1. General information and principles of data processing
We are pleased that you are visiting our website. The protection of your privacy and the protection of your personal data, so-called personal data, when using our website is an important concern for us.
According to Art. 4 No. 1 of the GDPR, personal data is any information relating to an identified or identifiable natural person. This includes, for example, information such as their first and last name, their address, their telephone number, their e-mail address, but also their IP address.
Data for which no reference to your person can be established, such as through anonymisation, is not personal data. Processing (e.g. collecting, storing, reading, querying, using, transmitting, deleting or destroying) according to Art. 4 No. 2 GDPR always requires a legal basis or your consent. Processed personal data must be deleted as soon as the purpose of the processing has been achieved and there are no longer any legally prescribed retention obligations to uphold.
Here you will find information on how we handle your personal data when you visit our website. In order to provide the functions and services of our website, it is necessary for us to collect personal data about you.
We also explain to you the type and scope of the respective data processing, the purpose and the corresponding legal basis and the respective storage period.
This data protection declaration only applies to this website. It does not apply to other websites to which we merely refer by means of a hyperlink. We cannot accept any responsibility for the confidential handling of your personal data on these third-party websites, as we have no influence on whether these companies comply with data protection regulations. Please inform yourself about the handling of your personal data by these companies directly on these websites.
2. Responsible body
Responsible for the processing of personal data on this website is (see imprint):
3. Provision and use of the website/server log files
a) Type and scope of data processing
If you use this website without otherwise transmitting data to us (e.g. by registering or using the contact form), we collect technically necessary data via server log files that are automatically transmitted to our server, including:
- IP address
- Date and time of the request
- Name and URL of the retrieved file
- Website from which the access is made (referrer URL)
- Access Status/HTTP Status Code
- Browser type
- Language and version of the browser software
- Operating system
b) Purpose and legal basis
This processing is technically necessary in order to display our website to you. We also use the data to ensure the security and stability of our website.
The legal basis for this processing is Art. 6 para. 1 lit. f) GDPR. The processing of the aforementioned data is necessary for the provision of a website and thus serves to protect a legitimate interest of our company.
c) Storage period
As soon as the aforementioned personal data is no longer required to display the website, it is deleted. The collection of data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility for the user to object to this aspect. Further storage may take place in individual cases if this is required by law.
4. Use of cookies
a) Type, scope and purpose of data processing
We use cookies. Cookies are small files that are sent by us to the browser of your terminal device during your visit to our website and stored there.
Some functions of our website cannot be offered without the use of technically necessary cookies. Other cookies, on the other hand, enable us to carry out various analyses. For example, some cookies can recognise the browser you are using when you visit our website again and transmit various information to us. We use cookies to facilitate and improve the use of our website. Among other things, cookies enable us to make our website more user-friendly and effective for you by, for example, tracking your use of our website and determining your preferred settings (e.g. country and language settings). If third parties process information via cookies, they collect the information directly via your browser. However, cookies do not cause any damage to your end device. They cannot execute any programs and cannot contain viruses. Various types of cookies are used on our website, the type and function of which are explained below.
Temporary cookies/ session cookies
Our website uses so-called temporary cookies or session cookies, which are automatically deleted as soon as you close your browser. This type of cookie makes it possible to record your session ID. This allows various requests from your browser to be assigned to a common session and makes it possible to recognise your terminal device during subsequent website visits.
Permanent cookies
So-called permanent cookies are used on our website. Permanent cookies are cookies that are stored in your browser for a longer period of time and can transmit information. The respective storage period differs depending on the cookie. You can delete permanent cookies independently via your browser settings.
Third-party cookies
We use analytical cookies to monitor anonymised user behaviour on our website.
We also use advertising cookies. These cookies allow us to track user behaviour for advertising and targeted marketing purposes.
Social media cookies allow you to connect to your social networks and share content from our website within your networks.
Configuration of the browser settings
Most web browsers are preset to automatically accept cookies. However, you can configure your respective browser so that it only accepts certain cookies or no cookies at all. However, we would like to point out that you may then no longer be able to use all the functions of our website.
You can also delete cookies already stored in your browser via your browser settings. Furthermore, it is possible to set your browser to notify you before cookies are stored. Since the various browsers can differ in their respective functions, we ask you to use the respective help menu of your browser for the corresponding configuration options.
Deactivating the use of cookies may require the storage of a permanent cookie on your computer. If you subsequently delete this cookie, you will have to deactivate it again.
b) Legal basis
Based on the purposes described, the legal basis for the processing of personal data using cookies is Art. 6 (1) lit. f) GDPR. If you have given us your consent to the use of cookies on the basis of a notice we have issued on the website (“cookie banner”), the legal basis is additionally Art. 6 para. 1 lit. a) GDPR.
c) Storage period
As soon as the data transmitted to us via the cookies is no longer required for the purposes described above, this information is deleted. Further storage may take place in individual cases if this is required by law.
5. Data collection for the implementation of pre-contractual measures and for the fulfilment of the contract
a) Type and scope of data processing
In the pre-contractual area and when concluding the contract, we collect personal data about you. This concerns, for example, your first and last name, address, e-mail address, telephone number or bank details.
b) Purpose and legal basis of the data processing
We collect and process this data exclusively for the purpose of executing the contract or fulfilling pre-contractual obligations.
The legal basis for this is Art. 6 para. 1 lit b) GDPR. If you have also given your consent, the additional legal basis is Art. 6 para. 1 lit. a) GDPR.
c) Storage period
The data will be deleted as soon as they are no longer necessary for the purpose of their processing.
In addition, there may be legal storage obligations, for example, storage obligations under commercial or tax law in accordance with the German Commercial Code (HGB) or the German Fiscal Code (AO). If such retention obligations exist, we will block or delete your data at the end of these retention obligations.
6. Order form
There is an order form on our website which can be used for electronic pre-orders.
a) Type and scope of data processing
Our data collection is limited to the following data:
- First and last name
- Telephone number
- E-mail address
- Account details
- Product name
b) Purpose and legal basis
The purpose of the data processing is to be able to process your order properly.
The legal basis for this is Art. 6 para. 1 lit. b) GDPR. The processing of the data serves the fulfilment of a contract, or is necessary for the implementation of a pre-contractual measure, which has taken place at the request of the data subject.
c) Storage period
The data will be deleted as soon as they are no longer needed to achieve the purpose of the processing.
In addition, there may be legal storage obligations, for example, storage obligations under commercial or tax law in accordance with the German Commercial Code (HGB) or the German Fiscal Code (AO). If such retention obligations exist, we will block or delete your data at the end of these retention obligations.
7. Registration possibility
a) Type and scope of data processing
You can register on our website. When you register, we collect and store the data you enter in the input mask (e.g. last name, first name, e-mail address). This data will not be passed on to third parties.
b) Purpose and legal basis of the data processing
Your registration is necessary for the use of certain content and services on our website or for the performance of a contract or for the implementation of pre-contractual measures. After registration, you are free to change the personal data provided during registration at any time or to have it completely deleted from the data stock of the controller.
In the case of consent, the legal basis for processing is Art. 6 (1) a)
GDPR. If your registration serves the preparation of a contract conclusion, Art. 6 para. 1 lit. b) GDPR is the additional legal basis.
c) Storage period
The data collected during registration will be stored by us for as long as you are registered on our website and will then be deleted. Legal retention periods remain unaffected. In addition, your registered personal data will be deleted if you
8. Data transmission
We will only share your personal data with third parties if:
a) you have given your express consent to this in accordance with Art. 6 (1) a) GDPR.
b) this is legally permissible and necessary according to Art. 6 para. 1 lit. b) GDPR for the fulfilment of a contractual relationship with you or the implementation of pre-contractual measures.
c) there is a legal obligation for the disclosure pursuant to Art. 6 para. 1 lit. c) GDPR.
We are legally obliged to transmit data to state authorities, e.g. tax authorities, social insurance carriers, health insurance companies, supervisory authorities and law enforcement agencies.
d) the disclosure is necessary in accordance with Art. 6 (1) f) GDPR for the protection of legitimate business interests, as well as for the assertion, exercise or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data.
e) we make use of external service providers, so-called order processors, in accordance with Art. 28 GDPR, who are obliged to handle your data with care.
We use such service providers in the areas of:
- IT
- Logistics
- Telecommunications
When transferring data to external bodies in third countries, i.e. outside the EU or EEA, we ensure that these bodies treat your personal data with the same care as within the EU or EEA. We only transfer personal data to third countries where the EU Commission has confirmed an adequate level of protection or if we ensure the careful handling of personal data through contractual agreements or other suitable guarantees.
9. Application possibility
a) Type and scope of data processing
You can apply on our website or by e-mail. When you apply, we collect and store the data that you enter in the input mask or that you send us by e-mail.
b) Purpose and legal basis
We process your data only for the purpose of processing your application.
Your data will not be passed on to third parties. The legal basis for the processing is Art. 88 (1) GDPR in conjunction with. § 26 BDSG and additionally Art. 6 para. 1 lit. b) GDPR.
If you give us consent to include you in our applicant pool, the legal basis is Art. 6 para. 1 lit. a) GDPR.
c) Storage period
If we are unable to offer you a job, we will store your data for a maximum of six months after the end of the application process, taking into account § 61b para. 1 ArbGG in conjunction with. § 15 AGG. The start of the period is the receipt of the rejection letter.
If you have given us consent to include you in our applicant pool, we store your data for a maximum of two years.
d) Data transfer
Your data will only be disclosed to the bodies involved in the decision (responsible personnel or specialist departments, management, works council).
In addition, we are obliged to provide public bodies and institutions (e.g. public prosecutor’s office, police, supervisory authorities, tax office, social security institutions, etc.) with their data.
Further data recipients may be those bodies for which you have given us your consent to transfer data.
10. Comment function
a) Type and scope of data processing
You can comment on articles on our website. When you comment on a post, we collect and store the data you enter in the input mask. In addition to the comments you leave, information on the time of comment entry and possibly the user name (pseudonym) you have chosen will also be stored and published. Furthermore, the IP address assigned by the Internet service provider (ISP) of the person concerned is stored. This information is not passed on to third parties.
b) Purpose and legal basis
The data transmitted by you (e.g. the IP address) is used for security reasons and in the event that the person concerned violates the rights of third parties by posting a comment or posts illegal content.
No disclosure of this collected personal data to third parties will take place, unless such disclosure is required by law or serves the legal defence of the controller.
The legal basis for the processing of personal data transmitted when using the comment function is, if and insofar as you have given your consent, Art. 6 para. 1 lit. a) GDPR. You can revoke this consent at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.
Further legal basis is Art. 6 para. 1 lit. f) GDPR.
We have a legitimate interest in processing if third party rights are violated or illegal content is posted. This is for security purposes in case someone writes unlawful content in comments and posts (insults, prohibited political propaganda, etc.).
c) Storage period
The comments and the associated data (e.g. IP address) are stored and remain on our website until the commented content has been completely deleted or the comments have to be deleted for legal reasons.
11. Contact form
a) Type and scope of data processing
On our website, we offer you the opportunity to contact us via a form provided. During the process of sending your enquiry via the contact form, reference is made to this data protection declaration in order to obtain your consent.
If you make use of the contact form, the following personal data will be processed:
– Salutation
– First name
– Surname
– Gender
– Age
– highest educational qualification
– reason
– Title
– Company
– Branch
– Function
– Street
– Street number
– Postcode
– Location
– Country
– E-mail address
– Phone number
– Subject
– Message content
b) Purpose and legal basis
The purpose of providing your e-mail address is to send you a reply to your enquiry by e-mail. When using the contact form, your personal data will not be passed on to third parties.
The legal basis for the processing is consent in accordance with Art. 6 Para. 1 lit. a) GDPR on the basis of the declaration of consent voluntarily submitted by you in the following and which can be revoked at any time for the future:
c) Storage period
The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after we have completed processing your enquiry).
Mandatory legal provisions – in particular retention periods according to the German Commercial Code (HGB) or the German Fiscal Code (AO) – remain unaffected.
12. Contact possibilities by e-mail
On our website you can contact us by e-mail.
a) Type and scope of data processing
You can contact us by e-mail. Our data collection is limited to the e-mail address of the e-mail account you use to contact us as well as the personal data you provide as required when contacting us.
b) Purpose and legal basis
The purpose of the data processing is to be able to answer your request appropriately. The legal basis for this is Art. 6 para. 1 lit. f) GDPR. There is a legitimate interest in processing the above-mentioned personal data in order to be able to deal with your request appropriately.
c) Storage period
The duration of the storage of the above-mentioned data depends on the background of your contact. Your personal data will be deleted regularly if the purpose of the communication no longer applies and storage is no longer necessary. This may result, for example, from the processing of your request.
13 Newsletter
a) Type and scope of data processing
On our website you have the option of subscribing to a free regular e-mail newsletter. In order to be able to send you the newsletter on a regular basis, we need your e-mail address.
For the newsletter dispatch we use the so-called double opt-in procedure.
This means that we will only send you an e-mail newsletter once you have expressly confirmed that you consent to receiving the newsletter. We will then send you a confirmation e-mail asking you to confirm that you wish to receive future newsletters from us by clicking on a corresponding link.
This serves to ensure that only you, as the owner of the specified email address, can subscribe to the newsletter. Your confirmation must take place promptly after receipt of the confirmation email, otherwise your newsletter registration will be automatically deleted from our database.
When you subscribe to the newsletter, we collect and store the data you enter in the input mask (e.g. last name, first name, e-mail address).
When you register for the newsletter, we also save the IP address entered by your Internet service provider (ISP) as well as the date and time of registration in order to be able to trace any possible misuse of your e-mail address at a later date. In the case of the confirmation e-mail sent for control purposes (double opt in
e-mail), we also save the date and time of the click on the confirmation link and the IP address entered by the Internet service provider (ISP).
b) Purpose and legal basis
The data collected by us when you register for the newsletter is used exclusively for the purpose of addressing you in an advertising manner by way of the newsletter.
The processing of your e-mail address for the newsletter dispatch is based, in accordance with Art. 6 para. 1 lit. a) GDPR and § 7 para. 2 no. 3 UWG, on the declaration of consent voluntarily submitted by you below, which can be revoked at any time for the future.
In addition, the processing is based on Art. 6 para. 1 lit f) GDPR due to legitimate interests of us to document the proof of the required consent.
c) Storage period
Your email address will be stored for as long as you have subscribed to the newsletter. After unsubscribing from the newsletter, your email address will be deleted unless you have expressly consented to further use of your data.
14. Tracking and analysis tools
A detailed overview of the web analytics and social media tools we use can be found below:
Google Analytics
Some of our websites use Google Analytics to analyse and improve their use.
Google Analytics is a web analytics service provided by Google, Inc (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. In the event that IP anonymisation is activated on this website, however, your IP address will be truncated beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The legal basis for the processing of data with the help of Google Analytics is your consent in accordance with Art. 6 (1) lit. a DS-GVO. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
The legal basis for data processing is your consent according to Art. 6 para. 1 lit. a DS-GVO.
You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. In addition, you can prevent the collection of the data generated by the cookie and related to your use of the website (incl. your IP address) to Google as well as the processing of this data by Google by downloading and installing the browser plugin available under the following link:
http://tools.google.com/dlpage/gaoptout?hl=de
We use Google Analytics with the extension “_anonymizeIp()”. This shortens the IP addresses (so-called IP masking). A reference to specific persons can thus be excluded.
Information about Google: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001
More information on Google’s terms of use:
www.google.com/analytics/terms/de.html
Facebook Custom Audience / Facebook Pixel
We use the visitor action pixel of the provider Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2 D02 X525, Ireland (“Facebook”) within our website. The remarketing tag or tracking pixel was implemented by Facebook. Facebook and we are jointly responsible for data processing.
The Facebook pixel makes it possible for Facebook to determine the visitors to our online offer as a target group for the display of advertisements (so-called “Facebook ads”). The tracking of a user can also take place across several websites. We use the Facebook pixel to display Facebook ads placed by us only to Facebook users who have shown an interest in our online offer or who have certain characteristics (e.g. interest in certain topics or products determined on the basis of the websites visited), which we transmit to Facebook (so-called “Custom Audiences”).
With the help of the Facebook pixel, we can also track the effectiveness of Facebook ads for statistical and market research purposes (“Audience Insights”) by seeing whether users were redirected to our website after clicking on a Facebook ad (so-called “conversion”).
The Facebook pixel is a javascript code that sends the following data to Facebook:
-HTTP header information: including IP address, web browser information, page location, document, website URL and web browser device (computer, smartphone, tablet, other) as well as day and time of use.
-Pixel specific data: Pixel ID and Facebook cookie data including your Facebook ID (these are used to link events to a specific Facebook advertising account and thus associate them with a Facebook user).
-Additional information about the visit and about standard and custom data events.
You can find more information here.
We also use the additional function “automatic extended matching”. Here, data such as first and last name, place of residence, email addresses, telephone numbers or Facebook IDs of the users are transmitted to Facebook in encrypted form for the creation of target groups (“Custom Audiences” or “Look Alike Audiences”). This also includes data from non-Facebook users and from users who are not logged into Facebook when they visit our website. This can also identify website visitors who have deactivated the storage of third-party cookies.
If no Facebook cookies are stored in your browser, you will not be assigned to one of the user groups known as “Custom Audience”. However, if the Facebook ID contained in the Facebook cookie has been assigned to a Facebook user, Facebook will assign this user to a so-called “Custom Audience” based on the rules defined by us.
According to the case law of the European Court of Justice, we are jointly responsible with Facebook for the operation of the tracking pixel with regard to compliance with data protection regulations. In this context, Facebook provides the associated IT infrastructure as well as the website of the social network and is basically the primary contact when it comes to the processing of your data on the pages of the social network (e.g. information or deletion). However, you can also assert your legal rights against us. In this case, we will forward your requests to the operator of the social network.
If data is transferred outside the European Union (EU) or the signatory states to the Agreement on the European Economic Area (EEA), Facebook obliges the recipients (including the US company Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA) to comply with an appropriate data protection standard on the basis of so-called EU standard contractual clauses. In addition, a transfer to a third country can also take place due to the recognition of an adequate level of data protection by the European Commission.
We use the Facebook pixel to display the “Facebook ads” we place to Facebook users who have shown an interest in our online offering or who have certain characteristics that we transmit to Facebook (so-called “custom audiences”).
The legal basis for the use of Facebook Custom Audience is your consent in accordance with Art. 6 para. 1 lit. a) DS-GVO.
You can find more information about this here and in Facebook’s privacy policy.
LinkedIn Insight Tag / Pixel
The so-called Insight Tag of the social network LinkedIn is used on our website. This is offered by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (hereinafter “LinkedIn”).
The LinkedIn Insight tag is a small JavaScript code snippet that we have added to our website. This enables the collection of data about visits to our website, including URL, referrer URL, IP address, device and browser properties, timestamps and page views.
LinkedIn does not share any personal data with us, but only provides aggregate reports on website audience and ad performance. It also provides retargeting for website visitors so that we can use this data to display targeted advertising outside of our website without identifying the member. LinkedIn members can control the use of their personal data for advertising purposes in their account settings.
Details on data processing as well as your rights and setting options can be found in LinkedIn’s data protection information at:
https://www.linkedin.com/legal/privacy-policy
The use of the LinkedIn Insight tag is for the purpose of providing detailed campaign reports and information about visitors to our website and therefore serves our advertising and marketing interests.
The legal basis for the processing of personal data is Art. 6 para. 1 lit. a) DSGVO, i.e. your consent.
The data is encrypted, anonymised within seven days and the anonymised data is deleted within 90 days.
However, as a user you can also decide yourself at any time about the execution of the Java Script code required for the tool via your browser settings. By changing the settings in your internet browser, you can deactivate or restrict the execution of Java Script and thus also prevent its storage. In this case, however, it may no longer be possible to use all the functions of the website to their full extent.
Google Tag Manager
Google Tag Manager is a solution that allows marketers to manage website tags through one interface. The Tag Manager tool itself (which implements the tags) is a cookie-less domain and does not collect any personal data. The tool triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, this remains in place for all tracking tags implemented with Google Tag Manager.
http://www.google.de/tagmanager/use-policy.html
Google Fonts
We use Google Fonts on some of our websites. This allows us to integrate certain fonts into our website. These fonts are provided by Google via servers in the USA. When calling up our website, the visitor’s web browser establishes a direct connection to these servers. Among other things, the visitor’s IP address is transmitted to Google and stored there.
Further information about Google: Google Inc., 1600 Amphitheatre Parkway, Mountain View, California 94043, USA
Further information on data protection at Google:
https://www.google.com/policies/privacy/
Google Fonts local
We use external fonts from Google Fonts on this website. Google Fonts is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, Tel: +353 1 543 1000, Fax: +353 1 686 5660, Email: support-deutschland@google.com (“Google”).
We integrate Google Fonts locally, i.e. on our own server. This avoids a connection to Google servers in the USA and a transfer and storage of personal data to or on Google servers in the USA.
The purpose of using Google Fonts is the uniform presentation of fonts. The legal basis is Art. 6 para. 1 lit. f) DS-GVO. You have the right to object to the creation of user profiles.
On our Twitter channel you will receive our offers and services.
When you visit our channel, Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland (“Twitter”), as operator, stores and processes personal data to the extent described in the privacy policy.Twitter’s privacy policy can be found here: https://twitter.com/de/privacy
For the purpose of demand-oriented design and continuous optimisation of our pages, we use the statistics service Twitter Analytics. This service records your activity on our site and makes it available to us in anonymised statistics. This provides us with information on, among other things, impressions (how often a certain ad was viewed by Twitter users and by which target groups), conversions (e.g. website visits, registration) and other interactions (e.g. retweets, hashtag clicks). It is not possible for us to draw conclusions about individual users or access to individual user profiles.
For more information on Twitter Analytics, please visit:
https://business.twitter.com/de/advertising/analytics.html
Cloudflare
We use the services of the company “Cloudflare” (Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA) to increase the availability and security of our website.
Cloudflare provides a so-called Content Delivery Network (CDN). This means that website operators can make certain page content available not only on their own servers, but also on servers of CDN providers. If the CDN servers are located closer to the user than the website operator’s servers, the use of a CDN regularly results in faster loading times for the user. When users call up the page of such a website operator, they therefore establish a connection not only to the website operator, but also to the CDN operator.
In addition, Cloudflare provides website operators with security functions that can be used, in particular, to fend off automated attacks on the website. Due to the use of these functions, the availability of our website and the offers contained therein can be ensured.
Cloudflare sets cookies for the purposes outlined above and may process the following categories of data in particular as a result:
IP address,
end device of the user,
Data on traffic between the user and the website operator, e.g. pages accessed, date and time of access.
You can completely prevent Cloudflare from processing your personal data by deactivating the execution of script code in your browser settings or by integrating a so-called script blocker into your browser.
Cloudflare contractually undertakes, on the basis of so-called EU standard data protection clauses, when transferring personal data out of the European Economic Area, to ensure that the recipients observe a data protection standard that is substantially equivalent to the European standard. Please note, however, that we cannot ensure that Cloudflare will be able to comply with these contractual obligations in every case.
The legal basis for data processing is our legitimate interest in the continuous and secure operation of our website and the defence against hacker attacks (Art. 6 para. 1 lit. f) DS-GVO).
For more information, please see Cloudflare’s privacy policy at: https://www.cloudflare.com/de-de/privacypolicy/
If you visit our Instagram channel, personal data will be stored and processed by Facebook Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 D02 X525, Ireland, as the provider of Instagram, in accordance with Instagram’s privacy policy. You can find the privacy policy here:
https://help.instagram.com/519522125107875
We use the statistics service Instagram Insights for
the purpose of needs-based design and ongoing optimisation of our pages. This service records your activity on our site and makes it available to us in anonymised statistics. This provides us with information about, among other things, the interactions of our fan page visitors, the views of our page, the reach of posts, information about the activity of our subscribers, as well as information about which countries and locations our visitors come from, and statistics about the gender ratios of our visitors. It is not possible for us to draw conclusions about individual users or access individual user profiles.
15. Data security and backup measures
We are committed to protecting your privacy and treating your personal data confidentially. To this end, we take extensive technical and organisational security precautions, which are regularly reviewed and adapted to technological progress.
This includes, among other things, the use of recognised encryption procedures (SSL or TLS). However, data disclosed in unencrypted form, for example by unencrypted e-mail, may be read by third parties. We have no influence on this. It is the responsibility of the respective user to protect the data he or she provides against misuse by encrypting it or in any other way.
16. Changes to the privacy policy
We reserve the right at all times to update this statement as necessary.
17. Your rights
Here you will find your rights in relation to your personal data. Details can be found in Articles 7, 15-22 and 77 of the GDPR. You can contact the controller in this regard (point 2).
Right to revoke your data protection consent according to Art. 7 para. 3 p. 1 GDPR
You can revoke your consent to the processing of your personal data at any time with effect for the future. However, the lawfulness of the processing carried out until the revocation is not affected by this.
a) Right to information according to Art. 15 GDPR
You have the right to request confirmation as to whether we are processing personal data relating to you. If this is the case, you have the right to be informed about this personal data and to receive further information, e.g. the purposes of processing, the categories of personal data processed, the recipients and the planned duration of storage or the criteria for determining the duration.
b) Right to rectification and completion according to Art. 16 GDPR
You have the right to request the rectification of inaccurate data without delay. Taking into account the purposes of the processing, you have the right to request the completion of incomplete data.
c) Right to erasure (“right to be forgotten”) according to Art. 17 GDPR
You have a right to erasure insofar as the processing is no longer necessary.
This is the case, for example, if your data is no longer necessary for the original purposes, you have revoked your declaration of consent under data protection law or the data was processed unlawfully.
d) Right to restriction of processing according to Art. 18 GDPR
You have a right to restrict processing, e.g. if you believe the personal data is inaccurate.
e) Right to data portability according to Art. 20 GDPR
You have the right to receive the personal data concerning you in a structured, common and machine-readable format.
f) Right of objection according to Art. 21 GDPR
You have the right to object at any time, on grounds relating to your particular situation, to the processing of certain personal data concerning you.In the event of direct marketing, you as the data subject have the right to object at any time to the processing of personal data concerning you for the purposes of such marketing
; this also applies to profiling, insofar as it is related to such direct marketing.
g) Automated decision in individual cases including profiling according to Art. 22 GDPR
You have the right not to be subject to a decision based solely on automated processing, including profiling, except in the exceptional circumstances mentioned in Article 22 of the GDPR.
Decision-making based exclusively on automated processing – including profiling – does not take place.
h) Complaint to a data protection supervisory authority pursuant to Art. 77 GDPR
You can also lodge a complaint with a data protection supervisory authority at any time, for example if you believe that the data processing does not comply with data protection regulations.