imprint
Obligation to provide information in accordance with Section 5 of the E-Commerce Act, Section 14 of the Corporate Code, Section 63 of the Trade Code and the obligation to disclose in accordance with Section 25 of the Media Act.
Frame History eK
Bridge 25,
55545 Bad Kreuznach,
Germany
VAT number: 74 560 816 322
Tax ID: 06/040/70219
Tel.: +491741734903
Email: info@framehistory.com
supervisory authority
Bad Kreuznach tax office
Website of the supervisory authority
https://finanzamt-bad-kreuznach.fin-rlp.de/startseite
Address of the supervisory authority
Bad Kreuznach tax office
Head of office Michael Nauth (authorized to represent)
Ringstr. 10
55543 Bad Kreuznach
Registered activity: Sale of self-designed and manufactured goods.
Contact details of the person responsible for data protection
If you have any questions about data protection, you will find the contact details of the responsible person or body below:
Ricardo Ferrara
Bridge 25
55545 Bad Kreuznach
Authorized representative: Ricardo Ferrara
Email address: info@framehistory.com
Telephone: +491741734903
Imprint: https://framehistory.com/impressum/
EU dispute resolution
In accordance with the Ordinance on Online Dispute Resolution in Consumer Matters (ODR Ordinance), we would like to inform you about the online dispute resolution platform (OS platform).
Consumers have the opportunity to submit complaints to the European Commission's online dispute resolution platform at http://ec.europa.eu/odr?tid=321912445 . You can find the necessary contact details above in our legal notice.
However, we would like to point out that we are not willing or obliged to take part in dispute resolution proceedings before a consumer arbitration board.
Liability for the content of this website
We are constantly developing the contents of this website and strive to provide correct and up-to-date information. Unfortunately, we cannot accept any liability for the accuracy of all content on this website, particularly that provided by third parties. As a service provider, we are not obliged to monitor the information you transmit or store or to investigate circumstances that indicate illegal activity.
Our obligations to remove information or to block the use of information in accordance with general laws due to court or official orders remain unaffected, even if we are not responsible.
If you notice problematic or illegal content, please contact us immediately so that we can remove the illegal content. You can find the contact details in the legal notice.
Liability for links on this website
Our website contains links to other websites for whose content we are not responsible. We have no liability for linked websites because we had and have no knowledge of illegal activities, we have not noticed any such illegal activities so far and we would remove links immediately if we became aware of any illegal activities.
If you notice any illegal links on our website, please contact us. You can find the contact details in the legal notice.
Copyright notice
All content on this website (images, photos, texts, videos) is subject to copyright. Please ask us before you distribute, reproduce or exploit the contents of this website, such as republishing them on other websites. If necessary, we will take legal action against unauthorized use of parts of the content on our site.
If you find content on this website that violates copyright, please contact us.
Image credits
The images, photos and graphics on this website are protected by copyright.
The image rights belong to the following photographers and companies:
Photographer Mustermann
All texts are copyrighted.
Source: Created with the Imprint Generator from AdSimple
Data protection declarationTable of contents
Introduction and overview
scope of application
Legal basis
Contact details of the person responsible
Storage period
Rights under the General Data Protection Regulation
Security of data processing
communication
Cookies
Google Analytics privacy policy
Chatbots introduction
Social media introduction
Blogs and publication media introduction
Payment provider introduction
Audio & Video Introduction
YouTube privacy policy
Recruiting tools introduction
Miscellaneous Introduction
Introduction and overview
We have written this data protection declaration (version 05.01.2022-321912445) in order to explain to you, in accordance with the requirements of the General Data Protection Regulation (EU) 2016/679 and applicable national laws, which personal data (in short, data) we as the controller - and that of Processors commissioned by us (e.g. providers) – process, will process in the future and what legal options you have. The terms used are to be understood as gender-neutral.
In short: We inform you comprehensively about the data we process about you.
Privacy policies usually sound very technical and use legal terms. This data protection declaration, however, is intended to describe the most important things to you as simply and transparently as possible. To the extent that it promotes transparency, technical terms are explained in a reader-friendly manner, links to further information are provided and graphics are used. We thereby inform you in clear and simple language that we only process personal data as part of our business activities if there is a corresponding legal basis. This is certainly not possible if you make as brief, unclear and legal-technical statements as possible, as are often standard on the Internet when it comes to data protection. I hope you find the following explanations interesting and informative and perhaps there is one or two pieces of information that you didn't know before.
If you still have questions, we would like to ask you to contact the responsible body named below or in the legal notice, follow the existing links and look at further information on third-party sites. You can of course also find our contact details in the legal notice.
scope of application
This data protection declaration applies to all personal data processed by us in the company and to all personal data that companies commissioned by us (contract processors) process. By personal data we mean information within the meaning of Article 4 No. 1 GDPR such as a person's name, email address and postal address. The processing of personal data ensures that we can offer and bill our services and products, whether online or offline. The scope of this data protection declaration includes:
all online presences (websites, online shops) that we operate
Social media presence and email communication
mobile apps for smartphones and other devices
In short: The data protection declaration applies to all areas in which personal data is processed in a structured manner within the company via the channels mentioned. If we enter into legal relationships with you outside of these channels, we will inform you separately if necessary.
Legal basis
In the following data protection declaration we provide you with transparent information about the legal principles and regulations, i.e. the legal bases of the General Data Protection Regulation, which enable us to process personal data.
As far as EU law is concerned, we refer to REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of April 27, 2016. You can of course access this EU General Data Protection Regulation online on EUR-Lex, the access to the EU -Law, read at https://eur-lex.europa.eu/legal-content/DE/TXT/?uri=celex%3A32016R0679.
We only process your data if at least one of the following conditions applies:
Consent (Article 6 paragraph 1 lit. a GDPR): You have given us your consent to process data for a specific purpose. An example would be saving the data you entered on a contact form.
Contract (Article 6 Paragraph 1 Letter b GDPR): In order to fulfill a contract or pre-contractual obligations with you, we process your data. For example, if we conclude a purchase contract with you, we need personal information in advance.
Legal obligation (Article 6 paragraph 1 lit. c GDPR): If we are subject to a legal obligation, we process your data. For example, we are legally obliged to keep invoices for accounting purposes. These usually contain personal data.
Legitimate interests (Article 6 paragraph 1 lit. f GDPR): In the case of legitimate interests that do not restrict your fundamental rights, we reserve the right to process personal data. For example, we need to process certain data in order to operate our website securely and economically efficiently. This processing is therefore a legitimate interest.
Other conditions such as the perception of recordings in the public interest and the exercise of public authority as well as the protection of vital interests generally do not apply to us. If such a legal basis is relevant, it will be shown in the appropriate place.
In addition to the EU regulation, national laws also apply:
In Austria this is the Federal Law for the Protection of Natural Persons with regard to the Processing of Personal Data (Data Protection Act), or DSG for short.
The Federal Data Protection Act, or BDSG for short, applies in Germany.
If other regional or national laws apply, we will inform you about them in the following sections.
Contact details of the person responsible
If you have any questions about data protection, you will find the contact details of the responsible person or body below:
Ricardo Ferrara
Erzbergerstrasse 29
55576 Sprendlingen
Authorized representative: Ricardo Ferrara
Email: info@framehistory.com
Telephone: 01728169451
Imprint: https://framehistory.com/impressum/
Storage period
Our general criterion is that we only store personal data for as long as is absolutely necessary to provide our services and products. This means that we delete personal data as soon as the reason for data processing no longer exists. In some cases, we are legally obliged to store certain data even after the original purpose has ceased, for example for accounting purposes.
If you wish to have your data deleted or revoke your consent to data processing, the data will be deleted as quickly as possible and unless there is an obligation to store it.
We will inform you below about the specific duration of the respective data processing, provided we have further information.
Rights under the General Data Protection Regulation
According to Article 13 GDPR, you have the following rights to ensure fair and transparent processing of data:
According to Article 15 GDPR, you have a right to information as to whether we are processing your data. If this is the case, you have the right to receive a copy of the data and to know the following information:
for what purpose we carry out the processing;
the categories, i.e. the types of data, that are processed;
who receives this data and, if the data is transferred to third countries, how security can be guaranteed;
how long the data is stored;
the existence of the right to rectification, deletion or restriction of processing and the right to object to processing;
that you can complain to a supervisory authority (links to these authorities can be found below);
the origin of the data if we did not collect it from you;
whether profiling is carried out, i.e. whether data is automatically evaluated in order to create a personal profile for you.
According to Article 16 GDPR, you have a right to correction of data, which means that we must correct data if you find errors.
According to Article 17 GDPR, you have the right to deletion (“right to be forgotten”), which specifically means that you can request the deletion of your data.
According to Article 18 GDPR, you have the right to restrict processing, which means that we are only allowed to store the data but not use it any further.
According to Article 19 GDPR, you have the right to data portability, which means that upon request we will provide you with your data in a common format.
According to Article 21 GDPR, you have a right to object, which, once enforced, will result in a change to the processing.
If the processing of your data is based on Article 6 Paragraph 1 Letter e (public interest, exercise of official authority) or Article 6 Paragraph 1 Letter f (legitimate interest), you can object to the processing. We will then check as quickly as possible whether we can legally comply with this objection.
If data is used to conduct direct advertising, you can object to this type of data processing at any time. We may then no longer use your data for direct marketing.
If data is used to carry out profiling, you can object to this type of data processing at any time. We are then no longer allowed to use your data for profiling.
According to Article 22 GDPR, you may have the right not to be subject to a decision based solely on automated processing (e.g. profiling).
In short: you have rights – do not hesitate to contact the responsible body listed above!
If you believe that the processing of your data violates data protection law or your data protection rights have been violated in any other way, you can complain to the supervisory authority. For Austria, this is the data protection authority, whose website you can find at https://www.dsb.gv.at/. In Germany there is a data protection officer for each federal state. For more information, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI). The following local data protection authority is responsible for our company:
Rhineland-Palatinate data protection authority
State Commissioner for Data Protection: Prof. Dr. Dieter Kugelmann
Address: Hintere Bleiche 34, 55116 Mainz
Telephone number: 061 31/208 22 26
Email address: poststelle@datenschutz.rlp.de
Website: https://www.datenschutz.rlp.de/de/startseite/
Security of data processing
To protect personal data, we have implemented both technical and organizational measures. Where possible, we encrypt or pseudonymize personal data. In doing so, we make it as difficult as possible for third parties to infer personal information from our data.
Art. 25 GDPR speaks here of “data protection through technology design and through data protection-friendly default settings” and means that one always thinks about security and the corresponding security when it comes to both software (e.g. forms) and hardware (e.g. access to the server room). takes measures. Below we will go into specific measures if necessary.
TLS encryption with https
TLS, encryption and https sound very technical and they are. We use HTTPS (the Hypertext Transfer Protocol Secure stands for “secure hypertext transfer protocol”) to transmit data on the Internet in a secure manner.
This means that the complete transmission of all data from your browser to our web server is secured - no one can “eavesdrop”.
We have thus introduced an additional security layer and comply with data protection through technical design Article 25 paragraph 1 GDPR). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission over the Internet, we can ensure the protection of confidential data.
You can recognize the use of this data transfer protection by the small lock symbol at the top left of the browser, to the left of the internet address (e.g. examplepage.de) and the use of the https scheme (instead of http) as part of our internet address.
If you would like to know more about encryption, we recommend searching Google for “Hypertext Transfer Protocol Secure wiki” to get good links to further information.
CommunicationCommunication Summary
Those affected: Anyone who communicates with us by telephone, email or online form
Data processed: e.g. E.g. telephone number, name, email address, entered form data. You can find more details about the type of contact used
Purpose: Handling communication with customers, business partners, etc.
Storage period: Duration of the business transaction and the legal regulations
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. b GDPR (contract), Art. 6 Para. 1 lit. f GDPR (legitimate interests)
If you contact us and communicate by telephone, email or online form, personal data may be processed.
The data will be processed to process and process your question and the related business transaction. The data is stored for as long as the law requires.
Affected people
The above-mentioned processes affect everyone who tries to contact us via the communication channels we provide.
phone
If you call us, the call data will be stored pseudonymously on the respective device and by the telecommunications provider used. In addition, data such as name and telephone number can then be sent by email and saved to answer queries. The data will be deleted as soon as the business transaction has ended and legal requirements allow it.
If you communicate with us via email, data may be stored on the respective device (computer, laptop, smartphone, etc.) and data may be stored on the email server. The data will be deleted as soon as the business transaction has ended and legal requirements allow it.
Online forms
If you communicate with us using an online form, data will be stored on our web server and, if necessary, forwarded to one of our email addresses. The data will be deleted as soon as the business transaction has ended and legal requirements allow it.
Legal basis
The processing of data is based on the following legal bases:
Art. 6 Para. 1 lit. a GDPR (consent): You give us your consent to store your data and to continue using it for purposes relevant to the business transaction;
Art. 6 Paragraph 1 Letter b GDPR (contract): There is a need to fulfill a contract with you or a processor such as. B. the telephone provider or we need to use the data for pre-contractual activities, such as: B. the preparation of an offer;
Art. 6 Para. 1 lit. f GDPR (legitimate interests): We want to conduct customer inquiries and business communication in a professional framework. For this purpose, certain technical facilities such as: B. E-mail programs, exchange servers and mobile phone operators are necessary in order to be able to operate communication efficiently.
CookiesCookies summary
Data subjects: visitors to the website
Purpose: depending on the respective cookie. You can find more details about this below or from the manufacturer of the software that sets the cookie.
Processed data: Depending on the cookie used. You can find more details about this below or from the manufacturer of the software that sets the cookie.
Storage period: depending on the respective cookie, can vary from hours to years
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests) What are cookies?
Our website uses HTTP cookies to store user-specific data.
Below we explain what cookies are and why they are used so that you can better understand the following privacy policy.
Whenever you surf the Internet, you use a browser. Well-known browsers include Chrome, Safari, Firefox, Internet Explorer and Microsoft Edge. Most websites store small text files in your browser. These files are called cookies.
One thing cannot be denied: Cookies are really useful little helpers. Almost all websites use cookies. To be more precise, they are HTTP cookies, as there are also other cookies for other areas of application. HTTP cookies are small files that our website stores on your computer. These cookie files are automatically stored in the cookie folder, the “brain” of your browser. A cookie consists of a name and a value. When defining a cookie, one or more attributes must also be specified.
Cookies store certain user data about you, such as language or personal page settings. When you visit our site again, your browser sends the “user-related” information back to our site. Thanks to cookies, our website knows who you are and offers you the settings you are used to. In some browsers each cookie has its own file, in others, such as Firefox, all cookies are stored in a single file.
The following graphic shows a possible interaction between a web browser such as: B. Chrome and the web server. The web browser requests a website and receives a cookie back from the server, which the browser uses again as soon as another page is requested.
There are both first-party cookies and third-party cookies. First-party cookies are created directly by our site, third-party cookies are created by partner websites (e.g. Google Analytics). Each cookie must be evaluated individually because each cookie stores different data. The expiry time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, Trojans or other “malicious substances”. Cookies also cannot access information on your PC.
For example, cookie data might look like this:
Name: _ga
Value: GA1.2.1326744211.152321912445-9
Purpose: Differentiation of website visitors
Expiry date: after 2 years
A browser should be able to support these minimum sizes:
At least 4096 bytes per cookie
At least 50 cookies per domain
At least 3000 cookies in total
What types of cookies are there?
The question of which cookies we use in particular depends on the services used and is clarified in the following sections of the data protection declaration. At this point we would like to briefly discuss the different types of HTTP cookies.
There are 4 types of cookies:
Essential cookies
These cookies are necessary to ensure basic functions of the website. For example, these cookies are needed when a user puts a product in the shopping cart, then continues surfing on other pages and only later checks out. These cookies do not delete the shopping cart, even if the user closes their browser window.
Purposeful cookies
These cookies collect information about user behavior and whether the user receives any error messages. These cookies are also used to measure the loading time and behavior of the website on different browsers.
Targeting cookies
These cookies ensure better user experience. For example, entered locations, font sizes or form data are saved.
Advertising cookies
These cookies are also called targeting cookies. They serve to provide the user with individually tailored advertising. This can be very practical, but also very annoying.
Typically, when you first visit a website, you will be asked which of these types of cookies you would like to allow. And of course this decision is also saved in a cookie.
If you want to know more about cookies and are not afraid of technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Internet Engineering Task Force (IETF) Request for Comments called “HTTP State Management Mechanism”.
Purpose of processing via cookies
The purpose ultimately depends on the respective cookie. You can find more details about this below or from the manufacturer of the software that sets the cookie.
Which data is processed?
Cookies are little helpers for many different tasks. Unfortunately, it is not possible to generalize which data is stored in cookies, but we will inform you about the data processed or stored in the following data protection declaration.
Storage period of cookies
The storage period depends on the respective cookie and is further specified below. Some cookies are deleted after less than an hour, others can remain on a computer for several years.
You also have an influence on the storage period. You can delete all cookies manually at any time via your browser (see also “Right to object” below). Furthermore, cookies that are based on consent will be deleted at the latest after you revoke your consent, although the legality of storage remains unaffected until then.
Right to object – how can I delete cookies?
You decide for yourself how and whether you want to use cookies. Regardless of which service or website the cookies come from, you always have the option of deleting cookies, deactivating them or only partially allowing them. For example, you can block third-party cookies but allow all other cookies.
If you would like to find out which cookies have been stored in your browser, if you want to change or delete cookie settings, you can do this in your browser settings:
Chrome: Delete, enable and manage cookies in Chrome
Safari: Manage cookies and site data with Safari
Firefox: Delete cookies to remove data that websites have placed on your computer
Internet Explorer: Deleting and managing cookies
Microsoft Edge: Deleting and managing cookies
If you generally do not want cookies, you can set your browser so that it always informs you when a cookie is to be set. This means you can decide for each individual cookie whether you allow the cookie or not. The procedure varies depending on the browser. The best thing to do is to search for the instructions in Google using the search term “delete cookies Chrome” or “deactivate cookies Chrome” in the case of a Chrome browser.
Legal basis
The so-called “Cookie Guidelines” have existed since 2009. This states that the storage of cookies requires your consent (Article 6 Para. 1 lit. a GDPR). However, there are still very different reactions to these guidelines within the EU countries. In Austria, however, this directive was implemented in Section 96 Paragraph 3 of the Telecommunications Act (TKG). In Germany, the cookie guidelines have not been implemented as national law. Instead, this directive was largely implemented in Section 15 Paragraph 3 of the Telemedia Act (TMG).
For absolutely necessary cookies, even if consent is not given. There are legitimate interests (Article 6 Para. 1 lit. f GDPR), which in most cases are of an economic nature. We want to provide website visitors with a pleasant user experience and certain cookies are often absolutely necessary for this.
If non-essential cookies are used, this will only happen with your consent. The legal basis in this respect is Article 6 Paragraph 1 Letter a GDPR.
In the following sections you will be informed in more detail about the use of cookies if the software used uses cookies.
Google Analytics Privacy PolicyGoogle Analytics Privacy Policy Summary
Data subjects: visitors to the website
Purpose: Evaluation of visitor information to optimize the website.
Data processed: Access statistics, which include data such as access locations, device data, access duration and time, navigation behavior, click behavior and IP addresses. You can find more details about this further down in this data protection declaration.
Storage duration: depends on the properties used
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests) What is Google Analytics?
We use the analysis tracking tool Google Analytics (GA) from the American company Google Inc. on our website. For Europe, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. Google Analytics collects data about your actions on our website. For example, if you click on a link, this action will be saved in a cookie and sent to Google Analytics. The reports we receive from Google Analytics allow us to better tailor our website and service to your needs. Below we will go into more detail about the tracking tool and, above all, inform you about what data is stored and how you can prevent this.
Google Analytics is a tracking tool that is used to analyze traffic on our website. In order for Google Analytics to work, a tracking code is built into the code of our website. When you visit our website, this code records various actions that you take on our website. As soon as you leave our website, this data is sent to the Google Analytics servers and stored there.
Google processes the data and we receive reports about your user behavior. These may include, among others, the following reports:
Target group reports: Through target group reports we get to know our users better and know more precisely who is interested in our service.
Display Reports: Display reports make it easier for us to analyze and improve our online advertising.
Acquisition reports: Acquisition reports give us helpful information about how we can attract more people to our service.
Behavioral reports: This is where we learn how you interact with our website. We can track the route you take on our site and which links you click on.
Conversion reports: Conversion is the process in which you take a desired action based on a marketing message. For example, when you go from being just a website visitor to a buyer or newsletter subscriber. These reports help us learn more about how our marketing efforts are being received by you. This is how we want to increase our conversion rate.
Real-time reports: Here we always find out immediately what is happening on our website. For example, we can see how many users are currently reading this text.
Why do we use Google Analytics on our website?
Our goal with this website is clear: we want to offer you the best possible service. The statistics and data from Google Analytics help us achieve this goal.
The statistically evaluated data shows us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimize our site so that interested people can find it more easily on Google. On the other hand, the data helps us to better understand you as a visitor. We therefore know exactly what we need to improve on our website in order to offer you the best possible service. The data also helps us to carry out our advertising and marketing measures more individually and cost-effectively. After all, it only makes sense to show our products and services to people who are interested in them.
What data does Google Analytics store?
Google Analytics creates a random, unique ID associated with your browser cookie using a tracking code. This is how Google Analytics recognizes you as a new user. The next time you visit our site, you will be recognized as a “returning” user. All collected data is stored together with this user ID. This is how it is possible to evaluate pseudonymous user profiles.
In order to be able to analyze our website with Google Analytics, a property ID must be inserted into the tracking code. The data is then saved in the corresponding property. The Google Analytics 4 property is the default for every newly created property. Alternatively, you can also create the Universal Analytics Property. Depending on the property used, data is stored for different lengths of time.
Identifiers such as cookies and app instance IDs measure your interactions on our website. Interactions are all types of actions that you take on our website. If you also use other Google systems (such as a Google account), data generated via Google Analytics may be linked to third-party cookies. Google does not pass on Google Analytics data unless we as website operators authorize this. Exceptions may occur if required by law.
The following cookies are used by Google Analytics:
Name: _ga
Value: 2.1326744211.152321912445-5
Purpose: By default, analytics.js uses the _ga cookie to store the user ID. Basically, it is used to distinguish website visitors.
Expiry date: after 2 years
Name: _gid
Value: 2.1687193234.152321912445-1
Purpose: The cookie is also used to distinguish website visitors
Expiry date: after 24 hours
Name: _gat_gtag_UA_<property-id>
Value: 1
Intended use: Used to reduce the request rate. If Google Analytics is provided via Google Tag Manager, this cookie is named _dc_gtm_ <property-id>.
Expiry date: after 1 minute
Name: AMP_TOKEN
Value: no information
Purpose: The cookie has a token that can be used to retrieve a user ID from the AMP client ID service. Other possible values indicate a logout, a request, or an error.
Expiry date: after 30 seconds up to one year
Name: __utma
Value: 1564498958.1564498958.1564498958.1
Purpose: This cookie can be used to track your behavior on the website and measure performance. The cookie is updated each time information is sent to Google Analytics.
Expiry date: after 2 years
Name: __utmt
Value: 1
Purpose: The cookie is used like _gat_gtag_UA_<property-id> to throttle the request rate.
Expiry date: after 10 minutes
Name: __utmb
Value: 3.10.1564498958
Purpose: This cookie is used to determine new sessions. It is updated every time new data or information is sent to Google Analytics.
Expiry date: after 30 minutes
Name: __utmc
Value: 167421564
Purpose: This cookie is used to set new sessions for returning visitors. This is a session cookie and is only stored until you close the browser again.
Expiry date: After closing the browser
Name: __utmz
Value: m|utmccn=(referral)|utmcmd=referral|utmcct=/
Purpose: The cookie is used to identify the source of traffic to our website. This means that the cookie stores where you came to our website from. This could have been another page or an advertisement.
Expiry date: after 6 months
Name: __utmv
Value: not specified
Purpose: The cookie is used to store custom user data. It is always updated when information is sent to Google Analytics.
Expiry date: after 2 years
Note: This list cannot claim to be complete, as Google continually changes its choice of cookies.
Here we show you an overview of the most important data collected with Google Analytics:
Heatmaps: Google creates so-called heatmaps. Heatmaps show exactly the areas you click on. This gives us information about where you are on our site.
Session duration: Google refers to the time that you spend on our site without leaving the site. If you have been inactive for 20 minutes, the session ends automatically.
Bounce rate: A bounce is when you only view one page on our website and then leave our website again.
Account creation: If you create an account or place an order on our website, Google Analytics collects this data.
IP address: The IP address is only shown in abbreviated form so that a clear assignment is not possible.
Location: The country and your approximate location can be determined via the IP address. This process is also known as IP location determination.
Technical information: Technical information may include, but is not limited to, your browser type, your Internet service provider or your screen resolution.
Source of origin: Google Analytics or we are of course also interested in which website or advertising you came to our site from.
Other data includes contact details, any reviews, playing media (e.g. when you play a video via our site), sharing content via social media or adding it to your favorites. The list does not claim to be complete and only serves as a general guide to data storage by Google Analytics.
How long and where is the data stored?
Google has its servers spread all over the world. Most servers are located in America and therefore your data is mostly stored on American servers. You can read exactly where the Google data centers are located here: https://www.google.com/about/datacenters/inside/locations/?hl=de
Your data is distributed on different physical storage media. This has the advantage that the data can be accessed more quickly and is better protected against manipulation. Every Google data center has appropriate emergency programs for your data. For example, if Google's hardware fails or natural disasters paralyze servers, the risk of service disruption at Google remains low.
The retention period of the data depends on the properties used. When using the newer Google Analytics 4 properties, the retention period for your user data is set to 14 months. For other so-called event data, we have the option of choosing a retention period of 2 months or 14 months.
For Universal Analytics properties, Google Analytics has a standardized retention period of 26 months for your user data. Your user data will then be deleted. However, we have the option to choose the retention period of user data ourselves. We have five variants available to us:
Deletion after 14 months
Deletion after 26 months
Deletion after 38 months
Deletion after 50 months
No automatic deletion
In addition, there is also the option that data will only be deleted if you no longer visit our website within the period chosen by us. In this case, the retention period will be reset each time you visit our website again within the specified period.
Once the specified period has expired, the data will be deleted once a month. This retention period applies to your data linked to cookies, user recognition and advertising IDs (e.g. cookies from the DoubleClick domain). Report results are based on aggregated data and are stored independently of user data. Aggregated data is a fusion of individual data into a larger unit.
How can I delete my data or prevent data storage?
Under European Union data protection law, you have the right to access, update, delete or restrict your data. Use the Google Analytics JavaScript Opt-out Browser Add-on (ga.js, analytics.js, dc.js) to prevent Google Analytics from using your data. You can download and install the browser add-on at https://tools.google.com/dlpage/gaoptout?hl=de. Please note that this add-on only deactivates data collection by Google Analytics.
If you generally want to deactivate, delete or manage cookies, you will find the relevant links to the relevant instructions for the most popular browsers under the “Cookies” section.
Legal basis
The use of Google Analytics requires your consent, which we obtained with our cookie popup. According to Article 6 Paragraph 1 Letter a of the GDPR (consent), this consent represents the legal basis for the processing of personal data, as may occur when it is collected by web analytics tools.
In addition to consent, we have a legitimate interest in analyzing the behavior of website visitors and thus improving our offering technically and economically. With the help of Google Analytics, we detect errors on the website, identify attacks and improve profitability. The legal basis for this is Article 6 Paragraph 1 Letter f GDPR (legitimate interests). However, we only use Google Analytics if you have given your consent.
Google also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, Google uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Google undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
The Google Ads Data Processing Terms, which correspond to the standard contractual clauses and also apply to Google Analytics, can be found at https://business.safety.google/adsprocessorterms/.
We hope we were able to provide you with the most important information about data processing by Google Analytics. If you want to find out more about the tracking service, we recommend these two links: http://www.google.com/analytics/terms/de.html and https://support.google.com/analytics/answer/6004245 ?hl=de.
Google Analytics reports on demographics and interests
We have activated the advertising reporting functions in Google Analytics. Demographics and interests reports include information about age, gender, and interests. This allows us to get a better picture of our users - without being able to assign this data to individual people. You can find out more about the advertising functions at https://support.google.com/analytics/answer/3450482?hl=de_AT&utm_id=ad.
You can stop the use of the activities and information from your Google account under “Advertising Settings” at https://adssettings.google.com/authenticated by checking the box.
Google Analytics deactivation link
If you click on the following deactivation link, you can prevent Google from recording further visits to this website. Attention: Deleting cookies, using the incognito/private mode of your browser, or using a different browser will result in data being collected again.
Deactivate Google Analytics
Google Analytics Google Signals Privacy Policy
We have activated Google signals in Google Analytics. This will update existing Google Analytics features (advertising reporting, remarketing, cross-device reporting, and interest and demographic reporting) to receive aggregated and anonymized data from you if you have allowed personalized ads in your Google Account.
The special thing about it is that it involves cross-device tracking. This means your data can be analyzed across devices. By activating Google signals, data is collected and linked to the Google account. For example, Google can recognize if you view a product on our website using a smartphone and then later purchase the product using a laptop. Thanks to the activation of Google Signals, we can launch cross-device remarketing campaigns that would otherwise not be possible in this form. Remarketing means that we can also show you our offerings on other websites.
Google Analytics also collects other visitor data such as location, search history, YouTube history and data about your actions on our website through Google signals. This gives us better advertising reports and more useful information about your interests and demographics from Google. This includes your age, what language you speak, where you live or what gender you are. There are also social criteria such as your job, marital status or income. All of these features help Google Analytics define groups of people or target groups.
The reports also help us to better assess your behavior, wishes and interests. This allows us to optimize and adapt our services and products for you. By default, this data expires after 26 months. Please note that this data collection only occurs if you have allowed personalized advertising in your Google account. This is always aggregated and anonymous data and never individual data. You can manage or delete this data in your Google account.
Google Analytics IP anonymization
We have implemented IP address anonymization from Google Analytics on this website. This function was developed by Google so that this website can comply with the applicable data protection regulations and recommendations of the local data protection authorities if they prohibit the storage of the full IP address. The anonymization or masking of the IP takes place as soon as the IP addresses arrive in the Google Analytics data collection network and before the data is stored or processed.
You can find more information about IP anonymization at https://support.google.com/analytics/answer/2763052?hl=de.
Google Analytics addition to data processing
We have entered into a direct customer agreement with Google for the use of Google Analytics by accepting the “Data Processing Addendum” in Google Analytics.
You can find out more about the addition to data processing for Google Analytics here: https://support.google.com/analytics/answer/3379636?hl=de&utm_id=ad
Chatbots IntroductionChatbots Privacy Policy Summary
Affected: Visitors to the website
Purpose: Contact requests and general communication between us and you
Processed data: Data such as name, address, email address, telephone number, general content data, if applicable IP address
You can find more details about the tools used in each case.
Storage period: depends on the chatbots & chat functions used
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests), Art. 6 Para. 1 sentence 1 lit. b. GDPR (contractual or pre-contractual obligations)What are chatbots?
You can also communicate with us using chatbots or similar chat functions. A chat offers the opportunity to write or speak to one another with very little time delay. A chatbot is software that tries to answer your question and, if necessary, informs you of any news. By using these means of communication, your personal data may also be processed and stored.
Why do we use chatbots?
Opportunities to communicate with you are important to us. Ultimately, we want to talk to you and answer any questions you may have about our service in the best possible way. Well-functioning communication is an important part of our service. Chatbots have the great advantage that we can answer frequently asked questions automatically with the help of this software. This saves us time and you still receive detailed and helpful answers. If the chatbot cannot help, you of course have the option of contacting us personally at any time.
Please note that when using our built-in elements, your data may also be processed outside the European Union, as many providers are American companies. This may mean that you may no longer be able to easily request or enforce your rights in relation to your personal data.
Which data is processed?
It may happen that you also use the chat services on other websites/platforms. In this case, your user ID will also be stored on the servers of this website. We can also be informed about which user used the chat at what time. The content is also saved. Exactly which data is stored depends on the respective service. As a rule, this involves contact data such as email address or telephone number, IP address and various usage data.
If you have consented to the chat function being used, this consent will also be saved or logged along with any possible registration. We do this so that we can demonstrate registration or consent if required by law.
The chat platform provider can also learn when you are chatting and also receive technical information about the device you are using. Exactly which information is stored and processed also depends on your PC settings. In many cases, data about your approximate location can be collected. This is done on the one hand to optimize the chat services and on the other hand to ensure greater security. Furthermore, the information can also be used to set personalized advertising and marketing measures.
If you have agreed that a chatbot can send you messages, you can of course deactivate this activation at any time. The chatbot also serves as help and shows you how you can unsubscribe from this function. All your relevant data will then be deleted from the recipient directory.
We use the above-mentioned data in order to be able to address you personally via the chat, to be able to answer your questions and inquiries or to send you possible content. We can also use it to fundamentally improve our chat services.
How long is data stored?
How long the data is processed and stored depends primarily on the tools we use. You can find out more about the data processing of the individual tools below. The data protection declarations of the providers usually state exactly which data is stored and processed for how long. In principle, personal data is only processed for as long as is necessary to provide our services. When data is stored in cookies, the storage period varies greatly. The data can be deleted immediately after you leave a website, but it can also remain stored for several years. Therefore, you should look at each individual cookie in detail if you want to know more about data storage. You will usually also find informative information about the individual cookies in the data protection declarations of the individual providers.
Right to object
You also have the right and the opportunity to revoke your consent to the use of cookies or third-party providers at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection through cookies by managing, deactivating or deleting cookies in your browser.
Since cookies can be used in chat services, we also recommend our general data protection declaration about cookies. To find out exactly which of your data is stored and processed, you should read the data protection declarations of the respective tools.
Legal basis
We ask for your permission to process your data as part of the chat services via a pop-up window. If you agree, this consent also applies as the legal basis (Art. 6 Para. 1 lit. a GDPR) for data processing. We also process your inquiries and manage your data within the framework of contractual or pre-contractual relationships in order to fulfill our pre-contractual and contractual obligations or to answer inquiries. The basis for this is Article 6 Paragraph 1 Sentence 1 Letter b. GDPR. In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. However, we only use the tools if you have given your consent.
1000° Bot Privacy Policy
We also use the chatbot software 1000° Bot. The service provider is the German company 1000°DIGITAL GmbH, Mozartstr. 3, 04107 Leipzig, Germany. You can find out more about the data processed through the use of 1000° Bot in the Privacy Policy at https://home.1000grad.de/datenschutz.
Social Media IntroductionSocial Media Privacy Policy Summary
Affected: Visitors to the website
Purpose: Presentation and optimization of our services, contact with visitors, interested parties, etc., advertising
Data processed: Data such as telephone numbers, email addresses, contact details, user behavior data, information about your device and your IP address.
You can find more details about this in the respective social media tool used.
Storage period: depends on the social media platforms used
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests) What is social media?
In addition to our website, we are also active on various social media platforms. User data can be processed so that we can specifically address users who are interested in us via social networks. In addition, elements of a social media platform may also be embedded directly into our website. This is the case, for example, if you click on a so-called social button on our website and are redirected directly to our social media presence. So-called social media or social media are websites and apps through which registered members can produce content, exchange content openly or in specific groups and network with other members.
Why do we use social media?
For years, social media platforms have been the place where people communicate and connect online. With our social media presence we can bring our products and services closer to interested parties. The social media elements integrated on our website help you to switch to our social media content quickly and without complications.
The data that is stored and processed through your use of a social media channel has the primary purpose of being able to carry out web analyses. The aim of these analyzes is to be able to develop more precise and personal marketing and advertising strategies. Depending on your behavior on a social media platform, appropriate conclusions can be drawn about your interests using the evaluated data and so-called user profiles can be created. This also makes it possible for the platforms to present you with tailored advertisements. Cookies are usually set in your browser for this purpose and store data about your usage behavior.
We generally assume that we remain responsible under data protection law, even if we use the services of a social media platform. However, the European Court of Justice has decided that in certain cases the operator of the social media platform can be jointly responsible with us within the meaning of Article 26 GDPR. If this is the case, we will point this out separately and work on the basis of a relevant agreement. The essence of the agreement is then reproduced below for the affected platform.
Please note that when you use the social media platforms or our built-in elements, your data may also be processed outside the European Union, as many social media channels, such as Facebook or Twitter, are American companies. This may mean that you may no longer be able to easily request or enforce your rights in relation to your personal data.
Which data is processed?
Exactly which data is stored and processed depends on the respective provider of the social media platform. But usually it is data such as telephone numbers, email addresses, data that you enter in a contact form, user data such as which buttons you click, who you like or follow, when you visited which pages, information about Your device and your IP address. Most of this data is stored in cookies. Especially if you have a profile on the social media channel you are visiting and are logged in, data can be linked to your profile.
All data collected via a social media platform is also stored on the providers’ servers. This means that only the providers have access to the data and can give you the appropriate information or make changes.
If you want to know exactly what data is stored and processed by social media providers and how you can object to data processing, you should carefully read the company's respective data protection declaration. If you have any questions about data storage and data processing or want to assert the relevant rights, we recommend that you contact the provider directly.
Duration of data processing
We will inform you below about the duration of data processing if we have further information. For example, the social media platform Facebook stores data until it is no longer needed for its own purpose. However, customer data that is compared with your own user data will be deleted within two days. In general, we only process personal data for as long as it is absolutely necessary to provide our services and products. If required by law, for example in the case of accounting, this storage period can also be exceeded.
Right to object
You also have the right and the opportunity to revoke your consent to the use of cookies or third-party providers such as embedded social media elements at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection through cookies by managing, deactivating or deleting cookies in your browser.
Since cookies can be used in social media tools, we also recommend our general data protection declaration about cookies. To find out exactly which of your data is stored and processed, you should read the data protection declarations of the respective tools.
Legal basis
If you have agreed that your data can be processed and stored through integrated social media elements, this consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). In principle, if you have given your consent, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. However, we only use the tools if you have given your consent. Most social media platforms also set cookies on your browser to store data. We therefore recommend that you read our data protection text about cookies carefully and view the data protection declaration or the cookie guidelines of the respective service provider.
You can find information about specific social media platforms - if available - in the following sections.
Instagram Privacy PolicyInstagram Privacy Policy Summary
Data subjects: visitors to the website
Purpose: Optimization of our service
Data processed: Data such as user behavior data, information about your device and your IP address.
You can find more details about this in the data protection declaration below.
Storage period: until Instagram no longer needs the data for its purposes
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests) What is Instagram?
We have installed Instagram functions on our website. Instagram is a social media platform owned by Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA. Instagram has been a subsidiary of Facebook Inc. since 2012 and is one of the Facebook products. Embedding Instagram content on our website is called embedding. This allows us to show you content such as buttons, photos or videos from Instagram directly on our website. If you access websites on our website that have an Instagram function integrated, data will be transmitted to Instagram, stored and processed. Instagram uses the same systems and technologies as Facebook. Your data will therefore be processed across all Facebook companies.
Below we would like to give you a more detailed insight into why Instagram collects data, what data it is and how you can largely control data processing. Since Instagram belongs to Facebook Inc., we obtain our information from the Instagram guidelines on the one hand, but also from the Facebook data guidelines themselves on the other.
Instagram is one of the most famous social media networks worldwide. Instagram combines the advantages of a blog with the advantages of audiovisual platforms such as YouTube or Vimeo. You can upload photos and short videos to “Insta” (as many users casually call the platform), edit them with various filters and also distribute them on other social networks. And if you don't want to be active yourself, you can just follow other interesting users.
Why do we use Instagram on our website?
Instagram is the social media platform that has really taken off in recent years. And of course we also reacted to this boom. We want you to feel as comfortable as possible on our website. That's why it's a matter of course for us to prepare our content in a varied manner. The embedded Instagram functions allow us to enrich our content with helpful, funny or exciting content from the Instagram world. Since Instagram is a subsidiary of Facebook, the data collected can also be useful to us for personalized advertising on Facebook. This means our advertisements only reach people who are really interested in our products or services.
Instagram also uses the collected data for measurement and analysis purposes. We get summarized statistics and thus more insight into your wishes and interests. It is important to note that these reports do not identify you personally.
What data does Instagram store?
If you come across one of our pages that has built-in Instagram functions (such as Instagram images or plug-ins), your browser will automatically contact Instagram's servers. Data is sent to Instagram, stored and processed. Regardless of whether you have an Instagram account or not. This includes information about our website, about your computer, about purchases you make, about advertisements you see and how you use our services. The date and time of your interaction with Instagram are also stored. If you have an Instagram account or are logged in, Instagram stores significantly more data about you.
Facebook differentiates between customer data and event data. We assume that this is exactly the case with Instagram. Customer data includes, for example, name, address, telephone number and IP address. This customer data will only be transmitted to Instagram once it has been “hashed”. Hashing means turning a data set into a string. This allows you to encrypt the contact details. In addition, the above-mentioned “event data” is also transmitted. By “event data” Facebook – and consequently also Instagram – means data about your user behavior. It can also happen that contact data is combined with event data. The contact details collected will be compared with the data Instagram already has about you.
The collected data is transmitted to Facebook via small text files (cookies), which are usually set in your browser. Depending on the Instagram functions used and whether you have an Instagram account, different amounts of data are stored.
We assume that data processing on Instagram works in the same way as on Facebook. This means: if you have an Instagram account or have visited www.instagram.com, Instagram has set at least one cookie. If this is the case, your browser will send information to Instagram via the cookie as soon as you come into contact with an Instagram function. This data will be deleted or anonymized after 90 days at the latest (after comparison). Although we have looked intensively into Instagram's data processing, we cannot say exactly what data Instagram collects and stores.
Below we will show you the minimum cookies that are set in your browser when you click on an Instagram function (such as a button or an Insta picture). In our test, we assume that you don't have an Instagram account. If you are logged in to Instagram, significantly more cookies will of course be set in your browser.
These cookies were used in our test:
Name: csrftoken
Value: ""
Purpose: This cookie is most likely set for security reasons to prevent fraudulent requests. However, we were unable to find out more precisely.
Expiry date: after one year
Name: mid
Value: ""
Purpose: Instagram sets this cookie to optimize its own services and offers on and outside of Instagram. The cookie sets a unique user ID.
Expiry date: after the end of the session
Name: fbsr_321912445124024
Value: no information
Purpose: This cookie stores the log-in request for users of the Instagram app.
Expiry date: after the end of the session
Name: rur
Value: ATN
Purpose: This is an Instagram cookie that ensures functionality on Instagram.
Expiry date: after the end of the session
Name: urlgen
Value: “{”194.96.75.33”: 1901}:1iEtYv:Y833k2_UjKvXgYe321912445”
Purpose: This cookie is used for Instagram’s marketing purposes.
Expiry date: after the end of the session
Note: We cannot claim completeness here. Which cookies are set in each individual case depends on the embedded functions and your use of Instagram.
How long and where is the data stored?
Instagram shares the information it receives between Facebook companies, with external partners and with people you connect with around the world. Data processing takes place in compliance with our own data guidelines. Your data is distributed on Facebook servers around the world, among other things for security reasons. Most of these servers are located in the USA.
How can I delete my data or prevent data storage?
Thanks to the General Data Protection Regulation, you have the right to information, portability, correction and deletion of your data. You can manage your data in Instagram settings. If you want to completely delete your data on Instagram, you will need to permanently delete your Instagram account.
And this is how deleting your Instagram account works:
First open the Instagram app. On your profile page, go down and click on “Help Section.” Now you come to the company's website. On the website, click “Manage Account” and then click “Delete Your Account.”
If you delete your account entirely, Instagram will delete posts such as your photos and status updates. Information that other people have shared about you is not part of your account and will therefore not be deleted.
As mentioned above, Instagram stores your data primarily through cookies. You can manage, deactivate or delete these cookies in your browser. Depending on your browser, administration always works a little differently. Under the “Cookies” section you will find the corresponding links to the relevant instructions for the most popular browsers.
You can also generally set up your browser so that you are always informed when a cookie is to be set. Then you can always decide individually whether you want to allow the cookie or not.
Legal basis
If you have agreed that your data can be processed and stored through integrated social media elements, this consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. However, we only use the integrated social media elements if you have given your consent. Most social media platforms also set cookies on your browser to store data. We therefore recommend that you read our data protection text about cookies carefully and view the data protection declaration or the cookie guidelines of the respective service provider.
Instagram and Facebook also process data in the USA, among others. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As a basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, in particular in the USA) or for data transfer there, Facebook uses standard contractual clauses approved by the EU Commission (= Art. 46 Para. 2 and 3 GDPR). These clauses oblige Facebook to comply with the EU data protection level when processing relevant data even outside the EU. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the clauses here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.
We have tried to provide you with the most important information about data processing by Instagram. At https://help.instagram.com/519522125107875
You can take a closer look at Instagram's data policies.
LinkedIn Privacy PolicyLinkedIn Privacy Policy Summary
Data subjects: visitors to the website
Purpose: Optimization of our service
Data processed: Data such as user behavior data, information about your device and your IP address.
You can find more details about this in the data protection declaration below.
Storage period: the data is generally deleted within 30 days
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests)What is LinkedIn?
On our website we use social plug-ins from the social media network LinkedIn, from LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. The social plug-ins can be feeds, sharing content or linking to our LinkedIn page. The social plug-ins are clearly marked with the well-known LinkedIn logo and allow, for example, interesting content to be shared directly via our website. For the European Economic Area and Switzerland, LinkedIn Ireland Unlimited Company Wilton Place in Dublin is responsible for data processing.
By embedding such plug-ins, data can be sent to LinkedIn, stored and processed there. In this data protection declaration we want to inform you what data is involved, how the network uses this data and how you can manage or prevent data storage.
LinkedIn is the largest social network for business contacts. Unlike Facebook, for example, the company focuses exclusively on building business contacts. Companies can present services and products and establish business relationships on the platform. Many people also use LinkedIn to search for jobs or to find suitable employees for their own company. In Germany alone, the network has over 11 million members. In Austria there are around 1.3 million.
Why do we use LinkedIn on our website?
We know how busy you are. You can't track all social media channels individually. Even if, as in our case, it would be worth it. Because we always post interesting news or reports that are worth spreading. That's why we have created the opportunity on our website to share interesting content directly on LinkedIn or to link directly to our LinkedIn page. We view built-in social plugins as an extended service on our website. The data that LinkedIn collects also helps us to show possible advertising measures only to people who are interested in what we offer.
What data does LinkedIn store?
LinkedIn does not store any personal data simply by integrating the social plug-ins. LinkedIn calls this data generated by plugins passive impressions. However, if you click on a social plug-in, for example to share our content, the platform stores personal data as so-called “active impressions”. Regardless of whether you have a LinkedIn account or not. If you are logged in, the data collected will be assigned to your account.
Your browser establishes a direct connection to LinkedIn's servers when you interact with our plug-ins. The company logs various usage data. In addition to your IP address, this can include, for example, registration data, device information or information about your internet or mobile phone provider. If you access LinkedIn services via your smartphone, your location can also be determined (after you have allowed this). LinkedIn can also pass on this data in “hashed” form to third-party advertisers. Hashing means turning a data set into a string. This allows the data to be encrypted so that people can no longer be identified.
Most of the data about your user behavior is stored in cookies. These are small text files that are usually placed in your browser. Furthermore, LinkedIn can also use web beacons, pixel tags, display tags and other device recognition.
Various tests also show which cookies are set when a user interacts with a social plug-in. The data found cannot claim to be complete and only serves as an example. The following cookies were set without being logged in to LinkedIn:
Name: bcookie
Value: =2&34aab2aa-2ae1-4d2a-8baf-c2e2d7235c16321912445-
Purpose: The cookie is a so-called “browser ID cookie” and therefore stores your identification number (ID).
Expiry date: After 2 years
Name: long
Value: v=2&lang=de-de
Purpose: This cookie stores your default or preferred language.
Expiry date: after the end of the session
Name: lidc
Value: 1818367:t=1571904767:s=AQF6KNnJ0G321912445…
Purpose: This cookie is used for routing. Routing records how you got to LinkedIn and how you navigate through the website.
Expiry date: after 24 hours
Name: rtc
Value: kt0lrv3NF3x3t6xvDgGrZGDKkX
Purpose: No further information could be found about this cookie.
Expiry date: after 2 minutes
Name: JSESSIONID
Value: ajax:3219124452900777718326218137
Purpose: This is a session cookie that LinkedIn uses to maintain anonymous user sessions through the server.
Expiry date: after the end of the session
Name: bscookie
Value: “v=1&201910230812…
Purpose: This cookie is a security cookie. LinkedIn describes it as a secure browser ID cookie.
Expiry date: after 2 years
Name: fid
Value: AQHj7Ii23ZBcqAAAA…
Purpose: No further information could be found about this cookie.
Expiry date: after 7 days
Note: LinkedIn also works with third parties. That's why we also recognized the two Google Analytics cookies _ga and _gat in our test.
How long and where is the data stored?
In principle, LinkedIn retains your personal data for as long as the company considers it necessary to offer its services. However, LinkedIn deletes your personal data when you delete your account. In some exceptional cases, LinkedIn retains some data in aggregated and anonymized form even after you delete your account. Once you delete your account, other people will no longer be able to see your information within a day. LinkedIn generally deletes the data within 30 days. However, LinkedIn retains data if it is necessary for legal reasons. Data that can no longer be assigned to a person remains stored even after the account is closed. The data is stored on various servers in America and probably also in Europe.
How can I delete my data or prevent data storage?
You have the right to access and delete your personal data at any time. You can manage, change, and delete your information in your LinkedIn account. You can also request a copy of your personal data from LinkedIn.
To access account information in your LinkedIn profile:
Click on your profile icon in LinkedIn and select the “Settings and data protection” section. Now click on “Privacy” and then click “Change” in the “How LinkedIn uses your data” section. In just a short time, you can download selected data about your web activity and account history.
You also have the option in your browser to prevent data processing by LinkedIn. As mentioned above, LinkedIn stores most of its data via cookies that are set in your browser. You can manage, deactivate or delete these cookies. Depending on which browser you have, management works slightly differently. Under the “Cookies” section you will find the corresponding links to the relevant instructions for the most popular browsers.
You can also generally set up your browser so that you are always informed when a cookie is to be set. Then you can always decide individually whether you want to allow the cookie or not.
Legal basis
If you have agreed that your data can be processed and stored through integrated social media elements, this consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. However, we only use the integrated social media elements if you have given your consent. Most social media platforms also set cookies on your browser to store data. We therefore recommend that you read our data protection text about cookies carefully and view the data protection declaration or the cookie guidelines of the respective service provider.
LinkedIn also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As a basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, LinkedIn uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, LinkedIn undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
You can find more information about the standard contractual clauses at LinkedIn at https://de.linkedin.com/legal/l/dpa or https://www.linkedin.com/legal/l/eu-sccs.
We have tried to provide you with the most important information about data processing by LinkedIn. You can find out more about the data processing of the social media network LinkedIn at https://www.linkedin.com/legal/privacy-policy.
Pinterest Privacy PolicyPinterest Privacy Policy Summary
Data subjects: visitors to the website
Purpose: Optimization of our service
Data processed: Data such as user behavior data, information about your device, your IP address and search terms.
You can find more details about this in the data protection declaration below.
Storage period: until Pinterest no longer needs the data for its purposes
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests) What is Pinterest?
On our site we use buttons and widgets from the social media network Pinterest, the company Pinterest Inc., 808 Brannan Street, San Francisco, CA 94103, USA. The Irish company Pinterest Europe Ltd. is responsible for the European region. (Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland) is responsible for all data protection-related aspects.
Pinterest is a social network that specializes in graphic representations and photographs. The name is made up of the two words “pin” and “interest”. Users can exchange ideas about different hobbies and interests via Pinterest and view the respective profiles with pictures openly or in defined groups.
Why do we use Pinterest?
Pinterest has been around for several years now and this social media platform is still one of the most visited and valued platforms. Pinterest is particularly suitable for our industry because the platform is primarily known for beautiful and interesting images. That's why we're also represented on Pinterest and want to present our content accordingly outside of our website. The data collected can also be used for advertising purposes so that we can show advertising messages to exactly those people who are interested in our services or products.
What data does Pinterest process?
So-called log data can be saved. This includes information about your browser, IP address, the address of our website and the activities carried out on it (for example when you click the bookmark or pin button), search history, date and time of the request and cookie and device data. If you interact with an embedded Pinterest function, cookies that store various data may also be set in your browser. Most of the above-mentioned log data, preset language settings and clickstream data are stored in cookies. Pinterest understands clickstream data to be information about your website behavior.
If you have a Pinterest account and are logged in, the data collected through our site may be added to your account and used for advertising purposes. If you interact with our integrated Pinterest functions, you will usually be redirected to the Pinterest page. Here you can see an example selection of cookies that are then set in your browser.
Name: _auth
Value: 0
Purpose: The cookie is used for authentication. For example, a value such as your “username” can be stored there.
Expiry date: after one year
Name: _pinterest_referrer
Value: 1
Purpose: The cookie stores that you came to Pinterest via our website. So the URL of our website is saved.
Expiry date: after the end of the session
Name: _pinterest_sess
Value: …9HRHZvVE0rQlUxdG89
Purpose: The cookie is used to log in to Pinterest and contains user IDs, authentication tokens and timestamps.
Expiry date: after one year
Name: _routing_id
Value: “8d850ddd-4fb8-499c-961c-77efae9d4065321912445-8”
Purpose: The cookie contains an assigned value that is used to identify a specific routing destination.
Expiry date: after one day
Name: cm_sub
Value: denied
Purpose: This cookie stores a user ID and timestamp.
Expiry date: after one year
Name: csrftoken
Value: 9e49145c82a93d34fd933b0fd8446165321912445-1
Purpose: This cookie is most likely set for security reasons to prevent fraudulent requests. However, we were unable to find out more precisely.
Expiry date: after one year
Name: sessionFunnelEventLogged
Value: 1
Purpose: We have not yet been able to find out any further information about this cookie.
Expiry date: after one day
How long and where is the data stored?
Pinterest generally stores the data collected until it is no longer needed for the company's purposes. As soon as data retention is no longer necessary, for example to comply with legal regulations, the data will either be deleted or anonymized so that you can no longer be identified as a person. The data can also be stored on American servers.
Right to object
You also have the right and the opportunity to revoke your consent to the use of cookies or third-party providers such as Pinterest at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection through cookies by managing, deactivating or deleting cookies in your browser.
Since cookies can be used for embedded Pinterest elements, we also recommend our general data protection declaration about cookies. To find out exactly which of your data is stored and processed, you should read the data protection declarations of the respective tools.
Legal basis
If you have agreed that your data can be processed and stored through integrated social media elements, this consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. However, we only use the tool if you have given your consent. Most social media platforms also set cookies on your browser to store data. We therefore recommend that you read our data protection text about cookies carefully and view the data protection declaration or the cookie guidelines of the respective service provider.
Pinterest also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, Pinterest uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Pinterest undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
You can find more information about Pinterest's standard contractual clauses at https://policy.pinterest.com/de/privacy-policy#section-residents-of-the-eea.
We have tried to provide you with the most important information about data processing by Pinterest. You can find out more about Pinterest's data policies at https://policy.pinterest.com/de/privacy-policy.
Snapchat privacy policy
We also use the instant messaging service Snapchat. The service provider is the American company Snap Inc., 2772 Donald Douglas Loop N, Santa Monica (HQ), CA, USA.
Snap also processes your data in the USA, among other places. We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, Snap uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Snap undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
For more information about Snap's standard contractual clauses, please visit https://snap.com/en-US/terms/standard-contractual-clauses.
You can find out more about the data processed through the use of Snapchat in the Privacy Policy at https://snap.com/de-DE/privacy/privacy-policy.
TikTok privacy policy
We also use TikTok, a social media and video channel. The service provider is the Chinese company Beijing Bytedance Technology Ltd. The Irish company TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland, is responsible for the European region.
TikTok also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As a basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, TikTok uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, TikTok undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
You can find out more about the standard contractual clauses and the data processed through the use of TikTok Pixel in the Privacy Policy at https://www.tiktok.com/legal/privacy-policy?lang=de or https:// ads.tiktok.com/i18n/official/policy/controller-to-controller.
Twitter Privacy PolicyTwitter Privacy Policy Summary
Data subjects: visitors to the website
Purpose: Optimization of our service
Data processed: Data such as user behavior data, information about your device and your IP address.
You can find more details about this in the data protection declaration below.
Storage period: Twitter deletes data collected from other websites after 30 days at the latest
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests)What is Twitter?
We have integrated Twitter functions on our website. These include, for example, embedded tweets, timelines, buttons or hashtags. Twitter is a short messaging service and a social media platform from Twitter Inc., One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland.
To our knowledge, in the European Economic Area and Switzerland, the mere integration of the Twitter function does not mean that any personal data or data about your web activities are transferred to Twitter. Only when you interact with the Twitter functions, such as clicking on a button, can data be sent to Twitter, stored and processed there. We have no influence on this data processing and bear no responsibility. As part of this data protection declaration, we want to give you an overview of what data Twitter stores, what Twitter does with this data and how you can largely protect yourself from data transfer.
For some, Twitter is a news service, for others it is a social media platform and for others it is a microblogging service. All of these terms have their place and mean more or less the same thing.
Both private individuals and companies use Twitter to communicate with interested people via short messages. Twitter only allows 280 characters per message. These messages are called “tweets”. Unlike Facebook, for example, the service does not focus on expanding a network for “friends”, but rather wants to be seen as a global and open news platform. On Twitter you can also have an anonymous account and tweets can be deleted by the company on the one hand and by the users themselves on the other.
Why do we use Twitter on our website?
Like many other websites and companies, we try to offer our services and communicate with our customers through various channels. Twitter in particular has grown on us as a useful “small” news service. We constantly tweet or retweet exciting, funny or interesting content. We understand that you cannot follow every channel separately. After all, you also have something else to do. That's why we have also integrated Twitter functions on our website. You can experience our Twitter activity “on site” or come to our Twitter page via a direct link. Through the integration we want to strengthen our service and user-friendliness on our website.
What data does Twitter store?
On some of our subpages you will find the built-in Twitter functions. When you interact with Twitter content, such as clicking a button, Twitter may collect and store data. Even if you don't have a Twitter account yourself. Twitter calls this data “log data”. This includes demographic data, browser cookie IDs, your smartphone ID, hashed email addresses, and information about which pages you have visited on Twitter and what actions you have taken. Of course, Twitter stores more data if you have a Twitter account and are logged in. This storage usually happens via cookies. Cookies are small text files that are usually set in your browser and transmit various information to Twitter.
We will now show you which cookies are set when you are not logged in to Twitter but visit a website with built-in Twitter functions. Please consider this list as an example. We cannot guarantee completeness here under any circumstances, as the choice of cookies is always changing and depends on your individual actions with the Twitter content.
These cookies were used in our test:
Name: personalization_id
Value: “v1_cSJIsogU51SeE321912445”
Purpose: This cookie stores information about how you use the website and which advertisements may have brought you to Twitter.
Expiry date: after 2 years
Name: long
Value: de
Purpose: This cookie stores your default or preferred language.
Expiry date: after the end of the session
Name: guest_id
Value: 321912445v1%3A157132626
Purpose: This cookie is set to identify you as a guest.
Expiry date: after 2 years
Name: fm
Value: 0
Purpose: Unfortunately, we were unable to find out the purpose of this cookie.
Expiry date: after the end of the session
Name: external_referer
Value: 3219124452beTA0sf5lkMrlGt
Purpose: This cookie collects anonymous data, such as how often you visit Twitter and how long you visit Twitter.
Expiry date: After 6 days
Name: eu_cn
Value: 1
Purpose: This cookie stores user activity and is used for various advertising purposes by Twitter.
Expiry date: After one year
Name: ct0
Value: c1179f07163a365d2ed7aad84c99d966
Purpose: Unfortunately, we did not find any information about this cookie.
Expiry date: after 6 hours
Name: _twitter_sess
Value: 53D%253D–dd0248321912445-
Purpose: With this cookie you can use functions within the Twitter website.
Expiry date: after the end of the session
Note: Twitter also works with third parties. That's why we also recognized the three Google Analytics cookies _ga, _gat, _gid in our test.
On the one hand, Twitter uses the data collected to better understand user behavior and thus improve its own services and advertising offers, and on the other hand, the data also serves internal security measures.
How long and where is the data stored?
If Twitter collects data from other websites, it will be deleted, aggregated or otherwise obscured after a maximum of 30 days. The Twitter servers are located in various server centers in the United States. It can therefore be assumed that the data collected is collected and stored in America. After our research, we could not clearly determine whether Twitter also has its own servers in Europe. In principle, Twitter can store the data collected until it is no longer useful to the company, you delete the data or there is a statutory deletion period.
How can I delete my data or prevent data storage?
Twitter repeatedly emphasizes in its data protection guidelines that it does not store data from external website visits if you or your browser are located in the European Economic Area or Switzerland. However, if you interact with Twitter directly, Twitter will of course also store your data.
If you have a Twitter account, you can manage your information by clicking “More” under the “Profile” button. Then click on “Settings and data protection”. Here you can manage data processing individually.
If you don't have a Twitter account, you can go to twitter.com and then click "Customization." You can manage your collected data under “Individualization and data”.
As mentioned above, most data is stored via cookies and you can manage, deactivate or delete them in your browser. Please note that you can only “edit” the cookies in the browser you have chosen. This means: if you use a different browser in the future, you will have to manage your cookies again according to your wishes. Under the “Cookies” section you will find the corresponding links to the relevant instructions for the most popular browsers.
You can also manage your browser so that you are informed about each individual cookie. Then you can always decide individually whether you allow a cookie or not.
Twitter also uses the data for personalized advertising on and outside of Twitter. In the settings you can switch off personalized advertising under “Individualization and data”. If you use Twitter on a browser, you can deactivate personalized advertising at http://optout.aboutads.info/?c=2&lang=EN.
Legal basis
If you have agreed that your data can be processed and stored through integrated social media elements, this consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. However, we only use the integrated social media elements if you have given your consent. Most social media platforms also set cookies on your browser to store data. We therefore recommend that you read our data protection text about cookies carefully and view the data protection declaration or the cookie guidelines of the respective service provider.
Twitter also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As a basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, Twitter uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Twitter undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
More information about Twitter's standard contractual clauses can be found at https://gdpr.twitter.com/en/controller-to-controller-transfers.html.
We hope we have given you a basic overview of data processing by Twitter. We do not receive any data from Twitter and are not responsible for what Twitter does with your data. If you have any further questions on this topic, we recommend that you read the Twitter privacy policy at https://twitter.com/de/privacy.
XING Privacy PolicyXing Privacy Policy Summary
Data subjects: visitors to the website
Purpose: Optimization of our service
Processed data: Your IP address, browser data, date and time of your page access may be stored
You can find more details about this in the data protection declaration below.
Storage period: Xing user data is stored until deletion is requested
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests) What is Xing?
On our website we use social plugins from the social media network Xing, the company Xing SE, Dammtorstraße 30, 20354 Hamburg, Germany. These functions allow you, for example, to share content on Xing directly via our website, log in via Xing or follow interesting content. You can recognize the plug-ins by the company name or the Xing logo. If you access a website that uses a Xing plug-in, data can be transmitted to the “Xing servers”, stored and evaluated. In this data protection declaration we want to inform you about what data is involved and how you can manage or prevent this data storage.
Xing is a social network with headquarters in Hamburg. The company specializes in managing professional contacts. This means that, unlike other networks, Xing is primarily about professional networking. The platform is often used for job searches or to find employees for your own company. Xing also offers interesting content on various professional topics. The global counterpart to this is the American company LinkedIn.
Why do we use Xing on our website?
There is now a flood of social media channels and we are well aware that your time is very valuable. Not every company's social media channel can be scrutinized closely. That's why we want to make your life as easy as possible so that you can share or follow interesting content directly via our website on Xing. With such “social plug-ins” we expand our service on our website. In addition, the data collected by Xing helps us to carry out targeted advertising measures on the platform. This means that our service is only shown to people who are really interested in it.
What data does Xing store?
Xing offers the share button, the follow button and the log-in button as plug-ins for websites. As soon as you open a page where a Xing social plug-in is installed, your browser connects to servers in a data center used by Xing. In the case of the share button - according to Xing - no data should be stored that could be directly related to a person. In particular, Xing does not store your IP address. Furthermore, no cookies are set in connection with the share button. This means that no evaluation of your user behavior takes place. Further information can be found at https://dev.xing.com/plugins/share_button/privacy_policy
With the other Xing plug-ins, cookies are only set in your browser when you interact with the plug-in or click on it. Personal data such as your IP address, browser data, date and time of your page access on Xing can be stored here. If you have a XING account and are logged in, collected data will be assigned to your personal account and the data stored therein.
The following cookies are set in your browser when you click on the follow or log-in button and are not yet logged in to Xing. Please keep in mind that this is an exemplary list and we cannot claim to be complete:
Name: AMCVS_0894FF2554F733210A4C98C6%40AdobeOrg
Value: 1
Purpose: This cookie is used to create and store identifications of website visitors.
Expiry date: after the end of the session
Name: c_
Value: 157c609dc9fe7d7ff56064c6de87b019321912445-8
Purpose: We were unable to find out any further information about this cookie.
Expiry date: after one day
Name: prevPage
Value: wbm%2FWelcome%2Flogin
Purpose: This cookie stores the URL of the previous website you visited.
Expiry date: after 30 minutes
Name: s_cc
Value: true
Purpose: This Adobe Site Catalyst cookie determines whether cookies are generally activated in the browser.
Expiry date: after the end of the session
Name: s_fid
Value: 6897CDCD1013221C-39DDACC982217CD1321912445-2
Purpose: This cookie is used to identify a unique visitor.
Expiry date: after 5 years
Name: visitor_id
Value: fe59fbe5-e9c6-4fca-8776-30d0c1a89c32
Purpose: The visitor cookie contains a unique visitor ID and the unique identifier for your account.
Expiry date: after 2 years
Name:_session_id
Value: 533a0a6641df82b46383da06ea0e84e7321912445-2
Purpose: This cookie creates a temporary session ID that is used as an in-session user ID. The cookie is absolutely necessary to provide the functions of Xing.
Expiry date: after the end of the session
As soon as you are logged in to Xing or are a member, further personal data will definitely be collected, processed and stored. Xing also passes on personal data to third parties if this is necessary to fulfill its own business purposes, if you have given your consent or if there is a legal obligation.
How long and where is the data stored?
Xing stores the data on various servers in various data centers. The company stores this data until you delete the data or until you delete a user account. Of course, this only affects users who are already Xing members.
How can I delete my data or prevent data storage?
You have the right to access and delete your personal data at any time. Even if you are not a Xing member, you can prevent possible data processing via your browser or manage it according to your wishes. Most data is stored via cookies. Depending on which browser you have, management works slightly differently. Under the “Cookies” section you will find the corresponding links to the relevant instructions for the most popular browsers.
You can also generally set up your browser so that you are always informed when a cookie is to be set. Then you can always decide individually whether you want to allow the cookie or not.
Legal basis
If you have agreed that your data can be processed and stored through integrated social media elements, this consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. However, we only use the integrated social media elements if you have given your consent. Most social media platforms also set cookies on your browser to store data. We therefore recommend that you read our data protection text about cookies carefully and view the data protection declaration or the cookie guidelines of the respective service provider.
We have tried to provide you with the most important information about data processing by Xing. You can find out more about data processing by the social media network Xing at https://privacy.xing.com/de/datenschutzerklaerung.
Blogs and publication media IntroductionBlogs and publication media Privacy Policy Summary
Data subjects: visitors to the website
Purpose: Presentation and optimization of our services as well as communication between website visitors, security measures and administration
Data processed: Data such as contact details, IP address and published content.
You can find more details about the tools used.
Storage duration: depends on the tools used
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests), Art. 6 Para. 1 sentence 1 lit. b. GDPR (Contract)What are blogs and publication media?
We use blogs or other means of communication on our website with which we can communicate with you on the one hand and you can also communicate with us on the other. We may also store and process your data. This may be necessary so that we can display content appropriately, communication works and security is increased. In our data protection text we go into general information about which data can be processed about you. Exact information on data processing always depends on the tools and functions used. You can find detailed information about data processing in the data protection information of the individual providers.
Why do we use blogs and publication media?
Our greatest concern with our website is to offer you interesting and exciting content and at the same time your opinions and content are important to us. That's why we want to create a good interactive exchange between us and you. With various blogs and publication options we can achieve exactly that. For example, you can write comments on our content, comment on other comments or, in some cases, write posts yourself.
Which data is processed?
Exactly which data is processed always depends on the communication functions we use. Very often the IP address, username and the published content are stored. This is primarily done to ensure security protection, prevent spam and be able to take action against illegal content. Cookies can also be used to store data. These are small text files that contain information and are stored in your browser. You can find more information about the data collected and stored in our individual sections and in the data protection declaration of the respective provider.
Duration of data processing
We will inform you below about the duration of data processing if we have further information. For example, post and comment features retain data until you revoke data retention. In general, personal data is only stored for as long as is absolutely necessary to provide our services.
Right to object
You also have the right and the opportunity to revoke your consent to the use of cookies or third-party communication tools at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection through cookies by managing, deactivating or deleting cookies in your browser.
Since cookies can also be used in publication media, we also recommend our general data protection declaration about cookies. To find out exactly which of your data is stored and processed, you should read the data protection declarations of the respective tools.
Legal basis
We use the means of communication primarily based on our legitimate interests (Art. 6 Para. 1 lit. f GDPR) in fast and good communication with you or other customers, business partners and visitors. Insofar as the use serves to process contractual relationships or to initiate them, the legal basis is also Article 6 Paragraph 1 Sentence 1 Letter b. GDPR.
Certain processing, in particular the use of cookies and the use of comment or message functions, require your consent. If and to the extent that you have consented to your data being processed and stored through integrated publication media, this consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). Most communication features we use set cookies in your browser to store data. We therefore recommend that you read our data protection text about cookies carefully and view the data protection declaration or the cookie guidelines of the respective service provider.
You can find information about special tools - if available - in the following sections.
Blog posts and comment functions Data protection declaration
There are various online communication tools that we can use on our website. For example, we use blog posts and comment functions. This gives you the opportunity to comment on content or write posts. If you use this function, your IP address may be stored for security reasons. This is how we protect ourselves from illegal content such as insults, unauthorized advertising or prohibited political propaganda. In order to identify whether comments are spam, we can also store and process user information based on our legitimate interest. If we start a survey, we will also store your IP address for the duration of the survey so that we can ensure that everyone involved only votes once. Cookies can also be used for storage purposes. All data that we store about you (such as content or information about you) will remain stored until you object.
WordPress Emojis Privacy Policy
We also use so-called emojis and smilies in our blog. We probably don't need to explain in more detail what emojis are. You know those laughing, angry or sad faces. They are graphic elements or files that we provide and are loaded from another server. The service provider for retrieving WordPress emojis and smilies is Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, USA. This third party stores your IP address in order to be able to transmit the emoji files to your browser.
WordPress also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially in the USA) or for data transfer there, WordPress uses so-called standard contractual clauses (= Art. 46 Paragraphs 2 and 3 GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, WordPress undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
The data processing agreements, which correspond to the standard contractual clauses, can be found at https://wordpress.com/support/data-processing-agreements/.
You can find out more about the data processed through the use of Automattic in the Privacy Policy at https://automattic.com/privacy/.
Payment Provider IntroductionPayment Provider Privacy Policy Summary
Data subjects: visitors to the website
Purpose: To enable and optimize the payment process on our website
Processed data: Data such as name, address, bank details (account number, credit card number, passwords, TANs, etc.), IP address and contract data
You can find more details about this in the payment provider tool used.
Storage period: depends on the payment provider used
Legal basis: Art. 6 Paragraph 1 Letter b GDPR (fulfillment of a contract)What is a payment provider?
We use online payment systems on our website that enable us and you to have a secure and smooth payment process. Among other things, personal data can be sent to the respective payment provider, stored and processed there. Payment providers are online payment systems that enable you to place an order via online banking. The payment processing is carried out by the payment provider you have chosen. We will then receive information about the payment made. Any user who has an active online banking account with a PIN and TAN can use this method. There are hardly any banks that do not offer or accept such payment methods.
Why do we use payment providers on our website?
Of course, we want to offer the best possible service with our website and our integrated online shop so that you feel comfortable on our site and take advantage of our offers. We know that your time is valuable and that payment processing in particular needs to work quickly and smoothly. For these reasons, we offer you various payment providers. You can choose your preferred payment provider and pay in the usual manner.
Which data is processed?
Of course, exactly which data is processed depends on the respective payment provider. But basically data such as name, address, bank details (account number, credit card number, passwords, TANs, etc.) are stored. This is necessary data in order to be able to carry out a transaction. In addition, any contract data and user data, such as when you visit our website, what content you are interested in or which sub-pages you click on, may also be stored. Your IP address and information about the computer you use are also stored by most payment providers.
The data is usually stored and processed on the payment providers’ servers. We as website operators do not receive this data. We are only informed whether the payment worked or not. For identity and creditworthiness checks, payment providers may forward data to the appropriate authority. The business and data protection principles of the respective provider always apply to all payment transactions. Please always take a look at the general terms and conditions and the data protection declaration of the payment provider. You also have the right at any time to have data deleted or corrected, for example. Please contact the respective service provider regarding your rights (right of withdrawal, right to information and right to be affected).
Duration of data processing
We will inform you below about the duration of data processing if we have further information. In general, we only process personal data for as long as it is absolutely necessary to provide our services and products. If required by law, for example in the case of accounting, this storage period can also be exceeded. We store accounting documents associated with a contract (invoices, contract documents, bank statements, etc.) for 10 years (§ 147 AO) and other relevant business documents for 6 years (§ 247 HGB) after they are incurred.
Right to object
You always have the right to information, correction and deletion of your personal data. If you have any questions, you can contact the person responsible for the payment provider you use at any time. Contact details can be found either in our specific privacy policy or on the website of the relevant payment provider.
You can delete, deactivate or manage cookies that payment providers use for their functions in your browser. Depending on which browser you use, this works in different ways. Please note, however, that the payment process may then no longer work.
Legal basis
In addition to the conventional banks/credit institutions, we also offer other payment service providers to process contractual or legal relationships (Art. 6 Para. 1 lit. b GDPR). The data protection declarations of the individual payment providers (such as Amazon Payments, Apple Pay or Discover) provide you with a detailed overview of data processing and data storage. In addition, if you have any questions about data protection-related topics, you can always contact those responsible.
You can find information about the special payment providers - if available - in the following sections.
Afterpay privacy policy
We use Afterpay, an online payment service, for our website. The service provider is the German company Arvato Payment Solutions GmbH, Gütersloher Str. 123, 33415 Verl, Germany. You can find out more about the data processed through the use of Afterpay in the data protection declaration at https://www.afterpay.de/datenschutz/.
Amazon Payments Privacy Policy
We use Amazon Payments, an online payment service, on our website. The service provider is the American company Amazon.com Inc. The company Amazon Payments Europe SCA (38 Avenue JF Kennedy, L-1855 Luxembourg) is responsible for the European area.
Amazon also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially in the USA) or for data transfer there, Amazon uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Amazon undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
The Amazon data processing conditions (AWS GDPR DATA PROCESSING), which correspond to the standard contractual clauses, can be found at https://d1.awsstatic.com/legal/aws-gdpr/AWS_GDPR_DPA.pdf.
You can find out more about the data processed through the use of Amazon Payments in the Privacy Policy at https://pay.amazon.de/help/201212490.
American Express Privacy Policy
We use American Express, a global financial service provider, on our website. The service provider is the American company American Express Company. The company American Express Europe SA (Avenida Partenón 12-14, 28042, Madrid, Spain) is responsible for the European area.
American Express also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially in the USA) or for data transfer there, American Express uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). . Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, American Express undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
You can find more information about the standard contractual clauses at American Express under the “European Implementing Principles” (https://www.americanexpress.com/en-pl/company/legal/privacy-centre/european-implementing-principles/).
You can find out more about the data processed through the use of American Express in the Privacy Policy at https://www.americanexpress.com/de/legal/online-datenschutzerklarung.html.
Apple Pay privacy policy
We use Apple Pay, an online payment service, on our website. The service provider is the American company Apple Inc., Infinite Loop, Cupertino, CA 95014, USA.
Apple also processes data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, Apple uses standard contractual clauses approved by the EU Commission (= Article 46, Paragraph 2 and 3 GDPR). These clauses oblige Apple to comply with EU data protection levels when processing relevant data even outside the EU. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the clauses here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.
You can find out more about the data processed through the use of Apple Pay in the Privacy Policy at https://www.apple.com/legal/privacy/de-ww/.
Discover privacy policy
We use the payment system service provider Discover on our website. The service provider is the American company Discover Financial Services, 2500 Lake Cook Rd, Riverwoods, IL 60015, USA.
Discover also processes data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As a basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, in particular in the USA) or for data transfer there, Discover uses standard contractual clauses approved by the EU Commission (= Art. 46 Para. 2 and 3 GDPR). These clauses oblige Discover to comply with EU data protection levels when processing relevant data even outside the EU. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the clauses here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.
You can find out more about the data processed through the use of Discover in the Privacy Policy at https://www.discover.com/privacy-statement/eu-data.html.
eps transfer data protection declaration
We use eps-Überweisung, an online payment service, on our website. The service provider is the Austrian company Stuzza GmbH, Frankgasse 10/8, 1090 Vienna, Austria. You can find out more about the data that is processed through the use of eps transfer in the data protection declaration at https://eservice.stuzza.at/de/datenschutzerklaerung.html.
Flattr privacy policy
We use the online payment service Flattr on our website. The service provider is the Swedish company Flattr AB, Box 4111, 203 12 Malmö, Sweden. You can find out more about the data processed through the use of Flattr in the Privacy Policy at https://flattr.com/privacy.
giropay data protection declaration
We use the online payment provider giropay on our website. The service provider is the German company paydirekt GmbH, Stephanstraße 14-16, 60313 Frankfurt am Main, Germany. You can find out more about the data that is processed through the use of giropay in the data protection declaration at https://www.giropay.de/rechts/datenschutzerklaerung/.
Google Pay privacy policy
We use the online payment provider Google Pay on our website. The service provider is the American company Google Inc. For Europe, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services.
Google also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, Google uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Google undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
The data processing terms and conditions for Google advertising products (Google Ads Controller-Controller Data Protection Terms), which correspond to the standard contractual clauses and also apply to Google Pay, can be found at https://business.safety.google/adscontrollerterms/.
You can find out more about the data processed through the use of Google Pay in the Privacy Policy at https://policies.google.com/privacy.
iDEAL privacy policy
We use iDEAL, a payment system service, on our website. The service provider is the Dutch company Currence BV, Gustav Mahlerplein 33-35, Amsterdam, Noord-Holland 1082 MS, Netherlands. You can find out more about the data processed through the use of iDEAL in the Privacy Policy at https://www.ideal.nl/en/disclaimer-privacy-statement/.
Klarna Checkout Privacy PolicyKlarna Checkout Privacy Policy Summary
Data subjects: visitors to the website
Purpose: To optimize the payment process on our website
Processed data: Data such as name, address, bank details (account number, credit card number, passwords, TANs, etc.), IP address and contract data
You can find more details about this further down in this data protection declaration.
Storage period: Data is stored for as long as Klarna needs it for the processing purpose.
Legal basis: Art. 6 Para. 1 lit. c GDPR (Legal Obligation), Art. 6 Para. 1 lit. f GDPR (Legitimate Interests)What is Klarna Checkout?
We use the online payment system Klarna Checkout from the Swedish company Klarna Bank AB on our website. Klarna Bank has its headquarters at Sveavägen 46, 111 34 Stockholm, Sweden. If you choose this service, personal data will, among other things, be sent to Klarna, stored and processed. In this data protection declaration we would like to give you an overview of Klarna’s data processing.
Klarna Checkout is a payment system for orders in an online shop. The user chooses the payment method and Klarna Checkout takes care of the entire payment process. Once a user has made a payment via the checkout system and provided the relevant details, future online purchases can be made even faster and easier. The Klarna system then recognizes the existing customer after entering the email address and postal code.
Why do we use Klarna Checkout for our website?
Our goal with our website and our integrated online shop is to offer you the best possible service. In addition to the overall experience on the website and our offers, this also includes smooth, fast and secure payment processing for your orders. To ensure this, we use the Klarna Checkout payment system.
What data is stored by Klarna Checkout?
As soon as you decide to use the Klarna payment service and pay using the Klarna Checkout payment method, you also transmit personal data to the company. On the Klarna checkout page, technical data such as browser type, operating system, our internet address, date and time, language settings, time zone settings and IP address are collected from you and transmitted to Klarna's servers and stored there. This data is stored even if you have not yet completed an order.
If you order a product or service through our shop, you must enter personal information in the fields provided. This data is processed by Klarna for payment processing. The following personal data (as well as general product information) can be stored and processed by Klarna for creditworthiness and identity checks:
Contact information: name, date of birth, national ID number, title, billing and shipping address, email address, telephone number, nationality or salary.
Payment information such as credit card details or your account number
Product information such as tracking number, type of item and price of the product
There is also data that can be collected optionally, provided you consciously decide to do so. These include political, religious or ideological beliefs or various health data.
In addition to the above-mentioned data, Klarna may also collect data about the goods or services that you purchase or order, either itself or through third parties (such as us or public databases). This can be, for example, the shipment number or the type of item ordered, but also information about your creditworthiness, your income or the granting of credit. Klarna may also pass on your personal data to service providers such as software providers, data storage providers or us as a retailer.
When data is automatically entered into a form, cookies are always involved. If you do not want to use this function, you can deactivate these cookies at any time. Further down in the text you will find instructions on how to delete, deactivate or manage cookies in your browser. Our tests have shown that Klarna does not set any cookies directly. If you choose the payment method “Klarna Sofort” and click “Order”, you will be redirected to the Sofort website. After successful payment you will come to our thank you page. The following cookie is set there by sofort.com:
Name: SOFUEB
Value: e8cipp378mdscn9e17kajlfhv7321912445-4
Purpose: This cookie stores your session ID.
Expiry date: after ending the browser session
How long and where is the data stored?
Klarna endeavors to only store your data within the EU or the European Economic Area (EEA). However, it can also happen that data is transferred outside the EU/EEA. If this happens, Klarna will ensure that data protection is in line with the GDPR and the third country is subject to an adequacy decision from the European Union. The data is always stored as long as Klarna needs it for the processing purpose.
How can I delete my data or prevent data storage?
You can revoke your consent for Klarna to process personal data at any time. You also always have the right to information, correction and deletion of your personal data. All you need to do is contact the company or the company's data protection team by email at datenschutz@klarna.de. You can also contact Klarna directly via the Klarna website “My data protection request”.
You can delete, deactivate or manage cookies that Klarna may use for its functions in your browser. Depending on which browser you use, this works in different ways. Under the “Cookies” section you will find the corresponding links to the relevant instructions for the most popular browsers.
Legal basis
In addition to conventional banks/credit institutions, we also offer the payment service provider Klarna Checkout to process contractual or legal relationships (Art. 6 Para. 1 lit. b GDPR).
We hope to have provided you with a good overview of Klarna's data processing. If you want to find out more about how your data is handled, we recommend the Klarna data protection declaration at https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_at/privacy.
Mastercard privacy policy
We use the payment service provider Mastercard on our website. The service provider is the American company Mastercard Inc. The company Mastercard Europe SA (Chaussée de Tervuren 198A, B-1410 Waterloo, Belgium) is responsible for the European area.
Mastercard also processes data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As a basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, in particular in the USA) or for data transfer there, Mastercard uses standard contractual clauses approved by the EU Commission (= Art. 46 Para. 2 and 3 GDPR). These clauses oblige Mastercard to comply with the EU data protection level when processing relevant data even outside the EU. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the clauses here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.
You can find out more about the data processed through the use of Mastercard in the Privacy Policy at https://www.mastercard.de/de-de/datenschutz.html.
PayPal privacy policy
We use the online payment service PayPal on our website. The service provider is the American company PayPal Inc. The company PayPal Europe (S.à rl et Cie, SCA, 22-24 Boulevard Royal, L-2449 Luxembourg) is responsible for the European area.
PayPal also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially in the USA) or for data transfer there, PayPal uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, PayPal undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
You can find out more information about the standard contractual clauses and the data processed through the use of PayPal Marketing Solutions in the Privacy Policy at https://www.paypal.com/c2/webapps/mpp/ua/privacy-full.
Shop Pay Privacy Policy
We use Shop Pay, a service for online payment solutions, on our website. The service provider is the American company Shopify Inc. The company Shopify International Limited (Victoria Buildings, 2nd floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland) is responsible for the European area.
We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. Data processing is essentially carried out by Shop Pay. This can result in data not being processed and stored anonymously. Furthermore, US government authorities may have access to individual data. It may also happen that this data is linked to data from other Shop Pay services where you have a user account.
You can find out more about the data processed through the use of Shop Pay in the Privacy Policy at https://www.shopify.de/legal/datenschutz.
Skrill privacy policy
We use Skrill, an online payment solution service, on our website. The service provider is the British company Skrill Limited, 25 Canada Square, London E14 5LQ, Great Britain. You can find out more about the data that is processed through the use of Skrill in the Privacy Policy at https://www.skrill.com/de/fusszeile/datenpolitik/.
Sofortüberweisung data protection declarationSofortüberweisung data protection declaration summary
Data subjects: visitors to the website
Purpose: To optimize the payment process on our website
Processed data: Data such as name, address, bank details (account number, credit card number, passwords, TANs, etc.), IP address and contract data
You can find more details about this in the data protection declaration below
Storage period: Data is stored within the legal retention period
Legal basis: Art. 6 Para. 1 lit. c GDPR (Legal Obligation), Art. 6 Para. 1 lit. f GDPR (Legitimate Interests)What is an “immediate transfer”?
We offer the “Sofortüberweisung” payment method from Sofort GmbH for cashless payment on our website. Sofort GmbH has been part of the Swedish company Klarna since 2014, but has its headquarters in Germany, Theresienhöhe 12, 80339 Munich.
If you choose this payment method, personal data will, among other things, be transmitted to Sofort GmbH or Klarna, stored and processed there. With this data protection text we give you an overview of data processing by Sofort GmbH.
Sofortüberweisung is an online payment system that allows you to place an order via online banking. Payment processing is carried out by Sofort GmbH and we immediately receive information about the payment made. Any user who has an active online banking account with a PIN and TAN can use this method. Only a few banks do not yet support this payment method.
Why do we use “Sofortüberweisung” on our website?
Our goal with our website and our integrated online shop is to offer you the best possible service. In addition to the overall experience on the website and our offers, this also includes smooth, fast and secure payment processing for your orders. To ensure this, we use “Sofortüberweisung” as a payment system.
What data is stored by “Sofortüberweisung”?
If you make an instant transfer using the Sofort/Klarna service, data such as name, account number, sort code, subject, amount and date are stored on the company's servers. We also receive this information via the payment confirmation.
As part of the account coverage check, Sofort GmbH checks whether your account balance and overdraft credit limit cover the payment amount. In some cases, it is also checked whether instant transfers were successfully made in the last 30 days. Furthermore, your user identification (such as user number or contract number) is collected and stored in shortened (“hashed”) form and your IP address. For SEPA transfers, BIC and IBAN are also stored.
According to the company, no other personal data (such as account balances, sales data, credit limits, account lists, mobile phone numbers, authentication certificates, security codes or PIN/TAN) will be collected, stored or passed on to third parties.
Sofortüberweisung also uses cookies to make its own service more user-friendly. When you order a product, you will be redirected to the Sofort or Klarna website. After successful payment you will be redirected to our thank you page. The following three cookies are set here:
Name: SOFUEB
Value: e8cipp378mdscn9e17kajlfhv7321912445-5
Purpose: This cookie stores your session ID.
Expiry date: after ending the browser session
Name: User[user_cookie_rules]
Value: 1
Purpose: This cookie stores your consent to the use of cookies.
Expiry date: after 10 years
Name: _ga
Value: GA1.2.69759879.1589470706
Purpose: By default, analytics.js uses the _ga cookie to store the user ID. Basically, it is used to distinguish website visitors. This is a cookie from Google Analytics.
Expiry date: after 2 years
Note: The cookies listed here do not claim to be complete. It is always possible that Sofortüberweisung also uses other cookies.
How long and where is the data stored?
All data collected will be stored within the legal retention period. This obligation can last between three and ten years.
Klarna/Sofort GmbH attempts to store data only within the EU or the European Economic Area (EEA). If data is transferred outside the EU/EEA, data protection must comply with the GDPR and the country must be subject to an EU adequacy decision.
How can I delete my data or prevent data storage?
You can revoke your consent for Klarna to process personal data at any time. You also always have the right to information, correction and deletion of your personal data. To do this, you can simply contact the company's data protection team by email at datenschutz@sofort.com.
You can manage, delete or deactivate possible cookies that Sofortüberweisung uses in your browser. Depending on your preferred browser, this works in different ways. Under the “Cookies” section you will find the corresponding links to the relevant instructions for the most popular browsers.
Legal basis
To process contractual or legal relationships (Art. 6 Para. 1 lit. b GDPR), we also offer the payment service provider Sofortüberweisung in addition to conventional banks/credit institutions. The successful use of the service also requires your consent (Art. 6 Para. 1 lit. a GDPR) insofar as the approval of cookies is necessary for the use.
If you would like to find out more about data processing through the “Sofortüberweisung” company Sofort GmbH, we recommend the data protection declaration at https://www.sofort.de/datenschutz.html.
Stripe Privacy PolicyStripe Privacy Policy Summary
Affected: Visitors to the website
Purpose: To optimize the payment process on our website
Processed data: Data such as name, address, bank details (account number, credit card number, passwords, TANs, etc.), IP address and contract data
You can find more details about this in this data protection declaration
Storage period: Data is stored until the collaboration with Stripe is terminated
Legal basis: Art. 6 Para. 1 lit. b GDPR (contract processing), Art. 6 Para. 1 lit. a GDPR (consent) What is Stripe?
We use a payment tool from the American technology company and online payment service Stripe on our website. Stripe Payments Europe (Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland) is responsible for customers within the EU. This means that if you choose Stripe as your payment method, your payment will be processed via Stripe Payments. Data required for the payment process is forwarded to Stripe and stored. In this data protection declaration we give you an overview of this data processing and storage by Stripe and explain why we use Stripe on our website.
The technology company Stripe offers payment solutions for online payments. With Stripe it is possible to accept credit and debit card payments in our webshop. Stripe handles the entire payment process. A big advantage of Stripe is that you never have to leave our website or shop during the payment process and payment processing is very quick.
Why do we use Stripe for our website?
Of course, we want to offer the best possible service with our website and our integrated online shop so that you feel comfortable on our site and take advantage of our offers. We know that your time is valuable and that payment processing in particular must work quickly and smoothly. In addition to our other payment providers, we have found a partner in Stripe that ensures secure and fast payment processing.
What data does Stripe store?
If you choose Stripe as your payment method, your personal data will also be transmitted to Stripe and stored there. This is transaction data. This data includes the payment method (i.e. credit card, debit card or account number), bank sort code, currency, the amount and the date of payment. During a transaction, your name, email address, billing or shipping address and sometimes your transaction history may also be transmitted. This data is necessary for authentication. In addition to technical data about your device (such as IP address), Stripe may also collect your name, address, telephone number and your country for fraud prevention, financial reporting and in order to be able to fully offer its services.
Stripe does not sell any of your information to independent third parties, such as marketing agencies or other companies unaffiliated with Stripe. However, the data can be forwarded to internal departments, a limited number of external Stripe partners or to comply with legal regulations. Stripe also uses cookies to collect data. Here you will find a selection of cookies that Stripe can set during the payment process:
Name: m
Value: edd716e9-d28b-46f7-8a55-e05f1779e84e040456321912445-5
Purpose: This cookie appears when you select the payment method. It stores and recognizes whether you access our website via a PC, tablet or smartphone.
Expiry date: after 2 years
Name: __stripe_mid
Value: fc30f52c-b006-4722-af61-a7419a5b8819875de9321912445-1
Purpose: This cookie is required to carry out a credit card transaction. To do this, the cookie stores your session ID.
Expiry date: after one year
Name: __stripe_sid
Value: 6fee719a-c67c-4ed2-b583-6a9a50895b122753fe
Purpose: This cookie also stores your ID and is used by Stripe for the payment process on our website.
Expiry date: after the session expires
How long and where is the data stored?
Personal data is generally stored for the duration of the service provision. This means that the data will be stored until we terminate the collaboration with Stripe. However, in order to fulfill legal and regulatory obligations, Stripe may also store personal data for the duration of the service provision. Since Stripe is a global company, the data may also be stored in any country where Stripe offers services. This means that data can also be stored outside your country, for example in the USA.
How can I delete my data or prevent data storage?
Please note that when using this tool, your data may also be stored and processed outside the EU. Most third countries (including the USA) are not considered safe under current European data protection law. Data may therefore not simply be transferred to unsafe third countries, stored there and processed unless there are appropriate guarantees (such as EU standard contractual clauses) between us and the non-European service provider.
You always have the right to information, correction and deletion of your personal data. If you have any questions, you can also contact the Stripe team at any time via https://support.stripe.com/contact/email.
You can delete, deactivate or manage cookies that Stripe uses for its functions in your browser. Depending on which browser you use, this works in different ways. Under the “Cookies” section you will find the corresponding links to the relevant instructions for the most popular browsers.
Legal basis
In addition to conventional banks/credit institutions, we also offer the payment service provider Stripe to process contractual or legal relationships (Art. 6 Para. 1 lit. b GDPR). The successful use of the service also requires your consent (Art. 6 Para. 1 lit. a GDPR) insofar as the approval of cookies is necessary for the use.
Stripe also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As a basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, Stripe uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Stripe undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
You can find out more information about the standard contractual clauses and the data processed through the use of Stripe in the Privacy Policy at https://stripe.com/at/privacy.
Unzer privacy policy
We use the payment provider Unzer on our website. The service provider is the German company Unzer GmbH, Vangerowstraße 18, 69115 Heidelberg, Germany. You can find out more about the data processed through the use of Unzer in the Privacy Policy at https://www.unzer.com/de/datenschutz/.
Visa Privacy Policy
We use Visa, a global payment provider, on our website. The service provider is the American company Visa Inc. The company Visa Europe Services Inc. (1 Sheldon Square, London W2 6TT, Great Britain) is responsible for the European area.
Visa also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As a basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially in the USA) or for data transfer there, Visa uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Visa undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
You can find more information about Visa's standard contractual clauses at https://www.visa.de/nutzkonzeption/visa-globale-datenschutzmitigung/mitigung-zu-staatigkeitsfragen-fur-den-ewr.html.
You can find out more about the data that is processed through the use of Visa in the Privacy Policy at https://www.visa.de/USE Conditions/visa-privacy-center.html.
Audio & Video IntroductionAudio & Video Privacy Policy Summary
Data subjects: visitors to the website
Purpose: Optimization of our service
Data processed: Data such as contact details, user behavior data, information about your device and your IP address may be stored.
You can find more details about this in the relevant data protection texts below.
Storage period: Data is generally stored as long as it is necessary for the service purpose
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests) What are audio and video elements?
We have integrated audio and video elements onto our website so that you can watch videos or listen to music/podcasts directly via our website. The content is provided by service providers. All content is also obtained from the providers' corresponding servers.
These are integrated functional elements of platforms such as YouTube, Vimeo or Spotify. The use of these portals is usually free, but paid content can also be published. With the help of these integrated elements you can listen to or view the respective content on our website.
If you use audio or video elements on our website, your personal data may also be transmitted to the service providers, processed and stored.
Why do we use audio & video elements on our website?
Of course we want to provide you with the best offer on our website. And we are aware that content is no longer just conveyed in text and static images. Instead of simply giving you a link to a video, we offer you audio and video formats directly on our website that are entertaining or informative, and ideally both. This expands our service and makes it easier for you to access interesting content. In addition to our texts and images, we also offer video and/or audio content.
What data is stored by audio & video elements?
When you visit a page on our website that has, for example, an embedded video, your server connects to the service provider's server. Your data will also be transferred to the third-party provider and stored there. Some data is collected and stored regardless of whether you have an account with the third party or not. This usually includes your IP address, browser type, operating system, and other general information about your device. Furthermore, most providers also collect information about your web activity. This includes session duration, bounce rate, which button you clicked on or which website you use the service to use. All of this information is usually stored via cookies or pixel tags (also called web beacons). Pseudonymized data is usually stored in cookies in your browser. You can always find out exactly which data is stored and processed in the data protection declaration of the respective provider.
Duration of data processing
You can find out exactly how long the data is stored on the third-party servers either in the data protection text of the respective tool below or in the provider's data protection declaration. In principle, personal data is only processed for as long as it is absolutely necessary to provide our services or products. This usually also applies to third-party providers. You can usually assume that certain data will be stored on the third-party servers for several years. Data can be stored for different lengths of time, especially in cookies. Some cookies are deleted after you leave the website, others can be stored in your browser for several years.
Right to object
You also have the right and the opportunity to revoke your consent to the use of cookies or third-party providers at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection through cookies by managing, deactivating or deleting cookies in your browser. The lawfulness of processing until revocation remains unaffected.
Since cookies are usually used through the integrated audio and video functions on our site, you should also read our general data protection declaration about cookies. You can find out more about how your data is handled and stored in the data protection declarations of the respective third-party providers.
Legal basis
If you have agreed that your data can be processed and stored through integrated audio and video elements, this consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. However, we only use the integrated audio and video elements if you have given your consent.
SoundCloud Privacy PolicySoundCloud Privacy Policy Summary
Affected: Visitors to the website
Purpose: Optimization of our service
Data processed: Data such as contact details, user behavior data, information about your device and your IP address may be stored.
You can find more details about this further down in this data protection declaration.
Storage period: Data is generally stored as long as it is necessary for the service purpose
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests)What is SoundCloud?
On our website we use functions (widgets) from the social media network SoundCloud from SoundCloud Limited, Rheinsberger Str. 76/77, 10115 Berlin, Germany. You can recognize the widgets by the familiar orange logo. By using functions such as playing music, data is transmitted to SoundCloud, stored and evaluated. In this data protection declaration we will show you what data is involved, why we use SoundCloud and how you can manage or prevent your data or data transfer.
The social media network SoundCloud is an online music platform that is used to exchange and distribute audio files. Musicians or podcasters offer their audio files for download on SoundCloud. You can also use SoundCloud to embed the audio files in other websites. And that's exactly what we did. Typical for SoundCloud are the graphical representations of the audio files in wave form and the comment bar. Registered users can listen to and comment on pieces of music or podcasts at any time.
Why do we use SoundCloud on our website?
Our goal is to provide you with the best possible service on our website. By this we don’t just mean our products or services. Overall customer service also includes how comfortable you feel on our website and how helpful our website is for you. Thanks to the embedded SoundCloud playback function, we can deliver acoustic content directly and free to your door. You don't have to follow any link first to listen to an audio file, you can start right away on our website.
What data is stored on SoundCloud?
As soon as you visit one of our websites that has an integrated widget (like or share button or play function), your browser connects to a SoundCloud server. Your data can be transferred to SoundCloud, managed and stored there. For example, this is how SoundCloud learns your IP address and which site (in this case ours) you visited and when. If you have a SoundCloud account and are logged in while browsing our website, the data collected will be assigned directly to your account/account. You can only prevent this by logging out of SoundCloud while you are on our website. In addition to the information mentioned above, the cookies also store data about your user behavior. For example, whenever you click a button, play or pause a piece of music, this information is stored in the cookies. The widget or SoundCloud is therefore able to recognize you and sometimes the widget is also used to provide you with personalized content. SoundCloud not only uses its own cookies, but also cookies from third-party providers such as Facebook or Google Analytics. These cookies help the company to obtain more information about your behavior on external websites and its own platform. As website operators, we do not receive any information about your user behavior from the cookies used by SoundCloud. The data transfer and therefore also the information about technical devices and your behavior on the website takes place between you and SoundCloud.
Below we show cookies that were set when you visit a website that has integrated SoundCloud functions. This list is just an example of possible cookies and cannot claim to be complete. In this example, the user does not have a SoundCloud account:
Name: sc_anonymous_id
Value: 208165-986996-398971-423805321912445-0
Purpose: This cookie makes it possible to integrate files or other content into websites and stores a user ID.
Expiry date: after 10 years
Annotation:
The cookie sc_anonymous_id is set immediately when you are on one of our websites that has a Soundcloud function built in. You don't have to interact with the function yet.
Name: __qca
Value: P0-1223379886-1579605792812321912445-7
Purpose: This cookie is a third-party cookie from Quantcast and collects data such as how often you visit the site or how long you stay on the site. The collected information is then shared with SoundCloud.
Expiry date: after one year
Name: Sclocale
Value: de
Purpose: The cookie saves the language setting that you have preset.
Expiry date: after one year
Name: _soundcloud_session
Value: /
Purpose: We were unable to find out any specific information about this cookie.
Expiry date: after the end of the session
Name: _session_auth_key
Value: /
Purpose: With the help of the cookie, session information (i.e. user behavior) can be saved and a client request can be authenticated.
Expiry date: after 10 years
SoundCloud also uses other third-party cookies such as _fbp, _ga, gid from Facebook and Google Analytics. SoundCloud uses all the information stored in the cookies to improve its services and display personalized advertising.
How long and where is the data stored?
In principle, the data collected remains stored on SoundCloud as long as a user account exists or as long as it is necessary for SoundCloud to achieve its business goals. How long exactly is stored changes depending on the context and legal obligations. Even if you do not have an account and personal data has been stored, you have the right to request data deletion.
How can I delete my data or prevent data storage?
If you have a SoundCloud account, you can manage data processing or delete your entire account via “Settings”. You can also manage, delete or deactivate cookies in your browser according to your needs. The approach always depends on the browser you use. If you decide to delete or deactivate cookies, please note that not all functions may then be available. Under the “Cookies” section you will find the corresponding links to the relevant instructions for the most popular browsers.
Legal basis
If you have agreed that your data can be processed and stored through integrated SoundCloud elements, this consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. However, we only use the integrated SoundCloud elements if you have given your consent. SoundCloud also sets cookies on your browser to store data. We therefore recommend that you read our data protection text about cookies carefully and view the data protection declaration or the cookie guidelines of the respective service provider.
We hope we have given you a good overview of SoundCloud traffic. If you would like to learn more about SoundCloud's privacy policy and general data handling, we recommend reading the company's privacy policy at https://soundcloud.com/pages/privacy.
Vimeo Privacy PolicyVimeo Privacy Policy Summary
Data subjects: visitors to the website
Purpose: Optimization of our service
Data processed: Data such as contact details, user behavior data, information about your device and your IP address may be stored.
You can find more details about this further down in this data protection declaration.
Storage period: Data is generally stored as long as it is necessary for the service purpose
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests)What is Vimeo?
We also use videos from Vimeo on our website. The video portal is operated by Vimeo LLC, 555 West 18th Street, New York, New York 10011, USA. With the help of a plug-in, we can show you interesting video material directly on our website. Certain data from you may be transferred to Vimeo. In this data protection declaration we will show you what data is involved, why we use Vimeo and how you can manage or prevent your data or data transfer.
Vimeo is a video platform that was founded in 2004 and has enabled streaming videos in HD quality since 2007. Since 2015 it has also been possible to stream in 4k Ultra HD. The portal is free to use, but paid content can also be published. Compared to the market leader YouTube, Vimeo places particular emphasis on high-quality content. On the one hand, the portal offers a lot of artistic content such as music videos and short films, but on the other hand it also offers useful documentaries on a wide variety of topics.
Why do we use Vimeo on our website?
The aim of our website is to provide you with the best possible content. And as easily accessible as possible. Only when we have achieved this will we be satisfied with our service. The video service Vimeo helps us achieve this goal. Vimeo offers us the opportunity to present you high-quality content directly on our website. Instead of just giving you a link to an interesting video, you can watch the video right away with us. This expands our service and makes it easier for you to access interesting content. In addition to our texts and images, we also offer video content.
What data is stored on Vimeo?
When you access a page on our website that has a Vimeo video embedded, your browser connects to Vimeo's servers. This results in a data transfer. This data is collected, stored and processed on the Vimeo servers. Regardless of whether you have a Vimeo account or not, Vimeo collects information about you. This includes your IP address, technical information about your browser type, your operating system or very basic device information. Vimeo also stores information about which website you use the Vimeo service and what actions (web activities) you carry out on our website. These web activities include, for example, session duration, bounce rate or which button you clicked on our website with the built-in Vimeo function. Vimeo can track and store these actions using cookies and similar technologies.
If you are logged in to Vimeo as a registered member, more data can usually be collected because more cookies may have already been set in your browser. In addition, your actions on our website are linked directly to your Vimeo account. To prevent this, you must log out of Vimeo while surfing our website.
Below we will show you cookies that are set by Vimeo when you are on a website with an integrated Vimeo function. This list is not exhaustive and assumes that you do not have a Vimeo account.
Name: player
Value: ""
Purpose: This cookie saves your settings before you play an embedded Vimeo video. This will give you your preferred settings the next time you watch a Vimeo video.
Expiry date: after one year
Name: vuid
Value: pl1046149876.614422590321912445-4
Purpose: This cookie collects information about your actions on websites that have embedded a Vimeo video.
Expiry date: after 2 years
Note: These two cookies are always set whenever you are on a website with an embedded Vimeo video. If you watch the video and click on the button, for example to “share” or “like” the video, further cookies will be set. These are also third-party cookies such as _ga or _gat_UA-76641-8 from Google Analytics or _fbp from Facebook. Which cookies are set here depends on your interaction with the video.
The following list shows a selection of possible cookies that are set when you interact with the Vimeo video:
Name: _abexps
Value: %5B%5D
Purpose: This Vimeo cookie helps Vimeo remember the settings you have made. This can be, for example, a preset language, a region or a user name. In general, the cookie stores data about how you use Vimeo.
Expiry date: after one year
Name: continuous_play_v3
Value: 1
Purpose: This cookie is a first-party cookie from Vimeo. The cookie collects information about how you use the Vimeo service. For example, the cookie stores when you pause or replay a video.
Expiry date: after one year
Name: _ga
Value: GA1.2.1522249635.1578401280321912445-7
Purpose: This cookie is a third-party cookie from Google. By default, analytics.js uses the _ga cookie to store the user ID. Basically, it is used to distinguish website visitors.
Expiry date: after 2 years
Name: _gcl_au
Value: 1.1.770887836.1578401279321912445-3
Purpose: This third-party cookie from Google AdSense is used to improve the effectiveness of advertisements on websites.
Expiry date: after 3 months
Name: _fbp
Value: fb.1.1578401280585.310434968
Purpose: This is a Facebook cookie. This cookie is used to display advertisements or advertising products from Facebook or other advertisers.
Expiry date: after 3 months
Vimeo uses this data, among other things, to improve its own service, to communicate with you and to set its own targeted advertising measures. Vimeo emphasizes on its website that only first-party cookies (i.e. cookies from Vimeo itself) are used for embedded videos as long as you do not interact with the video.
How long and where is the data stored?
Vimeo is headquartered in White Plains, New York State (USA). However, the services are offered worldwide. The company uses computer systems, databases and servers in the USA and also in other countries. Your data can therefore also be stored and processed on servers in America. The data will remain stored at Vimeo until the company no longer has an economic reason for storing it. The data is then deleted or anonymized.
How can I delete my data or prevent data storage?
You always have the option to manage cookies in your browser according to your preferences. For example, if you do not want Vimeo to set cookies and collect information about you, you can delete or deactivate cookies at any time in your browser settings. Depending on the browser, this works a little differently. Please note that after deactivating/deleting cookies, various functions may no longer be fully available. Under the “Cookies” section you will find the corresponding links to the relevant instructions for the most popular browsers.
If you are a registered Vimeo member, you can also manage the cookies used in the Vimeo settings.
Legal basis
If you have agreed that your data can be processed and stored through integrated Vimeo elements, this consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. However, we only use the integrated Vimeo elements if you have given your consent. Vimeo also sets cookies in your browser to store data. We therefore recommend that you read our data protection text about cookies carefully and view the data protection declaration or the cookie guidelines of the respective service provider.
Vimeo also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially in the USA) or for data transfer there, Vimeo uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Vimeo undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
You can find more information about Vimeo's standard contractual clauses at https://vimeo.com/privacy#international_data_transfers_and_certain_user_rights.
You can find out more about the use of cookies at Vimeo at https://vimeo.com/cookie_policy; you can read information about data protection at Vimeo at https://vimeo.com/privacy.
YouTube Privacy PolicyYouTube Privacy Policy Summary
Data subjects: visitors to the website
Purpose: Optimization of our service
Data processed: Data such as contact details, user behavior data, information about your device and your IP address may be stored.
You can find more details about this further down in this data protection declaration.
Storage period: Data is generally stored as long as it is necessary for the service purpose
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests)What is YouTube?
We have integrated YouTube videos on our website. This means we can present you interesting videos directly on our site. YouTube is a video portal that has been a subsidiary of Google since 2006. The video portal is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you access a page on our website that has an embedded YouTube video, your browser automatically connects to the YouTube or Google servers. Various data is transferred (depending on the settings). Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all data processing in Europe.
Below we would like to explain to you in more detail what data is processed, why we have integrated YouTube videos and how you can manage or delete your data.
On YouTube, users can watch, rate, comment and upload videos for free. Over the last few years, YouTube has become one of the most important social media channels worldwide. So that we can display videos on our website, YouTube provides a code snippet that we have integrated into our site.
Why do we use YouTube videos on our website?
YouTube is the video platform with the most visitors and the best content. We strive to offer you the best possible user experience on our website. And of course interesting videos shouldn't be missing. With the help of our embedded videos, we provide you with other helpful content in addition to our texts and images. In addition, our website is easier to find on the Google search engine thanks to the embedded videos. Even if we place advertisements via Google Ads, thanks to the data collected, Google can only show these advertisements to people who are interested in our offers.
What data does YouTube store?
As soon as you visit one of our pages that has a YouTube video installed, YouTube sets at least one cookie that stores your IP address and our URL. If you are logged in to your YouTube account, YouTube can usually assign your interactions on our website to your profile using cookies. This includes data such as session duration, bounce rate, approximate location, technical information such as browser type, screen resolution or your internet provider. Other data may include contact details, any reviews, sharing content on social media or adding it to your favorites on YouTube.
If you are not signed in to a Google account or a YouTube account, Google stores data with a unique identifier associated with your device, browser or app. For example, your preferred language setting is retained. But much interaction data cannot be stored because fewer cookies are set.
In the following list we show cookies that were set in the browser in a test. On the one hand, we show cookies that are set without a logged in YouTube account. On the other hand, we show cookies that are set when the account is logged in. The list cannot claim to be complete because user data always depends on interactions on YouTube.
Name: YSC
Value: b9-CV6ojI5Y321912445-1
Purpose: This cookie registers a unique ID to store statistics of the video viewed.
Expiry date: after the end of the session
Name: PREF
Value: f1=50000000
Purpose: This cookie also registers your unique ID. Google receives statistics about how you use YouTube videos on our website via PREF.
Expiry date: after 8 months
Name: GPS
Value: 1
Purpose: This cookie registers your unique ID on mobile devices to track GPS location.
Expiry date: after 30 minutes
Name: VISITOR_INFO1_LIVE
Value: 95Chz8bagyU
Purpose: This cookie tries to estimate the user's bandwidth on our websites (with built-in YouTube video).
Expiry date: after 8 months
Other cookies that are set when you are logged in to your YouTube account:
Name: APISID
Value: zILlvClZSkqGsSwI/AU1aZI6HY7321912445-
Purpose: This cookie is used to create a profile about your interests. The data is used for personalized advertisements.
Expiry date: after 2 years
Name: CONSENT
Value: YES+AT.de+20150628-20-0
Purpose: The cookie stores the status of a user's consent to the use of various Google services. CONSENT also serves security purposes to check users and protect user data from unauthorized attacks.
Expiry date: after 19 years
Name: HSID
Value: AcRwpgUik9Dveht0I
Purpose: This cookie is used to create a profile about your interests. This data helps to display personalized advertising.
Expiry date: after 2 years
Name: LOGIN_INFO
Value: AFmmF2swRQIhALLl6aL…
Purpose: This cookie stores information about your login data.
Expiry date: after 2 years
Name: SAPISID
Value: 7oaPxoG-pZsJuuF5/AnUdDUIsJ9iJz2vdM
Purpose: This cookie works by uniquely identifying your browser and device. It is used to create a profile about your interests.
Expiry date: after 2 years
Name: SID
Value: oQfNKjAsI321912445-
Purpose: This cookie stores your Google account ID and your last login time in digitally signed and encrypted form.
Expiry date: after 2 years
Name: SIDCC
Value: AN0-TYuqub2JOcDTyL
Purpose: This cookie stores information about how you use the website and what advertising you may have seen before visiting our site.
Expiry date: after 3 months
How long and where is the data stored?
The data that YouTube receives and processes from you is stored on Google servers. Most of these servers are located in America. At https://www.google.com/about/datacenters/inside/locations/?hl=de you can see exactly where the Google data centers are located. Your data is distributed across the servers. This means that the data can be accessed more quickly and is better protected against manipulation.
Google stores the data collected for different lengths of time. You can delete some data at any time, others are automatically deleted after a limited period of time, and others are stored by Google for a longer period of time. Some data (such as My Activity items, photos or documents, products) stored in your Google Account remains stored until you delete it. Even if you're not signed in to a Google Account, you can delete some data associated with your device, browser, or app.
How can I delete my data or prevent data storage?
In principle, you can delete data in your Google account manually. With the automatic deletion function of location and activity data introduced in 2019, information is stored for either 3 or 18 months and then deleted, depending on your decision.
Regardless of whether you have a Google account or not, you can configure your browser to delete or deactivate Google cookies. Depending on which browser you use, this works in different ways. Under the “Cookies” section you will find the corresponding links to the relevant instructions for the most popular browsers.
If you generally do not want cookies, you can set your browser so that it always informs you when a cookie is to be set. This means you can decide for each individual cookie whether you allow it or not.
Legal basis
If you have agreed that your data can be processed and stored through integrated YouTube elements, this consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. However, we only use the integrated YouTube elements if you have given your consent. YouTube also sets cookies in your browser to store data. We therefore recommend that you read our data protection text about cookies carefully and view the data protection declaration or the cookie guidelines of the respective service provider.
YouTube also processes data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As a basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, YouTube uses standard contractual clauses approved by the EU Commission (= Article 46, Paragraph 2 and 3 GDPR). These clauses oblige YouTube to comply with the EU data protection level when processing relevant data even outside the EU. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the clauses here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.
Since YouTube is a subsidiary of Google, there is a common data protection declaration. If you would like to find out more about how your data is handled, we recommend the data protection declaration at https://policies.google.com/privacy?hl=de.
YouTube Subscribe Button Privacy Policy
We have installed the YouTube subscribe button on our website. You can usually recognize the button by the classic YouTube logo. The logo shows the words “Subscribe” or “YouTube” in white letters against a red background and the white “Play symbol” to the left of it. The button can also be shown in a different design.
Our YouTube channel always offers you funny, interesting or exciting videos. With the built-in “Subscribe button” you can subscribe to our channel directly from our website and do not have to go to the YouTube website specifically. We want to make access to our comprehensive content as easy as possible for you. Please note that this allows YouTube to store and process your data.
If you see a built-in subscription button on our site, YouTube - according to Google - sets at least one cookie. This cookie stores your IP address and our URL. YouTube can also find out information about your browser, your approximate location and your default language. In our test, the following four cookies were set without being logged in to YouTube:
Name: YSC
Value: b9-CV6ojI5321912445Y
Purpose: This cookie registers a unique ID to store statistics of the video viewed.
Expiry date: after the end of the session
Name: PREF
Value: f1=50000000
Purpose: This cookie also registers your unique ID. Google receives statistics about how you use YouTube videos on our website via PREF.
Expiry date: after 8 months
Name: GPS
Value: 1
Purpose: This cookie registers your unique ID on mobile devices to track GPS location.
Expiry date: after 30 minutes
Name: VISITOR_INFO1_LIVE
Value: 32191244595Chz8bagyU
Purpose: This cookie tries to estimate the user's bandwidth on our websites (with built-in YouTube video).
Expiry date: after 8 months
Note: These cookies were set after a test and cannot claim to be complete.
If you are logged into your YouTube account, YouTube can store many of your actions/interactions on our website using cookies and assign them to your YouTube account. For example, YouTube receives information about how long you surf our site, what browser type you use, what screen resolution you prefer or what actions you take.
YouTube uses this data on the one hand to improve its own services and offers and on the other hand to provide analyzes and statistics for advertisers (who use Google Ads).
Recruiting Tools IntroductionRecruiting Tools Privacy Policy Summary
Affected: Users who complete an application process online or use a recruiting tool
Purpose: Processing an application process
Data processed: Data such as name, address, contact details, email address or your telephone number. You can find more details about this in the recruiting tool used.
Storage period: if the application is successful, until the end of the employment relationship. Otherwise, the data will be deleted after the application process.
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. b GDPR (contract), Art. 9 Para. 2 lit. a. GDPR (Special Categories Processing)What are recruiting tools?
Various companies offer software programs that can make the application process much easier. Most systems offer filter options to search through databases of potential candidates. This allows us to quickly and efficiently find employees who fit our company. Your personal data is transmitted, stored and managed both via online forms and recruiting tools. In this general text, in addition to recruiting tools, we also refer to the classic application process via email or online form. You can find more detailed information about the recruiting tools in the data protection declarations of the respective providers.
Why do we use recruiting tools?
To search for suitable applicants and to administer all application documents, we use software programs and platforms that specialize in application management, taking all legal guidelines into account. So-called recruiting tools usually make the application process easier because the software takes over many administrative tasks and optimizes processes in the application process. In some cases, this allows us to find suitable employees for our company more quickly.
For the conditions of the recruiting process, we refer you to the respective job advertisements in detail.
Which data is processed?
If you apply to us, you will of course also have to provide us with your data so that we can assess the application accordingly. The exact information you provide to us depends on the job advertisement or the information required in the online form.
This usually involves data such as name, address, date of birth and proof of your qualifications required for the job. During the application process, not only the usual personal data such as name or address may be transmitted, but also information about your health or your ethnic origin may be requested so that we and you can exercise your rights in relation to labor law, social security and social protection exercise and at the same time be able to fulfill the corresponding obligations. This data is called special category data.
The data or your application will be sent to us encrypted via the online form. Alternatively, you can also send your application to us by email. If you choose this option, the data will be transmitted in encrypted form, but not stored in encrypted form by the sent and received server.
Duration of data processing
The data you provide can be further processed by us for an employment relationship if your application is successful. If the application does not meet your expectations, we will delete the data received. Even if you withdraw your application, this data will be deleted. If you agree to be included in our applicant pool, we will store your data collected in this context until you leave the applicant pool. The same rules apply to withdrawing as to withdrawing your consent.
Right to object
You also always have the right and the opportunity to revoke your consent. So that we can answer any questions you may have about the application and meet our obligations to provide proof, the data will be deleted after 6 months at the latest. We archive invoices for possible reimbursement of travel expenses due to tax regulations.
Legal basis
If we include you in our application pool, this happens on the basis of your consent (Art. 6 Para. 1 lit. a GDPR). We would like to point out that your consent to our application pool is voluntary, has no influence on the application process and you have the option to revoke your consent at any time.
In the case of protecting vital interests, data processing takes place in accordance with Article 9 Paragraph 2 Letter c. GDPR. For the purposes of health care, occupational medicine, medical diagnostics, care or treatment in the health or social sector or for the administration of systems and services in the health or social sector, personal data is processed in accordance with Art. 9 Para. 2 lit. H. GDPR. If you voluntarily provide data in the special categories, the processing will take place on the basis of Article 9 Paragraph 2 Letter a. GDPR.
You can find information about the special recruiting tools – if available – in the following sections.
Facebook Jobs Privacy Policy
We use the job management tool Facebook Jobs. The service provider is the American company Facebook Inc. The company Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland is responsible for the European area.
Facebook also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As a basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, Facebook uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Facebook undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
The Facebook data processing conditions, which correspond to the standard contractual clauses, can be found at https://www.facebook.com/legal/terms/dataprocessing.
You can find out more about the data that is processed through the use of Facebook in the data protection declaration at https://www.facebook.com/policy.php.
LinkedIn Recruiter privacy policy
We use the recruiting tool LinkedIn Recruiter on our website. The service provider is the American company LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA.
LinkedIn also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As a basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, LinkedIn uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, LinkedIn undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
You can find more information about the standard contractual clauses at LinkedIn at https://www.linkedin.com/help/linkedin/answer/62538/datenubertragung-aus-der-eu-dem-ewr-und-der-schweiz?lang=de.
You can find out more about the data processed through the use of LinkedIn Recruiter in the data protection declaration at https://de.linkedin.com/legal/privacy-policy.
Monster Privacy Policy
We use the recruiting tool Monster. The service provider is the Austrian company Monster Worldwide Austria GmbH, Neubaugasse 43/1/1-2, 1070 Vienna, Austria. You can find out more about the data processed through the use of Monster in the data protection declaration at https://www.monster.at/datenschutz/kurzversion/inside2.aspx.
Stepstone privacy policy
We use StepStone, an applicant management software. The service provider is the Austrian company StepStone Österreich GmbH, Prinz-Eugen-Straße 8-10, A-1040 Vienna, Austria. You can find out more about the data that is processed through the use of StepStone in the data protection declaration at https://www.stepstone.at/Ueber-StepStone/legal-notes/datenschutzerklarung/.
Xing E-Recruiting data protection declaration
We use the recruiting tool Xing E-Recruiting on our website. The service provider is the German company New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany. You can find out more about the data processed through the use of Xing E-Recruiting in the data protection declaration at https://privacy.xing.com/de/datenschutzerklaerung.
Miscellaneous IntroductionMiscellaneous Privacy Policy Summary
Affected: Visitors to the website
Purpose: To improve the user experience
Data processed: Which data is processed depends largely on the services used. This is usually an IP address and/or technical data. You can find more details about the tools used in each case.
Storage duration: depends on the tools used
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests) What falls under “other”?
The “Other” category includes those services that do not fit into one of the categories mentioned above. These are usually various plugins and integrated elements that improve our website. As a rule, these functions are obtained from third parties and integrated into our website. For example, these are web search services such as Algolia Place, Giphy, Programmable Search Engine or online services for weather data such as OpenWeather.
Why do we use other third parties?
With our website we want to offer you the best web offering in our industry. A website has long been more than just a business card for a company. Rather, it is a place designed to help you find what you are looking for. In order to make our website even more interesting and helpful for you, we use various third-party services.
Which data is processed?
Whenever elements are integrated into our website, your IP address will be transmitted to the respective provider, stored and processed there. This is necessary because otherwise the content will not be sent to your browser and therefore will not be displayed accordingly. It may also happen that service providers also use pixel tags or web beacons. These are small graphics on websites that record a log file and can also create analyzes of this file. With the information received, providers can improve their own marketing efforts. In addition to pixel tags, such information (such as which button you click or when you access which page) can also be stored in cookies. In addition to analysis data about your web behavior, technical information such as your browser type or operating system can also be stored there. Some providers can also link the data obtained with other internal services or with third-party providers. Each provider handles your data differently. We therefore recommend that you carefully read the data protection declarations of the respective services. We generally strive to only use services that handle the issue of data protection very carefully.
Duration of data processing
We will inform you below about the duration of data processing if we have further information. In general, we only process personal data for as long as it is absolutely necessary to provide our services and products.
Legal basis
If we ask you for your consent and you also agree that we may use the service, this is considered the legal basis for processing your data (Art. 6 Para. 1 lit. a GDPR). In addition to consent, we have a legitimate interest in analyzing the behavior of website visitors and thus improving our offering technically and economically. The legal basis for this is Article 6 Paragraph 1 Letter f GDPR (legitimate interests). However, we only use the tools if you have given your consent.
Information about the special tools - if available - can be found in the following sections.
Google Maps Privacy PolicyGoogle Maps Privacy Policy Summary
Affected: Visitors to the website
Purpose: Optimization of our service
Processed data: Data such as search terms entered, your IP address and also the latitude and longitude coordinates.
You can find more details about this further down in this data protection declaration.
Storage duration: depends on the data stored
Legal basis: Art. 6 Para. 1 lit. a GDPR (consent), Art. 6 Para. 1 lit. f GDPR (legitimate interests) What is Google Maps?
We use Google Maps from Google Inc. on our website. For Europe, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. With Google Maps we can show you locations better and thus adapt our service to your needs. By using Google Maps, data is transmitted to Google and stored on Google servers. Here we want to go into more detail about what Google Maps is, why we use this Google service, what data is stored and how you can prevent this.
Google Maps is an Internet mapping service from Google. Google Maps lets you find exact locations of cities, attractions, accommodations or businesses online using a PC, tablet or app. If companies are represented on Google My Business, other information about the company is displayed in addition to the location. In order to show how to get there, map sections of a location can be integrated into a website using HTML code. Google Maps shows the earth's surface as a road map or as an aerial or satellite image. Thanks to the Street View images and the high-quality satellite images, very precise representations are possible.
Why do we use Google Maps on our website?
All our efforts on this site aim to offer you a useful and meaningful time on our website. By integrating Google Maps, we can provide you with the most important information about various locations. You can see at a glance where our headquarters are. The directions always show you the best or fastest way to get to us. You can get directions for routes by car, public transport, walking or cycling. For us, providing Google Maps is part of our customer service.
What data does Google Maps store?
In order for Google Maps to fully offer its service, the company must record and store data from you. This includes, among other things, the search terms entered, your IP address and also the latitude and longitude coordinates. If you use the route planner function, the start address entered is also saved. However, this data storage happens on the Google Maps websites. We can only inform you about this, but have no influence. Since we have integrated Google Maps into our website, Google sets at least one cookie (name: NID) in your browser. This cookie stores data about your user behavior. Google primarily uses this data to optimize its services and to provide you with individual, personalized advertising.
The following cookie is set in your browser due to the integration of Google Maps:
Name: NID
Value: 188=h26c1Ktha7fCQTx8rXgLyATyITJ321912445-5
Purpose: NID is used by Google to tailor advertisements to your Google searches. With the help of the cookie, Google “remembers” your most frequently entered search queries or your previous interaction with advertisements. This means you always get tailor-made advertisements. The cookie contains a unique ID that Google uses to collect your personal preferences for advertising purposes.
Expiry date: after 6 months
Note: We cannot guarantee the completeness of the stored data. Changes can never be ruled out, especially when using cookies. In order to identify the cookie NID, a separate test page was created where only Google Maps was integrated.
How long and where is the data stored?
Google servers are located in data centers around the world. However, most of the servers are located in America. For this reason, your data is increasingly stored in the USA. You can read exactly where the Google data centers are located here: https://www.google.com/about/datacenters/inside/locations/?hl=de
Google distributes the data on various storage media. This means that the data can be accessed more quickly and is better protected against any attempts at manipulation. Each data center also has specific emergency programs. For example, if there are problems with Google's hardware or a natural disaster shuts down the servers, the data will almost certainly remain protected.
Google stores some data for a set period of time. For other data, Google only offers the option of deleting it manually. The company also anonymizes information (such as advertising data) in server logs by deleting part of the IP address and cookie information after 9 or 18 months.
How can I delete my data or prevent data storage?
With the automatic deletion of location and activity data introduced in 2019, location and web/app activity information is stored for either 3 or 18 months, depending on your choice, and then deleted. You can also manually delete this data from your history at any time using your Google account. If you want to completely prevent your location tracking, you must pause the “Web and app activity” section in your Google Account. Click “Data and Personalization” and then click the “Activity Settings” option. Here you can turn the activities on or off.
You can also deactivate, delete or manage individual cookies in your browser. Depending on which browser you use, this always works a little differently. Under the “Cookies” section you will find the corresponding links to the relevant instructions for the most popular browsers.
If you generally do not want cookies, you can set your browser so that it always informs you when a cookie is to be set. This means you can decide for each individual cookie whether you allow it or not.
Legal basis
If you have consented to Google Maps being used, the legal basis for the corresponding data processing is this consent. According to Article 6 Paragraph 1 Letter a of the GDPR (consent), this consent represents the legal basis for the processing of personal data, as may occur when it is collected by Google Maps.
We also have a legitimate interest in using Google Maps to optimize our online service. The corresponding legal basis for this is Article 6 Paragraph 1 Letter f GDPR (legitimate interests). However, we only use Google Maps if you have given your consent.
Google also processes your data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can pose various risks to the lawfulness and security of data processing.
As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, Google uses so-called standard contractual clauses (= Article 46, Paragraphs 2 and 3 of the GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Google undertakes to comply with European data protection standards when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision by the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
The Google Ads Data Processing Terms, which correspond to the standard contractual clauses, can be found at https://business.safety.google/adsprocessorterms/.
If you would like to find out more about Google's data processing, we recommend that you read the company's own privacy policy at https://policies.google.com/privacy?hl=de.
Reddit privacy policy
We use the social news aggregator Reddit for our website. The service provider is the American company Reddit Inc., 548 Market St. #16093, San Francisco, California 94104, USA.
Reddit also processes data in the USA, among other places. We would like to point out that, according to the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA.
This can pose various risks to the lawfulness and security of data processing. As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or for data transfer there, Reddit uses standard contractual clauses approved by the EU Commission (= Article 46, Paragraph 2 and 3 GDPR). These clauses oblige Reddit to comply with EU data protection levels when processing relevant data even outside the EU. These clauses are based on an implementing decision by the EU Commission.
You can find the resolution and the clauses here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.
You can find out more about the data processed through the use of Reddit in the Privacy Policy at https://www.redditinc.com/policies/privacy-policy.
Sendcloud privacy policy
We use Sendcloud, a shipping software for online shops, for our website. The service provider is the German company Sendcloud GmbH, Fürstenrieder Str. 70, 80686 Munich, Germany. You can find out more about the data that is processed through the use of Sendcloud in the data protection declaration at https://www.sendcloud.at/datenschutz/.
Spotify Music Player Widget Privacy Policy
We use the Spotify Music Player widget from the Spotify music platform on our website. The service provider is the Swedish company Spotify AB, Regeringsgatan 19, 111 53 Stockholm, Sweden. You can find out more about the data processed through the use of Spotify in the Privacy Policy at https://www.spotify.com/at/legal/privacy-policy/.
All texts are copyrighted.
Source: Created with AdSimple’s Privacy Generator
We frame everything.
Would you like to have something framed that we haven't done yet?
The final price always depends on the thickness of the picture frame we need for an item.
Here is a rough cost overview:
Picture frames up to 1.3cm deep - from 129,99€
Picture frames up to 3cm deep - from 169,99€
Picture frames up to 5cm deep - from 199,99€
Picture frames up to 10cm deep - from 299,99€