Privacy Policy

 Data protection declaration

Thank you for your interest in our company. Data protection is of particular importance to EFA France SARL's management. The EFA France SARL web pages may be used without providing personal data. However, if a data subject wishes to use special services of our company via our website, it may be necessary to process personal data. If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain the consent of the data subject.

The processing of personal data, such as the name, address, e-mail address or telephone number of a data subject, is always carried out in accordance with the basic data protection regulations and the national data protection regulations applicable to EFA France SARL. With this data protection statement, our company wishes to inform the public about the type, scope and purpose of the personal data we collect, use and process. In addition, data subjects will be informed of their rights through this data protection declaration.

As controller, EFA France SARL has implemented numerous technical and organisational measures to ensure the most complete possible protection of the personal data processed via this website. However, data transmissions over the Internet may have security breaches, so absolute protection cannot be guaranteed. For this reason, each data subject is free to transmit personal data to us by other means, for example by telephone.

 

1 Definitions

 

EFA France SARL's data protection declaration is based on the terms used by the supplier of European directives and regulations when publishing the basic data protection regulation (DS-GVO). Our data protection statement must be easy to read and understand for the public, our customers and business partners. To do this, we would like to explain in advance the terms used.

We use the following terms, among others, in this data protection statement:

    a) Personal data

    Personal data are all information relating to an identified or identifiable natural person (hereinafter referred to as "the data subject"). Identifiable is a natural person who can be identified directly or indirectly, in particular by assigning an identifier such as a name, identification number, location data, online identifier or one or more particular characteristics expressing the physical, physiological, genetic, psychological, economic, economic, cultural or social identity of that natural person.

    (b) Person concerned

    The data subject is any identified or identifiable natural person whose personal data are processed by the controller.

    (c) Processing

    Processing: any operation or series of operations carried out with or without the help of automated procedures relating to personal data, such as collection, collection, organisation, sorting, storage, adaptation or modification, reading, retrieval, use, disclosure by transmission, dissemination or any other form of supply, comparison or linking, restriction, erasure or destruction.

    (d) Restriction of processing

    The processing limitation is the marking of personal data stored for the purpose of limiting their future processing.

    e) Profiling

    Profiling is any form of automated processing of personal data consisting in using such personal data to evaluate certain aspects of the personality of a natural person, in particular to analyse or predict aspects relating to the performance of the work, economic situation, health, personal preferences, interests, reliability, behaviour, location or resettlement of that natural person

  (f) Pseudonymization

 Pseudonymisation is the processing of personal data in such a way that personal data can no longer be attributed to a given person without the use of additional information, provided that this additional information is kept separately and is subject to technical and organisational measures ensuring that the personal data are not attributed to an identified or identifiable natural person

    (g) Controller

    The controller is the natural or legal person, public authority, institution or any other body which, alone or jointly with others, decides on the purposes and means of processing personal data. Where the purposes and modalities of such processing are determined by Union law or by the law of the Member States, the controller or the specific criteria for its designation may be determined in accordance with Union law or the law of the Member States.

    (h) Subcontractors

    The controller is a natural or legal person, authority, institution or any other body processing personal data on behalf of the controller.

    (i) Beneficiary

    The recipient is a natural or legal person, authority, institution or other body to whom personal data are communicated, whether or not it is a third party. However, authorities which may receive personal data under Union law or under the law of the Member States in the context of a particular investigation mandate shall not be considered as recipients.

    (j) Third parties

    A third party is a natural or legal person, authority, institution or other body other than the data subject, processor, subcontractor, subcontractor and persons authorised to process personal data under the direct responsibility of the processor or subcontractor.

    (k) Consent

    Consent: any informed and unequivocal expression of the will expressed voluntarily by the data subject in the case in point in the form of a clear declaration or other affirmative act by which the data subject indicates his or her consent to the processing of personal data relating to him or her.

 

2. The name and address of the controller

 

The person responsible within the meaning of the basic data protection regulation, other data protection laws in force in the Member States of the European Union and other provisions likely to protect the data shall be:

 

EFA France SARL

 

Z.A. La Haute Limougère - 3, rue Claude Chappe

37230 Fondettes (France)

Telephone: +332 47 47 61 78 50

E-mail: info@efa-france.com

Website: efa-france.com

 

3. The cookies

 

EFA France SARL's Internet pages use cookies. Cookies are text files that are stored on a computer system via an Internet browser.

 

Many websites and servers use cookies. Many cookies contain a cookie ID. A cookie ID is a unique identifier of the cookie. This is a string through which web pages and servers can be assigned to the specific web browser in which the cookie was stored. This allows the Internet pages and servers visited to distinguish the individual browser of the person concerned from other Internet browsers that contain other cookies. A particular Internet browser can be recognized and identified by its unique cookie ID.

 

By using cookies, EFA France SARL can provide users of this website with more user-friendly services that would not be possible without cookies.

 

By means of a cookie, the information and offers on our website can be optimized for the user. Cookies allow us, as already mentioned, to recognize users of our website. The purpose of this recognition is to facilitate the use of our website. For example, the user of a website that uses cookies does not need to re-enter his or her access data each time he or she visits the website because it is supported by the website and the cookie stored on the user's computer system. Another example is the cookie of a shopping cart in the online store. The online store remembers the items that a customer has placed in the virtual shopping cart via a cookie.

 

The person concerned may at any time prevent the installation of cookies by our website by means of an appropriate setting of the Internet browser used and thus permanently prevent the installation of cookies. In addition, cookies that have already been configured can be deleted at any time via an Internet browser or other software. This is possible in all popular Internet browsers. If the person concerned disables the setting of cookies in the Internet browser used, not all the functions of our website may be fully usable.

 

 

4. The collection of data and general information

 

The EFA France SARL website collects a series of general data and information whenever a person or an automated system accesses the website. This data and general information is stored in the server log files. We may record (1) the types and versions of browsers used, (2) the operating system used by the access system, (3) the website from which an access system accesses our website (called a referrer), (4) the sub-websites accessed by an access system on our website, (5) the date and time of access to the website, (6) an Internet Protocol address (IP address), (7) the Internet service providers of the access system, and (8) other similar data and information used for security purposes in the event of attacks against our computer systems.

 

When using this data and general information, EFA France SARL does not draw any conclusions about the data subject. Rather, this information is necessary to (1) properly deliver the content of our website, (2) optimize the content of our website and related advertising, (3) ensure the ongoing functionality of our computer systems and website technology, and (4) provide law enforcement authorities with the information necessary for criminal prosecution in the event of a cyber attack. This data and information collected anonymously is therefore statistically evaluated by EFA France SARL in order to increase data protection and data security in our company in order to ensure an optimal level of protection for the personal data we process. Anonymous data in the server log files are stored separately from all personal data provided by a data subject.

 

5. Registration on our website

 

The data subject may register on the website of the controller by providing personal data. The personal data transmitted to the controller are determined by the input mask used for registration. The personal data entered by the data subject are collected and stored exclusively for the internal use of the controller and for the data subject's own purposes. The controller may have the data transferred to one or more processors, such as a parcel service, which also uses the personal data exclusively for internal use by the controller.

 

In addition, the IP address assigned by the Internet Service Provider (ISP) to the data subject, the date and time of registration are recorded when the data subject registers on the website of the controller. This data is stored in the context that this is the only way to prevent the misuse of our services and, if necessary, to enable us to investigate criminal offences committed. In this respect, the storage of this data is necessary to protect the controller. This data will not be passed on to third parties, unless required by law or for the purpose of criminal prosecution.

 

The registration of the data subject by the voluntary disclosure of personal data allows the controller to offer the data subject content or services which, by their nature, can only be offered to registered users. Registrants are free to modify at any time the personal data provided at the time of registration or to have them deleted completely from the controller's database.

 

The registration of the data subject by the voluntary disclosure of personal data allows the controller to offer the data subject content or services which, by their nature, can only be offered to registered users. Registrants are free to modify at any time the personal data provided at the time of registration or to have them deleted completely from the controller's database.

The controller shall at all times, upon request, inform each data subject of the personal data relating to him/her. In addition, the controller shall rectify or delete personal data at the request or upon notification of the data subject, provided that there is no legal obligation to store such data securely. In this context, all employees of the controller are at the disposal of the data subject as contact persons.

 

6. Subscribe to our newsletter

 

On the EFA France SARL website, users have the possibility to subscribe to our company's newsletter. The personal data transmitted to the controller when ordering the newsletter are determined by the input mask used for this purpose.

 

EFA France SARL regularly informs its clients and business partners through a newsletter about the company's offers. Our company's newsletter can only be received by the person concerned if (1) the person concerned has a valid e-mail address and (2) the person concerned registers to receive the newsletter. For legal reasons, a confirmation e-mail in the double opt-in procedure is sent to the e-mail address entered for the first time by the person concerned for sending the newsletter. This confirmation e-mail is used to check whether the owner of the e-mail address has authorised the receipt of the newsletter as the person concerned.

 

When subscribing to the newsletter, we also record the IP address of the computer system used by the person concerned at the time of registration assigned by the Internet Service Provider (ISP) and the date and time of registration. The collection of this data is necessary to trace the (possible) misuse of a data subject's e-mail address at a later stage and therefore serves the legal protection of the controller.

 

The personal data collected when registering for the newsletter will be used exclusively to send our newsletter. In addition, newsletter subscribers may be informed by e-mail if this is necessary for the operation of the newsletter service or for registration, as may be the case in the event of changes to the newsletter offer or changes in technical conditions. The personal data collected as part of the newsletter service will not be passed on to third parties. The subscription to our newsletter can be cancelled at any time by the person concerned. The consent to the storage of personal data, which the data subject has given us to send the newsletter, can be revoked at any time. In order to revoke your consent, you will find a corresponding link in each newsletter. It is also possible at any time to unsubscribe directly from the newsletter on the controller's website or to inform the controller in any other way.

 

7. Monitoring of newsletters

 

EFA France SARL's newsletters contain tracking pixels. A tracking pixel is a miniature graphic embedded in emails sent in HTML format to allow log files to be saved and analyzed. This allows a statistical assessment of the success or failure of online marketing campaigns. Thanks to the integrated pixel code, EFA France SARL can recognize if and when an e-mail has been opened by a concerned person and which links in the e-mail have been called by the concerned person.

 

These personal data collected via the tracking pixels contained in the newsletters are stored and evaluated by the data controller in order to optimise the sending of the newsletter and to further tailor the content of future newsletters to the interests of the data subject. This personal data will not be passed on to third parties. The data subjects have the right to revoke at any time the respective separate declaration of consent given through the double opt-in procedure. After revocation, these personal data will be deleted by the controller. If you unsubscribe from the newsletter, EFA France SARL automatically interprets this as a revocation.

 

8. Possibility to contact us via the website

 

Due to legal requirements, the EFA France SARL website contains information that allows quick electronic contact with our company and direct communication with us, including a general e-mail address (e-mail address). If a data subject contacts the controller by e-mail or by a contact form, the personal data transmitted by the data subject will be automatically stored. Such personal data provided voluntarily by a data subject to the controller will be kept for the purpose of processing or contact with the data subject. This personal data is not passed on to third parties.

 

9. Routine deletion and blocking of personal data

 

The controller shall process and store the personal data of the data subject only for the time necessary to achieve the purpose of data retention or to the extent provided for by the European regulator or another legislator in the laws or regulations to which the controller is subject.

 

If the storage purpose ceases to apply or if a storage period prescribed by the European Directive and Donor Regulation or another competent legislator expires, personal data are systematically blocked or deleted in accordance with legal provisions.

 

10. The rights of the data subject

 

    a) Right to confirmation

 

    Any data subject has the right, conferred by the European legislator of directives and regulations, to require the controller to confirm whether personal data relating to him/her are being processed. If a data subject wishes to exercise this right of confirmation, he/she may at any time contact an employee of the controller.

(b) Right to information

 

    Any person concerned by the processing of personal data has the right, granted by the European legislator of the Directives and Regulations, to obtain, at any time and free of charge, from the controller information relating to the personal data concerning him/her and a copy of such information. In addition, the European regulator granted the data subject the following information:

 

the purposes of the processing operation

the categories of personal data to be processed

the recipients or categories of recipients to whom the personal data have been or are still communicated, in particular recipients in third countries or international organisations.

if possible, the expected duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration.

the existence of a right to rectify or delete personal data concerning him or her or a limitation of processing by the controller or a right to object to such processing

the existence of a right of appeal to a supervisory authority

if the personal data are not collected from the data subject: All available information on the origin of the data.

the existence of an automated decision-making process, including profiling in accordance with Article 22(1) and (4) of the DS-GMO and, at least in these cases, relevant information on the logic involved and on the scope and expected effects of such processing for the data subject.

These personal data collected via the tracking pixels contained in the newsletters are stored and evaluated by the data controller in order to optimise the sending of the newsletter and to further tailor the content of future newsletters to the interests of the data subject. This personal data will not be passed on to third parties. The data subjects have the right to revoke at any time the respective separate declaration of consent given through the double opt-in procedure. After revocation, these personal data will be deleted by the controller. If you unsubscribe from the newsletter, EFA France SARL automatically interprets this as a revocation.

In addition, the data subject has the right to be informed if personal data have been transferred to a third country or international organisation. If this is the case, the data subject also has the right to obtain information on the appropriate safeguards in the context of the transfer.

 

If a data subject wishes to exercise this right of access, he/she may contact an employee of the controller at any time.

 

 

    (c) Right of rectification

 

Any person who is the subject of processing of personal data has the right, granted by the European legislator of directives and regulations, to request the immediate correction of inaccurate personal data concerning him/her. In addition, taking into account the purposes of the processing operation, the data subject has the right to request that incomplete personal data be completed, including by means of a supplementary declaration.

 

If a data subject wishes to exercise this right of rectification, he/she may at any time contact an employee of the controller.

  (d) Right of withdrawal (right to be forgotten)

 

Any person concerned by the processing of personal data has the right, granted by the European legislator of directives and regulations, to require that the controller request that personal data relating to him/her be deleted immediately, provided that one of the following reasons applies and to the extent that the processing is not necessary:

Personal data have been collected or processed for purposes for which they are no longer necessary.

        The data subject shall withdraw the consent on which the processing was based pursuant to Article 6(1)(a), DS-GMO or Article 9(2)(a), DS-GMO, and there is no other legal basis for the processing.

        The data subject objects to the processing under Article 21.1 DS-GMO and there are no compelling and legitimate reasons for the processing or the data subject objects to the processing under Article 21.2 DS-GMO.

        The personal data has been processed illegally.

        The deletion of personal data is necessary to comply with a legal obligation under Union law or the law of the Member States to which the controller is subject.

        Personal data has been collected in connection with the information society services offered in accordance with Art. 8 Para. 1 DS-GMO.

 

    If one of the above reasons applies and a data subject wishes his or her personal data stored at EFA France SARL to be deleted, he or she may contact an employee of the controller at any time. The employee of EFA France SARL shall ensure that the request for deletion is complied with without delay.

 

    If the personal data has been made public by EFA France SARL and our company is required to delete the personal data in accordance with Art. 17 para. 1 DS-GMO, EFA France SARL will take appropriate measures, including technical measures, taking into account the available technology and implementation costs, to inform other data controllers who process published personal data, that the data subject has requested that all links to such personal data or copies or replication of such personal data be deleted by such other data controllers, to the extent that processing is not necessary. The EFA France SARL employee will take the necessary measures in individual cases.

 

    (e) Right to limitation of processing

 

    Any person who is the subject of processing of personal data has the right, granted by the European legislator of directives and regulations, to require the controller to restrict the processing if one of the following conditions is met:

        The accuracy of personal data shall be contested by the data subject for a period of time allowing the controller to verify the accuracy of the personal data.

        The processing is unlawful, the data subject refuses to delete the personal data and requests instead that the use of the personal data be limited.

 

The controller no longer needs the personal data for the purposes of processing, but the data subject needs them to assert, exercise or defend rights in court.

The data subject has objected to the processing in accordance with Art. 21 (1) DS-GMO and it has not yet been determined whether the legitimate grounds of the data subject outweigh those of the data subject.

 

    If one of the above conditions is met and a data subject wishes to request the limitation of personal data stored by EFA France SARL, he/she may contact an employee of the controller at any time. The employee of EFA France SARL will ensure that the processing is limited.

 

  (f) Right to data transferability

 

    Any data subject has the right, granted by the European legislator, to receive personal data concerning him or her provided by the data subject to a controller in a structured, current and machine-readable form. It also has the right to forward such data to another controller without hindrance on the part of the controller to whom the personal data have been made available, provided that the processing is based on the consent provided for in Article 6(1)(a), DS GMOs or Article 9, (2)(a), DS GMOs or on a contract in accordance with Article 6(1)(b), DS GMOs and that the processing is carried out by means of automated procedures, unless the processing is necessary for the performance of a task in the public interest or in the exercise of the public authority conferred on the controller.

 

    In addition, in exercising his right to the transfer of data in accordance with Article 20(1) DS-GMO, the data subject has the right to have personal data transferred directly by one controller to another controller, provided that this is technically possible and that the rights and freedoms of other persons are not affected.

 

    The data subject may contact an EFA France SARL employee at any time to exercise his or her right to data transferability.

 

    (g) Right of objection

 

    Any person concerned by the processing of personal data has the right, granted by the European legislator for reasons relating to his or her particular situation, to object at any time to the processing of personal data concerning him or her under Article 6(1)(e) or (f) of the DS-GMO. This also applies to profiling on the basis of these provisions.

 

    In the event of an objection, EFA France SARL will no longer process personal data, unless we can prove that compelling reasons justifying the protection of the processing, which take precedence over the interests, rights and freedoms of the data subject, or if the processing is used to assert, exercise or defend legal rights.

 

    If EFA France SARL processes personal data for the purpose of direct advertising, the data subject has the right to object at any time to the processing of personal data for advertising purposes. This also applies to profiling insofar as it is related to this direct advertising. If the data subject objects to the processing by EFA France SARL for direct advertising purposes, EFA France SARL will no longer process personal data for these purposes.

 

    In addition, the data subject has the right to object to the processing of personal data concerning him or her by EFA France SARL for scientific or historical research or statistical purposes in accordance with Art. 89 para. 1 DS-GMO for reasons related to his or her particular situation, unless such processing is necessary for the performance of a mission in the public interest.

 

    To exercise his right of opposition, the interested party may contact directly any employee of EFA France SARL or another employee. The data subject is also free to exercise his right of objection with regard to the use of Information Society services by means of automated procedures using technical specifications, notwithstanding Directive 2002/58/EC.

  (h) Automated decisions in individual cases, including profiling.

 

       Any person who is the subject of processing of personal data has the right, granted by the European legislator of directives and regulations, not to be the subject of a decision based exclusively on automatic processing, including profiling, which has legal effect against him/her or significantly affects him/her in a similar way, provided that the decision (1) is not necessary for the conclusion or performance of a contract between the data subject and the controller, or (2) is admissible under the law of the Union or the Member State to which the controller is subject and that that law contains appropriate measures to safeguard the rights, freedoms and legitimate interests of the data subject, or (3) with the data subject's express consent.

 

    If the decision (1) is necessary for the conclusion or performance of a contract between the data subject and the controller or (2) is taken with the express consent of the data subject, EFA France SARL shall take appropriate measures to protect the rights and freedoms and legitimate interests of the data subject, including at least the right to obtain the intervention of a controller, to make known its own position and to contest the decision.

 

    If the data subject wishes to assert his or her rights with regard to automated decisions, he or she may at any time contact an employee of the controller.

    (i) Right to revoke consent under the Data Protection Act

 

    Any person concerned by the processing of personal data has the right, granted by the European legislator of directives and regulations, to revoke at any time the consent to the processing of personal data.

 

    If the data subject wishes to exercise his or her right to withdraw consent, he or she may contact an employee of the controller at any time.

 

11. Data protection for requests and in the request procedure

 

The controller collects and processes the candidates' personal data for the purpose of processing the application procedure. The processing may also be carried out electronically. This is particularly the case when an applicant sends the corresponding application documents to the controller by electronic means, for example by e-mail or via an online form on the website. If the controller concludes an employment contract with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in accordance with the legal provisions. If the controller does not conclude an employment contract with the applicant, the documents of the request shall be automatically deleted two months after the notification of the refusal decision, provided that no other legitimate interest of the controller precludes the deletion. Another legitimate interest in this respect is, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).

12. Privacy policy for the use and application of AddThis

 

The controller has integrated AddThis components into this website. AddThis is a bookmarking provider. The service allows simplified bookmarking of websites via buttons. By hovering the mouse over the AddThis component or clicking on it, a list of bookmarking and sharing services is displayed. AddThis is used on more than 15 million websites, and the buttons are displayed more than 20 billion times a year, according to the operating company.

 

AddThis is operated by AddThis, Inc. 1595 Spring Hill Road, Suite 300, Vienna, VA 22182, USA.

 

Whenever one of the individual pages of this website is called up, which is operated by the data controller and on which an AddThis component has been integrated, the Internet browser on the data subject's computer system is automatically invited by the respective AddThis component to download data from the website www.addthis.com. As part of this technical procedure, AddThis is informed of the visit and the specific individual page of this website used by the computer system used by the person concerned. In addition, AddThis receives information about the IP address of the computer system used by the person concerned, the type of browser, the language of the browser, the Internet page called before our Internet page, the date and time of the visit to our Internet page assigned by the Internet service provider (ISP). AddThis uses this data to create anonymous user profiles. The data and information transmitted to AddThis in this way allow the AddThis company itself as well as the companies associated with AddThis or its partner companies to address visitors to the website of the person responsible for the processing specifically with personalised and interest-related advertising.

 

AddThis displays personalized and interest-based ads based on a cookie set by the company. This cookie analyses the individual browsing behaviour of the computer system used by the person concerned. The cookie stores visits to Internet pages from the computer system.

 

The person concerned may prevent the installation of cookies by our website at any time, as already described above, by means of an appropriate setting of the Internet browser used and thus permanently prevent the installation of cookies. Such a setting of the Internet browser used would also prevent AddThis from placing a cookie on the data subject's computer system. In addition, cookies already installed by AddThis can be deleted at any time via an Internet browser or other software.

 

The data subject also has the possibility to object permanently to the processing of personal data by AddThis. To do this, the data subject must press the opt-out button under the link http://www.addthis.com/privacy/opt-out, which sets up an opt-out cookie. The opposition cookie is stored in the computer system used by the person concerned. If cookies are deleted from the data subject's system after an objection, the data subject must recall the link and set up a new opt-out cookie.

 

However, with the introduction of the opt-out cookie, it is possible that the Internet pages of the data controller may no longer be fully usable by the data subject.

 

The current AddThis privacy policy can be found at http://www.addthis.com/privacy/privacy-policy

 

13. Use of Facebook and privacy policy on the use of Facebook

 

The data controller has integrated Facebook elements into this website. Facebook is a social network.

 

A social network is an Internet-based social meeting place, an online community that usually allows users to communicate with each other and interact in a virtual space. A social network can serve as a platform for the exchange of opinions and experiences or allow the Internet community to provide personal or business-related information. Facebook allows social network users to create private profiles, upload photos and networks through friendship requests, among other things.

 

Facebook is operated by Facebook, Inc, 1 Hacker Way, Menlo Park, CA 94025, USA. The person responsible for processing personal data if a data subject lives outside the United States or Canada is Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

 

Each time you access one of the pages of this website, which is operated by the controller and on which a Facebook component (Facebook plug-in) has been integrated, the Internet browser of the person's computer system is automatically prompted by the corresponding Facebook component to download a representation of the corresponding Facebook component from Facebook. You can find an overview of all Facebook plug-ins at https://developers.facebook.com/docs/plugins/?locale=en_DE. As part of this technical process, Facebook is informed of the specific subpage of our website visited by the person concerned.

 

If the person concerned is connected to Facebook at the same time, Facebook recognizes the specific subpage of our website that the person concerned visits each time the person concerned visits our website and for the duration of their stay on our website. This information is collected by the Facebook component and assigned by Facebook to the respective Facebook account of the person concerned. If the person concerned clicks on one of the Facebook buttons integrated on our website, for example the "Like" button, or if the person concerned makes a comment, Facebook assigns this information to the person's personal Facebook user account and stores this personal data.

 

Facebook receives information via the Facebook component that the person concerned has visited our website each time the person concerned is connected to Facebook at the same time as he or she accesses our website; this occurs regardless of whether or not the person concerned clicks on the Facebook component. If the person concerned does not want this information to be sent to Facebook, they can prevent it from being sent by logging out of their Facebook account before calling our website.

 

Facebook's published data policy, available at https://de-de.facebook.com/about/privacy/, provides information about Facebook's collection, processing and use of personal data. It also explains what Facebook settings options are available to protect the privacy of the person concerned. In addition, various applications are available that allow you to delete the transmission of data to Facebook. These applications can be used by the data subject to delete the transmission of data to Facebook.

 

14. Privacy policy for using Google AdSense

 

The data controller has integrated Google AdSense into this website. Google AdSense is an online service that allows you to place advertising on third-party sites. Google AdSense is based on an algorithm that selects ads displayed on third-party sites based on the content of the respective third-party site. Google AdSense allows you to target the Internet user according to his or her interests, which is achieved by generating individual user profiles.

 

The Google AdSense component is operated by Alphabet Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

 

The purpose of the Google AdSense component is to include ads on our site. Google AdSense places a cookie on the data subject's computer system. What cookies are has already been explained above. By installing the cookie, Alphabet Inc. is able to analyze the use of our website. Whenever one of the individual pages of this website is called up, which is operated by the data controller and on which a Google AdSense component has been integrated, the Internet browser of the person's computer system is automatically invited by the respective Google AdSense component to transmit data to Alphabet Inc. for online advertising and commission billing purposes. As part of this technical procedure, Alphabet Inc. receives knowledge of personal data, such as the IP address of the person concerned, which is used by Alphabet Inc., among others, to track the origin of visitors and clicks and subsequently allow commission declarations. 

 

The person concerned may prevent the installation of cookies by our website at any time, as already described above, by means of an appropriate setting of the Internet browser used and thus permanently prevent the installation of cookies. Such a setting of the Internet browser used would also prevent Alphabet Inc. from placing a cookie on the data subject's computer system. In addition, a cookie already installed by Alphabet Inc. may be deleted at any time via the Internet browser or other software.

 

Google AdSense also uses so-called tracking pixels. A tracking pixel is a miniature graph embedded in Internet pages to allow the recording and analysis of log files, which allows statistical evaluation. The integrated pixel code allows Alphabet Inc. to recognize if and when a web page has been opened by a concerned person and which links have been clicked by the concerned person. Tracking pixels are used, among other things, to evaluate the flow of visitors to a web page.

 

Google AdSense transfers personal data and information, including IP address, to Alphabet Inc. in the United States of America to collect and bill for ads displayed. These personal data are stored and processed in the United States of America. Alphabet Inc. may disclose to third parties personal data collected as part of the technical process.

 

Google AdSense will be explained in more detail under this link https://www.google.de/intl/de/adsense/start/

 

 15. Privacy policy for the use and application of Google Analytics (with anonymization function)

 

The data controller has integrated the Google Analytics component (with anonymization function) into this website. Google Analytics is a web analytics service. Web analysis is the collection, collection and evaluation of data on the behaviour of website visitors. A web analytics service collects, among other things, data on the website from which a person concerned accessed a website (called a referrer), which secondary pages of the website were consulted or how often and for how long a secondary page was consulted. A web analysis is mainly used to optimize a website and for cost-benefit analysis of Internet advertising.

 

The Google Analytics component is operated by Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

 

The data controller uses the suffix "_gat._anonymizeIp" for web analysis via Google Analytics. By this addition, Google shortens and anonymizes the IP address of the data subject's Internet connection when accessing our Internet pages from a Member State of the European Union or another State party to the Agreement on the European Economic Area.

 

The purpose of the Google Analytics component is to analyze the flow of visitors to our website. Google uses the data and information collected to evaluate the use of our website, among other things, to compile online reports that show website activity and to provide other services related to the use of our website.

 

Google Analytics places a cookie on the data subject's computer system. What cookies are has already been explained above. By setting a cookie, Google can analyse the use of our website. Whenever one of the pages of this website is called up, which is operated by the data controller and on which a Google Analytics component has been integrated, the Internet browser of the data subject's computer system is automatically invited by the Google Analytics component concerned to transmit data to Google for online analysis. As part of this technical process, Google obtains knowledge of personal data, such as the IP address of the data subject, which is used by Google, among other things, to track the origin of visitors and clicks and subsequently enable commission statements. -

 

Cookies are used to store personal information, such as access time, where access comes from and how often the person concerned visits our website. When you visit our website, this personal data, including the IP address of the Internet connection used by the person concerned, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may disclose to third parties personal data collected in the course of the technical process.

 

The person concerned may prevent the installation of cookies by our website at any time, as already described above, by means of an appropriate setting of the Internet browser used and thus permanently prevent the installation of cookies. Such a setting of the Internet browser used would also prevent Google from placing a cookie on the data subject's computer system. In addition, a cookie already installed by Google Analytics may be deleted at any time via the web browser or other software.

 

In addition, it is possible for the data subject to object to and prevent the collection of data generated by Google Analytics concerning the use of this website and the processing of this data by Google. To do this, the data subject must download and install a browser plug-in from https://tools.google.com/dlpage/gaoptout This browser plug-in informs Google Analytics via JavaScript that no data or information about website visits can be transmitted to Google Analytics. The installation of the browser extension is considered a contradiction by Google. If the person's computer system is later deleted, formatted or reinstalled, the person concerned must reinstall the browser add-on to disable Google Analytics. If the browser add-on is uninstalled or disabled by the person concerned or another person under their control, it is possible to reinstall or reactivate the browser add-on.

Further information and Google's current privacy policy can be found at https://www.google.de/intl/de/policies/privacy/ and http://www.google.com/analytics/terms/de.html Google Analytics will be explained in more detail under this link https://www.google.com/intl/de_en/analytics/.

 

16. Privacy policy for the use and usage of Google Remarketing

 

The data controller has integrated Google Remarketing services into this website. Google Remarketing is a feature of Google AdWords that allows a company to display ads to Internet users who have already visited the company's website. The integration of Google Remarketing therefore allows a company to create user-related ads and, consequently, to display ads that are relevant to the Internet user.

 

The operator of Google Remarketing services is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

 

The purpose of Google Remarketing is to display ads of interest. Google Remarketing allows us to display ads on the Google Advertising Network or other websites that are tailored to the individual needs and interests of Internet users.

 

Google Remarketing places a cookie on the data subject's computer system. What cookies are has already been explained above. By setting the cookie, Google will be able to recognize the visitor to our website when he or she subsequently visits websites that are also members of Google's advertising network. Each time a website on which the Google Remarketing service has been integrated, the person's web browser automatically identifies with Google. As part of this technical procedure, Google obtains knowledge of personal data, such as the user's IP address or browsing behaviour, which Google uses, among other things, to display interest-related advertising.

 

The cookie is used to store personal information, such as the web pages visited by the person concerned. Personal data, including the IP address of the Internet connection used by the data subject, are therefore transferred to Google in the United States of America each time he or she visits our websites. This personal data is stored by Google in the United States of America. Google may disclose to third parties personal data collected in the course of the technical process.

 

The person concerned may prevent the installation of cookies by our website at any time, as already described above, by means of an appropriate setting of the Internet browser used and thus permanently prevent the installation of cookies. Such a setting of the Internet browser used would also prevent Google from placing a cookie on the data subject's computer system. In addition, a cookie already installed by Google Analytics may be deleted at any time via the web browser or other software.

 

In addition, the data subject has the possibility to object to advertising based on Google's interests. To do so, the person concerned must access the www.google.de/settings/ads link from each of the Internet browsers he or she uses and make the necessary settings.

 

More information and Google's current privacy policy can be found at https://www.google.de/intl/de/policies/privacy/

 

17 Privacy policy for the use of Google+.

 

The data controller has integrated the Google+ button as a component of this website. Google+ is a social network. A social network is an Internet-based social meeting place, an online community that usually allows users to communicate with each other and interact in a virtual space. A social network can serve as a platform for the exchange of opinions and experiences or allow the Internet community to provide personal or business-related information. Google+ allows social network users to create private profiles, upload photos and network via friendship requests, among other things.

 

Google+ is operated by Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

 

Whenever one of the pages of this website is called up, which is operated by the controller and on which a Google+ button has been integrated, the Internet browser of the data subject's computer system is automatically invited by the respective Google+ button to download a representation of the corresponding Google+ button from Google. As part of this technical procedure, Google is informed of the specific subpage of our website visited by the person concerned. More detailed information about Google+ is available at https://developers.google.com/+/.

 

If the person concerned is connected to Google+ at the same time, each time the person concerned visits our website and for the duration of their stay on our website, Google recognises the specific subpage of our website that the person concerned visits. This information is collected by the Google+ button and assigned by Google to the respective Google+ account of the person concerned.

 

If the person concerned clicks on one of the Google+ buttons on our website and makes a Google+1 recommendation, Google assigns this information to the person's Google+ personal user account and stores this personal data. Google stores the data subject's Google+1 recommendation and makes it publicly available in accordance with the terms and conditions accepted by the data subject. A Google+1 recommendation made by the person concerned on this website will then be stored and processed with other personal data, such as the name of the Google+1 account used by the person concerned and the photo stored on this account in other Google services, such as Google search engine results, the person's Google account or in other places, such as on websites or in connection with advertising. In addition, Google is able to link the visit to this website with other personal data stored by Google. Google also stores this personal information in order to improve or optimize the various services provided by Google.

 

The Google+ button always informs Google that the person concerned has visited our website if the person concerned is connected to Google+ at the same time as accessing our website; this happens regardless of whether the person concerned clicks the Google+ button or not.

 

If the data subject does not want his or her personal data to be transferred to Google, he or she can prevent this by logging out of his or her Google+ account before calling our website.

 

You can find more information and Google's current privacy policy at https://www.google.de/intl/de/policies/privacy/ You can find more information about Google on the Google+1 button at https://developers.google.com/+/web/buttons-policy.

 

18. Privacy policy for the use of Google AdWords

 

The data controller has integrated Google AdWords into this website. Google AdWords is an Internet advertising service that allows advertisers to place ads in both Google search engine results and the Google Advertising Network. Google AdWords allows an advertiser to pre-define certain keywords to display an ad in Google's search engine results only when the user uses the search engine to get a relevant search result. On the Google network, ads are distributed to thematically relevant websites using an automatic algorithm and using the keywords defined above.

 

The operator of Google AdWords services is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

 

Google AdWords' purpose is to advertise our website by displaying advertising of interest on third party websites and in Google's search engine results and by displaying third party advertising on our website.

 

If an affected person accesses our website via a Google ad, a conversion cookie is stored in the computer system of the person concerned by Google. What cookies are has already been explained above. A conversion cookie loses its validity after thirty days and is not used to identify the person concerned. If the cookie has not yet expired, the conversion cookie is used to determine whether certain subpages, such as the shopping cart of an online store system, have been called up on our website. The conversion cookie allows us and Google to know whether a person who has accessed our website through an AdWords ad has generated revenue, that is, whether they have made or cancelled a purchase of goods.

 

The data and information collected through the use of the conversion cookie is used by Google to generate statistics about visits to our website. We use these visit statistics to determine the total number of users who have been referred to us via AdWords ads, i.e. to determine the success or failure of the respective AdWords ad and to optimize our AdWords ads for the future. Neither our company nor other Google AdWords advertisers receive any personally identifiable information from Google.

 

The conversion cookie is used to store personal information, such as websites visited by the person concerned. Personal data, including the IP address of the Internet connection used by the data subject, are therefore transferred to Google in the United States of America each time he or she visits our websites. This personal data is stored by Google in the United States of America. Google may disclose to third parties personal data collected in the course of the technical process.

 

The person concerned may prevent the installation of cookies by our website at any time, as already described above, by means of an appropriate setting of the Internet browser used and thus permanently prevent the installation of cookies. Such a setting of the Internet browser used would also prevent Google from installing a conversion cookie on the data subject's computer system. In addition, a cookie already installed by Google AdWords can be deleted at any time via the web browser or other software.

 

In addition, the data subject has the possibility to object to advertising based on Google's interests. To do so, the person concerned must access the www.google.de/settings/ads link from each of the Internet browsers he or she uses and make the necessary settings.

 

More information and Google's current privacy policy can be found at https://www.google.de/intl/de/policies/privacy/

 

19 Instagram Use and Usage Privacy Policy

 

The controller has integrated components of the Instagram service into this website. Instagram is a service that can be described as an audiovisual platform allowing users to share photos and videos and redistribute this data on other social networks.

 

Instagram's services are operated by Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, USA.

 

Each time you access one of the pages of this website, which is operated by the controller and on which an instagram component (Insta button) has been integrated, the Internet browser of the person's computer system is automatically prompted by the respective instagram component to download a representation of the corresponding instagram component. As part of this technical procedure, Instagram is informed of the specific subpage of our website visited by the person concerned.

 

If the person concerned is connected to Instagram at the same time, Instagram recognizes the specific subpage that the person concerned visits each time he/she visits our website and for the duration of his/her stay on our website. This information is collected by the Instagram component and assigned to the individual's Instagram account by Instagram. If the data subject presses one of the Instagram buttons integrated on our website, the data and information thus transmitted will be assigned to the data subject's personal Instagram user account and stored and processed by Instagram.

 

Instagram receives information via the Instagram component that the person concerned has visited our website each time the person concerned is connected to Instagram at the same time as accessing our website, whether or not the person concerned clicks on the Instagram component. If the data subject does not want this information to be transmitted to Instagram, he or she can prevent transmission by logging out of his or her Instagram account before accessing our website.

 

Further information and Instagram's current privacy policy are available at https://help.instagram.com/155833707900388 and https://www.instagram.com/about/legal/privacy/

 

20 Privacy policy for using Jetpack for WordPress

 

The controller has integrated Jetpack into this website. Jetpack is a WordPress plug-in that provides the operator of a WordPress based website with additional functions. Jetpack provides the website operator with, among other things, an overview of site visitors. The display of articles and related publications or the ability to share content on the site also increases the number of visitors. In addition, security features are integrated into Jetpack, so that a website using Jetpack is better protected against brute force attacks. Jetpack also optimizes and speeds up the loading of the images integrated on the website.

 

The Jetpack plug-in for WordPress is operated by Automattic Inc, 132 Hawthorne Street, San Francisco, CA 94107, USA. The operating company uses tracking technology from Quantcast Inc. 201 Third Street, San Francisco, CA 94103, USA.

 

Jetpack places a cookie on the person's computer system. What cookies are has already been explained above. Whenever one of the pages of this website is called up, which is operated by the controller and on which a jetpack component has been integrated, the Internet browser of the data subject's computer system is automatically led by the respective jetpack component to transmit data to Automattic for analysis purposes. As part of this technical process, Automattic is informed of the data that is then used to create an overview of website visits. The data thus collected are used to analyse the behaviour of the data subject who has accessed the controller's website and are evaluated in order to optimise the website. Data collected via the Jetpack component will not be used to identify the data subject without the express prior consent of the data subject. The data is also made available to Quantcast. Quantcast uses the data for the same purposes as Automattic.

 

The person concerned may prevent the installation of cookies by our website at any time, as already described above, by means of an appropriate setting of the Internet browser used and thus permanently prevent the installation of cookies. Such a setting of the Internet browser used would also prevent Automattic/Quantcast from placing a cookie on the data subject's computer system. In addition, cookies already installed by Automattic can be deleted at any time via the Internet browser or other software.

 

In addition, the data subject has the possibility to object to the collection of data generated by the Jetpack cookie related to the use of this website and to the processing of such data by Automattic/Quantcast and to prevent such collection. To do this, the data subject must press the opt-out button under the link https://www.quantcast.com/opt-out/, which sets up an opt-out cookie. The opposition cookie is stored in the computer system used by the person concerned. If cookies are deleted from the data subject's system after an objection, the data subject must recall the link and set up a new opt-out cookie.

 

However, with the introduction of the opt-out cookie, it is possible that the Internet pages of the data controller may no longer be fully usable by the data subject.

 

Automattic's current privacy policy is available at https://automattic.com/privacy/ Quantcast's current privacy policy is available at https://www.quantcast.com/privacy/

 

21 Data protection regulations concerning the use and application of LinkedIn

 

The controller has integrated LinkedIn Corporation components into this website. LinkedIn is an Internet-based social network that allows users to connect to existing business contacts and establish new business contacts. More than 400 million registered users in more than 200 countries use LinkedIn. This makes LinkedIn the largest business contact platform and one of the most visited websites in the world.

 

LinkedIn is operated by LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA. Privacy issues outside the United States are the responsibility of LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Wilton Place, Wilton Place, Dublin 2, Ireland.

 

Each time our website is visited and equipped with a LinkedIn component (LinkedIn plug-in), this component causes the browser used by the person concerned to download a corresponding representation of the LinkedIn component. You can find more information about LinkedIn plug-ins at https://developer.linkedin.com/plugins As part of this technical procedure, LinkedIn is informed of the specific subpage of our website visited by the person concerned.

 

If the person concerned is simultaneously connected to LinkedIn, each time the person concerned visits our website and throughout their stay on our website, LinkedIn recognises the specific subpage of our website that the person concerned visits. This information is collected by the LinkedIn component and assigned by LinkedIn to the respective LinkedIn account of the data subject. If the person concerned clicks on a LinkedIn button integrated into our website, LinkedIn assigns this information to the person's personal LinkedIn user account and stores this personal data.

 

LinkedIn receives information via the LinkedIn component that the person concerned has visited our website each time the person concerned is connected to LinkedIn at the same time as accessing our website; this occurs regardless of whether the person concerned clicks on the LinkedIn component or not. If such transmission of such information to LinkedIn is not desired by the person concerned, he or she may prevent transmission by logging out of his or her LinkedIn account before calling our website.

 

LinkedIn also uses partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Comscore, Comscore, Eloqua and Lotame to manage ad settings on https://www.linkedin.com/psettings/guest-controls These cookies may be rejected at https://www.linkedin.com/legal/cookie-policy LinkedIn's current privacy policy is available at https://www.linkedin.com/legal/privacy-policy LinkedIn's cookie policy is available at https://www.linkedin.com/legal/cookie-policy

 

22 Confidentiality policy regarding the use and application of the Shariff tariff

 

The controller has integrated the Shariff component into this website. The Shariff component provides social media buttons that comply with data protection regulations. Shariff was developed for the German computer magazine c't and is published by GitHub, Inc.

 

The component developer is GitHub, Inc. 88 Colin P. Kelly Junior Street, San Francisco, CA 94107, USA.

 

Typically, button solutions provided by social networks already transfer personal data to the respective social network when a user visits a website in which a social media button has been integrated. Using the Shariff component, personal data is only transmitted to social networks when a website visitor actively presses one of the social media buttons. More information on the Shariff component can be found in the computer magazine c't at http://www.heise.de/newsticker/meldung/Datenschutz-und-Social-Media-Der-c-t-Shariff-ist-im-Einsatz-2470103.html The purpose of using the Shariff component is to protect the personal data of visitors to our website and at the same time to allow us to integrate a button solution for social networks on this website.

 

Further information and GitHub's current privacy policy are available at https://help.github.com/articles/github-privacy-policy/

 

23 Data protection regulations concerning the use and application of Twitter

 

The controller has integrated Twitter components into this website. Twitter is a multilingual public microblogging service on which users can publish and distribute tweets, i. e. short messages limited to 280 characters. These short messages are accessible to everyone, including people who are not registered on Twitter. Tweets are also displayed to the respective user's so-called followers. Followers are other Twitter users who follow a user's tweets. In addition, Twitter allows you to reach a wide audience through hashtags, links or retweets.

 

Twitter is operated by Twitter, Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.

 

Whenever one of the pages of this website is called up, which is operated by the controller and on which a Twitter component (Twitter button) has been integrated, the Internet browser of the person's computer system is automatically invited by the relevant Twitter component to download a representation of the corresponding Twitter component from Twitter. You can find more information about the Twitter buttons at https://about.twitter.com/de/resources/buttons As part of this technical process, Twitter is informed of the specific subpage of our website visited by the person concerned. The purpose of integrating the Twitter component is to enable our users to distribute the content of this website, promote this website in the digital world and increase the number of our visitors.

 

If the person concerned is connected to Twitter at the same time, Twitter recognizes the specific subpage of our website that the person concerned visits each time the person concerned visits our website and for the duration of their stay on our website. This information is collected by the Twitter component and assigned to the respective Twitter account of the person concerned by Twitter. If the person concerned presses one of the Twitter buttons integrated on our website, the data and information thus transmitted will be assigned to the person's personal Twitter user account and stored and processed by Twitter.

 

Twitter receives information via the Twitter component indicating that the person concerned has visited our website each time the person concerned is connected to Twitter at the same time as accessing our website; this occurs regardless of whether the person concerned clicks on the Twitter component or not. If such transmission of this information to Twitter is not desired by the person concerned, he or she can prevent the transmission by logging out of his or her Twitter account before calling our website.

 

Twitter's current data protection provisions are available at https://twitter.com/privacy?lang=en.

 

24 Data protection regulations regarding the use and application of Xing

 

The controller has integrated Xing's components into this website. Xing is an Internet-based social network that allows users to connect to existing business contacts and establish new business contacts. Individual users can create their own personal profile at Xing. For example, companies can create company profiles or post job offers on Xing.

 

Xing is operated by XING SE, Dammtorstraße 30, 20354 Hamburg, Germany.

 

Whenever one of the pages of this website is called up, which is operated by the controller and on which a Xing component (plug-in Xing) has been integrated, the Internet browser of the data subject's computer system is automatically prompted by the relevant Xing component to download a representation of the corresponding Xing component from Xing. You can find more information about Xing plug-ins at https://dev.xing.com/plugins As part of this technical process, Xing is informed of the specific subpage of our website visited by the person concerned.

 

If the person concerned is connected to Xing at the same time, Xing recognizes at each visit to our website by the person concerned and for the duration of the respective stay on our website which specific subpage of our website the person concerned visits. This information is collected by the Xing component and assigned to the respective Xing account of the person concerned by Xing. If the data subject presses one of the Xing buttons integrated on our website, for example the "Share" button, Xing assigns this information to the data subject's personal Xing user account and stores this personal data.

 

Xing receives information via the Xing component indicating that the person concerned has visited our website each time the person concerned is connected to Xing at the same time as accessing our website; this occurs regardless of whether the person concerned clicks on the Xing component or not. If such transmission of this information to Xing is not desired by the person concerned, he or she can prevent the transmission by logging out of his or her Xing account before calling our website.

 

The data protection rules published by Xing, which can be consulted at https://www.xing.com/privacy, provide information on the collection, processing and use of personal data by Xing. Xing has also posted privacy notices for the XING share button at https://www.xing.com/app/share?op=data_protection.

 

25 Use and Use of YouTube Privacy Policy

 

The controller has integrated YouTube components into this website. YouTube is an Internet video portal that allows video publishers to view video clips and other users to view, rate and comment on them for free. YouTube allows the publication of all types of videos, so complete film and television programmes, music videos, trailers, trailers or videos produced by users themselves can be called up via the Internet portal.

 

YouTube is operated by YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc, 1600 Pkwy Amphitheatre, Mountain View, CA 94043-1351, USA.

 

Each time you access one of the pages of this website, which is operated by the data controller and on which a YouTube component (YouTube video) has been integrated, the Internet browser of the data subject's computer system is automatically invited by the relevant YouTube component to download a representation of the corresponding YouTube component from YouTube. You can find more information on YouTube at https://www.youtube.com/yt/about/de/ As part of this technical procedure, YouTube and Google are informed of the specific subpage of our website visited by the person concerned.

 

If the person concerned is connected to YouTube at the same time, YouTube recognizes the specific subpage of our website that the person concerned visits by calling a subpage containing a YouTube video. This information is collected by YouTube and Google and assigned to the respective YouTube account of the person concerned.

 

YouTube and Google receive information via the YouTube component indicating that the person concerned has visited our website each time the person concerned is connected to YouTube at the same time as accessing our website; this occurs regardless of whether the person concerned clicks on a YouTube video or not. If the person concerned does not want this information to be transmitted to YouTube and Google, they can prevent transmission by logging out of their YouTube account before calling our website.

 

The data protection rules published by YouTube, which can be viewed at https://www.google.de/intl/de/policies/privacy/, provide information on the collection, processing and use of personal data by YouTube and Google.

 

26. Payment method: privacy policy for PayPal as a payment method

 

The controller has integrated PayPal components into this website. PayPal is an online payment service provider. Payments are processed through PayPal accounts, which are virtual private or business accounts. In addition, PayPal offers the possibility to process virtual payments by credit card if the user does not have a PayPal account. A PayPal account is managed via an email address, which is why there is no standard account number. PayPal allows you to initiate online payments to third parties or receive payments. PayPal also acts as a trustee and provides buyer protection services.

 

PayPal's European operating company is PayPal (Europe) GmbH. Cie S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg, Luxembourg, Luxembourg.

 

If the person concerned chooses "PayPal" as a payment option in our online shop during the ordering process, the data of the person concerned are automatically transmitted to PayPal. By selecting this payment option, the data subject consents to the transfer of the personal data necessary for the processing of the payment

 

The personal data transmitted to PayPal are generally the first name, surname, address, e-mail address, IP address, telephone number, mobile phone number or other data required to process the payment. Personal data related to the corresponding order are also required for the processing of the purchase contract.

 

The purpose of data transmission is to process payments and prevent fraud. The controller will provide PayPal with personal data, in particular if there is a legitimate interest in the transfer. Personal data exchanged between PayPal and the controller can be transferred by PayPal to reference credit agencies. The purpose of this transmission is to verify identity and solvency.

 

PayPal may transmit personal data to affiliates and service providers or subcontractors if this is necessary to fulfil contractual obligations or if the data must be processed on behalf of PayPal.

 

The data subject has the possibility to revoke his/her consent to the processing of personal data with PayPal at any time. A revocation does not affect the personal data to be processed, used or transmitted for the processing of (contractual) payments.

 

PayPal's current privacy policy can be viewed at https://www.paypal.com/de/webapps/mpp/ua/privacy-full

 

27. Payment method: data protection rules for Sofortüberweisung as a payment method.

 

The controller has integrated Sofortüberweisung components into this website. Sofortüberweisung is a payment service that allows cashless payment for products and services over the Internet. Sofortüberweisung is a technical procedure by which the online merchant immediately receives a payment confirmation. This allows a dealer to deliver goods, services or downloads to the customer immediately after placing the order.

 

The operating company of Sofortüberweisung is SOFORT GmbH, Fußbergstraße 1, 82131 Gauting, Germany.

 

If the data subject chooses "Sofortüberweisung" as a payment option in our online shop during the ordering process, the data of the data subject are automatically transferred to Sofortüberweisung. By choosing this payment option, the data subject consents to the transfer of the personal data necessary for the processing of the payment.

 

In the case of purchase transactions by direct bank transfer, the buyer transmits the PIN code and TAN to Sofort GmbH. The immediate transfer then makes a transfer to the online merchant after a technical check of the account balance and the recovery of other data to verify the account coverage. The execution of the financial transaction is then automatically communicated to the online merchant.

 

Personal data exchanged by direct bank transfer are first name, surname, address, e-mail address, IP address, telephone number, mobile phone number or other data necessary for payment processing. The purpose of data transmission is to process payments and prevent fraud. The controller will immediately transfer other personal data, even if there is a legitimate interest in the transfer. Personal data exchanged between Sofortüberweisung and the controller may be transferred by Sofortüberweisung to credit agencies. The purpose of this transmission is to verify identity and solvency.

 

Sofortüberweisung transmits personal data to affiliated companies and service providers or subcontractors if this is necessary to fulfil contractual obligations or if the data must be processed on behalf of the company.

 

The data subject has the possibility to revoke his/her consent to the processing of personal data by Sofortüberweisung at any time. A revocation does not affect the personal data to be processed, used or transmitted for the processing of (contractual) payments.

 

The applicable data protection provisions of Sofortüberweisung can be found at https://www.sofort.com/ger-DE/datenschutzerklaerung-sofort-gmbh/

 

28. Legal basis of the processing operation

 

Art. 6 I lit. a DS-GMO serves as the legal basis for our company for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, as is the case, for example, with processing operations necessary for the supply of goods or other services or for payment, the processing is based on Article 6 I lit. b DS-GMO. The same applies to the processing processes necessary for the execution of pre-contractual measures, for example in the event of requests for information on our products or services. If our company is subject to a legal obligation that requires the processing of personal data, for example to fulfil tax obligations, the processing is based on art. 6 I lit. c DS-GMO. In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor was injured in our company and his or her name, age, health insurance data or other vital information were to be transmitted to a doctor, hospital or other third parties. The processing would then be based on Art. 6 I lit. d DS-GMO. Ultimately, processing operations could be based on Art. 6 I lit. f DS-GMO. Processing operations which are not covered by one of the above-mentioned legal bases shall be based on that legal basis if the processing is necessary to safeguard a legitimate interest of our company or of a third party, provided that the interests, rights and fundamental freedoms of the data subject do not prevail. Such processing procedures are allowed to us in particular because they have been specifically mentioned by the European legislator. In this respect, it considered that a legitimate interest could be presumed if the data subject is a customer of the responsible person (recital 47, second sentence, DS-GMO).

 

29. Legitimate interests in the processing carried out by the controller or a third party.

 

If the processing of personal data is based on Article 6 I lit. f DS-GMO, it is in our legitimate interest to conduct our business for the benefit of all our employees and shareholders.

 

30. The storage period for personal data

 

The criterion for the retention period of personal data is the corresponding legal retention period. After the expiry of this period, the corresponding data will be systematically deleted, provided that they are no longer necessary for the performance or initiation of the contract.

 

 

31. The legal or contractual provisions relating to the provision of personal data; the need to conclude the contract; the obligation of the data subject to provide the personal data; the possible consequences of a failure to provide such data.

 

We inform you that the provision of personal data is partly required by law (e. g. tax regulations) or may also result from contractual regulations (e. g. information on the contractual partner). In some cases, it may be necessary to conclude a contract if a data subject provides us with personal data that must be further processed by us. For example, the data subject is required to provide us with personal data if our company enters into a contract with him or her. In the absence of personal data, the contract with the data subject could not be concluded. Before the data subject provides personal data, the data subject must contact one of our employees. Our collaborator will inform the data subject on a case-by-case basis if the provision of personal data is required by law or contract or if it is required for the conclusion of the contract, if there is an obligation to provide the personal data and what consequences the failure to provide the personal data would have.

 

32. The existence of an automated decision-making process

 

As a responsible company, we do not need automatic decision-making or profiling.

 

This data protection statement was created by the data protection statement generator of DGD Deutsche Gesellschaft für Datenschutz GmbH, which acts as external data protection officer in Aschaffenburg, in collaboration with Christian Solmecke, lawyer for IT and data protection law.