Privacy policy

Introduction

The protection of your personal data has the highest priority. This privacy policy explains the type, scope and purpose of the processing of personal data (hereinafter referred to as -datafi) in connection with the online offering. This includes the associated website, functions and content as well as the external online presences, such as the social media profiles (hereinafter summarized as -online offerfi). Your personal data will be treated confidentially and the statutory data protection regulations and the provisions of this privacy policy will be strictly complied with. General information This privacy policy gives you a comprehensive overview of what happens to your personal data when you visit this website. Personal data is any information that can be used to identify you personally. For detailed information on data protection, please refer to this complete privacy policy. Controller Data processing on this website is carried out by the website operator. The contact details of the controller can be found in the “Controller” section of this privacy policy. Collection of your data Personal data is collected when you actively provide it, e.g. by filling out a contact form. Other data is collected automatically or with your consent by the controller’s IT systems when you visit the website. This is primarily technical data (e.g. internet browser, operating system or time of the visit).

page view). This data is collected automatically as soon as you enter the website. Use of your data Some of the data is collected to ensure the error-free provision of the website. Other data can be used to analyze your user behavior in order to optimize the offer and adapt it to your needs. Data transfer to external bodies As part of the controller’s business activities, it may be necessary to transfer personal data to external bodies. This transfer takes place exclusively under certain conditions: if the transfer is necessary to fulfill a contract, if there is a legal obligation, for example to tax authorities, if there is a legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR, or if another legal basis permits the transfer of data. When using external service providers for data processing, the transfer of personal data takes place exclusively on the basis of a valid contract for order processing in accordance with Art. 28 GDPR. If data is processed jointly with other bodies, a joint processing agreement is concluded in accordance with Art. 26 GDPR. Withdrawal of consent to data processing Certain data processing can only take place with your express consent. This consent can be withdrawn at any time. The legality of the data processing carried out up to the time of revocation remains unaffected by the revocation. Right to object to specific data processing and advertising measures (Art. 21 GDPR)
If your personal data is processed on the basis of Art. 6 para. 1 lit. E or F GDPR, you have the right to object to this processing at any time, provided that you have reasons arising from your particular situation. This also applies to profiling based on these provisions. The specific legal basis for data processing can be found in this privacy policy. If you object, the controller will no longer process your personal data unless compelling legitimate grounds can be demonstrated which override your interests, rights and freedoms or the processing serves the establishment, exercise or defense of legal claims (objection pursuant to Art. 21 (1) GDPR). If your personal data is used for direct marketing purposes, you have the right to object to this processing at any time. This also applies to profiling insofar as it is associated with direct advertising. After your objection, the controller will no longer use your personal data for these advertising purposes (objection pursuant to Art. 21 (2) GDPR). Rights under the General Data Protection Regulation You have the right to lodge a complaint with a competent supervisory authority in the event of violations of the GDPR. This right can be exercised in particular in the Member State of your habitual residence, place of work or place of the alleged infringement. Other administrative or judicial remedies remain unaffected by this. Personal data that is processed automatically on the basis of consent or to fulfill a contract can be requested in a structured, commonly used and machine-readable format. On request, this data can also be transmitted directly to another controller if this is technically feasible. Every data subject has the right to receive information free of charge about their stored personal data, its origin, recipients and the purpose of the data processing. In addition, there is a right to rectification or erasure of this data, insofar as this is permitted by law. If you have any further questions or concerns about
personal data, you can contact the controller at any time. You have the right to request the restriction of the processing of personal data if the accuracy of the data is disputed and a review is pending. Restriction of data processing can also be requested instead of erasure in the event of unlawful processing. Furthermore, restriction may be requested if the data is no longer required but is necessary for the establishment, exercise or defense of legal claims. In the event of an objection to the processing pursuant to Art. 21 para. 1 GDPR, until it is clarified whose interests prevail, there is also the right to restriction. If the processing of personal data has been restricted, such data may, with the exception of storage, only be processed with the consent of the data subject or for the establishment, exercise or defense of legal claims, for the protection of the rights of other natural or legal persons or for reasons of important public interest of the EU or of a Member State. 2 . The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is: Company: KRIMONT BUSINESS DEVELOPMENT, S.L. Represented by: Mrs. Address: Carrer Bartolomé Pons i Coll, 1 07014 Palma de Mallorca Œ Spain Website: https://krimont.com Email: anshela@krimont.com Phone: +49 171 103 71 59 3 . Processors We work with various processors who process data on our behalf. These service providers are contractually obliged to treat the data confidentially and to use it exclusively for
within the scope of the respective service. There are also cases in which responsibility for data processing is shared with other bodies. In such cases, responsibilities are transparently regulated and documented in order to ensure compliance with data protection requirements. 4 . Definitions In order to ensure the transparency of this privacy policy and to make it understandable for everyone, this policy primarily uses terms that are also defined in the General Data Protection Regulation (GDPR). The complete legal definitions can be found in Art. 4 GDPR. The most important terms in connection with this privacy policy are explained below: Personal data: This includes all information relating to an identified or identifiable natural person (hereinafter -data subjectfi). A person is considered identifiable if they can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that person. Processing: This term includes any operation or set of operations which is performed on personal data, whether or not by automated means. This may include the collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction of data. Controller: This is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Processor: A natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller,
Consent: Any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her. Website: The website refers to the entire internet offering provided by the controller under a specific URL. This includes all content, information, functions and services published by the controller that are made available to the user via this URL. The website serves as a digital platform for the provision of information, services and interaction between the controller and users. Terminal device: A terminal device is an electronic device that is capable of accessing the internet and loading websites. This includes computers, laptops, tablets and smartphones. These definitions help to better understand the privacy policy and the meaning of the terms used. 5 . Hosting This website is hosted on the servers of an external service provider in order to guarantee you a reliable and secure use of this online offer. Data processing by the hosting provider is carried out in accordance with Art. 6 para. 1 lit. f GDPR, as the controller has a legitimate interest in providing a stable and secure website. If it is necessary to obtain the user’s consent (e.g. for the use of certain cookies or tracking technologies), the data processing is based on the user’s consent in accordance with Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TTDSG. You can withdraw your consent at any time with effect for the future. The hosting provider is:
1&1 Ionos Elgendorfer Str. 57, 56410 Montabaur, Germany Details on data processing and data protection can be found in the hosting provider’s privacy policy. This can be found here: https://www.ionos.de/terms- gtc/datenschutzerklaerung/ To ensure that your data is processed in accordance with the applicable data protection regulations, a data processing agreement (DPA) has been concluded with the hosting provider. This contract obliges the hosting provider to process the personal data of website visitors exclusively in accordance with the instructions of the controller and in compliance with the GDPR. The hosting provider guarantees comprehensive protection of your data through technical and organizational measures. 6 . Legal basis for data processing Your personal data is processed on the basis of the General Data Protection Regulation (GDPR) and other relevant legal provisions. Different legal bases apply depending on the purpose of the data processing. If you have consented to the processing of your personal data, this is done on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. This applies in particular to the processing of special categories of personal data pursuant to Art. 9 para. 2 lit. a GDPR and to the transfer of personal data to third countries pursuant to Art. 49 para. 1 lit. a GDPR. Your consent can be revoked at any time. The processing of your data may be necessary for the performance of a contract or for the implementation of pre-contractual measures and in this case is carried out on the basis of Art. 6 para. 1 lit. b GDPR. In addition, processing may be necessary to comply with legal obligations, which is then carried out in accordance with Art. 6 para. 1 lit. c GDPR. In certain cases, processing is carried out to safeguard the legitimate interests of the controller or a third party, unless your interests or fundamental rights and
freedoms prevail. This processing is based on Art. 6 para. 1 lit. f GDPR. For certain processing operations, national regulations may also apply, such as § 25 TTDSG when storing cookies or accessing information on your end device. The applicable legal bases are explained in detail in the specific sections of this privacy policy. If your data is required to fulfill a contract or to carry out pre-contractual measures, your data will be processed on the basis of Art. 6 para. 1 lit. b GDPR. For the fulfillment of a legal obligation, data processing is based on Art. 6 para. 1 lit. c GDPR. In addition, data processing may be carried out on the basis of legitimate interests in accordance with Art. 6 para. 1 lit. f GDPR. The specific legal bases in individual cases are explained in the following sections of this privacy policy. 7 . Data transfer to insecure third countries and non-DPF-certified US companies If tools are used on this website from companies based in third countries that are insecure under data protection law, or if US tools are used whose providers are not certified under the EU-US Data Privacy Framework (DPF), your personal data may be transferred to these countries and processed there. Please note that a level of data protection equivalent to that in the EU cannot be guaranteed in third countries that are unsafe under data protection law. For the USA as an insecure third country, no level of data protection comparable to that of the EU is guaranteed. Data transfer to the USA is therefore only permitted if the recipient is either certified under the -EU- US Data Privacy Frameworkfi (DPF) or has suitable additional guarantees. Detailed information on possible transfers to third countries, including the data recipients, can be found in this privacy policy. 8 . Storage period Unless a more specific storage period has been specified in this privacy policy, personal data will remain with the controller until the purpose for which it was collected
no longer applies. If a legitimate request for erasure is made or consent to data processing is withdrawn, the data concerned will be erased unless there are other legally permissible reasons for storing the personal data (e.g. retention periods under tax or commercial law). In these cases, the deletion takes place after these reasons no longer apply. The controller only stores personal data for as long as is necessary to fulfill the respective purposes for which the data was collected. This includes, in particular, the fulfillment of contractual obligations, compliance with statutory retention periods and the protection of legitimate interests of the controller, such as IT security and protection against misuse. If the processing of personal data is based on consent, the data will be stored until the data subject withdraws this consent. Such revocation is possible at any time with effect for the future. The data will then be deleted immediately, unless there are statutory retention obligations or other overriding legal reasons that make further storage necessary. In summary, personal data will be deleted after the purpose has been fulfilled or the legal basis for storage no longer applies, unless there are still legal obligations or legitimate interests that justify further storage. 9 . Security measures and data minimization Comprehensive technical and organizational measures are taken to effectively protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure or unauthorized access. Care is taken to ensure that only the data absolutely necessary for the respective purpose is collected and processed. This strategy of data minimization helps to significantly reduce the risk of misuse and unauthorized access. The security measures are continuously adapted to the state of the art in order to guarantee a high level of protection for your data at all times. 10 . SSL/TLS encryption
In order to protect the security of your data during transmission, state-of-the-art encryption methods (e.g. SSL or TLS) are used via HTTPS. SSL (Secure Socket Layer) and TLS (Transport Layer Security) are protocols for encrypting data transmissions on the internet. This ensures that the data exchanged between your browser and the server is protected against unauthorized access. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. 11 . Encrypted payment transactions via the website If there is an obligation to transmit payment data (e.g. account number for direct debit authorization) to the controller after the conclusion of a fee-based contract, the data transmission is encrypted. This encryption technology offers a high level of protection for payment data and prevents access by third parties. The encrypted transmission path can be recognized by the fact that the address line of the browser changes from “http://” to “https://” and the lock symbol is displayed in the browser line. The use of SSL or TLS ensures that payment data is treated securely and confidentially. 12 . Storage of user information in log files Each time you access the website, information of a general nature is automatically recorded, which your browser transmits to the server. This information is stored in so-called log files and usually includes a) IP address of the requesting computer b) Date and time of access c) Name and URL of the retrieved file d) Website from which the access is made (referrer URL) e) Browser used and user agent string f) Operating system g) Name of your access provider h) HTTP status code
This data is stored for security reasons, to ensure a smooth connection setup of the website, for convenient use of the website, to evaluate system security and stability and for other administrative purposes. The legal basis for data processing is Art. 6 para. 1 lit. f GDPR. The legitimate interest arises from the aforementioned purposes for data collection. Under no circumstances will the data collected be used for the purpose of drawing conclusions about your person. The stored data will be anonymized or deleted, provided there are no statutory retention obligations. 13 . Cookies This website uses cookies. These are small files that your browser automatically creates and that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit the site. Cookies do not cause any damage to your end device and do not contain any viruses, Trojans or other malware. Information is stored in the cookie that results in each case in connection with the specific end device used. However, this does not mean that the controller gains direct knowledge of your identity. On the one hand, the use of cookies serves to make the use of the website more convenient for you. For example, the controller uses session cookies to recognize that you have already visited individual pages of the website. These are automatically deleted after you leave the site. In addition, the controller also uses temporary cookies to optimize user-friendliness, which are stored on your end device for a specified period of time. If you visit the site again to use the services, it is automatically recognized that you have already been there and which entries and settings you have made so that you do not have to enter them again. On the other hand, the controller uses cookies to statistically record the use of the website and to evaluate it for the purpose of optimizing the offer for you. These cookies
enable the controller to automatically recognize that you have already visited the site when you return. These cookies are automatically deleted after a defined period of time. The data processed by cookies is required for the purposes mentioned to safeguard the legitimate interests of the controller and third parties in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR. Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created. However, completely deactivating cookies may mean that you cannot use all the functions of the website. 14 . Cookie Consent Banner This website uses a cookie consent banner to manage your consent to the use of cookies. The provider of this service is: Real Cookie Banner Further information on data processing can be found at: https://krimont.com/datenschutzerklaerung Functionality and purpose The Cookie Consent Banner sets a technically necessary cookie to store your cookie consents. This cookie does not process any personal data. It only stores the settings you selected when you entered the website, including: a) Consent or rejection of certain cookies b) Time of consent c) Duration of storage of the settings d) Legal basis for data processing The data processing by the Cookie Consent Banner is carried out in accordance with Art. 6 para. 1 lit. f GDPR. The legitimate interest of the controller is to ensure the lawful consent to the
use of cookies. If consent has been requested, the processing is based on Art. 6 para. 1 lit. a GDPR. Storage duration and deletion The stored data will remain stored until you delete the cookies in your browser yourself or revoke your consent. You can change your settings at any time in the cookie settings of this website. 15 . Use of the contact form If you have questions of any kind, you can contact the controller using a form provided on this website. In order to know who sent the request and to be able to answer it, the following data is required: Name, e-mail address, subject The data processing for the purpose of contacting the person responsible is carried out in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR on the basis of the voluntarily given consent. The personal data collected for the use of the contact form is regularly deleted after the request has been dealt with. 16 . Inquiries by e-mail or telephone It is possible to send inquiries to the controller by e-mail or telephone. The personal data transmitted (e.g. name, e-mail address, telephone number and the inquiry itself) will be processed and stored by the controller exclusively for the purpose of processing the inquiry and any follow-up questions. The legal basis for this data processing is Art. 6 para. 1 lit. b GDPR, as the processing is necessary for the performance of a contract or for the implementation of pre-contractual measures. If the processing is not related to a contract, it is carried out on the basis of Art. 6 para. 1 lit. f GDPR, as the controller has a legitimate interest in processing and responding to
inquiries. 17 . Registration on the website It is possible to register on the website. The data entered for this purpose will only be used by the controller for the purpose of using the respective offer or service for which the registration is made. The mandatory information requested during registration must be provided in full. Otherwise the registration will be rejected. In the event of important changes, for example to the scope of the offer or technically necessary changes, the controller will use the e-mail address provided during registration to provide information in this way. The data entered during registration is processed on the basis of the user’s consent (Art. 6 para. 1 lit. a GDPR). Consent given can be revoked at any time. All you need to do is send an informal email to the controller. The legality of the data processing that has already taken place remains unaffected by the revocation. Use of Google to log in Users have the option of logging in to this website via their Google account. In doing so, certain personal data is transmitted by Google to the website to enable registration. This data is used exclusively to carry out and manage the registration and to use the services offered on the website. This data is processed on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. Registration via Google offers users a convenient and quick way to access the services of the controller without the need for separate registration. However, please note that by using this function, data is transmitted to Google and processed there. Google Ireland Limited has its registered office at Gordon House, Barrow Street, Dublin 4, Ireland. Further information on data processing by Google can be found in Google’s privacy policy at: https://policies.google.com/privacy.
If users no longer wish to log in via Google, they can cancel this connection at any time in the settings of their Google account. The data transmitted by Google will then no longer be used and the user account on this website will remain in place, but can be deleted if necessary. The operator of this website undertakes to treat the transmitted data confidentially and not to pass it on to third parties, unless there is a legal obligation to do so or the transfer is necessary to fulfill contractual obligations. Use of Facebook Connect to log in Users have the option of logging in to this website via their Facebook account. Certain personal data is transmitted from Facebook to the website to enable registration. This data is used exclusively to carry out and manage the registration and to use the services offered on the website. This data is processed on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. Logging in via Facebook Connect offers users a convenient and quick way to access the services of the controller without the need for separate registration. However, please note that by using this function, data will be transmitted to Facebook and processed there. Facebook is operated by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. Further information on data processing by Facebook can be found in Facebook’s privacy policy at: https://www.facebook.com/about/privacy. If users no longer wish to log in via Facebook Connect, they can cancel this connection at any time in the settings of their Facebook account. The data transmitted by Facebook will then no longer be used and the user account on this website will remain, but can be deleted if necessary. The operator of this website undertakes to treat the transmitted data confidentially and not to pass it on to third parties, unless there is a legal obligation to do so or the transfer is necessary to fulfill contractual obligations.
Use of Apple ID for registration Users have the option of signing in to this website using their Apple ID. Certain personal data is transmitted by Apple to the website in order to enable registration. This data is used exclusively to carry out and manage the registration and to use the services offered on the website. This data is processed on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. Registration via Apple ID offers users a convenient and quick way to access the controller’s services without the need for separate registration. However, please note that by using this function, data will be transmitted to Apple and processed there. Apple Distribution International Ltd. is based in Hollyhill Industrial Estate, Hollyhill, Cork, Ireland. Further information on data processing by Apple can be found in Apple’s privacy policy at: https://www.apple.com/legal/privacy/de-ww/. If users no longer wish to log in via Apple ID, they can cancel this connection at any time in the settings of their Apple account. The data transmitted by Apple will then no longer be used and the user account on this website will remain, but can be deleted if necessary. The operator of this website undertakes to treat the transmitted data confidentially and not to pass it on to third parties, unless there is a legal obligation to do so or the transfer is necessary to fulfill contractual obligations. Use of LinkedIn for registration Users have the option of registering on this website via their LinkedIn account. Certain personal data is transmitted from LinkedIn to the website to enable registration. This data is used exclusively to carry out and manage the registration and to use the services offered on the website. This data is processed on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. Logging in via LinkedIn offers users a convenient and quick way to access the
services of the controller without the need for separate registration. However, please note that by using this function, data will be transmitted to LinkedIn and processed there. LinkedIn Ireland Unlimited Company is based in Wilton Place, Dublin 2, Ireland. Further information on data processing by LinkedIn can be found in LinkedIn’s privacy policy at: https://www.linkedin.com/legal/privacy-policy. If users no longer wish to log in via LinkedIn, they can cancel this connection at any time in the settings of their LinkedIn account. The data transmitted by LinkedIn will then no longer be used and the user account on this website will remain, but can be deleted if necessary. The operator of this website undertakes to treat the transmitted data confidentially and not to pass it on to third parties, unless there is a legal obligation to do so or the disclosure is necessary to fulfill contractual obligations. Use of X for registration Users have the option of registering on this website via their X account. Certain personal data is transmitted from X to the website to enable registration. This data is used exclusively to carry out and manage the registration and to use the services offered on the website. This data is processed on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. Registration via X offers users a convenient and quick way to access the services of the controller without the need for separate registration. However, please note that by using this function, data will be transmitted to X and processed there. X Corp. has its registered office at 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. Further information on data processing by X can be found in X’s privacy policy at: https://x.com/de/privacy. If users no longer wish to log in via X, they can cancel this connection at any time in the settings of their X account. The data transmitted by X will then no longer be used and the user account on this website will remain in place, but can be deleted if necessary
. The operator of this website undertakes to treat the transmitted data confidentially and not to pass it on to third parties, unless there is a legal obligation to do so or the transfer is necessary to fulfill contractual obligations. 18 . Newsletter If you would like to receive the newsletter offered on the website, the person responsible requires a valid e-mail address from you as well as information that allows verification that you are the owner of the e-mail address provided and that you agree to receive the newsletter (double opt-in procedure). No further data is collected. This data is used exclusively for sending the requested information and is not passed on to third parties. The data entered in the newsletter registration form is processed exclusively on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent to the storage of the data, the e-mail address and its use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter or by sending a corresponding message to the person responsible. The legality of the data processing that has already taken place remains unaffected by the revocation. The data provided by you for the purpose of subscribing to the newsletter will be stored until you unsubscribe from the newsletter and deleted after you unsubscribe from the newsletter. Data stored by the controller for other purposes (e.g. email addresses for the member area) remain unaffected by this. Mailchimp The newsletter is sent via the provider Mailchimp. Mailchimp is a service of The Rocket Science Group LLC, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA. The email addresses of newsletter recipients and other
data described in this notice are stored on Mailchimp’s servers in the USA. Mailchimp uses this information to send and analyze the newsletter on behalf of the controller. In addition, Mailchimp may, according to its own information, use this data to optimize or improve its own services, e.g. for the technical optimization of the dispatch and presentation of the newsletter or for economic purposes in order to determine from which countries the recipients come. However, Mailchimp does not use the data of newsletter recipients to write to them itself or to pass it on to third parties. The Rocket Science Group LLC d/b/a Mailchimp is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Any company certified under the DPF is committed to complying with these strict data protection standards. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov/. Further information on data protection at Mailchimp can be found at: https://mailchimp.com/legal/privacy. In addition, technical and organizational security measures are used to protect your personal data against manipulation, loss, destruction or access by unauthorized persons. These security measures are continuously improved in line with technological developments. 19 . Use of analysis and tracking tools Analysis and tracking tools are used to ensure the needs-based design and continuous optimization of this website. These measures help to statistically record the use of this website and thus optimize the offer for you. The data is stored and analyzed on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR, as the provider has a legitimate interest in offering an appealing and functional website. If a corresponding consent has been obtained, the processing is also carried out on the basis of Art. 6 para. 1 sentence 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s end device (e.g.
device fingerprinting). This consent can be revoked at any time. Adobe Analytics Adobe Analytics is used, a web analytics service provided by Adobe Systems Software Ireland Limited, 4-6 Riverwalk, Citywest Business Campus, Dublin 24, Ireland (-Adobefi). Adobe Analytics uses cookies to help the website analyze how users use the site. The information provided by the cookie about your use of this website is stored on Adobe servers within the EU and may be transferred to servers in the USA for further processing. However, by activating IP anonymization on this website, your IP address will be shortened beforehand by Adobe within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Adobe is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Any company certified under the DPF is committed to complying with these strict data protection standards. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov/. Further information on data protection at Adobe Analytics can be found at: https://www.adobe.com/de/privacy/policy.html. etracker etracker is used, a web analysis service of etracker GmbH, Erste Brunnenstraße 1, 20459 Hamburg, Germany (-etrackerfi). etracker uses cookies to analyze user behavior on this website. The information provided by the cookie about your use of this website is stored and processed exclusively on servers in Germany. etracker anonymizes the IP addresses of users before they are stored. You can find more information on data protection at etracker at: https://www.etracker.com/datenschutz/.
Google Ads Tracking Google Ads Tracking is used, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (-Googlefi). Google Ads Tracking uses cookies to measure the effectiveness of advertising campaigns and to analyze your use of this website. The information provided by the cookie about your use of this website is usually transferred to Google servers in the USA and stored there. Google is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Every company certified under the DPF undertakes to comply with these strict data protection standards. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov/. You can find more information on data protection for Google Ads Tracking at: https://policies.google.com/privacy. Google Ads Remarketing Google Ads Remarketing is used, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (-Googlefi). Google Ads Remarketing uses cookies to display targeted advertising to users who have previously visited this website. This makes it possible to present visitors to this website with relevant ads on other websites in the Google Display Network. The information provided by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. Google is certified under the EU-US Data Privacy Framework (DPF), which guarantees adequate protection for the transfer of personal data from the EU to the USA. Every company certified under the DPF undertakes to comply with these strict data protection standards. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov/.
Further information on data protection at Google Ads Remarketing can be found at: https://policies.google.com/privacy. Google AdSense Google AdSense is used, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (-Googlefi). Google AdSense uses cookies to serve personalized ads on this website and to analyze ad performance. The information provided by the cookie about your use of this website is usually transferred to Google servers in the USA and stored there. Google is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Every company certified under the DPF undertakes to comply with these strict data protection standards. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov. Further information on data protection at Google AdSense can be found at: https://policies.google.com/privacy. Google Analytics Google Analytics is used, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (-Googlefi). Google Analytics uses cookies to help the website analyze how users use the site. The information provided by the cookie about your use of this website is usually transferred to Google servers in the USA and stored there. However, by activating IP anonymization on this website, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Google is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate
protection for the transfer of personal data from the EU to the USA. Every company certified under the DPF undertakes to comply with these strict data protection standards. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov. Further information on data protection at Google Analytics can be found at: https://policies.google.com/privacy. Google Conversion Tracking Google Conversion Tracking is used, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (-Googlefi). Google Conversion Tracking uses cookies to measure the effectiveness of advertisements and to analyze your use of this website. The information provided by the cookie about your use of this website is usually transferred to Google servers in the USA and stored there. Google is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Every company certified under the DPF undertakes to comply with these strict data protection standards. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov. You can find more information on data protection with Google Conversion Tracking at: https://policies.google.com/privacy. Google Tag Manager Google Tag Manager is used, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (-Googlefi). Google Tag Manager itself does not use cookies and does not collect any personal data. The tool triggers other tags, which in turn may collect data. Google Tag Manager does not access this data.
Google is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov. Further information on data protection at Google Tag Manager can be found at: https://policies.google.com/privacy. 20 . Social media plugins This section informs you about the integration and use of social media on this website. This includes details on data processing and your rights in connection with the use of social media plugins and their functions. AddThis This website uses functions of AddThis, a service of Oracle Corporation, 2300 Oracle Way, Austin, TX 78741, USA. AddThis provides tools that allow you to share content from this website via various social media platforms and increase your reach. If you use the functions of AddThis, data will be transmitted to AddThis and processed there. This data includes, among other things, information about the social media platforms you use, your IP address, the type of browser used, the browser language, the time of your visit and your usage activities on this website. By using AddThis, your data may be transferred to the USA and other third countries. AddThis uses this data to analyze the use of its services and to compile reports on website activity for the website operator. AddThis may also pass this information on to third parties if this is required by law or if third parties process this data on behalf of AddThis. The use of AddThis is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, as consent is required for the use of cookies and other tracking technologies. Consent can be revoked at any time with effect for the future.
If you do not wish to use the functions of AddThis, you can make the appropriate setting in your browser to prevent the AddThis plugins from loading. Please note, however, that in this case the functions of AddThis can only be used to a limited extent. AddThis also offers you the option of managing your data protection settings under the following link and deactivating tracking: https://datacloudoptout.oracle.com. The transfer of personal data to the USA is based on the standard contractual clauses of the EU Commission. Further information on this can be found at: https://oracle.com/legal/privacy/addthis-privacy-policy.html. Further information on data processing by AddThis can be found in the AddThis privacy policy at: https://oracle.com/legal/privacy/addthis-privacy-policy.html. Facebook This website contains plugins from the social network Facebook, which is operated by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. The plugins allow you to share and distribute content from this website on your Facebook profile. You can recognize the Facebook plugins by the Facebook logo or the -Like buttonfi (-Like mefi), which are integrated on this website. When you visit a page on this website that contains a Facebook plugin, your browser establishes a direct connection to the Facebook servers. The content of the plugin is transmitted by Facebook directly to your browser and integrated into the website. Through this integration, Facebook receives the information that your browser has accessed the corresponding page of this website, even if you do not have a Facebook account or are not currently logged in to Facebook. This information (including your IP address) is transmitted directly from your browser to a Facebook server in the USA and stored there. If you are logged in to Facebook, Facebook can directly associate your visit to this website with your Facebook account. If you interact with the plugins, for example by clicking the “Like” button or leaving a comment, the corresponding information is also transmitted directly to a
Facebook server and stored there. The information is also published on your Facebook profile and displayed to your Facebook friends. The use of Facebook plugins is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, as consent is required for the use of cookies and other tracking technologies. Consent can be revoked at any time with effect for the future. To prevent Facebook from assigning the data collected via this website to your Facebook account, you must log out of Facebook before visiting this website. The transfer of personal data to the USA takes place on the basis of the standard contractual clauses of the EU Commission. Further information on this can be found at: https://www.facebook.com/legal/EU_data_transfer_addendum. Meta Platforms Ireland Limited is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Any company certified under the DPF is committed to complying with these strict data protection standards. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov/. Further information on data processing and data use by Facebook as well as your rights in this regard and setting options to protect your privacy can be found in Facebook’s privacy policy at: https://www.facebook.com/privacy/policy/. Instagram Functions of the Instagram service, which is operated by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are integrated on this website. The Instagram plugins allow you to share and distribute content from this website on your Instagram profile. You can recognize these plugins by the Instagram logo that is integrated on this website. When you visit a page on this website that contains an Instagram plugin, your browser establishes a direct connection to Instagram’s servers. The content of the plugin is transmitted by Instagram
directly to your browser and integrated into the website. Through this integration, Instagram receives the information that your browser has accessed the corresponding page of this website, even if you do not have an Instagram account or are not currently logged in to Instagram. This information (including your IP address) is transmitted directly from your browser to an Instagram server in the USA and stored there. If you are logged in to Instagram, Instagram can directly associate your visit to this website with your Instagram account. If you interact with the plugins, for example by clicking the “Like” button or leaving a comment, the corresponding information is also transmitted directly to an Instagram server and stored there. The information is also published on your Instagram profile and displayed to your Instagram followers. The use of Instagram plugins is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, as consent is required for the use of cookies and other tracking technologies. Consent can be revoked at any time with effect for the future. To prevent Instagram from associating the data collected via this website with your Instagram account, you must log out of Instagram before visiting this website. The transfer of personal data to the USA is based on the standard contractual clauses of the EU Commission. Further information on this can be found at: https://www.facebook.com/legal/EU_data_transfer_addendum. Meta Platforms Ireland Limited is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Any company certified under the DPF is committed to complying with these strict data protection standards. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov/. For more information on data processing and data use by Instagram, as well as your rights in this regard and setting options to protect your privacy, please refer to Instagram’s privacy policy at: https://help.instagram.com/155833707900388. LinkedIn
This website uses functions of the social network LinkedIn, which is operated by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. These plugins allow you to share and distribute content from this website on your LinkedIn profile. You can recognize the LinkedIn plugins by the LinkedIn logo or the share button integrated on this website. When you visit a page on this website that contains a LinkedIn plugin, your browser establishes a direct connection to the LinkedIn servers. The content of the plugin is transmitted by LinkedIn directly to your browser and integrated into the website. Through this integration, LinkedIn receives the information that your browser has accessed the corresponding page of this website, even if you do not have a LinkedIn account or are not currently logged in to LinkedIn. This information (including your IP address) is transmitted directly from your browser to a LinkedIn server in the USA and stored there. If you are logged in to LinkedIn, LinkedIn can directly associate your visit to this website with your LinkedIn account. If you interact with the plugins, for example by clicking the share button or posting a comment, the corresponding information is also transmitted directly to a LinkedIn server and stored there. The information is also published on your LinkedIn profile and displayed to your LinkedIn contacts. The use of LinkedIn plugins is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, as consent is required for the use of cookies and other tracking technologies. Consent can be revoked at any time with effect for the future. To prevent LinkedIn from assigning the data collected via this website to your LinkedIn account, you must log out of LinkedIn before visiting this website. The transfer of personal data to the USA is based on the standard contractual clauses of the EU Commission. Further information on this can be found at: https://www.linkedin.com/legal/l/eu-sccs. LinkedIn Ireland Unlimited Company is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Any company certified under the DPF is committed to complying with these strict data protection standards. Further information on the EU-US DPF can be found at
: https://www.dataprivacyframework.gov/. For more information on data processing and data use by LinkedIn, as well as your rights in this regard and setting options to protect your privacy, please refer to LinkedIn’s privacy policy at: https://www.linkedin.com/legal/privacy-policy. 21 Processing of customer and contract data Personal customer and contract data is collected, processed and used for the establishment, content design and modification of contractual relationships. This may include name, address, e-mail address and telephone number. This information is necessary in order to provide and communicate services. Depending on the payment method selected, payment information such as credit card data, bank details or information on other payment services is also collected and used exclusively for the payment process. In addition, usage and order data is processed, including information about orders, the services used, prices and delivery details. Personal data about the use of this website (usage data) is only collected, processed and used insofar as this is necessary to enable the user to use the service or to bill the user. The processing of personal data takes place on various legal bases. In accordance with Art. 6 para. 1 lit. b GDPR, data processing is carried out to fulfill a contract or to carry out pre-contractual measures, for example to process orders and to provide services. In addition, processing is carried out in accordance with Art. 6 para. 1 lit. c GDPR to fulfill legal obligations, including statutory retention obligations. In addition, processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR to safeguard legitimate interests, such as improving services and ensuring IT security. The customer data collected will be deleted after completion of the order or termination of the business relationship and expiry of any existing statutory retention periods. Statutory retention periods remain unaffected.
22 . Conclusion of contracts for services or digital content When concluding contracts for services or digital content, the controller collects and processes your personal data in order to fulfill the contractual obligations. This data includes, in particular, your contact information such as name, address, email address and relevant information on the use of the services or digital content. The processing of your data takes place on various legal bases: In accordance with Art. 6 para. 1 lit. b GDPR, the controller processes your data to fulfill the contract and to carry out pre-contractual measures, such as the provision and use of services. In addition, processing is carried out in accordance with Art. 6 para. 1 lit. c GDPR to fulfill legal obligations, including compliance with statutory retention obligations. Furthermore, processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR to safeguard legitimate interests, for example to improve services and ensure IT security. The data collected will be used exclusively for the execution and fulfillment of the contracts and will be deleted after the conclusion of the contractual relationship and expiry of any statutory retention periods. Your data may be passed on to third parties involved in the performance of the contract, such as IT service providers. These third parties are contractually obliged to treat your data confidentially and to use it exclusively in the context of providing the service. The controller ensures that your data is only passed on if this is necessary to fulfill the contract. No further transfer of data will take place unless you have expressly consented to the transfer. Your data will not be passed on to third parties without your express consent, for example for advertising purposes. Payment service You have the option of paying for your purchases using the following payment service: _________ 23 . Google fonts
Google Fonts are used on this website. Google Fonts is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. This service enables the use of fonts provided by Google to improve the visual design of this website. To ensure the protection of your data, Google Fonts are hosted locally on our own server. This means that no connection to Google’s servers is established and your IP address is not transmitted to Google. Your data remains entirely on the controller’s server and is not passed on to third parties. 24 . Adobe Fonts Adobe Fonts is used on this website. Adobe Fonts is a service provided by Adobe Systems Software Ireland Limited, 4-6 Riverwalk, Citywest Business Campus, Dublin 24, Ireland. This service enables the use of fonts provided by Adobe to improve the visual design of this website. When you access Adobe Fonts, your IP address is transmitted to Adobe’s servers. Adobe stores this information and uses it to analyze the use of the fonts. Adobe Inc. is certified under the EU-US Data Privacy Framework (DPF). This guarantees adequate protection for the transfer of personal data from the EU to the USA. Every company certified under the DPF undertakes to comply with strict data protection standards. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov. You can find additional information on the processing of your personal data by Adobe Fonts in the Adobe privacy policy at: https://www.adobe.com/de/privacy/policy.html. 25 . Font Awesome Font Awesome is used on this website. Font Awesome is a service of Fonticons, Inc, 307
S. Main St., Suite 202, Bentonville, AR 72712, USA. Font Awesome provides a variety of icons and symbols that are used to improve the usability and design of this website. Font Awesome’s files are hosted locally on its own server. This means that no connection to the servers of Fonticons, Inc. is established and your IP address is not transmitted to Fonticons, Inc. 26 . MyFonts MyFonts is used on this website. MyFonts is a service of Monotype Imaging Holdings Inc, 600 Unicorn Park Drive, Woburn, MA 01801, USA. MyFonts enables the use of fonts provided by Monotype to improve the visual design of this website. The files from MyFonts are hosted locally on our own server. This means that no connection to the servers of Monotype Imaging Holdings Inc. is established and your IP address is not transmitted to Monotype Imaging Holdings Inc. 27 . External videos This website integrates external videos in order to offer you multimedia content and an interactive user experience. These integrations are carried out by third-party providers who may process personal data if you use their services. Your data is processed on the basis of Art. 6 para. 1 lit. b GDPR for the fulfillment of the contract, in particular for the provision of the videos and the associated services, as well as in the legitimate interest in a smooth, convenient and secure user experience in accordance with Art. 6 para. 1 lit. f GDPR. Insofar as your consent is required for certain actions, data processing is carried out on the basis of Art. 6 para. 1 lit. a GDPR. Consent can be revoked at any time with effect for the future.
TikTok TikTok is used to integrate videos on this website. TikTok is a service provided by TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland. When you visit a page with embedded TikTok videos, a connection to the TikTok servers is established. Personal data such as your IP address and your interactions with the video may be transmitted to TikTok. Further information on data processing by TikTok can be found in TikTok’s privacy policy: https://www.tiktok.com/legal/privacy-policy. Vimeo Vimeo is used to embed videos on this website. Vimeo is a service provided by Vimeo Inc, 555 West 18th Street, New York, NY 10011, USA. When you visit a page with Vimeo videos, a connection to the Vimeo servers is established. Information about your use of this website, including your IP address, is transmitted to Vimeo and stored there. Vimeo is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov. For more information on the processing of your personal data by Vimeo, please refer to the Vimeo privacy policy: https://vimeo.com/privacy. YouTube YouTube is used to embed videos on this website. YouTube is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When you visit a page with YouTube videos, a connection to the YouTube servers is established. Information about your use of this website, including your IP address, is transmitted to YouTube and stored there.
Google is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov. Further information on the processing of your personal data by YouTube can be found in the YouTube privacy policy: https://policies.google.com/privacy. 28 . Map service This website uses a map service to provide you with geographical information and an interactive user experience. The integration is carried out by a third-party provider who may process personal data if you use their service. Your data is processed on the basis of Art. 6 para. 1 lit. b GDPR for the fulfillment of the contract, in particular for the provision of geographical information and services, as well as in the legitimate interest in a smooth, convenient and secure user experience in accordance with Art. 6 para. 1 lit. f GDPR. Insofar as your consent is required for certain actions, data processing is carried out on the basis of Art. 6 para. 1 lit. a GDPR. Consent can be revoked at any time with effect for the future. Below you will find detailed information about the map service: Google Maps Google Maps is used to provide maps and geographical information on this website. Google Maps is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When you visit a page with embedded Google Maps, a connection to Google’s servers is established. Personal data such as your IP address and your interactions with the map may be transmitted to Google. Google is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA.
Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov. For more information on the processing of your personal data by Google Maps, please refer to Google’s privacy policy: https://policies.google.com/privacy. 29 Security tool This website uses a security tool to ensure the integrity, confidentiality and availability of data and to increase protection against cyber attacks. The security tool may process personal data when you use the website. Your data is processed on the basis of Art. 6 para. 1 lit. f GDPR to safeguard the legitimate interest in ensuring IT security and preventing misuse and cyber attacks. Insofar as your consent is required for certain actions, data processing is carried out on the basis of Art. 6 para. 1 lit. a GDPR. Consent can be revoked at any time with effect for the future. Below you will find detailed information on the security tool: Akismet This website uses Akismet to detect and prevent spam in comments. Akismet is a service provided by Automattic Inc, 60 29th Street #343, San Francisco, CA 94110, USA. When you send a comment, personal data such as your IP address and the comment content are transmitted to the Akismet servers and analyzed there. Further information on the processing of your personal data by Akismet can be found in Automattic’s privacy policy: https://automattic.com/privacy. 30 . AI tool
This website uses an AI tool to provide you with enhanced functionalities and personalized experiences. This tool uses artificial intelligence to automate complex tasks, perform analyses and interact with users. Your data is processed on the basis of Art. 6 para. 1 lit. b GDPR to fulfill the contract, in particular to provide the extended functionalities, as well as in the legitimate interest in a smooth, convenient and secure user experience in accordance with Art. 6 para. 1 lit. f GDPR. Insofar as your consent is required for certain actions, data processing is carried out on the basis of Art. 6 para. 1 lit. a GDPR. Consent can be revoked at any time with effect for the future. Below you will find detailed information about the AI tool: ChatGPT ChatGPT is used to enable automated interactions on the website. ChatGPT is a service of OpenAI, 3180 18th Street, San Francisco, CA 94110, USA. Personal data such as your IP address and the content of your requests may be transmitted to OpenAI. Further information on data processing by ChatGPT can be found in OpenAI’s privacy policy: https://openai.com/privacy. 31 Search tool This website uses a search tool to make it easier for you to navigate and find content on this website. This tool offers advanced search functions and enables you to find results quickly and precisely. Your data is processed on the basis of Art. 6 para. 1 lit. b GDPR to fulfill the contract, in particular to provide the search function, and in the legitimate interest of improving the user-friendliness and efficiency of the website in accordance with Art. 6 para. 1 lit. f GDPR.
Insofar as your consent is required for certain actions, data processing is carried out on the basis of Art. 6 para. 1 lit. a GDPR. Consent can be revoked at any time with effect for the future. Below you will find detailed information about the search tool: Google Custom Search Google Custom Search, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, is used to offer you a versatile search function. Personal data such as your IP address and search queries may be transmitted to Google. Google is certified under the EU-US Data Privacy Framework (DPF), which ensures adequate protection for the transfer of personal data from the EU to the USA. Further information on the EU-US DPF can be found at: https://www.dataprivacyframework.gov. Further information on data processing by Google can be found in Google’s privacy policy: https://policies.google.com/privacy.