Privacy Policy

1. Brief Overview of Data Protection

General Information
The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data refers to any information that can be used to identify you personally. Detailed information on data protection can be found in our data protection declaration below this text.

Data Collection on Our Website

Who is responsible for data collection on this site?
The data processing on this website is carried out by the website operator. You can find their contact information in the site’s legal notice.

How do we collect your data?
On one hand, your data is collected when you provide it to us. This could be, for example, data you enter into a contact form.
Other data is automatically collected by our IT systems when you visit the website. Primarily, this includes technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter our site.

What do we use your data for?
Some data is collected to ensure the website functions properly. Other data may be used to analyze your user behavior.

What rights do you have regarding your data?
You have the right to obtain information about the origin, recipients, and purpose of your stored personal data at any time and free of charge. You also have the right to request correction, blocking, or deletion of these data. You can contact us at any time at the address provided in the legal notice if you have further questions on data protection. You also have the right to file a complaint with the relevant supervisory authority.

Analytics and Third-Party Tools
When you visit our website, your online behavior may be statistically analyzed. This mainly occurs through cookies and so-called analysis programs. Your online behavior analysis is generally anonymous; it cannot be traced back to you. You may object to this analysis or prevent it by not using certain tools. Detailed information can be found in the following data protection statement.

You can object to this analysis. We inform you about the options for objection in this data protection statement.

2. General Information and Mandatory Information

Data Protection
The operators of this website take the protection of your personal data very seriously. We handle your personal data confidentially and in accordance with legal data protection regulations and this data protection declaration.

When you use this website, various personal data are collected. Personal data refers to information that can be used to identify you personally. This data protection statement explains what data we collect and what we use it for. It also explains how and for what purpose this occurs.

Please note that data transmission over the Internet (e.g., when communicating by email) can have security gaps. Complete protection of data against third-party access is not possible.

3. Definitions

The data protection declaration of the operators is based on the terms used by the European legislator for directives and regulations in issuing the General Data Protection Regulation (GDPR). Our data protection declaration should be easily readable and understandable for the public, as well as for our customers and business partners. To ensure this, we would like to explain the terms used in advance.

In this data protection declaration, we use, among others, the following terms:

3.1 Personal Data

Personal data means any information relating to an identified or identifiable natural person (hereinafter “data subject”). A natural person is considered identifiable if they can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more specific characteristics that express the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

3.2 Data Subject

A data subject is any identified or identifiable natural person whose personal data is processed by the data controller.

3.3 Processing

Processing is any operation or set of operations performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.

3.4 Restriction of Processing

Restriction of processing is the marking of stored personal data with the aim of limiting their future processing.

3.5 Profiling

Profiling is any form of automated processing of personal data consisting of the use of this personal data to evaluate certain personal aspects relating to a natural person, particularly to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.

3.6 Pseudonymization

Pseudonymization is the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that this additional information is kept separately and is subject to technical and organizational measures ensuring that the personal data is not attributed to an identified or identifiable natural person.

3.7 Controller or Data Controller

The controller or data controller is the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.

3.8 Processor

The processor is a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller.

3.9 Recipient

A recipient is a natural or legal person, public authority, agency, or another body to whom personal data is disclosed, whether a third party or not. However, public authorities that may receive personal data in the context of a specific investigative task in accordance with Union or Member State law shall not be regarded as recipients.

3.10 Third Party

A third party is a natural or legal person, public authority, agency, or other body other than the data subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorized to process personal data.

3.11 Consent

Consent is any freely given, specific, informed, and unambiguous indication of the data subject’s wishes in the form of a statement or other clear affirmative action by which the data subject signifies agreement to the processing of personal data relating to them.

3.12 Withdrawal of Your Consent to Data Processing
Many data processing operations are only possible with your explicit consent. You may revoke any consent you have already provided at any time. All you need to do is send us an informal email. The legality of the data processing carried out prior to the withdrawal remains unaffected.

3.13 Right to File Complaints with Regulatory Authorities
In case of data protection violations, the affected person has the right to lodge a complaint with the responsible supervisory authority. The responsible data protection authority is the state data protection commissioner of the federal state where our company is located. A list of data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

3.14 Right to Data Portability
You have the right to receive data that we process automatically based on your consent or in fulfillment of a contract in a commonly used machine-readable format, or to have it transmitted to a third party. If you request direct transfer of the data to another controller, this will only be done if technically feasible.

3.15 SSL or TLS Encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the browser’s address bar changing from “http://” to “https://” and the lock icon in your browser’s address bar.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

3.16 Information, Blocking, Deletion
Within the scope of the applicable legal provisions, you have the right to receive information about your stored personal data, its origin, recipients, and purpose of data processing, as well as the right to have this data corrected, blocked, or deleted free of charge at any time. You may contact us at any time at the address provided in the legal notice for this purpose or if you have further questions on the topic of personal data.

The privacy policy of the operators is based on the terminology used by the European legislator when issuing the General Data Protection Regulation (GDPR). Our privacy policy is intended to be easily readable and understandable for both the public and our customers and business partners. To ensure this, we would like to explain the terminology used in advance.

In this privacy policy, we use the following terms, among others:

a) Personal Data

Personal data refers to all information relating to an identified or identifiable natural person (hereinafter referred to as the “data subject”). A natural person is considered identifiable if they can be identified directly or indirectly, particularly through an identifier such as a name, an identification number, location data, an online identifier, or one or more characteristics that express the physical, physiological, genetic, psychological, economic, cultural, or social identity of that natural person.

b) Data Subject

A data subject is any identified or identifiable natural person whose personal data is processed by the data controller.

c) Processing

Processing refers to any operation or set of operations performed on personal data, whether or not by automated means, such as collecting, recording, organizing, structuring, storing, adapting or altering, retrieving, consulting, using, disclosing by transmission, dissemination, or otherwise making available, aligning or combining, restricting, erasing, or destroying.

d) Restriction of Processing

Restriction of processing means the marking of stored personal data to limit its future processing.

e) Profiling

Profiling refers to any form of automated processing of personal data that involves using personal data to evaluate certain personal aspects related to a natural person, particularly to analyze or predict aspects concerning work performance, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.

f) Pseudonymization

Pseudonymization refers to the processing of personal data in such a way that the data can no longer be attributed to a specific data subject without additional information, provided that such additional information is kept separately and is subject to technical and organizational measures ensuring that the personal data is not attributed to an identified or identifiable natural person.

g) Controller or Data Controller

The controller or data controller refers to the natural or legal person, public authority, agency, or other body that alone or jointly with others determines the purposes and means of the processing of personal data. If the purposes and means of processing are determined by Union or Member State law, the controller or the specific criteria for its designation may be provided for by Union or Member State law.

h) Processor

A processor is a natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller.

i) Recipient

A recipient is a natural or legal person, public authority, agency, or other body to whom personal data is disclosed, whether a third party or not. However, public authorities that may receive personal data in the context of a particular investigation under Union or Member State law are not considered recipients.

j) Third Party

A third party is a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorized to process personal data.

k) Consent

Consent refers to any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, through a statement or a clear affirmative action, signify agreement to the processing of their personal data.

4. Name and Address of the Controller

The controller within the meaning of the General Data Protection Regulation, other data protection laws applicable in the Member States of the European Union, and other provisions with data protection characteristics is: see imprint.

5. Cookies

The operators’ websites use cookies. Cookies are text files that are stored and saved on a computer system via an Internet browser.

Many websites and servers use cookies. Many cookies contain a unique cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a character string that allows websites and servers to be assigned to the specific Internet browser in which the cookie was stored. This allows the visited websites and servers to distinguish the data subject’s browser from other Internet browsers that contain different cookies. A particular Internet browser can be recognized and identified via the unique cookie ID.

By using cookies, the operators can provide users of this website with more user-friendly services that would not be possible without cookie placement.

Cookies enable us to optimize the information and offers on our website for the benefit of the user. As mentioned earlier, cookies allow us to recognize users of our website. The purpose of this recognition is to make it easier for users to utilize our website. For instance, a user of a website that uses cookies does not have to enter their access data each time they visit the website because this is handled by the website and the cookie stored on the user’s computer system. Another example is the cookie of a shopping cart in an online store. The online store remembers the items a customer placed in the virtual shopping cart via a cookie.

The data subject can prevent the placement of cookies by adjusting their Internet browser settings accordingly and thereby permanently object to the placement of cookies. Additionally, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all common Internet browsers. If the data subject disables cookie placement in their Internet browser, not all functions of our website may be fully usable.

6. Collection of General Data and Information

Each time the operators’ website is accessed by a data subject or an automated system, a series of general data and information is collected. This general data and information is stored in the server’s log files. The collected data may include: (1) browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system arrives at our website (so-called referrer), (4) the sub-websites accessed on our website, (5) the date and time of access to the website, (6) an Internet Protocol (IP) address, (7) the Internet service provider of the accessing system, and (8) other similar data and information that serve security purposes in the event of attacks on our IT systems.

When using this general data and information, the operators do not draw any conclusions about the data subject. This information is needed to (1) properly deliver the content of our website, (2) optimize the content of our website and its advertising, (3) ensure the continued functionality of our IT systems and website technology, and (4) provide law enforcement authorities with the necessary information in case of a cyber attack. Therefore, the operators evaluate this anonymously collected data and information both statistically and with the aim of increasing data protection and security in our company, ultimately ensuring an optimal level of protection for the personal data we process. The anonymous data in the server log files is stored separately from all personal data provided by a data subject.

6.1 Data Collection on Our Website

Cookies
Some websites use cookies. Cookies do not harm your computer and do not contain viruses. They serve to make our offerings more user-friendly, efficient, and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called “session cookies.” They are automatically deleted at the end of your visit. Other cookies remain on your device until you delete them. These cookies allow us to recognize your browser on your next visit.

You can set your browser to inform you about the setting of cookies, to allow cookies only in specific cases, to exclude the acceptance of cookies for specific cases or generally, and to enable automatic deletion of cookies when you close the browser. If cookies are disabled, the functionality of this website may be limited.

Cookies that are necessary for electronic communication or for providing certain functions (e.g., shopping cart function) are stored based on Art. 6, para. 1 f GDPR. The website operator has a legitimate interest in storing cookies to ensure an optimized and technically error-free provision of its services. If other cookies (e.g., cookies for analyzing your online behavior) are stored, they will be treated separately in this data protection declaration.

Server Log Files
The page provider automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. This information includes:

Browser type and browser version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of the server request
IP address

This data will not be merged with other data sources.

The basis for data processing is Art. 6 (1) (f) GDPR, which allows data processing for contract performance or pre-contractual measures.

Contact Form
If you send us inquiries via the contact form, your data from the inquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not share this data without your consent.

Data entered in the contact form is processed exclusively based on your consent (Art. 6, para. 1, letter a GDPR). You can revoke this consent at any time. All you need to do is send us an informal email. The legality of the data processing operations carried out prior to the revocation remains unaffected.

Data that you enter in the contact form will remain with us until you request deletion, revoke your consent for storage, or the purpose for data storage ceases to exist (e.g., after completing your request). Mandatory legal provisions—especially retention periods—remain unaffected.

7. Registration on Our Website

The data subject has the opportunity to register on the website of the controller by providing personal data. The specific personal data transmitted to the controller is determined by the respective input mask used for registration. The personal data entered by the data subject is collected and stored exclusively for internal use by the controller and for its own purposes. The controller may arrange for the transfer to one or more processors, such as a parcel service provider, who also uses the personal data exclusively for internal purposes attributable to the controller.

By registering on the controller’s website, the IP address assigned by the data subject’s Internet Service Provider (ISP), the date, and the time of registration are also stored. The storage of this data is necessary to prevent misuse of our services and to enable the investigation of committed crimes if necessary. In this respect, the storage of this data is required for the security of the controller. This data is not passed on to third parties unless there is a legal obligation to do so or it serves law enforcement purposes.

The registration of the data subject, with the voluntary provision of personal data, serves to enable the controller to offer content or services that can only be provided to registered users. Registered persons can modify or completely delete the personal data provided during registration at any time from the database of the controller.

The controller provides information to any data subject upon request regarding which personal data is stored about them. Furthermore, the controller corrects or deletes personal data at the request or indication of the data subject, provided that there are no statutory retention obligations. The entire staff of the controller is available to the data subject as contact persons in this regard.

8. Subscription to Our Newsletter

Users are given the opportunity to subscribe to the company’s newsletter on the operators’ website. The personal data transmitted to the controller when ordering the newsletter is determined by the input mask used for this purpose.

The operators inform customers and business partners at regular intervals via a newsletter about company offers. The company’s newsletter can only be received by the data subject if (1) the data subject has a valid email address and (2) the data subject registers for the newsletter mailing. A confirmation email will be sent to the email address initially registered for the newsletter mailing using the double opt-in procedure. This confirmation email is used to verify whether the owner of the email address as the data subject has authorized the receipt of the newsletter.

When registering for the newsletter, we also store the IP address assigned by the ISP of the computer system used by the data subject at the time of registration, as well as the date and time of registration. The collection of this data is necessary to trace the (potential) misuse of a data subject’s email address at a later date and therefore serves the legal protection of the controller.

The personal data collected during a newsletter subscription is used exclusively for sending our newsletter. Newsletter subscribers may also be informed by email if this is necessary for the operation of the newsletter service or a related registration, such as in the case of changes to the newsletter offer or changes in technical circumstances. No personal data collected as part of the newsletter service will be passed on to third parties. The subscription to our newsletter can be terminated by the data subject at any time. The consent to store personal data that the data subject has provided for the newsletter can be revoked at any time. A corresponding link is provided in every newsletter for the purpose of revoking consent. Furthermore, there is the option to unsubscribe from the newsletter at any time directly on the controller’s website or by informing the controller in another way.

9. Newsletter Tracking

The operators’ newsletters contain so-called tracking pixels. A tracking pixel is a miniature graphic embedded in such emails, which are sent in HTML format, to enable log file recording and log file analysis. This allows for a statistical evaluation of the success or failure of online marketing campaigns. Based on the embedded tracking pixel, the operators can recognize whether and when an email was opened by a data subject and which links contained in the email were accessed by the data subject.

Such personal data collected via the tracking pixels contained in the newsletters is stored and analyzed by the controller to optimize the newsletter mailing and better adapt the content of future newsletters to the interests of the data subject. These personal data are not passed on to third parties. Data subjects are entitled at any time to revoke their separate consent given via the double opt-in procedure. After a revocation, these personal data will be deleted by the controller. The operators automatically interpret an unsubscribe from receiving the newsletter as a revocation.

10. Contact Option via the Website

Due to legal regulations, the operators’ website contains information that enables quick electronic contact with our company as well as direct communication with us, which also includes a general address for so-called electronic mail (email address). If a data subject contacts the controller via email or through a contact form, the personal data transmitted by the data subject is automatically stored. Such personal data voluntarily transmitted by a data subject to the controller is stored for the purpose of processing or contacting the data subject. This personal data is not passed on to third parties.

11. Subscription to Comments on the Blog on the Website

Comments made in the operators’ blog can generally be subscribed to by third parties. In particular, there is the possibility for a commenter to subscribe to subsequent comments on a specific blog post.

If a data subject opts to subscribe to comments, the controller sends an automatic confirmation email to verify, using the double opt-in procedure, whether the owner of the specified email address has indeed chosen this option. The option to subscribe to comments can be terminated at any time.

12. Routine Deletion and Blocking of Personal Data

The controller processes and stores personal data of the data subject only for the period necessary to achieve the purpose of storage or as provided by the European legislator or another legislator in laws or regulations to which the controller is subject.

If the storage purpose ceases to apply or a storage period prescribed by the European legislator or another competent legislator expires, the personal data is routinely blocked or deleted in accordance with legal requirements.

13. Rights of the Data Subject

a) Right to Confirmation

Every data subject has the right, granted by the European legislator, to request confirmation from the controller as to whether personal data concerning them is being processed. If a data subject wishes to exercise this right of confirmation, they may contact a staff member of the controller at any time.

b) Right to Access

Every data subject affected by the processing of personal data has the right, granted by the European legislator, to obtain free information from the controller at any time about the personal data stored about them and a copy of this information. Furthermore, the European legislator has granted the data subject access to the following information:

The purposes of the processing
The categories of personal data being processed
The recipients or categories of recipients to whom the personal data has been or will be disclosed, particularly recipients in third countries or international organizations
If possible, the planned duration for which the personal data will be stored or, if not possible, the criteria used to determine this duration
The existence of the right to rectification or erasure of personal data concerning them, or restriction of processing by the controller, or the right to object to such processing
The existence of a right to lodge a complaint with a supervisory authority
If the personal data is not collected from the data subject: Any available information about the data source
The existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) of the GDPR, and—at least in these cases—meaningful information about the logic involved and the significance and intended consequences of such processing for the data subject

Furthermore, the data subject has a right to know whether personal data has been transferred to a third country or an international organization. If this is the case, the data subject has the right to be informed about the appropriate safeguards relating to the transfer.

If a data subject wishes to exercise this right of access, they may contact a staff member of the controller at any time.

c) Right to Rectification

Every data subject affected by the processing of personal data has the right, granted by the European legislator, to request the immediate correction of incorrect personal data concerning them. Furthermore, the data subject has the right to request the completion of incomplete personal data, including by means of a supplementary statement, taking into account the purposes of the processing.

If a data subject wishes to exercise this right of rectification, they may contact a staff member of the controller at any time.

d) Right to Erasure (Right to be Forgotten)

Every data subject affected by the processing of personal data has the right, granted by the European legislator, to demand that the controller erase personal data concerning them without undue delay if one of the following reasons applies and the processing is not necessary:

The personal data was collected or otherwise processed for purposes that are no longer necessary.
The data subject withdraws their consent on which the processing was based according to Article 6(1)(a) GDPR or Article 9(2)(a) GDPR, and there is no other legal basis for processing.
The data subject objects to processing pursuant to Article 21(1) GDPR, and there are no overriding legitimate reasons for processing, or the data subject objects to processing pursuant to Article 21(2) GDPR.
The personal data was unlawfully processed.
The deletion of personal data is necessary to comply with a legal obligation under Union or Member State law to which the controller is subject.
The personal data was collected in relation to information society services offered in accordance with Article 8(1) GDPR.

If one of the above reasons applies and a data subject wishes to request the deletion of personal data stored by the operator, they may contact a staff member of the controller at any time. The staff member will ensure that the deletion request is complied with immediately.

If the operator has made the personal data public and is obliged to delete it pursuant to Article 17(1) GDPR, the operator, taking into account available technology and implementation costs, will take reasonable steps, including technical measures, to inform other controllers processing the published personal data that the data subject has requested deletion of all links to this personal data or copies or replications of this personal data, provided that processing is not required. The staff member will take the necessary steps in individual cases.

e) Right to Restriction of Processing

Every data subject affected by the processing of personal data has the right, granted by the European legislator, to request the restriction of processing from the controller under the following conditions:

The accuracy of the personal data is contested by the data subject for a period allowing the controller to verify the accuracy of the personal data.
The processing is unlawful, the data subject opposes the deletion of the personal data and instead requests restriction of its use.
The controller no longer needs the personal data for processing purposes, but the data subject requires it for the establishment, exercise, or defense of legal claims.
The data subject has objected to processing pursuant to Article 21(1) GDPR, and it is not yet determined whether the legitimate interests of the controller override those of the data subject.

If one of the above conditions is met and a data subject wishes to request the restriction of personal data stored by the operator, they may contact a staff member of the controller at any time. The staff member will initiate the restriction of processing.

f) Right to Data Portability

Every data subject affected by the processing of personal data has the right, granted by the European legislator, to receive the personal data concerning them, which they have provided to a controller, in a structured, commonly used, and machine-readable format. They also have the right to transmit this data to another controller without hindrance from the controller to whom the personal data was provided, provided that the processing is based on consent pursuant to Article 6(1)(a) GDPR or Article 9(2)(a) GDPR or on a contract pursuant to Article 6(1)(b) GDPR and the processing is carried out by automated means, provided that the processing is not necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

Furthermore, in exercising their right to data portability pursuant to Article 20(1) GDPR, the data subject has the right to have the personal data transmitted directly from one controller to another, where technically feasible and provided that this does not adversely affect the rights and freedoms of others.

To assert the right to data portability, the data subject may contact a staff member of the operator at any time.

g) Right to Object

Every data subject affected by the processing of personal data has the right, granted by the European legislator, to object at any time, on grounds relating to their particular situation, to the processing of personal data concerning them, which is carried out based on Article 6(1)(e) or (f) GDPR. This also applies to profiling based on these provisions.

The operator will no longer process the personal data in the event of an objection unless we can demonstrate compelling legitimate grounds for processing that override the interests, rights, and freedoms of the data subject or the processing is for the establishment, exercise, or defense of legal claims.

If the operator processes personal data for direct marketing purposes, the data subject has the right to object at any time to the processing of personal data for such marketing. This also applies to profiling to the extent that it is related to such direct marketing. If the data subject objects to the operator processing for direct marketing purposes, the operator will no longer process the personal data for these purposes.

Additionally, the data subject has the right, on grounds relating to their particular situation, to object to the processing of personal data concerning them for scientific or historical research purposes or statistical purposes pursuant to Article 89(1) GDPR unless the processing is necessary for the performance of a task carried out in the public interest.

To exercise the right to object, the data subject may directly contact any staff member of the operator or another staff member. The data subject is also free to exercise their right to object in the context of the use of information society services, notwithstanding Directive 2002/58/EC, by automated means using technical specifications.

h) Automated Individual Decision-Making, Including Profiling

Every data subject affected by the processing of personal data has the right, granted by the European legislator, not to be subject to a decision based solely on automated processing—including profiling—which produces legal effects concerning them or similarly significantly affects them, unless the decision (1) is necessary for entering into, or the performance of, a contract between the data subject and the controller, or (2) is authorized by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard the rights and freedoms and legitimate interests of the data subject, or (3) is based on the data subject’s explicit consent.

If the decision (1) is necessary for entering into or the performance of a contract between the data subject and the controller or (2) is based on the data subject’s explicit consent, the operator shall implement suitable measures to safeguard the rights and freedoms and legitimate interests of the data subject, which include at least the right to obtain human intervention on the part of the controller, to express their point of view, and to contest the decision.

If the data subject wishes to assert rights concerning automated decision-making, they may contact a staff member of the controller at any time.

i) Right to Withdraw Data Protection Consent

Every data subject affected by the processing of personal data has the right, granted by the European legislator, to withdraw consent to the processing of personal data at any time.

If the data subject wishes to exercise their right to withdraw consent, they may contact a staff member of the controller at any time.

14. Data Protection in Applications and the Application Process

The controller collects and processes the personal data of applicants for the purpose of handling the application process. Processing may also take place electronically, particularly when an applicant submits corresponding application documents electronically, for example, via email or a web form on the website. If the controller concludes an employment contract with an applicant, the transmitted data will be stored for the purpose of handling the employment relationship in compliance with legal regulations. If no employment contract is concluded with the applicant, the application documents will be automatically deleted two months after notification of the rejection decision unless deletion conflicts with other legitimate interests of the controller. A legitimate interest in this sense could be, for example, the burden of proof in a case under the General Equal Treatment Act (AGG).

15. Data Protection Provisions on the Use of Affilinet

The controller has integrated components from the company Affilinet on this website. Affilinet is a German affiliate network that offers affiliate marketing services.

Affiliate marketing is an internet-based distribution model that enables commercial operators of websites, known as merchants or advertisers, to display advertisements on third-party websites (affiliates or publishers) and compensate them based on clicks or sales. The merchant provides advertising material via the affiliate network, such as banners or other suitable online advertising methods, which are subsequently integrated by an affiliate on their websites or promoted through other channels like keyword advertising or email marketing.

The operating company of Affilinet is affilinet GmbH, Sapporobogen 6-8, 80637 Munich, Germany.

Affilinet places a cookie on the data subject’s IT system. The concept of cookies has been previously explained. The tracking cookie from Affilinet does not store any personal data. Only the identification number of the affiliate (i.e., the referring partner), the order number of the visitor to a website, and the clicked advertising material are stored. The purpose of storing this data is to process commission payments between a merchant and the affiliate via Affilinet.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent Affilinet from placing a cookie on the data subject’s IT system. Additionally, cookies already set by Affilinet can be deleted at any time using an internet browser or other software programs.

The applicable data protection provisions of Affilinet can be found at https://www.affili.net/de/footeritem/datenschutz.

16. Data Protection Provisions on the Use of Facebook

The controller has integrated components from the company Facebook on this website. Facebook is a social network.

A social network is an internet-based social meeting place, an online community that typically enables users to communicate with each other and interact in a virtual space. A social network may serve as a platform for exchanging opinions and experiences or provide the internet community with personal or business-related information. Facebook allows users to create private profiles, upload photos, and network via friend requests.

The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. If a data subject resides outside the USA or Canada, the controller responsible for processing personal data is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

With each visit to an individual page of this website operated by the controller and on which a Facebook component (Facebook plug-in) has been integrated, the data subject’s internet browser is automatically prompted to download a display of the respective Facebook component from Facebook. An overview of all Facebook plug-ins can be found at https://developers.facebook.com/docs/plugins/?locale=en_US. In the course of this technical process, Facebook becomes aware of which specific subpage of our website the data subject has visited.

If the data subject is simultaneously logged into Facebook, Facebook detects each visit to our website by the data subject and throughout their stay on our website. This information is collected through the Facebook component and assigned to the respective Facebook account of the data subject. If the data subject interacts with Facebook buttons integrated into our website, such as the “Like” button, or submits a comment, Facebook assigns this information to the data subject’s personal Facebook user account and stores this personal data.

Facebook receives information via the Facebook component that the data subject has visited our website whenever the data subject is logged into Facebook at the time of accessing our website. This occurs regardless of whether the data subject clicks on the Facebook component or not. If the data subject does not wish such transmission of information to Facebook, they can prevent it by logging out of their Facebook account before visiting our website.

The data policy published by Facebook, available at https://www.facebook.com/about/privacy/, provides information on the collection, processing, and use of personal data by Facebook. It also explains the settings Facebook offers to protect the privacy of data subjects. Additionally, various applications are available that allow users to suppress data transmission to Facebook. These applications may be used by the data subject to prevent data transmission to Facebook.

17. Data Protection Provisions on the Use of Amazon Affiliate Program Features

The controller has integrated Amazon components as a participant in the Amazon Affiliate Program on this website. The Amazon components are designed by Amazon to refer customers to various websites of the Amazon group, in particular, Amazon.co.uk, Local.Amazon.co.uk, Amazon.de, BuyVIP.com, Amazon.fr, Amazon.it, and Amazon.es. BuyVIP.com, in return for a commission payment. By using Amazon components, the controller can generate advertising revenue.

The operating company of these Amazon components is Amazon EU S.à.r.l, 5 Rue Plaetis, L-2338 Luxembourg, Luxembourg.

Amazon places a cookie on the data subject’s IT system. The concept of cookies has been previously explained. Each time an individual page of this website is accessed, which is operated by the controller and includes an Amazon component, the data subject’s internet browser is automatically triggered by the respective Amazon component to transmit data to Amazon for the purpose of online advertising and commission settlement. In the course of this technical process, Amazon gains knowledge of personal data used to trace the origin of orders received by Amazon and subsequently enable commission billing. Amazon can track, among other things, that the data subject clicked on a partner link on our website.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent Amazon from placing a cookie on the data subject’s IT system. Additionally, cookies already set by Amazon can be deleted at any time using an internet browser or other software programs.

Further information and Amazon’s applicable data protection provisions can be found at https://www.amazon.de/gp/help/customer/display.html?nodeId=3312401.

18. Data Protection Provisions on the Use of Verwertungsgesellschaft WORT (VG WORT) Features

The controller has integrated tracking pixels on this website. A tracking pixel is a miniature graphic embedded in web pages to enable log file recording and log file analysis, thereby allowing statistical evaluation. The integrated tracking pixels serve the Scalable Central Measurement Procedure (SZM) of the Verwertungsgesellschaft WORT (VG WORT).

The Scalable Central Measurement Procedure is operated by INFOnline GmbH, Brühler Str. 9, 53119 Bonn, Germany.

The Scalable Central Measurement Procedure is used to determine statistical metrics that calculate the likelihood of texts being copied. The embedded tracking pixel allows VG WORT to determine whether, when, and how many users (including the data subject) accessed our website and which content was retrieved.

The data collected through the Scalable Central Measurement Procedure is gathered anonymously. To collect access counts, either a session cookie is set to recognize the users of a website, a signature is created based on various automatically transmitted information, or alternative methods are used. The IP address of the data subject’s internet connection is collected and processed only in anonymized form. The data subject is never personally identified.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent INFOnline from placing a cookie on the data subject’s IT system. Additionally, cookies already set by INFOnline can be deleted at any time using an internet browser or other software programs.

Furthermore, the data subject has the option to object to and prevent the collection of data generated by INFOnline related to the use of this website and its processing by INFOnline. To do this, the data subject must press the opt-out button at http://optout.ioam.de, which sets an opt-out cookie. The opt-out cookie set for this objection is stored on the data subject’s IT system. If the data subject deletes the cookies on their system after making an objection, they must revisit the link and set a new opt-out cookie.

However, by setting the opt-out cookie, it is possible that the controller’s website may no longer be fully usable for the data subject.

The applicable data protection provisions of INFOnline can be found at https://www.infonline.de/datenschutz/.

19. Data Protection Provisions on the Use of Google AdSense

The controller has integrated Google AdSense on this website. Google AdSense is an online service that enables the placement of advertisements on third-party sites. Google AdSense is based on an algorithm that selects advertisements displayed on third-party sites to match the content of the respective third-party site. Google AdSense enables interest-based targeting of internet users by generating individual user profiles.

The operating company of the Google AdSense component is Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland.

The purpose of the Google AdSense component is to integrate advertisements on our website. Google AdSense places a cookie on the data subject’s IT system. The concept of cookies has been previously explained. By setting the cookie, Alphabet Inc. is enabled to analyze the usage of our website. Each time an individual page of this website is accessed, which is operated by the controller and includes a Google AdSense component, the data subject’s internet browser is automatically triggered by the respective Google AdSense component to transmit data to Alphabet Inc. for the purpose of online advertising and commission settlement. In the course of this technical process, Alphabet Inc. gains knowledge of personal data, such as the data subject’s IP address, which helps Alphabet Inc. trace the origin of visitors and clicks and subsequently facilitate commission calculations.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent Alphabet Inc. from placing a cookie on the data subject’s IT system. Additionally, cookies already set by Alphabet Inc. can be deleted at any time using an internet browser or other software programs.

Google AdSense also uses tracking pixels. A tracking pixel is a miniature graphic embedded in web pages to enable log file recording and log file analysis, thereby allowing statistical evaluation. The embedded tracking pixel allows Alphabet Inc. to determine whether and when a web page was opened by a data subject and which links were clicked. Tracking pixels serve, among other purposes, to evaluate the visitor flow of a website.

Through Google AdSense, personal data and information, including the IP address, necessary for capturing and billing displayed advertisements, are transmitted to Alphabet Inc. in the United States of America. These personal data are stored and processed in the United States. Alphabet Inc. may share the collected personal data with third parties through this technical process.

Google AdSense is further explained at https://www.google.de/intl/de/adsense/start/.

20. Data Protection Provisions on the Use of Google Remarketing

The controller has integrated Google Remarketing services on this website. Google Remarketing is a function of Google AdWords that enables a company to display advertisements to internet users who have previously visited the company’s website. The integration of Google Remarketing allows a company to create user-specific advertisements and display interest-based ads to internet users.

The operating company of Google Remarketing services is Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland.

The purpose of Google Remarketing is to display interest-based advertising. Google Remarketing allows us to show ads within the Google advertising network or on other websites that are tailored to the individual needs and interests of internet users.

Google Remarketing sets a cookie on the data subject’s IT system. The concept of cookies has been previously explained. By setting the cookie, Google can recognize a visitor to our website when they subsequently visit websites that are also members of the Google advertising network. Each time an internet page that has Google Remarketing integrated is accessed, the internet browser of the data subject automatically identifies itself to Google. In the course of this technical process, Google gains knowledge of personal data, such as the data subject’s IP address or browsing behavior, which Google uses, among other things, to display interest-based advertising.

Personal information, such as the web pages visited by the data subject, is stored via the cookie. Each time our web pages are visited, personal data, including the IP address of the internet connection used by the data subject, is transmitted to Google in the United States. These personal data are stored by Google in the United States. Google may share the personal data collected through this technical process with third parties.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent Google from setting a cookie on the data subject’s IT system. Additionally, cookies already set by Google Analytics can be deleted at any time using an internet browser or other software programs.

Furthermore, the data subject has the option to object to interest-based advertising by Google. To do this, the data subject must access the link www.google.de/settings/ads from each internet browser they use and configure the desired settings there.

Further information and Google’s applicable data protection provisions can be accessed at https://www.google.de/intl/en/policies/privacy/.

21. Data Protection Provisions on the Use of Google AdWords

The controller has integrated Google AdWords on this website. Google AdWords is an online advertising service that allows advertisers to place ads in Google search engine results and within the Google advertising network. Google AdWords enables an advertiser to define specific keywords in advance, which ensure that an ad appears in Google search results only when the user retrieves a keyword-relevant search result. In the Google advertising network, ads are distributed to topic-relevant websites based on an automatic algorithm and predefined keywords.

The operating company of Google AdWords services is Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland.

The purpose of Google AdWords is to promote our website by displaying interest-based advertising on third-party websites and in Google search results, as well as displaying third-party advertising on our website.

If a data subject reaches our website via a Google ad, Google places a so-called conversion cookie on the data subject’s IT system. The concept of cookies has been previously explained. A conversion cookie expires after thirty days and is not used to identify the data subject. Through the conversion cookie, it is possible to determine whether certain subpages, such as the shopping cart of an online store, were accessed on our website. Both we and Google can track whether a data subject who arrived on our website via an AdWords ad completed a transaction, such as making a purchase or abandoning the purchase process.

The data and information collected through the use of the conversion cookie are used by Google to generate visit statistics for our website. We use these visit statistics to determine the total number of users referred to us through AdWords ads, thereby evaluating the success or failure of each AdWords ad and optimizing our future AdWords campaigns. Neither our company nor other Google AdWords advertisers receive information from Google that could identify the data subject.

Personal information, such as the web pages visited by the data subject, is stored via the conversion cookie. Each time our web pages are visited, personal data, including the IP address of the internet connection used by the data subject, is transmitted to Google in the United States. These personal data are stored by Google in the United States. Google may share the personal data collected through this technical process with third parties.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent Google from placing a conversion cookie on the data subject’s IT system. Additionally, cookies already set by Google AdWords can be deleted at any time using an internet browser or other software programs.

Further information and Google’s applicable data protection provisions can be accessed at https://www.google.de/intl/en/policies/privacy/.

22. Data Protection Provisions on the Use of Instagram

The controller has integrated components of the Instagram service on this website. Instagram is a service that qualifies as an audiovisual platform, allowing users to share photos and videos and redistribute such data on other social networks.

The operating company of Instagram services is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

Each time an individual page of this website operated by the controller is accessed, and on which an Instagram component (Insta-Button) is integrated, the internet browser on the data subject’s IT system is automatically prompted by the respective Instagram component to download a representation of the corresponding component from Instagram. Through this technical process, Instagram gains knowledge of which specific subpage of our website is visited by the data subject.

If the data subject is logged into Instagram at the same time, Instagram recognizes which specific subpage the data subject visits with each visit to our website and throughout the entire duration of their stay on our website. This information is collected through the Instagram component and associated with the respective Instagram account of the data subject. If the data subject activates an Instagram button integrated into our website, the transmitted data and information are assigned to the personal Instagram user account of the data subject and stored and processed by Instagram.

Instagram receives information via the Instagram component whenever the data subject visits our website while logged into Instagram. This occurs regardless of whether the data subject clicks on the Instagram component. If the data subject does not wish such information to be transmitted to Instagram, they can prevent this by logging out of their Instagram account before visiting our website.

Further information and Instagram’s applicable data protection provisions can be found at https://help.instagram.com/155833707900388 and https://www.instagram.com/about/legal/privacy/.

23. Data Protection Provisions on the Use of LinkedIn

The controller has integrated components of LinkedIn Corporation on this website. LinkedIn is an internet-based social network that enables users to connect with existing business contacts and make new business connections. Over 400 million registered users use LinkedIn in more than 200 countries, making it the largest business contact platform and one of the most visited websites worldwide.

The operating company of LinkedIn is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. For privacy matters outside the USA, LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland, is responsible.

Each time an individual page of this website that includes a LinkedIn component (LinkedIn plug-in) is accessed, the browser used by the data subject is prompted to download a corresponding representation of the LinkedIn component from LinkedIn. More information about LinkedIn plug-ins can be found at https://developer.linkedin.com/plugins. Through this technical process, LinkedIn gains knowledge of which specific subpage of our website is visited by the data subject.

If the data subject is logged into LinkedIn at the same time, LinkedIn recognizes which specific subpage the data subject visits with each visit to our website and throughout the entire duration of their stay on our website. This information is collected through the LinkedIn component and associated with the respective LinkedIn account of the data subject. If the data subject activates a LinkedIn button integrated into our website, LinkedIn assigns this information to the data subject’s personal LinkedIn user account and stores this personal data.

LinkedIn receives information via the LinkedIn component whenever the data subject visits our website while logged into LinkedIn. This occurs regardless of whether the data subject clicks on the LinkedIn component. If the data subject does not wish such information to be transmitted to LinkedIn, they can prevent this by logging out of their LinkedIn account before visiting our website.

LinkedIn provides options to unsubscribe from email messages, SMS messages, and targeted advertisements, as well as to manage ad settings at https://www.linkedin.com/psettings/guest-controls. LinkedIn also partners with third parties such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua, and Lotame, which may set cookies. These cookies can be rejected at https://www.linkedin.com/legal/cookie-policy. LinkedIn’s applicable data protection provisions can be found at https://www.linkedin.com/legal/privacy-policy. LinkedIn’s cookie policy is available at https://www.linkedin.com/legal/cookie-policy.

24. Data Protection Provisions on the Use of LiveZilla

The controller has integrated the LiveZilla component on this website. LiveZilla is a live support helpdesk software that enables real-time direct communication (so-called live chat) with visitors to a website.

The developer of the LiveZilla component is LiveZilla GmbH, Byk-Gulden-Straße 18, 78224 Singen, Germany.

Each time an individual page of this website that includes a LiveZilla component is accessed, this component collects data for the purpose of operating the live chat system and analyzing the system’s performance. Further information about LiveZilla can be found at http://www.livezilla.net/home/en/.

The LiveZilla component sets a cookie on the data subject’s IT system. The concept of cookies has been previously explained. The LiveZilla cookie allows pseudonymized user profiles to be created. These pseudonymized user profiles may be used by the controller to analyze visitor behavior and maintain the proper operation of the live chat system. The analysis also serves to improve our offerings. The data collected through the LiveZilla component is not used to identify the data subject without obtaining explicit separate consent from the data subject. This data is not merged with personal data or other data containing the same pseudonym.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent the LiveZilla component from setting a cookie on the data subject’s IT system. Additionally, cookies already set by the LiveZilla component can be deleted at any time using an internet browser or other software programs.

LiveZilla GmbH’s applicable data protection provisions can be accessed at https://www.livezilla.net/disclaimer/en/.

25. Data Protection Provisions on the Use of Myspace

The controller has integrated components of Myspace LLC on this website. Myspace is a social network. A social network is an online community that typically allows users to communicate with each other and interact in a virtual space. A social network can serve as a platform for exchanging opinions and experiences or enable the internet community to provide personal or business-related information. Myspace allows users to create free user profiles containing photos, videos, blogs, and groups.

The operating company of Myspace is Myspace LLC, 6100 Center Drive, Suite 800, 90045 Los Angeles, USA.

Each time an individual page of this website operated by the controller is accessed, and on which a Myspace component (Myspace plug-in) is integrated, the internet browser on the data subject’s IT system is automatically prompted by the respective Myspace component to download a representation of the corresponding Myspace component from Myspace. More information about Myspace can be found at https://myspace.com. Through this technical process, Myspace gains knowledge of which specific subpage of our website is visited by the data subject.

If the data subject is logged into Myspace at the same time, Myspace recognizes which specific subpage the data subject visits with each visit to our website and throughout the entire duration of their stay on our website. This information is collected through the Myspace component and associated with the respective Myspace account of the data subject. If the data subject activates a Myspace button integrated into our website, Myspace assigns this information to the data subject’s personal Myspace user account and stores this personal data.

Myspace receives information via the Myspace component whenever the data subject visits our website while logged into Myspace. This occurs regardless of whether the data subject clicks on the Myspace component. If the data subject does not wish such information to be transmitted to Myspace, they can prevent this by logging out of their Myspace account before visiting our website.

The privacy policy published by Myspace, available at https://myspace.com/pages/privacy, provides information on the collection, processing, and use of personal data by Myspace.

26. Data Protection Provisions on the Use of Pinterest

The controller has integrated components of Pinterest Inc. on this website. Pinterest is a social network. A social network is an online community that typically allows users to communicate with each other and interact in a virtual space. A social network can serve as a platform for exchanging opinions and experiences or enable the internet community to provide personal or business-related information. Pinterest allows users to publish image collections, individual images, and descriptions on virtual pinboards (so-called pinning), which can then be shared (so-called repinning) or commented on by other users.

The operating company of Pinterest is Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.

Each time an individual page of this website operated by the controller is accessed, and on which a Pinterest component (Pinterest plug-in) is integrated, the internet browser on the data subject’s IT system is automatically prompted by the respective Pinterest component to download a representation of the corresponding Pinterest component from Pinterest. More information about Pinterest can be found at https://pinterest.com/. Through this technical process, Pinterest gains knowledge of which specific subpage of our website is visited by the data subject.

If the data subject is logged into Pinterest at the same time, Pinterest recognizes which specific subpage the data subject visits with each visit to our website and throughout the entire duration of their stay on our website. This information is collected through the Pinterest component and associated with the respective Pinterest account of the data subject. If the data subject activates a Pinterest button integrated into our website, Pinterest assigns this information to the data subject’s personal Pinterest user account and stores this personal data.

Pinterest receives information via the Pinterest component whenever the data subject visits our website while logged into Pinterest. This occurs regardless of whether the data subject clicks on the Pinterest component. If the data subject does not wish such information to be transmitted to Pinterest, they can prevent this by logging out of their Pinterest account before visiting our website.

The privacy policy published by Pinterest, available at https://about.pinterest.com/privacy-policy, provides information on the collection, processing, and use of personal data by Pinterest.

27. Data Protection Provisions on the Use of SlideShare

The controller has integrated SlideShare components on this website. LinkedIn SlideShare is a file hosting service that enables the exchange and archiving of presentations and other documents such as PDFs, videos, and webinars. The file hosting service allows users to upload media content in all common formats, which can either be made publicly accessible or marked as private.

The operating company of SlideShare is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

LinkedIn SlideShare provides so-called embed codes for the hosted media content (presentations, PDF files, videos, photos, etc.). Embed codes are program codes embedded in websites to display external content on one’s own website. Embed codes allow content to be displayed on a website without storing it on the website’s own server, potentially avoiding copyright infringements. Another advantage of using embed codes is that the website operator does not use their own storage space, reducing server load. An embed code can be placed anywhere on a website, allowing external content to be included within one’s text. The purpose of using LinkedIn SlideShare is to reduce server load and avoid copyright infringements while utilizing third-party content.

Each time an individual page of this website that includes a SlideShare component (embed codes) is accessed, the browser used by the data subject is prompted to download the embedded data from SlideShare. Through this technical process, LinkedIn gains knowledge of which specific subpage of our website is visited by the data subject.

If the data subject is logged into SlideShare at the same time, SlideShare recognizes which specific subpage the data subject visits with each visit to our website and throughout the entire duration of their stay on our website. This information is collected through the SlideShare component and associated with the respective SlideShare account of the data subject.

LinkedIn receives information via the SlideShare component whenever the data subject visits our website while logged into SlideShare. This occurs regardless of whether the data subject interacts with the embedded media. If the data subject does not wish such information to be transmitted to LinkedIn, they can prevent this by logging out of their SlideShare account before visiting our website.

LinkedIn also partners with third parties such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua, and Lotame, which may set cookies. These cookies can be rejected at https://www.linkedin.com/legal/cookie-policy. LinkedIn’s applicable data protection provisions can be found at https://www.linkedin.com/legal/privacy-policy.

28. Data Protection Provisions on the Use of Tumblr

The controller has integrated components of Tumblr on this website. Tumblr is a platform that allows users to create and manage a blog. A blog is a publicly accessible portal where one or more individuals, called bloggers or webloggers, can post articles or write thoughts in blog posts. On a Tumblr blog, users can publish text, images, links, and videos and distribute them digitally. Additionally, Tumblr users can incorporate content from external websites into their own blog.

The operating company of Tumblr is Oath (EMEA) Limited, 5-7 Point Square, North Wall Quay, Dublin 1, Ireland.

Each time an individual page of this website operated by the controller is accessed, and on which a Tumblr component (Tumblr button) is integrated, the internet browser on the data subject’s IT system is automatically prompted by the respective Tumblr component to download a representation of the corresponding Tumblr component from Tumblr. More information about Tumblr buttons is available at https://www.tumblr.com/buttons. Through this technical process, Tumblr gains knowledge of which specific subpage of our website is visited by the data subject. The integration of the Tumblr component aims to enable our users to share the content of this website, increase visibility in the digital space, and boost our visitor numbers.

If the data subject is logged into Tumblr at the same time, Tumblr recognizes which specific subpage the data subject visits with each visit to our website and throughout the entire duration of their stay on our website. This information is collected through the Tumblr component and associated with the respective Tumblr account of the data subject. If the data subject activates a Tumblr button integrated into our website, the transmitted data and information are assigned to the data subject’s personal Tumblr user account and stored and processed by Tumblr.

Tumblr receives information via the Tumblr component whenever the data subject visits our website while logged into Tumblr. This occurs regardless of whether the data subject clicks on the Tumblr component. If the data subject does not wish such information to be transmitted to Tumblr, they can prevent this by logging out of their Tumblr account before visiting our website.

The applicable data protection provisions of Tumblr can be accessed at https://www.tumblr.com/policy/en/privacy.

29. Data Protection Provisions on the Use of Twitter

The controller has integrated components of Twitter on this website. Twitter is a multilingual, publicly accessible microblogging service that allows users to publish and distribute short messages (tweets) limited to 280 characters. These tweets are available to anyone, including users not registered with Twitter. However, the tweets are also displayed to the followers of the respective user. Followers are other Twitter users who follow a user’s tweets. Additionally, Twitter enables addressing a broad audience through hashtags, mentions, and retweets.

The operating company of Twitter is Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland.

Each time an individual page of this website operated by the controller is accessed, and on which a Twitter component (Twitter button) is integrated, the internet browser on the data subject’s IT system is automatically prompted by the respective Twitter component to download a representation of the corresponding Twitter component from Twitter. More information about Twitter buttons is available at https://about.twitter.com/de/resources/buttons. Through this technical process, Twitter gains knowledge of which specific subpage of our website is visited by the data subject. The integration of the Twitter component aims to enable our users to share the content of this website, increase visibility in the digital space, and boost our visitor numbers.

If the data subject is logged into Twitter at the same time, Twitter recognizes which specific subpage the data subject visits with each visit to our website and throughout the entire duration of their stay on our website. This information is collected through the Twitter component and associated with the respective Twitter account of the data subject. If the data subject activates a Twitter button integrated into our website, the transmitted data and information are assigned to the data subject’s personal Twitter user account and stored and processed by Twitter.

Twitter receives information via the Twitter component whenever the data subject visits our website while logged into Twitter. This occurs regardless of whether the data subject clicks on the Twitter component. If the data subject does not wish such information to be transmitted to Twitter, they can prevent this by logging out of their Twitter account before visiting our website.

The applicable data protection provisions of Twitter can be accessed at https://twitter.com/privacy?lang=en.

30. Data Protection Provisions on the Use of Xing

The controller has integrated components of Xing on this website. Xing is an internet-based social network that enables users to connect with existing business contacts and establish new professional connections. Individual users can create personal profiles on Xing. Companies can create company profiles or post job offers on Xing.

The operating company of Xing is XING SE, Dammtorstraße 30, 20354 Hamburg, Germany.

Each time an individual page of this website operated by the controller is accessed, and on which a Xing component (Xing plug-in) is integrated, the internet browser on the data subject’s IT system is automatically prompted by the respective Xing component to download a representation of the corresponding Xing component from Xing. More information about Xing plug-ins is available at https://dev.xing.com/plugins. Through this technical process, Xing gains knowledge of which specific subpage of our website is visited by the data subject.

If the data subject is logged into Xing at the same time, Xing recognizes which specific subpage the data subject visits with each visit to our website and throughout the entire duration of their stay on our website. This information is collected through the Xing component and associated with the respective Xing account of the data subject. If the data subject activates a Xing button integrated into our website, such as the “Share” button, Xing assigns this information to the data subject’s personal Xing user account and stores this personal data.

Xing receives information via the Xing component whenever the data subject visits our website while logged into Xing. This occurs regardless of whether the data subject clicks on the Xing component. If the data subject does not wish such information to be transmitted to Xing, they can prevent this by logging out of their Xing account before visiting our website.

The privacy policy published by Xing, available at https://www.xing.com/privacy, provides information on the collection, processing, and use of personal data by Xing. Furthermore, Xing has published privacy information for the XING Share button at https://www.xing.com/app/share?op=data_protection.

31. Data Protection Provisions on the Use of YouTube

The controller has integrated components of YouTube on this website. YouTube is an online video portal that allows video publishers to upload video clips for free and enables other users to watch, rate, and comment on them at no cost. YouTube permits the publication of all types of videos, including entire movies, TV shows, music videos, trailers, and user-generated content.

The operating company of YouTube is Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland.

Each time an individual page of this website operated by the controller is accessed, and on which a YouTube component (YouTube video) is integrated, the internet browser on the data subject’s IT system is automatically prompted by the respective YouTube component to download a representation of the corresponding YouTube component from YouTube. More information about YouTube can be found at https://www.youtube.com/yt/about/en/. Through this technical process, YouTube and Google gain knowledge of which specific subpage of our website is visited by the data subject.

If the data subject is logged into YouTube at the same time, YouTube recognizes which specific subpage the data subject visits when accessing a subpage containing a YouTube video. This information is collected by YouTube and Google and assigned to the respective YouTube account of the data subject.

YouTube and Google receive information via the YouTube component whenever the data subject visits our website while logged into YouTube. This occurs regardless of whether the data subject clicks on a YouTube video. If the data subject does not wish for such information to be transmitted to YouTube and Google, they can prevent this by logging out of their YouTube account before visiting our website.

The privacy policy published by YouTube, available at https://www.google.de/intl/en/policies/privacy/, provides information on the collection, processing, and use of personal data by YouTube and Google.

32. Data Protection Provisions on the Use of DoubleClick

The controller has integrated components of DoubleClick by Google on this website. DoubleClick is a Google brand that primarily markets specialized online marketing solutions to advertising agencies and publishers.

The operating company of Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland.

DoubleClick by Google transmits data to the DoubleClick server with every impression, click, or other activity. Each data transfer triggers a cookie request to the browser of the data subject. If the browser accepts this request, DoubleClick sets a cookie on the data subject’s IT system. The concept of cookies has been previously explained. The purpose of this cookie is to optimize and display advertisements. The cookie is used to show relevant advertisements to users, generate advertising campaign reports, or improve such reports. Additionally, the cookie prevents repeated advertisements of the same content.

DoubleClick uses a cookie ID required for processing technical procedures. The cookie ID is necessary to display an advertisement in a browser. DoubleClick can also track which ads have already been displayed in a browser to prevent duplicate ads. Furthermore, DoubleClick can track conversions using the cookie ID. Conversions occur, for example, when a user is shown a DoubleClick advertisement and subsequently completes a purchase on the advertiser’s website using the same internet browser.

A DoubleClick cookie does not contain personal data. However, a DoubleClick cookie may include additional campaign identifiers. A campaign identifier helps identify the campaigns a user has interacted with.

Each time an individual page of this website operated by the controller is accessed, and on which a DoubleClick component is integrated, the internet browser on the data subject’s IT system is automatically prompted by the respective DoubleClick component to transmit data to Google for online advertising and commission accounting. Through this technical process, Google gains knowledge of data used to generate commission statements. Google can, among other things, track that the data subject clicked on certain links on our website.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent Google from setting a cookie on the data subject’s IT system. Additionally, cookies already set by Google can be deleted at any time using an internet browser or other software programs.

Further information and DoubleClick by Google’s applicable data protection provisions can be found at https://www.google.com/intl/en/policies/.

33. Data Protection Provisions on the Use of Awin

The controller has integrated components of Awin on this website. Awin is a German affiliate network that offers affiliate marketing services. Affiliate marketing is an internet-based sales model that allows commercial website operators, known as merchants or advertisers, to display advertisements on third-party websites, referred to as affiliates or publishers. These advertisements are typically compensated through click-based or sale-based commissions. The merchant provides advertising materials, such as banners or other online advertising tools, through the affiliate network, which the affiliate subsequently integrates into their website or promotes via other channels such as keyword advertising or email marketing.

The operating company of Awin is Awin AG, Eichhornstraße 3, 10785 Berlin, Germany.

Awin places a cookie on the data subject’s IT system. The concept of cookies has been previously explained. The Awin tracking cookie does not store any personal data. It only stores the identification number of the affiliate (i.e., the referring partner) as well as the order number of the visitor and the clicked advertisement. The purpose of storing this data is to process commission payments between a merchant and the affiliate, which are handled through the Awin network.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent Awin from setting a cookie on the data subject’s IT system. Additionally, cookies already set by Awin can be deleted at any time using an internet browser or other software programs.

The applicable data protection provisions of Awin can be accessed at http://www.Awin.com/de/ueber-Awin/datenschutz/.

34. Data Protection Provisions on the Use of Adcell

The controller has integrated components of Adcell on this website. Adcell is a German affiliate network that offers affiliate marketing services. Affiliate marketing is an internet-based business model that enables commercial website operators, known as merchants or advertisers, to display advertisements on third-party websites, referred to as affiliates or publishers. These advertisements are typically compensated through click-based or sale-based commissions. The merchant provides advertising materials, such as banners or other online advertising tools, through the affiliate network, which the affiliate subsequently integrates into their website or promotes via other channels such as keyword advertising or email marketing.

The operating company of Adcell is Firstlead GmbH, Rosenfelder St. 15-16, 10315 Berlin, Germany.

Adcell places a cookie on the data subject’s IT system. The concept of cookies has been previously explained. The Adcell tracking cookie does not store any personal data. It only stores the identification number of the affiliate (i.e., the referring partner) as well as the order number of the visitor and the clicked advertisement. The purpose of storing this data is to process commission payments between a merchant and the affiliate, which are handled through the Adcell network.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent Adcell from setting a cookie on the data subject’s IT system. Additionally, cookies already set by Adcell can be deleted at any time using an internet browser or other software programs.

The applicable data protection provisions of Adcell can be accessed at https://www.adcell.de/agb.

35. Data Protection Provisions on the Use of Belboon

The controller has integrated components of Belboon on this website. Belboon is a German affiliate network that offers affiliate marketing services. Affiliate marketing is an internet-based business model that enables commercial website operators, known as merchants or advertisers, to display advertisements on third-party websites, referred to as affiliates or publishers. These advertisements are typically compensated through click-based or sale-based commissions. The merchant provides advertising materials, such as banners or other online advertising tools, through the affiliate network, which the affiliate subsequently integrates into their website or promotes via other channels such as keyword advertising or email marketing.

The operating company of Belboon is belboon GmbH, Weinmeisterstr. 12-14, 10178 Berlin, Germany.

Belboon places a cookie on the data subject’s IT system. The concept of cookies has been previously explained. The Belboon tracking cookie does not store any personal data. It only stores the identification number of the affiliate (i.e., the referring partner) as well as the order number of the visitor and the clicked advertisement. The purpose of storing this data is to process commission payments between a merchant and the affiliate, which are handled through the Belboon network.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent Belboon from setting a cookie on the data subject’s IT system. Additionally, cookies already set by Belboon can be deleted at any time using an internet browser or other software programs.

The applicable data protection provisions of Belboon can be accessed at https://www.belboon.com/de/ueber-uns/datenschutz/.

36. Data Protection Provisions on the Use of TradeTracker

The controller has integrated components of TradeTracker on this website. TradeTracker is an affiliate network that offers affiliate marketing services. Affiliate marketing is an internet-based business model that enables commercial website operators, known as merchants or advertisers, to display advertisements on third-party websites, referred to as affiliates or publishers. These advertisements are typically compensated through click-based or sale-based commissions. The merchant provides advertising materials, such as banners or other online advertising tools, through the affiliate network, which the affiliate subsequently integrates into their website or promotes via other channels such as keyword advertising or email marketing.

The operating company of TradeTracker is TradeTracker Deutschland GmbH, Eiffestraße 426, 20537 Hamburg, Germany.

TradeTracker places a cookie on the data subject’s IT system. The concept of cookies has been previously explained. The TradeTracker tracking cookie does not store any personal data. It only stores the identification number of the affiliate (i.e., the referring partner) as well as the order number of the visitor and the clicked advertisement. The purpose of storing this data is to process commission payments between a merchant and the affiliate, which are handled through the TradeTracker network.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent TradeTracker from setting a cookie on the data subject’s IT system. Additionally, cookies already set by TradeTracker can be deleted at any time using an internet browser or other software programs.

The applicable data protection provisions of TradeTracker can be accessed at https://tradetracker.com/de/privacy-policy/.

37. Data Protection Provisions on the Use of adgoal

The controller has integrated components of adgoal on this website. Adgoal is a German affiliate network that offers affiliate marketing services. Affiliate marketing is an internet-based business model that enables commercial website operators, known as merchants or advertisers, to display advertisements on third-party websites, referred to as affiliates or publishers. These advertisements are typically compensated through click-based or sale-based commissions. The merchant provides advertising materials, such as banners or other online advertising tools, through the affiliate network, which the affiliate subsequently integrates into their website or promotes via other channels such as keyword advertising or email marketing.

The operating company of adgoal is adgoal GmbH, Schellengasse 2, 74072 Heilbronn, Germany.

Adgoal places a cookie on the data subject’s IT system. The concept of cookies has been previously explained. The adgoal tracking cookie does not store any personal data. It only stores the identification number of the affiliate (i.e., the referring partner) as well as the order number of the visitor and the clicked advertisement. The purpose of storing this data is to process commission payments between a merchant and the affiliate, which are handled through the adgoal network.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent adgoal from setting a cookie on the data subject’s IT system. Additionally, cookies already set by adgoal can be deleted at any time using an internet browser or other software programs.

The applicable data protection provisions of adgoal can be accessed at https://www.adgoal.de/de/privacy.html.

38. Data Protection Provisions on the Use of YieldKit

The controller has integrated components of YieldKit on this website. YieldKit is a German affiliate network that offers affiliate marketing services. Affiliate marketing is an internet-based business model that enables commercial website operators, known as merchants or advertisers, to display advertisements on third-party websites, referred to as affiliates or publishers. These advertisements are typically compensated through click-based or sale-based commissions. The merchant provides advertising materials, such as banners or other online advertising tools, through the affiliate network, which the affiliate subsequently integrates into their website or promotes via other channels such as keyword advertising or email marketing.

The operating company of YieldKit is YieldKit GmbH, Jarrestraße 44b, 22303 Hamburg, Germany.

YieldKit places a cookie on the data subject’s IT system. The concept of cookies has been previously explained. The YieldKit tracking cookie does not store any personal data. It only stores the identification number of the affiliate (i.e., the referring partner) as well as the order number of the visitor and the clicked advertisement. The purpose of storing this data is to process commission payments between a merchant and the affiliate, which are handled through the YieldKit network.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent YieldKit from setting a cookie on the data subject’s IT system. Additionally, cookies already set by YieldKit can be deleted at any time using an internet browser or other software programs.

The applicable data protection provisions of YieldKit can be accessed at http://yieldkit.com/legal-notes/privacy-policy/.

39. Data Protection Provisions on the Use of Tradedoubler

The controller has integrated components of Tradedoubler on this website. Tradedoubler is a German affiliate network that offers affiliate marketing services. Affiliate marketing is an internet-based business model that enables commercial website operators, known as merchants or advertisers, to display advertisements on third-party websites, referred to as affiliates or publishers. These advertisements are typically compensated through click-based or sale-based commissions. The merchant provides advertising materials, such as banners or other online advertising tools, through the affiliate network, which the affiliate subsequently integrates into their website or promotes via other channels such as keyword advertising or email marketing.

The operating company of Tradedoubler is Tradedoubler GmbH, Herzog-Wilhelm-Straße 26, 80331 München, Germany.

Tradedoubler places a cookie on the data subject’s IT system. The concept of cookies has been previously explained. The Tradedoubler tracking cookie does not store any personal data. It only stores the identification number of the affiliate (i.e., the referring partner) as well as the order number of the visitor and the clicked advertisement. The purpose of storing this data is to process commission payments between a merchant and the affiliate, which are handled through the Tradedoubler network.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent Tradedoubler from setting a cookie on the data subject’s IT system. Additionally, cookies already set by Tradedoubler can be deleted at any time using an internet browser or other software programs.

The applicable data protection provisions of Tradedoubler can be accessed at http://www.tradedoubler.com/de/datenschutzrichtlinie/.

40. Data Protection Provisions on the Use of Oracle Eloqua / Oracle Marketing Cloud

The controller has integrated components of Oracle Eloqua / Oracle Marketing Cloud (hereinafter referred to as “Eloqua”) on this website. Eloqua aligns relevant website content with data from potential customers, clients, and their profiles, allowing website operators to address potential customers and clients more effectively and precisely. The purpose of Eloqua is to increase the conversion rate of prospects into customers and, thereby, enhance the revenue of a website operator.

The operating company of Eloqua is Oracle Corporation, 10 Van de Graaff Drive, Burlington, MA 01803, USA.

Eloqua places a cookie on the data subject’s IT system. The concept of cookies has been previously explained. Eloqua, on behalf of the controller, will use the data and information collected from our website to analyze the behavior of the data subject who used our website. Furthermore, Eloqua will use the data to generate reports on user activity and provide additional services related to the use of our website.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent Oracle from setting a cookie on the data subject’s IT system. Additionally, cookies already set by Oracle can be deleted at any time using an internet browser or other software programs.

Furthermore, the data subject has the option to object to the collection of data generated by the Eloqua cookie related to the use of this website and to prevent such processing by Oracle. To do so, the data subject must click on the “Click-Here” button at https://www.oracle.com/marketingcloud/opt-status.html, which will set an opt-out cookie. The opt-out cookie will be placed on the data subject’s IT system. If the cookies on the data subject’s system are deleted after opting out, they must revisit the link and set a new opt-out cookie.

However, by setting the opt-out cookie, there is a possibility that the controller’s website may no longer be fully functional for the data subject.

The applicable data protection provisions of Oracle can be accessed at https://www.oracle.com/legal/privacy/index.html.

41. Data Protection Provisions on the Use of Amobee

The controller has integrated components of Amobee on this website. Amobee is a technological advertising agency specializing in delivering advertisements to mobile devices.

The operating company of Amobee is Amobee Inc., 950 Tower Lane, Suite 2000, Foster City, CA 94404, USA.

The purpose of Amobee is to deliver advertising. Amobee places a cookie on the data subject’s IT system. The concept of cookies has been previously explained. Each time a data subject accesses an individual page of this website operated by the controller and on which an Amobee component has been integrated, the browser on the data subject’s IT system is automatically triggered by the respective Amobee component to transmit data to Amobee. Through this technical process, Amobee gains knowledge of data, which is subsequently used to create usage profiles. The collected usage profiles serve advertising purposes.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent Amobee from setting a cookie on the data subject’s IT system. Additionally, cookies already set by Amobee can be deleted at any time using an internet browser or other software programs.

Furthermore, the data subject has the option to object to the collection of data generated by the Amobee cookie related to the use of this website and to prevent such processing by Amobee. To do so, the data subject must click the “Click-Here-To-Opt-Out” button at http://amobee.com/privacy/technology/, which will set an opt-out cookie. The opt-out cookie will be placed on the data subject’s IT system. If cookies on the data subject’s system are deleted after opting out, they must revisit the link and set a new opt-out cookie.

However, by setting the opt-out cookie, there is a possibility that the controller’s website may no longer be fully functional for the data subject.

The applicable data protection provisions of Amobee can be accessed at http://amobee.com/privacy/.

42. Data Protection Provisions on the Use of ADITION

The controller has integrated components of ADITION on this website. ADITION is a provider of data-driven digital marketing, offering an advertising platform tailored to advertisers and online marketing agencies.

The operating company of ADITION is ADITION technologies AG, Oststraße 55, 40211 Düsseldorf, Germany.

The purpose of ADITION is to display digital advertisements. ADITION places a cookie on the data subject’s IT system. The concept of cookies has been previously explained. ADITION does not store any personal data in the cookie. All stored information is technical in nature and enables, among other things, tracking how frequently certain advertisements are displayed.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent ADITION from setting a cookie on the data subject’s IT system. Additionally, cookies already set by ADITION can be deleted at any time using an internet browser or other software programs.

Furthermore, the data subject has the option to object to the collection of data generated by the ADITION cookie related to the use of this website and to prevent such processing by ADITION. To do so, the data subject must click a link at https://www.adition.com/kontakt/datenschutz/, which will set an opt-out cookie. The opt-out cookie will be placed on the data subject’s IT system. If cookies on the data subject’s system are deleted after opting out, they must revisit the link and set a new opt-out cookie.

However, by setting the opt-out cookie, there is a possibility that the controller’s website may no longer be fully functional for the data subject.

The applicable data protection provisions of ADITION can be accessed at https://www.adition.com/kontakt/datenschutz/.

43. Data Protection Provisions on the Use of AdJug

The controller has integrated components of AdJug on this website. AdJug is an advertising exchange platform that mediates online advertising spaces (banner ads).

The operating company of AdJug is AdJug Ltd., 5th Floor Glen House, 200-208 Tottenham Court Road, London, W1T7PL, United Kingdom.

AdJug places a cookie. Furthermore, each time a data subject accesses an individual page of this website operated by the controller and on which an AdJug component has been integrated, the browser on the data subject’s IT system is automatically triggered by the respective AdJug component to transmit data to AdJug for the purpose of displaying advertisements. Through this technical process, AdJug gains knowledge that this website has been accessed by the data subject’s IT system. The data transmitted to AdJug during this process serves billing purposes related to the displayed advertisements.

The data subject may prevent the setting of cookies by adjusting their internet browser settings, as described above, thereby permanently objecting to the setting of cookies. Such browser settings would also prevent AdJug from setting a cookie on the data subject’s IT system. Additionally, cookies already set by AdJug can be deleted at any time using an internet browser or other software programs.

Furthermore, the data subject has the option to object to the collection of data generated by the AdJug cookie related to the use of this website and to prevent such processing by AdJug. To do so, the data subject must click the “Consumer-Cookie-Opt-Out” link at http://www.de.adjug.com/datenschutz.html, which will set an opt-out cookie. The opt-out cookie will be placed on the data subject’s IT system. If cookies on the data subject’s system are deleted after opting out, they must revisit the link and set a new opt-out cookie.

However, by setting the opt-out cookie, there is a possibility that the controller’s website may no longer be fully functional for the data subject.

The applicable data protection provisions of AdJug can be accessed at http://www.de.adjug.com/datenschutz.html.

44. Payment Method: Data Protection Provisions on the Use of Klarna as a Payment Method

The controller has integrated Klarna components on this website. Klarna is an online payment service provider that enables purchase on account or flexible installment payments. Additionally, Klarna offers services such as buyer protection and identity and credit checks.

The operating company of Klarna is Klarna Bank AB, Sveavägen 46, 111 34 Stockholm, Sweden.

If the data subject selects “purchase on account” or “installment purchase” as a payment option in our online store during the ordering process, data of the data subject is automatically transmitted to Klarna. By selecting one of these payment options, the data subject consents to the necessary transmission of personal data for processing the purchase or credit assessment.

The transmitted personal data typically includes first name, last name, address, date of birth, gender, email address, IP address, phone number, and other necessary details. This also includes payment information, such as bank account details, card number, expiration date, and CVC code, along with information related to the order.

Klarna transmits the personal data to credit agencies for identity and creditworthiness checks. Klarna also shares data with affiliated companies and service providers if necessary to fulfill contractual obligations or for data processing.

The data subject can revoke their consent to data processing at any time. However, this revocation does not affect necessary data processing required for payment transactions.

The applicable data protection provisions of Klarna can be accessed at https://cdn.klarna.com/1.0/shared/content/policy/data/de_de/data_protection.pdf.

45. Payment Method: Data Protection Provisions for PayPal as a Payment Method

The data controller has integrated components of PayPal on this website. PayPal is an online payment service provider. Payments are processed via PayPal accounts, which represent virtual personal or business accounts. Additionally, PayPal allows virtual payments via credit cards for users who do not maintain a PayPal account. A PayPal account is managed via an email address, so it does not have a traditional account number. PayPal enables users to make online payments to third parties or receive payments. PayPal also acts as a trustee and offers buyer protection services.

The European operating company of PayPal is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449, Luxembourg.

If the data subject selects “PayPal” as a payment option during the ordering process in our online shop, the data of the data subject is automatically transmitted to PayPal. By selecting this payment option, the data subject agrees to the transmission of personal data required for payment processing.

The personal data transmitted to PayPal usually includes first name, last name, address, email address, IP address, phone number, mobile phone number, or other data necessary for payment processing. Additionally, personal data related to the respective order is required for contract execution.

The purpose of data transmission is payment processing and fraud prevention. The data controller will transfer personal data to PayPal particularly when there is a legitimate interest in the transmission. The personal data exchanged between PayPal and the data controller may be transmitted by PayPal to credit agencies. This transmission is intended for identity and creditworthiness checks.

PayPal may pass on personal data to affiliated companies and service providers or subcontractors to the extent necessary to fulfill contractual obligations or if the data is to be processed on behalf of PayPal.

The data subject has the option to revoke consent for PayPal to process personal data at any time. A revocation does not affect personal data that must be processed, used, or transmitted for (contractual) payment processing.

The applicable data protection regulations of PayPal can be retrieved at PayPal Privacy Policy.

46. Payment Method: Data Protection Provisions for Skrill as a Payment Method

The data controller has integrated components of Skrill on this website. Skrill is an online payment service provider. Payments are processed via the so-called Skrill Wallet, which is a virtual electronic wallet. Skrill also offers the possibility of processing virtual payments via credit cards. A Skrill Wallet is managed via an email address. Skrill allows users to make online payments to third parties or receive payments.

The operating company of Skrill is Skrill Limited, 25 Canada Square, London E14 5LQ, United Kingdom.

If the data subject selects “Skrill” as a payment option during the ordering process in our online shop, the data of the data subject is automatically transmitted to Skrill. By selecting this payment option, the data subject agrees to the transmission of personal data required for payment processing.

The personal data exchanged with Skrill includes the purchase amount and the email address required for payment processing. The purpose of data transmission is payment processing and fraud prevention. The data controller may also transmit additional personal data to Skrill if there is a legitimate interest in the transmission. The personal data exchanged between Skrill and the data controller may be transmitted by Skrill to credit agencies. This transmission serves the purpose of identity and creditworthiness checks.

Skrill may pass on personal data to affiliated companies and service providers or subcontractors to the extent necessary to fulfill contractual obligations or if the data is to be processed on behalf of Skrill.

The data subject has the option to revoke consent for Skrill to process personal data at any time. A revocation does not affect personal data that must be processed, used, or transmitted for (contractual) payment processing.

The applicable data protection regulations of Skrill can be retrieved at Skrill Privacy Policy.

47. Payment Method: Data Protection Provisions for Sofortüberweisung as a Payment Method

The data controller has integrated components of Sofortüberweisung on this website. Sofortüberweisung is a payment service that enables cashless payment for products and services over the internet. Sofortüberweisung provides a technical process through which the online retailer receives an immediate payment confirmation, allowing the retailer to ship goods, services, or digital downloads directly after the order.

The operating company of Sofortüberweisung is Klarna Bank AB, Sveavägen 46, 111 34 Stockholm, Sweden.

If the data subject selects “Sofortüberweisung” as a payment option during the ordering process in our online shop, the data of the data subject is automatically transmitted to Sofortüberweisung. By selecting this payment option, the data subject agrees to the transmission of personal data required for payment processing.

When processing payments via Sofortüberweisung, the buyer submits their PIN and TAN to Sofort GmbH. Sofortüberweisung then automatically checks the account balance and retrieves additional data to verify account coverage before executing the transfer to the online retailer. The execution of the financial transaction is then automatically communicated to the online retailer.

The personal data exchanged with Sofortüberweisung includes first name, last name, address, email address, IP address, phone number, mobile phone number, or other data necessary for payment processing. The purpose of data transmission is payment processing and fraud prevention. The data controller may also transmit additional personal data to Sofortüberweisung if there is a legitimate interest in the transmission. The personal data exchanged between Sofortüberweisung and the data controller may be transmitted by Sofortüberweisung to credit agencies. This transmission serves the purpose of identity and creditworthiness checks.

Sofortüberweisung may pass on personal data to affiliated companies and service providers or subcontractors to the extent necessary to fulfill contractual obligations or if the data is to be processed on behalf of Sofortüberweisung.

The data subject has the option to revoke consent for Sofortüberweisung to process personal data at any time. A revocation does not affect personal data that must be processed, used, or transmitted for (contractual) payment processing.

The applicable data protection regulations of Sofortüberweisung can be retrieved at Sofortüberweisung Privacy Policy.

48. Legal Basis for Processing

Article 6(1)(a) GDPR serves as the legal basis for processing operations in which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, such as processing operations required for the delivery of goods or the provision of other services or consideration, the processing is based on Article 6(1)(b) GDPR. The same applies to processing operations necessary for carrying out pre-contractual measures, such as inquiries about our products or services. If our company is subject to a legal obligation that requires the processing of personal data, such as fulfilling tax obligations, processing is based on Article 6(1)(c) GDPR. In rare cases, processing of personal data may be necessary to protect vital interests of the data subject or another natural person. For example, this would be the case if a visitor were injured in our company and their name, age, health insurance details, or other vital information had to be passed on to a doctor, hospital, or another third party. In that case, processing would be based on Article 6(1)(d) GDPR.

Ultimately, processing operations could be based on Article 6(1)(f) GDPR. This legal basis is used for processing operations that are not covered by any of the aforementioned legal grounds if the processing is necessary for the purposes of legitimate interests pursued by our company or a third party, provided the interests, fundamental rights, and freedoms of the data subject do not override them.

49. Legitimate Interests Pursued by the Controller or a Third Party

If the processing of personal data is based on Article 6(1)(f) GDPR, our legitimate interest is the conduct of our business operations for the well-being of all our employees and shareholders.

50. Analytics and Advertising

50.1 Google Analytics
This website uses Google Analytics, a web analytics service. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses “cookies.” These are text files that are stored on your computer and enable analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

Google Analytics cookies are stored based on Art. 6, para. 1 f GDPR. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and advertising.

50.2 IP Anonymization
We have activated the IP anonymization feature on this website. As a result, Google will shorten your IP address within member states of the European Union or other contracting states to the Agreement on the European Economic Area before transmission to the USA. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there. Google will use this information on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity, and to provide the website operator with other services relating to website activity and internet usage. The IP address transmitted by your browser within the scope of Google Analytics will not be merged with other Google data.

50.3 Browser Plugin
You can prevent the storage of cookies by adjusting your browser software settings accordingly; however, we would like to point out that in this case, you may not be able to use all functions of this site in full. You can also prevent the data generated by the cookie and related to your use of the website (including your IP address) from being collected by Google and processed by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

50.4 Objection to Data Collection
You can prevent the collection of your data by Google Analytics by clicking the following link. An opt-out cookie will be set to prevent your data from being collected on future visits to this website: Deactivate Google Analytics.

For more information on how Google Analytics handles user data, see Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=en.

50.5 Data Processing Agreement
We have entered into a data processing agreement with Google and fully comply with the strict requirements of German data protection authorities when using Google Analytics.

50.6 Demographics in Google Analytics
This website uses the Google Analytics “Demographics” feature. This allows reports to be generated containing information about the age, gender, and interests of site visitors. These data come from interest-based advertising by Google and from visitor data from third parties. This data cannot be assigned to a specific person. You can deactivate this feature at any time in the ad settings in your Google account or generally prohibit the collection of your data by Google Analytics as described in the “Objection to Data Collection” section.

50.7 Google Analytics Remarketing
Our websites use Google Analytics remarketing features combined with Google AdWords and Google DoubleClick multi-device functions. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

This feature makes it possible to link the target audience for advertising created with Google Analytics Remarketing to the multi-device features of Google AdWords and Google DoubleClick. This allows interest-based, personalized advertising messages that have been customized to you on one device (e.g., mobile phone) based on your past usage and browsing behavior to appear on another of your devices (e.g., tablet or PC).

If you have given your consent, Google will link your web and app browsing history to your Google Account for this purpose. This way, the same personalized advertising messages can be displayed on every device you sign into with your Google Account.

To support this feature, Google Analytics collects Google-authenticated user IDs that are temporarily linked to our Google Analytics data to define and create audiences for cross-device advertising.

You can permanently opt-out of cross-device remarketing/targeting by disabling personalized ads in your Google Account; to do this, follow this link: https://www.google.com/settings/ads/onweb/.

The summary of data collected in your Google account is based solely on your consent, which you can provide or revoke in Google (Art. 6, para. 1, letter a GDPR). For data collection processes not merged into your Google account (e.g., because you do not have a Google account or have objected to the merger), data collection is based on Art. 6, para. 1 f GDPR. The legitimate interest arises from the website operator’s interest in the anonymous analysis of website visitors for advertising purposes.

For more information and the data protection policy, please refer to Google’s privacy policy: https://www.google.com/policies/technologies/ads/.

50.8 Google AdWords and Google Conversion Tracking
This website uses Google AdWords. AdWords is an online advertising program by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).

In connection with Google AdWords, we use conversion tracking. When you click on an ad placed by Google, a cookie for conversion tracking is set. These cookies expire after 30 days and are not used for personal identification. If the user visits certain pages on this website and the cookie has not yet expired, Google and we can recognize that the user clicked on the ad and was redirected to this page.

Each Google AdWords customer receives a different cookie. Cookies cannot be tracked across the websites of AdWords customers. The information collected by the conversion cookie is used to compile conversion statistics for AdWords customers who have opted for conversion tracking. Customers are informed of the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information that could identify individual users. If you do not wish to participate in tracking, you can easily disable Google Conversion Tracking cookies via your internet browser in your user settings. You will then not be included in conversion tracking statistics.

The storage of “conversion cookies” is based on Art. 6, para. 1 f GDPR. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and advertising.

For more information on Google AdWords and Google Conversion Tracking, please see Google’s privacy policy: https://www.google.de/policies/privacy/.

You can set your browser to inform you about the use of cookies, allow cookies only on a case-by-case basis, exclude the acceptance of cookies for specific cases or in general, and enable the automatic deletion of cookies when the browser is closed. If cookies are disabled, the functionality of this website may be limited.

50.9 Hotjar
This site uses features of the web analytics service Hotjar. The provider is Hotjar Ltd., 3 Lyons Range, 20 Bisazza Street, Sliema SLM 1640, Malta, Europe.

Hotjar helps us understand the needs of our users and to optimize the service on this website. Using Hotjar technology, we better understand our users’ experiences (e.g., how much time they spend on which pages, which links they click, what they like and dislike, etc.), and this helps us to align our service with our users’ feedback. Hotjar uses cookies and other technologies to collect information about our users’ behavior and their devices (in particular, the device’s IP address (recorded and stored only in anonymous form), screen size, device type (unique device identifiers), information about the browser used, location (country only), and preferred language to display our website). Hotjar stores this information in a pseudonymized user profile. Neither Hotjar nor we will use this information to identify individual users or merge it with other data about individual users. For more details, see Hotjar’s privacy policy.

You can opt out of creating a user profile, Hotjar storing data about your visit to our website, and Hotjar tracking cookies on other websites by clicking this opt-out link.

60. Plugins and Tools

60.1 YouTube
Our website uses plugins from YouTube, which is operated by Google. The website is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.

When you visit one of our pages equipped with a YouTube plugin, a connection to YouTube’s servers is established. The YouTube server is informed about which of our pages you have visited.

If you are logged into your YouTube account, you allow YouTube to directly associate your browsing behavior with your personal profile. You can prevent this by logging out of your YouTube account.

Using YouTube is in the interest of an attractive presentation of our online offerings. This constitutes a legitimate interest under Art. 6, para. 1 f GDPR.

Further information on handling user data can be found in YouTube’s privacy policy: https://www.google.de/intl/en/policies/privacy.

60.2 Google Web Fonts
For uniform representation of fonts, this page uses web fonts provided by Google. When you load a page, your browser loads the required web fonts into its browser cache to display texts and fonts correctly.

To do this, the browser you are using connects to Google’s servers, which informs Google that our website was accessed via your IP address. The use of Google Web Fonts is in the interest of a consistent and attractive presentation of our online offerings. This constitutes a legitimate interest under Art. 6, para. 1 f GDPR.

If your browser does not support web fonts, your computer will use a default font.

For more information on Google Web Fonts, see https://developers.google.com/fonts/faq and Google’s privacy policy: https://www.google.com/policies/privacy.

This website is protected by hCaptcha, and hCaptcha’s Privacy Policy and Terms of Service apply.