POLYSTUCK
0
Your Cart

Privacy

Privacy policy

With this privacy policy, we would like to inform you about the nature, scope and purpose of the processing of personal data (hereinafter also referred to as “data”). Personal data is any data that has a personal reference to you, e.g. name, address, e-mail address or your user behavior. The data protection declaration applies to all data processing operations carried out by us both within the scope of our core activities and for the online media provided by us.

Who is responsible for data processing at our company

Responsible for data processing is:

Pottpartner UG (limited liability)
At the Waldthausenpark 7-9
45127 Essen
Germany
0209 – 8830 6343
service@polystuck.com.com
www.polystuck.com.com/impressum

Processing of your data within the scope of the core activity of our company

If you are our customer or business partner or are interested in our services, the type, scope and purpose of the processing of your data depends on the contractual or pre-contractual relationship existing between us. In this sense, the data processed by us includes all those data that are or were provided by you for the purpose of using the contractual or pre-contractual services and that are required to process your inquiry or the contract concluded between us. Unless otherwise stated in the further notes of this data protection declaration, the processing of your data as well as its transfer to third parties is limited to those data that are necessary and appropriate to answer your inquiries and/or to fulfill the contract concluded between you and us, to protect our rights as well as to fulfill legal obligations. We will inform you which data is required for this before or during the data collection. Insofar as we use third-party providers to provide our services, the data protection notices of the respective third-party providers apply.

Data concerned:

  • Inventory data (e.g. names, addresses)
  • Payment data (e.g. bank details, invoices)
  • Contact data (e.g. e-mail address, telephone number, postal address)
  • Contract data (e.g. subject matter of the contract, duration of the contract)

Affected persons: Interested parties, business and contractual partners

Purpose of processing: processing of contractual services, communication as well as answering contact requests, office and organization procedures.

Legal basis: Contract fulfillment and pre-contractual requests, Art. 6 para. 1 lit. b DSGVO, legal obligation, Art. 6 para. 1 lit. c DSGVO, legitimate interest, Art. 6 para. 1 lit. f GDPR

Your rights under the GDPR

According to the GDPR, you are entitled to the rights listed below, which you can exercise at any time by contacting the controller named in section 1. of this privacy policy:

  • Right to information: You have the right to request information from us about whether and what data we process from you.
  • Right to rectification: You have the right to request the rectification of inaccurate or completion of incomplete data.
  • Right to erasure: You have the right to request the erasure of your data.
  • Right to restriction: In certain cases, you have the right to request that we only process your data in a restricted manner.
  • Right to data portability: You have the right to request that we transfer your data to you or another responsible party in a structured, common and machine-readable format.
  • Right to complain: You have the right to complain to a supervisory authority. The supervisory authority of your usual place of residence, your workplace or our company headquarters is responsible.

Right of withdrawal

You have the right to revoke your consent to data processing at any time.

Right of objection

You have the right to object at any time to the processing of your data, which we base on our legitimate interest pursuant to Art. 6 para. 1 lit. f DSGVO, to object to the processing of personal data. If you exercise your right to object, please explain the reasons. We will then no longer process your personal data unless we can prove to you that compelling reasons worthy of protection for the data processing outweigh your interests and rights.

Notwithstanding the foregoing, you have the right to object at any time to the processing of your personal data for the purposes of advertising and data analysis.

Please address your objection to the contact address of the responsible person indicated above.

When do we delete your data?

We delete your data when we no longer need it or when you instruct us to do so. This means that – unless otherwise stated in the individual data protection notices of this data protection declaration – we will delete your data,

  • if the purpose of the data processing has ceased to exist and thus the respective legal basis stated in the individual data protection notices no longer exists, for example.
    • after termination of the contractual or membership relations existing between us (Art. 6 para. 1 lit. a DSGVO) or
    • after our legitimate interest in the further processing or storage of your data has ceased to exist (Art. 6 para. 1 lit. f DSGVO),
  • if you exercise your right of withdrawal and there is no other legal basis for processing within the meaning of Art. 6 para. 1 lit. b-f GDPR intervenes,
  • if you exercise your right to object and there are no compelling reasons worthy of protection against the deletion.

However, if we need to retain (certain parts of) your data for other purposes, for example because tax retention periods (generally 6 years for business correspondence or 10 years for accounting records) or the assertion, exercise or defense of legal claims arising from contractual relationships (up to four years) make this necessary, or if the data is needed to protect the rights of another natural person or legal entity, we will delete (that part of) your data only after these periods have expired. However, until these periods expire, we limit the processing of this data to these purposes (fulfillment of retention obligations).

Cookies

Our website uses cookies. Cookies are small text files consisting of a series of numbers and letters that are placed and stored on the terminal device you are using. Cookies are primarily used to exchange information between the terminal device you use and our website. These include language settings on a website, login status, or where a video was watched.

Two types of cookies are used when you visit our websites:

  • Temporary cookies (session cookies): These store a so-called session ID, with which various requests from your browser can be assigned to the joint session. Session cookies are deleted when you log out or close your browser.
  • Permanent cookies: Permanent cookies remain stored even after the browser is closed. This allows our website to recognize your computer when you return to our website. In these cookies, for example, information about language settings or log-in information is stored. In addition, these cookies can be used to document and store your surfing behavior. This data can be used for statistical, marketing and personalization purposes.

In addition to the above classification, cookies can also be distinguished in terms of their purpose:

  • Necessary cookies: These are cookies that are absolutely necessary for the operation of our website, to store logins or shopping carts for the duration of your session, or cookies that are set for security reasons.
  • Statistical, marketing and personalization cookies: These are cookies that are used for analysis purposes or reach measurement. Such “tracking” cookies can be used in particular to store information about search terms entered or the frequency of page views. In addition, the surfing behavior of an individual user (e.g. viewing certain content, using functions, etc.) can also be stored in a user profile. Such profiles are used to display content to users that matches their potential interests. Insofar as we use services that store cookies on your terminal device for statistical, marketing and personalization purposes, we will inform you separately in the following sections of our data protection declaration or in the context of obtaining your consent.

Data concerned:

  • Usage data (e.g. access times, web pages clicked on)
  • Communication data (e.g. information about the device used, IP address).

Affected persons: Users of our online offers

Processing purpose: Playing out our Internet pages, ensuring the operation of our Internet pages, improving our Internet offer, communication and marketig

Legal basis:
Legitimate interest, Art. 6 para. 1 lit. f GDPR

Unless we obtain your consent to the setting of cookies, we base the processing of your data on our legitimate interest in improving the quality and user-friendliness of our website, in particular its content and functions. You have via the security settings of your browser to object to the use of cookies set by us in the context of our legitimate interest. There you have the option of specifying whether you do not accept cookies from the outset or only accept them on request, or whether you specify that cookies are deleted each time you close your browser. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website to their full extent.

Consent, Art. 6 para. 1 lit. a GDPR
If we ask you before your visit to our website to set certain cookies on your terminal device and you consent to this, the legal basis is to be seen in the consent you have given. We will inform you about which cookies we set in detail as part of the consent process. If you do not give this consent, only the so-called technically necessary cookies are set, which are required for the proper operation of our Internet pages and their display in your browser. If you have consented to the setting of cookies, you have the option to revoke your consent at any time.

Web hosting

We use a provider to maintain our Internet pages, on whose server our Internet pages are stored and made available for retrieval on the Internet (hosting). In this context, the provider may process all data transmitted via the browser you are using that is generated when you use our Internet pages. This includes in particular your IP address, which the provider needs in order to be able to deliver our online offer to the browser you are using, as well as all entries you make via our website. In addition, the provider we use can be

  • the date and time of access to our website
  • Time zone difference from Greenwich Mean Time (GMT)
  • Access status (HTTP status)
  • The amount of data transferred
  • the Internet service provider of the accessing system
  • the type of browser you are using and its version
  • the operating system you are using
  • the website from which you may have accessed our website
  • the pages or sub-pages that you visit on our website.

raise. The aforementioned data is stored as log files on the servers of our provider. This is necessary to ensure the stability and security of the operation of our website.

Data concerned:

  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, web pages clicked on)
  • Communication data (e.g. information about the device used, IP address)

Persons concerned: Users of our Internet presence

Processing purpose: Playing out our Internet pages, ensuring the operation of our Internet pages.

Legal basis: Legitimate interest, Art. 6 para. 1 lit. f GDPR

Web host(s) contracted by us:

Hetzner Online

Service provider: Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen
Website: https://www.hetzner.de/
Privacy policy: https://www.hetzner.de/rechtliches/datenschutz

Content Delivery Network

We use a content delivery network (CDN) to serve our web pages. A CDN is a network of regionally distributed servers connected via the Internet. Scaling storage and delivery capacity is made available via the CDN. This optimizes the loading times of our Internet pages and ensures optimum data throughput even during large load peaks. User requests on our web pages are routed through servers of the CDN. Statistics are generated from these data streams. On the one hand, this serves to detect potential threats to our Internet pages from malware at an early stage and, on the other hand, to continuously improve our offering and make our Internet pages more user-friendly for you as a user.

We would like to inform you that, depending on the country of domicile of the service provider mentioned below, the data collected via the service may be transferred and processed outside the area of the European Union. In this case, there is a risk that the level of data protection required by the GDPR will not be complied with and that the enforcement of your rights will not be possible or will be difficult.

Data concerned:

  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, web pages clicked on)
  • Communication data (e.g. information about the device used, IP address)

Purpose of processing: technical optimization of the Internet presence, analysis of errors and user behavior.

Legal basis: Legitimate interest, Art. 6 para. 1 lit. f GDPR

CDN service providers used:

Cloudflare

Service provider: Cloudflare Inc, 101 Townsend St., San Francisco, CA 94107, USA
Website: https://www.cloudflare.com/
Privacy policy: https://www.cloudflare.com/privacypolicy/
Scope of data collection: https://blog.cloudflare.com/what-cloudflare-logs/

Contact

If you contact us via e-mail, social media, telephone, fax, mail, our contact form or otherwise and in doing so provide us with personal data such as your name, telephone number or e-mail address, or provide further information about yourself or your request, we will process this data to respond to your inquiry within the scope of the pre-contractual or contractual relationship existing between us.

Data concerned:

  • Inventory data (e.g. names, addresses)
  • Contact data (e.g. e-mail address, telephone number, postal address)
  • Content data (texts, photos, videos)
  • Contract data (e.g. subject matter of the contract, duration of the contract)

Affected persons: Interested parties, customers, business and contractual partners

Purpose of processing: communication as well as answering contact requests, office and organization procedures.

Legal basis: contract performance and pre-contractual inquiries, Art. 6 para. 1 lit. b DSGVO, legitimate interest, Art. 6 para. 1 lit. f GDPR

Details of the secretarial service we use:

Star office.com

Service provider: Starbüro.de, Kavalierstraße 9, 13187 Berlin
Website: https://www.starbuero.de/
Privacy policy: https://www.starbuero.de/datenschutz

Registration, login and user account

You have the option to register on our online medium to create a user account there. For this purpose, the specification of personal data is necessary, which results from the input mask. The data requested there includes in particular your name, your e-mail address, if applicable. a username and the password. This data is stored and processed by us in order to set up a user account for you and to enable (repeated) registration. The data can be changed or deleted by you at any time. The data will not be disclosed to third parties unless this serves the technical and organizational processing of the existing contract of use between us. To protect you and us from abusive registrations, we store the IP address assigned to you at the time of registration, as well as the date and time of registration.

Data concerned:

  • Inventory data (e.g. names, addresses)
  • Contact data (e.g. e-mail address, telephone number, postal address)
  • Contract data (e.g. subject matter of the contract, duration of the contract)
  • Payment data (e.g. bank details, invoices)
  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, web pages clicked on)
  • Communication data (e.g. information about the device used, IP address)

Purpose of processing: processing of contractual services, communication as well as answering contact requests, security measures.

Legal basis: Contract fulfillment and pre-contractual requests, Art. 6 para. 1 lit. b DSGVO, legal obligation, Art. 6 para. 1 lit. c DSGVO, legitimate interest, Art. 6 para. 1 lit. f GDPR

Deletion: See the point: “When do we delete your data?”. In addition, we would like to draw your attention to the fact that we will delete the data collected in the course of registration and the content data stored in the account as soon as you delete your account, subject to any statutory retention obligations to the contrary. We therefore ask you, if you want or need to access the content data stored in your account even after the deletion of your account, to save it in another way before deleting the account.

Your comments or ratings

You have the possibility to comment on our contributions, to express your opinion or to post content on the designated areas of our website. Since we can be held liable for infringing content of your comment (insult, defamatory criticism, incitement of the people, prohibited depiction of violence, etc.), we store your IP address for a period of 7 days in order to be able to determine your identity if necessary.

Legal basis: Art. 6 para. 1 lit. f GDPR

Data concerned:

  • Inventory data (e.g. names, addresses)
  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, web pages clicked on)
  • Communication data (e.g. information about the device used, IP address)

Purpose of processing: performance of contractual obligations, communication and processing of requests, obtaining feedback, security measures.

Processing of your data when placing an order in our online store

If you place orders via our online store, we process the information you provide during the ordering process in order to process your order. This includes in particular your name as well as your address and electronic contact data, information on the processing of the payment transaction as well as the details of your specific order. We will inform you in detail which data we require during the order process.

If it is necessary for the fulfillment of the contract concluded between us, for the protection of your vital interests or due to legal provisions, we will transmit your data to third parties, such as e.g. the data controller, in compliance with your rights. to the logistics company commissioned with the delivery, to payment service providers for the purpose of payment processing, and to our tax advisor. Insofar as we use third-party providers to provide our services, the data protection notices of the respective third-party providers apply.

User accounts: You can voluntarily create a user account where you can view and manage your orders. If you cancel your account, your data will be deleted. It is your responsibility to back up your data prior to termination. We use transient cookies (for the term see above under cookies) to store the contents of the shopping cart and persistent cookies (for the term see above under cookies) to store the login status. When you place an order, register for a user account or log in there again, we store your IP address and the time of the respective user action. The purpose of the storage is our but also your legitimate interests in protecting against misuse and other unauthorized use.

Advertising measures: We may also use the information you provide to contact you by mail or e-mail about similar products and/or services of interest after you have placed an order.

Details of the store system we use

We use the following store system of a third party provider, through which we process orders and incoming payments and administer our inventory. If you place an order in our online store, we will pass on your name as well as your address and electronic contact data, information for processing the payment transaction as well as the specific order to the provider of the store system in order to process the order and payment transactions.

Data concerned:

  • Inventory data (e.g. names, addresses)
  • Payment data (e.g. bank details, invoices)
  • Contact data (e.g. e-mail address, telephone number, postal address)
  • Contract data (e.g. subject matter of the contract, duration of the contract)
  • Usage data (e.g. access times, web pages clicked on)
  • Communication data (e.g. information about the device used, IP address)

Affected persons: Customers, interested parties, business and contractual partners

Purpose of processing: processing of orders, communication and, if applicable. Marketing as well as responding to inquiries, data security, office and organizational procedures.

Legal basis: Contract fulfillment and pre-contractual requests, Art. 6 para. 1 lit. b DSGVO, legal obligation, Art. 6 para. 1 lit. c DSGVO, legitimate interest, Art. 6 para. 1 lit. f GDPR

Payment service provider

In accordance with our legal obligations and due to our legitimate interests in efficient, secure and customer-oriented payment processing, persons who have concluded a contract or other legal relationship with us may use banks and credit institutions as well as other payment service providers for payment purposes. The payment service providers offered by us process inventory data in this context, including name, address or bank data such as account/credit card number, passwords, TANs, verification numbers as well as information on the concluded contract and information on the recipient of the payment.

The data collected in this context is necessary to enable the payment service provider to process the payment. Only the payment service provider commissioned by us collects and processes this personal information. We do not receive any information about your account or credit card details at any time. We are notified by our payment service provider whether or not our customer’s payment has been received. It is possible that our payment service providers forward the data of our customers to economic information files in order to be able to check the identity as well as the creditworthiness of the payer. In this respect, we refer to the privacy policy and general terms and conditions (GTC) of our payment service providers.

The terms and conditions and privacy policy of the respective payment service provider apply. You can find these notices on the website of the affected service provider or in the transaction application. For further information and for the assertion of your rights regarding revocation and information, we refer in this respect to the provisions of the respective service provider.

Data concerned:

  • Inventory data (e.g. name, address),
  • Usage data (e.g. websites visited, interest in certain topics, times of access),
  • Payment data (e.g. bank details, invoices, payment history),
  • Transaction data (e.g. term, customer category, subject of contract),
  • Communication and metadata (e.g. IP address, information about the device or computer system)

Purpose of processing: Effective, secure and customer-oriented payment offers (service) as well as processing of payments in accordance with contractual agreement.

Legal basis: Contract fulfillment and fulfillment of pre-contractual requests, Art. 6 para. 1 lit. b DSGVO, legitimate interests, Art. 6 para. 1 lit. f GDPR

Revocation options: You can revoke your consent to the use of personal data at any time vis-à-vis the respective payment service provider. Despite revocation, the payment service provider may still be entitled to process, use and transmit the personal data that is absolutely necessary for the contractual processing of the payment. With regard to the storage and timely deletion of personal data, we refer to the respective data protection provisions of the payment service provider.

We use the following payment service providers:

PayPal

Service Provider: PayPal (Europe) S.à.r.l. et Cie., S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg
Website: https://www.paypal.com/de/webapps/mpp/home
Privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full#

Evaluation seal

In order to give you a first impression of the quality of our offers and services, we display a selection of ratings from our customers and the overall score formed from all ratings via the rating seal (also called rating widget) integrated on our website. If you click on the widget, you will be redirected to the Internet offer of the respective provider. There you can see all the reviews about our offer. In addition, you have the opportunity to rate us there.

The provider’s seal embedded on our Internet pages is played out via an interface from the server of the respective provider. For this purpose, when you visit our website, a data connection is established to the provider’s server. This provides the provider with certain data that is required to play out the content of the widget to your browser. This includes the IP address assigned to you and other access data.

Data concerned:

  • Usage data (e.g. access times, web pages clicked on)
  • Communication data (e.g. information about the device used, IP address).

Affected persons: Customers, users of our Internet presence

Purpose of processing: obtaining customer feedback, as well as interest and behavior-based marketing

Legal basis: Consent, Art. 6 para. 1 lit. a DSGVO, legitimate interest, Art. 6 para. 1 lit. f GDPR

We use the following rating seals:

Online advertising

We use services to play out Internet advertising. Through the services we use, certain user data is collected by a cookie or pixel. This includes, in particular, the information from which website you have accessed our website (so-called referrer), which pages of our website you have accessed, how long you have visited our pages and which interactions you have carried out there. In addition, data is collected on the browser and computer system you are using, as well as the type of device. In addition, such a service can also be used to provide demographic information, e.g., the number of employees. age or gender are recorded as pseudonymous values. If you have consented to the collection of your location data, this may also be processed, depending on the provider. In order to collect and store this data, the respective service sets a cookie or a so-called counting pixel on the end device used by you, with which the IP address assigned to you is also collected. However, this is shortened via a so-called IP masking procedure, so that the IP address can no longer be assigned to your visit to our website. In principle, no clear data such as names or e-mail addresses are stored when using the respective service. This is only the case if you are a member of a social network that offers one of the services mentioned below and merges your profile with the aforementioned data material.

The data is analyzed by the service we use to produce a report with statistical information about the number of visitors generated by the advertising and the success of the advertising campaign. The reports show, among other things, the total number of users who were referred to our website through our ads. In addition, the reports contain information on the end devices and browsers of the users, at which locations the users were located, at which times the ad was clicked. However, the reports do not contain any information that would personally identify you as a user of our site.

We would like to point out that, depending on the location of the service provider, data collected via the service may be transmitted and processed outside the area of the European Union. In this case, there is a risk that the level of data protection required by the GDPR will not be complied with and that the enforcement of your rights will not be possible or will be difficult.

Data concerned:

  • Usage data (e.g. access times, web pages clicked on)
  • Communication data (e.g. information about the device used, IP address)

Affected persons: Users of our online offers

Processing purpose: Reach measurement, campaign success monitoring, remarketing, and interest- and behavior-based marketing.

Legal basis: If we have asked you for your consent before using the respective service, this is the legal basis, Art. 6 para. 1 lit. a GDPR. Furthermore, we use the respective service on the basis of our legitimate interest in directing visitor flows to our website, analyzing these visitor flows in order to be able to continuously improve the functions, offers and user experience, Art. 6 Para. 1 lit. f GDPR.

We use the following service providers for online advertising:

Google Ads

Service provider: Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Headquarters in Europe: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland
Website: https://ads.google.com/home/
Privacy policy: http://www.google.de/intl/de/policies/privacy

Newsletter

We send out a newsletter at regular intervals to inform our customers and business partners and interested parties about our offers and related news. You have the option of registering for our newsletter on our website and agreeing to receive the newsletter as part of the registration process. If you subscribe to our newsletter, it is mandatory to provide your email address. We store the e-mail address in order to be able to send you the newsletter. As soon as a registration for our newsletter is made, you will receive a confirmation e-mail to the e-mail address provided during registration in the so-called double opt-in procedure. This email contains a link. By clicking on this link, you confirm that you wish to receive the newsletter. This ensures that your e-mail address has not been misused by a third party during registration. For the same reason, we store the date and time of registration and the IP address assigned to you at registration. We do not pass on the aforementioned data to third parties.

Evaluation of user behavior

If you have consented to this, we evaluate your user behavior when sending the newsletter. For this purpose, tracking pixels and tracking links are included in our newsletters. This allows us to recognize whether and when you have opened the newsletter and whether and which links you have clicked on in the newsletter.

Purpose: We evaluate the newsletter as described above in order to be able to measure a statistical evaluation of the success or failure of our newsletter.

Legal basis: The legal basis for the processing of your data is Art. 6 para. 1 lit. a GDPR.

Prevention: You can revoke your consent to receive the newsletter at any time using the options provided above.

Deletion: We delete your data after revocation.

Data concerned:

  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, web pages clicked on)
  • Communication data (e.g. information about the device used, IP address)

Persons concerned: Users of our Internet presence

Processing purpose: Playing out our Internet pages, ensuring the operation of our Internet pages.

Legal basis: Consent, Art. 6 para. 1 lit. a DSGVO, legitimate interest, Art. 6 para. 1 lit. f GDPR

Deletion: The deletion of the e-mail address takes place either if you have not clicked on the confirmation link 1 month after sending the confirmation e-mail in the double opt-in process or immediately after you have unsubscribed from our newsletter.

Revocation: You can revoke your consent to receive the newsletter at any time and unsubscribe from the newsletter. We offer the following options through which you can declare the revocation:

  • Click on the link provided in the newsletter for this purpose
  • by e-mail to: service@pottpartner.com
  • through the contact details provided in the imprint of our website

Advertising by e-mail, mail or telephone

We process personal data for our promotional communications by e-mail, mail or telephone. You may object to receiving our promotional communications at any time or revoke your previously given consent to receive our promotional communications at any time. In order to be able to prove in case of doubt that your consent was given even after your objection or revocation, we may store your data for up to 4 years after your objection/revocation. We will not use your data for any other purposes after your objection/revocation. To the extent that you want us to delete your information before then, we will do so after you confirm that you originally gave us consent.

Data concerned:

  • Contact details (e.g. e-mail, telephone number, postal address)
  • Inventory data (e.g. names, addresses)

Affected persons: Communication partner

Purpose of processing: direct promotional activities (marketing) by e-mail, mail or telephone.

Legal basis: Consent, Art. 6 para. 1 lit. a DSGVO, legitimate interest, Art. 6 para. 1 lit. f GDPR

Web analytics and statistics

We use web analysis services to record and statistically evaluate the flow of visitors to our website. Such services collect, among other things, data about the website from which you have accessed our website (so-called referrers), which pages of our website you have accessed, how long you have visited our pages and which interactions you have carried out there. In addition, data is collected on the browser and computer system you are using, as well as the type of device. In addition, such a service can also be used to provide demographic information, e.g., the number of employees. age or gender are recorded as pseudonymous values. If you have consented to the collection of your location data, this may also be processed, depending on the provider.

In order to collect and store this data, the web analytics service we use usually sets a cookie on the terminal device you use, which is also used to collect the IP address assigned to you. However, this is shortened via a so-called IP masking procedure, so that the IP address can no longer be assigned to your visit to our website. In all other respects, too, no clear data such as names or e-mail addresses are stored. Neither we nor the service we use knows the identity of visitors to our web pages.

We would like to inform you that, depending on the country of domicile of the service provider mentioned below, the data collected via the service may be transferred and processed outside the area of the European Union. In this case, there is a risk that the level of data protection required by the GDPR will not be complied with and that the enforcement of your rights will not be possible or will be difficult.

Data concerned:

  • Usage data (e.g. access times, web pages clicked on)
  • Communication data (e.g. information about the device used, IP address).

Affected persons: Users of our online offers

Processing purpose: Reach measurement, campaign success monitoring, remarketing, and interest- and behavior-based marketing.

Legal basis: If we have asked you for your consent before using the respective service, this is the legal basis, Art. 6 para. 1 lit. a GDPR. Furthermore, we use the respective service on the basis of our legitimate interest in analyzing the flow of visitors to our website in order to be able to continuously improve the functions, offers and user experience, Art. 6 Para. 1 lit. f GDPR.

We use the following web analytics services:

Google Analytics

Service provider: Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Headquarters within the EU: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland
Website: https://marketingplatform.google.com/intl/de/about/analytics/
Privacy policy: https://policies.google.com/privacy?hl=de
Opt-out option: If you do not want your data to be used by Google Analytics. you can set a so-called opt-out plugin, which will prevent data from being collected from you on our website in the future. You can get this plugin here: https://tools.google.com/dlpage/gaoptout?hl=de

Our online presence on social networks

We operate online presences within the social networks listed below. If you visit one of these sites, the respective provider will collect and process the data listed below. As a rule, this data is collected for advertising and market research purposes and usage profiles are created with it. In the usage profiles, data can be stored regardless of the device you use. This is especially the case if you are a member of the respective platform and logged in to it. The usage profiles can be used by the providers to play interest-based advertising to you. You have a right of revocation against the creation of user profiles. To exercise this, you must contact the respective provider.

If you have an account with one of the providers listed below and are logged in there when you visit our website, the respective provider may collect data about your usage behavior on our website. To prevent such a linking of your data, you can log out of the provider’s service before visiting our site.

For what purpose and to what extent data is collected by the provider, you can see the respective, in the following communicated, privacy statements of the providers.

We would like to point out that, depending on the country of domicile of the provider mentioned below, the data collected via its platform may be transferred and processed outside the area of the European Union. In this case, there is a risk that the level of data protection required by the GDPR will not be complied with and that the enforcement of your rights will not be possible or will be difficult.

Data concerned:

  • Inventory and contact data (e.g. name, address, telephone number, e-mail address)
  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, web pages clicked on)
  • Communication data (e.g. information about the device used, IP address).

Purpose of processing: communication and marketing, tracking and analysis of user behavior.

Legal basis: Consent, Art. 6 para. 1 lit. a DSGVO, legitimate interests Art. 6 para. 1 lit. f GDPR

Opt-out options: For information on the respective opt-out options, please refer to the information provided by the providers linked below.

We maintain online presences on the following social networks:

Facebook

Service provider: Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA
Headquarters in the EU: Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
Website: https://www.facebook.com/
Privacy policy: https://www.facebook.com/about/privacy/
Privacy policy for Facebook pages: https://www.facebook.com/legal/terms/information_about_page_insights_data

Instagram

Service provider: Instagram Inc, 1601 Willow Road, Menlo Park CA 94025, USA
Parent company: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
Headquarters in the EU: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Website: https://www.instagram.com/
Privacy policy: http://instagram.com/about/legal/privacy

Pinterest

Service Provider: Pinterest Inc, 635 High Street, Palo Alto, CA 94301, USA
Registered office in the EU: Pinterest Europe Ltd, Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland
Website: https://www.pinterest.de/
Privacy policy: https://about.pinterest.com/de/privacy-policy

WhatsApp

Service provider: WhatsApp Inc. 1601 Willow Road Menlo Park, California 94025, USA
Headquarters in the EU: Whatsapp Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
Parent company: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
Website: https://www.whatsapp.com/
Privacy policy: https://www.whatsapp.com/legal/?eea=1#privacy-policy

Messenger services

We communicate via messenger services. Messenger services are chat programs that can be used to send text messages, as well as image or video files, between users in real time over the Internet. Besides, messenger services can also be used to send emoticons, electronic greeting cards and contacts. In order for messages to be transmitted, the participants must be connected to each other with a computer program (called a client) via a network such as the Internet, either directly or via a server. As a rule, messages can also be sent when the other party is not online – the message is then cached by the service’s server and later delivered to the recipient when he or she is available again. Finally, these services can also be used for screen broadcasting and online gaming.

If the service uses end-to-end encryption for the sent content (texts, attachments), only the selected communication partners, but not third parties or the service provider itself, can view the message. In this respect, we recommend that you regularly install the updates for the service in order to ensure the encryption of the content. However, the service provider has the possibility to access the metadata of the communication. This includes the time and (depending on the setting) location of the communication, as well as the device you are using.

We would like to point out that, depending on the country of domicile of the provider mentioned below, the data collected via its platform may be transferred and processed outside the area of the European Union. In this case, there is a risk that the level of data protection required by the GDPR will not be complied with and that the enforcement of your rights will not be possible or will be difficult.

Data concerned:

  • Inventory and contact data (e.g. name, telephone number, e-mail address)
  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, web pages clicked on)
  • Communication data (e.g. information about the device used, IP address).

Purpose of processing: communication and marketing

Legal basis: If we have asked you for your consent before using the respective service, this is the legal basis, Art. 6 para. 1 lit. a GDPR. In this respect, we clarify that we do not transmit your contact data to the service provider for the first time without your consent. If we communicate with you in the context of a contract initiation or in the context of an existing contractual relationship via one of the following mentioned services, the legal basis is the fulfillment or preparation of the contract, Art. 6 para. 1 lit. b GDPR. In addition, we invoke our legitimate interests in fast and efficient communication and meeting the needs of our communication partners in the communication of the services mentioned below, Art. 6 para. 1 lit. f GDPR.

Options for objection: You can revoke the consent given to us for the use of the service mentioned below at any time. You can also object to communication via the messanger service at any time.

We use the following messenger services:

WhatsApp

Service provider: WhatsApp Inc. 1601 Willow Road Menlo Park, California 94025, USA
Headquarters in the EU: Whatsapp Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
Parent company: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
Website: https://www.whatsapp.com/
Privacy policy: https://www.whatsapp.com/legal/?eea=1#privacy-policy

Security measures

We also take state-of-the-art technical and organizational security measures to comply with the provisions of data protection laws and to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized third-party access.

Actuality and change of this privacy policy

This privacy policy is currently valid and has the status January 2023. Due to changes in legal or regulatory requirements, it may become necessary to adapt this privacy policy.

This privacy policy was created with the help of the data protection generator of SOS Recht. SOS Recht is a service provided by Mueller.legal Rechtsanwälte Partnerschaft, based in Berlin.