Privacy Policy

1. An overview of data protection

General information

The fol­lo­wing infor­ma­ti­on will pro­vi­de you with an easy to navi­ga­te over­view of what will hap­pen with your per­so­nal data when you visit this web­site. The term “per­so­nal data” com­pri­ses all data that can be used to per­so­nal­ly iden­ti­fy you. For detail­ed infor­ma­ti­on about the sub­ject mat­ter of data pro­tec­tion, plea­se con­sult our Data Pro­tec­tion Decla­ra­ti­on, which we have included beneath this copy.

Data recording on this website

Who is the responsible party for the recording of data on this website (i.e., the “controller”)?

The data on this web­site is pro­ces­sed by the ope­ra­tor of the web­site, who­se cont­act infor­ma­ti­on is available under sec­tion “Infor­ma­ti­on about the respon­si­ble par­ty (refer­red to as the “con­trol­ler” in the GDPR)” in this Pri­va­cy Poli­cy.

How do we record your data?

We coll­ect your data as a result of your sha­ring of your data with us. This may, for ins­tance be infor­ma­ti­on you enter into our cont­act form.

Other data shall be recor­ded by our IT sys­tems auto­ma­ti­cal­ly or after you con­sent to its recor­ding during your web­site visit. This data com­pri­ses pri­ma­ri­ly tech­ni­cal infor­ma­ti­on (e.g., web brow­ser, ope­ra­ting sys­tem, or time the site was acces­sed). This infor­ma­ti­on is recor­ded auto­ma­ti­cal­ly when you access this web­site.

What are the purposes we use your data for?

A por­ti­on of the infor­ma­ti­on is gene­ra­ted to gua­ran­tee the error free pro­vi­si­on of the web­site. Other data may be used to ana­ly­ze your user pat­terns.

What rights do you have as far as your information is concerned?

You have the right to recei­ve infor­ma­ti­on about the source, reci­pi­ents, and pur­po­ses of your archi­ved per­so­nal data at any time wit­hout having to pay a fee for such dis­clo­sures. You also have the right to demand that your data are rec­ti­fied or era­di­ca­ted. If you have con­sen­ted to data pro­ces­sing, you have the opti­on to revo­ke this con­sent at any time, which shall affect all future data pro­ces­sing. Moreo­ver, you have the right to demand that the pro­ces­sing of your data be rest­ric­ted under cer­tain cir­cum­s­tances. Fur­ther­mo­re, you have the right to log a com­plaint with the com­pe­tent super­vi­sing agen­cy.

Plea­se do not hesi­ta­te to cont­act us at any time if you have ques­ti­ons about this or any other data pro­tec­tion rela­ted issues.

Analysis tools and tools provided by third parties

The­re is a pos­si­bi­li­ty that your brow­sing pat­terns will be sta­tis­ti­cal­ly ana­ly­zed when your visit this web­site. Such ana­ly­ses are per­for­med pri­ma­ri­ly with what we refer to as ana­ly­sis pro­grams.

For detail­ed infor­ma­ti­on about the­se ana­ly­sis pro­grams plea­se con­sult our Data Pro­tec­tion Decla­ra­ti­on below.

2. Hosting

We are hos­ting the con­tent of our web­site at the fol­lo­wing pro­vi­der:

IONOS

The pro­vi­der is the IONOS SE, Elgen­dor­fer Str. 57, 56410 Mon­ta­baur, Ger­ma­ny (her­ein­af­ter refer­red to as: IONOS). When­ever you visit our web­site, IONOS records various log­files along with your IP addres­ses. For details, plea­se con­sult the data pri­va­cy poli­cy of IONOS: https://www.ionos.de/terms-gtc/terms-privacy.

We use IONOS on the basis of Art. 6 (1)(f) GDPR. Our com­pa­ny has a legi­ti­ma­te inte­rest in pre­sen­ting a web­site that is as depen­da­ble as pos­si­ble. If appro­pria­te con­sent has been obtai­ned, the pro­ces­sing is car­ri­ed out exclu­si­ve­ly on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, inso­far the con­sent includes the sto­rage of coo­kies or the access to infor­ma­ti­on in the user’s end device (e.g., device fin­ger­prin­ting) within the mea­ning of the TDDDG. This con­sent can be revo­ked at any time.

Data processing

We have con­cluded a data pro­ces­sing agree­ment (DPA) for the use of the abo­ve-men­tio­ned ser­vice. This is a con­tract man­da­ted by data pri­va­cy laws that gua­ran­tees that they pro­cess per­so­nal data of our web­site visi­tors only based on our ins­truc­tions and in com­pli­ance with the GDPR.

3. General information and mandatory information

Data protection

The ope­ra­tors of this web­site and its pages take the pro­tec­tion of your per­so­nal data very serious­ly. Hence, we hand­le your per­so­nal data as con­fi­den­ti­al infor­ma­ti­on and in com­pli­ance with the sta­tu­to­ry data pro­tec­tion regu­la­ti­ons and this Data Pro­tec­tion Decla­ra­ti­on.

When­ever you use this web­site, a varie­ty of per­so­nal infor­ma­ti­on will be coll­ec­ted. Per­so­nal data com­pri­ses data that can be used to per­so­nal­ly iden­ti­fy you. This Data Pro­tec­tion Decla­ra­ti­on explains which data we coll­ect as well as the pur­po­ses we use this data for. It also explains how, and for which pur­po­se the infor­ma­ti­on is coll­ec­ted.

We here­wi­th advi­se you that the trans­mis­si­on of data via the Inter­net (i.e., through e‑mail com­mu­ni­ca­ti­ons) may be pro­ne to secu­ri­ty gaps. It is not pos­si­ble to com­ple­te­ly pro­tect data against third-par­ty access.

Information about the responsible party (referred to as the “controller” in the GDPR)

The data pro­ces­sing con­trol­ler on this web­site is:

Frau­en­hel­din­nen e.V.
Eva Engel­ken
c/o SP-Day Impres­sum-Ser­vice
Dr. Lutz Kreut­zer
Haupt­stra­ße 8
83395 Frei­las­sing
info@frauenheldinnen.de 
Nur Brie­fe, kei­ne Päck­chen und Pake­te!
Der Impres­sum-Geber (Impres­sum-Ser­vice) ist nicht für den Inhalt die­ser Web­site ver­ant­wort­lich.

Brie­fe, Päck­chen und Pake­te bit­te an fol­gen­de Adres­se schi­cken:  

FRAUENHELDINNEN e.V.
Post­fach 10 09 15
50449 Köln 

E‑Mail: kontakt@frauenheldinnen.de

 

The con­trol­ler is the natu­ral per­son or legal enti­ty that sin­gle-han­dedly or joint­ly with others makes decis­i­ons as to the pur­po­ses of and resour­ces for the pro­ces­sing of per­so­nal data (e.g., names, e‑mail addres­ses, etc.).

Storage duration

Unless a more spe­ci­fic sto­rage peri­od has been spe­ci­fied in this pri­va­cy poli­cy, your per­so­nal data will remain with us until the pur­po­se for which it was coll­ec­ted no lon­ger appli­es. If you assert a jus­ti­fied request for dele­ti­on or revo­ke your con­sent to data pro­ces­sing, your data will be dele­ted, unless we have other legal­ly per­mis­si­ble reasons for sto­ring your per­so­nal data (e.g., tax or com­mer­cial law reten­ti­on peri­ods); in the lat­ter case, the dele­ti­on will take place after the­se reasons cea­se to app­ly.

General information on the legal basis for the data processing on this website

If you have con­sen­ted to data pro­ces­sing, we pro­cess your per­so­nal data on the basis of Art. 6(1)(a) GDPR or Art. 9 (2)(a) GDPR, if spe­cial cate­go­ries of data are pro­ces­sed accor­ding to Art. 9 (1) DSGVO. In the case of expli­cit con­sent to the trans­fer of per­so­nal data to third count­ries, the data pro­ces­sing is also based on Art. 49 (1)(a) GDPR. If you have con­sen­ted to the sto­rage of coo­kies or to the access to infor­ma­ti­on in your end device (e.g., via device fin­ger­prin­ting), the data pro­ces­sing is addi­tio­nal­ly based on § 25 (1) TDDDG. The con­sent can be revo­ked at any time. If your data is requi­red for the ful­fill­ment of a con­tract or for the imple­men­ta­ti­on of pre-con­trac­tu­al mea­su­res, we pro­cess your data on the basis of Art. 6(1)(b) GDPR. Fur­ther­mo­re, if your data is requi­red for the ful­fill­ment of a legal obli­ga­ti­on, we pro­cess it on the basis of Art. 6(1)© GDPR. Fur­ther­mo­re, the data pro­ces­sing may be car­ri­ed out on the basis of our legi­ti­ma­te inte­rest accor­ding to Art. 6(1)(f) GDPR. Infor­ma­ti­on on the rele­vant legal basis in each indi­vi­du­al case is pro­vi­ded in the fol­lo­wing para­graphs of this pri­va­cy poli­cy.

Information on the data transfer to third-party countries that are not secure under data protection law and the transfer to US companies that are not DPF-certified

We use, among other tech­no­lo­gies, tools from com­pa­nies loca­ted in third-par­ty count­ries that are not safe under data pro­tec­tion law, as well as US tools who­se pro­vi­ders are not cer­ti­fied under the EU-US Data Pri­va­cy Frame­work (DPF). If the­se tools are enab­led, your per­so­nal data may be trans­fer­red to and pro­ces­sed in the­se count­ries. We would like you to note that no level of data pro­tec­tion com­pa­ra­ble to that in the EU can be gua­ran­teed in third count­ries that are inse­cu­re in terms of data pro­tec­tion law.

We would like to point out that the US, as a secu­re third-par­ty coun­try, gene­ral­ly has a level of data pro­tec­tion com­pa­ra­ble to that of the EU. Data trans­fer to the US is the­r­e­fo­re per­mit­ted if the reci­pi­ent is cer­ti­fied under the “EU-US Data Pri­va­cy Frame­work” (DPF) or has appro­pria­te addi­tio­nal assu­ran­ces. Infor­ma­ti­on on trans­fers to third-par­ty count­ries, inclu­ding the data reci­pi­ents, can be found in this Pri­va­cy Poli­cy.

Recipients of personal data

In the scope of our busi­ness acti­vi­ties, we coope­ra­te with various exter­nal par­ties. In some cases, this also requi­res the trans­fer of per­so­nal data to the­se exter­nal par­ties. We only dis­c­lo­se per­so­nal data to exter­nal par­ties if this is requi­red as part of the ful­fill­ment of a con­tract, if we are legal­ly obli­ga­ted to do so (e.g., dis­clo­sure of data to tax aut­ho­ri­ties), if we have a legi­ti­ma­te inte­rest in the dis­clo­sure pur­su­ant to Art. 6 (1)(f) GDPR, or if ano­ther legal basis per­mits the dis­clo­sure of this data. When using pro­ces­sors, we only dis­c­lo­se per­so­nal data of our cus­to­mers on the basis of a valid con­tract on data pro­ces­sing. In the case of joint pro­ces­sing, a joint pro­ces­sing agree­ment is con­cluded.

Revocation of your consent to the processing of data

A wide ran­ge of data pro­ces­sing tran­sac­tions are pos­si­ble only sub­ject to your express con­sent. You can also revo­ke at any time any con­sent you have alre­a­dy given us. This shall be wit­hout pre­ju­di­ce to the lawful­ness of any data coll­ec­tion that occur­red pri­or to your revo­ca­ti­on.

Right to object to the collection of data in special cases; right to object to direct advertising (Art. 21 GDPR)

IN THE EVENT THAT DATA ARE PROCESSED ON THE BASIS OF ART. 6(1)(E) OR (F) GDPR, YOU HAVE THE RIGHT TO AT ANY TIME OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA BASED ON GROUNDS ARISING FROM YOUR UNIQUE SITUATION. THIS ALSO APPLIES TO ANY PROFILING BASED ON THESE PROVISIONS. TO DETERMINE THE LEGAL BASIS, ON WHICH ANY PROCESSING OF DATA IS BASED, PLEASE CONSULT THIS DATA PROTECTION DECLARATION. IF YOU LOG AN OBJECTION, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA, UNLESS WE ARE IN A POSITION TO PRESENT COMPELLING PROTECTION WORTHY GROUNDS FOR THE PROCESSING OF YOUR DATA, THAT OUTWEIGH YOUR INTERESTS, RIGHTS AND FREEDOMS OR IF THE PURPOSE OF THE PROCESSING IS THE CLAIMING, EXERCISING OR DEFENCE OF LEGAL ENTITLEMENTS (OBJECTION PURSUANT TO ART. 21(1) GDPR).

IF YOUR PERSONAL DATA IS BEING PROCESSED IN ORDER TO ENGAGE IN DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR AFFECTED PERSONAL DATA FOR THE PURPOSES OF SUCH ADVERTISING AT ANY TIME. THIS ALSO APPLIES TO PROFILING TO THE EXTENT THAT IT IS AFFILIATED WITH SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR DIRECT ADVERTISING PURPOSES (OBJECTION PURSUANT TO ART. 21(2) GDPR).

Right to log a complaint with the competent supervisory agency

In the event of vio­la­ti­ons of the GDPR, data sub­jects are entit­led to log a com­plaint with a super­vi­so­ry agen­cy, in par­ti­cu­lar in the mem­ber sta­te whe­re they usual­ly main­tain their domic­i­le, place of work or at the place whe­re the alle­ged vio­la­ti­on occur­red. The right to log a com­plaint is in effect regard­less of any other admi­nis­tra­ti­ve or court pro­cee­dings available as legal recour­ses.

Right to data portability

You have the right to have data that we pro­cess auto­ma­ti­cal­ly on the basis of your con­sent or in ful­fill­ment of a con­tract han­ded over to you or to a third par­ty in a com­mon, machi­ne-rea­da­ble for­mat. If you should demand the direct trans­fer of the data to ano­ther con­trol­ler, this will be done only if it is tech­ni­cal­ly fea­si­ble.

Information about, rectification and eradication of data

Within the scope of the appli­ca­ble sta­tu­to­ry pro­vi­si­ons, you have the right to demand infor­ma­ti­on about your archi­ved per­so­nal data, their source and reci­pi­ents as well as the pur­po­se of the pro­ces­sing of your data at any time. You may also have a right to have your data rec­ti­fied or era­di­ca­ted. If you have ques­ti­ons about this sub­ject mat­ter or any other ques­ti­ons about per­so­nal data, plea­se do not hesi­ta­te to cont­act us at any time.

Right to demand processing restrictions

You have the right to demand the impo­si­ti­on of rest­ric­tions as far as the pro­ces­sing of your per­so­nal data is con­cer­ned. To do so, you may cont­act us at any time. The right to demand rest­ric­tion of pro­ces­sing appli­es in the fol­lo­wing cases:

  • In the event that you should dis­pu­te the cor­rect­ness of your data archi­ved by us, we will usual­ly need some time to veri­fy this cla­im. During the time that this inves­ti­ga­ti­on is ongo­ing, you have the right to demand that we rest­rict the pro­ces­sing of your per­so­nal data.
  • If the pro­ces­sing of your per­so­nal data was/is con­duc­ted in an unlawful man­ner, you have the opti­on to demand the rest­ric­tion of the pro­ces­sing of your data ins­tead of deman­ding the era­di­ca­ti­on of this data.
  • If we do not need your per­so­nal data any lon­ger and you need it to exer­cise, defend or cla­im legal entit­le­ments, you have the right to demand the rest­ric­tion of the pro­ces­sing of your per­so­nal data ins­tead of its era­di­ca­ti­on.
  • If you have rai­sed an objec­tion pur­su­ant to Art. 21(1) GDPR, your rights and our rights will have to be weig­hed against each other. As long as it has not been deter­mi­ned who­se inte­rests pre­vail, you have the right to demand a rest­ric­tion of the pro­ces­sing of your per­so­nal data.

If you have rest­ric­ted the pro­ces­sing of your per­so­nal data, the­se data – with the excep­ti­on of their archi­ving – may be pro­ces­sed only sub­ject to your con­sent or to cla­im, exer­cise or defend legal entit­le­ments or to pro­tect the rights of other natu­ral per­sons or legal enti­ties or for important public inte­rest reasons cited by the Euro­pean Uni­on or a mem­ber sta­te of the EU.

SSL and/or TLS encryption

For secu­ri­ty reasons and to pro­tect the trans­mis­si­on of con­fi­den­ti­al con­tent, such as purcha­se orders or inqui­ries you sub­mit to us as the web­site ope­ra­tor, this web­site uses eit­her an SSL or a TLS encryp­ti­on pro­gram. You can reco­gni­ze an encrypt­ed con­nec­tion by che­cking whe­ther the address line of the brow­ser swit­ches from “http://” to “https://” and also by the appearance of the lock icon in the brow­ser line.

If the SSL or TLS encryp­ti­on is acti­va­ted, data you trans­mit to us can­not be read by third par­ties.

Encrypted payment transactions on this website

If you are under an obli­ga­ti­on to share your pay­ment infor­ma­ti­on (e.g. account num­ber if you give us the aut­ho­ri­ty to debit your bank account) with us after you have ente­red into a fee-based con­tract with us, this infor­ma­ti­on is requi­red to pro­cess pay­ments.

Pay­ment tran­sac­tions using com­mon modes of pay­ing (Visa/MasterCard, debit to your bank account) are pro­ces­sed exclu­si­ve­ly via encrypt­ed SSL or TLS con­nec­tions. You can reco­gni­ze an encrypt­ed con­nec­tion by che­cking whe­ther the address line of the brow­ser swit­ches from “http://” to “https://” and also by the appearance of the lock icon in the brow­ser line.

If the com­mu­ni­ca­ti­on with us is encrypt­ed, third par­ties will not be able to read the pay­ment infor­ma­ti­on you share with us.

4. Recording of data on this website

Cookies

Our web­sites and pages use what the indus­try refers to as “coo­kies.” Coo­kies are small data packa­ges that do not cau­se any dama­ge to your device. They are eit­her stored tem­po­r­a­ri­ly for the dura­ti­on of a ses­si­on (ses­si­on coo­kies) or they are per­ma­nent­ly archi­ved on your device (per­ma­nent coo­kies). Ses­si­on coo­kies are auto­ma­ti­cal­ly dele­ted once you ter­mi­na­te your visit. Per­ma­nent coo­kies remain archi­ved on your device until you actively dele­te them, or they are auto­ma­ti­cal­ly era­di­ca­ted by your web brow­ser.

Coo­kies can be issued by us (first-par­ty coo­kies) or by third-par­ty com­pa­nies (so-cal­led third-par­ty coo­kies). Third-par­ty coo­kies enable the inte­gra­ti­on of cer­tain ser­vices of third-par­ty com­pa­nies into web­sites (e.g., coo­kies for hand­ling pay­ment ser­vices).

Coo­kies have a varie­ty of func­tions. Many coo­kies are tech­ni­cal­ly essen­ti­al sin­ce cer­tain web­site func­tions would not work in the absence of the­se coo­kies (e.g., the shop­ping cart func­tion or the dis­play of vide­os). Other coo­kies may be used to ana­ly­ze user beha­vi­or or for pro­mo­tio­nal pur­po­ses.

Coo­kies, which are requi­red for the per­for­mance of elec­tro­nic com­mu­ni­ca­ti­on tran­sac­tions, for the pro­vi­si­on of cer­tain func­tions you want to use (e.g., for the shop­ping cart func­tion) or tho­se that are neces­sa­ry for the opti­miza­ti­on (requi­red coo­kies) of the web­site (e.g., coo­kies that pro­vi­de mea­sura­ble insights into the web audi­ence), shall be stored on the basis of Art. 6(1)(f) GDPR, unless a dif­fe­rent legal basis is cited. The ope­ra­tor of the web­site has a legi­ti­ma­te inte­rest in the sto­rage of requi­red coo­kies to ensu­re the tech­ni­cal­ly error-free and opti­mi­zed pro­vi­si­on of the operator’s ser­vices. If your con­sent to the sto­rage of the coo­kies and simi­lar reco­gni­ti­on tech­no­lo­gies has been reques­ted, the pro­ces­sing occurs exclu­si­ve­ly on the basis of the con­sent obtai­ned (Art. 6(1)(a) GDPR and § 25 (1) TDDDG); this con­sent may be revo­ked at any time.

You have the opti­on to set up your brow­ser in such a man­ner that you will be noti­fied any time coo­kies are pla­ced and to per­mit the accep­tance of coo­kies only in spe­ci­fic cases. You may also exclude the accep­tance of coo­kies in cer­tain cases or in gene­ral or acti­va­te the dele­te-func­tion for the auto­ma­tic era­di­ca­ti­on of coo­kies when the brow­ser clo­ses. If coo­kies are deac­ti­va­ted, the func­tions of this web­site may be limi­t­ed.

Which coo­kies and ser­vices are used on this web­site can be found in this pri­va­cy poli­cy.

Consent with Complianz

Our web­site uses Complianz’s con­sent tech­no­lo­gy to obtain your con­sent to store cer­tain coo­kies on your device or for the use of cer­tain tech­no­lo­gies and to docu­ment this con­sent in a man­ner com­pli­ant with data pro­tec­tion regu­la­ti­ons. The pro­vi­der of this tech­no­lo­gy is Com­pli­anz B.V., Kal­mar­weg 14–5, 9723 JG Gro­nin­gen, the Net­her­lands (her­ein­af­ter “Com­pli­anz”).

Com­pli­anz is hos­ted on our ser­vers, so no con­nec­tion to the ser­vers of the pro­vi­der of Com­pli­anz is estab­lished. Com­pli­anz stores a coo­kie in your brow­ser in order to be able to allo­ca­te the cons­ents gran­ted to you or their revo­ca­ti­on. The data coll­ec­ted in this way is stored until you request us to dele­te it, dele­te the Com­pli­anz coo­kie yours­elf or until the pur­po­se for sto­ring the data no lon­ger appli­es. Man­da­to­ry legal sto­rage obli­ga­ti­ons remain unaf­fec­ted.

Com­pli­anz ser­ves to obtain the legal­ly requi­red con­sent for the use of coo­kies. The legal basis for this is Art. 6(1)© GDPR.

Contact form

If you sub­mit inqui­ries to us via our cont­act form, the infor­ma­ti­on pro­vi­ded in the cont­act form as well as any cont­act infor­ma­ti­on pro­vi­ded the­r­ein will be stored by us in order to hand­le your inquiry and in the event that we have fur­ther ques­ti­ons. We will not share this infor­ma­ti­on wit­hout your con­sent.

The pro­ces­sing of the­se data is based on Art. 6(1)(b) GDPR, if your request is rela­ted to the exe­cu­ti­on of a con­tract or if it is neces­sa­ry to car­ry out pre-con­trac­tu­al mea­su­res. In all other cases the pro­ces­sing is based on our legi­ti­ma­te inte­rest in the effec­ti­ve pro­ces­sing of the requests addres­sed to us (Art. 6(1)(f) GDPR) or on your agree­ment (Art. 6(1)(a) GDPR) if this has been reques­ted; the con­sent can be revo­ked at any time.

The infor­ma­ti­on you have ente­red into the cont­act form shall remain with us until you ask us to era­di­ca­te the data, revo­ke your con­sent to the archi­ving of data or if the pur­po­se for which the infor­ma­ti­on is being archi­ved no lon­ger exists (e.g., after we have con­cluded our respon­se to your inquiry). This shall be wit­hout pre­ju­di­ce to any man­da­to­ry legal pro­vi­si­ons, in par­ti­cu­lar reten­ti­on peri­ods.

Request by e‑mail, telephone, or fax

If you cont­act us by e‑mail, tele­pho­ne or fax, your request, inclu­ding all resul­ting per­so­nal data (name, request) will be stored and pro­ces­sed by us for the pur­po­se of pro­ces­sing your request. We do not pass the­se data on wit­hout your con­sent.

The­se data are pro­ces­sed on the basis of Art. 6(1)(b) GDPR if your inquiry is rela­ted to the ful­fill­ment of a con­tract or is requi­red for the per­for­mance of pre-con­trac­tu­al mea­su­res. In all other cases, the data are pro­ces­sed on the basis of our legi­ti­ma­te inte­rest in the effec­ti­ve hand­ling of inqui­ries sub­mit­ted to us (Art. 6(1)(f) GDPR) or on the basis of your con­sent (Art. 6(1)(a) GDPR) if it has been obtai­ned; the con­sent can be revo­ked at any time.

The data sent by you to us via cont­act requests remain with us until you request us to dele­te, revo­ke your con­sent to the sto­rage or the pur­po­se for the data sto­rage lap­ses (e.g. after com­ple­ti­on of your request). Man­da­to­ry sta­tu­to­ry pro­vi­si­ons – in par­ti­cu­lar sta­tu­to­ry reten­ti­on peri­ods – remain unaf­fec­ted.

Eventbrite

On our web­site you have the pos­si­bi­li­ty to book tickets for dif­fe­rent events. The boo­king of tickets is done via the ticket boo­king sys­tem Event­bri­te. The pro­vi­der is Event­bri­te, Inc., Dela­ware, 155 5th Street, Flo­or 7, San Fran­cis­co, CA 94103, USA.

When you book a ticket with us, Event­bri­te coll­ects all the data you pro­vi­de during the boo­king pro­cess (name, e‑mail address, etc.). In addi­ti­on, your pay­ment data, IP address and other meta­da­ta (brow­ser, ope­ra­ting sys­tem, ver­si­on, ter­mi­nal device) are also coll­ec­ted.

You can view Eventbrite’s pri­va­cy poli­cy here: https://www.eventbrite.de/support/articles/de/Troubleshooting/datenschutzrichtlinie-von-eventbrite?lg=de.

The data you enter will remain with us until you request us to dele­te it, revo­ke your con­sent to store it, or the pur­po­se for sto­ring the data no lon­ger appli­es. Man­da­to­ry legal pro­vi­si­ons – in par­ti­cu­lar reten­ti­on peri­ods – remain unaf­fec­ted.

The legal basis for data pro­ces­sing is Art. 6(1)(f) DSGVO. The web­site ope­ra­tor has a legi­ti­ma­te inte­rest in making the boo­king of tickets as uncom­pli­ca­ted as pos­si­ble. If appro­pria­te con­sent has been obtai­ned, the pro­ces­sing is car­ri­ed out exclu­si­ve­ly on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, inso­far the con­sent includes the sto­rage of coo­kies or the access to infor­ma­ti­on in the user’s end device (e.g., device fin­ger­prin­ting) within the mea­ning of the TDDDG. This con­sent can be revo­ked at any time.

Data trans­fer to the US is based on the stan­dard con­trac­tu­al clau­ses of the EU Com­mis­si­on. Details can be found here: https://www.eventbrite.de/support/articles/de/Troubleshooting/datenschutzrichtlinie-von-eventbrite?lg=de.

The com­pa­ny is cer­ti­fied in accordance with the “EU-US Data Pri­va­cy Frame­work” (DPF). The DPF is an agree­ment bet­ween the Euro­pean Uni­on and the US, which is inten­ded to ensu­re com­pli­ance with Euro­pean data pro­tec­tion stan­dards for data pro­ces­sing in the US. Every com­pa­ny cer­ti­fied under the DPF is obli­ged to com­ply with the­se data pro­tec­tion stan­dards. For more infor­ma­ti­on, plea­se cont­act the pro­vi­der under the fol­lo­wing link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000000TNl5AAG&status=Active

Data processing

We have con­cluded a data pro­ces­sing agree­ment (DPA) for the use of the abo­ve-men­tio­ned ser­vice. This is a con­tract man­da­ted by data pri­va­cy laws that gua­ran­tees that they pro­cess per­so­nal data of our web­site visi­tors only based on our ins­truc­tions and in com­pli­ance with the GDPR.

Registration on this website

You have the opti­on to regis­ter on this web­site to be able to use addi­tio­nal web­site func­tions. We shall use the data you enter only for the pur­po­se of using the respec­ti­ve offer or ser­vice you have regis­tered for. The requi­red infor­ma­ti­on we request at the time of regis­tra­ti­on must be ente­red in full. Other­wi­se, we shall reject the regis­tra­ti­on.

To noti­fy you of any important chan­ges to the scope of our port­fo­lio or in the event of tech­ni­cal modi­fi­ca­ti­ons, we shall use the e‑mail address pro­vi­ded during the regis­tra­ti­on pro­cess.

We shall pro­cess the data ente­red during the regis­tra­ti­on pro­cess on the basis of your con­sent (Art. 6(1)(a) GDPR).

The data recor­ded during the regis­tra­ti­on pro­cess shall be stored by us as long as you are regis­tered on this web­site. Sub­se­quent­ly, such data shall be dele­ted. This shall be wit­hout pre­ju­di­ce to man­da­to­ry sta­tu­to­ry reten­ti­on obli­ga­ti­ons.

The comment function on this website

When you use the com­ment func­tion on this web­site, infor­ma­ti­on on the time the com­ment was gene­ra­ted and your e‑mail-address and, if you are not pos­ting anony­mously, the user­na­me you have sel­ec­ted will be archi­ved in addi­ti­on to your comm­ents.

Storage of the IP address

Our com­ment func­tion stores the IP addres­ses of all users who enter comm­ents. Given that we do not review the comm­ents pri­or to publi­shing them, we need this infor­ma­ti­on in order to take action against the aut­hor in the event of rights vio­la­ti­ons, such as defa­ma­ti­on or pro­pa­gan­da.

Storage period for comments

Comm­ents and any affi­lia­ted infor­ma­ti­on shall be stored by us and remain on this web­site until the con­tent the com­ment per­tai­ned to has been dele­ted in its enti­re­ty or if the comm­ents had to be dele­ted for legal reasons (e.g., insul­ting comm­ents).

Legal basis

Comm­ents are stored on the basis of your con­sent (Art. 6(1)(a) GDPR). You have the right to revo­ke at any time any con­sent you have alre­a­dy given us. To do so, all you are requi­red to do is sent us an infor­mal noti­fi­ca­ti­on via e‑mail. This shall be wit­hout pre­ju­di­ce to the lawful­ness of any data coll­ec­tion that occur­red pri­or to your revo­ca­ti­on.

5. Social media

Social media elements with Shariff

We do use ele­ments of social media net­works on this web­site and its pages (e.g. Face­book, X, Insta­gram, Pin­te­rest, XING, Lin­ke­dIn, Tumb­lr).

As a rule, you will be able to reco­gni­ze the­se social media ele­ments becau­se of the respec­ti­ve social media logos that appear. To war­rant the pro­tec­tion of data on this web­site, we use the­se ele­ments only in com­bi­na­ti­on with the so-cal­led “Sha­riff” solu­ti­on. This appli­ca­ti­on pre­vents the social media ele­ments that have been inte­gra­ted into this web­site from trans­fer­ring per­so­nal data to the respec­ti­ve pro­vi­der as soon as you enter our web­site.

A direct con­nec­tion to the provider’s ser­ver shall not be estab­lished until you have acti­va­ted the respec­ti­ve social media ele­ment by cli­cking on the affi­lia­ted but­ton (which indi­ca­tes your con­sent). As soon as you acti­va­te the social media ele­ment, the respec­ti­ve pro­vi­der recei­ves the infor­ma­ti­on that you have visi­ted this web­site with your IP address. If you are simul­ta­neous­ly log­ged into your respec­ti­ve social media account (e.g. Face­book), the respec­ti­ve pro­vi­der will be able to allo­ca­te your visit to this web­site to your user account.

The acti­va­ti­on of the plug-in con­sti­tu­tes a decla­ra­ti­on of con­sent as defi­ned in Art. 6(1)(a) GDPR and und § 25 (1) TDDDG. You have the opti­on to revo­ke this con­sent at any time, which shall affect all future tran­sac­tions.

This ser­vice is used to obtain the con­sent to the use of cer­tain tech­no­lo­gies requi­red by law. The legal basis for this is Art. 6(1)© GDPR.

Facebook

We have inte­gra­ted ele­ments of the social net­work Face­book on this web­site. The pro­vi­der of this ser­vice is Meta Plat­forms Ire­land Limi­t­ed, Mer­ri­on Road, Dub­lin 4, D04 X2K5, Ire­land. Accor­ding to Facebook’s state­ment the coll­ec­ted data will be trans­fer­red to the USA and other third-par­ty count­ries too.

An over­view of the Face­book social media ele­ments is available under the fol­lo­wing link: https://developers.facebook.com/docs/plugins/.

If the social media ele­ment has been acti­va­ted, a direct con­nec­tion bet­ween your device and the Face­book ser­ver will be estab­lished. As a result, Face­book will recei­ve infor­ma­ti­on con­fir­ming your visit to this web­site with your IP address. If you click on the Face­book Like but­ton while you are log­ged into your Face­book account, you can link con­tent of this web­site to your Face­book pro­fi­le. Con­se­quent­ly, Face­book will be able to allo­ca­te your visit to this web­site to your user account. We have to empha­si­ze that we as the pro­vi­der of the web­site do not recei­ve any infor­ma­ti­on on the con­tent of the trans­fer­red data and its use by Face­book. For more infor­ma­ti­on, plea­se con­sult the Data Pri­va­cy Poli­cy of Face­book at: https://de-de.facebook.com/privacy/explanation.

The use of this ser­vice is based on your con­sent in accordance with Art. 6 (1)(a) GDPR and § 25 (1) TDDDG. Con­sent can be revo­ked at any time.

Inso­far as per­so­nal data is coll­ec­ted on our web­site with the help of the tool descri­bed here and for­ward­ed to Face­book, we and Meta Plat­forms Ire­land Limi­t­ed, 4 Grand Canal Squa­re, Grand Canal Har­bour, Dub­lin 2, Ire­land are joint­ly respon­si­ble for this data pro­ces­sing (Art. 26 DSGVO). The joint respon­si­bi­li­ty is limi­t­ed exclu­si­ve­ly to the coll­ec­tion of the data and its for­war­ding to Face­book. The pro­ces­sing by Face­book that takes place after the onward trans­fer is not part of the joint respon­si­bi­li­ty. The obli­ga­ti­ons incum­bent on us joint­ly have been set out in a joint pro­ces­sing agree­ment. The wor­ding of the agree­ment can be found under: https://www.facebook.com/legal/controller_addendum. Accor­ding to this agree­ment, we are respon­si­ble for pro­vi­ding the pri­va­cy infor­ma­ti­on when using the Face­book tool and for the pri­va­cy-secu­re imple­men­ta­ti­on of the tool on our web­site. Face­book is respon­si­ble for the data secu­ri­ty of Face­book pro­ducts. You can assert data sub­ject rights (e.g., requests for infor­ma­ti­on) regar­ding data pro­ces­sed by Face­book direct­ly with Face­book. If you assert the data sub­ject rights with us, we are obli­ged to for­ward them to Face­book.

Data trans­mis­si­on to the US is based on the Stan­dard Con­trac­tu­al Clau­ses (SCC) of the Euro­pean Com­mis­si­on. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://de-de.facebook.com/help/566994660333381 and https://www.facebook.com/policy.php.

The com­pa­ny is cer­ti­fied in accordance with the “EU-US Data Pri­va­cy Frame­work” (DPF). The DPF is an agree­ment bet­ween the Euro­pean Uni­on and the US, which is inten­ded to ensu­re com­pli­ance with Euro­pean data pro­tec­tion stan­dards for data pro­ces­sing in the US. Every com­pa­ny cer­ti­fied under the DPF is obli­ged to com­ply with the­se data pro­tec­tion stan­dards. For more infor­ma­ti­on, plea­se cont­act the pro­vi­der under the fol­lo­wing link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000000GnywAAC&status=Active

X (formerly Twitter)

We have inte­gra­ted func­tions of the social media plat­form X (form­er­ly Twit­ter) into this web­site. The­se func­tions are pro­vi­ded by the parent com­pa­ny X Corp., 1355 Mar­ket Street, Suite 900, San Fran­cis­co, CA 94103, USA. The branch Twit­ter Inter­na­tio­nal Unli­mi­t­ed Com­pa­ny, One Cum­ber­land Place, Feni­an Street, Dub­lin 2, D02 AX07, Ire­land, is respon­si­ble for the data pro­ces­sing of indi­vi­du­als living out­side the United Sta­tes.

If the social media ele­ment has been acti­va­ted, a direct con­nec­tion bet­ween your device and X’s ser­ver will be estab­lished. As a result, X (form­er­ly Twit­ter) will recei­ve infor­ma­ti­on on your visit to this web­site. While you use X (form­er­ly Twit­ter) and the “Re-Tweet” or “Repost” func­tion, web­sites you visit are lin­ked to your X (form­er­ly Twit­ter) account and dis­c­lo­sed to other users. We must point out, that we, the pro­vi­ders of the web­site and its pages do not know any­thing about the con­tent of the data trans­fer­red and the use of this infor­ma­ti­on by X (form­er­ly Twit­ter). For more details, plea­se con­sult the X (form­er­ly Twit­ter) Data Pri­va­cy Decla­ra­ti­on at: https://twitter.com/en/privacy.

The use of this ser­vice is based on your con­sent in accordance with Art. 6 (1)(a) GDPR and § 25 (1) TDDDG. Con­sent can be revo­ked at any time.

Data trans­mis­si­on to the US is based on the Stan­dard Con­trac­tu­al Clau­ses (SCC) of the Euro­pean Com­mis­si­on. Details can be found here: https://gdpr.twitter.com/en/controller-to-controller-transfers.html.

You have the opti­on to reset your data pro­tec­tion set­tings on X (form­er­ly Twit­ter) under the account set­tings at https://twitter.com/account/settings.

Instagram

We have inte­gra­ted func­tions of the public media plat­form Insta­gram into this web­site. The­se func­tions are being offe­red by Meta Plat­forms Ire­land Limi­t­ed, Mer­ri­on Road, Dub­lin 4, D04 X2K5, Ire­land.

If the social media ele­ment has been acti­va­ted, a direct con­nec­tion bet­ween your device and Instagram’s ser­ver will be estab­lished. As a result, Insta­gram will recei­ve infor­ma­ti­on on your visit to this web­site.

If you are log­ged into your Insta­gram account, you may click the Insta­gram but­ton to link con­tents from this web­site to your Insta­gram pro­fi­le. This enables Insta­gram to allo­ca­te your visit to this web­site to your user account. We have to point out that we as the pro­vi­der of the web­site and its pages do not have any know­ledge of the con­tent of the data trans­fer­red and its use by Insta­gram.

The use of this ser­vice is based on your con­sent in accordance with Art. 6 (1)(a) GDPR and § 25 (1) TDDDG. Con­sent can be revo­ked at any time.

Inso­far as per­so­nal data is coll­ec­ted on our web­site with the help of the tool descri­bed here and for­ward­ed to Face­book or Insta­gram, we and Meta Plat­forms Ire­land Limi­t­ed, 4 Grand Canal Squa­re, Grand Canal Har­bour, Dub­lin 2, Ire­land are joint­ly respon­si­ble for this data pro­ces­sing (Art. 26 DSGVO). The joint respon­si­bi­li­ty is limi­t­ed exclu­si­ve­ly to the coll­ec­tion of the data and its for­war­ding to Face­book or Insta­gram. The pro­ces­sing by Face­book or Insta­gram that takes place after the onward trans­fer is not part of the joint respon­si­bi­li­ty. The obli­ga­ti­ons incum­bent on us joint­ly have been set out in a joint pro­ces­sing agree­ment. The wor­ding of the agree­ment can be found under: https://www.facebook.com/legal/controller_addendum. Accor­ding to this agree­ment, we are respon­si­ble for pro­vi­ding the pri­va­cy infor­ma­ti­on when using the Face­book or Insta­gram tool and for the pri­va­cy-secu­re imple­men­ta­ti­on of the tool on our web­site. Face­book is respon­si­ble for the data secu­ri­ty of Face­book or Insta­gram pro­ducts. You can assert data sub­ject rights (e.g., requests for infor­ma­ti­on) regar­ding data pro­ces­sed by Face­book or Insta­gram direct­ly with Face­book. If you assert the data sub­ject rights with us, we are obli­ged to for­ward them to Face­book.

Data trans­mis­si­on to the US is based on the Stan­dard Con­trac­tu­al Clau­ses (SCC) of the Euro­pean Com­mis­si­on. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://privacycenter.instagram.com/policy/ and https://de-de.facebook.com/help/566994660333381.

For more infor­ma­ti­on on this sub­ject, plea­se con­sult Instagram’s Data Pri­va­cy Decla­ra­ti­on at: https://privacycenter.instagram.com/policy/.

The com­pa­ny is cer­ti­fied in accordance with the “EU-US Data Pri­va­cy Frame­work” (DPF). The DPF is an agree­ment bet­ween the Euro­pean Uni­on and the US, which is inten­ded to ensu­re com­pli­ance with Euro­pean data pro­tec­tion stan­dards for data pro­ces­sing in the US. Every com­pa­ny cer­ti­fied under the DPF is obli­ged to com­ply with the­se data pro­tec­tion stan­dards. For more infor­ma­ti­on, plea­se cont­act the pro­vi­der under the fol­lo­wing link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000000GnywAAC&status=Active

Tumblr

This web­site uses but­tons and other ele­ments pro­vi­ded by Tumb­lr. The pro­vi­der of this ser­vice is Tumb­lr, Inc., 35 East 21st St, 10th Flo­or, New York, NY 10010, USA.

If the social media ele­ment has been acti­va­ted, a direct con­nec­tion bet­ween your device and Tumblr’s ser­ver will be estab­lished. As a result, Tumb­lr will recei­ve infor­ma­ti­on on your visit to this web­site.

The Tumb­lr but­tons enable you to share a report or a page on Tumb­lr or to fol­low the pro­vi­der on Tumb­lr. If you access one of our web­sites via the Tumb­lr but­ton, your brow­ser will estab­lish a direct con­nec­tion with Tumblr’s ser­vers. We do not have any con­trol over the volu­me of data Tumb­lr coll­ects and trans­fers with the assis­tance of this plug-in. Based on the cur­rent sta­tus of the infor­ma­ti­on we have the IP address of the user, and the URL of the respec­ti­ve web­site are both trans­fer­red.

The use of this ser­vice is based on your con­sent in accordance with Art. 6 (1)(a) GDPR and § 25 (1) TDDDG. Con­sent can be revo­ked at any time.

For fur­ther infor­ma­ti­on on this sub­ject, plea­se con­sult Tumblr’s Data Pri­va­cy Decla­ra­ti­on at: https://www.tumblr.com/privacy/en.

LinkedIn

This web­site uses ele­ments of the Lin­ke­dIn net­work. The pro­vi­der is Lin­ke­dIn Ire­land Unli­mi­t­ed Com­pa­ny, Wil­ton Pla­za, Wil­ton Place, Dub­lin 2, Ire­land.

Any time you access a page of this web­site that con­ta­ins ele­ments of Lin­ke­dIn, a con­nec­tion to LinkedIn’s ser­vers is estab­lished. Lin­ke­dIn is noti­fied that you have visi­ted this web­site with your IP address. If you click on LinkedIn’s “Recom­mend” but­ton and are log­ged into your Lin­ke­dIn account at the time, Lin­ke­dIn will be in a posi­ti­on to allo­ca­te your visit to this web­site to your user account. We have to point out that we as the pro­vi­der of the web­sites do not have any know­ledge of the con­tent of the trans­fer­red data and its use by Lin­ke­dIn.

The use of this ser­vice is based on your con­sent in accordance with Art. 6 (1)(a) GDPR and § 25 (1) TDDDG. Con­sent can be revo­ked at any time.

Data trans­mis­si­on to the US is based on the Stan­dard Con­trac­tu­al Clau­ses (SCC) of the Euro­pean Com­mis­si­on. Details can be found here: https://www.linkedin.com/help/linkedin/answer/a1343190/datenubertragung-aus-der-eu-dem-ewr-und-der-schweiz?lang=de.

For fur­ther infor­ma­ti­on on this sub­ject, plea­se con­sult LinkedIn’s Data Pri­va­cy Decla­ra­ti­on at: https://www.linkedin.com/legal/privacy-policy.

6. Analysis tools and advertising

Matomo

This web­site uses the open-source web ana­ly­sis ser­vice Mato­mo.

Through Mato­mo, we are able to coll­ect and ana­ly­ze data on the use of our web­site-by-web­site visi­tors. This enables us to find out, for ins­tance, when which page views occur­red and from which regi­on they came. In addi­ti­on, we coll­ect various log files (e.g. IP address, refer­rer, brow­ser, and ope­ra­ting sys­tem used) and can mea­su­re whe­ther our web­site visi­tors per­form cer­tain actions (e.g. clicks, purcha­ses, etc.).

The use of this ana­ly­sis tool is based on Art. 6(1)(f) GDPR. The web­site ope­ra­tor has a legi­ti­ma­te inte­rest in the ana­ly­sis of user pat­terns, in order to opti­mi­ze the operator’s web offe­rings and adver­ti­sing. If appro­pria­te con­sent has been obtai­ned, the pro­ces­sing is car­ri­ed out exclu­si­ve­ly on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, inso­far the con­sent includes the sto­rage of coo­kies or the access to infor­ma­ti­on in the user’s end device (e.g., device fin­ger­prin­ting) within the mea­ning of the TDDDG. This con­sent can be revo­ked at any time.

IP anonymization

For ana­ly­sis with Mato­mo we use IP anony­miza­ti­on. Your IP address is shor­ten­ed befo­re the ana­ly­sis, so that it is no lon­ger cle­ar­ly assi­gnable to you.

Analysis without cookies

We have con­fi­gu­red Mato­mo in such a way that Mato­mo will not store coo­kies in your brow­ser.

Hosting

We host Mato­mo exclu­si­ve­ly on our own ser­vers so that all ana­ly­sis data remains with us and is not pas­sed on.

IONOS Web Analytics

This web­site uses IONOS Web­Ana­ly­tics ana­ly­sis ser­vices. The pro­vi­der of the­se ser­vices is 1&1 IONOS SE, Elgen­dor­fer Stra­ße 57, 56410 Mon­ta­baur, Ger­ma­ny. In con­junc­tion with the per­for­mance of ana­ly­ses by IONOS, it is pos­si­ble to e.g., ana­ly­ze the num­ber of visi­tors and their beha­vi­or pat­terns during visits (e.g., num­ber of pages acces­sed, dura­ti­on of their visits to the web­site, per­cen­ta­ge of abor­ted visits), visi­tor ori­g­ins (i.e., from which site does the visi­tor arri­ve at our site), visi­tor loca­ti­ons as well as tech­ni­cal data (brow­ser and ses­si­on of ope­ra­ting sys­tem used). For the­se pur­po­ses, IONOS archi­ves in par­ti­cu­lar the fol­lo­wing data:

  • Refer­rer (pre­vious­ly visi­ted web­site)
  • Acces­sed page on the web­site or file
  • Brow­ser type and brow­ser ver­si­on
  • Used ope­ra­ting sys­tem
  • Type of device used
  • Web­site access time
  • Anony­mi­zed IP address (used only to deter­mi­ne the access loca­ti­on)

Accor­ding to IONOS, the data recor­ded are com­ple­te­ly anony­mi­zed so they can­not be tra­cked back to indi­vi­du­als. IONOS Web­Ana­ly­tics does not archi­ve coo­kies.

The data are stored and ana­ly­zed pur­su­ant to Art. 6(1)(f) GDPR. The ope­ra­tor of the web­site has a legi­ti­ma­te inte­rest in the sta­tis­ti­cal ana­ly­sis of user pat­terns to opti­mi­ze both, the operator’s web pre­sen­ta­ti­on as well as the operator’s pro­mo­tio­nal acti­vi­ties. If appro­pria­te con­sent has been obtai­ned, the pro­ces­sing is car­ri­ed out exclu­si­ve­ly on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, inso­far the con­sent includes the sto­rage of coo­kies or the access to infor­ma­ti­on in the user’s end device (e.g., device fin­ger­prin­ting) within the mea­ning of the TDDDG. This con­sent can be revo­ked at any time.

For more infor­ma­ti­on affi­lia­ted with the recor­ding and pro­ces­sing of data by IONOS Web­Ana­ly­tics, plea­se click on the fol­lo­wing link of the data poli­cy decla­ra­ti­on: https://www.ionos.de/terms-gtc/datenschutzerklaerung/.

Data processing

We have con­cluded a data pro­ces­sing agree­ment (DPA) for the use of the abo­ve-men­tio­ned ser­vice. This is a con­tract man­da­ted by data pri­va­cy laws that gua­ran­tees that they pro­cess per­so­nal data of our web­site visi­tors only based on our ins­truc­tions and in com­pli­ance with the GDPR.

7. Newsletter

Newsletter data

If you would like to recei­ve the news­let­ter offe­red on the web­site, we requi­re an e‑mail address from you as well as infor­ma­ti­on that allows us to veri­fy that you are the owner of the e‑mail address pro­vi­ded and that you agree to recei­ve the news­let­ter. Fur­ther data is not coll­ec­ted or only on a vol­un­t­a­ry basis. For the hand­ling of the news­let­ter, we use news­let­ter ser­vice pro­vi­ders, which are descri­bed below.

GetResponse

This web­site uses Get­Re­spon­se for the sen­ding of news­let­ters. The pro­vi­der is the Get­Re­spon­se Sp. z o.o., which main­ta­ins its regis­tered busi­ness domic­i­le in Gdansk, Pol­and ul. Arkon­ska 6, A3, 80–387 Gdansk, Pol­and, web­site: https://www.getresponse.de (her­ein­af­ter refer­red to as “Get­Re­spon­se”).

Get­Re­spon­se ser­vices can, among other things, be used to orga­ni­ze and ana­ly­ze the sen­ding of news­let­ters. The data you enter for the pur­po­se of sub­scrib­ing to the news­let­ter are archi­ved on GetResponse’s ser­vers. Get­Re­spon­se uses ser­vers in the US, so your news­let­ter data may be trans­fer­red to the US. The US is con­side­red a non-secu­re third coun­try under data pro­tec­tion law.

Data analysis by GetResponse

Sen­ding news­let­ters with Get­Re­spon­se enables us to ana­ly­ze the user pat­terns of our news­let­ter sub­scri­bers. Among other things, we can ana­ly­ze how many reci­pi­ents have ope­ned their news­let­ter mes­sa­ges and how often they have cli­cked which link. With the assis­tance of a tool cal­led Con­ver­si­on Track­ing, it is also pos­si­ble to deter­mi­ne whe­ther, after cli­cking on a link in a news­let­ter, the sub­scri­ber car­ri­es out a pre­de­fi­ned action (e.g., purcha­se of a pro­duct, sha­ring of infor­ma­ti­on on social net­works, can­cel­la­ti­on of the sub­scrip­ti­on). Moreo­ver, we can also track when a news­let­ter mes­sa­ge was ope­ned. This allows us to deli­ver news­let­ter e‑mails at times the news­let­ter sub­scri­ber is likely going to be the most acti­ve. We can even take the time zone the sub­scri­ber lives in into account. Get­Re­spon­se also offers us the opti­on to divi­de news­let­ter reci­pi­ents into groups based on their inte­rests. This allows us to send our news­let­ter sub­scri­bers con­tent that is the most com­pa­ti­ble with their respec­ti­ve inte­rests.

For more infor­ma­ti­on about GetResponse’s fea­tures and ser­vices, plea­se visit: https://www.getresponse.de/email-marketing/funktionen/e‑mail-marketing.

Legal basis

The data is pro­ces­sed based on your con­sent (Art. 6(1)(a) GDPR). You may revo­ke any con­sent you have given at any time by unsub­scrib­ing from the news­let­ter. This shall be wit­hout pre­ju­di­ce to the lawful­ness of any data pro­ces­sing tran­sac­tions that have taken place pri­or to your revo­ca­ti­on.

Data trans­mis­si­on to the US is based on the Stan­dard Con­trac­tu­al Clau­ses (SCC) of the Euro­pean Com­mis­si­on. Details can be found here: https://www.getresponse.com/de/legal/standard-contractual-clauses.

Storage period

The data depo­si­ted with us for the pur­po­se of sub­scrib­ing to the news­let­ter will be stored by us until you unsub­scri­be from the news­let­ter or the news­let­ter ser­vice pro­vi­der and dele­ted from the news­let­ter dis­tri­bu­ti­on list after you unsub­scri­be from the news­let­ter. Data stored for other pur­po­ses with us remain unaf­fec­ted.

After you unsub­scri­be from the news­let­ter dis­tri­bu­ti­on list, your e‑mail address may be stored by us or the news­let­ter ser­vice pro­vi­der in a black­list, if such action is neces­sa­ry to pre­vent future mai­lings. The data from the black­list is used only for this pur­po­se and not mer­ged with other data. This ser­ves both your inte­rest and our inte­rest in com­ply­ing with the legal requi­re­ments when sen­ding news­let­ters (legi­ti­ma­te inte­rest within the mea­ning of Art. 6(1)(f) GDPR). The sto­rage in the black­list is inde­fi­ni­te. You may object to the sto­rage if your inte­rests out­weigh our legi­ti­ma­te inte­rest.

For more details, plea­se con­sult the Data Pro­tec­tion Regu­la­ti­ons of Get­Re­spon­se at: https://www.getresponse.de/email-marketing/legal/datenschutz.html.

The com­pa­ny is cer­ti­fied in accordance with the “EU-US Data Pri­va­cy Frame­work” (DPF). The DPF is an agree­ment bet­ween the Euro­pean Uni­on and the US, which is inten­ded to ensu­re com­pli­ance with Euro­pean data pro­tec­tion stan­dards for data pro­ces­sing in the US. Every com­pa­ny cer­ti­fied under the DPF is obli­ged to com­ply with the­se data pro­tec­tion stan­dards. For more infor­ma­ti­on, plea­se cont­act the pro­vi­der under the fol­lo­wing link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000000CkBeAAK&status=Active

Data processing

We have con­cluded a data pro­ces­sing agree­ment (DPA) for the use of the abo­ve-men­tio­ned ser­vice. This is a con­tract man­da­ted by data pri­va­cy laws that gua­ran­tees that they pro­cess per­so­nal data of our web­site visi­tors only based on our ins­truc­tions and in com­pli­ance with the GDPR.

8. Plug-ins and Tools

YouTube with expanded data protection integration

This web­site inte­gra­tes vide­os from the You­Tube web­site. The ope­ra­tor of the web­site is Goog­le Ire­land Limi­t­ed (“Goog­le”), Gor­don House, Bar­row Street, Dub­lin 4, Ire­land.

When you visit one of the­se web­sites on which You­Tube is inte­gra­ted, a con­nec­tion to the You­Tube ser­vers is estab­lished. This tells the You­Tube ser­ver which of our pages you have visi­ted. If you are log­ged into your You­Tube account, you enable You­Tube to assign your sur­fing beha­vi­or direct­ly to your per­so­nal pro­fi­le. You can pre­vent this by log­ging out of your You­Tube account.

We use You­Tube in exten­ded data pro­tec­tion mode. Accor­ding to You­Tube, vide­os that are play­ed in exten­ded data pro­tec­tion mode are not used to per­so­na­li­ze brow­sing on You­Tube. Ads that are play­ed in exten­ded data pro­tec­tion mode are also not per­so­na­li­zed. No coo­kies are set in exten­ded data pro­tec­tion mode. Ins­tead, so-cal­led local sto­rage ele­ments are stored in the user’s brow­ser, which con­tain per­so­nal data simi­lar to coo­kies and can be used for reco­gni­ti­on. Details on the exten­ded data pro­tec­tion mode can be found here: https://support.google.com/youtube/answer/171780.

After acti­vat­ing a You­Tube video, fur­ther data pro­ces­sing ope­ra­ti­ons may be trig­ge­red over which we have no influence.

The use of You­Tube is based on our inte­rest in pre­sen­ting our online con­tent in an appe­al­ing man­ner. Pur­su­ant to Art. 6(1)(f) GDPR, this is a legi­ti­ma­te inte­rest. If appro­pria­te con­sent has been obtai­ned, the pro­ces­sing is car­ri­ed out exclu­si­ve­ly on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, inso­far the con­sent includes the sto­rage of coo­kies or the access to infor­ma­ti­on in the user’s end device (e.g., device fin­ger­prin­ting) within the mea­ning of the TDDDG. This con­sent can be revo­ked at any time.

For more infor­ma­ti­on on how You­Tube hand­les user data, plea­se con­sult the You­Tube Data Pri­va­cy Poli­cy under: https://policies.google.com/privacy?hl=en.

The com­pa­ny is cer­ti­fied in accordance with the “EU-US Data Pri­va­cy Frame­work” (DPF). The DPF is an agree­ment bet­ween the Euro­pean Uni­on and the US, which is inten­ded to ensu­re com­pli­ance with Euro­pean data pro­tec­tion stan­dards for data pro­ces­sing in the US. Every com­pa­ny cer­ti­fied under the DPF is obli­ged to com­ply with the­se data pro­tec­tion stan­dards. For more infor­ma­ti­on, plea­se cont­act the pro­vi­der under the fol­lo­wing link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active

Google Fonts (local embedding)

This web­site uses so-cal­led Goog­le Fonts pro­vi­ded by Goog­le to ensu­re the uni­form use of fonts on this site. The­se Goog­le fonts are local­ly instal­led so that a con­nec­tion to Google’s ser­vers will not be estab­lished in con­junc­tion with this appli­ca­ti­on.

For more infor­ma­ti­on on Goog­le Fonts, plea­se fol­low this link: https://developers.google.com/fonts/faq and con­sult Google’s Data Pri­va­cy Decla­ra­ti­on under: https://policies.google.com/privacy?hl=en.

Font Awesome (local embedding)

This web­site uses Font Awe­so­me to ensu­re the uni­form use of fonts on this site. Font Awe­so­me is local­ly instal­led so that a con­nec­tion to Fon­ti­cons, Inc.’s ser­vers will not be estab­lished in con­junc­tion with this appli­ca­ti­on.

For more infor­ma­ti­on on Font Awe­so­me, plea­se and con­sult the Data Pri­va­cy Decla­ra­ti­on for Font Awe­so­me under: https://fontawesome.com/privacy.

Google Maps

This web­site uses the map­ping ser­vice Goog­le Maps. The pro­vi­der is Goog­le Ire­land Limi­t­ed (“Goog­le”), Gor­don House, Bar­row Street, Dub­lin 4, Ire­land. With the means of this ser­vice, we can inte­gra­te map mate­ri­al on our web­site.

To enable the use of the Goog­le Maps fea­tures, your IP address must be stored. As a rule, this infor­ma­ti­on is trans­fer­red to one of Google’s ser­vers in the United Sta­tes, whe­re it is archi­ved. The ope­ra­tor of this web­site has no con­trol over the data trans­fer. In case Goog­le Maps has been acti­va­ted, Goog­le has the opti­on to use Goog­le Fonts for the pur­po­se of the uni­form depic­tion of fonts. When you access Goog­le Maps, your brow­ser will load the requi­red web fonts into your brow­ser cache, to cor­rect­ly dis­play text and fonts.

We use Goog­le Maps to pre­sent our online con­tent in an appe­al­ing man­ner and to make the loca­ti­ons dis­c­lo­sed on our web­site easy to find. This con­sti­tu­tes a legi­ti­ma­te inte­rest as defi­ned in Art. 6(1)(f) GDPR. If appro­pria­te con­sent has been obtai­ned, the pro­ces­sing is car­ri­ed out exclu­si­ve­ly on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, inso­far the con­sent includes the sto­rage of coo­kies or the access to infor­ma­ti­on in the user’s end device (e.g., device fin­ger­prin­ting) within the mea­ning of the TDDDG. This con­sent can be revo­ked at any time.

Data trans­mis­si­on to the US is based on the Stan­dard Con­trac­tu­al Clau­ses (SCC) of the Euro­pean Com­mis­si­on. Details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

For more infor­ma­ti­on on the hand­ling of user data, plea­se review Google’s Data Pri­va­cy Decla­ra­ti­on under: https://policies.google.com/privacy?hl=en.

The com­pa­ny is cer­ti­fied in accordance with the “EU-US Data Pri­va­cy Frame­work” (DPF). The DPF is an agree­ment bet­ween the Euro­pean Uni­on and the US, which is inten­ded to ensu­re com­pli­ance with Euro­pean data pro­tec­tion stan­dards for data pro­ces­sing in the US. Every com­pa­ny cer­ti­fied under the DPF is obli­ged to com­ply with the­se data pro­tec­tion stan­dards. For more infor­ma­ti­on, plea­se cont­act the pro­vi­der under the fol­lo­wing link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active

CleanTalk

This web­site uses the anti-spam plug­ins of Cle­anT­alk. The pro­vi­der is Cle­anT­alk Inc, 711 S Carson Street, Suite 4, Carson City, NV, 89701, USA (her­ein­af­ter refer­red to as “Cle­anT­alk”).

The pur­po­se of using Cle­anT­alk is to pro­tect our web­site against spam acti­vi­ties (such as unso­li­ci­ted ads, mes­sa­ges, or comm­ents). To achie­ve this, Cle­anT­alk records a varie­ty of per­so­nal data, such as the IP address, email address, nick­na­me of the sen­ders of mes­sa­ges, infor­ma­ti­on about the tech­no­lo­gy of Java­Script in the sender’s brow­ser and any text copy ente­red.

This infor­ma­ti­on will be trans­fer­red to a Cle­anT­alk ser­ver in the EU and will be archi­ved the­re.

For secu­ri­ty reasons and to fend off spam, your data will be pro­ces­sed by the Cle­anT­alk Cloud Ser­vice and will be archi­ved for a maxi­mum of 31 days in log files. Once this peri­od ends, the data will be dele­ted enti­re­ly.

Our com­pa­ny uses Cle­anT­alk on the basis of Art. 6 (1)(f) GDPR. The web­site ope­ra­tor has a legi­ti­ma­te inte­rest in pro­tec­ting the operator’s web­site from spam acti­vi­ties as effec­tively as pos­si­ble. If per­ti­nent con­sent has been reques­ted from you, pro­ces­sing will occur exclu­si­ve­ly on the basis of Art. 6 (1)(a) GDPR and § 25 (1) TDDDG if the con­sent includes the archi­ving of coo­kies or access to infor­ma­ti­on the user’s device as defi­ned in the TDDDG. Such con­sent may be revo­ked at any time.

The data trans­fer to the United Sta­tes is based on the stan­dard con­tract clau­ses of the EU Com­mis­si­ons. For details, plea­se visit: https://cleantalk.org/my/session?back_url=profile#scc_agreement.

The com­pa­ny is cer­ti­fied in accordance with the “EU-US Data Pri­va­cy Frame­work” (DPF). The DPF is an agree­ment bet­ween the Euro­pean Uni­on and the US, which is inten­ded to ensu­re com­pli­ance with Euro­pean data pro­tec­tion stan­dards for data pro­ces­sing in the US. Every com­pa­ny cer­ti­fied under the DPF is obli­ged to com­ply with the­se data pro­tec­tion stan­dards. For more infor­ma­ti­on, plea­se cont­act the pro­vi­der under the fol­lo­wing link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt00000008SzYAAU&status=Active

Data processing

We have con­cluded a data pro­ces­sing agree­ment (DPA) for the use of the abo­ve-men­tio­ned ser­vice. This is a con­tract man­da­ted by data pri­va­cy laws that gua­ran­tees that they pro­cess per­so­nal data of our web­site visi­tors only based on our ins­truc­tions and in com­pli­ance with the GDPR.

SolidWP

We have inte­gra­ted SolidWP into this web­site. The pro­vi­der is iThe­mes Media LLC, 1720 South Kel­ly Ave­nue Edmond, OK 73013, USA (her­ein­af­ter refer­red to as “SolidWP”).

SolidWP pro­tects our web­site against unde­si­ra­ble access or mali­cious cyber-attacks. For this pur­po­se, SolidWP records, among other things, your IP address, the time, and source of log­in attempts and log files (e.g., the uti­li­zed brow­ser). SolidWP is instal­led local­ly on our ser­vers.

SolidWP trans­mits IP addres­ses of recur­ring atta­ckers to a cen­tral data­ba­se of SolidWP in the US (Net­work Bru­te Force Pro­tec­tion) to pre­vent such attacks in the future.

The use of SolidWP is based on Art. 6(1)(f) GDPR. The web­site ope­ra­tor has a legi­ti­ma­te inte­rest in pro­tec­ting its web­site opti­mal­ly against cyber-attacks. If appro­pria­te con­sent has been obtai­ned, the pro­ces­sing is car­ri­ed out exclu­si­ve­ly on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, inso­far the con­sent includes the sto­rage of coo­kies or the access to infor­ma­ti­on in the user’s end device (e.g., device fin­ger­prin­ting) within the mea­ning of the TDDDG. This con­sent can be revo­ked at any time.

9. eCommerce and payment service providers

Processing of Customer and Contract Data

We coll­ect, pro­cess, and use per­so­nal cus­to­mer and con­tract data for the estab­lish­ment, con­tent arran­ge­ment and modi­fi­ca­ti­on of our con­trac­tu­al rela­ti­onships. Data with per­so­nal refe­ren­ces to the use of this web­site (usa­ge data) will be coll­ec­ted, pro­ces­sed, and used only if this is neces­sa­ry to enable the user to use our ser­vices or requi­red for bil­ling pur­po­ses. The legal basis for the­se pro­ces­ses is Art. 6(1)(b) GDPR.

The coll­ec­ted cus­to­mer data shall be dele­ted upon com­ple­ti­on of the order or ter­mi­na­ti­on of the busi­ness rela­ti­onship and upon expi­ra­ti­on of any exis­ting sta­tu­to­ry archi­ving peri­ods. This shall be wit­hout pre­ju­di­ce to any sta­tu­to­ry archi­ving peri­ods.

Data transfer upon closing of contracts for online stores, retailers, and the shipment of merchandise

When­ever you order mer­chan­di­se from us, we will share your per­so­nal data with the trans­por­ta­ti­on com­pa­ny ent­rus­ted with the deli­very as well as the pay­ment ser­vice com­mis­sio­ned to hand­le the pay­ment tran­sac­tions. Only the data the­se respec­ti­ve ser­vice pro­vi­ders requi­re to meet their obli­ga­ti­ons will be shared. The legal basis for this sha­ring is Art. 6 (1)(b) GDPR, which per­mits the pro­ces­sing of data for the ful­fill­ment of con­trac­tu­al or pre-con­trac­tu­al obli­ga­ti­ons. If you give us your respec­ti­ve con­sent pur­su­ant to Art. 6 (1)(a) GDPR, we will share your email address with the trans­por­ta­ti­on com­pa­ny ent­rus­ted with the deli­very so that this com­pa­ny can noti­fy you on the ship­ping sta­tus for your order via email. You have the opti­on to revo­ke your con­sent at any time.

Data transfer upon closing of contracts for services and digital content

We share per­so­nal data with third par­ties only if this is neces­sa­ry in con­junc­tion with the hand­ling of the con­tract; for ins­tance, with the finan­cial insti­tu­ti­on tas­ked with the pro­ces­sing of pay­ments.

Any fur­ther trans­fer of data shall not occur or shall only occur if you have express­ly con­sen­ted to the trans­fer. Any sha­ring of your data with third par­ties in the absence of your express con­sent, for ins­tance for adver­ti­sing pur­po­ses, shall not occur.

The basis for the pro­ces­sing of data is Art. 6(1)(b) GDPR, which per­mits the pro­ces­sing of data for the ful­film­ent of a con­tract or for pre-con­trac­tu­al actions.

Payment services

We inte­gra­te pay­ment ser­vices of third-par­ty com­pa­nies on our web­site. When you make a purcha­se from us, your pay­ment data (e.g. name, pay­ment amount, bank account details, cre­dit card num­ber) are pro­ces­sed by the pay­ment ser­vice pro­vi­der for the pur­po­se of pay­ment pro­ces­sing. For the­se tran­sac­tions, the respec­ti­ve con­trac­tu­al and data pro­tec­tion pro­vi­si­ons of the respec­ti­ve pro­vi­ders app­ly. The use of the pay­ment ser­vice pro­vi­ders is based on Art. 6(1)(b) GDPR (con­tract pro­ces­sing) and in the inte­rest of a smooth, con­ve­ni­ent, and secu­re pay­ment tran­sac­tion (Art. 6(1)(f) GDPR). Inso­far as your con­sent is reques­ted for cer­tain actions, Art. 6(1)(a) GDPR is the legal basis for data pro­ces­sing; con­sent may be revo­ked at any time for the future.

We use the fol­lo­wing pay­ment ser­vices / pay­ment ser­vice pro­vi­ders within the scope of this web­site:

PayPal

The pro­vi­der of this pay­ment ser­vice is Pay­Pal (Euro­pe) S.à.r.l. et Cie, S.C.A., 22–24 Bou­le­vard Roy­al, L‑2449 Luxem­bourg (her­ein­af­ter “Pay­Pal”).

Data trans­mis­si­on to the US is based on the Stan­dard Con­trac­tu­al Clau­ses (SCC) of the Euro­pean Com­mis­si­on. Details can be found here: https://www.paypal.com/de/webapps/mpp/ua/pocpsa-full.

Details can be found in PayPal’s pri­va­cy poli­cy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

Apple Pay

The pay­ment ser­vice pro­vi­der is Apple Inc, Infi­ni­te Loop, Cup­er­ti­no, CA 95014, USA. The Apple pri­va­cy poli­cy can be found at: https://www.apple.com/legal/privacy/de-ww/.

Google Pay

The pro­vi­der is Goog­le Ire­land Limi­t­ed, Gor­don House, Bar­row Street, Dub­lin 4, Ire­land. You can find Google’s pri­va­cy poli­cy here: https://policies.google.com/privacy.

Stripe

The pro­vi­der for cus­to­mers within the EU is Stri­pe Pay­ments Euro­pe, Ltd,1 Grand Canal Street Lower, Grand Canal Dock, Dub­lin, Ire­land (her­ein­af­ter “Stri­pe”).

Data trans­mis­si­on to the US is based on the Stan­dard Con­trac­tu­al Clau­ses (SCC) of the Euro­pean Com­mis­si­on. Details can be found here: https://stripe.com/de/privacy and https://stripe.com/de/guides/general-data-protection-regulation.

Details can be found in Stripe’s Pri­va­cy Poli­cy at the fol­lo­wing link: https://stripe.com/de/privacy.

10. Online-based Audio and Video Conferences (Conference tools)

Data processing

We use online con­fe­rence tools, among other things, for com­mu­ni­ca­ti­on with our cus­to­mers. The tools we use are lis­ted in detail below. If you com­mu­ni­ca­te with us by video or audio con­fe­rence using the Inter­net, your per­so­nal data will be coll­ec­ted and pro­ces­sed by the pro­vi­der of the respec­ti­ve con­fe­rence tool and by us. The con­fe­ren­cing tools coll­ect all infor­ma­ti­on that you provide/access to use the tools (email address and/or your pho­ne num­ber). Fur­ther­mo­re, the con­fe­rence tools pro­cess the dura­ti­on of the con­fe­rence, start and end (time) of par­ti­ci­pa­ti­on in the con­fe­rence, num­ber of par­ti­ci­pan­ts and other “con­text infor­ma­ti­on” rela­ted to the com­mu­ni­ca­ti­on pro­cess (meta­da­ta).

Fur­ther­mo­re, the pro­vi­der of the tool pro­ces­ses all the tech­ni­cal data requi­red for the pro­ces­sing of the online com­mu­ni­ca­ti­on. This includes, in par­ti­cu­lar, IP addres­ses, MAC addres­ses, device IDs, device type, ope­ra­ting sys­tem type and ver­si­on, cli­ent ver­si­on, came­ra type, micro­pho­ne or loud­spea­k­er and the type of con­nec­tion.

Should con­tent be exch­an­ged, uploa­ded, or other­wi­se made available within the tool, it is also stored on the ser­vers of the tool pro­vi­der. Such con­tent includes, but is not limi­t­ed to, cloud recor­dings, chat/ instant mes­sa­ges, voice­mail uploa­ded pho­tos and vide­os, files, white­boards, and other infor­ma­ti­on shared while using the ser­vice.

Plea­se note that we do not have com­ple­te influence on the data pro­ces­sing pro­ce­du­res of the tools used. Our pos­si­bi­li­ties are lar­ge­ly deter­mi­ned by the cor­po­ra­te poli­cy of the respec­ti­ve pro­vi­der. Fur­ther infor­ma­ti­on on data pro­ces­sing by the con­fe­rence tools can be found in the data pro­tec­tion decla­ra­ti­ons of the tools used, and which we have lis­ted below this text.

Purpose and legal bases

The con­fe­rence tools are used to com­mu­ni­ca­te with pro­s­pec­ti­ve or exis­ting con­trac­tu­al part­ners or to offer cer­tain ser­vices to our cus­to­mers (Art. 6(1)(b) GDPR). Fur­ther­mo­re, the use of the tools ser­ves to gene­ral­ly sim­pli­fy and acce­le­ra­te com­mu­ni­ca­ti­on with us or our com­pa­ny (legi­ti­ma­te inte­rest in the mea­ning of Art. 6(1)(f) GDPR). Inso­far as con­sent has been reques­ted, the tools in ques­ti­on will be used on the basis of this con­sent; the con­sent may be revo­ked at any time with effect from that date.

Duration of storage

Data coll­ec­ted direct­ly by us via the video and con­fe­rence tools will be dele­ted from our sys­tems imme­dia­te­ly after you request us to dele­te it, revo­ke your con­sent to sto­rage, or the reason for sto­ring the data no lon­ger appli­es. Stored coo­kies remain on your end device until you dele­te them. Man­da­to­ry legal reten­ti­on peri­ods remain unaf­fec­ted.

We have no influence on the dura­ti­on of sto­rage of your data that is stored by the ope­ra­tors of the con­fe­rence tools for their own pur­po­ses. For details, plea­se direct­ly cont­act the ope­ra­tors of the con­fe­rence tools.

Conference tools used

We employ the fol­lo­wing con­fe­rence tools:

Zoom

We use Zoom. The pro­vi­der of this ser­vice is Zoom Com­mu­ni­ca­ti­ons Inc, San Jose, 55 Alma­den Bou­le­vard, 6th Flo­or, San Jose, CA 95113, USA. For details on data pro­ces­sing, plea­se refer to Zoom’s pri­va­cy poli­cy: https://explore.zoom.us/en/privacy/.

Data trans­mis­si­on to the US is based on the Stan­dard Con­trac­tu­al Clau­ses (SCC) of the Euro­pean Com­mis­si­on. Details can be found here: https://explore.zoom.us/en/privacy/.

Data processing

We have con­cluded a data pro­ces­sing agree­ment (DPA) for the use of the abo­ve-men­tio­ned ser­vice. This is a con­tract man­da­ted by data pri­va­cy laws that gua­ran­tees that they pro­cess per­so­nal data of our web­site visi­tors only based on our ins­truc­tions and in com­pli­ance with the GDPR.