Privacy Policy

Deutschland

SSL or TLS encryption

When you enter your data on websites, place online orders or send e-mails via the Internet, you must always be prepared for unauthorized third parties to access your data. There is no complete protection against such access. However, we do our utmost to protect your data as best we can and to close security gaps as far as we can.

An important protection mechanism is the SSL or TLS encryption of our website, which ensures that data you transmit to us cannot be read by third parties. You can recognize the encryption by the lock icon in front of the Internet address entered in your browser and by the fact that our Internet address begins with https:// and not with http://.

Encrypted payment transactions

Payment data, such as account or credit card numbers, require special protection. For this reason, payment transactions made with the most common means of payment are carried out exclusively via an encrypted SSL or TLS connection.

Data transfer to the USA

On our website, we use tools from companies that transfer your data to the USA and store it there and, if necessary, process it further. The European Commission has adopted an adequacy decision for the EU-US data protection framework. The decision establishes that the US ensures an adequate level of protection for EU personal data transferred to US companies. This decision is based on new safeguards and measures put in place by the US to meet data protection requirements. The adequacy decision includes, among other things, restrictions and safeguards on access to data by US intelligence agencies. Binding safeguards were introduced to limit US intelligence agencies' access to what is necessary and proportionate to protect national security. In addition, enhanced oversight of US intelligence activities was established to ensure that restrictions on surveillance activities are respected. An independent redress mechanism has also been established to handle and resolve complaints from European citizens about access to their data. The EU-US data protection framework thus allows European companies to transfer data to certified US companies without having to introduce additional data protection safeguards. A list of all certified companies can be found at the following link: https://www.dataprivacyframework.gov/s/participant-search.

A change in the European Commission's decision cannot be ruled out.

Hosting and Content Delivery Networks (CDN)

External hosting

Our website is hosted on a server of the following Internet service provider (hoster):

Has a data processing agreement been concluded with the hoster or are standard contractual clauses (SCC) in place?

Yes

How do we process your data?

The hoster stores all the data from our website. This includes all personal data that is collected automatically or through entering. This can be in particular: Your IP address, pages accessed, names, contact details and requests, as well as meta and communication data. When processing data, our hoster adheres to our instructions and always processes the data only insofar as this is necessary to fulfill the service obligation to us.

On what legal basis do we process your data?

Since we address potential customers via our website and maintain contacts with existing customers, the data processing by our hoster serves to initiate and fulfill contracts and is therefore based on Art. 6 (1) lit. b) GDPR. In addition, it is our legitimate interest as a company to provide a professional Internet offering that meets the necessary requirements for security, speed and efficiency. In this respect, we also process your data on the legal basis of Art. 6 (1) lit. f) GDPR.

Use of cookies

Our website places cookies on your device. These are small text files that are used for various purposes. Some cookies are technically necessary for the website to function at all (necessary cookies). Others are needed to perform certain actions or functions on the site (functional cookies). For example, without cookies it would not be possible to take advantage of a shopping cart in an online store. Still other cookies are used to analyze user behavior or to optimize advertising measures. If we use third-party services on our website, for example to process payment transactions, these companies may also leave cookies on your device when you access the website (so-called third-party cookies).

How do we process your data?

Session cookies are only stored on your device for the duration of a session. As soon as you close the browser, they therefore disappear by themselves. Permanent cookies, on the other hand, remain on your device unless you delete them yourself. This can, for example, lead to your user behavior being permanently analyzed. You can use the settings in your browser to influence how it handles cookies:

• Do you want to be informed when cookies are set?
• Do you want to exclude cookies in general or for certain cases?
• Do you want cookies to be deleted automatically when you close the browser?

If you disable or do not allow cookies, the functionality of the website may be limited.

If we use cookies from other companies or for analysis purposes, we will inform you about this as part of this privacy policy. We also request your consent in this regard when you access our website.

On what legal basis do we process your data?

We have a legitimate interest in ensuring that our online offers can be used by visitors without technical problems and that all desired functions are available to them. The storage of necessary and functional cookies on your device therefore takes place on the legal basis of Art. 6 (1) lit. f) GDPR. We use all other cookies on the legal basis of Art. 6 (1) lit. a) GDPR, provided you give us your consent. You can revoke this at any time with effect for the future. If you have consented to the placement of necessary and functional cookies when requesting consent, these cookies will also be stored exclusively on the basis of your consent.

Contact form

You can send us a message via the contact form on this website.

How do we process your data?

We store your message and the information from the form in order to process your request including follow-up questions. This also applies to the contact details provided. We do not pass on the data to other persons without your consent.

How long do we store your data?

We delete your data as soon as one of the following occurs:

• Your request has been conclusively processed.
• You request us to delete the data.
• You revoke your consent to the storage.

This does not apply only if we are required by law to retain the data.

On what legal basis do we process your data?

If your request is related to our contractual relationship or serves the implementation of pre-contractual measures, we process your data on the legal basis of Art. 6 (1) lit. b) GDPR. In all other cases, it is our legitimate interest to effectively process requests directed to us. The legal basis for data processing is therefore Art. 6 (1) lit. f) GDPR. If you have consented to the storage of your data, Art. 6 (1) lit. a) GDPR is the legal basis. In this case, you can revoke your consent at any time with effect for the future.

Inquiry by e-mail, telephone or fax

You can send us a message by e-mail or fax or call us.

How do we process your data?

We store your message as well as your self-made contact details or the transmitted telephone number in order to be able to process your inquiry including follow-up questions. We do not pass on the data to other persons without your consent.

How long do we store your data?

We delete your data as soon as one of the following occurs:

• Your inquiry has been conclusively processed.
• You request us to delete the data.
• You revoke your consent to the storage.

This does not apply only if we are required by law to retain the data.

On what legal basis do we process your data?

If your request is related to our contractual relationship or serves the implementation of pre-contractual measures, we process your data on the legal basis of Art. 6 (1) lit. b) GDPR. In all other cases, it is our legitimate interest to effectively process requests directed to us. The legal basis for data processing is therefore Art. 6 (1) lit. f) GDPR. If you have consented to the storage of your data, Art. 6 (1) lit. a) GDPR is the legal basis. In this case, you can revoke your consent at any time with effect for the future.

Plugins and tools

Google Fonts (local hosting)

We use fonts from the US company Google on our website. We have installed the fonts locally, so there is no connection to Google's servers when you visit our website.

For more information about Google Fonts, please visit https://developers.google.com/fonts/faq and read Google's privacy policy: https://policies.google.com/privacy?hl=de.

Font Awesome (local hosting)

We use icons from the Font Awesome icon library on our website. The library is provided by Fonticons Inc. We have installed the icons locally, so there is no connection to the company's servers when you visit our website.

For more information about Font Awesome, please visit https://fontawesome.com/ and specifically see their privacy policy there: https://fontawesome.com/privacy.

OpenStreetMap

What is OpenStreetMap?

Map service of the OpenStreetMap Foundation.

Who processes your data?

OpenStreetMap Foundation (OSMF), Cowley Road, St John's Innovation Centre, Cambridge CB4 0WS, United Kingdom.

Where can you find more information about data protection at OpenStreetMap?

https://wiki.osmfoundation.org/wiki/Privacy_Policy

How do we process your data?

On our website, we use maps provided by the OpenStreetMap Foundation. What this means for you is that your IP address and information about your surfing behavior are forwarded to the foundation and stored there when you visit our website. For this purpose, the foundation leaves cookies on your device or uses comparable recognition technologies. If you have allowed your location to be determined in the settings of your device, OpenStreetMap also stores this data.

On what legal basis do we process your data?

The maps from OpenStreetMap ensure that the places indicated on our website are easier to find for visitors. As a company, we have a legitimate interest in this. The data processing is therefore lawful according to Art. 6 (1) lit. f) GDPR.

If you have consented to the data processing, we process your data exclusively on the basis of Art. 6 (1) lit. a) GDPR. You may revoke your consent at any time. From the time of revocation, we may no longer process your data.

Google reCAPTCHA

What is Google reCAPTCHA?

Test tool to distinguish between people and computers from Google Ireland Ltd.

Who processes your data?

Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland.

Where can you find more information about data protection at Google?

https://policies.google.com/privacy?hl=de

On what legal basis do we transfer your data to the USA?

On the basis of the European Commission's adequacy decision and the company's corresponding certification.

How do we process your data?

With Google reCAPTCHA, we check whether data entered into forms on our website comes from a human or from a computer. For you, this means that the testing tool analyzes your behavior as a visitor to our website based on various characteristics. The analysis does not start when you use the test tool, but already when you visit our website. Various data are collected, e.g. the IP address, the time spent on our website and mouse movements. The data is forwarded to Google.

On what legal basis do we process your data?

As a company, we have a legitimate interest in protecting our web offerings from spam and abusive spying. The data processing is therefore lawful according to Art. 6 (1) lit. f) GDPR.

If you have consented to the data processing, we process your data exclusively on the basis of Art. 6 (1) lit. a) GDPR. You may revoke your consent at any time. From the time of revocation, we may no longer process your data.

jQuery

What is jQuery?

Service that provides access to a JavaScript library for use on this website

Who processes your data?

The OpenJS Foundation, 548 Market St, PMB 57274, San Francisco, California, USA

Where can you find more information about data protection at jQuery?

https://openjsf.org/privacy

On what basis do we transfer your data to the USA?

jQuery adheres to the standard contractual clauses of the European Commission (see https://openjsf.org/privacy)

How do we process your data?

We use the services of jQuery on our website. jQuery is a JavaScript library. It simplifies Javascript programming by providing an easy-to-use interface for many common tasks. With jQuery, users can make their websites faster and more interactive. When you visit our website, a direct connection is established between your browser and the jQuery servers. This is how jQuery learns that our website was accessed via your IP address.

On what legal basis do we process your data?

jQuery's fonts ensure a consistent typeface on our websites. As a company, we have a legitimate interest in this. The data processing is therefore lawful according to Art. 6 (1) lit. f) GDPR.

If you have consented to the data processing, we process your data exclusively on the basis of Art. 6 (1) lit. a) GDPR. You may revoke your consent at any time. From the time of revocation, we may no longer process your data.

OneDrive

What is OneDrive?

Cloud storage

Who processes your data?

Microsoft Corp, One Microsoft Way, Redmond, WA 98052-6399, USA.

Where can you find more information about data protection at OneDrive?

https://privacy.microsoft.com/de-de/privacystatement

On what legal basis do we transfer your data to the USA?

On the basis of the European Commission's adequacy decision and the company's corresponding certification.

How do we process your data?

You can upload files on our website. We use the cloud storage OneDrive for this purpose. The files are stored on the servers of the US company Microsoft. When you visit our website, a connection to OneDrive is also established. The cloud storage thus registers that our website has been accessed via your IP address.

On what legal basis do we process your data?

We have a legitimate interest in offering a reliable upload area on our website. Therefore, the processing of your data is based on Art. 6 (1) lit. f) GDPR. If you have consented to data processing, we process your data exclusively on the basis of Art. 6 (1) lit. a) GDPR. You can revoke your consent at any time with effect for the future.

Google Drive

What is Google Drive?

Cloud storage

Who processes your data?

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Where can you find more information about data protection at Google Drive?

https://policies.google.com/privacy

On what legal basis do we transfer your data to the USA?

On the basis of the European Commission's adequacy decision and the company's corresponding certification.

How do we process your data?

You can upload files on our website. For this purpose, we use the cloud storage Google Drive. The files are stored on the servers of the US company Google. If you visit our website, a connection to Google is also established. The cloud storage thus registers that our website has been accessed via your IP address.

On what legal basis do we process your data?

We have a legitimate interest in offering a reliable upload area on our website. Therefore, the processing of your data is based on Art. 6 para. 1 lit. f) GDPR. If you have consented to data processing, we process your data exclusively on the basis of Art. 6 (1) lit. a) GDPR. You can revoke your consent at any time with effect for the future.

eCommerce and payment providers

Customer and contract data

How do we process your data?

When we conclude a contract with you, we require certain personal data from you. We collect, process and use this data only insofar as it is necessary to establish our legal relationship, to shape its content or to change it. If you can only use our services via our website or if the services are billed via the website, we also collect usage data insofar as this is necessary to enable you to use our offer or to bill the service used.

How long do we store your data?

We store your data until our legal relationship ends, unless we are required by law to keep the data longer.

On what legal basis do we process your data?

We store your data in order to fulfill the contract with you or to carry out pre-contractual measures. The basis of the data processing is therefore Art. 6 (1) lit. b) GDPR.

Credit checks

In the case of purchases on account or other payment methods where we make advance payments, we may carry out credit checks or scoring. In this case, we transmit the necessary data entered for this purpose to credit agencies. The probability of non-payment is determined on the basis of the data. In the event of an increased risk of non-payment, we may refuse certain types of payment.

This process is carried out on the basis of Art. 6 (1) lit. b) GDPR and to avoid payment defaults as a legitimate interest under Art. 6 (1) lit. f) GDPR. If consent has been obtained, the credit check is carried out on the basis of this consent in accordance with Art. 6 (1) lit. a) GDPR; consent can be revoked at any time.

How long do we store your data?

We store your data until our legal relationship ends, unless we are required by law to keep the data longer.

On what legal basis do we process your data?

We store your data in order to fulfill the contract with you or to carry out pre-contractual measures. The basis for data processing is Art. 6 (1) lit. b) GDPR.

Data transfer when using services and digital content.

How do we process your data?

For the processing of the payment, we transmit your data to a payment service or the credit institution commissioned with the payment processing. We only pass on data that is absolutely necessary for the payment process. If we want to pass on data beyond this, we will obtain your consent.

On what legal basis do we process your data?

We pass on your data in order to fulfill the contract we have concluded with you. The basis of the data processing is therefore Art. 6 (1) lit. b) GDPR. If you have consented to the transfer of your data, the data processing is based on Art. 6 (1) lit. a) GDPR. You can revoke your consent at any time with effect for the future.

Payment services

To enable you to conveniently pay for your purchases on our website, we use the services of payment services, i.e. external companies that process the payments for us. You can see which ones these are specifically from the list at the end of this section.

How do we process your data?

For the payment process, you must provide certain personal data, e.g. your name, your account details or credit card number. We pass this data on to the respective payment service. For the transaction itself, the respective contract and data protection provisions of the respective services apply.

On what legal basis do we process your data?

We pass on your data in order to fulfill the contract we have concluded with you. The basis of the data processing is therefore Art. 6 (1) lit. b) GDPR. In addition, we have a legitimate interest in processing purchases as quickly, conveniently and securely as possible. In this respect, the legal basis is also Art. 6 (1) lit. f) GDPR. If you have consented to the transfer of your data, the data processing is based on Art. 6 (1) lit. a) GDPR. You can revoke your consent at any time with effect for the future.

Which payment services do we use?

PayPal

What is PayPal?

Online payment service

Who processes your data?

PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg.

Where can you find more information about data protection at PayPal?

https://www.paypal.com/de/webapps/mpp/ua/privacy-full

On what legal basis do we transfer your data to the USA?

PayPal adheres to the standard contractual clauses of the European Commission (see https://www.paypal.com/de/webapps/mpp/ua/pocpsa-full).

Stripe

What is Stripe?

Online payment service

Who processes your data?

Stripe Payments Europe Ltd, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland.

Where can you find more information about data protection at Stripe?

https://stripe.com/de/privacy

On what legal basis do we transfer your data to the USA?

On the basis of the European Commission's adequacy decision and the company's corresponding certification.

Klarna

What is Klarna?

Payment service

Who processes your data?

Klarna AB, Sveavägen 46, 111 34 Stockholm, Sweden

Where can you find more information about data protection at Klarna?

https://www.klarna.com/de/datenschutz/

Paydirekt

What is Paydirekt?

Online payment method of German banks and savings banks

Who processes your data?

Paydirekt GmbH, Stephanstraße 14-1660313 Frankfurt am Main, Germany

Where can you find more information about data protection at Paydirekt?

https://www.paydirekt.de/agb/index.html

Sofortüberweisung

What is Sofortüberweisung?

Online payment method that works like a bank transfer, but where a third company is interposed and confirms the payment to us as the seller.

Who processes your data?

Sofort GmbH, Theresienhöhe 12, 80339 Munich, Germany (Sofort GmbH is part of the Klarna Group).

Where can you find more information about data protection at Sofortüberweisung?

https://www.sofort.de/datenschutz.html and https://www.klarna.com/sofort/

Audio and video conferences

As a company we are in contact with many people: Customers, business partners, service providers, etc. In doing so, we also use so-called online conferencing tools for the exchange, in addition to other means of communication. Information relevant to data protection law on the provider(s) of the tools we use can be found at the end of this section. If you communicate with us via such a tool, not only we, but in particular the provider of the respective tool, process your personal data.

How do we process your data?

Online conference tools collect and store various personal data in order to enable participation in an online conference and its smooth execution. In addition to registration, conference and technical data, this also concerns certain communication content.

• Registration data: Your email address and/or phone number and, if applicable, other data you provide when registering for the conference.
• Conference data: The start, end as well as duration of your participation in the conference, the number of participants and other metadata about the conference.
• Technical data: IP address, MAC address, device ID, device type, operating system and version, client version, camera type, microphone or speaker, and connection type.
• Communication content: Cloud recordings, chat/instant messages, voicemails uploaded photos and videos, files, whiteboards and other information shared while using the service.

For details on data processing, please refer to the privacy policy of the respective conferencing tool provider.

How long do we store your data?

As your communication partner, we delete your data on our systems as soon as one of the following occurs:

• The purpose of the data processing no longer applies.
• You request us to delete the data.
• You revoke your consent to the storage.

This does not apply only if we are required by law to retain the data.

Cookies remain on your terminal device until you delete them.

Conference tool providers also store your data for their own purposes. Please ask the providers directly what this means for the duration of the storage of your data.

On what legal basis do we process your data?

If we are already contractually connected or if you would like to conclude a contract with us, we use conference tools to fulfill the contract or to inform you about our services or products. In this respect, the data processing takes place on the basis of Art. 6 (1) lit. b) GDPR. Otherwise, the use of conferencing tools serves the purpose of simple and quick communication, without which we would not be able to run our business efficiently. We therefore also have a legitimate interest in data processing pursuant to Art. 6 (1) lit. f) GDPR. Another legal basis may be your consent. Relevant in this case is Art. 6 (1) lit. a) GDPR. This basis ceases to apply for the future if you revoke your consent.

Which online conference tools do we use?

Zoom

What is Zoom?

Communication platform for video meetings, voice communication, webinars as well as chats via desktop computers, telephones, mobile devices and conference room systems.

Who processes your data?

Zoom Communications Inc, 55 Almaden Boulevard, Suite 600, San Jose, CA 95113, USA.

Where can you find more information about data protection at Zoom?

https://zoom.us/de-de/privacy.html

On what legal basis do we transfer your data to the USA?

Zoom Communications Inc. complies with the European Commission's standard contractual clauses (see https://zoom.us/de-de/privacy.html).

TeamViewer

What is TeamViewer?

Software for online collaboration and remote support

Who processes your data?

TeamViewer Germany GmbH, Bahnhofsplatz 2, 73033 Göppingen, Germany.

Where can you find more information about data protection at TeamViewer?

https://www.teamviewer.com/de/datenschutzerklaerung/

Skype for Business

What is Skype for Business?

Tool for chats, online meetings and phone calls

Who processes your data?

Skype Communications SARL, 23-29 Rives de Clausen, 2165 Luxembourg, Luxembourg

Where can you find more information about data protection at Skype for Business?

https://privacy.microsoft.com/de-de/privacystatement/

Microsoft Teams

What is Microsoft Teams?

Communication platform for collaboration in teams

Who processes your data?

Microsoft Corp., One Microsoft Way, Redmond, WA 98052-6399, USA

Where can you find more information about data protection at Microsoft Teams?

https://privacy.microsoft.com/de-de/privacystatement

On what legal basis do we transfer your data to the USA?

On the basis of the European Commission's adequacy decision and the company's corresponding certification.

Google Meet

What is Google Meet?

Video conferencing service provided by Google Ireland Ltd.

Who processes your data?

Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Irland

Where can you find more information about data protection at Google Meet?

https://policies.google.com/privacy?hl=de

On what legal basis do we transfer your data to the USA?

On the basis of the European Commission's adequacy decision and the company's corresponding certification.

Data processing on social media

What is Social Media?

By social media, we mean the social networks on which we have created publicly accessible profiles. You can read below which social networks these are specifically.

Who processes your data?

The respective operating companies of the social networks. You can find the individual operators below under the respective networks.

How is your data processed?

The operators of social networks are generally able to collect and evaluate comprehensive data about the behavior of visitors and users of the network. It is not possible for us to track all processing operations on the social networks we use, which is why further processing operations not listed here may be carried out by the operators of the social networks. You can find more information on this in the terms of use and privacy statements of the respective social networks.

The processing of your data can be triggered by you visiting the website of the social network or our profile page there. Even if you visit a website that uses certain content of the network, e.g. like or share buttons, data may already be transmitted to the operators of the social network. If you yourself are a user of the social network and logged into your user account, your visit to our profile page can be assigned to your account by the operator of the social network. Even if you yourself have not registered a user account or are not logged in, the operator of the network may still collect your personal data, e.g. by recording your IP address or setting cookies. With this data, the operators can create user profiles adapted to your behavior and interests and show you interest-based advertising inside and outside the network. If you are a registered user of the network, the interest-based advertising may also be displayed on all devices on which you are or were logged in.

On what legal basis is your data processed?

Our profiles in the social networks are intended to ensure the broadest possible presence of our company on the Internet. As a company, we have a legitimate interest in this. The data processing is therefore lawful according to Art. 6 (1) lit. f) GDPR.

The data processing operations and analyses carried out by the operators of the social networks themselves may be based on other legal grounds. These must be stated by the operators of the social networks.

Who is responsible for the processing of your data and how can you assert your rights?

If you visit one of our profiles on the social networks, we are jointly responsible with the operator of the respective network for the data processing operations triggered during this visit. In principle, you can assert your rights both against us and against the operator of the respective network.

Despite the joint responsibility with the operators of the social networks, however, our influence on the data processing operations of the respective operator is limited and is primarily based on the operator's specifications.

How long is your data stored?

If we collect data via our profiles in the social networks, these are deleted from our systems as soon as the purpose for storing them no longer applies, you request us to delete them or you revoke your consent to storage. Stored cookies remain on your terminal device until you delete them. Mandatory legal provisions - in particular retention periods - remain unaffected.

We have no influence on how long the operators of the social networks store your data, which the operators collect for their own purposes. You can obtain information on this directly from the operator of the respective social network, e.g. in the respective privacy policy.

Which social media do we use?

LinkedIn

What is LinkedIn?

A social network for business contacts

Who processes your data?

LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland

Is your data transferred to third countries?

Yes

Where can you find more information about data protection at LinkedIn?

https://de.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy

As a user, where can you adjust your privacy settings?

As a registered LinkedIn user, you can adjust your privacy settings in your user account. To do so, click on the following link and log in:

https://www.linkedin.com/psettings/