• safe payments with Klarna, credit card, PayPal or bank transfer (Instant bank transfer)
  • 20% on Sale II Get an extra discount with: SaleonSale
  • Free exchange within 14 days
  • Bequemer Returendienst über unser Onlineportal

Privacy policy

1. privacy at a glance

General notices

The following notices provide a simple overview of what happens to your personal data when you visit this website. Personal data is any information that allows you to be personally identified. For detailed information on data protection, please refer to our privacy policy listed below this text.

Data collection on this website

Who is responsible for data collection on this website?

The data processing on this website is performed by the website operator. You can find the website operator's contact information in the "Responsible Party Information" section of this privacy policy.

How do we collect your data?

Your data is initially collected because you provide it to us. For example, this may be data that you enter in a contact form. Other data is collected automatically or with your consent by our IT systems when you visit the website. These are mainly technical data (e.g. internet browser, operating system or time of page view). This data is collected automatically when you visit this website.

What do we use your data for?

Some data is collected to ensure that the website is provided without errors. Other data may be used to analyze your user behavior.

What rights do you have regarding your data?

You have the right at any time to receive information free of charge about the origin, recipient and purpose of your stored personal data. You also have the right to request correction or deletion of this data. If you have consented to data processing, you may withdraw this consent at any time for the future. You also have the right to request the restriction of the processing of your personal data under certain circumstances. In addition, you have the right to lodge a complaint with the competent supervisory authority. You can contact us at any time regarding these and other questions related to data protection.

Analysis tools and third-party tools

.

When you visit this website, your surfing behavior can be statistically analyzed. This is done primarily with so-called analysis programs. Detailed information about these analysis programs can be found in the following data protection statement.


2. Hosting and Content Delivery Networks (CDN)

Cloudflare

We use the service "Cloudflare". The provider is Cloudflare Inc, 101 Townsend St, San Francisco, CA 94107, USA (hereinafter "Cloudflare"). Cloudflare provides a globally distributed content delivery network with DNS. This technically routes the transfer of information between your browser and our website through Cloudflare's network. This allows Cloudflare to analyze the traffic between your browser and our website and act as a filter between our servers and potentially malicious traffic from the Internet. In doing so, Cloudflare may also use cookies or other technologies to recognize Internet users, but these are used only for the purpose described here. The use of Cloudflare is based on our legitimate interest to provide our website as error-free and secure as possible (Art. 6 para. 1 lit. f DSGVO). The data transfer to the US is based on the standard contractual provisions of the EU Commission. Details can be found here: https://www.cloudflare.com/privacypolicy/. For more information on security and data protection at Cloudflare, click here: https://www.cloudflare.com/privacypolicy/. The company is certified under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the US to ensure compliance with European data protection standards for data processing in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information on this, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000000GnZKAA0&status=Active

Contract processing

We have entered into an order processing contract (AVV) for the use of the above service. This is a legally required data protection contract, which guarantees that it processes the personal data of our website visitors only in accordance with our instructions and in compliance with the DSGVO.

We have entered into an order processing contract (AVV) for the use of the above service.

3. GENERAL NOTICES AND OBLIGATIONS

Data Protection

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with legal data protection regulations and this data protection statement. Various personal data are collected when using this website. Personal data is data that allows you to be personally identified. This privacy policy explains what data we collect and how we use it. It also explains how and for what purpose this is done. We would like to point out that data transmission on the Internet (for example, when communicating by e-mail) may have security gaps. Complete protection of data from access by third parties is not possible.

Note about the responsible authority

The data controller of this website is: 

Lawyer. Nina Hebisch
Lanterstr. 36
46539 Dinslaken
Telephone: 02064 486767
E-mail: [email protected]
The controller is the natural or legal person who alone or jointly with others determines the purpose of and means for processing personal data (e.g. names, e-mail addresses or the like).

Retention period

Unless a more specific retention period is specified within this Privacy Policy, your personal data will remain with us until the purpose for processing the data no longer applies. If you make a justified request for deletion or withdraw your consent to data processing, your data will be deleted unless we have other legally permissible reasons for retaining your personal data (e.g., retention periods under tax or commercial laws); in the latter case, deletion will take place after these reasons no longer apply.

General information on the legal basis for data processing on this website

If you have given your consent for data processing, we will process your personal data on the basis of Art. 6(1)(a) DSGVO or Art. 9(2)(a) DSGVO if special categories of data are processed on the basis of Art. 9(1) DSGVO. In the case of express consent for the transfer of personal data to third countries, data processing is also carried out on the basis of art. 49 (1) a DSGVO. If you have consented to the storage of cookies or access to information on your end device (e.g. via device fingerprinting), data processing is additionally performed on the basis of Art. 25 (1) AVG. This consent may be revoked at any time. If your data is required for the performance of a contract or the implementation of pre-contractual measures, we process your data on the basis of Art. 6 (1) lit. b DSGVO. In addition, if your data is required to fulfill a legal obligation, we process it on the basis of Art. 6 para. 1 lit. c DSGVO. Furthermore, data processing may be carried out on the basis of our legitimate interest according to Art. 6 para. 1 lit. f DSGVO. Information on the relevant legal basis in each individual case is provided in the following sections of this data protection statement.

Data transfer to third countries that are not secure according to data protection laws and transfer to U.S. companies that are not DPF-certified

We use, among other things, tools from third country companies that are not secure according to data protection laws, as well as U.S. tools whose providers are not certified according to the EU-US Data Privacy Framework (DPF). If these tools are active, your personal data may be transferred to these countries and processed there. We would like to point out that no level of data protection comparable to that in the EU can be guaranteed in third countries that are unsafe in terms of data protection laws. We would like to point out that the US, as a safe third country, generally has a level of data protection comparable to that of the EU. A data transfer to the US is therefore permitted if the recipient is certified under the "EU-US Data Privacy Framework" (DPF) or has appropriate additional safeguards. Information on transfers to third countries, including the recipients of the data, can be found in this privacy policy.

recipients of personal data

In the course of our business activities, we cooperate with various external bodies. In doing so, it is sometimes necessary to transfer personal data to these external bodies. We transfer personal data to external bodies only if this is necessary for the performance of a contract, if we are required to do so by law (e.g., transfer of data to the tax authorities), if we have a legitimate interest in transferring the data in accordance with Art. 6 para. 1 lit. f DSGVO or if another legal basis permits the transfer of the data. When using processors, we transfer personal data of our customers only on the basis of a valid contract on commissioned processing. In the case of joint processing, a joint processing agreement is concluded.

Withdraw your consent to data processing

Many data processing operations are possible only with your express consent. You can withdraw your already given consent at any time. The lawfulness of the data processing carried out until the revocation remains unaffected by the revocation.

Right to object to data collection in specific cases and against direct marketing (Art. 21 DSGVO)

WHEN THE DATA PROCESSING IS BASED ON ART. 6 ABS. 1 LIT. E OR F DSGVO, YOU HAVE AT ANY TIME THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH THE PROCESSING IS BASED CAN BE FOUND IN THIS DATA PROTECTION STATEMENT. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA, UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OUTWEIGH YOUR INTERESTS, RIGHTS AND FREEDOMS, OR THE PROCESSING SERVES TO ASSERT, EXERCISE OR DEFEND LEGAL CLAIMS (OBJECTION BASED ON ARTICLE 21(1) DSGVO). IF YOUR PERSONAL DATA ARE PROCESSED FOR THE PURPOSES OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR THE PURPOSES OF SUCH MARKETING; THIS ALSO APPLIES TO PROFILING INSOFAR AS IT RELATES TO SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL THEN NO LONGER BE USED FOR DIRECT MARKETING (OBJECTION PURSUANT TO ART. 21 PARAGRAPH 2 DSGVO).

Right of appeal to the competent supervisory authority

In the event of violations of the GDPR, data subjects have the right to appeal to a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged violation. The right of appeal is without prejudice to any other administrative or judicial remedy.

Right to data portability

You have the right, within the framework of the applicable legal provisions, to obtain at any time, free of charge, information about your stored personal data, their origin and recipients and the purpose of data processing and, where applicable, the right to have them corrected or deleted. You may contact us at any time for this purpose and for further questions on the subject of personal data.

Right to restriction of processing

You have the right to request the restriction of the processing of your personal data. To do so, you can contact us at any time. The right to restriction of processing exists in the following cases:

  • If you dispute the accuracy of your personal data stored by us, we usually need time to verify this. For the duration of the verification, you have the right to request restriction of the processing of your personal data.

  • If the processing of your personal data is/will be unlawful, you may request restriction of the data processing instead of deletion.

  • If we no longer need your personal data, but you still need it to exercise, defend or assert legal claims, you have the right to request restriction of the processing of your personal data instead of deletion.

  • If you have raised an objection under Article 21(1) of the GDPR, your interests must be weighed against ours. As long as it has not yet been established whose interests prevail, you have the right to request the restriction of the processing of your personal data.

Where you have restricted the processing of your personal data, such data may be processed - apart from storage - only with your consent or for the establishment, exercise or defense of a right in law or for the protection of the rights of another natural or legal person or for reasons of substantial public interest of the European Union or a Member State.

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries you send to us as a site administrator. You can recognize an encrypted connection by the fact that the browser address line changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you send to us cannot be read by third parties.

Encrypted payment transactions on this website

If, after concluding a contract with costs, there is an obligation to transmit your payment data to us (e.g. account number in the case of direct debit authorization), this data is required for payment processing. Payment transactions via the common means of payment (Visa/MasterCard, direct debit) take place exclusively via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. With encrypted communication, the payment data you transmit to us cannot be read by third parties.

Objection to promotional emails

.

The use of contact data published as part of the imprint obligation to send advertising and informational material not expressly requested is hereby rejected. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, for example by spam emails.

4. COLLECTION OF DATA ON THE WEBSITE

Cookies

Our web pages use so-called "cookies". Cookies are small data packets and do not cause any damage to your end device. They are stored temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your end device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your end device until you delete them yourself or until they are automatically deleted by your web browser. Cookies can come from us (first-party cookies) or from third parties (so-called third-party cookies). Third-party cookies enable the integration of certain services of third-party companies into websites (for example, cookies for processing payment services). Cookies have different functions. Many cookies are technically necessary because certain website functions would not work without them (e.g. the shopping cart function or the display of videos). Other cookies may be used to evaluate user behavior or for advertising purposes. Cookies that are necessary to perform the electronic communication process, to provide certain functions that you have requested (e.g. for the shopping cart function) or to optimize the website (e.g. cookies to measure web audience) (necessary cookies) are stored on the basis of Art. 6 para. 1 lit. f DSGVO, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically flawless and optimized provision of its services. If consent for the storage of cookies and similar recognition technologies has been requested, processing shall be carried out solely on the basis of this consent (Art. 6 (1) letter a DSGVO and § 25 (1) TTDSG); consent may be revoked at any time. You can set your browser so that you are informed about the placement of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for specific cases or in general and activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited. In this privacy policy you can read which cookies and services are used on this website.

Consent with Usercentrics

This website uses Usercentrics' consent technology to obtain your consent to the storage of certain cookies on your end device or to the use of certain technologies and to document this in accordance with data protection legislation. The provider of this technology is Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, website: https://usercentrics.com/de/ (hereinafter "Usercentrics"). When you visit our website, the following personal data is transmitted to Usercentrics:

  • Your consent(s) or revocation of your consent(s)

  • Your IP address

  • Information about your browser

  • Information about your end device

  • The time of your visit to the website

In addition, Usercentrics stores a cookie on your browser to allocate the consents granted to you or their withdrawal. The data collected in this way is stored until you request us to delete it, the Usercentrics cookie itself deletes or the purpose for storing the data no longer applies. Mandatory legal storage obligations remain unaffected. The Usercentrics banner on this website is configured with the help of eRecht24. You can recognize this by the fact that the logo of eRecht24 appears in the banner. To display the eRecht24 logo in the banner, a connection to the eRecht24 image server is established. In the process, the IP address is also transmitted, which, however, is only stored in anonymized form in the server logs. The eRecht24 image server is located in Germany at a German provider. The banner itself is provided exclusively by Usercentrics. Usercentrics is used to obtain the legally required consent for the use of certain technologies. The legal basis for this is Art. 6 para. 1 lit. c DSGVO.

Contract processing

We have entered into an order processing contract (AVV) for the use of the above service. This is a contract required by the Data Protection Act which ensures that this service processes the personal data of our website visitors only in accordance with our instructions and in compliance with the DSGVO.

Server Log Files

We have entered into an order processing agreement (AVV) for the use of the above service.

Server log files

The page provider automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and browser version

  • Used operating system

  • Referrer URL

  • Host name of computer being accessed

  • Time of server request

  • IP address

This data is not merged with other data sources. The collection of this data is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website - this requires the collection of server log files.

Request by email, phone or fax

If you contact us by email, phone or fax, your request and all resulting personal data (name, request) will be stored and processed by us in order to process your request. We do not pass on this data without your consent. The processing of this data is based on Art. 6 (1) lit. b DSGVO if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective processing of requests addressed to us (Art. 6 (1) lit. f DSGVO) or on your consent (Art. 6 (1) lit. a DSGVO) if requested; consent may be revoked at any time. The data you send us via contact requests will remain with us until you request us to delete it, withdraw your consent to store the data or the purpose for storing the data no longer applies (e.g. after your request has been processed). Mandatory legal provisions - in particular statutory retention periods - remain unaffected.

Communication via WhatsApp

.

For communication with our customers and other third parties, we use, among others, the instant messaging service WhatsApp. The provider is WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. Communications take place via end-to-end (peer-to-peer) encryption, which prevents WhatsApp or other third parties from accessing the communication content. However, WhatsApp will have access to metadata generated in the course of the communication process (e.g. sender, receiver and time). We would also like to point out that according to its own statement, WhatsApp shares users' personal data with its parent company Meta, which is based in the US. More information on data processing can be found in WhatsApp's privacy policy at: https://www.whatsapp.com/legal/#privacy-policy. WhatsApp is used based on our legitimate interest to communicate as quickly and effectively as possible with customers, interested parties and other business and contractual partners (Art. 6 para. 1 letter f DSGVO). If a corresponding consent has been requested, data processing is carried out solely on the basis of the consent; it can be revoked at any time with effect for the future. The communication content exchanged between and on WhatsApp remains with us until you request us to delete it, withdraw your consent to its storage, or the purpose for storing the data no longer applies (e.g., after the processing of your request has been completed). Mandatory legal provisions - in particular retention periods - remain unaffected. The company is certified in accordance with the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the US designed to ensure compliance with European data protection standards for data processing in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt000011sfnAAA&status=Active We use WhatsApp in the variant "WhatsApp Business". Data transfer to the US is based on the standard contractual clauses of the European Commission. Details can be found here: https://www.whatsapp.com/legal/business-data-transfer-addendum. We have concluded an order processing contract (AVV) with the above provider.

Calendar

On our website you have the possibility to make appointments with us. We use the tool "Calendly" for booking appointments. The provider is Calendly LLC, 271 17th St NW, 10th Floor, Atlanta, Georgia 30363, USA (hereinafter "Calendly"). To book an appointment, enter the requested information and the desired date in the mask provided. The data entered is used for scheduling, execution and, if necessary, follow-up of the appointment. The appointment data is stored for us on the servers of Calendly, whose privacy policy you can view here: https://calendly.com/de/pages/privacy. The data you enter will remain with us until you ask us to delete it, withdraw your consent to store it, or the purpose for storing the data no longer applies. Mandatory legal provisions - in particular retention periods - remain unaffected. The legal basis for data processing is Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in making the setting of appointments with interested parties and customers as uncomplicated as possible. Insofar as a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para 1 lit. a DSGVO and § 25 para 1 TTDSG, insofar as the consent includes the storage of cookies or access to information on the user's end device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent may be revoked at any time. Data transfer to the US is based on the standard contractual clauses of the European Commission. More information can be found here: https://calendly.com/pages/dpa.

Contract processing

For the use of the above service, we have entered into an order processing contract (AVV). This is a contract required by data protection legislation and guarantees that it only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

We have entered into an order processing contract for the use of the above service.

Registration on this website

You can register on this website to use additional features on the site. We will use the information you enter for this purpose only for the use of the specific offer or service for which you have registered. The mandatory information requested during registration must be completed in full. Otherwise, we will reject the registration. For important changes, for example in the scope of the offer or in the case of technically necessary changes, we will use the e-mail address provided during registration to inform you in this way. The data entered during registration are processed for the execution of the user relationship established through registration and, if necessary, for the initiation of further contracts (Art. 6 para. 1 lit. b DSGVO). The data collected during registration are stored by us for as long as you are registered on this website and are then deleted. Legal retention periods remain unaffected.


5. SOCIAL MEDIA

Facebook

This website integrates elements of the social network Facebook. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. However, according to Facebook, the data collected is also transferred to the U.S. and other third countries. An overview of Facebook's social media elements can be found here: https://developers.facebook.com/docs/plugins/?locale=de_DEWhen the social media element is active, a direct connection is established between your end device and the Facebook server. Facebook thereby receives the information that you have visited this website with your IP address. If you click the Facebook "Like" button while logged into your Facebook account, you can link the content of this website to your Facebook profile. This allows Facebook to link your visit to this website with your user account. Please note that as the provider of the pages, we have no knowledge of the content of the data transmitted or its use by Facebook. For more information, please see Facebook's privacy policy at: https://de-de.facebook.com/privacy/explanation.. To the extent consent is obtained, the above service is used on the basis of Art. 6 Para. 1 lit. a DSGVO and § 25 TTDSG. Consent may be revoked at any time. Insofar as consent has not been obtained, the use of the service is based on our legitimate interest to achieve maximum visibility in social media. Insofar as personal data is collected on our website using the tool described here and transmitted to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland are jointly responsible for this data processing (Art. 26 DSGVO). The joint responsibility is limited exclusively to the collection of the data and its transmission to Facebook. The processing by Facebook that takes place after the forwarding is not part of the joint responsibility. Our joint obligations are laid down in a joint processing agreement. The text of the agreement can be found at: https://www.facebook.com/legal/controller_addendum. Under this agreement, we are responsible for providing privacy statements when using the Facebook tool and for implementing the tool on our website in a privacy-secure manner. Facebook is responsible for data security of the Facebook products. You can assert your rights as a data subject (e.g. requests for information) regarding the data processed by Facebook directly with Facebook. If you assert your rights against us, we are obliged to pass them on to Facebook. The transfer of data to the US is based on the model contractual clauses of the European Commission. Details can be found here: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000000GnywAAC&status=Active

Instagram

Features of the service Instagram are integrated on this website. These features are provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. When the social media element is active, a direct connection is established between your end device and Instagram's server. Instagram thereby receives information about your visit to this website. If you are logged into your Instagram account, you can link the content of this website to your Instagram profile by clicking on the Instagram button. This allows Instagram to link your visit to this website to your user account. We point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Instagram. To the extent consent is obtained, the above service is used on the basis of Art. 6 Para. 1 lit. a DSGVO and § 25 TTDSG. The consent may be revoked at any time. Insofar as consent has not been obtained, the use of the service is based on our legitimate interest to achieve maximum visibility in social media. Insofar as personal data is collected on our website using the tool described here and forwarded to Facebook or Instagram, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland are jointly responsible for this data processing (Art. 26 DSGVO). The joint responsibility is limited exclusively to the collection of the data and its transmission to Facebook or Instagram. The processing by Facebook or Instagram that takes place after the forwarding is not part of the joint responsibility. Our joint obligations are defined in a joint processing agreement. The text of the agreement can be found at: https://www.facebook.com/legal/controller_addendum https://www.facebook.com/legal/EU_data_transfer_addendum, https://de-de.facebook.com/help/566994660333381 and https://www.facebook.com/policy.php. https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000000GnywAAC&status=Active

Instagram

Features of the service Instagram are integrated on this website. These features are provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. When the social media element is active, a direct connection is established between your end device and the Instagram server. Instagram thereby receives information about your visit to this website. If you are logged into your Instagram account, you can link the content of this website to your Instagram profile by clicking on the Instagram button. This allows Instagram to link your visit to this website to your user account. We point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Instagram. To the extent consent is obtained, the above service is used on the basis of Art. 6 Para. 1 lit. a DSGVO and § 25 TTDSG. The consent may be revoked at any time. Insofar as consent has not been obtained, the use of the service is based on our legitimate interest to achieve maximum visibility in social media. Insofar as personal data is collected on our website using the tool described here and forwarded to Facebook or Instagram, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland are jointly responsible for this data processing (Art. 26 DSGVO). The joint responsibility is limited exclusively to the collection of the data and its transmission to Facebook or Instagram. The processing by Facebook or Instagram that takes place after the forwarding is not part of the joint responsibility. Our joint obligations are defined in a joint processing agreement. The text of the agreement can be found at: https://www.facebook.com/legal/controller_addendum According to this agreement, we are responsible for providing data protection information when using the Facebook or Instagram tool and for the data protection-safe implementation of the tool on our website. Facebook is responsible for the data security of the Facebook or Instagram products. You can assert your rights as a data subject (e.g., requests for information) regarding data processed by Facebook or Instagram directly with Facebook. If you assert data subject rights with us, we are obliged to pass them on to Facebook. Data transfer to the US is based on the standard contractual clauses of the European Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://help.instagram.com/519522125107875 and https://de-de.facebook.com/help/566994660333381. For more information, see Instagram's privacy policy: https://instagram.com/about/legal/privacy/ The company is certified under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the US to ensure compliance with European data protection standards when processing data in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000000GnywAAC&status=Active

LinkedIn

This website uses elements of the LinkedIn network. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. Whenever a page of this website containing elements of LinkedIn is opened, a connection to LinkedIn's servers is established. LinkedIn is notified that you have visited this website with your IP address. If you click on the LinkedIn "Recommend" button and are logged into your LinkedIn account, it is possible for LinkedIn to associate your visit to this website with you and your user account. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by LinkedIn. Insofar as consent is obtained, the aforementioned service is used on the basis of Art. 6 Para. 1 lit. a DSGVO and § 25 TTDSG. The consent may be revoked at any time. Insofar as consent has not been obtained, the use of the service is based on our legitimate interest to achieve maximum visibility in social media. The transfer of data to the US is based on the standard contract provisions of the European Commission. Details can be found here:https://www.linkedin.com/help/linkedin/answer/62538/datenubertragung-aus-der-eu-dem-ewr-und-derschweiz?lang=de For more information on this, see LinkedIn's privacy policy at:https://www.linkedin.com/legal/privacy-policy.

6. ANALYSIS TOOLS AND ADVERTISEMENT

Google Tag Manager

We use the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The Google Tag Manager is a tool that allows us to embed tracking or statistical tools and other technologies on our website. The Google Tag Manager itself does not create user profiles, store cookies or perform independent analysis. It serves only to manage and play the tools it integrates. However, the Google Tag Manager does record your IP address, which may also be transmitted to Google's parent company in the United States. The use of the Google Tag Manager is based on Art. 6 para. 1 lit. f DSGVO. The website manager has a legitimate interest in a quick and uncomplicated integration and management of various tools on its website. If a corresponding consent has been requested, the processing is carried out solely on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information on the user's end device (e.g. device fingerprinting), as defined by the TTDSG. The consent can be revoked at any time. The company is certified according to the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the US designed to ensure compliance with European data protection standards for data processing in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000001L5AAI&status=Active

Google Analytics

.

This website uses functions of the web analytics service Google Analytics. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics allows the website operator to analyze the behavior of website visitors. In doing so, the website operator receives various usage data, such as page views, length of stay, operating systems used and user origin. This data is summarized in a user ID and assigned to the respective end device of the website visitor. Moreover, Google Analytics allows us to record, among other things, your mouse and scroll movements and clicks. Moreover, Google Analytics uses various modeling approaches to supplement the collected data sets and uses machine learning technologies in data analysis. Google Analytics uses technologies that enable user recognition for the purpose of analyzing user behavior (e.g., cookies or device fingerprinting). The information collected by Google on the use of this website is usually transferred to a Google server in the USA and stored there. The use of this service is based on your consent according to Art. 6 para 1 letter a DSGVO and § 25 para 1 TTDSG. Consent may be revoked at any time. The data transfer to the US is based on the standard contractual clauses of the European Commission. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/. The company has a certification according to the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the US to ensure compliance with European data protection standards for data processing in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000001L5AAI&status=Active

Browser plugin

You can prevent Google's collection and processing of your data by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de. For more information on how Google Analytics handles user data, please see Google's privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.

Google Signals

We use Google signals. When you visit our website, Google Analytics collects, among other things, your location, search history and YouTube history, as well as demographic data (visitor data). This data may be used for personalized advertising using Google Signals. If you have a Google account, visitor data from Google Signal is linked to your Google account and used for personalized advertising messages. The data is also used to compile anonymized statistics about the user behavior of our users.

Order processing

We have entered into an order processing agreement with Google and fully comply with the strict requirements of the German data protection authorities when using Google Analytics.

Google Analytics e-commerce measurement

This website uses the "e-commerce measurement" feature of Google Analytics. E-commerce measurement allows the website operator to analyze the buying behavior of website visitors in order to improve its online marketing campaigns. This involves recording information such as orders placed, average order values, shipping costs and the time between viewing and buying a product. This data can be summarized by Google under a transaction ID, which is assigned to the respective user or their device.

Hotjar

This website uses Hotjar. The provider is Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe (website: https://www.hotjar.com). Hotjar is a tool used to analyze your user behavior on this website. Among other things, Hotjar allows us to record your mouse movements, scrolling movements and clicks. Hotjar can also determine how long you have stayed with the mouse pointer in a certain place. Based on this information, Hotjar creates so-called heat maps, which can be used to determine which parts of the website are preferentially viewed by the website visitor. Furthermore, we can determine how long you stayed on a page and when you left it. We can also determine at what point you left a contact form (so-called conversion funnels). In addition, Hotjar can be used to get direct feedback from website visitors. This function serves to improve the website operator's web offerings. Hotjar uses technologies that enable user recognition for the purpose of analyzing user behavior (for example, cookies or the use of device fingerprinting). Insofar as consent is obtained, the above service is used exclusively on the basis of Art. 6 (1) letter a DSGVO and § 25 TTDSG. Consent may be revoked at any time. Insofar as consent has not been obtained, the use of this service is based on art. 6 paragraph 1 letter f DSGVO; the website operator has a legitimate interest in analyzing user behavior in order to optimize both its web offerings and advertising.

Disable Hotjar

If you wish to disable Hotjar's data collection, please click on the following link and follow the instructions: https://www.hotjar.com/policies/do-not-track/. Please note that disabling Hotjar must be done separately for each browser or device. For more information about Hotjar and the data it collects, see Hotjar's privacy policy at the following link: https://www.hotjar.com/privacy.

Contract processing

For the use of the above service, we have entered into an order processing contract (AVV). This is a contract required by data protection legislation and guarantees that it only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

We have entered into a contract for the use of the above service.

Google ads

The website operator uses Google Ads. Google Ads is an online advertising program of Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. Google Ads allows us to display ads in Google's search engine or on third-party websites when the user enters certain search terms on Google (keyword targeting). In addition, targeted ads can be displayed based on user data available from Google (e.g. location data and interests) (audience targeting). As website operators, we can evaluate this data quantitatively by analyzing, for example, which search terms led to the display of our ads and how many ads led to corresponding clicks. The use of this service is based on your consent in accordance with Art. 6 para. 1 letter a DSGVO and § 25 para. 1 TTDSG. The consent can be revoked at any time. The transfer of data to the US is based on the standard contractual provisions of the European Commission. Details can be found here: https://policies.google.com/privacy/frameworks and https://privacy.google.com/businesses/controllerterms/mccs/. The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US to ensure compliance with European data protection standards for data processing in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000001L5AAI&status=Active

Google AdSense (not personalized)

This website uses Google AdSense, an advertising inclusion service. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. We use Google AdSense in "non-personalized" mode. Thus, unlike personalized mode, the ads are not based on your previous user behavior and no user profile is created of you. Instead, so-called "contextual information" is used to select the ads. The selected ads are then based, for example, on your location, the content of the website you are on or your current search terms. You can learn more about the differences between personalized and non-personalized targeting with Google AdSense at: https://support.google.com/adsense/answer/9007336. Please note that cookies or similar recognition technologies (for example, device fingerprints) may also be used when Google Adsense is used in non-personalized mode. According to Google, these are used to prevent fraud and abuse. The use of this service is based on your consent according to Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG. The consent can be revoked at any time. The transfer of data to the US is based on the standard contractual provisions of the European Commission. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/. You can adjust your advertising settings independently in your user account. To do so, click on the following link and log in: https://adssettings.google.com/authenticated. Click here to learn more about Google's advertising technologies: https://policies.google.com/technologies/ads and https://www.google.de/intl/de/policies/privacy/. The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US to ensure compliance with European data protection standards for data processing in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000001L5AAI&status=Active

Google Ads Remarketing

This website uses Google Ads Remarketing features. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. Google Ads Remarketing allows us to assign people who interact with our online offerings to specific target groups to then show interest-based advertising to them in Google's advertising network (remarketing or retargeting). In addition, ad target groups created with Google Ads Remarketing can be linked to Google's cross-device features. In this way, interest-based, personalized advertising messages tailored to you based on your previous usage and browsing behavior on one end device (e.g. cell phone) can also be displayed on another end device (e.g. tablet or PC). If you have a Google account, you can object to personalized advertising via the following link: https://www.google.com/settings/ads/onweb/. The use of this service is based on your consent in accordance with Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG. The consent can be revoked at any time. Further information and data protection provisions can be found in Google's privacy policy at: https://policies.google.com/technologies/ads?hl=de. The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US to ensure compliance with European data protection standards for data processing in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000001L5AAI&status=Active

Targeting with customer matching

For targeting we use, among other things, customer matching from Google Ads Remarketing. Here we transfer certain customer data (e.g. email addresses) from our customer lists to Google. If the customers in question are Google users and are logged into their Google account, they are shown matching advertising messages within the Google network (e.g. on YouTube, Gmail or in the search engine).

Meta Pixel (formerly Facebook Pixel)

This website uses Facebook/Meta's visitor action pixel to measure conversions. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. However, according to Facebook, the data collected is also transmitted to the US and other third countries. This allows tracking the behavior of page visitors after they are redirected to the provider's website by clicking on a Facebook ad. This allows the effectiveness of Facebook ads to be evaluated for statistical and market research purposes and to optimize future advertising measures. The data collected is anonymous for us as operator of this website, we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes, in accordance with Facebook's statement on the use of data (https://de-de.facebook.com/about/privacy/). This allows Facebook to display advertisements on Facebook pages and outside of Facebook. This use of data cannot be influenced by us as operator of the site. The use of this service is based on your consent according to Art. 6 paragraph 1 letter a DSGVO and § 25 paragraph 1 TTDSG. The consent can be revoked at any time. We use the advanced matching function within metapixel. Advanced matching allows us to pass different types of data (e.g., residence, state, zip code, hashed email addresses, names, gender, date of birth or phone number) of our customers and prospects that we collect through our website to Meta (Facebook). This activation allows us to more accurately target our advertising campaigns on Facebook to people who are interested in our offers. In addition, advanced matching improves website conversion attribution and enhances Custom Audiences. Insofar as personal data is collected on our website using the tool described here and transmitted to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland are jointly responsible for this data processing (Art. 26 DSGVO). The joint responsibility is limited exclusively to the collection of the data and its transmission to Facebook. The processing by Facebook that takes place after the forwarding is not part of the joint responsibility. Our joint obligations are laid down in a joint processing agreement. The text of the agreement can be found at: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing data protection information when using the Facebook tool and for the data protection-secure implementation of the tool on our website. Facebook is responsible for the data security of the Facebook products. You can assert your rights as a data subject (e.g. requests for information) regarding the data processed by Facebook directly with Facebook. If you assert your rights against us, we are obliged to pass them on to Facebook. The transfer of data to the US is based on the model contractual clauses of the European Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381. More information about protecting your privacy can be found in Facebook's privacy policy: https://de-de.facebook.com/about/privacy/. You can also opt out of the remarketing custom audiences feature in the Advertising Settings section at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screenThis requires you to be signed in to Facebook. If you do not have a Facebook account, you can disable Facebook's usage-based ads at the European Interactive Digital Advertising Alliance website at http://www.youronlinechoices.com/de/praferenzmanagement/. The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US to ensure compliance with European data protection standards for data processing in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000000GnywAAC&status=Active

VG Wort tracking pixel

On our website there are texts in which a so-called tracking pixel (METIS count pixel) is embedded. The provider is the Verwertungsgesellschaft WORT - VG WORT (authorized association by virtue of transfer), Untere Weidenstraße 5, 81543 Munich (hereinafter VG Wort). The Pixel counts the number of hits on texts and forwards them anonymously to the VG Wort to determine distributions for authors. The use of the VG Wort pixel is based on our legitimate interest to receive remuneration for the texts published on our website for our authors or ourselves (Art. 6 para. 1 lit. f DSGVO). Conflicting interests of website visitors are not visible, as the data are transmitted to VG Wort in anonymized form.

7. NEWSLETTER

Newsletterdaqten

.

If you wish to receive the newsletter offered on the website, we require an email address from you and information that allows us to verify that you are the owner of the email address provided and that you agree to receive the newsletter. Further data is not collected or is collected only on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties. The processing of the data entered in the newsletter registration form is based solely on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke your consent to the storage of the data, the e-mail address and its use for sending the newsletter at any time, for example via the "unsubscribe" link in the newsletter. The lawfulness of the data processing already carried out remains unaffected by the revocation. The data you provide us for receiving the newsletter will be stored by us or the newsletter provider until you unsubscribe from the newsletter and will be deleted from the newsletter distribution list after you unsubscribe from the newsletter or after the purpose has ceased to exist. We reserve the right to remove or block email addresses from our newsletter distribution list at our discretion in the context of our legitimate interest in accordance with Art. 6 (1) lit. f DSGVO. Data stored by us for other purposes will remain unaffected by this. After you have unsubscribed from the newsletter distribution list, your e-mail address will be stored in a blacklist by us or the provider of the newsletter service, if necessary to prevent future mailings. Blacklisted data will be used only for this purpose and will not be merged with other data. This serves both your interest and our interest in complying with legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO). The storage in the blacklist is not limited in time. You may object to the storage if your interests outweigh our legitimate interest..

8. PLUGINS AND TOOLS

YouTube with enhanced privacy

This website contains videos from the website YouTube. The operator of the pages is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. We use YouTube in extended data protection mode. According to YouTube, this mode means that YouTube does not store any information about visitors to this website before they view the video. However, the transfer of data to YouTube partners is not necessarily precluded by the extended data protection mode. For example, YouTube - regardless of whether you watch a video - connects to Google's DoubleClick network. As soon as you start a YouTube video on this website, a connection to YouTube's servers is established. This allows the YouTube server to know which of our pages you have visited. If you are logged into your YouTube account, you give YouTube the opportunity to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account. Furthermore, after starting a video, YouTube may store various cookies on your end device or use similar recognition technologies (e.g. device fingerprinting). This allows YouTube to obtain information about visitors to this website. Among other things, this information is used to collect video statistics, improve the user experience and prevent fraud attempts. If necessary, further data processing processes may be initiated after a YouTube video is started, over which we have no control. YouTube is used in the interest of an attractive presentation of our online offers. This is a legitimate interest within the meaning of Art. 6 (1) f DSGVO. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para 1 letter a DSGVO and § 25 para 1 TTDSG, insofar as the consent includes the storage of cookies or access to information on the user's end device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time. More information about data protection at YouTube can be found in their privacy policy at: https://policies.google.com/privacy?hl=de. The company is certified according to the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the US to ensure compliance with European data protection standards for data processing in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000001L5AAI&status=Active

Google reCAPTCHA

We use "Google reCAPTCHA" (hereinafter "reCAPTCHA") on this website. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. The purpose of reCAPTCHA is to check whether the data entered on this website (e.g. in a contact form) were created by a human being or by an automated program. For this purpose, reCAPTCHA analyzes the website visitor's behavior according to various characteristics. This analysis starts automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates different information (e.g. IP address, time spent by the website visitor on the website or mouse movements of the user). The data collected during the analysis is forwarded to Google. The reCAPTCHA analyses are performed completely in the background. Visitors to the website are not informed that an analysis is taking place. The storage and analysis of the data is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in protecting its web offers from unlawful automated spying and from SPAM. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information on the user's end device (e.g. device fingerprinting), as defined by the TTDSG. Consent may be revoked at any time. More information about Google reCAPTCHA can be found in Google's privacy policy and terms of use at the following links: https://policies.google.com/privacy?hl=de and https://policies.google.com/terms?hl=de. The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US to ensure compliance with European data protection standards for data processing in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000001L5AAI&status=Active

Userlike with enhanced privacy mode

We use Userlike (hereinafter "Userlike") to process user queries through our support channels or through live chat systems. The provider is Userlike UG (haftungsbeschränkt), Probsteigasse 44 - 46, 50670 Cologne, Germany. Messages you send to us may be stored in the Userlike ticket system or answered by our employees in live chat. When you communicate with us through Userlike, we and Userlike store, among other things, your name and email address, if you have provided them, and your chat history. This information is summarized in a profile. Messages you send us will remain with us until you request us to delete them or the purpose for storing the data no longer applies (e.g., after we have completed processing your request). Mandatory legal provisions - in particular statutory retention periods - remain unaffected. The use of Userlike is based on Art. 6 (1) lit. f DSGVO. We have a legitimate interest in processing your requests as quickly, reliably and efficiently as possible. Insofar as a corresponding consent has been requested, the processing is carried out solely on the basis of Art. 6 Para. 1 lit. a DSGVO and § 25 Para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's end device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent may be revoked at any time. For more information, see Userlike's privacy policy at https://www.userlike.com/de/data-privacy and https://www.userlike.com/de/blog/live-chat-software-datenschutz-dsgvo.

Contractual Processing

We have entered into an order processing contract (AVV) for the use of the above service. This is a legally required data protection contract, which guarantees that it processes the personal data of our website visitors only in accordance with our instructions and in compliance with the DSGVO.

Order processing contract

We have entered into an order processing contract for the use of the above service.

9. ONLINE MARKETING AND PARTNER PROGRAMS

Affiliate programs on this website

We participate in affiliate partner programs. In affiliate partner programs, ads from one company (advertiser) are placed on websites of other companies in the affiliate partner network (publisher). When you click on one of these affiliate ads, you are redirected to the advertised offer. If you then make a certain transaction (conversion), the publisher receives compensation for this. In order to calculate this compensation, the affiliate network operator must be able to identify through which ad you arrived at the respective offer and carried out the predetermined transaction. Cookies or similar recognition technologies (e.g. device fingerprinting) are used for this purpose. The storage and analysis of the data is based on Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in the correct calculation of its affiliate fee. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information on the user's end device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent may be revoked at any time. We participate in the following partner programs:

AWIN

The operator of the partner network is AWIN AG, Eichhornstraße 3, 10785 Berlin (hereinafter "AWIN"). AWIN and the Publisher are jointly responsible for data processing in connection with the Affiliate Program. The obligations incumbent upon them jointly are laid down in a joint processing agreement. According to this agreement, you can contact both controllers with your questions about data protection. The data controller first addressed in both cases will answer your question. Each controller independently maintains data protection information in accordance with Art. 13, 14 and 26 GDPR and takes the necessary measures to protect personal data and to comply with other GDPR regulations in its company. The joint processing agreement is available in AWIN's AVG at the following link: https://s3.amazonaws.com/docs.awin.com/Legal/Publisher+Terms/2020/DE+Publisher+Terms+GDPR+Annex.pdf

10. ECOMMERCE AND PAYMENT SUPPLIERS

Processing of Customer and Contract Data

We collect, process and use personal customer and contract data to establish, structure the content and modify our contractual relationships. We collect, process and use personal data on the use of this website (usage data) only to the extent necessary to enable the user to use the service or to bill the user. The legal basis for this is Art. 6 para. 1 lit. b DSGVO. The collected customer data is deleted after completion of the order or termination of the business relationship and the expiration of any existing legal retention periods. Legal retention periods remain unaffected.

Transfer of data when concluding the contract for online shops, dealers and shipment of goods

When you order goods from us, we transfer your personal data to the transport company in charge of delivery and to the payment service provider in charge of payment processing. Only the data that the respective service provider needs to perform its task is passed on. The legal basis for this is Art. 6 para. 1 lit. b DSGVO, which permits the processing of data for the performance of a contract or pre-contractual measures. If you have given the relevant consent according to Art. 6 (1) lit. a DSGVO, we will pass on your e-mail address to the transport company in charge of delivery so that they can inform you by e-mail about the shipping status of your order; you can revoke this consent at any time.

Credit checks

.

In the case of a purchase on account or another payment method where we make advance payments, we may perform a credit check (scoring). For this purpose, we provide the data you entered (e.g. name, address, age or bank details) to a credit bureau. Based on this data, the probability of default is determined. In the case of an excessive risk of non-payment, we may refuse the payment method in question. The credit assessment is carried out on the basis of contract fulfillment (Art. 6 para. 1 lit. b DSGVO) and for the prevention of defaults (legitimate interest according to Art. 6 para. 1 lit. f DSGVO). If consent is obtained, the credit assessment is carried out on the basis of this consent (Art. 6 para. 1 lit. DSGVO); consent may be revoked at any time.

Payment services

We integrate third-party payment services on our website. When you make a purchase with us, your payment information (e.g. name, payment amount, account information, credit card number) is processed by the payment service provider to process the payment. These transactions are subject to the respective contractual and data protection provisions of the respective providers. The payment service providers are used on the basis of Art. 6 para. 1 letter b DSGVO (contract processing) and in the interest of a smooth, convenient and secure payment process (Art. 6 para. 1 letter f DSGVO). Insofar as your consent is requested for certain actions, art. 6 paragraph 1 letter a DSGVO is the legal basis for data processing; consents may be revoked at any time with effect for the future. In the context of this website, we use the following payment services / payment service providers:

PayPal

The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal"). The data transfer to the U.S. is based on the European Commission's Standard Contractual Clauses. Details can be found here: https://www.paypal.com/de/webapps/mpp/ua/pocpsa-full. For more information, see PayPal's privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

Stripe

Provider for customers within the EU is Stripe Payments Europe, Ltd,1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland (hereinafter "Stripe"). Data transfer to the US is based on the European Commission's standard contract provisions. Details can be found here: https://stripe.com/de/privacy and https://stripe.com/de/guides/general-data-protection-regulation. Details can be found in Stripe's privacy policy at the following link: https://stripe.com/de/privacy.

Klarna

The provider is Klarna AB, Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter "Klarna"). Klarna offers various payment options (for example, installment plan). If you choose to pay with Klarna (Klarna checkout solution), Klarna collects various personal data from you. Klarna uses cookies to optimize the use of the Klarna checkout solution. See the following link for more information on the use of Klarna cookies: https://cdn.klarna.com/1.0/shared/content/policy/cookie/de_de/checkout.pdf. More information can be found in Klarna's privacy policy at the following link: https://www.klarna.com/de/datenschutz/.

Mollie

The provider of this payment service is Mollie B.V., Keizersgracht 126, 1015CW Amsterdam, the Netherlands (hereinafter "Mollie"). With the help of Mollie, we can integrate various payment methods on our website. For more information, please see Mollie's privacy policy at https://www.mollie.com/de/privacy.

11. OWNERSHIP

How we handle applicant data

We offer you the opportunity to apply for a job with us (for example, by e-mail, post or via an online application form). Below we inform you about the scope, purpose and use of your personal data collected as part of the application process. We assure you that the collection, processing and use of your data will be carried out in accordance with applicable data protection legislation and all other legal provisions and that your data will be kept strictly confidential.

Size and purpose of data collection

When you send us an application for employment, we process your associated personal data (e.g. contact and communication data, application documents, notes taken during interviews, etc.) to the extent necessary to make a decision about entering into an employment relationship. The legal basis for this is § 26 BDSG under German law (initiation of an employment relationship), Art. 6 para. 1 lit. b DSGVO (general contract initiation) and - if you have given your consent - Art. 6 para. 1 lit. a DSGVO. Consent can be revoked at any time. Your personal data will only be passed on within our company to persons involved in processing your application. If the application is successful, the data provided by you will be stored in our data processing systems on the basis of Art. 26 BDSG and Art. 6 (1) lit. b DSGVO for the execution of the employment relationship.

Duration of data retention

If we are unable to make you a job offer, if you reject a job offer or withdraw your application, we reserve the right to retain the data you have provided to us based on our legitimate interests (Art. 6 para. 1 lit. f DSGVO) for up to 6 months after the end of the application process (rejection or withdrawal of the application). Thereafter, the data will be deleted and the physical application documents destroyed. This storage serves in particular as evidence in the event of a legal dispute. If it is clear that the data is still needed after the 6-month period has expired (e.g. due to an impending or pending legal dispute), the data will only be deleted when the purpose for further storage no longer applies. Longer storage may also occur if you have given your consent (Art. 6 para. 1 lit. a DSGVO) or if legal storage obligations prevent deletion. Status: September 2023

Our SOCIAL MEDIA CONTRIBUTIONS


This privacy policy applies to the following social media


Data processing via social networks

We maintain publicly accessible profiles on social networks. The specific social networks we use are listed below. Social networks such as Facebook, Twitter etc. can generally analyze your user behavior extensively when you visit their website or a website with integrated social media content (e.g. like buttons or advertising banners). When visiting our social media presences, numerous data protection-relevant processing operations are activated. In detail: If you are logged into your social media account and visit our social media presence, the operator of the social media portal may assign this visit to your user account. However, your personal data may also be collected under certain circumstances if you are not logged in or do not have an account with the respective social media portal. In this case, this data collection takes place, for example, via cookies stored on your end device or by recording your IP address. Using the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, interest-based advertisements within and outside the respective social media presence can be shown to you. Provided you have an account with the respective social network, interest-based advertising may be displayed on all devices on which you are or were logged in. Please also note that we cannot monitor all processing procedures on the social media portals. Depending on the provider, further processing procedures may therefore be carried out by the operators of the social media portals. For more information, please refer to the terms of use and data protection provisions of the respective social media portals.

Legal basis

.

Our social media presences are intended to ensure the fullest possible presence on the Internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f DSGVO. The analysis processes initiated by the social networks may be based on various legal grounds, which must be stated by the operators of the social networks (e.g. consent within the meaning of Art. 6 (1) lit. a DSGVO).



Manager and exercise of rights

.

When you visit one of our social media sites (e.g. Facebook), we are responsible together with the operator of the social media platform for the data processing that takes place during this visit. In principle, you can assert your rights (information, correction, deletion, restriction of processing, data portability and complaint) both against us and against the operator of the respective social media portal (e.g. Facebook). Please note that despite joint responsibility with the operators of the social media portals, we do not have full influence over the data processing procedures of the social media portals. Our options are largely determined by the corporate policies of the respective provider.

Duration of storage

The data directly collected by us through the social media presence will be deleted from our systems as soon as you request us to delete it, withdraw your consent to store the data, or the purpose for storing the data no longer applies. Stored cookies remain on your end device until you delete them. Mandatory legal provisions - in particular retention periods - remain unaffected. We have no influence on the storage period of your data, which is stored by the operators of the social networks for their own purposes. For more information, please contact the operators of the social networks directly (e.g. in their privacy policies, see below).


Your rights

You have the right at any time to receive information free of charge about the origin, recipient and purpose of your stored personal data. You also have the right to object, the right to data portability and the right to lodge a complaint with the competent supervisory authority. In addition, you can request correction, blocking, deletion and, under certain circumstances, restriction of the processing of your personal data.


Social networks in detail

Facebook

We have a profile on Facebook. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereafter Meta). According to Meta, the data collected is also transferred to the US and other third countries. We have entered into a joint processing agreement (Controller Addendum) with Meta. This agreement specifies which data processing we or Meta are responsible for when you visit our Facebook page. You can view this agreement at the following link: https://www.facebook.com/legal/terms/page_controller_addendum. You can adjust your ad settings independently in your user account. To do so, click on the following link and log in: https://www.facebook.com/settings?tab=ads. The transfer of data to the US is based on the European Commission's standard contractual clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381. See Facebook's privacy policy for more information: https://www.facebook.com/about/privacy/. The company is certified under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the US to ensure compliance with European data protection standards for data processing in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000000GnywAAC&status=Active

Instagram

We have a profile on Instagram. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. The data transfer to the US is based on the EU Commission standard contractual clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://privacycenter.instagram.com/policy/ and https://de-de.facebook.com/help/566994660333381. Please see Instagram's privacy policy for more information on how they handle your personal information: https://privacycenter.instagram.com/policy/. The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US to ensure compliance with European data protection standards for data processing in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000000GnywAAC&status=Active

LinkedIn

We have a profile on LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn uses advertising cookies. If you wish to disable LinkedIn's advertising cookies, please use the following link:https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out. The transfer of data to the US is based on the EU Commission's standard contractual clauses. Details can be found here: https://www.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs. For more information on how LinkedIn handles your personal information, see LinkedIn's privacy policy: https://www.linkedin.com/legal/privacy-policy

YouTube

We have a profile on YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Please see YouTube's privacy policy for more information on how they handle your personal information: https://policies.google.com/privacy?hl=de. The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US to ensure compliance with European data protection standards when processing data in the US. Any company certified under the DPF commits to compliance with these data protection standards. For more information, contact the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt0000001L5AAI&status=Active

TikTok

We have a profile on TikTok. The provider is TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland. Details on how they handle your personal data can be found in TikTok's privacy policy: https://www.tiktok.com/legal/privacy-policy?lang=de. Data transfers to non-secure third countries are based on the European Commission's Standard Contractual Clauses. Details can be found here: https://www.tiktok.com/legal/privacy-policy?lang=de.

From September 2023