Introduction
We would like to inform you about this in the following privacy policy,
which types of your personal data (hereinafter also referred to as “data“ for short)“
we process, for what purposes and to what extent. The
Privacy policy applies to all processing carried out by us
personal data, both in the context of the provision of our services
as well as in particular on our websites, in mobile applications and
within external online presences, such as our social media profiles
(hereinafter collectively referred to as the “Online Offer“).
The terms used are not gender-specific.
Status: 20 January 2023
Table of contents
- Introduction
- Person responsible
- Overview of processing
- Relevant legal bases
- Security measures
- Transmission of personal data
- Use of cookies
- Business services
- Payment procedure
- Provision of the online offer and web hosting
- Contact and enquiry management
- Video conferences, online meetings, webinars and screen sharing
- Cloud services
- Newsletter and electronic notifications
- Advertising communication via e-mail, post, fax or telephone
- Prize draws and competitions
- Surveys and interviews
- Web analysis, monitoring and optimisation
- Online marketing
- Customer reviews and evaluation process
- Presence in social networks (social media)
- Plugins and embedded functions and content
- Amendment and updating of the privacy policy
- Rights of the data subjects
- Definitions of terms
Person responsible
PLANWERT Janssen
Dirk Janssen
Kirchblick 6
23769 Fehmarn
Persons authorised to represent the company:
Dirk Janssen
E-mail address:
info@3dviewjanssen.com
Telephone:
04372-217326
Imprint:
https://3dviewjanssen.com/de_de/home/impressum/
Overview of processing
The following overview summarises the types of data processed and the purposes
their processing and refers to the data subjects.
Types of data processed
- Inventory data.
- Payment data.
- Location data.
- Contact details.
- Content data.
- Contract data.
- Usage data.
- Meta, communication and process data.
- Event data (Facebook).
Categories of affected persons
- Customers.
- Employees.
- Interested parties.
- Communication partner.
- Users.
- Competition and contest participants.
- Business and contractual partners.
- 4
- Participants.
- People depicted.
Purposes of the processing
- Provision of contractual services and customer service.
- Contact enquiries and communication.
- Safety measures.
- Direct marketing.
- Reach measurement.
- Tracking.
- Office and organisational procedures.
- Conversion measurement.
- Target group formation.
- Managing and responding to enquiries.
- Organising competitions and contests.
- Feedback.
- Marketing.
- Profiles with user-related information.
- Target group formation.
- Provision of our online services and user-friendliness.
- Information technology infrastructure.
Relevant legal bases
Below you will find an overview of the legal bases of the GDPR, based on
on the basis of which we process personal data. Please take note of the
that, in addition to the provisions of the GDPR, national data protection regulations
may apply in your or our country of residence or domicile. Furthermore, should
If more specific legal bases are relevant in individual cases, we will inform you of these in
of the privacy policy.
- Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR) - The person concerned has
their consent to the processing of data concerning them
personal data for one or more specific purposes
specific purposes. - Contract fulfilment and pre-contractual enquiries (Art. 6 para. 1 sentence 1 lit.
b) GDPR) - The processing is necessary for the fulfilment of a contract whose
party to the contract is the data subject, or to carry out
necessary to take steps at the request of the data subject prior to entering into a
person. - Legal obligation (Art. 6 para. 1 sentence 1 lit. c) GDPR) - The
Processing is necessary for compliance with a legal obligation,
to which the controller is subject. - Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR) - The
Processing is necessary for the purposes of the legitimate interests pursued by the
controller or a third party, unless the interests of the data subject
or fundamental rights and freedoms of the data subject that violate the
protection of personal data prevail.
National regulations apply in addition to the data protection regulations of the GDPR
on data protection in Germany. This includes in particular the law on
Protection against misuse of personal data during data processing
(Federal Data Protection Act - BDSG). The BDSG contains in particular
Special regulations on the right to information, the right to erasure, the right to
Right to object to the processing of special categories of personal data
data, for processing for other purposes and for transmission, and
automated decision-making in individual cases, including profiling. The
It also regulates data processing for the purposes of the
employment relationship (§ 26 BDSG), in particular with regard to the
Establishment, performance or termination of employment relationships
and the consent of employees. Furthermore
data protection laws of the individual federal states apply.
Security measures
In accordance with the legal requirements and taking into account the
the state of the art, the implementation costs and the nature, scope, complexity and
circumstances and purposes of the processing as well as the different
the probability of occurrence and the extent of the threat to the rights and
freedoms of natural persons, appropriate technical and organisational measures
Measures to ensure a level of protection appropriate to the risk.
The measures include, in particular, safeguarding confidentiality,
Integrity and availability of data through control of the physical and
electronic access to the data as well as the access relating to them, the
input, forwarding, securing availability and their separation. The
We have also set up procedures that allow us to recognise
rights of data subjects, the deletion of data and reactions to jeopardisation
of the data. We also take into account the protection
personal data as early as the development or selection of hardware,
software and procedures in accordance with the principle of data protection, through
technology design and through data protection-friendly default settings.
Shortening of the IP address: If IP addresses are truncated by us or by the
service providers and technologies are processed and the processing of a
complete IP address is not required, the IP address is shortened (also known as
referred to as “IP masking”). Here, the last two digits, or the
last part of the IP address after a dot removed, or replaced by a placeholder
replaced. The shortening of the IP address is intended to prevent the identification of a person.
be prevented or made considerably more difficult on the basis of their IP address.
TLS encryption (https): In order to protect your data transmitted via our online
data, we use TLS encryption. You can recognise this
encrypted connections by the prefix https:// in the address line of your browser.
browsers.
Transmission of personal data
In the context of our processing of personal data, this may occur,
that the data may be passed on to other bodies, companies, legally independent
organisational units or persons or transmit them to them
are disclosed. The recipients of this data may include, for example, companies entrusted with IT tasks.
contracted service providers or providers of services and content that are included in a
website are included. In such cases, we observe the
legal requirements and, in particular, conclude corresponding contracts or.
Agreements that serve to protect your data with the recipients of your data.
data.
Data transfer within the group of companies: We can
personal data to other companies within our organisation
group of companies or authorise them to access this data.
grant. If this disclosure is made for administrative purposes, it is based on the
Disclosure of the data on the basis of our legitimate business and
business interests or is carried out insofar as it is necessary for the fulfilment of our
contractual obligations or if consent is required for the fulfilment of contractual
of the data subject or a legal authorisation exists.
Transfer of data within the organisation: We may transfer personal data
transfer data to other bodies within our organisation or provide them with the
grant access to this data. Insofar as this disclosure is for administrative
purposes, the transfer of the data is based on our legitimate interests.
business and economic interests or, if they are not in the interests of the company
is necessary for the fulfilment of our contractual obligations or if
the consent of the data subject or legal authorisation has been obtained.
Use of cookies
Cookies are small text files or other storage notes that
Store information on end devices and retrieve information from the end devices
read out. E.g. to read the login status in a user account, the contents of a shopping basket
in an e-shop, the content accessed or the functions of an e-shop used
online offer. Cookies can also be used for various purposes
used, e.g. for the purposes of functionality, safety and comfort
of online offers and the creation of analyses of visitor flows.
Notes on consent: We use cookies in accordance with the legal
regulations. We therefore obtain prior authorisation from the users.
consent, unless this is not required by law. Consent
is not necessary, especially if the storage and readout of the
information, including cookies, is absolutely necessary in order to fulfil the
users a telemedia service expressly requested by them (i.e. our
online offer). The revocable consent is
clearly communicated to users and contains the information on
of the respective cookie usage.
Information on the legal basis for data protection: On which
legal basis under data protection law, we process the personal data of the
users with the help of cookies depends on whether we ask users for a cookie consent or not.
Ask for consent. If the users consent, the legal basis is the
processing of your data is the declared consent. Otherwise, the data processed with
data processed by cookies on the basis of our legitimate interests
(e.g. in the commercial operation of our online offering and
improvement of its usability) or, if this is necessary in the context of the
fulfilment of our contractual obligations, if the use of cookies
is necessary to fulfil our contractual obligations. To which
purposes for which the cookies are processed by us will be clarified in the course of
of this data protection declaration or within the framework of our consent and
processing processes.
Storage duration: With regard to the storage period, the following types of data are
differentiated from cookies:
- Temporary cookies (also: session cookies): Temporary
Cookies are deleted at the latest after a user has left an online offer.
and leave his end device (e.g. browser or mobile application)
has closed. - Permanent cookies: Permanent cookies also remain after the
closing the end device. For example, the login
status is saved or favourite content is displayed directly when
the user visits a website again. Likewise, the data collected with the help of
The user data collected by cookies is used to measure reach
become. If we do not provide users with explicit information on the type and
storage period of cookies (e.g. in the context of obtaining consent).
consent), users should assume that cookies are permanent
and the storage period can be up to two years.
General information on cancellation and objection (opt-out): Users
can revoke the consents they have given at any time and, in addition
an objection to the processing in accordance with the statutory provisions
specifications in Art. 21 GDPR. Users can also submit their objection via
explain the settings of their browser, e.g. by deactivating the
Use of cookies (whereby this also affects the functionality of our online
services may be restricted). An objection to the use of
Cookies for online marketing purposes can also be used via the websites
https://optout.aboutads.info and https://www.youronlinechoices.com/ explained
become.
Further information on processing operations, procedures and services:
- Processing of cookie data on the basis of consent: We
use a cookie consent management procedure in which the cookie consent
the user's consent to the use of cookies, or the user's consent to the
mentioned in the context of the cookie consent management procedure
processing and providers, as well as managed by the users and
can be revoked. In this case, the declaration of consent
saved so that they do not have to be queried again and the
to prove consent in accordance with the legal obligation
can. The storage can be server-side and/or in a cookie
(so-called opt-in cookie, or with the help of comparable technologies)
to be able to assign the consent to a user or their device.
can. Subject to individual information about the providers of cookie
management services, the following notes apply: The duration of the
Consent can be stored for up to two years. In this case
a pseudonymous user identifier is created and linked to the time of the
Consent, information on the scope of the consent (e.g. which
categories of cookies and/or service providers) and the browser,
system and the end device used.
Business services
We process the data of our contractual and business partners, e.g. customers and
interested parties (collectively referred to as “contractual partners”) in the context of
contractual and comparable legal relationships as well as associated
measures and in the context of communication with the contractual partners (or
pre-contractual), e.g. to answer enquiries.
We process this data in order to fulfil our contractual obligations.
These include, in particular, the obligations to provide the agreed
services, any updating obligations and remedies in the event of warranty and
other service disruptions. In addition, we process the data for
safeguarding our rights and for the purposes of the duties associated with these
administrative tasks and company organisation. Furthermore
we process the data on the basis of our legitimate interests in a
the proper and efficient management of the company and the
Security measures for the protection of our contractual partners and our
business operations from misuse, jeopardising their data and secrets,
Information and rights (e.g. on the participation of telecom,
transport and other ancillary services as well as subcontractors, banks, tax and accounting
legal advisors, payment service providers or tax authorities). Within the scope of the
We only disclose the data of contractual partners to third parties to the extent that
further than is necessary for the aforementioned purposes or to fulfil legal requirements.
obligations is required. About other forms of processing, e.g. for
marketing purposes, the contractual partners will, within the scope of this
Privacy policy informed.
Which data is required for the aforementioned purposes is communicated to the
contractual partners before or in the context of data collection, e.g. in
online forms, through special labelling (e.g. colours) or symbols
(e.g. asterisk or similar), or in person.
We delete the data after the expiry of statutory warranty and guarantee periods.
comparable obligations, i.e. in principle after 4 years, unless,
that the data is stored in a customer account, e.g. as long as it is from
must be retained for legal archiving reasons. The legal
The retention period for documents relevant under tax law and for
commercial books, inventories, opening balance sheets, annual financial statements prepared as at
understanding of these documents, work instructions and other
organisational documents and accounting vouchers for ten years and for received
commercial and business letters and reproductions of the commercial and business letters sent.
Business letters six years. The period begins at the end of the calendar year in which
The last entry is made in the book, the inventory, the opening balance sheet,
the annual financial statements or the management report are prepared, the commercial or
business letter has been received or dispatched or the accounting voucher
the recording has been made, or the recording has been
other documents.
Insofar as we use third-party providers or platforms to provide our services
the relationship between the users and the providers shall be governed by the
Terms and conditions and data protection notices of the respective third-party providers or
Platforms.
- Processed data types: Inventory data (e.g. names, addresses);
Payment data (e.g. bank details, invoices, payment history);
Contact data (e.g. e-mail, telephone numbers); contract data (e.g.
subject matter of the contract, term, customer category); utilisation data (e.g.
websites visited, interest in content, access times); meta,
Communication and process data (e.g. IP addresses, time data,
identification numbers, consent status). - Persons concerned: Customers; interested parties; business and
Contractual partner. - Purposes of the processing: Provision of contractual services and
Customer service; security measures; contact enquiries and
Communication; office and organisational procedures; administration and
Answering enquiries; conversion measurement (measurement of effectiveness
marketing measures); profiles with user-related information
(creation of user profiles). - Legal bases: Contract fulfilment and pre-contractual enquiries (Art. 6
para. 1 sentence 1 lit. b) GDPR); Legal obligation (Art. 6 para. 1 sentence 1 lit. c)
GDPR); Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Further information on processing operations, procedures and services:
- Customer account: Contractual partners can within our online offer
create an account (e.g. customer or user account, “customer account” for short).
If the registration of a customer account is required
contractual partners as well as to the requirements for registration
required information. The customer accounts are not public and can be
are not indexed by search engines. As part of the registration process
and subsequent registrations and use of the customer account
we store the IP addresses of the customers together with the access times in order to
prove the registration and possible misuse of the customer account
to be able to prevent this. If customers have cancelled their customer account,
the data relating to the customer account will be deleted, subject to,
Their storage is required for legal reasons. It is incumbent on
customers to delete their data upon cancellation of the customer account.
secure; legal bases: contract fulfilment and pre-contractual enquiries
(Art. 6 para. 1 sentence 1 lit. b) GDPR). - Economic analyses and market research: From
economic reasons and to take account of market trends, the wishes of
contractual partners and users, we analyse the data provided to us and
available data on business transactions, contracts, enquiries, etc., whereby
into the group of affected persons Contractual partners, interested parties,
customers, visitors and users of our online offering. The
Analyses are carried out for the purpose of business evaluations, the
marketing and market research (e.g. for the determination of
customer groups with different characteristics). We can,
if available, the profiles of registered users including their details,
e.g. on services utilised. The analyses
serve us alone and are not disclosed externally, unless they are
Anonymous analyses with summarised, i.e. anonymised values
acts. Furthermore, we take the privacy of users into consideration and
process the data for analysis purposes as pseudonymously as possible and,
where feasible, anonymously (e.g. as summarised data);
Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). - Shop and e-commerce: We process our customers' data in order to
The selection, purchase and ordering of the selected products,
goods and related services, as well as their payment and
to enable delivery or execution. Insofar as the execution of a
order, we use service providers, in particular postal services,
forwarding and shipping companies to organise the delivery or execution of the order.
to our customers. For the processing of
payment transactions, we use the services of banks and
payment service providers. The required information is provided as
those within the scope of the order or comparable purchase process
and comprise the goods to be delivered or.
the provision and invoicing of the required data and
Contact information so that we can contact you if necessary;
Legal basis: Contract fulfilment and pre-contractual enquiries (Art. 6
para. 1 sentence 1 lit. b) GDPR). - Technical services: We process the data of our customers
and clients (hereinafter uniformly referred to as “customers”) in order to
the selection, acquisition or commissioning of the selected products.
services or works and associated activities as well as their
Payment and provision or execution or performance of the service
enable. The required information must be provided as such in the
order, purchase order or comparable contract conclusion and
include the information required for the provision of services and invoicing
as well as contact information in order to be able to hold any consultations.
Insofar as we have access to information of end customers, employees or
other persons, we process these in accordance with the data protection
legal and contractual requirements; legal bases:
Contract fulfilment and pre-contractual enquiries (Art. 6 para. 1 sentence 1 lit. b)
GDPR).
Payment procedure
In the context of contractual and other legal relationships, on the basis of statutory
obligations or otherwise on the basis of our legitimate interests, we offer the
efficient and secure payment options for the persons concerned and set
In addition to banks and credit institutions, we also use other service providers
(collectively “payment service providers”).
The data processed by the payment service providers include
Inventory data, such as name and address, bank data, such as.
Account numbers or credit card numbers, passwords, TANs and checksums
as well as the contract, totals and recipient-related information. The information
are required to carry out the transactions. The data entered
However, they are only processed by the payment service providers and
stored. This means that we do not receive any account or credit card-related data.
information, but only information with confirmation or
Negative information about the payment. Under certain circumstances, the data will be
the payment service provider to credit agencies. These
The purpose of the data transfer is to check identity and creditworthiness. For this we refer to
to the general terms and conditions and the data protection information of the payment service providers.
Payment transactions are subject to the Terms and Conditions and the
Data protection notices of the respective payment service providers, which are used within the
The respective websites or transaction applications can be called up. We refer to
for the purpose of further information and assertion of claims.
Rights of cancellation, information and other data subject rights.
- Processed data types: Inventory data (e.g. names, addresses);
Payment data (e.g. bank details, invoices, payment history);
Contract data (e.g. subject matter of the contract, term, customer category);
Usage data (e.g. websites visited, interest in content,
access times); meta, communication and process data (e.g. IP addresses,
time details, identification numbers, consent status);
Contact details (e.g. e-mail, telephone numbers). - Persons concerned: Customers; interested parties.
- Purposes of the processingProvision of contractual services and
Customer service. - Legal bases: Contract fulfilment and pre-contractual enquiries (Art. 6
para. 1 sentence 1 lit. b) GDPR).
Further information on processing operations, procedures and services:
- Apple Pay: Payment services (technical connection of online payment
payment methods); Service provider: Apple Inc, Infinite Loop, Cupertino, CA
95014, USA; Legal basis: Contract fulfilment and pre-contractual obligations
Enquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR); Website:
https://www.apple.com/de/apple-pay/; Privacy Policy:
https://www.apple.com/legal/privacy/de-ww/. - Giropay: Payment services (technical connection of online payment
payment methods); Service provider: giropay GmbH, An der Welle 4, 60322
Frankfurt, Germany; Legal basis: Contract fulfilment and
pre-contractual enquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR); Website:
https://www.giropay.de; Privacy Policy:
https://www.giropay.de/rechtliches/datenschutzerklaerung/. - Google Pay: Payment services (technical connection of online payment
payment methods); Service provider: Google Ireland Limited, Gordon House,
Barrow Street, Dublin 4, Ireland; Legal basis: Contract fulfilment and
pre-contractual enquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR); Website:
https://pay.google.com/intl/de_de/about/; Privacy Policy:
https://policies.google.com/privacy. - Klarna / Sofortüberweisung: Payment services (technical
Connection of online payment methods); Service provider: Klarna Bank AB
(publ), Sveavägen 46, 111 34 Stockholm, Sweden; legal basis:
Contract fulfilment and pre-contractual enquiries (Art. 6 para. 1 sentence 1 lit. b)
DSGVO); Website: https://www.klarna.com/de; Privacy Policy:
https://www.klarna.com/de/datenschutz. - Mastercard: Payment services (technical connection of online payment
payment methods); Service provider: Mastercard Europe SA, Chaussée de
Tervuren 198A, B-1410 Waterloo, Belgium; legal basis:
Contract fulfilment and pre-contractual enquiries (Art. 6 para. 1 sentence 1 lit. b)
GDPR); Website: https://www.mastercard.de/de-de.html;
Privacy policy: https://www.mastercard.de/de-de/datenschutz.html. - PayPalPayment services (technical connection of online payment systems)
payment methods) (e.g. PayPal, PayPal Plus, Braintree); service provider:
PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449
Luxembourg; Legal basis: Contract fulfilment and pre-contractual obligations
Enquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR); Website:
https://www.paypal.com/de; Privacy Policy:
https://www.paypal.com/de/webapps/mpp/ua/privacy-full. - Visa: Payment services (technical connection of online payment
payment methods); Service provider: Visa Europe Services Inc,
London Branch, 1 Sheldon Square, London W2 6TT, UK;
Legal basis: Contract fulfilment and pre-contractual enquiries (Art. 6
Para. 1 S. 1 lit. b) GDPR); Website: https://www.visa.de;
Privacy policy:
https://www.visa.de/nutzungsbedingungen/visa-privacy-center.html.
Provision of the online offer and web hosting
Provision of the online offer and web hosting
We process users' data in order to provide them with our online services.
to be able to make this information available. For this purpose, we process the IP address of the
user, which is necessary to provide the content and functions of our online services.
to the user's browser or end device.
- Processed data types: Usage data (e.g. websites visited,
interest in content, access times); meta, communication and
Process data (e.g. IP addresses, time data, identification numbers,
consent status); content data (e.g. entries in online forms). - Persons concerned: Users (e.g. website visitors, users of
online services).
- Purposes of the processing: Provision of our online offer and
User-friendliness; information technology infrastructure (operation and maintenance)
Provision of information systems and technical equipment
(computers, servers, etc.); security measures; provision of contractual services
Services and customer service. - Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Further information on processing operations, procedures and services:
- Provision of online services on rented storage space: For the
We use storage space for the provision of our online services,
computing capacity and software that we receive from a corresponding
server providers (also known as “web hosts”) or otherwise rent or
legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f)
GDPR). - Collection of access data and log files: Access to our
online offer is logged in the form of so-called “server log files”.
The server log files may include the address and name of the
web pages and files, date and time of access, transmitted data
Data volumes, notification of successful retrieval, browser type and version,
the user's operating system, referrer URL (the previously visited page) and
usually include IP addresses and the requesting provider. The
Server log files can be used on the one hand for security purposes
e.g. to avoid overloading the servers (especially in the
case of abusive attacks, so-called DDoS attacks) and to the
others to ensure server utilisation and stability;
Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR);
Deletion of data: Log file information is stored for the duration of
stored for a maximum of 30 days and then deleted or anonymised.
Data whose further retention is required for evidentiary purposes are
from deletion until final clarification of the respective incident.
excluded. - Hostinger: UAB Services in the field of the provision of
information technology infrastructure and related services
(e.g. storage space and/or computing capacity); Service provider: Hostinger UAB,
Jonavos g. 60C, 44192 Kaunas, Lithuania;
Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR);
Website: https://www.hostinger.com; Privacy policy:
https://www.hostinger.com/de/legal/datenschutz-bestimmungen;
Order processing contract:
https://www.hostinger.com/de/legal/allgemeine-geschaftsbedingungen. - WordPress.com: Hosting and software for the creation, provision
and the operation of websites, blogs and other online offerings;
Service provider: Aut O'Mattic A8C Ireland Ltd, Grand Canal Dock, 25
Herbert Pl, Dublin, D02 AY86, Ireland; Legal basis: Authorised persons
Interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://wordpress.com;
Privacy policy: https://automattic.com/de/privacy/;
Order processing contract:
https://wordpress.com/support/data-processing-agreements/.
Contact and enquiry management
When contacting us (e.g. via contact form, e-mail, telephone or
via social media) and within the framework of existing user and
business relationships, the data of the requesting persons are processed
insofar as this is necessary for answering the contact enquiries and any requested
measures is required.
- Processed data types: Contact details (e.g. e-mail, telephone numbers);
Content data (e.g. entries in online forms); utilisation data (e.g.
websites visited, interest in content, access times); meta,
Communication and process data (e.g. IP addresses, time data,
identification numbers, consent status). - Persons concerned: Communication partner.
- Purposes of the processing: Contact enquiries and communication;
Administration and answering of enquiries; feedback (e.g. collection of
feedback via online form); provision of our online services; and
User friendliness. - Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR);
Contract fulfilment and pre-contractual enquiries (Art. 6 para. 1 sentence 1 lit. b)
GDPR).
Further information on processing operations, procedures and services:
- Contact form: When users contact us via our contact form, e-mail or
contact with us via other communication channels, we process the data
data provided to us in this context for the processing of the
communicated request; legal bases: fulfilment of the contract and
pre-contractual enquiries (Art. 6 para. 1 sentence 1 lit.
Video conferences, online meetings, webinars and
Screen sharing
We use platforms and applications from other providers (hereinafter
referred to as “conference platforms”) for the purpose of conducting video and
audio conferences, webinars and other types of video and audio conferences.
meetings (hereinafter collectively referred to as “conference”). At the
When selecting conference platforms and their services, we take into account the
legal requirements.
Data processed by conference platforms: As part of the participation in
of a conference, the conference platforms process the following
personal data of the participants. The scope of processing depends on the
depends on which data is required in the context of a specific conference.
(e.g. specification of access data or clear names) and which optional
information is provided by the participants. In addition to the processing for
the conference, the data of the participants can be stored by the
Conference platforms also for security purposes or service optimisation
are processed. The processed data includes personal data
(first name, surname), contact information (e-mail address, telephone number),
Access data (access codes or passwords), profile pictures, information on the
professional position/function, the IP address of the Internet access, information on the
end devices of the participants, their operating system, the browser and its
technical and linguistic settings, information on the content of the
communication processes, i.e. entries in chats as well as audio and video data,
as well as the use of other available functions (e.g.
surveys). The content of the communications will be published in the
The data is encrypted to the extent technically provided by the conference provider. If the
participants are registered as users with the conference platforms, then
Further data may be collected in accordance with the agreement with the
conference providers.
Logging and recordings: If text entries, participation results (e.g.
of surveys) as well as video or audio recordings are logged, this will be
participants in advance in a transparent manner and they are - as far as possible
required - asked for approval.
Data protection measures of the participants: Please note the details of the
Processing of your data by the conference platforms whose
data protection information and select in the settings of the
conference platforms that provide you with optimum security and
Data protection settings. Please also ensure the duration of a
Video conferencing for data and privacy protection in the background of your
Admission (e.g. by informing fellow residents, locking doors and
Use, as far as technically possible, of the function to make the data unrecognisable.
background). Links to the conference rooms and access data must not be sent to
be passed on to unauthorised third parties.
Notes on legal bases: If, in addition to the conference platforms
we process users' data and ask users for their consent to the processing of their data.
Request the use of the conference platforms or certain functions (e.g.
consent to the recording of conferences), the legal basis for the recording is
this consent to the processing. Furthermore, our processing for the
fulfilment of our contractual obligations (e.g. in participant lists,
in the case of processing the results of discussions, etc.). Otherwise, the
user data on the basis of our legitimate interests in the
efficient and secure communication with our communication partners
processed.
- Processed data types: Inventory data (e.g. names, addresses);
Contact data (e.g. e-mail, telephone numbers); Content data (e.g. entries in
online forms); usage data (e.g. websites visited, interest in
content, access times); meta, communication and procedural data (e.g.
IP addresses, time data, identification numbers, consent status). - Persons concerned: Communication partners; users (e.g.
Website visitors, users of online services); Persons depicted. - Purposes of the processingProvision of contractual services and
Customer service; contact enquiries and communication; office and
Organisational procedures. - Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Further information on processing operations, procedures and services:
- Google Hangouts / Meet: Messenger and conference software;
Service provider: Google Ireland Limited, Gordon House, Barrow Street,
Dublin 4, Ireland; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR).
1 lit. f) GDPR); Website: https://hangouts.google.com/;
Privacy policy: https://policies.google.com/privacy;
Order processing contract:
https://cloud.google.com/terms/data-processing-addendum;
Standard contractual clauses (guarantee of data protection level for
processing in third countries):
https://cloud.google.com/terms/eu-model-contract-clause. - GoToMeeting: Conferencing software; Service provider: LogMeIn Ireland
Limited, Bloodstone Building Block C 70, Sir John Rogerson's Quay Dublin 2,
Ireland; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f)
GDPR); Website: https://www.gotomeeting.com/de-de;
Privacy policy: https://www.logmeininc.com/de/legal/privacy;
Order processing contract:
https://www.logmein.com/de/legal#other-agreements
(data processing addendum); standard contractual clauses
(Ensuring the level of data protection for processing in third countries):
https://www.logmein.com/de/legal#other-agreements
(data processing addendum). - Microsoft Teams: Messenger and conference software; service provider:
Microsoft Ireland Operations Limited, One Microsoft Place, South County
Business Park, Leopardstown, Dublin 18, Ireland, parent company:
Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399 USA;
Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR);
Website: https://www.microsoft.com/de-de/microsoft-365;
Privacy policy:
https://privacy.microsoft.com/de-de/privacystatement, safety instructions:
https://www.microsoft.com/de-de/trustcenter; standard contractual clauses
(Ensuring the level of data protection for processing in third countries):
https://www.microsoft.com/licensing/docs/view/Microsoft-Products-and-Servic
es-Data-Protection-Addendum-DPA. - Zoom: Video conferences, web conferences and webinars; service provider:
Zoom Video Communications, Inc, 55 Almaden Blvd, Suite 600, San Jose, CA
95113, USA; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1
lit. f) GDPR); Website: https://zoom.us; Privacy Policy:
https://zoom.us/docs/de-de/privacy-and-legal.html;
Order processing contract:
https://zoom.us/docs/de-de/privacy-and-legal.html (referred to as Global DPA);
Standard contractual clauses (guarantee of data protection level for
processing in third countries):
https://zoom.us/docs/de-de/privacy-and-legal.html (referred to as Global
DPA).
Cloud services
We use data accessible via the Internet and stored on the servers of their providers.
executed software services (so-called “cloud services”, also referred to as
“Software as a Service”) for the storage and management of content (e.g.
Document storage and management, exchange of documents, content
and information with specific recipients or publication of content
and information).
In this context, personal data may be processed and stored on the
servers of the providers, insofar as these are part of
communication processes with us, or are otherwise used by us in the context of these
privacy policy are processed. This data may include
in particular master data and contact data of users, data on processes,
contracts, other processes and their content. The providers of the cloud
Services also process usage data and metadata that they use to
security purposes and for service optimisation.
Insofar as we use the cloud services for other users or publicly accessible
provide forms and other documents and content on accessible websites,
providers may store cookies on users' devices for the purposes of
web analysis or to view user settings (e.g. in the case of the
media control).
- Processed data types: Inventory data (e.g. names, addresses);
Contact data (e.g. e-mail, telephone numbers); Content data (e.g. entries in
online forms); usage data (e.g. websites visited, interest in
content, access times); meta, communication and procedural data (e.g.
IP addresses, time data, identification numbers, consent status). - Persons concerned: Customers; employees (e.g. employees, applicants,
former employees); interested parties; communication partners. - Purposes of the processing: Office and organisational procedures;
Information technology infrastructure (operation and provision of
information systems and technical devices (computers, servers, etc.). - Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Further information on processing operations, procedures and services:
- Apple iCloud: Cloud storage service; service provider: Apple Inc, Infinite
Loop, Cupertino, CA 95014, USA; Legal basis: Authorised persons
Interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website:
https://www.apple.com/de/; Privacy Policy:
https://www.apple.com/legal/privacy/de-ww/. - Dropbox: Cloud storage service; service provider: Dropbox, Inc, 333
Brannan Street, San Francisco, California 94107, USA; legal basis:
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website:
https://www.dropbox.com/de; Privacy Policy:
https://www.dropbox.com/privacy; order processing contract:
https://assets.dropbox.com/documents/en/legal/dfb-data-processing-agreemen
t.pdf; standard contractual clauses (ensuring the level of data protection
for processing in third countries):
https://assets.dropbox.com/documents/en/legal/dfb-data-processing-agreemen
t.pdf. - Google Cloud Storage: Cloud storage, cloud infrastructure services and
cloud-based application software; service provider: Google Cloud EMEA
Limited, 70 Sir John Rogerson's Quay, Dublin 2, Ireland; legal basis:
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website:
https://cloud.google.com/; Privacy Policy:
https://policies.google.com/privacy; order processing contract:
https://cloud.google.com/terms/data-processing-addendum;
Standard contractual clauses (guarantee of data protection level for
processing in third countries):
https://cloud.google.com/terms/eu-model-contract-clause; Other
Information: https://cloud.google.com/privacy.
Newsletter and electronic notifications
We send newsletters, e-mails and other electronic notifications
(hereinafter “Newsletter“) only with the consent of the recipients or an authorised
legal permission. If, in the context of a registration for the newsletter, its
contents are specifically described, they are not relevant for the consent of users.
authoritative. In addition, our newsletters contain information about our
services and us.
To subscribe to our newsletters, it is generally sufficient if you
your e-mail address. However, we may ask you to enter a name for the purpose of
personal address in the newsletter, or other information, provided that this is necessary for the
purposes of the newsletter.
Double opt-in procedure: Registration for our newsletter takes place
in a so-called double opt-in procedure. This means that you will receive
After registration you will receive an e-mail asking you to confirm your registration.
be requested. This confirmation is necessary to ensure that no-one can
e-mail addresses. Subscriptions to the newsletter are
to ensure that the registration process complies with legal requirements.
to be able to prove this. This includes the storage of the registration and the
confirmation time and the IP address. The changes are also
of your data stored with the shipping service provider.
Erasure and restriction of processing: We can use the
e-mail addresses for up to three years on the basis of our
legitimate interests before we delete them in order to protect a previously
to be able to prove the consent given. The processing of this data is
limited to the purpose of a possible defence against claims. A
individual request for cancellation is possible at any time, provided that at the same time the former
the existence of consent is confirmed. In the case of obligations to permanently
We reserve the right to store your e-mail address in the event of objections.
address in a blocklist for this purpose alone.
The logging of the registration process takes place on the basis of our
legitimate interests for the purposes of providing evidence of its proper
Procedure. Insofar as we commission a service provider to send e-mails,
This is done on the basis of our legitimate interests in an efficient
and secure despatch system.
- Processed data types: Inventory data (e.g. names, addresses);
Contact data (e.g. e-mail, telephone numbers); meta, communication and
Process data (e.g. IP addresses, time data, identification numbers,
consent status); usage data (e.g. websites visited, interest in
content, access times); event data (Facebook) (“event data” is data,
which, for example, are sent by us via Facebook pixels (via apps or in other ways) to
can be transmitted to Facebook and refer to persons or their
actions; the data includes, for example, information about visits to
Websites, interactions with content, functions, app installations,
purchases of products, etc.; the event data is used for the purpose of creating
Target groups for content and advertising information (custom audiences)
processed; event data does not include the actual content (such as.
written comments), no login information and no
Contact information (i.e. no names, e-mail addresses and
telephone numbers). Event data is deleted by Facebook after a maximum of two
years, the target groups formed from them are deleted with the deletion
of our Facebook account). - Persons concerned: Communication partners; users (e.g.
website visitors, users of online services). - Purposes of the processing: Direct marketing (e.g. by e-mail or
by post); contact enquiries and communication; reach measurement (e.g.
access statistics, recognition of returning visitors);
Conversion measurement (measurement of the effectiveness of marketing measures);
Profiles with user-related information (creation of user profiles). - Legal bases: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR);
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). - Possibility of objection (opt-out): You can cancel the reception of our
newsletter at any time, i.e. to revoke your consent or to unsubscribe from the newsletter.
object to further receipt. A link to the cancellation of the
newsletter can be found either at the end of each newsletter or
can otherwise use one of the contact options listed above,
preferably e-mail, for this purpose.
Further information on processing operations, procedures and services:
- Measurement of opening and click rates: The newsletters contain a
a so-called “web-beacon“, i.e. a pixel-sized file that is sent to the user's browser when the
newsletter from our server, or, if we use a dispatch service provider
is retrieved from its server. Within the scope of this retrieval
technical information, such as information about the browser
and your system, as well as your IP address and the time of access,
collected. This information is used for the technical improvement of our
newsletter on the basis of the technical data or the target groups and their
reading behaviour on the basis of their retrieval locations (which are determined using the IP address
can be determined) or the access times. This analysis includes
also determine whether the newsletters are opened, when they are
are opened and which links are clicked. This information
are assigned to the individual newsletter recipients and included in their
profiles until they are deleted. The analyses serve us
to recognise the reading habits of our users and to optimise our content.
to them or to adapt different content according to their interests.
of our users. The measurement of the opening rates and the
Click rates and storage of the measurement results in the user profiles
and their further processing are carried out on the basis of consent
of the user. A separate revocation of the performance measurement is unfortunately not
possible, in which case the entire newsletter subscription must be cancelled,
or must be objected to. In this case, the
stored profile information deleted; legal basis:
Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR). - Google Analytics: Measuring the success of email campaigns and education
of user profiles with a storage period of up to two years;
Service provider: Google Ireland Limited, Gordon House, Barrow Street,
Dublin 4, Ireland; Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a)
GDPR); Website:
https://marketingplatform.google.com/intl/de/about/analytics/;
Privacy policy: https://policies.google.com/privacy;
Order processing contract:
https://business.safety.google/adsprocessorterms;
Standard contractual clauses (guarantee of data protection level for
processing in third countries):
https://business.safety.google/adsprocessorterms;
Possibility of objection (opt-out): Opt-out plugin:
https://tools.google.com/dlpage/gaoptout?hl=de, settings for the
Display of adverts:
https://adssettings.google.com/authenticated; Further information:
https://privacy.google.com/businesses/adsservices (Types of processing
and the processed data). - Facebook Messenger Broadcasts: Messenger with end-to-end
Encryption; Service provider: Meta Platforms Ireland Limited, 4 Grand
Canal Square, Grand Canal Harbour, Dublin 2, Ireland; Legal basis:
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website:
https://www.facebook.com; Privacy Policy:
https://www.facebook.com/about/privacy; order processing contract:
https://www.facebook.com/legal/terms/dataprocessing;
Standard contractual clauses (guarantee of data protection level for
processing in third countries):
https://www.facebook.com/legal/EU_data_transfer_addendum;
Possibility of objection (opt-out):
https://www.facebook.com/adpreferences/ad_settings (Login to Facebook is
required). - MailPoet: E-mail dispatch and e-mail marketing platform; service provider:
Wysija SARI, 6 rue Dieudè, 13006, Marseile, FRANCE.
Legal basis: Legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR
You can view the data protection provisions of the shipping provider here:
https://www.mailpoet.com/privacy-notice/. - Mailjet: E-mail dispatch and e-mail marketing platform; Service provider:
Mailjet SAS,13-13 bis, rue de l'Aubrac, 75012 Paris, France;
Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR);
Website: https://www.mailjet.de; Privacy policy:
https://www.mailjet.de/privacy-policy.
Advertising communication via e-mail, post, fax or telephone
We process personal data for the purposes of advertising and marketing.
Communication via various channels, such as e-mail, telephone, post or fax,
in accordance with the legal requirements.
The recipients have the right to withdraw their consent at any time
or to object to advertising communication at any time.
After revocation or objection, we store the data required to prove the previous
Authorisation required for contacting or sending data up to
three years after the end of the year of revocation or objection on the
On the basis of our legitimate interests. The processing of this data is based on
limited to the purpose of a possible defence against claims. On the basis of
of the legitimate interest in the permanent revocation or objection of the user.
we also store the data required to prevent a repeat offence.
contact (e.g., depending on the communication channel, the e-mail address).
address, telephone number, name).
- Processed data types: Inventory data (e.g. names, addresses);
Contact details (e.g. e-mail, telephone numbers). - Affected persons: Communication partner.
- Purposes of processing: Direct marketing (e.g. by email or e-mail)
by post). - Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR);
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Prize draws and competitions
We process the personal data of participants in competitions and contests.
competitions only in compliance with the relevant data protection regulations,
insofar as the processing is necessary for the provision, execution and processing of the
is contractually required to involve the participants in the processing of
have given your consent or the processing serves our legitimate interests
(e.g. in the security of the competition or the protection of our interests from
Misuse due to possible collection of IP addresses when submitting
competition entries).
If contributions from participants are published as part of the competitions
(e.g. in the context of a vote or presentation of the competition entries or.
of the winners or the reporting on the competition), we point this out,
that the names of the participants will also be published in this context.
can be used. Participants can object to this at any time.
If the competition takes place within an online platform or a social network
network (e.g. Facebook or Instagram, hereinafter referred to as “online network").
platform“), the terms of use and data protection provisions also apply.
of the respective platforms. In these cases, please note that we are not responsible for the
responsible for the information provided by the participants as part of the competition
and enquiries relating to the competition should be addressed to us.
The participants' data will be deleted as soon as the competition or the
competition has ended and the data is no longer required to fulfil the
winners or because queries about the competition are to be expected.
In principle, participants' data will be deleted no later than 6 months after the end of the
of the competition. Winners' data may be retained for longer,
to answer questions about the winnings, for example, or to check the winnings performance.
fulfilment; in this case, the retention period is based on the
type of profit and is up to three years in the case of goods or services, for example, in order to
e.g. to be able to process warranty cases. Furthermore, the data of the
participants are stored for longer, e.g. in the form of reporting on the
Competition in online and offline media.
If data is also collected for other purposes as part of the competition
their processing and the duration of storage are based on the
data protection information on this use (e.g. in the case of registration for the
newsletter as part of a competition).
- Processed data types: Inventory data (e.g. names, addresses);
Content data (e.g. entries in online forms); meta, communication and
Process data (e.g. IP addresses, time data,
identification numbers, consent status). - Persons concerned: Competition and contest participants.
- Purposes of the processing: Realisation of competitions and
competitions. - Legal bases: Contract fulfilment and pre-contractual enquiries (Art. 6
para. 1 sentence 1 lit. b) GDPR).
Surveys and interviews
We conduct surveys and interviews in order to obtain information for the respective
communicated purpose of the survey or questionnaire. The data we
Surveys and interviews (hereinafter referred to as “surveys”) are conducted
analysed anonymously. Personal data is only processed
insofar as this is necessary for the provision and technical implementation of the surveys.
is necessary (e.g. processing of the IP address in order to be able to complete the survey in the browser of the
user or, with the help of a cookie, to enable a resumption of the
survey).
- Processed data types: Contact details (e.g. e-mail, telephone numbers);
Content data (e.g. entries in online forms); utilisation data (e.g.
websites visited, interest in content, access times); meta,
Communication and process data (e.g. IP addresses, time data,
identification numbers, consent status). - Persons concerned: Communication partner; participant.
- Purposes of the processing: Feedback (e.g. collecting feedback via
online form). - Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Further information on processing operations, procedures and services:
- Google form: Creation and evaluation of online forms,
Surveys, feedback forms, etc.; Service provider: Google Ireland Limited,
Gordon House, Barrow Street, Dublin 4, Ireland; legal basis:
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website:
https://www.google.de/intl/de/forms; Privacy Policy:
https://policies.google.com/privacy; order processing contract:
https://cloud.google.com/terms/data-processing-addendum;
Standard contractual clauses (guarantee of data protection level for
processing in third countries):
https://cloud.google.com/terms/eu-model-contract-clause.
Web analysis, monitoring and optimisation
Web analysis (also referred to as “reach measurement”) is used to analyse
of the visitor flows of our online offer and can analyse behaviour, interests or
demographic information about the visitors, such as their age or the
gender, as pseudonymous values. With the help of the reach analysis
we can, for example, recognise at what time our online offer or its
functions or contents are used most frequently or are
invite reuse. We can also understand which areas
require optimisation.
In addition to web analyses, we can also use test procedures, e.g. to.
different versions of our online offer or its components to
test and optimise.
Unless otherwise stated below, profiles may be used for these purposes,
i.e. data summarised in a usage process is created and
information is stored in a browser or in an end device and can be retrieved from
read out from it. The information collected includes in particular
websites visited and elements used there as well as technical information such as
the browser used, the computer system used and information on
Usage times. If users consent to us collecting their location data
or to the providers of the services used by us
location data can also be processed.
The IP addresses of users are also stored. However, we use a
IP masking procedure (i.e. pseudonymisation by shortening the IP address)
for the protection of users. In general, the data collected in the context of web analysis, A/B testing
and optimisation, no clear user data (such as e-mail addresses
or names), but pseudonyms. This means that we and the providers of the
The software used does not know the actual identity of the users, but
only the data stored in their profiles for the purposes of the respective
Specifications.
- Processed data types: Usage data (e.g. websites visited,
interest in content, access times); meta, communication and
Process data (e.g. IP addresses, time data, identification numbers,
consent status). - Persons concerned: Users (e.g. website visitors, users of
online services). - Purposes of the processing: Reach measurement (e.g. access statistics,
Recognition of returning visitors); profiles with user-related
Information (creation of user profiles); tracking (e.g. interest-based
/behavioural profiling, use of cookies); Provision of our services; Provision of our
Online offer and user-friendliness; conversion measurement (measurement of
the effectiveness of marketing measures); target group formation; marketing;
Target group formation (determination of relevant target groups for marketing purposes)
target groups or other output of content). - Safety measures: IP masking (pseudonymisation of the IP address).
- Legal bases: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR).
Further information on processing operations, procedures and services:
- 1&1 IONOS WebAnalytics: Reach measurement and web analysis;
Service provider: 1&1 IONOS SE, Elgendorfer Str. 57, 56410 Montabaur,
Germany; Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a)
GDPR); Website: https://www.ionos.de; Privacy Policy:
https://www.ionos.de/terms-gtc/terms-privacy;
Order processing contract:
https://www.ionos.de/hilfe/datenschutz/allgemeine-informationen-zur-datensc
hutz-grundverordnung-dsgvo/auftragsverarbeitung/; Other
Information: The data is collected either by a pixel or by
a log file, without the use of cookies, is collected; the IP address of the visitors
is transmitted during the transmission of a page request, after the
Transmission directly anonymised and without personal reference
processed; the processing of the data takes place on the basis of a
order processing contract. - Adobe Analytics: Adobe Analytics; Service provider: Adobe Systems
Software Ireland Limited, 4-6 Riverwalk, Citywest Business Campus, Dublin
24, Ireland; Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a)
GDPR); Website: https://www.adobe.com/de/analytics/adobe-analytics.html;
Privacy policy: https://www.adobe.com/de/privacy.html. - Google Analytics: Web analysis, reach measurement and measurement of
User flows; Service provider: Google Ireland Limited, Gordon House,
Barrow Street, Dublin 4, Ireland; Legal basis: Consent (Art. 6
para. 1 sentence 1 lit. a) GDPR); Website:
https://marketingplatform.google.com/intl/de/about/analytics/;
Privacy policy: https://policies.google.com/privacy;
Order processing contract:
https://business.safety.google/adsprocessorterms;
Standard contractual clauses (guarantee of data protection level for
processing in third countries):
https://business.safety.google/adsprocessorterms;
Possibility of objection (opt-out): Opt-out plugin:
https://tools.google.com/dlpage/gaoptout?hl=de, settings for the
Display of adverts:
https://adssettings.google.com/authenticated; Further information:
https://privacy.google.com/businesses/adsservices (Types of processing
and the processed data). - Jetpack (WordPress Stats): Jetpack offers analysis functions for
WordPress software; Service provider: Aut O'Mattic A8C Ireland Ltd, Grand
Canal Dock, 25 Herbert Pl, Dublin, D02 AY86, Ireland; Legal basis:
Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR); Website:
https://automattic.com; Privacy Policy:
https://automattic.com/privacy.
Online marketing
We process personal data for online marketing purposes,
including, in particular, the marketing of advertising space or the presentation of
advertising and other content (collectively referred to as “content”)
based on potential user interests and measuring their effectiveness
can fall.
For these purposes, so-called user profiles are created and stored in a file.
(so-called “cookie”) are stored or similar procedures are used by means of which
the user details relevant for the presentation of the aforementioned content
are stored. This information may include, for example, content viewed, visited
websites, online networks used, but also communication partners and
technical information, such as the browser used, the
Computer system and information on usage times and functions used
belong. If users have consented to the collection of their location data,
these can also be processed.
The IP addresses of users are also stored. However, we use the
available IP masking procedure (i.e. pseudonymisation through
shortening of the IP address) to protect users. In general, within the scope of the
online marketing processes do not collect any clear user data (e.g. e-mail addresses).
or names), but pseudonyms. This means that we and the providers of the
Online marketing processes do not know the actual identity of users,
but only the information stored in their profiles.
The information in the profiles is usually stored in the cookies or by means of
of similar procedures. These cookies can later generally also be
other websites that use the same online marketing method
and analysed for the purpose of displaying content as well as with other
data and stored on the server of the online marketing process provider.
can be saved.
As an exception, clear data can be assigned to profiles. This is the case,
if, for example, the users are members of a social network whose
online marketing methods we use and that the network uses the profiles of users
with the aforementioned information. Please note that
users make additional agreements with the providers, e.g. through consent in the context of
of registration.
We only receive access to summarised information about
the success of our adverts. However, in the context of so-called
Conversion measurements check which of our online marketing processes lead to a
conversion, i.e. to the conclusion of a contract with us, for example.
Conversion measurement is used solely to analyse the success of our
marketing measures.
Unless otherwise stated, please assume that
cookies used are stored for a period of two years.
- Processed data types: Usage data (e.g. websites visited,
interest in content, access times); meta, communication and
Process data (e.g. IP addresses, time data, identification numbers,
consent status). - Persons concerned: Users (e.g. website visitors, users of
online services). - Purposes of the processing: Reach measurement (e.g. access statistics,
Recognising returning visitors); tracking (e.g. interest-based
/behavioural profiling, use of cookies); marketing; profiles with
user-related information (creation of user profiles);
Conversion measurement (measurement of the effectiveness of marketing measures);
Target group formation; target group formation (determination of target groups for
Marketing purposes relevant target groups or other output of
content); provision of our online services and user-friendliness. - Safety measures: IP masking (pseudonymisation of the IP address).
- Legal bases: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR);
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). - Possibility of objection (opt-out): We refer to the
Data protection notices of the respective providers and the information on the providers
stated objection options (so-called “opt-out”). Insofar as no
explicit opt-out option was specified, there is on the one hand the
Possibility that you can set cookies in the settings of your browser
switch off. However, this may prevent functions of our online offer
be restricted. We therefore recommend the following additional opt-
Out opportunities, which are summarised in the respective areas.
are offered: a) Europe: https://www.youronlinechoices.eu. b) Canada:
https://www.youradchoices.ca/choices. c) USA:
https://www.aboutads.info/choices. d) Cross-territory:
https://optout.aboutads.info.
Further information on processing operations, procedures and services:
- Facebook adverts: Placement of adverts within the
Facebook platform and evaluation of ad results;
Service provider: Meta Platforms Ireland Limited, 4 Grand Canal Square,
Grand Canal Harbour, Dublin 2, Ireland; Legal basis: Authorised parties
Interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website:
https://www.facebook.com; Privacy Policy:
https://www.facebook.com/about/privacy; possibility of objection (opt-out)
Out): We refer to the data protection and advertising settings in the profile
of users on the Facebook platform and in the context of Facebook's
Consent procedure and Facebook's contact options for the
Exercising rights to information and other data subject rights on Facebook
Privacy policy; Further information: Event data of the users,
i.e. behavioural and interest data, are processed for the purposes of
targeted advertising and target group formation on the basis of the
Agreement on joint responsibility (“Addendum for
Responsible parties”, https://www.facebook.com/legal/controller_addendum)
processed. The joint responsibility is limited to the
Collection by and transfer of data to Meta Platforms Ireland
Limited, a company based in the EU. The further processing of the
Data is the sole responsibility of Meta Platforms Ireland
Limited, which includes in particular the transmission of data to the
parent company Meta Platforms, Inc. in the USA (on the
The basis of the agreement between Meta Platforms Ireland Limited and Meta Platforms,
Inc. concluded standard contractual clauses). - AdMob: Platform for the display of advertising content in mobile
Applications; Service provider: Google Ireland Limited, Gordon House,
Barrow Street, Dublin 4, Ireland; Legal basis: Consent (Art. 6
Para. 1 S. 1 lit. a) GDPR); Website: https://admob.google.com/home/;
Privacy policy: https://policies.google.com/privacy;
Standard contractual clauses (guarantee of data protection level for
processing in third countries):
https://business.safety.google/adscontrollerterms/; Further information:
Processing by Google as controller:
https://business.safety.google/adscontrollerterms/. - PayPal Marketing Solutions: Creation of analyses of PayPal customers,
who visit our website or make payment transactions with us.
carry out. Among other things, cookies are used and information
such as browser and device, IP address, page views and clicks as well as the
address of the websites visited and the payment transactions are processed;
Service provider: PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard
Royal, L-2449 Luxembourg; Legal basis: Consent (Art. 6 para. 1
S. 1 lit. a) GDPR); Website: https://www.paypal.com/de; General Terms and Conditions:
https://www.paypal.com/de/webapps/mpp/ua/privacy-full.
Customer reviews and evaluation process
We take part in review and evaluation processes in order to improve our services.
to evaluate, optimise and advertise. When users contact us via the
platforms or evaluation procedures involved or otherwise evaluate them.
feedback, the General Terms and Conditions of Business or
Terms of use and the providers' data protection notices. As a rule
the evaluation also requires registration with the respective providers.
In order to ensure that the persons evaluating our services actually
have made use of, we transmit with the consent of the customer the
data required for this purpose with regard to the customer and the services
the service taken to the respective evaluation platform (including name,
e-mail address and order number or article number). This data is
used solely to verify the authenticity of the user.
- Processed data types: Contract data (e.g. subject matter of the contract,
Term, customer category); usage data (e.g. websites visited,
interest in content, access times); meta, communication and
Process data (e.g. IP addresses, time data, identification numbers,
consent status). - Persons concerned: Customers; users (e.g. website visitors, users of
online services). - Purposes of the processing: Feedback (e.g. collecting feedback via
online form); Marketing. - Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Further information on processing operations, procedures and services:
- ProvenExpert: Rating platform; Service provider: Expert Systems AG,
Quedlinburger Strasse 1, 10589 Berlin, Germany; Legal basis:
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website:
https://www.provenexpert.com/de-de/; Privacy Policy:
https://www.provenexpert.com/de-de/datenschutzbestimmungen/.
Presence in social networks (social media)
We maintain online presences within social networks and process data in
data of the users in order to communicate with the users active there.
communicate or to provide information about us.
We would like to point out that user data outside the area of the
European Union can be processed. This may result in
risks for users because, for example, the enforcement of the rights of users
could be made more difficult.
Furthermore, user data within social networks is generally used for the following purposes
processed for market research and advertising purposes. For example, the
user behaviour and the resulting interests of the users
usage profiles are created. The usage profiles can in turn be used
for example, to display adverts inside and outside the networks.
that presumably correspond to the interests of the users. These
Cookies are usually stored on the user's computer for these purposes, in
in which the user behaviour and interests of the users are stored.
Furthermore, the usage profiles can also contain data independent of the
devices used by the users (especially if the users
are members of the respective platforms and are logged in to them).
For a detailed description of the respective forms of processing and the
We refer to the possibilities of objection (opt-out) in the
Data protection declarations and information provided by the operators of the respective networks.
Also in the case of requests for information and the assertion of
We would like to point out that the rights of data subjects are most effectively
providers can be asserted. Only the providers have access
to the user's data and can take appropriate measures directly
and provide information. If you still need help, you can contact
contact us.
- Processed data types: Contact details (e.g. e-mail, telephone numbers);
Content data (e.g. entries in online forms); utilisation data (e.g.
websites visited, interest in content, access times); meta,
Communication and process data (e.g. IP addresses, time data,
identification numbers, consent status). - Persons concerned: Users (e.g. website visitors, users of
online services). - Purposes of the processing: Contact enquiries and communication; feedback
(e.g. collecting feedback via online form); marketing. - Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Further information on processing operations, procedures and services:
- Instagram: Social network; Service provider: Meta Platforms Ireland
Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland;
Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR);
Website: https://www.instagram.com; Privacy policy:
https://instagram.com/about/legal/privacy. - Facebook pages: Profiles within the social network Facebook - We
are jointly responsible with Meta Platforms Ireland Limited for the collection (but
not the further processing) of data of visitors to our Facebook page.
page (so-called “fan page”). This data includes
Information about the types of content that users view or interact with
with whom they interact, or the actions they perform
(see under „Things done and provided by you and others“ in the
Facebook Data Policy: https://www.facebook.com/policy), and
Information about the devices used by the users (e.g. IP addresses,
Operating system, browser type, language settings, cookie data; see under
„Device information“ in the Facebook data policy:
https://www.facebook.com/policy). As stated in the Facebook data policy at
„How do we use this information?“ explains how we collect and use this information.
Facebook also uses information to provide analysis services, so-called “page analyses".
Insights”, for site operators so that these insights can be
about how people interact with their pages and with the information
interact with connected content. We have a special agreement with Facebook
agreement (“Information on Page Insights”,
https://www.facebook.com/legal/terms/page_controller_addendum), in which
in particular regulates which security measures Facebook
must be observed and in which Facebook has declared its willingness to
fulfil data subject rights (i.e. users can, for example, request information or
send deletion requests directly to Facebook). The rights of users
(in particular to information, deletion, objection and complaint to
competent supervisory authority), the agreements with the
Facebook is not restricted. Further information can be found in the
“Information on page insights”
(https://www.facebook.com/legal/terms/information_about_page_insights_data
); Service provider: Meta Platforms Ireland Limited, 4 Grand Canal Square,
Grand Canal Harbour, Dublin 2, Ireland; Legal basis: Authorised parties
Interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website:
https://www.facebook.com; Privacy Policy:
https://www.facebook.com/about/privacy; standard contractual clauses
(Ensuring the level of data protection for processing in third countries):
https://www.facebook.com/legal/EU_data_transfer_addendum; Other
Information: Agreement on joint responsibility:
https://www.facebook.com/legal/terms/information_about_page_insights_data.
The joint responsibility is limited to the collection by
and transmission of data to Meta Platforms Ireland Limited, a
Companies based in the EU. The further processing of the data lies in
the sole responsibility of Meta Platforms Ireland Limited, which
in particular the transmission of data to the parent company Meta
Platforms, Inc. in the USA (on the basis of the agreements concluded between Meta
Platforms Ireland Limited and Meta Platforms, Inc. closed
standard contractual clauses). - LinkedIn: Social network; Service provider: LinkedIn Ireland Unlimited
Company, Wilton Plaza Wilton Place, Dublin 2, Ireland; legal basis:
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website:
https://www.linkedin.com; Privacy Policy:
https://www.linkedin.com/legal/privacy-policy;
Order processing contract: https://legal.linkedin.com/dpa;
Standard contractual clauses (guarantee of data protection level for
Processing in third countries): https://legal.linkedin.com/dpa;
Possibility of objection (opt-out):
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out. - TikTok: Social network / video platform; Service provider: TikTok
Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland;
Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR);
Website: https://www.tiktok.com; Privacy policy:
https://www.tiktok.com/de/privacy-policy. - Twitter: Social network; Service provider: Twitter International
Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland,
Parent company: Twitter Inc, 1355 Market Street, Suite 900, San
Francisco, CA 94103, USA; Legal basis: Legitimate interests (Art.
6 para. 1 sentence 1 lit. f) GDPR); Privacy Policy:
https://twitter.com/privacy, (Settings: https://twitter.com/personalization). - YouTube: Social network and video platform; Service provider: Google
Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland;
Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR);
Privacy policy: https://policies.google.com/privacy;
Possibility of objection (opt-out):
https://adssettings.google.com/authenticated. - Xing: Social network; Service provider: New Work SE, Am Strandkai 1,
20457 Hamburg, Germany; Legal basis: Legitimate interests
(Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://www.xing.de;
Privacy policy: https://privacy.xing.com/de/datenschutzerklaerung.
Plugins and embedded functions and content
We incorporate functional and content elements into our online offering that are provided by the
servers of their respective providers (hereinafter referred to as “third-party providers”)
can be obtained. These can be, for example, graphics, videos or
city maps (hereinafter uniformly referred to as “content”).
The integration always presupposes that the third-party providers of this content have the IP address
of the user, as without the IP address they cannot send the content to
their browser could send. The IP address is therefore essential for the display of these
content or functions. We endeavour to provide only such content
whose respective providers use the IP address solely for the delivery of the
use content. Third-party providers may also use so-called pixel tags (invisible
graphics, also referred to as “web beacons”) for statistical or
marketing purposes. The “pixel tags” allow information such as
the visitor traffic on the pages of this website are analysed. The
pseudonymous information may also be stored in cookies on the user's device.
stored and, among other things, technical information about the browser and
the operating system, referring websites, the time of the visit and other
contain information on the use of our online offer as well as with such
information from other sources.
- Processed data types: Usage data (e.g. websites visited,
interest in content, access times); meta, communication and
Process data (e.g. IP addresses, time data, identification numbers,
consent status); location data (information on geographical position
of a device or a person); event data (Facebook) (“event data”
is data that is collected, for example, via Facebook pixels (via apps or in other ways).
can be transmitted by us to Facebook and refer to persons or organisations.
their actions; the data includes, for example, information about
Visits to websites, interactions with content, functions, installations
of apps, purchases of products, etc.; the event data is stored for the purpose of
of target groups for content and advertising information (custom audiences)
processed; event data does not include the actual content (such as.
written comments), no login information and no
Contact information (i.e. no names, e-mail addresses and
telephone numbers). Event data is deleted by Facebook after a maximum of two
years, the target groups formed from them are deleted with the deletion
of our Facebook account). - Persons concerned: Users (e.g. website visitors, users of
online services). - Purposes of the processing: Provision of our online offer and
User-friendliness; profiles with user-related information (creating
of user profiles). - Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR);
Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR).
Further information on processing operations, procedures and services:
- Facebook plugins and content: Facebook social plugins and content -
This can include content such as images, videos or texts and buttons.
with which users can access content from this online offering within
Facebook can share. The list and appearance of the Facebook Social
Plugins can be viewed here:
https://developers.facebook.com/docs/plugins/ - We are together withMeta
Platforms Ireland Limited for the collection or receipt in the context of a
Transmission (but not further processing) of “event data” that is
Facebook by means of the Facebook social plugins (and embedding functions for
content), which are executed on our online offer, collects or in the
within the framework of a transfer for the following purposes
responsible for: a) displaying content and advertising information that does not
presumed interests of the users; b) delivery
commercial and transaction-related messages (e.g. addressing
users via Facebook Messenger); c) Improving the delivery of adverts
and personalisation of functions and content (e.g. improvement of the
Recognising which content or advertising information is presumed to be
interests of the users). We have a special agreement with Facebook
Agreement concluded (“Addendum for responsible parties”,
https://www.facebook.com/legal/controller_addendum), in which in particular
regulates which security measures Facebook must observe
(https://www.facebook.com/legal/terms/data_security_terms) and in the
Facebook has agreed to fulfil the rights of the data subject (i.e.
For example, users can send information or deletion requests directly to Facebook
direct). Note: If Facebook provides us with measurements, analyses and reports
(which are aggregated, i.e. no information on individual users).
and are anonymous to us), then this processing does not take place in the
framework of joint responsibility, but on the basis of a
Data processing agreement (“Data processing conditions “,
https://www.facebook.com/legal/terms/dataprocessing) the
“Data security conditions”
(https://www.facebook.com/legal/terms/data_security_terms) and in the
with regard to the processing in the USA on the basis of
Standard Contractual Clauses (“Facebook-EU Data Transfer Addendum,
https://www.facebook.com/legal/EU_data_transfer_addendum). The rights
of the user (in particular to information, cancellation, objection and
complaint to the competent supervisory authority), will be
Agreements with Facebook not restricted; service provider: Meta
Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour,
Dublin 2, Ireland; Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a)
GDPR); Website: https://www.facebook.com; Privacy Policy:
https://www.facebook.com/about/privacy. - Google Maps: We integrate the maps of the “Google Maps” service of the
provider Google. The processed data may include, in particular, IP addresses
and location data of users; service provider: Google
Cloud EMEA Limited, 70 Sir John Rogerson's Quay, Dublin 2, Ireland;
Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR);
Website: https://mapsplatform.google.com/; Privacy policy:
https://policies.google.com/privacy. - YouTube videos: video content; YouTube videos are played via a special
domain (recognisable by the component “youtube-nocookie”) in the so-called
“Extended data protection mode” is integrated, which means that no cookies are
user activities are collected in order to optimise video playback.
personalise. Nevertheless, information on the interaction of users with
the video (e.g. remembering the last playback point);
Service provider: Google Ireland Limited, Gordon House, Barrow Street,
Dublin 4, Ireland; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR).
1 lit. f) GDPR); Website: https://www.youtube.com;
Privacy policy: https://policies.google.com/privacy. - Xing plugins and buttons: Xing plugins and buttons - about this
can include content such as images, videos or texts and buttons,
with which users share content from this online offering within Xing
can; Service provider: New Work SE, Am Strandkai 1, 20457 Hamburg,
Germany; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1
lit. f) GDPR); Website: https://www.xing.com; Privacy Policy:
https://privacy.xing.com/de/datenschutzerklaerung.
Amendment and updating of the privacy policy
We ask you to regularly inform yourself about the content of our privacy policy.
inform you. We will adapt the privacy policy as soon as the changes to the
data processing operations carried out by us make this necessary. We
inform you as soon as the changes result in an act of co-operation on your part.
(e.g. consent) or other individual notification is required
becomes.
Insofar as we provide addresses and contact information of third parties in this privacy policy
companies and organisations, please note that the information
addresses may change over time and please check the information before
Contact to be checked.
Rights of the data subjects
As a data subject, you have various rights under the GDPR, which are as follows
in particular from Art. 15 to 21 GDPR:
- Right of objectionYou have the right, for reasons arising from
your particular situation, to object to the processing at any time.
the personal data concerning you, which is processed on the basis of Art.
6 para. 1 lit. e or f GDPR; this applies
also for profiling based on these provisions. If the
process personal data concerning you in order to
direct marketing, you have the right to withdraw your consent at any time.
Objection to the processing of data concerning you
personal data for the purpose of such advertising
This also applies to profiling to the extent that it is related to such
is connected with direct advertising. - Right to withdraw consent: You have the right to revoke
to revoke your consent at any time. - Right to information: You have the right to receive confirmation of
demand to know whether the data in question is being processed and for information about
this data as well as further information and a copy of the data
in accordance with the legal requirements. - Right to rectification: In accordance with the statutory
the right to request the completion of the data concerning you or
to demand the correction of incorrect data concerning you. - Right to cancellation and restriction of processing: You have
in accordance with the legal requirements, the right to demand that you
data concerned will be deleted immediately, or alternatively after
restriction of processing in accordance with the legal requirements
of the data. - Right to data portability: You have the right to request
data that you have provided to us in accordance with the statutory provisions
Specifications in a structured, common and machine-readable format
to receive the personal data or to request its transfer to another controller
demand. - Complaint to supervisory authority: Without prejudice to a
the right to any other administrative or judicial remedy, the
Right to lodge a complaint with a supervisory authority, in particular in the
Member State of their habitual residence, their place of work or
of the place of the alleged infringement if you consider that the alleged
processing of personal data concerning you against the
violates the requirements of the GDPR.
Definitions of terms
This section provides you with an overview of the functions available in this
terms used in this privacy policy. Many of the terms are taken from the
law and above all defined in Art. 4 GDPR. The legal
Definitions are binding. However, the following explanations are intended to
primarily to aid understanding. The terms are sorted alphabetically.
- Conversion measurement: The conversion measurement (also known as
“visit action evaluation”) is a procedure by means of which the
effectiveness of marketing measures can be determined. For this purpose
usually a cookie on the user's device within the website,
on which the marketing measures are carried out are stored and then reused.
on the target website. For example, we can track this,
whether the adverts placed by us on other websites are successful
were. - Personal data: “Personal data“ are all
Information that relates to an identified or identifiable natural person
person (hereinafter referred to as “data subject“); an identifiable person is one who is
a natural person who, directly or indirectly, in particular
by means of assignment to an identifier such as a name, to a
identification number, to location data, to an online identifier (e.g. cookie) or
can be identified by one or more special characteristics,
the expression of the physical, physiological, genetic, psychological, mental and emotional,
economic, cultural or social identity of that natural person
are. - Profiles with user-related information: The processing of
“Profiles with user-related information”, or “profiles” for short, includes
any type of automated processing of personal data that
is that this personal data is used in order to
certain personal aspects relating to a natural person
(depending on the type of profiling, different information can be
demographics, behaviour and interests, such as the
interaction with websites and their content, etc.), to analyse and
or, in order to predict them (e.g. the interests in certain
content or products, the click behaviour on a website or the
location). Cookies and web beacons are often used for profiling purposes.
Beacons are used. - Reach measurement: Reach measurement (also known as web analytics
is used to analyse the flow of visitors to an online offering
and can monitor the behaviour or interests of visitors to certain
information, such as the content of websites. With the help of the
reach analysis, website owners can recognise, for example, at what time
visitors visit your website and what content they are interested in
interest. This allows them, for example, to better adapt the content of the website to the
needs of your visitors. For the purposes of reach analysis
pseudonymous cookies and web beacons are often used in order to
to recognise returning visitors and thus enable more precise analyses of the
use of an online offer. - Location data: Location data is generated when a mobile device (or
another device with the technical requirements of a
location determination) with a radio cell, a WLAN or similar
technical mediators and functions of location determination.
Location data is used to indicate at which geographically determinable
position on earth where the respective device is located. Location data can be.
For example, it can be used to control map functions or other functions of a location.
dependent information. - Tracking: The term “tracking“ is used when the behaviour of users is
can be tracked across several online offers. In the
As a rule, behavioural and behavioural data are collected with regard to the online offers used.
Interest information in cookies or on servers of the providers of the
tracking technologies (so-called profiling). These
Information can then be used, for example, to provide users with
display adverts that are likely to be in their interests
correspond. - Responsible person: The “controller“ is the natural or legal person
legal person, public authority, agency or other body which alone or jointly
jointly with others on the purposes and means of the processing of
personal data is the data controller. - Processing: “Processing” means any operation carried out with or without the aid of automated
operation or each such series of operations performed in the
connection with personal data. The term is broad and
encompasses practically every handling of data, be it the collection
analysing, saving, transmitting or deleting. - Target group formation: From target group formation (or “custom audiences“)
is used when target groups are used for advertising purposes, e.g. the display of
adverts, can be determined. For example, based on the interest of a
user's interest in certain products or topics on the Internet
that this user has opted for adverts for similar products.
or the online shop in which they viewed the products. From
“Lookalike audiences“ (or similar target groups) are spoken of in turn,
if the content deemed suitable is displayed to users,
whose profiles or interests presumably correspond to the users to whom the profiles
were formed. For the purpose of forming custom
Audiences and lookalike audiences generally use cookies and web beacons.
Beacons are used.
