Data privacy

With the following Privacy Policy, we wish to inform you about the types of personal data (hereinafter also referred to briefly as "Data") that we process, for what purposes, and to what extent. This Privacy Policy applies to all processing of personal data carried out by us, both in the context of providing our services and, in particular, on our websites, in mobile applications, and within external online presences—such as our social media profiles (hereinafter collectively referred to as the "Online Offering"). The terms used herein are gender-neutral. Last updated: July 29, 2022
Contents
Responsible
Anne Michel Langenstraße 20 18439 Stralsund E-Mail-Adresse: anne@nordnordost-agentur.de Impressum: https://nordnordost-agentur.de/impressum
Overview of processing
The following overview summarizes the types of data processed and the purposes of their processing and refers to the data subjects.
Types of data processed
  • inventory data
  • payment data
  • contact data
  • content data
  • contract data
  • usage data
  • meta- / communication data
Categories of data subjects
  • Customers
  • Prospects
  • Communication partners
  • Users
  • Business partners
Purposes of processing
  • Provision of contractual services and customer service.
  • Contact requests and communication.
  • Security measures
  • Reach measurement
  • Tracking
  • Office and organizational procedures
  • Conversion measurements
  • Management and response to inquiries
  • Feedback
  • Marketing
  • Profiles with user-related information
  • Provision of our online offer and user-friendliness
  • Information technology infrastructure
Relevant legal bases
Below you will find an overview of the legal bases of the GDPR, on the basis of which we process personal data. Please note that, in addition to the provisions of the GDPR, national data protection regulations may apply in your or our country of residence or domicile. If more specific legal bases are relevant in individual cases, we will inform you of them in the data protection declaration.
  • Consent (Art. 6 Para. 1 S. 1 lit. a) GDPR) – The data subject has given their consent to the processing of their personal data for one or more specific purposes.
  • Fulfillment of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR) – The processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures that are taken at the request of the data subject.
  • Legal obligation (Art. 6 Para. 1 S. 1 lit. c) GDPR) – Processing is necessary for compliance with a legal obligation to which the controller is subject.
  • Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR) – The processing is necessary to protect the legitimate interests of the person responsible or a third party, unless the interests or fundamental rights and freedoms of the data subject, which require the protection of personal data, prevail.
In addition to the data protection regulations of the General Data Protection Regulation, national data protection regulations apply in Germany. This includes in particular the law on the protection against misuse of personal data in data processing (Federal Data Protection Act - BDSG). In particular, the BDSG contains special regulations on the right to information, the right to erasure, the right to object, the processing of special categories of personal data, processing for other purposes and transmission as well as automated decision-making in individual cases including profiling. Furthermore, it regulates data processing for the purposes of the employment relationship (§ 26 BDSG), in particular with regard to the establishment, implementation or termination of employment relationships and the consent of employees. Furthermore, state data protection laws of the individual federal states may apply.
Security measures
In accordance with statutory requirements—and taking into account the state of the art, implementation costs, the nature, scope, context, and purposes of processing, as well as the varying likelihoods and severity of the risks to the rights and freedoms of natural persons—we implement appropriate technical and organizational measures to ensure a level of security commensurate with the risk.
Transmission of personal data
As part of our processing of personal data, it may happen that the data is transmitted to other bodies, companies, legally independent organizational units or persons or that it is disclosed to them. The recipients of this data can include, for example, service providers commissioned with IT tasks or providers of services and content that are integrated into a website. In such a case, we observe the legal requirements and, in particular, conclude appropriate contracts or agreements with the recipients of your data that serve to protect your data.
Data processing in third countries
If we process data in a third country (i.e., outside the European Union (EU) and the European Economic Area (EEA)) or if processing takes place in the context of using third-party services or disclosing or transferring data to other persons, entities, or companies, this will only be done in accordance with legal requirements. Subject to explicit consent or where transfer is required by contract or law, we will only process or have data processed in third countries with a recognized level of data protection, contractual obligations through so-called standard contractual clauses of the EU Commission, certifications, or binding internal data protection regulations (Articles 44 to 49 GDPR, EU Commission information page: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de).
Deletion of data
The data processed by us will be deleted in accordance with the legal requirements as soon as your consent to processing is revoked or other permissions are no longer applicable (e.g. if the purpose of processing this data no longer applies or it is not required for the purpose). If the data is not deleted because it is required for other, legally permissible purposes, its processing will be limited to these purposes. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that must be stored for commercial or tax reasons or whose storage is necessary to assert, exercise or defend legal claims or to protect the rights of another natural or legal person.
Use of cookies
Cookies are small text files or other memory notes that store information on end devices and read information from the end devices. For example, to save the login status in a user account, the content of a shopping cart in an e-shop, the content accessed or the functions used in an online offer. Cookies can also be used for various purposes, e.g. for the purpose of functionality, security and comfort of online offers as well as the creation of analyzes of visitor flows. Notes on consent: We use cookies in accordance with legal regulations. Therefore, we obtain prior consent from users, except where not required by law. In particular, consent is not necessary if the storage and reading of the information, including cookies, is absolutely necessary in order to provide the users with a telemedia service (i.e. our online offer) that they have expressly requested. The revocable consent is clearly communicated to the users and contains the information on the respective cookie use. Notes on data protection legal bases: The data protection legal basis on which we process the personal data of users with the help of cookies depends on whether we ask users for their consent. If the users consent, the legal basis for the processing of your data is the declared consent. Otherwise, the data processed with the help of cookies will be processed on the basis of our legitimate interests (e.g. in the commercial operation of our online offer and improving its usability) or, if this is done in the context of fulfilling our contractual obligations, if the use of cookies is necessary to enable our to fulfill contractual obligations. We will explain the purposes for which we process cookies in the course of this data protection declaration or as part of our consent and processing processes. Storage duration: With regard to the storage period, the following types of cookies are distinguished:
  • Temporary cookies (also: session or session cookies): Temporary cookies are deleted at the latest after a user has left an online offer and closed his end device (e.g. browser or mobile application).
  • Persistent cookies: Persistent cookies remain stored even after the end device is closed. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. Likewise, the user data collected with the help of cookies can be used to measure reach. Unless we provide users with explicit information on the type and storage period of cookies (e.g. when obtaining consent), users should assume that cookies are permanent and the storage period can be up to two years.
General information on revocation and objection (opt-out): Users can revoke the consent they have given at any time and also object to the processing in accordance with the legal requirements in Art. 21 GDPR. Users can also declare their objection via their browser settings, e.g. by deactivating the use of cookies (which can also limit the functionality of our online services). You can also object to the use of cookies for online marketing purposes via the websites https://optout.aboutads.info and https://www.youronlinechoices.com/ . Further information on processing processes, procedures and services:
  • Processing of cookie data based on consent: We use a procedure for cookie consent management, as part of which the consent of the user to the use of cookies or the processing and providers mentioned in the context of the cookie consent management procedure is obtained and managed and revoked by the user can become. The declaration of consent is stored here so that the query does not have to be repeated and to be able to prove the consent in accordance with the legal obligation. The storage can take place on the server side and/or in a cookie (so-called opt-in cookie, or with the help of comparable technologies) in order to be able to assign the consent to a user or his device. Subject to individual information about the providers of cookie management services, the following information applies: The duration of the storage of the consent can be up to two years. A pseudonymous user identifier is created and stored with the time of the consent, information on the scope of the consent (e.g. which categories of cookies and/or service providers) and the browser, system and end device used.
Business Achievements
We process data of our contractual and business partners—e.g., customers and prospective customers (collectively referred to as "Contractual Partners")—within the scope of contractual and comparable legal relationships, as well as associated measures, and in the context of communication with the Contractual Partners (or in the pre-contractual phase)—e.g., to respond to inquiries. We process this data in order to fulfill our contractual obligations. This includes, in particular, obligations regarding the provision of agreed-upon services, any duties to provide updates, and the rectification of issues arising from warranties or other service-related disruptions. Furthermore, we process the data to safeguard our rights and for the purpose of administrative tasks associated with these obligations, as well as for the organization of our business operations. Additionally, we process the data based on our legitimate interests in proper and efficient business management, as well as in implementing security measures designed to protect our contractual partners and our business operations against misuse and against threats to their data, trade secrets, information, and rights (e.g., by engaging telecommunications, transport, and other auxiliary services, as well as subcontractors, banks, tax and legal advisors, payment service providers, or tax authorities). In accordance with applicable law, we disclose the data of contractual partners to third parties only to the extent necessary for the aforementioned purposes or to fulfill statutory obligations. Contractual partners are informed of any further forms of data processing—e.g., for marketing purposes—within the scope of this Privacy Policy. We inform our contractual partners—either prior to or at the time of data collection (e.g., via online forms)—as to which data are required for the aforementioned purposes; this is done through specific markings (e.g., colors), symbols (e.g., asterisks or similar), or in person. We delete the data following the expiration of statutory warranty obligations and comparable duties—that is, generally after a period of four years—unless the data are stored within a customer account (e.g., in which case they are retained for as long as required for statutory archiving purposes). The statutory retention period is ten years for tax-relevant documents, as well as for commercial books, inventories, opening balance sheets, annual financial statements, the work instructions and other organizational documents necessary to understand these records, and accounting vouchers; for received commercial and business letters, as well as copies of sent commercial and business letters, the retention period is six years. This period commences at the end of the calendar year in which the last entry was made in the book; the inventory, opening balance sheet, annual financial statement, or management report was prepared; the commercial or business letter was received or sent; the accounting voucher was created; the record was made; or the other documents were generated. Insofar as we utilize third-party providers or platforms for the provision of our services, the terms and conditions and privacy policies of the respective third-party providers or platforms shall govern the relationship between the users and said providers.
  • Types of data processed: Inventory data (e.g. names, addresses); payment data (e.g. bank details, invoices, payment history); Contact information (e.g. email, phone numbers); Contract data (e.g. subject of the contract, term, customer category); Usage data (e.g. websites visited, interest in content, access times); Meta/communication data (e.g. device information, IP addresses).
  • Affected people: Interested persons; business and contractual partners; customers.
  • Purposes of processing: Provision of contractual services and customer service; contact requests and communication; office and organizational procedures; managing and responding to inquiries; Conversion measurement (measurement of the effectiveness of marketing measures); Profiles with user-related information (creating user profiles).
  • Legal bases Fulfillment of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR); Legal obligation (Art. 6 Para. 1 S. 1 lit. c) GDPR); Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR).
Further information on processing processes, procedures and services:
  • Economic analysis and market research: For business reasons and in order to be able to identify market trends, the wishes of contractual partners and users, we analyze the data we have on business transactions, contracts, inquiries, etc., whereby the group of persons concerned includes contractual partners, interested parties, customers, visitors and users of our online offer The analyzes are carried out for the purpose of business evaluations, marketing and market research (e.g. to determine customer groups with different characteristics). If available, we can take into account the profiles of registered users together with their information, e.g. on services used. The analyzes serve us alone and are not disclosed externally, unless they are anonymous analyzes with summarized, i.e. anonymous values. Furthermore, we take the privacy of the users into account and process the data for analysis purposes as pseudonymously as possible and, if feasible, anonymously (e.g. as summarized data); Legal bases Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR)
  • Agency services: We process our customers' data as part of our contractual services, which may include, for example, conceptual and strategic advice, campaign planning, software and design development/consulting or maintenance, implementation of campaigns and processes, handling, server administration, data analysis/consulting services and training services ; Legal bases Fulfillment of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR)
  • Project and development services: We process the data of our customers and clients (hereinafter referred to as "customers") in order to enable them to select, purchase or commission the selected services or works as well as associated activities as well as their payment and provision or execution or provision .The required information is marked as such within the framework of the conclusion of the contract, order or comparable contract and includes the information required for the provision of services and billing as well as contact information in order to be able to hold any consultations. Insofar as we receive access to information from end customers, employees or other persons, we process this in accordance with the legal and contractual requirements; Legal bases Fulfillment of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR)
Provision of the online offer and web hosting
We process user data in order to be able to provide our online services to them. For this purpose we process the IP address of the user, which is necessary to transmit the content and functions of our online services to the browser or the end device of the user.
  • Types of data processed: Usage data (e.g. websites visited, interest in content, access times); Meta/communication data (e.g. device information, IP addresses); Content data (e.g. entries in online forms).
  • Affected people: Users (e.g. website visitors, users of online services).
  • Purposes of processing: Provision of our online offer and user-friendliness; Information technology infrastructure (operation and provision of information systems and technical devices (computers, servers, etc.)); safety measures.
  • Legal bases Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR)
Further information on processing processes, procedures and services:
  • Provision of online offer on rented storage space: For the provision of our online offer, we use storage space, computing capacity and software that we rent from a corresponding server provider (also called "web hoster") or otherwise obtain; Legal bases Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR)
  • Collection of access data and log files: Access to our online offer is logged in the form of so-called "server log files". The address and name of the retrieved websites and files, date and time of retrieval, amounts of data transferred, notification of successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page) and, as a rule, IP Addresses and the requesting provider belong. On the one hand, the server log files can be used for security purposes, e.g. to avoid overloading the server (especially in the case of abusive attacks, so-called DDoS attacks) and on the other hand to reduce the load on the server and ensure their stability; Legal bases Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR) Deletion of data: Log file information is stored for a maximum of 30 days and then deleted or made anonymous. Data whose further storage is required for evidence purposes are excluded from deletion until the respective incident has been finally clarified.
  • Email delivery and hosting: The web hosting services we use also include sending, receiving and storing emails. For these purposes, the addresses of the recipients and senders as well as other information regarding the e-mail dispatch (e.g. the providers involved) and the content of the respective e-mails are processed. The aforementioned data can also be processed for SPAM detection purposes. We ask you to note that e-mails are generally not sent in encrypted form on the Internet. As a rule, e-mails are encrypted during transport, but (unless a so-called end-to-end encryption method is used) not on the servers from which they are sent and received. We can therefore assume no responsibility for the transmission path of the e-mails between the sender and receipt on our server; Legal bases Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR)
Contact and request management
When you contact us (e.g., via contact form, email, telephone, or social media), as well as within the context of existing user and business relationships, the information provided by the inquiring parties is processed to the extent necessary to respond to contact inquiries and to take any requested actions. The handling of contact inquiries—as well as the management of contact and inquiry data within the scope of contractual or pre-contractual relationships—is carried out for the fulfillment of our contractual obligations or to respond to (pre-)contractual inquiries; in all other cases, it is based on our legitimate interests in responding to inquiries and maintaining user or business relationships.
  • Types of data processed: Contact information (e.g. email, phone numbers); Content data (e.g. entries in online forms); Usage data (e.g. websites visited, interest in content, access times); Meta/communication data (e.g. device information, IP addresses).
  • Affected people: Communication partners
  • Purposes of processing: Provision of contractual services and customer service; contact requests and communication; managing and responding to inquiries; Feedback (e.g. collecting feedback via online form); Provision of our online offer and user-friendliness.
  • Legal bases Fulfillment of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR); Legal obligation (Art. 6 Para. 1 S. 1 lit. c) GDPR); Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR).
Further information on processing processes, procedures and services:
  • Contact form: If users contact us via our contact form, e-mail or other communication channels, we process the data communicated to us in this context to process the communicated request. For this purpose, we process personal data within the framework of pre-contractual and contractual business relationships, insofar as this is necessary for their fulfillment and otherwise on the basis of our legitimate interests and the interests of the communication partners in answering the concerns and our legal storage obligations; Legal bases Fulfillment of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR); Legal obligation (Art. 6 Para. 1 S. 1 lit. c) GDPR); Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR).
Web analysis, monitoring and optimization
Web analytics (also referred to as "reach measurement") serves to analyze visitor flows to our online offering; it may encompass visitor behavior, interests, or demographic information—such as age or gender—in the form of pseudonymous values. Through reach analysis, we can determine, for instance, at what times our online offering—or specific features and content within it—is most frequently accessed or proves most engaging to users. Likewise, we can identify which areas require optimization. In addition to web analytics, we may also employ testing methods—such as A/B testing—to evaluate and optimize different versions of our online offering or its individual components. Unless otherwise specified below, profiles—i.e., data aggregated to represent a specific usage session—may be created for these purposes; furthermore, information may be stored in and retrieved from a user's browser or device. The data collected includes, in particular, the specific web pages visited and the elements interacted with on those pages, as well as technical details such as the browser and computer system used, and information regarding usage duration. If users have consented to the collection of their location data—either by us or by the third-party service providers we utilize—such location data may also be processed. Users' IP addresses are also recorded. However, we employ an IP masking technique (i.e., pseudonymization through the truncation of the IP address) to protect our users. Generally, within the context of web analytics, A/B testing, and optimization, no directly identifiable user data (such as email addresses or names) is stored; instead, pseudonyms are used. This means that neither we nor the providers of the software we utilize know the actual identity of the users; we only have access to the data stored within their respective profiles for the specific purposes of these analytical processes.
  • Types of data processed: Usage data (e.g. websites visited, interest in content, access times); Meta/communication data (e.g. device information, IP addresses).
  • Affected people: Users (e.g. website visitors, users of online services).
  • Purposes of processing: Reach measurement (e.g. access statistics, recognition of returning visitors); Profiles with user-related information (creating user profiles); Tracking (e.g. interest/behavioral profiling, use of cookies); Provision of our online offer and user-friendliness.
  • Security measures IP masking (pseudonymization of the IP address).
  • Legal bases Consent (Art. 6 Para. 1 S. 1 lit. a) GDPR).
Further information on processing processes, procedures and services:
Online marketing
We process personal data for online marketing purposes, which may specifically include the marketing of advertising space or the display of promotional and other content (collectively referred to as "Content") based on the potential interests of users, as well as the measurement of the effectiveness of such content. For these purposes, so-called user profiles are created and stored in a file (known as a "cookie"), or similar methods are employed to store information relevant to the user for the display of the aforementioned Content. Such information may include, for example, content viewed, websites visited, and online networks used, as well as communication partners and technical details—such as the browser and computer system used—and information regarding usage times and utilized functions. If users have consented to the collection of their location data, such data may also be processed. Users' IP addresses are also stored. However, we utilize available IP masking techniques (i.e., pseudonymization through the truncation of IP addresses) to protect our users. Generally, within the scope of online marketing procedures, no clear data regarding users (such as email addresses or names) is stored; instead, pseudonyms are used. This means that neither we nor the providers of the online marketing services know the actual identities of the users, but only the information stored within their profiles. As a rule, the information contained in these profiles is stored in cookies or via similar technologies. Subsequently, these cookies can generally be read out—even on other websites that utilize the same online marketing service—analyzed for the purpose of displaying content, supplemented with additional data, and stored on the servers of the respective online marketing service provider. In exceptional cases, clear data may be linked to user profiles. This occurs, for instance, when users are members of a social network whose online marketing tools we utilize, and the network links the users' profiles with the aforementioned information. Please note that users may enter into additional agreements with these providers—for example, by providing consent during the registration process. As a general rule, we only gain access to aggregated information regarding the performance of our advertisements. However, through a process known as "conversion tracking," we are able to determine which of our online marketing strategies have resulted in a "conversion"—i.e., for example, the conclusion of a contract with us. Conversion tracking is used solely to analyze the effectiveness of our marketing initiatives. Unless otherwise specified, please assume that any cookies utilized are stored for a period of two years.
  • Types of data processed: Usage data (e.g. websites visited, interest in content, access times); Meta/communication data (e.g. device information, IP addresses).
  • Affected people: Users (e.g. website visitors, users of online services).
  • Purposes of processing: Reach measurement (e.g. access statistics, recognition of returning visitors); Tracking (e.g. interest/behavioral profiling, use of cookies); Marketing; Profiles with user-related information (creating user profiles); Conversion measurement (measurement of the effectiveness of marketing measures).
  • Security measures IP masking (pseudonymization of the IP address).
  • Legal bases Consent (Art. 6 Para. 1 S. 1 lit. a) GDPR).
  • Possibility of objection (opt-out): We refer to the data protection notices of the respective providers and the options for objection specified for the providers (so-called "opt-out"). If no explicit opt-out option has been specified, you can turn off cookies in your browser settings. However, this can limit the functions of our online offer. We therefore also recommend the following opt-out options, which are offered in summary for the respective areas: a) Europe: https://www.youronlinechoices.eu. b) Kanada: https://www.youradchoices.ca/choices. c) USA: https://www.aboutads.info/choices. d) Gebietsübergreifend: https://optout.aboutads.info.
Further information on processing processes, procedures and services:
  • Google Ads and conversion measurement: We use the online marketing process "Google Ads" to place ads on the Google advertising network (e.g., in search results, in videos, on websites, etc.) so that they are displayed to users who have a presumed interest in the ads ( so-called "conversion"). We also measure the conversion of the ads. However, we only find out the anonymous total number of users who clicked on our ad and were forwarded to a page with a so-called "conversion tracking tag". However, we do not receive any information that could be used to identify users; Service provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA; Legal bases Consent (Art. 6 Para. 1 S. 1 lit. a) GDPR); Website: https://marketingplatform.google.com; Data privacy: https://policies.google.com/privacy; Further information: Types of processing and processed data: https://privacy.google.com/businesses/adsservices; Data processing conditions between controllers and standard contractual clauses for third-country transfers of data: https://business.safety.google/adscontrollerterms.
Presence in social networks (social media)
We maintain online presences within social networks and, in this context, process user data in order to communicate with users active on these platforms or to provide information about ourselves. We wish to point out that, in this process, user data may be processed outside the European Union. This may give rise to risks for users—for instance, because the enforcement of users' rights could be rendered more difficult. Furthermore, user data within social networks is typically processed for market research and advertising purposes. For example, usage profiles may be created based on users' usage behavior and the resulting interests. These usage profiles may, in turn, be used to display advertisements—both within and outside the networks—that are presumed to align with the users' interests. For these purposes, cookies are typically stored on users' computers to record their usage behavior and interests. Moreover, data may be stored within these usage profiles independently of the devices used by the users (particularly if the users are members of the respective platforms and are logged into them). For a detailed description of the specific forms of data processing and the available objection options (opt-out), we refer you to the privacy policies and statements provided by the operators of the respective networks. In the event of requests for information or the exercise of data subject rights, we also wish to point out that such requests are most effectively addressed directly to the respective providers. Only the providers have access to the user data in question and are able to take appropriate measures or provide information directly. Should you nevertheless require assistance, you are welcome to contact us.
  • Types of data processed: Contact information (e.g. email, phone numbers); Content data (e.g. entries in online forms); Usage data (e.g. websites visited, interest in content, access times); Meta/communication data (e.g. device information, IP addresses).
  • Affected people: Users (e.g. website visitors, users of online services).
  • Purposes of processing: contact requests and communication; Feedback (e.g. collecting feedback via online form); Marketing.
  • Legal bases Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR)
Further information on processing processes, procedures and services:
Plugins and embedded functions and content
We integrate functional and content elements into our online offering that are retrieved from the servers of their respective providers (hereinafter referred to as "Third-Party Providers"). These may include, for example, graphics, videos, or city maps (hereinafter collectively referred to as "Content"). Such integration always requires that the Third-Party Providers of this Content process the users' IP addresses, as they would be unable to transmit the Content to the users' browsers without the IP addresses. The IP address is therefore necessary for the display of this Content or these functions. We endeavor to use only such Content where the respective providers utilize the IP address solely for the delivery of the Content. Furthermore, Third-Party Providers may use so-called pixel tags (invisible graphics, also referred to as "web beacons") for statistical or marketing purposes. Through these "pixel tags," information—such as visitor traffic on the pages of this website—can be analyzed. This pseudonymous information may also be stored in cookies on the users' devices and may contain, among other things, technical information regarding the browser and operating system, referring websites, the time of visit, and other details regarding the use of our online offering; it may also be combined with such information from other sources.
  • Types of data processed: Usage data (e.g. websites visited, interest in content, access times); Meta/communication data (e.g. device information, IP addresses); Inventory data (e.g. names, addresses); Contact information (e.g. email, phone numbers); Content data (e.g. entries in online forms).
  • Affected people: Users (e.g. website visitors, users of online services).
  • Purposes of processing: Provision of our online offer and user-friendliness; Provision of contractual services and customer service.
  • Legal bases Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR)
Further information on processing processes, procedures and services:
Change and update of the privacy policy
We ask that you regularly review the content of our Privacy Policy. We will update the Privacy Policy whenever changes to our data processing activities make such updates necessary. We will inform you whenever such changes require an action on your part (e.g., providing consent) or necessitate any other form of individual notification. Insofar as this Privacy Policy provides addresses and contact details for companies and organizations, please note that these addresses may change over time; we therefore ask that you verify this information before making contact.
Rights of data subjects
As a data subject, you have various rights under the GDPR, which result in particular from Art. 15 to 21 GDPR:
  • Right of objection: You have the right, for reasons arising from your particular situation, to object at any time to the processing of your personal data, which is based on Article 6 Paragraph 1 lit. e or f GDPR; this also applies to profiling based on these provisions. If the personal data concerning you is processed in order to operate direct advertising, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct advertising.
  • Right of withdrawal for consent: You have the right to revoke your consent at any time.
  • Right of providing information You have the right to request confirmation as to whether the data in question is being processed and to request information about this data as well as further information and a copy of the data in accordance with legal requirements.
  • Right to rectification: In accordance with the legal requirements, you have the right to request the completion of the data concerning you or the correction of incorrect data concerning you.
  • Right to erasure and restriction of processing: In accordance with the legal requirements, you have the right to request that data concerning you be deleted immediately, or alternatively to request a restriction of the processing of the data in accordance with the legal requirements.
  • Right to data portability: You have the right to receive the data that you have provided to us in accordance with the legal requirements in a structured, common and machine-readable format or to request its transmission to another person responsible.
  • Complaint to supervisory authority: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the member state of your habitual residence, your place of work or the place of the alleged infringement, if you believe that the processing of your personal data violates the breaches the requirements of the GDPR.
Definition of terms
This section provides you with an overview of the terms used in this data protection declaration. Many of the terms are taken from the law and defined above all in Art. 4 GDPR. The legal definitions are binding. The following explanations, on the other hand, are intended primarily for understanding. The terms are sorted alphabetically.
  • Conversion measurements Conversion measurement (also referred to as "visit action evaluation") is a method that can be used to determine the effectiveness of marketing measures. For this purpose, a cookie is usually stored on the user's device within the website on which the marketing measures take place and then called up again on the target website. For example, this allows us to understand whether the ads we placed on other websites were successful.
  • Personal data: "Personal data" means any information relating to an identified or identifiable natural person (hereinafter "data subject"); an identifiable natural person is one who can be identified directly or indirectly, in particular by means of assignment to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or one or more special features, are an expression of the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
  • Profiles with user-related information The processing of "profiles with user-related information", or "profiles" for short, includes any type of automated processing of personal data that consists of using this personal data to determine certain personal aspects relating to a natural person (e.g Depending on the type of profiling, different information regarding demographics, behavior and interests (e.g. interaction with websites and their content, etc.) can be analyzed, evaluated or predicted (e.g. interests in certain content or products, the click behavior on a website or whereabouts). Cookies and web beacons are often used for profiling purposes.
  • Reach measurement The range measurement (also referred to as web analytics) is used to evaluate the flow of visitors to an online offer and can include the behavior or interests of visitors in certain information, such as website content. With the help of the range analysis, website owners can, for example, see at what time visitors visit their website and what content they are interested in. This allows them, for example, to better adapt the content of the website to the needs of their visitors. Pseudonymous cookies and web beacons are often used for range analysis purposes in order to recognize returning visitors and thus obtain more precise analyzes of the use of an online offer.
  • Tracking: One speaks of "tracking" when the behavior of users can be traced across several online offers. As a rule, behavioral and interest information with regard to the online offers used is stored in cookies or on the servers of the tracking technology providers (so-called profiling). This information can then be used, for example, to show users advertisements that are likely to match their interests.
  • Responsible The "responsible person" is the natural or legal person, authority, institution or other body that alone or jointly with others decides on the purposes and means of processing personal data.
  • Processing: "Processing" is any process or series of processes carried out with or without the aid of automated processes in connection with personal data. The term goes far and covers practically every handling of data, be it collection, evaluation, storage, transmission or deletion.

Legal text by Dr. Schwenke - click for more information.

de_DE
de_DE