Protection declaration

This data protection declaration explains the type, scope and purpose of the processing of personal data (hereinafter referred to as "data") as part of the provision of our services as well as within our online offer and related websites, functions and content as well as external online presences , e.g. our social media profile (hereinafter collectively referred to as "online offer"). With regard to the terminology used, eg "Processing" or "responsible person", we refer to the definition in Art. 4 of the General Data Protection Regulation (GDPR).

Responsible person:

A N D A M A

Rajko Kverh

Rajko KVEERH s.p. (Andama.eu)

Owner: Rajko KVERH

e-mail: office@andama.eu

D +49 (0) 1575 6212301

SI +386 31 40 7776

PL + 48 78 4040222

Types of processed data

Inventory data (eg Basic personal details, names or addresses).
Contact details (e.g. e-mail, telephone numbers).
Content data (eg text entries, photos, videos).
Usage data (eg websites visited, interest in content, access times).
Meta / communication data (eg device information, IP addresses).

Categories of data subjects

Visitors and users of the online offer (we refer to the data subjects below as "users").
Purpose of processing
Provision of the online offer, its functions and content.
Responding to contact requests and communicating with users.
Precautions.
Range measurement / marketing

Terms used

"Personal data" is all information relating to an identified or identifiable natural person (hereinafter called „data subject"); An identifiable person is a natural person who can be directly or indirectly identified, in particular by providing an identifier such as name and surname, identification number, location data, internet identifier (e.g. cookie) or at least one specific characteristic expressing the physical , the physiological, genetic, psychological, economic, cultural or social identity of that natural person.

"Processing" is any process with or without the assistance of an automated process or series of processes in relation to personal data. The term goes far and covers virtually all data processing.

"Pseudonymisation" means the processing of personal data in such a way that it can no longer be attributed to a specific data subject without the use of additional information, provided that that additional information is kept separate and is subject to technical and organizational measures to ensure that the personal data is not attributable to an identified or identifiable natural person.

"Profiling" means any kind of automated processing of personal data, which consists in the fact that this personal data is used to evaluate certain personal aspects of a natural person, in particular aspects related to the performance of work, economic situation, health, Analyze or predict preferences, interests, the reliability, behavior, location or relocation of that natural person.

The "responsible person" is the natural or legal person, public authority, agency or other body that alone or jointly with others decides on the purposes and means of processing personal data.

"Processor" means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the responsible person.

Relevant legal bases

According to Art. 13 GDPR, we will inform you about the legal basis for data processing. For users within the scope of the General Data Protection Regulation (GDPR), i.e. in the EU and EEC, the following rules apply, unless the legal basis is mentioned in the data protection declaration:

- The legal basis for obtaining consent is Art. 6 sec. 1 letter a. and art. 7 GDPR;

- The legal basis for the processing in order to perform our services and perform contractual activities as well as for answering inquiries is Art.6 par. 1 letter b. GDPR.

The legal basis for processing to fulfill our legal obligations is Art. 1 letter c GDPR;

In the event that the vital interests of the data subject or another natural person require the processing of personal data, Art. 6 sec. 1 letter d GDPR serves as the legal basis.

The legal basis for the processing required for the performance of a task in the public interest or in the exercise of official authority delegated to the responsible person is Art. 6 sec. 1 letter e GDPR.

The legal basis for processing to protect our legitimate interests is Art. 6 sec. 1 letter f GDPR.

Data processing for purposes other than those for which they were collected takes place in accordance with the requirements of art. 6 sec. 4 GDPR.

The processing of special categories of data (in accordance with Art.9 (1) GDPR) is determined in accordance with the provisions of Art. 9 sec. 2 GDPR.

Precautions

We take appropriate technical and organisational measures in accordance with legal requirements, taking into account the state of knowledge, implementation costs and the type, scope, circumstances and purposes of processing, as well as the different probability and degree of threat to the rights and freedoms of natural persons, ensuring a level of protection appropriate to the risk.

These measures include, in particular, ensuring the confidentiality, integrity and availability of data through the control of physical access to the data, as well as access, input, transfer, securing the availability and their separation. In addition, we have established procedures that guarantee the exercise of the rights of the data subject, the deletion of data and a response to data threats. In addition, we consider the protection of personal data in the development or selection of hardware, software and processes in line with the principle of data protection through technology design and data protection-friendly default settings.

Cooperation with processors, jointly responsible entities and third parties

If we disclose data to other persons and companies (processors, jointly responsible persons or third parties) as part of our processing, we provide them or otherwise provide them with access to the data, it will only be based on legal consent (e.g. if the data is sent to third parties such as payment service providers, performance of a contract is required), users have consented to this, a legal obligation provides for this or based on our legitimate interests (e.g. when using agents, web hosts, etc.).

If we disclose, transfer or otherwise make available data to other companies in our group of companies, this is done in particular for administrative purposes as a legitimate interest, as well as on a basis that complies with legal requirements.

Transfer to third countries

If we process data in a third country (i.e. outside the European Union (EU), the European Economic Area (EEA) or the Swiss Confederation) or in the context of using third party services or disclosing or transferring data to other persons or companies, this only happens when it happens that it fulfills our (pre-) contractual obligations, based on your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual authorizations, we only process or leave data in a third country if the legal requirements are met. It means. the processing takes place, for example, on the basis of special guarantees, such as an officially recognized level of data protection corresponding to the EU (eg for the USA through the "Privacy Shield") or compliance with officially recognized special contractual obligations.

You have the right to request confirmation as to whether the data in question is being processed, as well as obtaining information about this data as well as further information and a copy of the data in accordance with legal requirements.

You have respectively the right to request supplementation of data concerning you or correction of incorrect data concerning you.

In accordance with legal requirements, you have the right to request the immediate deletion of the data in question or, alternatively, to request the restriction of the processing of the data in accordance with legal requirements.

You have the right to request that the data you have provided to us be received in accordance with legal requirements and to request that it be transferred to other responsible entities.

You also have the right to lodge a complaint with the competent supervisory authority as required by law.

The right to withdraw from the contract

You have the right to withdraw your consent with effect for the future.

Right to object

You can object to the further processing of your data at any time in accordance with legal requirements. The objection may in particular be made against processing for direct marketing purposes.

Cookies and the right to object to direct advertising.

"Cookies" are small files that are stored on users' computers. Various information can be stored in cookies. The cookie is primarily used to store information about the user (or the device on which it is stored) during or after his visit to the online offer. Temporary cookies or "session cookies" or "transient cookies" are cookies that are deleted when the user leaves the online offer and closes the browser.

In such a cookie, for example, the contents of a shopping cart in an online shop or the login status can be saved. Cookies are called “persistent" cookies and remain stored even after you close your browser. For example, the login status is saved if users visit it after a few days. This cookie may also be used to remember the interests of users which are used for range measurement or marketing purposes. "Third party cookie" refers to cookies offered by suppliers other than the person responsible for operating the online offer (otherwise, if these are only their cookies, we are talking about "first party cookies").

We can use session and persistent cookies and explain this in the context of our data protection declaration.

If users do not want cookies to be stored on their computer, they are asked to deactivate the appropriate option in the browser settings. Saved cookies can be deleted in the browser settings. Disabling cookies can lead to functional restrictions for this online offer.

A general objection to the use of cookies used for internet marketing purposes can be found on many services, especially in the case of tracking, via the US website www.aboutads.info/choices/ or the EU website http: //www.youronlinechoices .com / be explained.

In addition, cookies may be not saved by turning them off in the browser settings. Please note that not all functions of this online offer may then be used.

Erasure of data

The data processed by us are deleted in accordance with legal requirements or their processing is restricted. Unless expressly stated in the context of this data protection declaration, the data stored by us will be deleted as soon as it is no longer needed for the intended purpose and there is no legal storage obligation to prevent deletion.

If the data is not deleted because it is required for other and legally permitted purposes, their processing will be restricted. It means. the data will be blocked and will not be processed for other purposes. This applies to for data that must be kept for commercial or tax reasons.

Changes and updates to the privacy policy

Please inform yourself regularly about the content of our data protection declaration. We will adapt the data protection declaration as soon as changes to our data processing make it necessary. We will inform you as soon as an act of cooperation on your part (eg Consent) or other individual notification becomes necessary as a result of the changes.

Business related processing

We also process

- Contract data (eg subject of the contract, date, customer category).

- Payment data (e.g. bank details, payment history)

from our clients, prospects and business partners for contract services, customer service and support, marketing, advertising and market research.

Order processing in the online store and on the customer's account

We process our customers' data as part of the ordering process in our online store to enable them to select and order selected products and services, as well as their payment, delivery or execution.

The processed data includes inventory data, communication data, contract data, payment data and the data subjects are our customers, stakeholders and other business partners. Processing takes place for the purpose of providing contractual services as part of the online store, invoicing, delivery and customer service. We use session cookies to store the contents of the basket and persistent cookies to save your login status.

Processing takes place for the performance of our services and for the performance of contractual measures (e.g. order processing) and to the extent required by law (e.g. legally required archiving of commercial transactions for commercial and tax purposes). Information marked as required is required to justify and fulfill the order. We transfer data to third parties only within the scope of delivery, payment or within the framework of legal permits and obligations, as well as based on our legitimate interests, which we inform about in this data protection declaration (e.g. legal and tax advisors, financial institutions, transport companies and authorities).

Users can optionally create a user account, in particular by viewing their orders. As part of registration, the required mandatory information is communicated to the users. User accounts are not public and cannot be indexed by search engines. If users have closed their user account, their user account data will be deleted, provided that their storage is necessary for commercial or tax reasons. The information in the customer account remains until deleted with subsequent archiving in the event of a legal obligation or our legitimate interests (e.g. in the event of legal disputes). It is the users' responsibility to back up their data if the termination is successful before the end of the contract.

As part of registration and re-registration as well as the use of our online services, we save the IP address and the time of the respective user action. The storage is based on our legitimate interests as well as the protection of the user against misuse and other unauthorized use. These data are not transferred to third parties, unless it is necessary to pursue our claims for a legitimate interest or there is a legal obligation.

Deletion takes place after the expiry of the warranty and other contractual rights or obligations (e.g. claims for payment or obligations arising from contracts with customers), the necessity of data retention is checked every three years; in the case of storage due to statutory archiving obligations, the deletion takes place after its expiry.

Agency services

We process our clients' data as part of our contract services, which include concept and strategic consulting, campaign planning, software and design development / consulting or maintenance, campaign and process implementation / service, server administration, data analysis / consulting services and training services.

We process inventory data (e.g. customer master data such as names or addresses), contact details (e.g. e-mail, telephone numbers), content data (e.g. text input, photos, videos), contractual data (e.g. contracts, deadline), payment data (e.g. bank details, payment history), usage and metadata (e.g. as part of evaluating and measuring the success of marketing measures). As a rule, we do not process special categories of personal data, unless they are elements of commissioned processing. This applies to our customers, prospects and their customers, users, website visitors or employees, as well as third parties.

The purpose of the processing is to provide contractual services, invoicing and our customer service. The legal basis for the processing results from Art. 6 sec. 1 letter b GDPR (contractual services), Art. 6 sec. 1 letter f GDPR (analysis, statistics, optimization, security measures). We process data that is necessary to establish and perform contractual services and indicate the need to specify them.

Disclosure to external parties only takes place if required in the context of the order. When processing the data provided to us as part of the order, we follow the customer's instructions and legal requirements for order fulfillment in accordance with Art. 28 GDPR and we do not process the data for any purpose other than the order.

We delete the data after the expiry of the warranty and comparable obligations. the necessity of data storage is checked every three years. In the case of statutory archiving obligations, the deletion takes place after its expiry (6 years pursuant to § 257 (1) HGB, 10 years pursuant to § 147 para. 1 AO). In the case of data provided to us by the customer as part of the order, we delete the data in accordance with the order specifications, usually after completing the order.

Therapeutic services and coaching

We process the data of our customers and potential customers as well as other customers or contractual partners (commonly referred to as "customers") in accordance with Art. 6 sec. 1 letter b) GDPR, to provide our contractual or pre-contractual services. The data processed here, the type, scope and purpose as well as the necessity of their processing are determined by the contractual relationship on which their processing is based. The processed data includes basically the customer's inventory and master data (e.g. name, address, etc.) as well as contact details (e.g. e-mail address, telephone etc.), contract data (e.g. used services, fees, names contact persons, etc.) and payment details (e.g., bank details, payment history, etc.).

Where required to perform a contract or legally required, we disclose or transfer customer data in the context of communicating with other professionals, necessary or typically involved third parties, e.g. Art. 6 sec. 1 letter b. GDPR serves according to the law Art. 6 par. 1 letter c. GDPR is mandatory, our interests or the interests of customers are in effective and affordable healthcare as a legitimate interest pursuant to Art. 6 par. 1 letter f. GDPR serves or pursuant to Art. 6 par. 1 letter d. GDPR is necessary. In order to protect the vital interests of customers or another natural person or under consent pursuant to Art. 6 sec. 1 lit. a., Art. 7 GDPR.

Contractual services

We process the data of our contractual partners and interested parties, as well as other clients, clients, clients, clients or contractual partners (commonly referred to as "contracting party") in accordance with Art. 6 sec. 1 letter b. GDPR to provide our contractual or pre-contractual services. The data processed here, the type, scope and purpose as well as the necessity of their processing are determined by the contractual relationship on which their processing is based.

The data processed includes the master data of our contractual partners (e.g. names and addresses), contact details (e.g. e-mail addresses and telephone numbers) as well as contract data (e.g. services used, content of the contract, contractual communication, names of contact persons. ) and payment details (eg bank details, payment history).

In principle, we do not process special categories of personal data, unless they are part of commissioned or contractual processing.
We process data that is necessary to establish and perform contractual services and indicate the need to specify them, unless it is obvious to contractors. Disclosure of information to third parties or companies only takes place if required by contract. When processing the data provided to us as part of the order, we follow the customer's instructions and legal requirements.

As part of the use of our online services, we may save the IP address and the time the user performs a given activity. The storage takes place on the basis of our legitimate interests, as well as the interests of users in protection against abuse and other unauthorized use. As a rule, these data will not be transferred to third parties, unless they are used to pursue our claims in accordance with Art. 6 par. 1 letter f. GDPR is required or there is a legal obligation to do so pursuant to Art. 6 para. 1 letter c. RODO.

The data will be deleted if the data is no longer required to fulfill contractual or statutory care obligations and to deal with any warranty and comparable obligations, the necessity of storing the data being checked every three years; otherwise the statutory retention requirements apply.

Administration, financial accounting, office organization, contact management

We process data in the context of the administrative tasks and organization of our company, financial accounting and compliance with legal obligations, e.g. archiving.

In doing so, we process the same data that we process when providing our contractual services. The basis for processing is Art. 6 sec. 1 letter c. GDPR, Art. 6 sec. 1 letter f. RODO. The processing affects customers, interested parties, business partners and website visitors.

The purpose and our interest in processing is administration, financial accounting, office organization, data archiving, i.e. tasks that are used to maintain our business, perform our tasks and provide our services. The deletion of data with regard to contractual services and contractual communication corresponds to the information mentioned in these processing activities.

In addition, based on our business interests, we store information about suppliers, organizers and other business partners, e.g. for later contact. Basically, we store this data mainly related to the company on a permanent basis.

Business analysis and market research

In order to run our business economically, to be able to recognize market trends, the wishes of contractors and users, we analyze the data available to us regarding business transactions, contracts, inquiries, etc. We process inventory data, communication data, contract data, payment data, usage data, metadata based on art. 6 sec. 1 letter f. GDPR, according to which data subjects include contractual partners, interested parties, customers, visitors and users of our online offer.

Analyzes are conducted for the purposes of business assessments, marketing and market research. We can provide information to the profiles of registered users, e.g. about their services. Analyzes are used to increase user-friendliness, optimize our offer and economic efficiency. The analyzes serve us only and are not disclosed to the outside world, unless they are anonymous analyzes with summarized values.

If these analyzes or profiles are personal, they will be deleted or anonymized after the end of the contract by the user, otherwise two years after the conclusion of the contract. In addition, general business analyses and general trend determinations are made anonymously where possible.

Registration function

Users can create a user account. As part of registration, the required mandatory information is provided to the users pursuant to Art. 1 letter b GDPR processed in order to provide the user account. The processed data includes, in particular, login data (name, password and e-mail address). The data provided during registration is used to use the user account and purpose.

Users have access to information that is relevant to their user account, e.g. technical changes that must be notified by email. If users have closed their user account, their data will be deleted with respect to the user account, subject to legal retention requirements. It is the users' responsibility to back up their data if the termination is successful before the end of the contract. We are entitled to irretrievably delete all user data stored during the term of the contract.

As part of the use of our registration and registration functions as well as the use of your user account, we save the IP address and the time of the respective user action. The storage is based on our legitimate interests as well as the protection of the user against misuse and other unauthorized use. These data are not transferred to third parties, unless it is necessary to pursue our claims or there is a legal obligation pursuant to Art. Art. 6 sec. 1 letter c. RODO. The IP addresses will be anonymized or deleted after 7 days at the latest.

Comments and posts

If users leave comments or other comments, their IP addresses may be based on our legitimate interests within the meaning of Art. 1 letter f. GDPR can be kept for 7 days. This is done for our safety if someone leaves illegal content in comments and contributions (insults, forbidden political propaganda, etc.). In this case, we may be sued for a comment or contribution and are therefore interested in the identity of the author.

In addition, we reserve the right based on our legitimate interests. Art. 6 sec. 1 letter f. GDPR to process user data for spam detection.

On the same legal basis, we reserve the right to store users' IP addresses for the duration of the surveys and to use cookies to avoid multiple voting.

Personal data provided in the context of comments and entries, all contact information and information about the website, as well as the content, will be stored by us permanently until the user obtains an objection.

Contact

When contacting us (e.g. via the contact form, e-mail, telephone or social media), the information provided by the user to process the contact request and process it in accordance with Art. 1 letter b. (as part of contractual / pre-contractual relationships), Art. 1 letter f. (other inquiries) processed GDPR. User information may be stored in a customer relationship management system ("CRM system") or a comparable query organization.

We delete requests if they are no longer needed. We check the necessity every two years. There are also statutory archiving obligations.

Bulletin

The following information informs you about the content of our newsletter, the registration, dispatch and statistical evaluation procedure and the right to object. By subscribing to our newsletter, you consent to the receipt and described procedures.

Newsletter content

We send newsletters, e-mails and other electronic notifications with advertising information (hereinafter "newsletter") only with the consent of the recipient or with legal consent. Insofar as the content of the newsletter is described in detail, they are decisive for the user's consent. Our newsletters also contain information about our services and us.

Double approval and logging:

Registration for our newsletter takes place as part of the so-called Double opt-in procedures. It means, after registering you will receive an e-mail asking you to confirm your registration. This confirmation is necessary so that no one can register with someone else's e-mail address. Newsletter registrations are registered in order to demonstrate the compliance of the registration process with legal requirements. This includes the storage of the registration and confirmation time as well as the IP address. Changes to data stored with the shipping service provider are also logged.

Registration data:

To register for the newsletter, all you need to do is enter your e-mail address. Optionally, we ask for your name and surname in the newsletter for your personal address.

The newsletter is sent and the success measurement associated with it is based on the recipient's consent pursuant to Art. 1 letter a, art. 7 GDPR in connection with § 7 sec. 2 No. 3 UWG or, if consent is not required, on the basis of our legitimate interests in the field of direct marketing pursuant to Art. 6 par. 1 in accordance with f. GDPR in conjunction with section 7 (3) UWG.

The registration process is recorded on the basis of our legitimate interests pursuant to Art. 6 para. 1 letter f GDPR. Our interest is focused on the use of a user-friendly and secure newsletter system that serves both our business interests and user expectations, and also allows us to prove consent.

Termination / Revocation

You can unsubscribe from receiving our newsletter at any time, i.e. cancel

your consent. There is a link to cancel the newsletter at the end of each newsletter.

Based on our legitimate interests, we can keep deleted e-mail addresses up to three years before deleting them to be able to prove beforehand consent given. The processing of these data is limited to a possible defense before claims. An individual removal request is possible at any time, subject to confirmation of prior consent.

Newsletter - measuring your success

The newsletter contains a so-called "web beacon", i.e. a pixel-sized file that is downloaded from our server when the newsletter is opened or, if we use the services of a shipping service provider, from its server. As part of this download, technical information is initially collected, such as information about your browser and your system, as well as your IP address and the time of the download.

This information is used to technically improve the services based on technical data or target groups and their reading behavior based on their access location (which can be determined via the IP address) or access times. Statistical research also includes determining whether newsletters are opened, when they are opened, and which links are clicked on. For technical reasons, this information may be assigned to individual newsletter recipients. However, it is not our goal or the purpose of the service provider to track individual users. The evaluations serve us much more to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.

Separate revocation of the measurement of success is unfortunately not possible, in which case the entire newsletter subscription must be canceled.

Hosting and email

The hosting services we use are used to provide the following services: infrastructure and platform services, computing power, disk space and database services, email shipping, security services and technical maintenance services that we use to operate this online offer.

In this case, we or our hosting service provider process inventory data, contact details, content data, contract data, usage data, meta and communication data from customers, interested parties and visitors to this online offer based on our legitimate interests in an efficient and effective the secure provision of this online offer in accordance with Art. 6 para. 1 letter f GDPR in conjunction with Art. 28 GDPR (conclusion of an order processing contract).

Collection of access data and log files

We or our hosting service provider on the basis of our legitimate interests within the meaning of Art. 6 sec. 1 letter f. GDPR collect data on each access to the server on which this service is located (so-called server log files). The access data includes the name of the website visited, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (previously visited page), IP address and the requesting provider.

For security reasons (e.g. to investigate abuse or fraud), the information in the log file is kept for a maximum of 7 days and then deleted. Data, the further storage of which is required for evidence purposes, is not deleted until the incident is finally resolved.

Google tag manager

Google Tag Manager is a solution that allows us to manage the so-called Website tags (and thus integrate into our online offer e.g. Google Analytics and other Google marketing services). The Tag Manager itself (which implements the tags) does not process any personal data of users. For the processing of users' personal data, reference is made to the following information about Google services. Directions for use: www.google.com/intl/de/tagmanager/use-policy.html.

Google Analytics

We use Google Analytics, a web analytics service provided by Google LLC ("Google"), based on our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer within the meaning of Article 6 (1) (f) of the GDPR). Google uses cookies. The information generated by the cookie about the use of the online offer by the user is usually transferred to a Google server in the USA and stored there.

Google is certified under the Privacy Shield Agreement and thus provides a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

Google will use this information on our behalf to evaluate the use of our online offer by users, to compile reports on the activities of this online offer and to provide us with other services related to the use of this online offer and the Internet. Pseudonymous user profiles can be created from the processed data.

We use Google Analytics only with activated IP anonymization. This means that the user's IP address is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases the full IP address will be transferred to the Google server in the USA and shortened there.

The IP address transmitted by the user's browser is not merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; Users can also prevent Google from collecting the data generated by the cookie and related to their use of the online offer and the processing of this data by Google by downloading and installing the browser plug-in available at the following link: http: // .google.com / dlpage / tools gaoptout? hl = de.

Further information on data use by Google, setting options and objection options can be found in the data protection declaration of Google (https://policies.google.com/privacy) and in the ad serving settings of Google (https: // adssettings. Google. com / authenticated).

Users' personal data will be deleted or made anonymous after 14 months.

Google AdWords and Conversion Measurement

We use the services of Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043 on the basis of our legitimate interest (i.e. interest in the analysis, optimization and economic operation of our website within the meaning of Art.6 para. 1 pt. f GDPR), United States ("Google").

We use Google's online marketing process "AdWords" to place advertisements on the Google Display Network (eg, in search results, videos, on websites, etc.) to be displayed to users who have a suspected interest in the ads. This allows us to display advertisements within our online offer in a more targeted manner in order to only present users with advertisements that potentially match their interests. If a user, for example, Displaying advertisements for products that he was interested in other online offers, it is called "remarketing".

For this purpose, when you visit our and other websites on which the Google advertising network operates, Google directly executes Google code and so-called (re) marketing tags (invisible graphics or code, also known as "Web Beacons") integrated into the website. With their help, an individual cookie, i.e. a small file is saved (instead of cookies, comparable technologies can be used). This cookie records which pages the user has visited, what content the user is interested in and which offers he has clicked on, as well as technical information about the browser and operating system, referring websites, visit time and other information regarding the use of the online offer.

We also receive an individual "conversion cookie". The information obtained using cookies is used by Google to create conversion statistics for us. However, we only learn about the anonymous total number of users who clicked on our ad and were redirected to a page with a conversion tracking tag. However, we do not receive any information that could be used to personally identify users.

User data is processed pseudonymously within the Google advertising network. This means that Google stores and processes, for example, not the username or the e-mail address, but processes the corresponding cookie-related data within pseudonymous user profiles. It means from the point of view of Google, the ads are not managed and displayed for a specifically identified person, but for the cookie owner, regardless of who that cookie owner is. This does not apply if the user has expressly allowed Google to process the data without this pseudonymisation. The collected user information is sent to Google and stored on Google's servers in the USA.

Further information on the use of data by Google, setting options and objection can be found in the data protection declaration of Google

(https://policies.google.com/technologies/ads) and in ad display settings

by Google (https: // adssettings.google.com/authenticated).

Google DoubleClick

We use the Google "Doubleclick" online marketing process to place advertisements on the Google Display Network (eg in search results, in videos, on websites, etc.). Double Click is characterized by the fact that ads are displayed in real time based on the assumed interests of users. This allows us to display advertisements within our online offer in a more targeted manner in order to only present users with advertisements that potentially match their interests. If the user, e.g.

Showing ads for products that have been interested in other online offers is called "remarketing." For this purpose, when you visit our and other websites on which the Google advertising network operates, Google directly executes Google code and so-called (re) marketing tags (invisible graphics or code, also known as "Web Beacons") integrated into the website.

This cookie records which pages the user has visited, what content the user is interested in and which offers he has clicked on, as well as technical information about the browser and operating system, referring websites, visit time and other information regarding the use of the online offer.

The IP address of the users is also recorded, and shortened within the member states of the European Union or in other contracting states of the Agreement on the European Economic Area, and only in exceptional cases is transmitted to a Google server in the USA and shortened there. Google may also combine the above information with such information from other sources. If the user subsequently visits other websites, he may be shown advertising tailored to him based on his alleged interests based on his user profile.

User data is processed pseudonymously within the Google advertising network. It means. For example, Google stores and processes no username or e-mail address, but processes the corresponding cookie-related data under pseudonymous user profiles. It means. From the point of view of Google, the ads are not managed and displayed for a specifically identified person, but for the cookie owner, regardless of who that cookie owner is. This does not apply if the user has expressly allowed Google to process the data without this pseudonymisation. The information collected by Google marketing services about users is transferred to Google and stored on Google servers in the United States.

Further information on the use of data by Google, setting options and objection options can be found in the Google data protection declaration (https://policies.google.com/technologies/ads) and in the Google advertising settings (https: // adssettings. google.com/authenticated).

Online presence on social media

We maintain an online presence on social networks and platforms in order to communicate with customers, interested parties and users active there and to inform them about our services there.

Please note that user data may be processed outside the European Union. This may pose a risk to the user as, for example, it may be difficult to enforce user rights. Regarding US providers who are Privacy Shield certified, we would like to point out that they are committed to complying with EU data protection standards.

Moreover, user data is usually processed for the purposes of market research and advertising. For example, usage profiles are created on the basis of user behavior and the resulting interests of the user. The usage profiles can in turn serve, for example, to place advertisements inside and outside of platforms that are presumed to match the interests of users. For this purpose, cookies are usually stored on users' computers in which user behavior and user interests are saved. In addition, data may be stored in usage profiles regardless of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).

The processing of users' personal data is based on our legitimate interest in effectively informing users and communicating with users in accordance with them. Art. 6 par. 1 letter f. RODO. If the users of the respective platform providers are asked to consent to the data processing described above, the legal basis for the processing is Art. 6 sec.1 letter a., Art. 7 GDPR.

For a detailed description of the respective processing and the opt-out options, please refer to the information linked below by the provider.

Also in the case of requests for information and the assertion of user rights, we would like to point out that providers can most effectively assert these rights. Only suppliers have access to your data and can take appropriate action and provide information directly. If you still need help, feel free to contact us.

Facebook,

pages, groups (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland) on the basis of an agreement on the joint processing of personal data - data protection declaration:

www.facebook.com o / privacy /,

especially in the case of parties:

www.facebook.com/legal/terms/information_about_page_insights_data,

the opt-out:

www.facebook.com/settings and http: // www.youronlinechoices.com,

Privacy Shield:

www.privacyshield.gov/participant.

Google/ YouTube

(Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) –

data protection declaration:

https://policies.google.com/privacy,

Opt-Out:

https://adssettings.google.com/authenticated,

Privacy Shield:

https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.

Instagram

(Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) –

data protection declaration

Resignation:

Opt-Out: :

http://instagram.com/about/legal/privacy/.

Twitter

(Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA)

Data protection declaration

https://twitter.com/de/privacy,

Resignation:

Opt-Out:

https://twitter.com/personalization,

Privacy Shield:

https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active.

Pinterest

(Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA) –

Opt-Out:

https://about.pinterest.com/de/privacy-policy.

LinkedIn

(LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Irland) -

Data protection declaration

https://www.linkedin.com/legal/privacy-policy ,

Opt-Out:

https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out,

Privacy Shield:

https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active.

Xing

(XING AG, Dammtorstraße 29-32, 20354 Hamburg, Deutschland) -

Data protection declaration/Opt-Out:

https://privacy.xing.com/de/datenschutzerklaerung.

Wakalet

(Wakelet Limited, 76 Quay Street, Manchester, M3 4PR, United Kingdom) -

Data protection declaration/Opt-Out:

Opt-Out

https://wakelet.com/privacy.html.

Soundcloud

(SoundCloud Limited, Rheinsberger Str. 76/77, 10115 Berlin, Deutschland)

Data protection declaration/Opt-Out:

Opt-Out

https://soundcloud.com/pages/privacy.

As part of our online offer, we use content or services from external providers based on our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer within the meaning of Art.6 para. 1 letter f. GDPR). Services such as Include films or fonts (hereinafter referred to as hereinafter "content").

Here it is always assumed that the third party providers of this content perceive the user's IP address, since without the IP address they would not be able to send the content to their browser. Therefore, the IP address is required to display this content. We try to only use content whose providers use the IP address solely to deliver the content.

Google Fonts

Third-party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. "Pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. Pseudonymous information may also be stored in cookies on the user's device and include, among others technical information about the browser and operating system, referring websites, visit time and other information regarding the use of our online offer, and may also be linked to such information from other sources.

We integrate fonts ("Google Fonts") from Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Data protection:

Google ReCaptcha

We associate a bot detection function, for example, for submissions in online forms ("ReCaptcha") from Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Data protection:

www.google.com/policies/privacy/,

Opt-Out: adssettings.google.com/authenticated.

Google Maps

We integrate the maps of the "Google Maps" service provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. The processed data may include, in particular, IP addresses and location data of users, which, however, are not collected without their consent (usually this is done within the settings of their mobile devices). The data may be processed in the USA. Data protection:

www.google.com/policies/privacy/,

Resignation:

adssettings.google.com/authenticated.

Typekit fonts from Adobe

Based on our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer within the meaning of Art.6 para. 1 letter f. GDPR), we set external fonts of the type "Typekit" from the provider Adobe Systems Software Ireland Limited, 4 - 6 Riverwalk, Citywest Business Campus, Dublin 24, Republic of Ireland a. Adobe is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=) a2zt0000000TNo9AAG & status = Active).

Google+

The functions and content of the Google+ platform provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google") can be integrated into our online offer. For this purpose, for example, content such as images, videos or texts and buttons are among the means with which users can make the content of this online offer available to Google. If users are members of the Google+ platform, Google may invoke the above. Please assign content and functions to user profiles there.

For more information on the use of data by Google, setting options and objection, see Google's data protection declaration (https://policies.google.com/technologies/ads)

and in Google's ad display settings

(https: // adssettings.google.com/authenticated).

Created with Datenschutz-Generator.de

by a Lawyer

Dr. Thomas Schwenke