PRIVACY POLICY

Your personal data is processed in accordance with the provisions of the General Data Protection Regulation (GDPR), the Federal Data Protection Act BDSG and other relevant data protection regulations. The processing and use of the individual data depends on the agreed or requested service. You can find further details and additions to the processing purposes in our contractual documents, forms, declarations of consent and other information made available to you (e.g. on the website or in the terms and conditions).

We pass on your personal data within our company to the areas that need this data to fulfill contractual and legal obligations or to implement our legitimate interest. In addition, the following bodies may receive your data:

Data transfer to entities in countries outside the European Union (EU) or the European Economic Area (EEA), so-called third countries, takes place when it should be necessary for the execution of an order/contract from or with you, it is legally prescribed (e.g. tax reporting obligations), it is within the framework of a legitimate interest of us or a third party or you have given us consent. The processing of your data in a third country can also take place in connection with the involvement of service providers within the framework of commissioned processing. Insofar as no decision by the EU Commission on an adequate level of data protection exists for the country in question, we ensure through appropriate guarantees that an adequate level of data protection is guaranteed.

We process and store your personal data only for the period required to achieve the storage purpose or insofar as this was provided for by the European directive and regulation giver or another legislator in laws or regulations to which the controller is subject. If the storage purpose ceases to apply or if a prescribed storage period expires, the personal data is routinely blocked or deleted in accordance with legal requirements.

Under the GDPR you have the following rights:

We use the widespread SSL (Secure Socket Layer) procedure in connection with the highest encryption level supported by your browser when visiting the website. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. Whether a single page of our website is transmitted encrypted can be recognized by the closed representation of the key or lock symbol in the lower status bar of your browser. We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in accordance with technological development.

Our websites use so-called “cookies.” Cookies are small data packets that do not cause any damage to your device. They are either stored temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your device. Session cookies are automatically deleted after your visit ends. Permanent cookies remain stored on your device until you delete them yourself or until your web browser automatically deletes them. Cookies may originate from us (first-party cookies) or from third-party companies (so-called third-party cookies). Third-party cookies allow the integration of certain services from third-party companies within websites (e.g., cookies for processing payment services). Cookies have various functions. Many cookies are technically necessary because certain website functions would not work without them (e.g., the shopping cart function or video display). Other cookies can be used to analyze user behavior or for advertising purposes. Cookies that are necessary for carrying out the electronic communication process, for providing certain functions you desire (e.g., the shopping cart function), or for optimizing the website (e.g., cookies for measuring web audience) are stored on the basis of Art. 6(1)(f) GDPR unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of its services. Where consent for the storage of cookies and comparable recognition technologies has been requested, processing is based exclusively on this consent (Art. 6(1)(a) GDPR and § 25(1) TDDDG); consent can be revoked at any time. You can configure your browser to notify you when cookies are set, to allow cookies only in individual cases, to exclude the acceptance of cookies in certain cases or in general, as well as to enable automatic deletion of cookies when the browser is closed. Disabling cookies may limit the functionality of this website. You can find out which cookies and services are used on this website in this Privacy Policy.

This website uses functions of the web analytics service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics enables the website operator to analyze the behavior of website visitors. The website operator receives various usage data, such as page views, time spent on the site, operating systems used, and the origin of the user. These data are assigned to the respective user device. Assignment to a user ID does not take place. In addition, we can record your mouse and scroll movements and clicks with Google Analytics. Furthermore, Google Analytics uses various modeling approaches to supplement the collected datasets and employs machine learning technologies in data analysis. Google Analytics uses technologies that enable the recognition of the user for the purpose of analyzing user behavior (e.g., cookies or device fingerprinting). The information collected by Google about the use of this website is usually transferred to a Google server in the USA and stored there. The use of this service is based on your consent under Art. 6(1)(a) GDPR and § 25(1) TDDDG. Consent can be revoked at any time. Data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/. The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA that is intended to ensure compliance with European data protection standards when processing data in the USA. Any company certified under the DPF undertakes to comply with these data protection standards. Further information is available from the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participantdetail?contact=true&id=a2zt000000001L5AAI&status=Active Browser Plugin You can prevent Google from collecting and processing your data by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en. For more information on how Google Analytics handles user data, please see Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=en. Data Processing Agreement We have entered into a data processing agreement with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not share this data without your consent. The processing of these data is based on Art. 6(1)(b) GDPR, provided your inquiry is related to the performance of a contract or necessary for carrying out pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively processing the inquiries addressed to us (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR), if this was requested; consent can be revoked at any time. The data you enter in the contact form will remain with us until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after your inquiry has been fully processed). Mandatory statutory provisions – in particular, retention periods – remain unaffected.