various risks for the legality and security of data processing.

    As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or data transfer there, Mastercard uses standard contractual clauses approved by the EU Commission (= Art. 46. Paragraphs 2 and 3 GDPR). These clauses oblige Mastercard to comply with EU data protection standards when processing relevant data outside of the EU. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the clauses here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.

    You can find out more about the data processed by using Mastercard in the privacy policy on https://www.mastercard.de/de-de/ privacy.html.

    PayPal Privacy Policy

    We use the online payment service PayPal on our website. The service provider is the American company PayPal Inc. The company PayPal Europe (S.à rl et Cie, SCA, 22-24 Boulevard Royal, L-2449 Luxembourg) is responsible for the European area.

    PayPal also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the legality and security of data processing.

    Paypal uses so-called standard contractual clauses (= Art. 46. Para. 2 and 3 GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data also comply with European data protection standards if they are transferred to third countries (such as the USA) and stored there. Through these clauses, PayPal undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de

    For more information on the Standard Contractual Clauses and the data processed using PayPal Marketing Solutions, please see the Privacy Policy at https://www.paypal.com/ c2/webapps/mpp/ua/privacy-full.

    Shop Pay Privacy Policy

    On our website we use Shop Pay, a service for online payment solutions. The service provider is the American company Shopify Inc. The company Shopify International Limited (Victoria Buildings, 2nd floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland) is responsible for Europe.

    We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. The data processing is essentially done by Shop Pay. This can mean that data may not be processed and stored anonymously. In addition, US government authorities may have access to individual data.It may also happen that this data is linked to data from other possible Shop Pay services for which you have a user account

    You can find out more about the data that is processed by using Shop Pay in the Privacy Policy at https://www.shopify.de/legal/datenschutz .

    Sofortüberweisung privacy policy

    Sofortüberweisung Privacy Policy Summary
    👥 Affected: Visitors to the website
    🤝 Purpose: Optimizing the payment process on our website
    📓 Processed data: Data such as name, address, bank details (account number , credit card number, passwords, TANs, etc.), IP address and contract data
    You can find more details on this below in the data protection declaration
    📅 Storage period: Data is stored within the legal retention period
    ⚖️ Legal basis: Art. 6 Paragraph 1 lit. c GDPR (legal obligation), Article 6 Paragraph 1 lit. f GDPR (legitimate interests)

    What is an "instant transfer"?

    On our website we offer the "Sofortüberweisung" payment method from Sofort GmbH for cashless payment. Sofort GmbH has belonged to the Swedish company Klarna since 2014, but is based in Germany, Theresienhöhe 12, 80339 Munich.

    If you decide to use this payment method, personal data will also be transmitted to Sofort GmbH or Klarna, stored and processed there. With this data protection text we give you an overview of the data processing by Sofort GmbH.

    The immediate transfer is an online payment system that allows you to place an order via online banking. The payment processing is carried out by Sofort GmbH and we immediately receive information about the payment made. Any user who has an active online banking account with PIN and TAN can use this method. Only a few banks still do not support this payment method.

    Why do we use "Sofortüberweisung" on our website?

    Our goal with our website and our integrated online shop is to offer you the best possible service. In addition to the overall experience on the website and our offers, this also includes smooth, fast and secure payment processing for your orders. To ensure this, we use "Sofortüberweisung" as the payment system.

    What data is stored by "Sofortüberweisung"?

    If you make an immediate transfer using the Sofort/Klarna service, data such as name, account number, bank code, subject, amount and date will be stored on the company's servers. We also receive this information via the payment confirmation.

    As part of the account coverage check, Sofort GmbH checks whether your account balance and overdraft facility cover the payment amount. In some cases, it is also checked whether instant transfers have been successfully carried out in the last 30 days. Furthermore, your user identification (such as user number or contract number) in abbreviated (“hashed”) form and your IP address are collected and stored. In the case of SEPA transfers, the BIC and IBAN are also saved.

    According to the company, no other personal data (such as account balances, sales data, credit limits, account lists, mobile phone number, authentication certificates, security codes or PIN/TAN) are collected, stored or passed on to third parties.

    Sofortüberweisung also uses cookies to make our own service more user-friendly. When you order a product, you will be redirected to the Sofort or Klarna website.After successful payment you will be forwarded to our thank you page. The following three cookies are set here:

    Name: SOFUEB
    Value: e8cipp378mdscn9e17kajlfhv7311912893-5
    Recipient: This Cookie stores your session ID.
    Expiry date: after the browser session has ended

    Name: User[user_cookie_rules]
    Value: 1
    Purpose: This cookie stores your consent to the use of cookies.
    Expiry date: after 10 years

    Name: _ga
    Value: GA1.2.69759879.1589470706
    Purpose: By default, analytics.js uses the _ga cookie to store the user ID. Basically, it serves to differentiate between website visitors. This is a Google Analytics cookie.
    Expiry date: after 2 years

    Note: The cookies listed here do not claim to be complete. It is always possible that Sofortüberweisung also uses other cookies.

    How long and where is the data stored?

    All data collected is stored within the legal retention period. This duty can last from three to ten years.

    Klarna/Sofort GmbH tries to store data only within the EU or the European Economic Area (EEA). If data is transferred outside of the EU/EEA, data protection must be GDPR compliant and the country subject to an EU adequacy decision.

    How can I delete my data or prevent data storage?

    You can revoke your consent to Klarna processing personal data at any time. You always have the right to information, correction and deletion of your personal data. To do this, you can simply contact the company's data protection team by sending an email to datenschutz@sofort.com.

    Possible cookies used by Sofortüberweisung can be managed, deleted or deactivated in your browser. This works in different ways depending on your preferred browser. Under the "Cookies" section you will find the relevant links to the relevant instructions for the most popular browsers.

    Legal basis

    So we offer to process contractual or legal relationships (Art. 6 para. 1 lit. b GDPR) In addition to the conventional bank/credit institutions, we also offer the payment service provider Sofortüberweisung. The successful use of the service also requires your consent (Art. 6 Para. 1 lit. a DSGVO) , insofar as for the use the acceptance of cookies is necessary.

    If you want to find out more about the data processing by Sofort GmbH's "Sofortüberweisung" company, we recommend the data protection declaration at https://www.sofort.de/datenschutz.html.

    Visa Privacy Policy

    We use Visa, a global payment provider, on our website. The service provider is the American company Visa Inc. The company Visa Europe Services Inc. (1 Sheldon Square, London W2 6TT, Great Britain) is responsible for the European area.

    Visa also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be associated with various risks for the legality and security of data processing.

    As a basis for data processing by recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or data transfer there, Visa uses so-called standard contractual clauses (= Art. 46 Para. 2 and 3 DSGVO ). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data also comply with European data protection standards if they are transferred to third countries (such as the USA) and stored there. Through these clauses, Visa undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de

    More information on the standard contractual clauses at Visa can be found at https://www.visa.de/bedingungen/visa-global-data-protection-notification/notification-to-religious-issues-fur-den- ewr.html.

    You can find out more about the data processed through the use of Visa in the privacy policy on https://www.visa.de/bedingungen/visa- privacy-center.html.

    Rating platforms introduction

    Review platform summary
    👥 Affected: Visitors to the website or an evaluation platform
    🤝 Purpose: Feedback on our products and/or services
    📓 Processed data: IP address, E -Mail address, name. More details can be found below or on the evaluation platforms used.
    📅 Storage period: depends on the respective platform
    ⚖️ Legal basis: Article 6 (1) (a) GDPR (consent), Article 6 (1) 1 lit. f GDPR (legitimate interests),

    What are rating platforms?

    You can rate our products or services on various rating platforms. We are participants on some of these platforms so that we can get feedback from you and thus optimize our offer. If you rate us via a rating platform, the data protection declaration and the general terms and conditions of the respective rating service apply. Very often you also have to register in order to submit a review. Rating technologies (widgets) can also be integrated into our website. By using such an integrated tool, data is also transmitted to the relevant provider, processed and stored.

    Many of these integrated programs work on a similar principle. After you have ordered a product from us or used a service, you will be asked to submit a review by email or on the website. You will usually be redirected to a review page via a link, where you can quickly and easily create a review. Some rating systems also offer an interface to various social media channels in order to make the feedback accessible to several people.

    Why do we use rating platforms?

    Rating platforms collect feedback and ratings about our offers. Through your ratings, we quickly receive appropriate feedback and can improve our products and/or services much more efficiently. The ratings therefore help us on the one hand to optimize our offers and on the other hand they give you and all our future customers a good overview of the quality of our products and services.

    What data is processed?

    With your consent, we will transmit information about you and the services you have used to the relevant rating platform. We do this to ensure that you have actually used one of our services. Only then can you give real feedback. The transmitted data is only used to identify the user. Which data is exactly stored and processed depends of course on the providers used. Personal data such as IP address, e-mail address or your name are usually also made available to the rating platforms. Order information such as the order number of a purchased item will also be forwarded to the appropriate platform after you have submitted your review. If your e-mail address is transmitted, this is done so that the rating platform can send you an e-mail after purchasing a product. So that we can also integrate your review into our website, we also give the providers the information that you have accessed our site. The evaluation platform used is responsible for the personal data collected.

    How long and where is the data stored?

    You can find out more about the duration of data processing below in the relevant data protection declaration of the provider, provided that we have further information on this. In general, we only process personal data for as long as is absolutely necessary for the provision of our services and products. Personal data that is mentioned in a rating is usually anonymized by employees of the platform used and is therefore only visible to company administrators. The data collected is stored on the providers' servers and deleted from most providers after the end of the order.

    Right to object

    You also have the right and the option to revoke your consent to the use of cookies or third-party providers at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection by cookies by managing, deactivating or deleting the cookies in your browser.

    Legal basis

    If you have consented to the use of an evaluation platform, the legal basis for the corresponding data processing is this consent. According to Art. 6 Paragraph 1 lit. a GDPR (consent), this consent represents the legal basis for the processing of personal data, as may occur when it is collected by a rating portal.

    We also have a legitimate interest in using an evaluation platform to optimize our online service. The corresponding legal basis for this is Article 6 (1) (f) GDPR (legitimate interests). However, we only use an evaluation platform if you have given your consent.

    We hope we have been able to provide you with the most important general information about the data processing of rating platforms. Further information can be found below in the data protection texts or in the linked data protection declarations of the company.

    Trustami Privacy Policy

    We also use the Trustami rating platform for our website. Service provider is the German company Trustami GmbH, Schröderstraße 5, 10115 Berlin, Germany. More You can find out more about the data processed by using Trustami in the data protection declaration at https://www.trustami.com/datenschutz/.

    All texts are protected by copyright.

    Source: Created with the Privacy Generator by AdSimple
    Icons made by Freepik from wwwflaticon.com
    .