Privacy Policy

Introduction and overview

We have written this data protection declaration (version 23.08.2021-311294435) to explain to you, in accordance with the provisions of the General Data Protection Regulation (EU) 2016/679 and applicable national laws, which personal data (data for short) we as the person responsible - and that of Processors commissioned by us (e.g. provider) - process, will process in the future and what legitimate options you have. The terms used are to be understood as gender-neutral.

In short: We provide you with comprehensive information about the data that we process about you.

Data protection declarations usually sound very technical and use legal terminology. However, this data protection declaration is intended to describe the most important things to you as simply and transparently as possible. As far as transparency is beneficial, technical terms are explained in a reader-friendly manner, links to further information are provided and graphics are used. We are thus informing in clear and simple language that we only process personal data in the context of our business activities if there is a corresponding legal basis. This is certainly not possible if you make as brief, unclear and legal-technical explanations as possible, as they are often standard on the Internet when it comes to data protection. I hope you find the following explanations interesting and informative and maybe there is one or the other piece of information that you were not familiar with.

If you still have questions, we would like to ask you to contact the responsible body named below or in the imprint, to follow the links provided and to look at further information on third-party sites. You can of course also find our contact details in the imprint.

Scope of application

This data protection declaration applies to all personal data processed by us in the company and to all personal data processed by companies commissioned by us (contract processors). By personal data we mean information within the meaning of Art. 4 No. 1 GDPR such as the name, email address and postal address of a person. The processing of personal data ensures that we can offer and invoice our services and products, be it online or offline. The scope of this data protection declaration includes:

all online presences (websites, online shops) that we operate

Social media appearances and email communication

mobile apps for smartphones and other devices

In short: The data protection declaration applies to all areas in which personal data is processed in a structured manner in the company via the channels mentioned. If we enter into legal relationships with you outside of these channels, we will inform you separately if necessary.

Legal bases

In the following data protection declaration, we provide you with transparent information on the legal principles and regulations, i.e. the legal bases of the General Data Protection Regulation, which enable us to process personal data.

As far as EU law is concerned, we refer to REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of April 27, 2016. You can of course access this EU General Data Protection Regulation online on EUR-Lex, the gateway to the EU -Recht, read at https://eur-lex.europa.eu/legal-content/DE/TXT/?uri=celex%3A32016R0679.

We only process your data if at least one of the following conditions applies:

  1. Consent (Article 6 Paragraph 1 lit. a GDPR): You have given us your consent to process data for a specific purpose. An example would be the storage of the data you entered in a contact form.
  2. Contract (Article 6 Paragraph 1 lit.b GDPR): We process your data in order to fulfill a contract or pre-contractual obligations with you. For example, if we conclude a sales contract with you, we need personal information in advance.
  3. Legal obligation (Article 6 Paragraph 1 lit. c GDPR): If we are subject to a legal obligation, we will process your data. For example, we are legally required to keep invoices for bookkeeping. These usually contain personal data.
  4. Legitimate interests (Article 6 Paragraph 1 lit.f GDPR): In the case of legitimate interests that do not restrict your basic rights, we reserve the right to process personal data. For example, we have to process certain data in order to be able to operate our website securely and economically efficiently. This processing is therefore a legitimate interest.

Other conditions such as the taking of recordings in the public interest and the exercise of official authority as well as the protection of vital interests do not usually apply to us. If such a legal basis should be relevant, it will be shown at the appropriate point.

In addition to the EU regulation, national laws also apply:

In Austria this is the federal law for the protection of natural persons when processing personal data (Data Protection Law), DPL for short.

In Germany, the Federal Data Protection Act, or BDSG for short, applies.

If other regional or national laws apply, we will inform you about them in the following sections.

Contact details of the person responsible

If you have any questions about data protection, you will find the contact details of the responsible person or office below:

Nancy-Claire Heiber

Horse training

Eggerstedtstrasse 3

22765 Hamburg

Germany

Phone: +49 (0) 173-615 85 68

Email: info@nancy-heiber.de

VAT ID no .: On request

Storage period

The fact that we only store personal data for as long as is absolutely necessary for the provision of our services and products is a general criterion for us. This means that we delete personal data as soon as the reason for the data processing no longer exists. In some cases we are legally obliged to store certain data even after the original purpose no longer exists, for example for accounting purposes.

If you want your data to be deleted or if you revoke your consent to data processing, the data will be deleted as soon as possible and unless there is an obligation to store it.

We will inform you below about the specific duration of the respective data processing, provided we have further information.

Rights according to the General Data Protection Regulation

According to Article 13 GDPR, you have the following rights to ensure that data is processed fairly and transparently:

According to Article 15 GDPR, you have a right to information as to whether we are processing your data. If so, you have the right to receive a copy of the data and the following information:

for what purpose we carry out the processing;

the categories, i.e. the types of data that are processed;

who receives this data and, if the data is transferred to third countries, how security can be guaranteed;

the existence of the right to correction, deletion or restriction of processing and the right to object to processing;

that you can complain to a supervisory authority (links to these authorities can be found below);

the origin of the data, if we have not collected it from you;

whether profiling is carried out, i.e. whether data is automatically evaluated in order to arrive at a personal profile of you.

According to Article 16 GDPR, you have the right to correct the data, which means that we have to correct the data if you find errors.

According to Article 17 GDPR, you have the right to deletion ("right to be forgotten"), which specifically means that you can request the deletion of your data.

According to Article 18 GDPR, you have the right to restrict processing, which means that we are only allowed to save the data but not use it any longer.

According to Article 19 GDPR, you have the right to data portability, which means that we will provide you with your data in a common format on request.

According to Article 21 GDPR, you have a right of objection, which will result in a change in processing after enforcement.

If the processing of your data is based on Article 6 (1) (e) (public interest, exercise of official authority) or Article 6 (1) (f) (legitimate interest), you can object to the processing. We will then check as soon as possible whether we can legally comply with this contradiction.

If data is used to operate direct mail, you can object to this type of data processing at any time. We are then no longer allowed to use your data for direct marketing.

If data is used to carry out profiling, you can object to this type of data processing at any time. We are then no longer allowed to use your data for profiling.

According to Article 22 GDPR, you may have the right not to be subject to a decision based solely on automated processing (e.g. profiling).

In short: you have rights - do not hesitate to contact the person in charge listed above!

If you believe that the processing of your data violates data protection law or your data protection claims have been violated in any other way, you can complain to the supervisory authority. This is the data protection authority for Austria, whose website you can find at https://www.dsb.gv.at/. In Germany there is a data protection officer for each federal state. For more information, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI). The following local data protection authority is responsible for our company:

Hamburg data protection authority

State Commissioner for Data Protection: Prof. Dr. Johannes Caspar

Address: Ludwig-Erhard-Str. 22 7th floor, 20459 Hamburg

Telephone number: 040/428 54-40 40

Email address: mailbox@datenschutz.hamburg.de

Website: https://datenschutz-hamburg.de/

Web hosting

Web hosting summary

Affected: Visitors to the website

Purpose: professional hosting of the website and security of operation

Processed data: IP address, time of website visit, browser used and other data. You can find more details on this below or at the respective web hosting provider used.

Storage duration: depending on the respective provider,

but usually 2 weeks

Legal basis: Article 6 (1) (f) GDPR (legitimate interests)

What is web hosting?

When you visit websites these days, certain information - including personal data - is automatically created and stored, including on this website. This data should be processed as sparingly as possible and only with justification. By the way, by website we mean the entirety of all websites on a domain, i.e. everything from the start page (homepage) to the very last subpage (like this one here). By domain we mean example.de or musterbeispiel.com.

When you want to view a website on one screen, you use a program called a web browser. You probably know some web browsers by name: Google Chrome, Microsoft Edge, Mozilla Firefox, and Apple Safari.

This web browser has to connect to another computer where the website's code is stored: the web server. The operation of a web server is a complicated and time-consuming task, which is why this is usually done by professional providers, the providers. These offer web hosting and thus ensure reliable and error-free storage of website data.

When the browser establishes a connection on your computer (desktop, laptop, smartphone) and while data is being transferred to and from the web server, personal data may be processed.

On the one hand, your computer stores data, on the other hand, the web server must also store data for a period of time in order to ensure proper operation.

Why do we process personal data?

The purposes of data processing are:

  1. Professional hosting of the website and security of operation
  2. to maintain operational and IT security
  3. Anonymous evaluation of the access behavior to improve our offer and, if necessary, to prosecute or prosecute claims

Which data are processed?

Even while you are visiting our website, our web server, that is the computer on which this website is stored, usually automatically saves data such as

the complete Internet address (URL) of the website called up (e.g. https://www.beispielwebsite.de/beispielunterseite.html?tid=311294435)

Browser and browser version (e.g. Chrome 87)

the operating system used (e.g. Windows 10)

the address (URL) of the previously visited page (referrer URL) (e.g. https://www.beispielquellsite.de/vondabinichgekommen.html/)

the host name and the IP address of the device from which access is made (e.g. COMPUTERNAME and 194.23.43.121)

Date and Time

in files, the so-called web server log files

How long will data be stored?

As a rule, the above data is stored for two weeks and then automatically deleted. We do not pass on this data, but we cannot rule out that this data will be viewed by the authorities in the event of illegal behavior.

In short: your visit will be logged by our provider (company that runs our website on special computers (servers)), but we will not pass on your data without your consent!

Legal basis

The legality of the processing of personal data in the context of web hosting results from Art. 6 Para. 1 lit. and to be able to trace attacks and claims from them if necessary.

ALL-INKL data protection declaration

We use ALL-INKL for our website, including a web hosting provider. The service provider is the German company ALL-INKL.COM - Neue Medien Münnich, Hauptstrasse 68, 02742 Friedersdorf, Germany. You can find out more about the data processed through the use of ALL-INKL in the data protection declaration at https://all-inkl.com/datenschutzinformationen/.

Web analytics

We use ALL-INKL for our website, including a web hosting provider. The service provider is the German company ALL-INKL.COM - Neue Medien Münnich, Hauptstrasse 68, 02742 Friedersdorf, Germany. You can find out more about the data processed through the use of ALL-INKL in the data protection declaration at https://all-inkl.com/datenschutzinformationen/.

Web Analytics Privacy Policy Summary

Affected: Visitors to the website

Purpose: Evaluation of visitor information to optimize the website.

Processed data: Access statistics that contain data such as the location of access, device data, access duration and time, navigation behavior, click behavior and IP addresses. You can find more details about this in the web analytics tool used.

Storage period: depending on the web analytics tool used

Legal basis: Article 6 (1) (a) GDPR (consent), Article 6 (1) (f) GDPR (legitimate interests)

What is web analytics?

We use software on our website to evaluate the behavior of website visitors, known as web analytics or web analysis for short. In doing so, data is collected, which the respective analytic tool provider (also called tracking tool) stores, manages and processes. With the help of the data, analyzes of user behavior on our website are created and made available to us as the website operator. Most tools also offer various test options. For example, we can test which offers or content are best received by our visitors. We are showing you two different offers for a limited period of time. After the test (so-called A / B test) we know which product or which content our website visitors find more interesting. For such test procedures, as well as for other analytics procedures, user profiles can also be created and the data stored in cookies.

Why do we run web analytics?

With our website we have a clear goal in mind: we want to deliver the best website on the market for our industry. In order to achieve this goal, we want to offer the best and most interesting offer on the one hand and make sure that you feel completely comfortable on our website on the other hand. With the help of web analysis tools, we can take a closer look at the behavior of our website visitors and then improve our website accordingly for you and us. For example, we can see how old our visitors are on average, where they come from, when our website is most visited or which content or products are particularly popular. All of this information helps us to optimize the website and thus adapt it to your needs, interests and wishes.

Which data are processed?

The exact data that is saved naturally depends on the analysis tools used. However, as a rule, for example, what content you view on our website, which buttons or links you click, when you call up a page, which browser you use, with which device (PC, tablet, smartphone, etc.) you click Visit website or which computer system you are using. If you have agreed that location data may also be collected, this can also be processed by the web analysis tool provider.

Your IP address is also saved. According to the General Data Protection Regulation (GDPR), IP addresses are personal data. However, your IP address is usually stored pseudonymized (i.e. in an unrecognizable and abbreviated form). For the purpose of the tests, web analysis and web optimization, no direct data such as your name, age, address or e-mail address are stored. All of this data is stored pseudonymized if it is collected. In this way, you cannot be identified as a person.

How long the respective data is stored always depends on the provider. Some cookies only save data for a few minutes or until you leave the website, other cookies can save data for several years.

Duration of the data processing

We will inform you below about the duration of the data processing if we have further information. In general, we only process personal data for as long as is absolutely necessary for the provision of our services and products. If it is required by law, for example in the case of accounting, this storage period can also be exceeded.

Right to object

You also have the right and the option to revoke your consent to the use of cookies or third-party providers at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent cookies from collecting data by managing, deactivating or deleting cookies in your browser.

Legal basis

The use of web analytics requires your consent, which we obtained with our cookie popup. According to Art. 6 Paragraph 1 lit.

In addition to the consent, we have a legitimate interest in analyzing the behavior of website visitors and thus improving our offer technically and economically. With the help of web analytics, we recognize website errors, identify attacks and improve profitability. The legal basis for this is Article 6 (1) lit.f GDPR (legitimate interests). Nevertheless, we only use the tools if you have given your consent.

Since cookies are used in web analytics tools, we recommend that you also read our general data protection declaration on cookies. To find out which of your data is stored and processed, you should read the data protection declarations of the respective tools.

Information on special web analytics tools can be found - if available - in the following sections.

Google Optimize privacy policy

We use Google Optimize, a website optimization tool, on our website. The service provider is the American company Google Inc. For the European region, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services.

Google also processes data in the USA, among others. We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be associated with various risks to the legality and security of the data processing.

Google uses standard contractual clauses approved by the EU Commission as the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. especially in the USA) or data transfer there (= Art. 46, Paragraph 2 and 3 GDPR). These clauses oblige Google to comply with the EU level of data protection when processing relevant data outside the EU. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the clauses here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.

You can find out more about the data processed by using Google Optimize in the Privacy Policy at https://policies.google.com/privacy?hl=en-US.

Facebook-Pixel data protection declaration

We use the Facebook pixel from Facebook on our website. We have implemented a code for this on our website. The Facebook pixel is an excerpt from JavaScript code that loads a collection of functions with which Facebook can track your user actions, provided you have come to our website via Facebook ads. For example, if you purchase a product on our website, the Facebook pixel is triggered and saves your actions on our website in one or more cookies. These cookies enable Facebook to compare your user data (customer data such as IP address, user ID) with the data of your Facebook account. Then Facebook deletes this data again. The data collected is anonymous and cannot be viewed by us and can only be used in the context of advertising. If you are a Facebook user yourself and are logged in, your visit to our website is automatically assigned to your Facebook user account.

We want to show our services and products only to those people who are really interested in them. With the help of Facebook pixels, our advertising measures can be better tailored to your wishes and interests. In this way, Facebook users (provided they have allowed personalized advertising) see appropriate advertising. Furthermore, Facebook uses the collected data for analysis purposes and its own advertisements.

In the following we show you the cookies that were set on a test page by integrating Facebook pixels. Please note that these are only sample cookies. Different cookies are set depending on the interaction on our website.

Name: _fbp

Value: fb.1.1568287647279.257405483-6311294456-7

Purpose of use: This cookie uses Facebook to display advertising products.

Expiry Date: after 3 months

Name: fr

Value: 0aPf312HOS5Pboo2r..Bdeiuf… 1.0.Bdeiuf.

Purpose: This cookie is used so that Facebook pixels also work properly.

Expiry date: after 3 months

Name: comment_author_50ae8267e2bdf1253ec1a5769f48e062311294456-3

Value: Name of the author

Purpose: This cookie stores the text and the name of a user who leaves a comment, for example.

Expiry date: after 12 months

Name: comment_author_url_50ae8267e2bdf1253ec1a5769f48e062

Value: https% 3A% 2F% 2Fwww.testseite ...% 2F (URL of the author)

Purpose: This cookie stores the URL of the website, which the user enters in a text field on our website.

Expiry date: after 12 months

Name: comment_author_email_50ae8267e2bdf1253ec1a5769f48e062

Value: Author's email address

Purpose: This cookie saves the user's email address, provided that he has made it known on the website.

Expiry date: after 12 months

Note: The cookies mentioned above relate to individual user behavior. Changes to Facebook can never be ruled out, especially when using cookies.

If you are logged in to Facebook, you can change your settings for advertisements yourself at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. If you are not a Facebook user, you can basically manage your usage-based online advertising at http://www.youronlinechoices.com/de/praferenzmanagement/. There you have the option of deactivating or activating providers.

We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. The data processing takes place mainly through Facebook pixels. This can lead to data not being processed and stored anonymously. Furthermore, US government authorities may have access to individual data. It can also happen that this data is linked to data from other Facebook services with which you have a user account.

If you want to learn more about Facebook's data protection, we recommend the company's own data guidelines at https://www.facebook.com/policy.php.

Google Analytics privacy policy

Google Analytics Privacy Policy Summary

Affected: Visitors to the website

Purpose: Evaluation of visitor information to optimize the website.

Processed data: Access statistics that contain data such as the location of access, device data, access duration and time, navigation behavior, click behavior and IP addresses. You can find more details on this below in this data protection declaration.

Storage duration: depending on the properties used

Legal basis: Article 6 (1) (a) GDPR (consent), Article 6 (1) (f) GDPR (legitimate interests)

What is google analytics?

We use the analysis tracking tool Google Analytics (GA) from the American company Google Inc. on our website. For the European area, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. Google Analytics collects data about your actions on our website. For example, if you click on a link, this action is saved in a cookie and sent to Google Analytics. With the help of the reports we receive from Google Analytics, we can better tailor our website and our service to your needs. In the following, we will go into more detail about the tracking tool and, above all, inform you about which data is stored and how you can prevent this.

Google Analytics is a tracking tool that is used to analyze the traffic on our website. In order for Google Analytics to work, a tracking code is built into the code of our website. When you visit our website, this code records various actions that you carry out on our website. As soon as you leave our website, this data is sent to the Google Analytics server and stored there.

Google processes the data and we receive reports on your user behavior. These reports can include the following:

Target group reports: With target group reports, we get to know our users better and know more precisely who is interested in our service.

Ad reports: Ad reports make it easier for us to analyze and improve our online advertising.

Acquisition Reports: Acquisition reports give us helpful information on how we can get more people excited about our service.

Behavioral Reports: This is where we learn how you interact with our website. We can understand which route you take on our site and which links you click.

Conversion reports: Conversion is a process in which you carry out a desired action based on a marketing message. For example, when you go from being a pure website visitor to being a buyer or newsletter subscriber. With the help of these reports, we can find out more about how our marketing measures are received by you. This is how we want to increase our conversion rate.

Real-time reports: Here we always find out immediately what is happening on our website. For example, we can see how many users are reading this text.

Why do we use Google Analytics on our website?

Our goal with this website is clear: We want to offer you the best possible service. The statistics and data from Google Analytics help us to achieve this goal.

The statistically evaluated data show us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimize our site so that interested people can find it more easily on Google. On the other hand, the data helps us to better understand you as a visitor. We therefore know very well what we need to improve on our website in order to offer you the best possible service. The data also help us to carry out our advertising and marketing measures in a more individual and cost-effective manner. After all, it only makes sense to show our products and services to people who are interested in them.

Which data is saved by Google Analytics?

Google Analytics uses a tracking code to create a random, unique ID that is linked to your browser cookie. This is how Google Analytics recognizes you as a new user. The next time you visit our site, you will be recognized as a "returning" user. All collected data is saved together with this user ID. This is how it is possible to evaluate pseudonymous user profiles in the first place.

In order to be able to analyze our website with Google Analytics, a property ID must be inserted into the tracking code. The data is then saved in the corresponding property. The Google Analytics 4 property is standard for every newly created property. Alternatively, you can also create the Universal Analytics Property. Depending on the property used, data are stored for different lengths of time.

Tags such as cookies and app instance IDs measure your interactions on our website. Interactions are all types of actions that you carry out on our website. If you also use other Google systems (such as a Google account), data generated by Google Analytics can be linked to third-party cookies. Google does not pass on any Google Analytics data unless we, as the website operator, approve it. Exceptions may be made if required by law.

The following cookies are used by Google Analytics:

Name: _ga

Value: 2.1326744211.152311294456-5

Purpose: By default, analytics.js uses the _ga cookie to save the user ID. Basically, it is used to differentiate website visitors.

Expiry date: after 2 years

Name: _gid

Value: 2.1687193234.152311294456-1

Purpose: The cookie is also used to differentiate between website visitors

Expiry date: after 24 hours

Name: _gat_gtag_UA_ <property-id>

Value: 1

Purpose: Used to lower the request rate. If Google Analytics is provided via the Google Tag Manager, this cookie is given the name _dc_gtm_ <property-id>.

Expiry date: after 1 minute

Name: AMP_TOKEN

Value: no information

Purpose: The cookie has a token with which a user ID can be retrieved from the AMP client ID service. Other possible values indicate a logout, a request, or an error.

Expiry date: after 30 seconds up to a year

Name: __utma

Value: 1564498958.1564498958.1564498958.1

Purpose: This cookie can be used to track your behavior on the website and measure performance. The cookie will be updated each time information is sent to Google Analytics.

Expiry date: after 2 years

Name: __utmt

Value: 1

Purpose: The cookie is used like _gat_gtag_UA_ <property-id> to throttle the request rate.

Expiry date: after 10 minutes

Name: __utmb

Value: 3.10.1564498958

Purpose: This cookie is used to determine new sessions. It is updated every time new data or information is sent to Google Analytics.

Expiry date: after 30 minutes

Name: __utmc

Value: 167421564

Purpose: This cookie is used to set new sessions for returning visitors. This is a session cookie and is only saved until you close the browser again.

Expiry date: after closing the browser

Name: __utmz

Value: m|utmccn=(referral)|utmcmd=referral|utmcct=/

Purpose: The cookie is used to identify the source of the traffic on our website. This means that the cookie stores where you came to our website from. That could have been another page or an advertisement.

Expiry date: after 6 months

Name: __utmv

Value: not specified

Purpose: The cookie is used to save custom user data. It is always updated when information is sent to Google Analytics.

Expiry date: after 2 years

Note: This list cannot claim to be complete, as Google changes the choice of their cookies again and again.

Here we show you an overview of the most important data that is collected with Google Analytics:

Heatmaps: Google creates so-called heatmaps. Heatmaps show exactly those areas that you click on. In this way we get information about where you are “on the way” on our site.

Session duration: Google defines the session duration as the time that you spend on our site without leaving the site. If you have been inactive for 20 minutes, the session ends automatically.

Bounce rate: We are talking about a bounce if you only view one page on our website and then exit our website again.

Account creation: When you create an account or place an order on our website, Google Analytics collects this data.

IP address: The IP address is only shown in abbreviated form so that it cannot be clearly assigned.

Location: The country and your approximate location can be determined via the IP address. This process is also known as IP location determination.

Technical information: The technical information includes, among other things, your browser type, your Internet provider or your screen resolution.

Source of origin: Google Analytics or us are of course also interested in which website or which advertising you came to our site.

Further data are contact details, any ratings, the playing of media (e.g. when you play a video on our site), the sharing of content via social media or adding it to your favorites. The list does not claim to be complete and only serves as a general guide to data storage by Google Analytics.

How long and where will the data be stored?

Google has distributed your servers all over the world. Most of the servers are located in America and consequently your data is mostly stored on American servers.

Here you can read exactly where the Google data centers are located: https://www.google.com/about/datacenters/inside/locations/?hl=de

Your data is distributed on various physical data carriers. This has the advantage that the data can be accessed more quickly and is better protected against manipulation. Every Google data center has appropriate emergency programs for your data. If, for example, the hardware at Google fails or natural disasters paralyze servers, the risk of service interruption at Google remains low.

The retention period of the data depends on the properties used. When using the newer Google Analytics 4 properties, the retention period of your user data is set to 14 months. For other so-called event data, we have the option of choosing a retention period of 2 months or 14 months.

At Universal Analytics Properties, Google Analytics has a standardized retention period of 26 months for your user data. Then your user data will be deleted. However, we have the option of choosing the retention period for user data ourselves. We have five variants available for this:

Deletion after 14 months

Deletion after 26months

Deletion after 38 months

Deletion after 50 months

No automatic deletion

In addition, there is also the option that data will only be deleted if you no longer visit our website within the period selected by us. In this case, the retention period will be reset every time you visit our website again within the specified period.

When the specified period has expired, the data is deleted once a month. This retention period applies to your data linked to cookies, user identification and advertising IDs (e.g. cookies from the DoubleClick domain). Report results are based on aggregated data and are stored independently of user data. Aggregated data is a merging of individual data into a larger unit.

How can I delete my data or prevent data storage?

According to the data protection law of the European Union, you have the right to receive information about your data, to update it, to delete it or to restrict it. Use the browser add-on to deactivate Google Analytics JavaScript (ga.js, analytics.js, dc.js) to prevent Google Analytics from using your data. You can download and install the browser add-on at https://tools.google.com/dlpage/gaoptout?hl=de. Please note that this add-on only deactivates data collection by Google Analytics.

If you generally want to deactivate, delete or manage cookies (independent of Google Analytics), there are separate instructions for each browser:

Legal basis

The use of Google Analytics requires your consent, which we obtained with our cookie popup.

According to Art. 6 Paragraph 1 lit.

In addition to consent, we have a legitimate interest in analyzing the behavior of website visitors and thus improving our offer technically and economically. With the help of Google Analytics, we recognize website errors, identify attacks and improve profitability. The legal basis for this is Article 6 (1) lit.f GDPR (legitimate interests). Nevertheless, we only use Google Analytics if you have given your consent.

Google also processes data in the USA, among others. We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be associated with various risks to the legality and security of the data processing.

Google uses standard contractual clauses approved by the EU Commission as the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. especially in the USA) or data transfer there (= Art. 46, Paragraph 2 and 3 GDPR). These clauses oblige Google to comply with the EU level of data protection when processing relevant data outside the EU. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the clauses here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.

We hope we have been able to provide you with the most important information about data processing by Google Analytics. If you want to find out more about the tracking service, we recommend these two links: http://www.google.com/analytics/terms/de.html and https://support.google.com/analytics/answer/6004245 ? hl = de.

Facebook automatic extended comparison data protection declaration

As part of the Facebook pixel function, we have also activated Automatic Advanced Matching. This function of the pixel enables us to send hashed e-mails, names, gender, city, state, postcode and date of birth or telephone number as additional information to Facebook, provided that you have made this data available to us. This activation enables us to adapt advertising campaigns on Facebook even more precisely to people who are interested in our services or products.

Google Analytics IP anonymization

We have implemented the IP address anonymization of Google Analytics on this website. This function was developed by Google so that this website can comply with the applicable data protection regulations and recommendations of the local data protection authorities if they prohibit the storage of the full IP address. The anonymization or masking of the IP takes place as soon as the IP addresses arrive in the Google Analytics data collection network and before the data is stored or processed.

You can find more information on IP anonymization at https://support.google.com/analytics/answer/2763052?hl=de.

Google Analytics reports on demographics and interests

We have switched on the functions for advertising reports in Google Analytics. The demographics and interests reports include age, gender, and interests. This enables us - without being able to assign this data to individual persons - to get a better picture of our users. You can find out more about the advertising functions at https://support.google.com/analytics/answer/3450482?hl=de_AT&utm_id=ad.

You can stop using the activities and information of your Google account under “Settings for advertising” at https://adssettings.google.com/authenticated by checking the box.

Google Analytics deactivation link

If you click on the following deactivation link, you can prevent Google from recording further visits to this website. Warning: The deletion of cookies, the use of the incognito / private mode of your browser, or the use of another browser will result in data being collected again.

Google Analytics add-on for data processing

We have concluded a direct customer contract with Google for the use of Google Analytics by accepting the “data processing addendum” in Google Analytics.

You can find more about the addition on data processing for Google Analytics here: https://support.google.com/analytics/answer/3379636?hl=de&utm_id=ad

Google Analytics Google Signals Privacy Policy

We have activated the Google signals in Google Analytics. The existing Google Analytics functions (advertising reports, remarketing, cross-device reports and reports on interests and demographic characteristics) are updated in order to receive summarized and anonymized data from you, provided that you have allowed personalized ads in your Google account.

The special thing about it is that it is a cross-device tracking. This means that your data can be analyzed across all devices. By activating Google signals, data is recorded and linked to the Google account. This enables Google to recognize, for example, when you are viewing a product on our website using a smartphone and only later buy the product using a laptop. Thanks to the activation of Google signals, we can start cross-device remarketing campaigns that would otherwise not be possible in this form. Remarketing means that we can also show you our offer on other websites.

In Google Analytics, further visitor data such as location, search history, YouTube history and data about your actions on our website are recorded by the Google signals. This gives us better advertising reports and more useful information about your interests and demographic characteristics from Google. This includes your age, what language you speak, where you live or what gender you belong to. There are also social criteria such as your job, your marital status or your income. All of these features help Google Analytics to define groups of people or target groups.

The reports also help us to better assess your behavior, wishes and interests. This enables us to optimize and adapt our services and products for you. By default, this data expires after 26 months. Please note that this data collection only takes place if you have allowed personalized advertising in your Google account. It is always aggregated and anonymous data and never individual data. You can manage or delete this data in your Google account.

Newsletter data protection declaration

When registering for my newsletter to receive free instructions as well as information about course offers, dates and online offers, the data you provide will be used exclusively for this purpose.

A valid email address is required for effective registration.

The “double opt-in” procedure is used to check that the registration is actually made by the owner of an e-mail address.

For this purpose, the order for the newsletter, the dispatch of a confirmation email and the receipt of the response requested are recorded. Further data is not collected.

The data will only be used to send the newsletter. The data will not be passed on to third parties, with the exception of the MailerLite newsletter service used (see below). You can cancel or withdraw your subscription to this newsletter and thus your consent to the storage of your data at any time. There is a corresponding unsubscribe link in every newsletter.

MailerLite

This website uses the services of MailerLite to send newsletters. The provider is UAB “MailerLite”, J. Basanavičiaus 15, LT-03108 Vilnius, Lithuania (hereinafter MailerLite). MailerLite is a service that, among other things, organizes and analyzes the sending of newsletters. The email address you saved when you registered for the newsletter will be saved on MailerLite's European servers in compliance with European data protection regulations. The data processing takes place on the basis of your consent (Art. 6 Para. 1 lit. a GDPR). You can revoke this consent at any time for the future.

Data analysis by MailerLite

With the help of MailerLite it is possible to analyze newsletter campaigns. For example, it can be seen whether a newsletter message has been opened and which links have been clicked. In addition, it is recognized whether certain previously defined actions were carried out after opening or clicking (conversion rate).

Storage period

The data stored with us for the purpose of subscribing to the newsletter will be stored by us or by MailerLite until you unsubscribe from the newsletter and will be deleted after you unsubscribe from the newsletter. We reserve the right to delete or block e-mail addresses from our newsletter distribution list at our own discretion within the framework of our legitimate interest in accordance with Art. 6 Paragraph 1 lit. This does not affect data that we have stored for other purposes.

Order processing

I have signed an order processing contract (Data Processing Addendum) with MailerLite.

This is a contract stipulated by data protection law, which ensures that it processes the personal data of our website visitors only in compliance with the GDPR.

Further information on data protection at MailerLite can be found here: https://www.mailerlite.com/privacy-policy

WP Statistics privacy policy

WP Statistics Privacy Policy Summary

Affected: Visitors to the website

Purpose: Evaluation of visitor information to optimize the website.

Processed data: Access statistics that contain data such as anonymized IP addresses, duration of the website visit or your click behavior.

Storage period: the data is stored until it is no longer required for the purposes

Legal basis: Article 6 (1) (a) GDPR (consent), Article 6 (1) (f) GDPR (legitimate interests)

What is WP Statistics?

We use the WP Statistics analysis plug-in on our website. This plugin was developed by Veronalabs (5460 W Main St, Verona, NY 13478, United States), an American software company. With this plugin we receive simple statistics on how you as a user use our website. In this data protection declaration, we go into more detail about the analysis tool and show you which data is stored where and for how long.

This plugin is analysis software that was specially developed for websites that use the WordPress content management system. WordPress helps us to easily edit our website even without programming knowledge. WP Statistics can collect data about how long you stay on our website, which sub-pages you visit, how many visitors are on the website or from which website you came to us. No cookies are set by WP Statistics and you cannot be identified as a person by the data collected.

Why do we use WP Statistics?

With the help of WP Statistics, we receive simple statistics that help us to make our website even more interesting and better for you. Our website and the content, products and / or services offered on it should meet your requirements and wishes as well as possible. In order to achieve this goal, of course, we also have to find out where we should make improvements and changes. The statistics obtained help us to get one step closer to this goal.

What data does WP Statistics store?

WP Statistics does not set any cookies and the data collected only generates statistics on the use of our website in an anonymous form. WP Statistics also anonymizes your IP address. You cannot be identified as a person.

WP Statistics collects visitor data (so-called Visitos´Data) when your web browser connects to our web server. This data is stored in our database on our server. These include, for example:

the address (URL) of the accessed website

Browser and browser version

the operating system used

the host name and the IP address of the device from which access is made

Date and Time

Country / city information

Number of visitors that come from a search engine

Duration of the website stay

Clicks on the website

The data will not be passed on and will not be sold.

How long and where will the data be stored?

All data is saved locally on our web server. The data is stored on our web server until it is no longer required for the purposes listed above.

How can I delete my data or prevent data storage?

You have the right to information, correction or deletion and restriction of the processing of your personal data at any time. You can also revoke your consent to the processing of data at any time.

Legal basis

The use of WP Statistics requires your consent, which we obtained with our cookie popup. According to Art. 6 Paragraph 1 lit.

In addition to consent, we have a legitimate interest in analyzing the behavior of website visitors and thus improving our offer technically and economically. With the help of WP Statistics, we recognize website errors, identify attacks and improve profitability. The legal basis for this is Article 6 (1) lit.f GDPR (legitimate interests).

Nevertheless, we only use WP Statistics if you have given your consent.

We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. The data processing is mainly done by WP Statistics. This can lead to data not being processed and stored anonymously. Furthermore, US government authorities may have access to individual data. It can also happen that this data is linked to data from other possible WP Statistics services for which you have a user account.

We have now given you the most important information about data processing by WP Analytics. Because the plugin does not use cookies and the data for statistical analysis is stored locally in the web server, your data is handled very carefully here. If you want to learn more about WP Analytics, you should take a look at the company's privacy policy at https://wp-statistics.com/privacy-and-policy/.

Online marketing

Online Marketing Privacy Policy Summary

Affected: Visitors to the website

Purpose: Evaluation of visitor information to optimize the website.

Processed data: Access statistics that contain data such as the location of access, device data, access duration and time, navigation behavior, click behavior and IP addresses. Personal data such as name or email address can also be processed. You can find more details on this in the online marketing tool used.

Storage period: depending on the online marketing tools used

Legal basis: Article 6 (1) (a) GDPR (consent), Article 6 (1) (f) GDPR (legitimate interests)

What is Online Marketing?

Online marketing refers to all measures that are carried out online to achieve marketing goals such as increasing brand awareness or closing a deal. Furthermore, our online marketing measures aim to draw people's attention to our website. In order to be able to show our offer to many interested people, we operate online marketing. Mostly it is about online advertising, content marketing or search engine optimization. Personal data is also stored and processed so that we can use online marketing efficiently and in a targeted manner. On the one hand, the data help us to only really show our content to those people who are also interested and, on the other hand, we can measure the advertising success of our online marketing measures.

Why do we use online marketing tools?

We want to show our website to everyone who is interested in our offer. We are aware that this is not possible without conscious measures. That's why we do online marketing. There are various tools that make it easier for us to work on our online marketing measures and also always provide suggestions for improvement via data. In this way we can target our campaigns more precisely to our target group. The purpose of these online marketing tools used is ultimately to optimize our offer.

Which data are processed?

So that our online marketing works and the success of the measures can be measured, user profiles are created and data are stored, for example in cookies (these are small text files). With the help of this data, we can not only place advertising in the traditional way, but also present our content directly on our website in the way you prefer. There are various third-party tools that offer these functions and collect and save data from you accordingly. The named cookies store, for example, which web pages you have visited on our website, how long you have viewed these pages, which links or buttons you click or which website you came from. Technical information can also be saved. For example, your IP address, which browser you use, which device you use to visit our website or the time when you accessed our website and when you left it again. If you have agreed that we can also determine your location, we can also save and process this.

Your IP address is saved in a pseudonymised form (i.e. shortened). Clear data that directly identify you as a person, such as your name, address or e-mail address, are only stored in pseudonymised form as part of the advertising and online marketing process. We cannot identify you as a person, we have only saved the pseudonymized, saved information in the user profiles.

Under certain circumstances, the cookies can also be deployed, analyzed and used for advertising purposes on other websites that work with the same advertising tools. The data can then also be stored on the servers of the advertising tool providers.

In exceptional cases, unique data (name, email address, etc.) can also be saved in the user profiles. This storage occurs, for example, if you are a member of a social media channel that we use for our online marketing measures and the network connects previously received data with the user profile.

With all of the advertising tools we use that save your data on their servers, we only ever receive summarized information and never data that makes you identifiable as an individual. The data only shows how well-placed advertising measures worked. For example, we can see what measures have induced you or other users to come to our website and purchase a service or product there. Based on the analyzes, we can improve our advertising offer in the future and adapt it even more precisely to the needs and wishes of interested people.

Duration of the data processing

We will inform you below about the duration of the data processing if we have further information. In general, we only process personal data for as long as is absolutely necessary for the provision of our services and products. Data stored in cookies are stored for different lengths of time. Some cookies are deleted after you leave the website, others may be stored in your browser for a few years. In the respective data protection declarations of the individual providers, you will usually find detailed information about the individual cookies that the provider uses.

Right to object

You also have the right and the option to revoke your consent to the use of cookies or third-party providers at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection by cookies by managing, deactivating or deleting cookies in your browser. The legality of the processing up to the point of revocation remains unaffected.

Since cookies can usually be used with online marketing tools, we also recommend our general data protection declaration on cookies. To find out which of your data is stored and processed, you should read the data protection declarations of the respective tools.

Legal basis

If you have consented to the use of third-party providers, the legal basis for the corresponding data processing is this consent. According to Art. 6 Paragraph 1 lit.

We also have a legitimate interest in measuring online marketing measures in anonymised form in order to use the data obtained to optimize our offer and our measures. The corresponding legal basis for this is Article 6 (1) lit.f GDPR (legitimate interests). Nevertheless, we only use the tools if you have given your consent.

Information on special online marketing tools can be found - if available - in the following sections.

E-Commerce and Payment Provider

Processing of data (customer and contract data)

We collect, process and use personal data only insofar as they are necessary for the establishment, content or change of the legal relationship (inventory data). This is done on the basis of Art. 6 Paragraph 1 lit. b GDPR, which allows the processing of data for the performance of a contract or pre-contractual measures. We collect, process and use personal data on the use of this website (usage data) only insofar as this is necessary to enable the user to use the service or to bill. The customer data collected will be deleted after the order has been concluded or the business relationship has ended. Statutory retention periods remain unaffected.

ablefy/namotto

The processing of payments and delivery of the digital products are carried out by namotto. You can find namotto’s data protection declaration here.

namotto is a service of:

namotto academies and friends GmbH & CoKG

Uhlandstrasse 154

10719 Berlin

We have concluded a corresponding contract with namotto as our processor in accordance with Art. 28 GDPR. The legal basis for the processing of personal data when forwarding from our website to the sales page via ablefy results from Article 6, Paragraph 1, Sentence 1, Letter b).

Borlabs Cookie Privacy Policy

We use BorlabsCookie on our website, including a tool to save your cookie consent. The service provider is the German company Borlabs - Benjamin A. Bornschein, Rübenkamp 32, 22305 Hamburg, Germany. You can find out more about the data processed through the use of BorlabsCookie in the Privacy Policy at https://de.borlabs.io/datenschutz/.

Cookie Consent Management Platform Summary

Affected: Website visitors

Purpose: Obtaining and managing consent to certain cookies and thus the use of certain tools

Processed data: data to manage the cookie settings such as IP address, time of consent, type of consent, individual consents. You can find more details on this with the tool used in each case.

Storage period: Depends on the tool used, you have to be prepared for periods of several years

Legal basis: Article 6 (1) (a) GDPR (consent), Article 6 (1) (f) GDPR (legitimate interests)

What is a Cookie Consent Management Platform?

We use a Consent Management Platform (CMP) software on our website, which makes it easier for us and you to handle the scripts and cookies used correctly and securely. The software automatically creates a cookie pop-up, scans and controls all scripts and cookies, provides you with the cookie consent required under data protection law and helps you and us to keep track of all cookies. Most cookie consent management tools identify and categorize all existing cookies. As a website visitor, you then decide for yourself whether and which scripts and cookies you allow or not. The following graphic shows the relationship between browser, web server and CMP.

Why do we use a cookie management tool?

Our goal is to offer you the best possible transparency in the area of data protection. We are also legally obliged to do so. We want to inform you as well as possible about all tools and all cookies that can save and process your data. It is also your right to decide for yourself which cookies you accept and which you do not. In order to grant you this right, we first need to know exactly which cookies actually landed on our website. Thanks to a cookie management tool, which regularly scans the website for all cookies present, we know about all cookies and can provide you with GDPR-compliant information. You can then use the consent system to accept or reject cookies.

Which data are processed?

As part of our cookie management tool, you can manage each individual cookie yourself and have complete control over the storage and processing of your data. The declaration of your consent is saved so that we do not have to ask you every time you visit our website and we can also prove your consent if required by law. This is saved either in an opt-in cookie or on a server. The storage time of your cookie consent varies depending on the provider of the cookie management tool. This data (such as pseudonymous user ID, time of consent, detailed information on the cookie categories or tools, browser, device information) is stored for up to two years.

Duration of the data processing

We will inform you below about the duration of the data processing if we have further information. In general, we only process personal data for as long as is absolutely necessary for the provision of our services and products. Data stored in cookies are stored for different lengths of time. Some cookies are deleted after you leave the website, others may be stored in your browser for a few years. The exact duration of the data processing depends on the tool used, in most cases you should be prepared for a storage period of several years. In the respective data protection declarations of the individual providers, you will usually receive precise information about the duration of the data processing.

Right to object

You also have the right and the option to revoke your consent to the use of cookies at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection by cookies by managing, deactivating or deleting cookies in your browser.

Information on special cookie management tools can be found - if available - in the following sections.

Legal basis

If you agree to cookies, your personal data will be processed and stored via these cookies. If we are allowed to use cookies with your consent (Article 6 (1) (a) GDPR), this consent is also the legal basis for the use of cookies and the processing of your data. In order to be able to manage the consent to cookies and to enable you to give your consent, a cookie consent management platform software is used. The use of this software enables us to operate the website in an efficient manner in accordance with the law, which is a legitimate interest (Article 6 Paragraph 1 lit.f GDPR).

Social media

Social Media Privacy Policy Summary

Affected: Visitors to the website

Purpose: Presentation and optimization of our services, contact with visitors, interested parties, etc., advertising

Processed data: data such as telephone numbers, e-mail addresses, contact data, data on user behavior, information about your device and your IP address.

You can find more details on this with the respective social media tool used.

Storage duration: depending on the social media platforms used

Legal basis: Article 6 (1) (a) GDPR (consent), Article 6 (1) (f) GDPR (legitimate interests)

What is social media?

In addition to our website, we are also active on various social media platforms. User data can be processed so that we can target users who are interested in us via the social networks. In addition, elements of a social media platform can also be embedded directly in our website. This is the case, for example, if you click a so-called social button on our website and are forwarded directly to our social media presence. So-called social media or social media are websites and apps through which registered members can produce content, exchange content openly or in certain groups and network with other members.

Why do we use social media?

For years, social media platforms have been the place where people communicate and come into contact online. With our social media presence, we can bring our products and services closer to interested parties. The social media elements integrated on our website help you to switch to our social media content quickly and without complications.

The data that is stored and processed through your use of a social media channel is primarily used to carry out web analyzes. The aim of these analyzes is to be able to develop more precise and personal marketing and advertising strategies. Depending on your behavior on a social media platform, appropriate conclusions can be drawn about your interests with the help of the evaluated data and so-called user profiles can be created. In this way, it is also possible for the platforms to present you with customized advertisements. For this purpose, cookies are usually set in your browser, which save data on your usage behavior.

We generally assume that we will remain responsible under data protection law, even if we use the services of a social media platform. However, the European Court of Justice has ruled that in certain cases the operator of the social media platform can be jointly responsible with us within the meaning of Art. 26 GDPR. If this is the case, we will point this out separately and work on the basis of a related agreement. The essence of the agreement is then given below for the platform concerned.

Please note that when you use the social media platforms or our built-in elements, your data can also be processed outside the European Union, as many social media channels, such as Facebook or Twitter, are American companies. As a result, you may no longer be able to easily claim or enforce your rights with regard to your personal data.

Which data are processed?

The exact data that is stored and processed depends on the respective provider of the social media platform. But usually it is data such as telephone numbers, e-mail addresses, data that you enter in a contact form, user data such as which buttons you click, who you like or who you follow, when you visited which pages, information about Your device and your IP address. Most of this data is stored in cookies. Especially if you yourself have a profile on the social media channel you are visiting and are logged in, data can be linked to your profile.

All data that is collected via a social media platform is also stored on the provider's servers. This means that only the providers have access to the data and can provide you with the appropriate information or make changes.

If you want to know exactly which data is stored and processed by the social media providers and how you can object to the data processing, you should read the respective data protection declaration of the company carefully. We also recommend that you contact the provider directly if you have any questions about data storage and data processing or if you want to assert corresponding rights.

Duration of the data processing

We will inform you below about the duration of the data processing if we have further information. For example, the social media platform Facebook stores data until it is no longer needed for its own purpose. However, customer data that is compared with your own user data is deleted within two days. In general, we only process personal data for as long as is absolutely necessary for the provision of our services and products. If it is required by law, for example in the case of accounting, this storage period can also be exceeded.

Right to object

You also have the right and the option to revoke your consent to the use of cookies or third-party providers such as embedded social media elements at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection by cookies by managing, deactivating or deleting cookies in your browser.

Since cookies can be used with social media tools, we also recommend our general data protection declaration on cookies. To find out which of your data is stored and processed, you should read the data protection declarations of the respective tools.

Legal basis

If you have consented that your data can be processed and stored through integrated social media elements, this consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). In principle, if you have given your consent, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. Nevertheless, we only use the tools if you have given your consent. Most social media platforms also set cookies on your browser to save data. We therefore recommend that you read our data protection text about cookies carefully and take a look at the data protection declaration or the cookie guidelines of the respective service provider.

You can find information on special social media platforms - if available - in the following sections.

Facebook privacy policy

Facebook privacy policy summary

Affected: Visitors to the website

Purpose: to optimize our service

Processed data: data such as customer data, data on user behavior, information about your device and your IP address.

More details can be found below in the data protection declaration.

Storage period: until the data is no longer useful for Facebook purposes

Legal basis: Article 6 (1) (a) GDPR (consent), Article 6 (1) (f) GDPR (legitimate interests)

What are Facebook tools?

We use selected tools from Facebook on our website. Facebook is a social media network operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2 Ireland. With the help of these tools, we can offer you and people who are interested in our products and services the best possible offer.

If your data is collected and forwarded via our embedded Facebook elements or via our Facebook page (fan page), both we and Facebook Ireland Ltd. responsible for. Facebook is solely responsible for the further processing of this data. Our joint commitments have also been enshrined in a publicly available agreement at https://www.facebook.com/legal/controller_addendum. It states, for example, that we must clearly inform you about the use of Facebook tools on our site. We are also responsible for ensuring that the tools are securely integrated into our website in accordance with data protection law. Facebook, on the other hand, is responsible for the data security of Facebook products, for example. If you have any questions about data collection and data processing by Facebook, you can contact the company directly. If you direct the question to us, we are obliged to forward it to Facebook.

In the following we provide an overview of the various Facebook tools, which data is sent to Facebook and how you can delete this data.

In addition to many other products, Facebook also offers the so-called “Facebook Business Tools”. This is the official name of Facebook. But since the term is hardly known, we decided to call them just Facebook tools. These include:

Facebook-Pixel

social plug-ins (such as the "Like" or "Share" button)

Facebook Login

Account Kit

APIs (programming interface)

SDKs (collection of programming tools)

Platform integrations

Plugins

Codes

Specifications

Documentation

Technologies and services

These tools enable Facebook to expand its services and to obtain information about user activities outside of Facebook.

Why do we use Facebook tools on our website?

We only want to show our services and products to people who are really interested in them. With the help of advertisements (Facebook ads) we can reach exactly these people. However, in order to be able to show the users appropriate advertising, Facebook needs information about the wishes and needs of the people. Information about user behavior (and contact details) is made available to the company on our website. As a result, Facebook collects better user data and can show interested people the right advertising about our products or services. The tools thus enable tailor-made advertising campaigns on Facebook.

Facebook calls data about your behavior on our website “event data”. These are also used for measurement and analysis services. In this way, Facebook can create “campaign reports” on our behalf about the impact of our advertising campaigns. Furthermore, analyzes give us a better insight into how you use our services, website or products. This enables us to optimize your user experience on our website with some of these tools. For example, you can use the social plug-ins to share content on our site directly on Facebook.

Which data are saved by Facebook tools?

By using individual Facebook tools, personal data (customer data) can be sent to Facebook. Depending on the tools used, customer data such as name, address, telephone number and IP address can be sent.

Facebook uses this information to compare the data with the data it has about you (if you are a Facebook member). So-called "hashing" takes place before customer data is transmitted to Facebook. This means that a data record of any size can be transformed into a character string. This is also used to encrypt data.

In addition to the contact details, "event data" are also transmitted. "Event data" means the information that we receive about you on our website. For example, which sub-pages you visit or which products you buy from us. Facebook does not share the information it receives with third parties (such as advertisers) unless the company has explicit permission or is legally obliged to do so. "Event data" can also be linked to contact details. This enables Facebook to offer better personalized advertising. After the already mentioned comparison process, Facebook will delete the contact details again.

In order to be able to deliver advertisements in an optimized way, Facebook only uses the event data if this has been combined with other data (which were recorded by Facebook in a different way). Facebook also uses this event data for security, protection, development and research purposes. Much of this data is transferred to Facebook via cookies. Cookies are small text files that are used to store data or information in browsers. Depending on the tools used and whether you are a Facebook member, a different number of cookies will be created in your browser. In the descriptions of the individual Facebook tools, we go into more detail on individual Facebook cookies. You can also find general information about the use of Facebook cookies at https://www.facebook.com/policies/cookies.

How long will the data be stored?

In principle, Facebook saves data until it is no longer needed for its own services and Facebook products. Facebook has servers all over the world where its data is stored. However, customer data will be deleted within 48 hours after it has been compared with your own user data.

How can I delete my data or prevent data storage?

In accordance with the General Data Protection Regulation, you have the right to information, correction, portability and deletion of your data.

The data will only be completely deleted if you completely delete your Facebook account. And this is how deleting your Facebook account works:

1) On the right side of Facebook, click Settings.

2) Then click on "Your Facebook information" in the left column.

3) Now click “Deactivate and Delete”.

4) Now select "Delete account" and then click on "Next and delete account"

5) Now enter your password, click on "Next" and then on "Delete account".

The storage of the data that Facebook receives via our site takes place, among other things, via cookies (e.g. with social plugins). You can deactivate, delete or manage individual or all cookies in your browser. Depending on which browser you are using, this works in different ways. The following instructions show how to manage cookies in your browser:

If you generally do not want cookies, you can set up your browser so that it always informs you when a cookie is to be set. In this way, you can decide for each individual cookie whether or not to allow it.

Legal basis

If you have consented that your data can be processed and stored by integrated Facebook tools, this consent is the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). In principle, your data is also stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. Nevertheless, we only use the tools if you have given your consent. Most social media platforms also set cookies on your browser to save data. We therefore recommend that you read our data protection text about cookies carefully and take a look at the data protection declaration or the Facebook cookie policy.

Facebook also processes data in the USA, among others. We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be associated with various risks to the legality and security of the data processing.

As a basis for data processing by recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially in the USA) or data transfer there, Facebook uses standard contractual clauses approved by the EU Commission (= Art. 46, Paragraph 2 and 3 GDPR). These clauses oblige Facebook to comply with the EU level of data protection when processing relevant data outside the EU. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the clauses here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.

We hope that we have brought you the most important information about the use and data processing by the Facebook tools. If you want to learn more about how Facebook uses your data, we recommend the data guidelines at https://www.facebook.com/about/privacy/update.

Instagram privacy policy

Instagram privacy policy summary

Affected: Visitors to the website

Purpose: to optimize our service

Processed data: data such as data on user behavior, information about your device and your IP address.

More details can be found below in the data protection declaration.

Storage period: until Instagram no longer needs the data for its purposes

Legal basis: Article 6 (1) (a) GDPR (consent), Article 6 (1) (f) GDPR (legitimate interests)

What is Instagram?

We have built in Instagram functions on our website. Instagram is a social media platform of the company Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA. Instagram has been a subsidiary of Facebook Inc. since 2012 and is a Facebook product. Embedding Instagram content on our website is called embedding. This enables us to show you content such as buttons, photos or videos from Instagram directly on our website. When you visit our website that has an Instagram function integrated, data is transmitted to Instagram, stored and processed. Instagram uses the same systems and technologies as Facebook. Your data will thus be processed across all Facebook companies.

In the following, we want to give you a more detailed insight into why Instagram collects data, what data it is and how you can largely control the data processing. Since Instagram belongs to Facebook Inc., we obtain our information from the Instagram guidelines on the one hand, but also from the Facebook data guidelines themselves on the other.

Instagram is one of the most famous social media networks in the world. Instagram combines the advantages of a blog with the advantages of audiovisual platforms such as YouTube or Vimeo. You can upload photos and short videos to “Insta” (as many of the users casually call the platform), edit them with various filters and also distribute them on other social networks. And if you don't want to be active yourself, you can just follow other interesting users.

Why do we use Instagram on our website?

Instagram is the social media platform that has really gone through the roof in recent years. And of course we have also reacted to this boom. We want you to feel as comfortable as possible on our website. That is why a varied preparation of our content is a matter of course for us. Thanks to the embedded Instagram functions, we can enrich our content with helpful, funny or exciting content from the Instagram world. Since Instagram is a subsidiary of Facebook, the data collected can also be useful for personalized advertising on Facebook. Our advertisements are only given to people who are really interested in our products or services.

Instagram also uses the collected data for measurement and analysis purposes. We get summarized statistics and thus more insight into your wishes and interests. It is important to note that these reports do not personally identify you.

What data is stored by Instagram?

If you come across one of our pages that has Instagram functions (such as Instagram images or plug-ins) installed, your browser automatically connects to Instagram's servers. In doing so, data is sent to Instagram, stored and processed. Regardless of whether you have an Instagram account or not. This includes information about our website, about your computer, about purchases made, about advertisements that you see and how you use our offer. The date and time of your interaction with Instagram are also saved. If you have an Instagram account or are logged in, Instagram stores significantly more data about you.

Facebook differentiates between customer data and event data. We assume this is exactly the case with Instagram. Customer data are, for example, name, address, telephone number and IP address. This customer data will only be transmitted to Instagram if it has been "hashed" beforehand. Hashing means that a data record is converted into a character string. This allows you to encrypt the contact details. In addition, the above-mentioned "event data" are also transmitted. Facebook - and consequently Instagram - understands “event data” to mean data about your user behavior. It can also happen that contact data is combined with event data. The contact details collected are compared with the data Instagram already has about you.

The collected data is transmitted to Facebook via small text files (cookies), which are usually set in your browser. Depending on the Instagram functions used and whether you have an Instagram account yourself, different amounts of data are stored.

We assume that data processing on Instagram works in the same way as on Facebook. This means: if you have an Instagram account or have visited www.instagram.com, Instagram has set at least one cookie. If this is the case, your browser sends information to Instagram via the cookie as soon as you come into contact with an Instagram function. This data will be deleted or anonymized after 90 days at the latest (after comparison). Although we have dealt intensively with data processing by Instagram, we cannot say exactly which data Instagram collects and stores.

In the following we show you cookies that are set in your browser at least when you click on an Instagram function (such as a button or an Insta picture). In our test, we assume that you do not have an Instagram account. If you are logged in to Instagram, significantly more cookies will of course be set in your browser.

These cookies were used in our test:

Name: csrftoken

Value: ""

Purpose: This cookie is set with a high degree of probability for security reasons in order to prevent falsification of inquiries. However, we could not find out more precisely.

Expiry date: after one year

Name: mid

Value: “”

Purpose: Instagram sets this cookie to optimize its own services and offers inside and outside of Instagram. The cookie defines a unique user ID.

Expiration date: after the end of the session

Name: fbsr_311294456124024

Value: no information

Purpose: This cookie stores the log-in request for users of the Instagram app.

Expiration date: after the end of the session

Name: rur

Value: ATN

Purpose: This cookie is used by Instagram for marketing purposes.

Expiration date: after the end of the session

Name: urlgen

Value: “{“ 194.96.75.33 ″: 1901}: 1iEtYv: Y833k2_UjKvXgYe311294456 ”

Purpose: This cookie is used by Instagram for marketing purposes.

Expiration date: after the end of the session

Note: We cannot claim to be complete here. Which cookies are set in the individual case depends on the embedded functions and your use of Instagram.

How long will the data be stored?

Instagram shares the information received between the Facebook companies with external partners and with people with whom you connect worldwide. The data processing takes place in compliance with the own data guideline. For security reasons, among other things, your data is distributed on Facebook servers around the world. Most of these servers are in the USA.

How can I delete my data or prevent data storage?

Thanks to the General Data Protection Regulation, you have the right to information, portability, correction and deletion of your data. You can manage your data in the Instagram settings. If you want to completely erase your data on Instagram, you have to delete your Instagram account permanently.

And this is how the deletion of the Instagram account works:

If you delete your account entirely, Instagram will delete posts such as your photos and status updates. Information that other people have shared about you does not belong to your account and therefore will not be deleted.

If you delete your account entirely, Instagram will delete posts such as your photos and status updates. Information that other people have shared about you does not belong to your account and therefore will not be deleted.

As already mentioned above, Instagram stores your data primarily via cookies. You can manage, deactivate or delete these cookies in your browser. Management always works a little differently depending on your browser. Here we show you the instructions for the most important browsers.

You can also set up your browser so that you are always informed when a cookie is to be set. Then you can always decide individually whether you want to allow the cookie or not.

Legal basis

If you have consented that your data can be processed and stored through integrated social media elements, this consent is considered the legal basis for data processing (Art. 6 Para. 1 lit. a GDPR). In principle, your data is also stored and processed on the basis of our legitimate interest (Art. 6 Para. 1 lit. f GDPR) in quick and good communication with you or other customers and business partners. We only use the integrated social media elements if you have given your consent. Most social media platforms also set cookies on your browser to save data. We therefore recommend that you read our data protection text about cookies carefully and take a look at the data protection declaration or the cookie guidelines of the respective service provider.

Instagram and Facebook also process data in the USA, among others. We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be associated with various risks to the legality and security of the data processing.

As a basis for data processing by recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially in the USA) or data transfer there, Facebook uses standard contractual clauses approved by the EU Commission (= Art. 46, Paragraph 2 and 3 GDPR). These clauses oblige Facebook to comply with the EU level of data protection when processing relevant data outside the EU. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the clauses here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.

We have tried to give you the most important information about data processing by Instagram. On https://help.instagram.com/519522125107875

you can take a closer look at Instagram's data guidelines.

Google Maps privacy policy

Google Maps Privacy Policy Summary

Affected: Visitors to the website

Purpose: to optimize our service

Processed data: data such as entered search terms, your IP address and also the latitude and longitude coordinates.

You can find more details on this below in this data protection declaration.

Storage duration: depending on the stored data

Legal basis: Article 6 (1) (a) GDPR (consent), Article 6 (1) (f) GDPR (legitimate interests)

What is Google Maps?

We use Google Maps from Google Inc. on our website. For the European area, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. With Google Maps we can show you locations better and thus adapt our service to your needs. By using Google Maps, data is transmitted to Google and stored on Google's servers. Here we want to go into more detail about what Google Maps is, why we use this Google service, which data is stored and how you can prevent this.

Google Maps is an internet map service from Google. With Google Maps you can search for exact locations of cities, sights, accommodations or companies online using a PC, tablet or app. If companies are represented on Google My Business, additional information about the company is displayed in addition to the location. In order to show how to get there, map sections of a location can be integrated into a website using HTML code. Google Maps shows the earth's surface as a road map or as an aerial or satellite image. Thanks to the Street View images and the high-quality satellite images, very precise representations are possible.

Why do we use Google Maps on our website?

All of our efforts on this page are aimed at providing you with a useful and meaningful time on our website. By integrating Google Maps, we can provide you with the most important information on various locations. You can see at a glance where we are based. The route description always shows you the best or fastest way to us. You can find directions for routes by car, public transport, on foot or by bike. For us, the provision of Google Maps is part of our customer service.

Which data is saved by Google Maps?

In order for Google Maps to be able to offer its full service, the company must record and save data from you. This includes the search terms entered, your IP address and the latitude and longitude coordinates. If you use the route planner function, the entered start address is also saved. However, this data storage takes place on the Google Maps website. We can only inform you about this, but we cannot influence it. Since we have integrated Google Maps into our website, Google places at least one cookie (name: NID) in your browser. This cookie stores data about your user behavior. Google uses this data primarily to optimize its own services and to provide you with individual, personalized advertising.

The following cookie is set in your browser due to the integration of Google Maps:

Name: NID

Value: 188=h26c1Ktha7fCQTx8rXgLyATyITJ311294456-5

Purpose: NID is used by Google to adapt advertisements to your Google search. With the help of the cookie, Google “remembers” your most frequently entered search queries or your previous interaction with advertisements. So you always get customized advertisements. The cookie contains a unique ID that Google uses to collect your personal settings for advertising purposes.

Expiry date: after 6 months

Note: We cannot guarantee that the information stored is complete. Changes can never be ruled out, especially when using cookies. In order to identify the NID cookie, a separate test page was created, where only Google Maps was integrated.

How long and where will the data be stored?

The Google servers are located in data centers all over the world. Most of the servers are located in America, however. For this reason, your data is also increasingly stored in the USA. Here you can read exactly where the Google data centers are located: https://www.google.com/about/datacenters/inside/locations/?hl=de

Google distributes the data on various data carriers. This means that the data can be accessed more quickly and is better protected against any attempt at manipulation. Each data center also has special emergency programs. If, for example, there are problems with the Google hardware or a natural disaster paralyzes the servers, the data is still pretty much protected.

Google stores some data for a specified period of time. For other data, Google only offers the option of manually deleting them. The company also anonymizes information (such as advertising data) in server logs by deleting part of the IP address and cookie information after 9 or 18 months.

How can I delete my data or prevent data storage?

With the automatic deletion function for location and activity data introduced in 2019, information on location determination and web / app activity - depending on your decision - is stored for either 3 or 18 months and then deleted. In addition, you can manually delete this data from the history at any time via the Google account. If you want to completely prevent your location from being recorded, you must pause the "Web and app activity" section in your Google account. Click Data & Personalization, then click the Activity Settings option. Here you can turn the activities on or off.

You can also deactivate, delete or manage individual cookies in your browser. Depending on which browser you are using, this always works a little differently. The following instructions show how to manage cookies in your browser:

If you generally do not want cookies, you can set up your browser so that it always informs you when a cookie is to be set. In this way, you can decide for each individual cookie whether or not to allow it.

Please note that when you use this tool, your data can also be stored and processed outside the EU. Most third countries (including the USA) are not considered secure under current European data protection law. Data to insecure third countries may not simply be transferred, stored and processed there unless there are suitable guarantees (such as EU standard contractual clauses) between us and the non-European service provider.

Legal basis

If you have consented to the use of Google Maps, the legal basis for the corresponding data processing is this consent. According to Art. 6 Paragraph 1 lit.

We also have a legitimate interest in using Google Maps to optimize our online service. The corresponding legal basis for this is Article 6 (1) lit.f GDPR (legitimate interests).

Nevertheless, we only use Google Maps if you have given your consent.

Google also processes data in the USA, among others. We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This can be associated with various risks to the legality and security of the data processing.

Google uses standard contractual clauses approved by the EU Commission as the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. especially in the USA) or data transfer there (= Art. 46, Paragraph 2 and 3 GDPR). These clauses oblige Google to comply with the EU level of data protection when processing relevant data outside the EU. These clauses are based on an implementation decision of the EU Commission. You can find the decision and the clauses here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.

If you want to learn more about data processing by Google, we recommend the company's own data protection declaration at https://policies.google.com/privacy?hl=de.