General

As the operator of this website and as a company, we come into contact with your personal data. This concerns all data that reveals something about you and by which you can be identified. In this privacy policy, we would like to explain how, for what purpose and on which legal basis we process your data.

Responsible for the data processing (“data controller”) on this website and in our company is:

buero-zajak am Stadtsee

Adam-Ileborgh-Str. 17

39576 Hansestadt Stendal

Deutschland

Phone: 03931 68629570

E-mail: an@buero-zajak.email

General information

SSL or TLS encryption

When you enter your data on websites, place online orders or send e-mails via the Internet, you must always be prepared for unauthorized third parties to access your data. There is no complete protection against such access. However, we do our utmost to protect your data as best we can and to close security gaps as far as we can.

An important protection mechanism is the SSL or TLS encryption of our website, which ensures that data you transmit to us cannot be read by third parties. You can recognize the encryption by the lock icon in front of the Internet address entered in your browser and by the fact that our Internet address begins with https:// and not with http://.

Encrypted payment transactions

Payment data, such as account or credit card numbers, require special protection. For this reason, payment transactions made with the most common means of payment are carried out exclusively via an encrypted SSL or TLS connection.

How long do we store your data?

In some parts in this privacy policy, we inform you about how long we or the companies that process your data on our behalf will store your data. In the absence of such information, we store your data until the purpose of the data processing no longer applies, you object to the data processing or you revoke your consent to the data processing.

In the event of an objection or revocation, we may however continue to process your data if at least one of the following conditions applies:

In this case, we will delete your data as soon as the requirement(s) cease to apply.

Data transfer to the USA

On our website, we use tools from companies that transfer your data to the USA and store it there and, if necessary, process it further. The European Commission has adopted an adequacy decision for the EU-US data protection framework. The decision establishes that the US ensures an adequate level of protection for EU personal data transferred to US companies. This decision is based on new safeguards and measures put in place by the US to meet data protection requirements. The adequacy decision includes, among other things, restrictions and safeguards on access to data by US intelligence agencies. Binding safeguards were introduced to limit US intelligence agencies' access to what is necessary and proportionate to protect national security. In addition, enhanced oversight of US intelligence activities was established to ensure that restrictions on surveillance activities are respected. An independent redress mechanism has also been established to handle and resolve complaints from European citizens about access to their data. The EU-US data protection framework thus allows European companies to transfer data to certified US companies without having to introduce additional data protection safeguards. A list of all certified companies can be found at the following link: https://www.dataprivacyframework.gov/s/participant-search.

A change in the European Commission's decision cannot be ruled out.

Your rights

Objection to data processing

IF IT'S STATED IN THIS PRIVACY STATEMENT THAT WE HAVE LEGITIMATE INTERESTS FOR THE PROCESSING OF YOUR DATA AND THAT THIS PROCESSING IS THEREFORE BASED ON ART. 6 PARA. 1 SENTENCE 1 LIT. F) GDPR, YOU HAVE THE RIGHT TO OBJECT IN ACCORDANCE WITH ART. 21 GDPR. THIS ALSO APPLIES TO PROFILING THAT IS CARRIED OUT ON THE BASIS OF THE AFOREMENTIONED PROVISION. THE PREREQUISITE IS THAT YOU STATE REASONS FOR THE OBJECTION THAT ARISE FROM YOUR PARTICULAR SITUATION. NO REASONS ARE REQUIRED IF THE OBJECTION IS DIRECTED AGAINST THE USE OF YOUR DATA FOR DIRECT ADVERTISING.

THE CONSEQUENCE OF THE OBJECTION IS THAT WE MAY NO LONGER PROCESS YOUR DATA. THIS ONLY DOES NOT APPLY IF ONE OF THE FOLLOWING PREREQUISITS EXISTS:

THESE EXCEPTIONS DO NOT APPLY IF YOUR OBJECTION IS DIRECTED AGAINST THE USE OF YOUR DATA FOR DIRECT ADVERTISING OR TO PROFILING RELATED TO IT.

Other rights

Withdrawal of your consent to data processing

Many data processing operations are based on your consent. You can give this consent, for example, by ticking the appropriate box on online forms before you send the form, or by allowing the operation of certain cookies when you visit our website. You may revoke your consent at any time without giving reasons (Art. 7 (3) GDPR). From the time of revocation, we may then no longer process your data. The only exception: we are required by law to retain the data for a certain period of time. Such retention periods exist in particular in tax and commercial law.

Right to complain to the competent supervisory authority

If you believe that we are in breach of the General Data Protection Regulation (GDPR), you have the right to complain to a supervisory authority in accordance with Art. 77 GDPR. You may contact a supervisory authority in the Member State of your residence, place of work or the place where the alleged infringement took place. The right to complain exists alongside administrative or judicial remedies.

Right to data portability

We must hand over data that we process automatically on the basis of your consent or in fulfillment of a contract to you or a third party in a common machine-readable format if you request this. We can only transfer the data to another “data controller” if this is technically possible.

Right to information, deletion, and correction of data

According to Art. 15 GDPR, you have the right to receive information free of charge about which of your personal data we have stored, where the data came from, to whom we transmit the data and for what purpose it is stored. If the data is incorrect, you have a right to rectification (Art. 16 GDPR), and under the conditions of Art. 17 GDPR you may demand that we delete the data.

Right to restriction of processing

In certain situations, according to Art. 18 GDPR, you may demand that we restrict the processing of your data. The data may then - apart from storage - only be processed as follows:

The right to restrict processing exists in the following situations:

Data collection on this website

Use of cookies

Our website places cookies on your device. These are small text files that are used for various purposes. Some cookies are technically necessary for the website to function at all (necessary cookies). Others are needed to perform certain actions or functions on the site (functional cookies). For example, without cookies it would not be possible to take advantage of a shopping cart in an online store. Still other cookies are used to analyze user behavior or to optimize advertising measures. If we use third-party services on our website, for example to process payment transactions, these companies may also leave cookies on your device when you access the website (so-called third-party cookies).

How do we process your data?

Session cookies are only stored on your device for the duration of a session. As soon as you close the browser, they therefore disappear by themselves. Permanent cookies, on the other hand, remain on your device unless you delete them yourself. This can, for example, lead to your user behavior being permanently analyzed. You can use the settings in your browser to influence how it handles cookies:

If you disable or do not allow cookies, the functionality of the website may be limited.

If we use cookies from other companies or for analysis purposes, we will inform you about this as part of this privacy policy. We also request your consent in this regard when you access our website.

On what legal basis do we process your data?

We have a legitimate interest in ensuring that our online offers can be used by visitors without technical problems and that all desired functions are available to them. The storage of necessary and functional cookies on your device therefore takes place on the legal basis of Art. 6 (1) lit. f) GDPR. We use all other cookies on the legal basis of Art. 6 (1) lit. a) GDPR, provided you give us your consent. You can revoke this at any time with effect for the future. If you have consented to the placement of necessary and functional cookies when requesting consent, these cookies will also be stored exclusively on the basis of your consent.

Cookie consent with Legal Cockpit

What is the Legal Cockpit cookie tool?

Consent management platform (CMP) for obtaining and processing GDPR-compliant consent.

Who processes your data?

Legalcore AG, Reinhardtstr. 7, 10117 Berlin, Germany


Where can you find more information about data protection at Legal Cockpit?

https://cockpit.legal/datenschutz/

How do we process your data?

We use Legal Cockpit's consent management platform to obtain your consent to store cookies on your device in a data protection compliant manner. When you visit our website and close the Legal Cockpit cookie window requesting consent, the following data is transmitted to the company:

In addition, the Legal Cockpit stores a cookie in your browser in order to be able to assign the consent given or its revocation to your browser. All collected data is stored until the cookies are no longer needed, you delete the Legal Cockpit cookie or request us to delete the data. This does not apply only if we are required by law to retain the data.

On what legal basis do we process your data?

We are legally obliged to obtain the consent of our website visitors for the use of certain cookies. In order to fulfill this obligation, we use Legal Cockpit. The legal basis for data processing is therefore Art. 6 (1) lit. c) GDPR.

Cookie consent with Cookiebot

What is Cookiebot?

Cookie consent, monitoring and control software

Who processes your data?

Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark.


Where can you find more information about data protection at Cookiebot?

https://www.cookiebot.com/de/privacy-policy/

How do we process your data?

We use Cookiebot to obtain your consent to store cookies on your device and to document it in a data protection compliant manner. When you visit our website and close the cookie window of Cookiebot requesting consent, the following data is transmitted to the company:

In addition, Cookiebot stores a cookie in your browser to associate the consents given or revoked with your browser. All data collected will be stored until the cookies are no longer needed, you delete the Cookiebot cookie or request us to delete the data. This does not apply only if we are required by law to retain the data.

On what legal basis do we process your data?

We are legally obliged to obtain the consent of our website visitors for the use of certain cookies. In order to fulfill this obligation, we use Cookiebot. The legal basis for data processing is therefore Art. 6 (1) lit. c) GDPR.

Cookie consent with Consent Manager

What is Consent Manager?

Consent management provider (CMP) for obtaining, processing and forwarding GDPR-compliant consent.

Who processes your data?

Consentmanager AB, Håltegelvägen 1b, 72348 Västerås, Sweden


Where can you find more information about data protection at Consent Manager?

https://www.consentmanager.de/datenschutz/

How do we process your data?

We use Consent Manager to obtain your consent to store cookies on your device and to document it in a data protection compliant manner. When you visit our website and close the Consent Manager cookie window requesting consent, the following data is transmitted to the company:

In addition, Consent Manager stores various cookies in your browser in order to be able to assign the consent given or its revocation to your browser. All collected data is stored until the cookies are no longer needed, you delete the cookies from Consent Manager or you request us to delete the data. This does not apply only if we are required by law to retain the data.

On what legal basis do we process your data?

We are legally obliged to obtain the consent of our website visitors for the use of certain cookies. In order to fulfill this obligation, we use Consent Manager. The legal basis for data processing is therefore Art. 6 (1) lit. c) GDPR.

Cookie consent with Complianz

What is Complianz?

Consent management provider (CMP) for obtaining, processing and forwarding GDPR-compliant consent.

Who processes your data?

Complianz is a locally used tool offered by Complianz B.V., Kalmarweg 14-5, 9723 JG Groningen, Niederlande

How do we process your data?

We use Complianz to obtain your consent to store cookies on your device and to document it in a data protection compliant manner. When you visit our website and close the Complianz cookie window requesting consent, the following data is processed:

In addition, Complianz stores various cookies in your browser in order to be able to assign the consent given or its revocation to your browser. All collected data is stored until the cookies are no longer needed, you delete the cookies from Complianz or you request us to delete the data. This does not apply only if we are required by law to retain the data.

On what legal basis do we process your data?

We are legally obliged to obtain the consent of our website visitors for the use of certain cookies. In order to fulfill this obligation, we use Complianz. The legal basis for data processing is therefore Art. 6 (1) lit. c) GDPR.

Cookie consent with Real Cookie Banner

What is Real Cookie Banner?

Consent management platform (CMP) for obtaining and processing GDPR-compliant consent.

Who processes your data?

Real Cookie Banner is provided by devowl.io GmbH, Tannet 12, 94539 Grafling, Germany

Where can you find more information about data protection at Real Cookie Banner?

https://devowl.io/de/datenschutzerklaerung/

How do we process your data?

We use Real Cookie Banner consent management platform to obtain your consent to store cookies on your device in a data protection compliant manner. When you visit our website and close the cookie window requesting consent, the following data is transmitted to the company:

• your IP address

• information about your browser

• the language used

• the requested web page

In addition, Real Cookie Banner stores various cookies in your browser in order to be able to assign the consent given or its revocation to your browser. All collected data is stored until the cookies are no longer needed, you delete the cookies from Real Cookie Banner or you request us to delete the data. This does not apply only if we are required by law to retain the data.

On what legal basis do we process your data?

We are legally obliged to obtain the consent of our website visitors for the use of certain cookies. In order to fulfill this obligation, we use The legal basis for data processing is therefore Art. 6 (1) lit. c) GDPR.

Server log files

Server log files log all requests and accesses to our website and record error messages. They also include personal data, in particular your IP address. However, this is anonymized by the provider after a short time, so that we cannot assign the data to your person. The data is automatically transmitted to our provider by your browser.

How do we process your data?

Our provider stores the server log files in order to be able to track the activities on our website and to locate errors. The files contain the following data:

We do not combine this data with other data but use it only for statistical analysis and to improve our website.

On what legal basis do we process your data?

We have a legitimate interest in ensuring that our website runs without errors. It is also our legitimate interest to obtain an anonymized overview of the accesses to our website. Therefore, the data processing is lawful according to Art. 6 (1) lit. f) GDPR.

Contact form

You can send us a message via the contact form on this website.

How do we process your data?

We store your message and the information from the form in order to process your request including follow-up questions. This also applies to the contact details provided. We do not pass on the data to other persons without your consent.

How long do we store your data?

We delete your data as soon as one of the following occurs:

This does not apply only if we are required by law to retain the data.

On what legal basis do we process your data?

If your request is related to our contractual relationship or serves the implementation of pre-contractual measures, we process your data on the legal basis of Art. 6 (1) lit. b) GDPR. In all other cases, it is our legitimate interest to effectively process requests directed to us. The legal basis for data processing is therefore Art. 6 (1) lit. f) GDPR. If you have consented to the storage of your data, Art. 6 (1) lit. a) GDPR is the legal basis. In this case, you can revoke your consent at any time with effect for the future.

Inquiry by e-mail, telephone or fax

You can send us a message by e-mail or fax or call us.

How do we process your data?

We store your message as well as your self-made contact details or the transmitted telephone number in order to be able to process your inquiry including follow-up questions. We do not pass on the data to other persons without your consent.

How long do we store your data?

We delete your data as soon as one of the following occurs:

This does not apply only if we are required by law to retain the data.

On what legal basis do we process your data?

If your request is related to our contractual relationship or serves the implementation of pre-contractual measures, we process your data on the legal basis of Art. 6 (1) lit. b) GDPR. In all other cases, it is our legitimate interest to effectively process requests directed to us. The legal basis for data processing is therefore Art. 6 (1) lit. f) GDPR. If you have consented to the storage of your data, Art. 6 (1) lit. a) GDPR is the legal basis. In this case, you can revoke your consent at any time with effect for the future.

Communication via WhatsApp

What is WhatsApp?

Instant messaging service

Who processes your data?

WhatsApp Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland

Where can you find more information about data protection at WhatsApp?

https://www.whatsapp.com/legal/#privacy-policy

On what legal basis do we transfer your data to the USA?

On the basis of the European Commission's adequacy decision and the company's corresponding certification.

How do we process your data?

For communication with our customers and other persons outside our company, we use the instant messaging service WhatsApp in the variant "WhatsApp Business".

Communication takes place via end-to-end encryption (peer-to-peer). This prevents WhatsApp or other third parties from gaining access to the communication content. We have also set our accounts in such a way that no automatic matching with the address book on the smartphones used takes place. WhatsApp does, however, gain access to the metadata of the communication process (e.g., sender, recipient and time of communication) and, according to its own statement, shares this data with Meta, its parent company based in the USA.

How long do we store your data?

We delete your data as soon as one of the following occurs:

The only time this does not apply is when we are legally obligated to retain the data.

On what legal basis do we process your data?

If our exchange via WhatsApp is related to our contractual relationship or serves the implementation of pre-contractual measures, we process your data on the legal basis of Art. 6 (1) lit. b) GDPR. In all other cases, it is our legitimate interest to effectively process requests directed to us and to maintain a business contact with other persons. The legal basis for data processing is therefore Art. 6 (1) lit. f) GDPR. If you have consented to the storage of your data, Art. 6 (1) lit. a) GDPR is the legal basis. In this case, you can revoke your consent at any time with effect for the future.

Calendly

What is Calendly?

Tool for appointment scheduling

Who processes your data?

Calendly LLC,88 N Avondale Road #603, Avondale Estates, GA 30002, USA

Where can you find more information about data protection at Calendly?

https://calendly.com/pages/privacy

On what legal basis do we transfer your data to the USA?

Calendly adheres to the standard contractual clauses of the European Commission (see https://calendly.com/pages/dpa).

How do we process your data?

To schedule an appointment with us, you can use the Calendly tool on our website. We use the data for the planning, execution and, if necessary, follow-up of the appointment.

How long do we store your data?

We delete your data as soon as one of the following occurs:

This does not apply only if we are required by law to retain the data.

On what legal basis do we process your data?

We have a legitimate interest in making appointments with customers and other interested parties as uncomplicated as possible. The data processing is therefore based on Art. 6 (1) lit. f) GDPR. If you have consented to the storage of your data, the legal basis is exclusively Art. 6 (1) lit. a) GDPR. In this case, you can revoke your consent at any time with effect for the future.

Registration function

In order to use certain functions or offers on our website, you must register. This requires you to provide your e-mail address and possibly other personal data.

How do we process your data?

We store the data you provide during registration and use it to provide you with the function or offer for which you have registered. If there are any changes in relation to the offer or function, we will use your e-mail address to inform you about them. In addition, we use your e-mail address to make you further contract offers, if necessary.

How long do we store your data?

We delete your data as soon as one of the following occurs:

The only time this does not apply is when we are legally obligated to retain the data.

On what legal basis do we process your data?

We store and use your data to fulfill the user relationship established during registration and, if necessary, to initiate further contracts. The legal basis is therefore Art. 6 (1) lit. b) GDPR.

Analysis tools and advertising

We use the following tools to analyze the behavior of our website visitors and show you advertisements.

Matomo Analytics (locally installed)

How do we process your data?

We are always interested in optimizing our website for users and placing advertising in the best possible way. We are helped in this by Matomo Analytics, an open-source tool that analyzes user behavior and thus provides us with the necessary database for adjustments. Matomo uses cookies, device fingerprinting, and other technologies that enable user recognition across pages to analyze user behavior. Matomo records page views, which region they come from, IP address, referrers, browsers used and operating systems. In addition, the tool can measure whether our website visitors perform certain actions (e.g. click on links or make purchases). After anonymizing your IP address, the collected data is stored exclusively on our server.

On what legal basis do we process your data?

As a website operator, we have a legitimate interest in the anonymized analysis of user behavior for the purpose of optimizing our website and the advertising placed there. The data processing is therefore lawful according to Art. 6 (1) lit. f) DSGVO. In the event that you have, for example, consented to the storage of cookies or otherwise consented to data processing, the legal basis is exclusively Art. 6 (1) lit. a) DSGVO. You can revoke your consent at any time with effect for the future.

WP Statistics

How do we process your data?

We are always interested in optimizing our website for users and placing advertising optimally. We are helped in this by the plugin WP Statistics, which analyzes the behavior of users and thus provides us with the necessary database for adjustments. The provider is Veronalabs, ARENCO Tower, 27th Floor, Dubai Media City, Dubai, Dubai 23816, United Arab Emirates. WP Statistics collects the following data, among others:

The data is only stored locally.

On what legal basis do we process your data?

As a website operator, we have a legitimate interest in analyzing user behavior for the purpose of optimizing our website and the advertising placed there. The data processing is therefore lawful according to Art. 6 para. 1 lit. f) GDPR. In the event that you have, for example, consented to the storage of cookies or otherwise consented to data processing, the legal basis is exclusively Art. 6 (1) lit. a) GDPR. You can revoke your consent at any time with effect for the future.


Burst Statistics

What is Burst Statistics?

Privacy-friendly tool for analysing user behaviour for WordPress

Who processes your data?

Burst Statistics BV, CoC 85105147, Kalmarweg 14-5, 9723 JG, Groningen, Netherlands

Where can you find more information about Burst Statistics data protection?

https://burst-statistics.com/legal/privacy-statement-eu/

How do we process your data?

We are always interested in optimizing our web offer for visitors to our website and placing advertisements in the best possible way. We are helped in this by Burst Statistics, a tool that analyzes the behavior of users and thus provides us with the necessary database for adjustments. Through the tool, we receive information about the origin of our visitors, their page views and the time they spend on the pages, as well as the operating system they use. Burst Statistics only collects anonymised data that is stored locally without sharing it with other parties.

On what legal basis do we process your data?

As a website operator, we have a legitimate interest in analyzing user behavior for the purpose of optimizing our website and the advertising placed there. The data processing is therefore lawful according to Art. 6 (1) lit. f) GDPR. In the event that you have consented, for example, to the storage of cookies or have otherwise consented to data processing by Burst Statistics, only Art. 6 (1) lit. a) GDPR is the legal basis. You can revoke your consent at any time with effect for the future.

Newsletter and postal advertising

KlickTipp

What is KlickTipp?

Service for sending newsletters and analyzing recipient behavior.

Who processes your data?

Klick-Tipp Ltd, 15 Cambridge Court, 210 Shepherd's Bush Road, London W6 7NJ, United Kingdom.

Where can you find more information about data protection at KlickTipp?

https://www.klicktipp.com/datenschutzerklarung/ and https://www.klicktipp.com/anti-spam-policy/

How do we process your data?

We use KlickTipp for our newsletter mailing. The service manages the data of newsletter subscribers for us, sends our newsletter and analyzes our newsletter campaigns.

If you would like to receive our newsletter, we need your e-mail address. We will also use a confirmation email (double opt-in procedure) to check whether you are really the owner of this email address. We do not collect any further data or only on a voluntary basis. We use your data exclusively for the newsletter dispatch.

If we send a newsletter via KlickTipp and you open it, a file contained in the newsletter automatically connects to the KlickTipp servers. In this way, the service learns that the newsletter has been opened and registers all clicks on the links it contains. In addition, KlickTipp collects technical information, such as the time of the retrieval, the IP address, browser type and operating system.

You can unsubscribe from the newsletter at any time.

How long do we store your data?

After you have unsubscribed, the data is deleted from the newsletter distribution list. Under certain circumstances, we may blacklist your e-mail address at the same time; this is necessary, for example, if we receive an objection to advertising from you. The storage then takes place on the basis of Art. 6 (1) lit. f) GDPR.

Otherwise, we reserve the right to delete the data at any time after the purpose for which it was collected has ceased to exist or at our own discretion.

On what legal basis do we process your data?

By entering your data in the subscriber list, you consent to data processing by KlickTipp. This is therefore carried out lawfully on the basis of Art. 6 (1) lit. a) GDPR. You can revoke your consent by unsubscribing from the newsletter or by sending us an informal message. For us, this means that we may no longer send you newsletters from this point on.

Plugins and tools

Google Fonts (local hosting)

We use fonts from the US company Google on our website. We have installed the fonts locally, so there is no connection to Google's servers when you visit our website.

For more information about Google Fonts, please visit https://developers.google.com/fonts/faq and read Google's privacy policy: https://policies.google.com/privacy?hl=de.

Google reCAPTCHA

What is Google reCAPTCHA?

Test tool to distinguish between people and computers from Google Ireland Ltd.

Who processes your data?

Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland.

Where can you find more information about data protection at Google?

https://policies.google.com/privacy?hl=de

On what legal basis do we transfer your data to the USA?

On the basis of the European Commission's adequacy decision and the company's corresponding certification.

How do we process your data?

With Google reCAPTCHA, we check whether data entered into forms on our website comes from a human or from a computer. For you, this means that the testing tool analyzes your behavior as a visitor to our website based on various characteristics. The analysis does not start when you use the test tool, but already when you visit our website. Various data are collected, e.g. the IP address, the time spent on our website and mouse movements. The data is forwarded to Google.

On what legal basis do we process your data?

As a company, we have a legitimate interest in protecting our web offerings from spam and abusive spying. The data processing is therefore lawful according to Art. 6 (1) lit. f) GDPR.

If you have consented to the data processing, we process your data exclusively on the basis of Art. 6 (1) lit. a) GDPR. You may revoke your consent at any time. From the time of revocation, we may no longer process your data.

hCaptcha

What is hCaptcha?

Online security service to distinguish between humans and computers

Who processes your data?

ntuition Machines, Inc., 2211 Selig Drive, Los Angeles, CA 90026, USA

Where can you find more information about data protection at hCaptcha?

https://www.hcaptcha.com/privacy

On what legal basis do we transfer your data to the USA?

hCaptcha adheres to the standard contractual clauses of the European Commission (https://www.hcaptcha.com/privacy)

How do we process your data?

With hCaptcha, we examine whether data submitted into forms on our website has been entered by a human or by a computer. For you, this means that the tool analyzes your behavior as a visitor to our website based on various characteristics. The analysis does not start when you use the tool, but already when you visit our website. Various data is collected, e.g. the IP address, the time spent on our website and mouse movements. The data is forwarded to the USA.

On what legal basis do we process your data?

As a company, we have a legitimate interest in protecting our web offerings from spam and abusive spying. The data processing is therefore lawful according to Art. 6 (1)1 lit. f) GDPR.

In the event that you have consented to data processing, only Art. 6 (1) lit. a) GDPR is the legal basis. You can revoke your consent at any time with effect for the future. From the time of revocation, we may no longer process your data.

Ninja Firewall

What is Ninja Firewall?

Firewall and security scanner

Who processes your data?

NinTechNet Limited, Unit 1603, 16th Floor, The L. Plaza 367 - 375 Queen's Road Central Sheung Wan, Hong Kong

Where can you find more information about data protection at Ninja Firewall?

https://nintechnet.com/about/#privacy

How do we process your data?

Ninja Firewall serves to protect our website from unwanted access or malicious cyberattacks. For this purpose, Ninja Firewall also collects, among other things, your IP address, time and source of login attempts and log data (e.g. the browser used).

Ninja Firewall is integrated on our own servers and does not transmit any personal data to the provider of the tool or other third parties. We have activated IP anonymization for Ninja Firewall, so that the tool only records the IP address in abbreviated form.

On what legal basis do we process your data?

As a website operator, we have a legitimate interest in protecting ourselves from malicious data traffic. The data processing is therefore lawful according to Art. 6 (1) lit. f) GDPR.

In the event that you have consented to data processing, only Art. 6 (1) lit. a) GDPR is the legal basis. You can revoke your consent at any time with effect for the future. From the time of revocation, we may no longer process your data.

Manage WP

What is Manage WP?

Website management system

Who processes your data?

GoDaddy.com WP Europe, Trg republike 5, 11000 Belgrade, Serbia

Where can you find more information about data protection at Manage WP?

https://managewp.com/privacy

How do we process your data?

With ManageWP, we can monitor the security and performance of our website and initiate automatic backups, among other things. ManageWP thus has access to all website content, including our databases. ManageWP is hosted on the provider's servers.

On what legal basis do we process your data?

As a website operator, we have a legitimate interest in operating our website effectively. The data processing is therefore lawful according to Art. 6 (1) lit. f) GDPR.

In the event that you have consented to data processing, only Art. 6 (1) lit. a) GDPR is the legal basis. You can revoke your consent at any time with effect for the future. From the time of revocation, we may no longer process your data.

Wordfence

What is Wordfence?

Firewall and security scanner for WordPress websites.

Who processes your data?

Defiant Inc, 800 5th Ave Ste 4100, Seattle, WA 98104, USA

Where can you find more information about data protection at Wordfence?

https://www.wordfence.com/privacy-policy/

On what legal basis do we transfer your data to the USA?

On the basis of standard contractual clauses of the European Commission (see https://www.wordfence.com/help/general-data-protection-regulation/).

How do we process your data?

To protect our website from malicious traffic, we use the Wordfence plugin. It identifies and blocks data that has malicious code or content, and checks core files, themes and plugins for malware, bad URLs, backdoors, SEO spam, malicious redirects and code injections. In order for these measures to be carried out, our website is permanently connected to Defiant Inc. servers in the USA. On these, accesses to our website are compared with the data that Wordfence has stored in its database and, if necessary, blocked.

On what legal basis do we process your data?

As a website operator, we have a legitimate interest in protecting ourselves from malicious traffic. The data processing is therefore lawful according to Art. 6 (1) lit. f) GDPR.

If you have consented to the data processing, we process your data exclusively on the basis of Art. 6 (1) lit. a) GDPR. You may revoke your consent at any time. From the time of revocation, we may no longer process your data.

OneDrive

What is OneDrive?

Cloud storage

Who processes your data?

Microsoft Corp, One Microsoft Way, Redmond, WA 98052-6399, USA.

Where can you find more information about data protection at OneDrive?

https://privacy.microsoft.com/de-de/privacystatement

On what legal basis do we transfer your data to the USA?

On the basis of the European Commission's adequacy decision and the company's corresponding certification.

How do we process your data?

You can upload files on our website. We use the cloud storage OneDrive for this purpose. The files are stored on the servers of the US company Microsoft. When you visit our website, a connection to OneDrive is also established. The cloud storage thus registers that our website has been accessed via your IP address.

On what legal basis do we process your data?

We have a legitimate interest in offering a reliable upload area on our website. Therefore, the processing of your data is based on Art. 6 (1) lit. f) GDPR. If you have consented to data processing, we process your data exclusively on the basis of Art. 6 (1) lit. a) GDPR. You can revoke your consent at any time with effect for the future.

Google Drive

What is Google Drive?

Cloud storage

Who processes your data?

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Where can you find more information about data protection at OneDrive?

https://policies.google.com/privacy

On what legal basis do we transfer your data to the USA?

On the basis of the European Commission's adequacy decision and the company's corresponding certification.

How do we process your data?

You can upload files on our website. For this purpose, we use the cloud storage Google Drive. The files are stored on the servers of the US company Google. If you visit our website, a connection to Google is also established. The cloud storage thus registers that our website has been accessed via your IP address.

On what legal basis do we process your data?

We have a legitimate interest in offering a reliable upload area on our website. Therefore, the processing of your data is based on Art. 6 para. 1 lit. f) GDPR. If you have consented to data processing, we process your data exclusively on the basis of Art. 6 (1) lit. a) GDPR. You can revoke your consent at any time with effect for the future.

eCommerce and payment providers

Customer and contract data

How do we process your data?

When we conclude a contract with you, we require certain personal data from you. We collect, process and use this data only insofar as it is necessary to establish our legal relationship, to shape its content or to change it. If you can only use our services via our website or if the services are billed via the website, we also collect usage data insofar as this is necessary to enable you to use our offer or to bill the service used.

How long do we store your data?

We store your data until our legal relationship ends, unless we are required by law to keep the data longer.

On what legal basis do we process your data?

We store your data in order to fulfill the contract with you or to carry out pre-contractual measures. The basis of the data processing is therefore Art. 6 (1) lit. b) GDPR.

Credit checks

In the case of purchases on account or other payment methods where we make advance payments, we may carry out credit checks or scoring. In this case, we transmit the necessary data entered for this purpose to credit agencies. The probability of non-payment is determined on the basis of the data. In the event of an increased risk of non-payment, we may refuse certain types of payment.

This process is carried out on the basis of Art. 6 (1) lit. b) GDPR and to avoid payment defaults as a legitimate interest under Art. 6 (1) lit. f) GDPR. If consent has been obtained, the credit check is carried out on the basis of this consent in accordance with Art. 6 (1) lit. a) GDPR; consent can be revoked at any time.

How long do we store your data?

We store your data until our legal relationship ends, unless we are required by law to keep the data longer.

On what legal basis do we process your data?

We store your data in order to fulfill the contract with you or to carry out pre-contractual measures. The basis for data processing is Art. 6 (1) lit. b) GDPR.

Data transfer for the shipment of goods

How do we process your data?

When you order goods from us, we transmit your data to companies that we commission with the delivery and/or through which we process the payment. In doing so, only data that is necessary for the commissioned company to carry out the specific order will be transmitted. If we want to pass on data beyond this, we will obtain your consent. We do not pass on your data for advertising purposes.

On what legal basis do we process your data?

We pass on your data in order to fulfill the contract we have concluded with you. The basis of the data processing is therefore Art. 6 (1) lit. b) GDPR.

Data transfer when using services and digital content.

How do we process your data?

For the processing of the payment, we transmit your data to a payment service or the credit institution commissioned with the payment processing. We only pass on data that is absolutely necessary for the payment process. If we want to pass on data beyond this, we will obtain your consent.

On what legal basis do we process your data?

We pass on your data in order to fulfill the contract we have concluded with you. The basis of the data processing is therefore Art. 6 (1) lit. b) GDPR. If you have consented to the transfer of your data, the data processing is based on Art. 6 (1) lit. a) GDPR. You can revoke your consent at any time with effect for the future.

Payment services

To enable you to conveniently pay for your purchases on our website, we use the services of payment services, i.e. external companies that process the payments for us. You can see which ones these are specifically from the list at the end of this section.

How do we process your data?

For the payment process, you must provide certain personal data, e.g. your name, your account details or credit card number. We pass this data on to the respective payment service. For the transaction itself, the respective contract and data protection provisions of the respective services apply.

On what legal basis do we process your data?

We pass on your data in order to fulfill the contract we have concluded with you. The basis of the data processing is therefore Art. 6 (1) lit. b) GDPR. In addition, we have a legitimate interest in processing purchases as quickly, conveniently and securely as possible. In this respect, the legal basis is also Art. 6 (1) lit. f) GDPR. If you have consented to the transfer of your data, the data processing is based on Art. 6 (1) lit. a) GDPR. You can revoke your consent at any time with effect for the future.

Which payment services do we use?

PayPal

What is PayPal?

Online payment service

Who processes your data?

PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg.

Where can you find more information about data protection at PayPal?

https://www.paypal.com/de/webapps/mpp/ua/privacy-full

On what legal basis do we transfer your data to the USA?

PayPal adheres to the standard contractual clauses of the European Commission (see https://www.paypal.com/de/webapps/mpp/ua/pocpsa-full).

Google Pay

What is Google Pay?

Mobile payment system of the US company Google.

Who processes your data?

Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland.

Where can you find more information about data protection at Google Pay?

https://policies.google.com/privacy

On what legal basis do we transfer your data to the USA?

On the basis of the European Commission's adequacy decision and the company's corresponding certification.

Stripe

What is Stripe?

Online payment service

Who processes your data?

Stripe Payments Europe Ltd, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland.

Where can you find more information about data protection at Stripe?

https://stripe.com/de/privacy

On what legal basis do we transfer your data to the USA?

On the basis of the European Commission's adequacy decision and the company's corresponding certification.

Digistore24

What is Digistore24?

Automated sales platform and affiliate network

Who processes your data?

Digistore24 GmbH, St.-Godehard-Straße 32 in 31139 Hildesheim, Germany

Where can you find more information about data protection at Digistore24?

https://www.digistore24.com/dataschutz

How do we process your data?

We offer certain goods or services through the sales platform Digistore24.

Digistore24-WordPress-Plugin

We integrate services from Digistore24 into our website via a WordPress plugin. With each integration, non-personal data is reloaded from the Digistore24 server (e.g. a Javascript file). During this reloading, your web browser retrieves a web page from the Digistore24 server. Our server has no influence on the extent to which your web browser transmits data to the Digistore24 server. Our server itself does not transmit any data to the Digistore24 server in this context.

Digistore24 GmbH, as the responsible party, sets out in its own data protection declaration which data Digistore24 stores and processes during this website call. You can find Digistore24's privacy policy here: https://www.digistore24.com/dataschutz.

Conversion tools/shopping cart

Digistore24 offers the possibility to integrate various services on its own website via HTML and Javascript codes, e.g. the Social Proof Bubble or the Digistore24 shopping cart. With each integration, non-personal data is reloaded from the Digistore24 server (e.g. a Javascript file). During this reloading, your web browser retrieves a web page from the Digistore24 server. Our server has no influence on the extent to which your web browser transmits data to the Digistore24 server. Our server itself does not transmit any data to the Digistore24 server in this context.

Digistore24 GmbH, as the responsible party, sets out in its own data protection declaration which data Digistore24 stores and processes during this website call. The privacy policy of Digistore24 can be found here: https://www.digistore24.com/dataschutz.

Promo-Links/Content-Links

We link to Digistore24 offers on our website to draw your attention to interesting products. Some links will take you to the digistore24.com website. We do not transmit any data to Digistore24. However, data is transmitted from your browser to Digistore24. We have no influence on this process.

Affiliate Advertising Generator

With the affiliate ad generator on our website you can automatically create ads. To do this, enter your Digistore24 ID in the input field. You will then receive advertising material with which you can promote products and services quickly and easily. The entered Id is used to check whether an affiliate partnership exists.

Audio and video conferences

As a company we are in contact with many people: Customers, business partners, service providers, etc. In doing so, we also use so-called online conferencing tools for the exchange, in addition to other means of communication. Information relevant to data protection law on the provider(s) of the tools we use can be found at the end of this section. If you communicate with us via such a tool, not only we, but in particular the provider of the respective tool, process your personal data.

How do we process your data?

Online conference tools collect and store various personal data in order to enable participation in an online conference and its smooth execution. In addition to registration, conference and technical data, this also concerns certain communication content.

For details on data processing, please refer to the privacy policy of the respective conferencing tool provider.

How long do we store your data?

As your communication partner, we delete your data on our systems as soon as one of the following occurs:

This does not apply only if we are required by law to retain the data.

Cookies remain on your terminal device until you delete them.

Conference tool providers also store your data for their own purposes. Please ask the providers directly what this means for the duration of the storage of your data.

On what legal basis do we process your data?

If we are already contractually connected or if you would like to conclude a contract with us, we use conference tools to fulfill the contract or to inform you about our services or products. In this respect, the data processing takes place on the basis of Art. 6 (1) lit. b) GDPR. Otherwise, the use of conferencing tools serves the purpose of simple and quick communication, without which we would not be able to run our business efficiently. We therefore also have a legitimate interest in data processing pursuant to Art. 6 (1) lit. f) GDPR. Another legal basis may be your consent. Relevant in this case is Art. 6 (1) lit. a) GDPR. This basis ceases to apply for the future if you revoke your consent.

Which online conference tools do we use?

Zoom

What is Zoom?

Communication platform for video meetings, voice communication, webinars as well as chats via desktop computers, telephones, mobile devices and conference room systems.

Who processes your data?

Zoom Communications Inc, 55 Almaden Boulevard, Suite 600, San Jose, CA 95113, USA.

Where can you find more information about data protection at Zoom?

https://zoom.us/de-de/privacy.html

On what legal basis do we transfer your data to the USA?

Zoom Communications Inc. complies with the European Commission's standard contractual clauses (see https://zoom.us/de-de/privacy.html).

Own services / Other

Handling of applicant data

If you would like to work for us, we will be happy to receive your application. We treat all personal data submitted as strictly confidential. This also applies to data that we collect later in the course of the application process.

How do we process your data?

We store and use all data that we collect as part of the application process to the extent that this is necessary to decide whether to establish an employment relationship. In addition to contact and communication data and application documents, this also applies, for example, to notes that we take during interviews. We only pass on your data within our company to persons who are involved in processing your application.

If your application is successful, we will store the data required to carry out the employment relationship in our data processing systems.

If we are currently unable to offer you a suitable position, we will be happy to include your data in our applicant pool with your consent. This gives us the opportunity to contact you if a position becomes available that fits your profile..

How long do we store your data?

If we are unable to make you a job offer, you decline a job offer or withdraw your application, we reserve the right to keep your documents and other application data for up to 6 months after the application process has ended. The reason is that we may need the data for evidence purposes in the event of a legal dispute. After this period, we delete the data and destroy the documents. If a legal dispute is actually imminent or already pending, we delete the data and documents if they are no longer required for evidentiary purposes.

We delete data in the applicant pool no later than 2 years after consent has been given. If you revoke your consent before this period expires, we will delete it sooner.

The deletion of your data is always subject to the condition that we are not legally obliged to keep it longer.

On what legal basis do we process your data?

We process your applicant data on the basis of Section 26 BDSG-neu (initiation of an employment relationship) and Article 6 (1) lit. b) GDPR (general contract initiation).

The same applies if your application is successful.

If we are unable to make you a job offer, you reject a job offer or withdraw your application, we have a legitimate interest in using your data for evidentiary purposes in any legal dispute. The data processing is therefore based on Art. 6 (1) lit. f) GDPR.

If you have expressly consented to the storage of your data, we process your data on the basis of Art. 6 (1) lit. a) GDPR. You can revoke your consent at any time with effect for the future.

Data processing on social media

What is Social Media?

By social media, we mean the social networks on which we have created publicly accessible profiles. You can read below which social networks these are specifically.

Who processes your data?

The respective operating companies of the social networks. You can find the individual operators below under the respective networks.

How is your data processed?

The operators of social networks are generally able to collect and evaluate comprehensive data about the behavior of visitors and users of the network. It is not possible for us to track all processing operations on the social networks we use, which is why further processing operations not listed here may be carried out by the operators of the social networks. You can find more information on this in the terms of use and privacy statements of the respective social networks.

The processing of your data can be triggered by you visiting the website of the social network or our profile page there. Even if you visit a website that uses certain content of the network, e.g. like or share buttons, data may already be transmitted to the operators of the social network. If you yourself are a user of the social network and logged into your user account, your visit to our profile page can be assigned to your account by the operator of the social network. Even if you yourself have not registered a user account or are not logged in, the operator of the network may still collect your personal data, e.g. by recording your IP address or setting cookies. With this data, the operators can create user profiles adapted to your behavior and interests and show you interest-based advertising inside and outside the network. If you are a registered user of the network, the interest-based advertising may also be displayed on all devices on which you are or were logged in.

On what legal basis is your data processed?

Our profiles in the social networks are intended to ensure the broadest possible presence of our company on the Internet. As a company, we have a legitimate interest in this. The data processing is therefore lawful according to Art. 6 (1) lit. f) GDPR.

The data processing operations and analyses carried out by the operators of the social networks themselves may be based on other legal grounds. These must be stated by the operators of the social networks.

Who is responsible for the processing of your data and how can you assert your rights?

If you visit one of our profiles on the social networks, we are jointly responsible with the operator of the respective network for the data processing operations triggered during this visit. In principle, you can assert your rights both against us and against the operator of the respective network.

Despite the joint responsibility with the operators of the social networks, however, our influence on the data processing operations of the respective operator is limited and is primarily based on the operator's specifications.

How long is your data stored?

If we collect data via our profiles in the social networks, these are deleted from our systems as soon as the purpose for storing them no longer applies, you request us to delete them or you revoke your consent to storage. Stored cookies remain on your terminal device until you delete them. Mandatory legal provisions - in particular retention periods - remain unaffected.

We have no influence on how long the operators of the social networks store your data, which the operators collect for their own purposes. You can obtain information on this directly from the operator of the respective social network, e.g. in the respective privacy policy.

Which social media do we use?

Facebook

What is Facebook?
A social network

Who processes your data?
Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.

Is your data transferred to third countries?
Yes, to the U.S. and also to other third countries.

Where can you find more information about data protection at Facebook?
https://www.facebook.com/about/privacy/

As a Facebook user, where can you adjust your advertising preferences?
As a registered Facebook user, you can adjust your advertising settings in your user account. To do so, click on the following link and log in:

https://www.facebook.com/settings?tab=ads.

Twitter

What is Twitter?
A social network in the form of a micro-blogging platform.

Who processes your data?
Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.

Is your data transferred to third countries?
Yes, to the USA

Where can you find more information about data protection at Twitter?
https://twitter.com/de/privacy

As a Twitter user, where can you adjust your advertising preferences?

As a registered Twitter user, you can adjust your privacy settings in your user account. To do so, click on the following link and log in:https://twitter.com/personalization.

Instagram

What is Instagram?
A social network specializing in photos and videos.

Who processes your data?
Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Irland

Is your data transferred to third countries?
Yes

Where can you find more information about data protection at Instagram?
https://help.instagram.com/519522125107875/?helpref=hc_fnav&bc[0]=Instagram-Hilfebereich&bc[1]=Richtlinien%20und%20Meldungen

As a user, where can you adjust your privacy settings?
As a registered Instagram user, you can adjust your privacy settings in your user account. To do so, click the following link and log in:
https://www.instagram.com/accounts/privacy_and_security/

LinkedIn

What is LinkedIn?

A social network for business contacts

Who processes your data?

LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland

Is your data transferred to third countries?

Yes

Where can you find more information about data protection at LinkedIn?

https://de.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy

As a user, where can you adjust your privacy settings?

As a registered LinkedIn user, you can adjust your privacy settings in your user account. To do so, click on the following link and log in:

https://www.linkedin.com/psettings/

Xing

What is Xing?

A social network for professional contacts

Who processes your data?

New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany.

Will your data be transferred to third countries?

Yes, for the performance of the contract with Xing, if you have given consent, if it is necessary for the assertion, exercise or defense of legal claims, or if there is an adequacy decision pursuant to Article 45 EU GDPR or appropriate safeguards pursuant to Article 46 EU GDPR.

Where can you find more information about data protection at Xing?

https://privacy.xing.com/de/datenschutzerklaerung/druckversion

As a user, where can you adjust your privacy settings?

As a registered Xing user, you can adjust your privacy settings in your user account. To do so, click on the following link and log in:

https://www.xing.com/settings/privacy