Data protection - Christian Schu

PRIVACY POLICY

Everyone should have the possibility to reach their desired services and information easily and simply on the Internet. We are particularly concerned to inform you directly and to make our offers and services easily and clearly accessible to you.
As an end consumer and entrepreneur, you have the inalienable right to have your data handled in accordance with the law and with care. These rights and obligations are usually reduced to the word data protection. However, this term does not go far enough. For this is about the protection of people. Therefore, there is a need for information and education about your data and how we handle it.
In the following, we would like to inform you about the precautions we have taken to protect your data transmitted to us. We would also like to inform you about the data we collect, how we store this data and how we process it.

Note: All offers of the White Eyebrow Group OÜ are addressed to entrepreneurs.

Who are we?
White Eyebrow Group OÜ
Sepapaja 6
15551 Tallinn
Estonia
[email protected]

Who is responsible for data protection at our company?
With us, everyone is responsible for the topic of data protection.

The legal basis for this is Article 6(1) sentence 1 lit. f DSGVO, according to which the processing of personal data is also possible without the consent of the data subject if the processing is necessary for the protection of the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data override these, in particular if the data subject is a child. The aforementioned purposes are in our interest. Insofar as we use cookies, we refer to our explanations under "How and to what extent do we use cookies on our website?".

Note on the responsible body
The data controller for this website is:
White Eyebrow Group OÜ
Sepapaja 6
15551 Tallinn
Estonia
[email protected]

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).

Informational use of our website
Data categories
Within the scope of the informational use of our website, we process the following data: IP address, date and time of the request, time zone difference to Greenwich Mean Time (GMT), content of the request (specific page), access status/HTTP status code, amount of data transferred in each case, website from which the request came, browser, operating system and its interface, language and version of the browser software.
If you come to us via a link that you have received from one of our referral sources from our partner programme (affiliate), we process the affiliate ID (cookie).
Sources
We receive this data directly from your browser and possibly via cookies.
Purposes
The collection of this data makes it possible to visit our website and, where applicable, to fulfil our obligations in the partner programme as well as to address you in advertising.
Storage time
We delete the data as soon as it is no longer required for visiting our site or until you request its deletion, whichever is sooner.
Legal basis
Article 6 paragraph 1 lit. f DSGVO

Registration to use the internal area
Data categories
In the course of registering for and using the internal area of our website, the following data is processed for your contractual partner Digistore24 GmbH and/or White Eyebrow Group OÜ:
Mandatory fields ➔ First name, last name, e-mail, street, house number, postcode, city, country, telephone number, payment data
voluntary fields ➔ Phone number, voucher code
After registration, their complete actions are documented as instructions in the internal area.
Sources
Your entries in the registration area
Purposes
Initiation and implementation of the contractual relationship
Storage time
The data will be deleted as soon as Digistore24 and/or White Eyebrow Group OÜ so orders.
Legal basis
Article 6 paragraph 1 lit. b DSGVO
Note: Commissioned processing with DigiStore in accordance with Article 28 DSGVO

Newsletter subscription
Data categories
Within the scope of newsletter registration and newsletter delivery, we process the following data: E-mail address, IP address at registration, date and time of registration, IP address at confirmation, date and time of confirmation, bounce status, referrer (URL of registration), IP address at unsubscription, date and time of unsubscription, first name and surname, SMS: mobile phone number, date and time of registration, date and time of unsubscription, SMS status, cf. additionally our explanations under "What happens to your data with our newsletter?".
Sources
We receive this data directly from you
Purposes
advertising, market research or for the needs-based design of our website.
Storage time
We delete the data as soon as it is no longer required for the purpose stated on the left or until you request its deletion, whichever is sooner.
Legal basis
Article 6(1) lit. a DSGVO (you can revoke your consent at any time with effect for the future).

Webinar registration
Data categories
In the course of webinar registration and webinar delivery, we process the following data: Email address and if you come to us via a link that you have received from one of our referral sources from our partner programme (affiliate) ➔ Affiliate ID (cookie).
During delivery, we will tag your attendance and, if you are absent, inform you of the possibility to still join the webinar.
Please also read our explanation under "How and to what extent do we use your data during our webinar?". You will find this on the respective webinar registration page.
Sources
Your details in the contact field
Purposes
Contacting you, possibly initiating a contractual relationship
Storage time
We delete the data after expiry of the statutory retention period
Legal basis
Article 6 paragraph 1 lit. a GDPR

Conclusion of an information contract
Data categories
If you enter into an information contract with us under which we are obliged to provide you with regular training content and similar information, we process the following data: Email address, IP address at registration, date and time of registration, IP address at confirmation, date and time of confirmation, bounce status, referrer (URL of registration), IP address at unsubscription, date and time of unsubscription, first and last name, SMS: mobile phone number, date and time of registration, date and time of unsubscription, SMS status,
Please also read our supplementary explanations under "How and to what extent do we use your data in the fulfilment of the information contract?". You will find this under the newsletter registration.
Sources
Your information within the framework of the conclusion of the information contract
Purposes
Fulfilment of the information contract
Storage time
After expiry of the statutory retention obligations
Legal basis
Article 6 paragraph 1 lit. b DSGVO

Google Analytics
Data categories
Google Analytics, see our explanations under "How do we use Google Analytics? (also with regard to sources, purposes, storage period)
Sources
Your visitor behaviour on our website, cookies
Purposes
advertising, market research or for the needs-based design of our website.
Storage time
We delete the data as soon as it is no longer required for the purpose stated on the left or until you request its deletion, whichever is sooner.

Social media plug-in "Facebook
Data categories
Social media plug-in "Facebook", cf. our explanations under: "How do we use social media plug-ins?" (also with regard to sources, purposes, storage period)
Sources
Your visitor behaviour on our website, cookies
Purposes
advertising, market research or for the needs-based design of our website.
Storage time
We delete the data as far as we can and as soon as it is no longer required for the purpose stated on the left or until you request its deletion, whichever is sooner.

Social media plug-in "XING
Data categories
Social media plug-in "XING", cf. our explanations under: "How do we use social media plug-ins?" (also with regard to sources, purposes, storage period)
Sources
Your visitor behaviour on our website, cookies
Purposes
advertising, market research or for the needs-based design of our website.
Storage time
We delete the data as soon as it is no longer required for the purpose stated on the left or until you request its deletion, whichever is sooner.

Social media plug-in "LinkedIn
Data categories
Social media plug-in "LinkedIn", cf. our explanations under: "How do we use social media plug-ins?" (also with regard to sources, purposes, storage period)
Sources
Your visitor behaviour on our website, cookies
Purposes
advertising, market research or for the needs-based design of our website.
Storage time
We delete the data as soon as it is no longer required for the purpose stated on the left or until you request its deletion, whichever is sooner.

YouTube
Data categories
YouTube, cf. our comments under: "How do we use YouTube?" (also with regard to sources, purposes, storage period)
Sources
Your visitor behaviour on our website, cookies
Purposes
advertising, market research or for the needs-based design of our website.
Storage time
We will delete the data as soon as it is no longer required for the above purpose or until you request its deletion, whichever is sooner.

Google Adwords Conversion
Data categories
Google Adwords Conversion, cf. our explanations under "How we use Google Adwords Conversion" (also with regard to sources, purposes, storage period)
Sources
Your visitor behaviour on our website, cookies
Purposes
advertising, market research or for the needs-based design of our website.
Storage time
We delete the data as soon as it is no longer required for the purpose stated on the left or until you request its deletion, whichever is sooner.

Google Remarketing
Data categories
Google Remarketing, see our explanations under "How do we use Google Remarketing? (also with a view to sources, purposes, storage period)
Sources
Your visitor behaviour on our website, cookies
Purposes
advertising, market research or for the needs-based design of our website.
Storage time
We delete the data as soon as it is no longer required for the purpose stated on the left or until you request its deletion, whichever is sooner.

DoubleClick by Google
Data categories
DoubleClick by Google, see our explanations under "How do we use DoubleClick by Google? (also with a view to sources, purposes, storage period)
Sources
Your visitor behaviour on our website, cookies
Purposes
advertising, market research or for the needs-based design of our website.
Storage time
We delete the data as soon as it is no longer required for the purpose stated on the left or until you request its deletion, whichever is sooner.

Facebook Custom Audiences
Data categories
Facebook Custom Audiences, see our explanations under "How do we use Facebook Custom Audiences? (also with a view to sources, purposes, storage period)
Sources
Your visitor behaviour on our website, cookies
Purposes
advertising, market research or for the needs-based design of our website.
Storage time
We delete the data as soon as it is no longer required for the purpose stated on the left or until you request its deletion, whichever is sooner.
Legal basis
Article 6 paragraph 1 lit. a/b DSGVO

What happens in the case of purely informational use of the website?
If you use our website purely for information purposes, i.e. if you do not register as a user or otherwise transmit information, we collect the following data from you: IP address, date and time of the request, time zone difference to Greenwich Mean Time (GMT), content of the request (specific page), access status/HTTP status code, amount of data transmitted in each case, website from which the request comes, browser, operating system and its interface, language and version of the browser software. If you come to us via a link that you have received from one of our recommenders from our partner programme (affiliate), we process the affiliate ID (cookie). We receive this data via cookies and directly from your browser. The purpose of this processing is the provision of our website as well as statistical evaluation. The legal basis for this is Article 6(1) sentence 1 lit. f DSGVO, according to which the processing of personal data is also possible without the consent of the data subject if the processing is necessary for the protection of the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data override these interests or freedoms, in particular if the data subject is a child. The aforementioned purposes are in our interest. Insofar as we use cookies, we refer to our explanations under "How and to what extent do we use cookies on our website?".

How do we use cookies on this website?
The internet pages partly use so-called cookies. Most of the cookies we use are so-called "session cookies". They are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognise your browser on your next visit.

Furthermore, cookies are stored on your computer when you use the website. Cookies are small text files that are stored on your hard drive in relation to the browser you are using and which provide the party setting the cookie (in this case, us) with certain information. Cookies cannot execute programs or transmit viruses to your computer. They are used to make the website as a whole more user-friendly and effective. The cookies are deleted at the latest when the following period expires: 365 days.

What happens when I use our contact box?
When you communicate with us via our contact field, we collect the following data: First name, last name, e-mail address, website, mobile phone number, telephone number, subject, message. Only you know the reasons for contacting us; the reaction to this immediately describes the purpose of the processing. Insofar as it concerns a concrete contractual relationship, be it in connection with the initiation, implementation or termination, the legal basis for the processing is Article 6 (1) lit. b DSGVO. In this case, we store the data until the end of the statutory retention period. In all other cases, the legal basis is Article 6(1) sentence 1 lit. f DSGVO, according to which the processing of personal data is possible even without the consent of the data subject if the processing is necessary to protect the legitimate interests of the controller or a third party, unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular if the data subject is a child. Communication outside of a debt relationship is in our mutual interest. We store your data until the purpose deriving from the legitimate interest is fulfilled.

What happens when registering for and using the internal area?
In the course of registering for and using the internal area of our website, the following data is processed for your contractual partner Digistore24 GmbH: Mandatory fields: First name, last name, e-mail, street, house number, postcode, city, country, telephone number, payment data, voluntary fields: Telephone number, voucher code, After registration, your complete actions are documented in the internal area as instructions. Within the internal area, we register your actions insofar as this is necessary for the provision of the debt relationship hereby pursued. The legal basis is Article 6 paragraph 1 lit. b DSGVO. We store the data until the end of the statutory retention period.

What happens when processing customer and contract data?
We collect, process and use personal data only insofar as they are necessary for the establishment, content or amendment of the legal relationship (inventory data). This is done on the basis of Art. 6 para. 1 lit. b DSGVO, which permits the processing of data for the fulfilment of a contract or pre-contractual measures. We collect, process and use personal data about the use of our internet pages (usage data) only insofar as this is necessary to enable the user to use the service or to bill the user.
The collected customer data will be deleted after completion of the order or termination of the business relationship. Statutory retention periods remain unaffected.

What happens with your data in our newsletter?
With your consent, you can subscribe to our newsletter, with which we inform you about our current interesting offers. The advertised goods and services are named in the declaration of consent. The legal basis is then your consent in accordance with Article 6 paragraph 1 sentence 1 lit. a DSGVO. We store the data until you revoke your consent.
We use the so-called double-opt-in procedure to register for our newsletter. This means that after your registration, we will send you an email to the email address you provided in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 48 hours, your information will be blocked and automatically deleted after one month. In addition, we store your IP addresses and the times of registration and confirmation. The purpose of this procedure is to be able to prove your registration and, if necessary, to clarify a possible misuse of your personal data.
In the context of newsletter registration and newsletter delivery, we process the following data: Email address, IP address at subscription, date and time of subscription, IP address at confirmation, date and time of confirmation, bounce status, referrer (URL of subscription), IP address at unsubscription, date and time of unsubscription, first and last name, SMS: mobile phone number, subscription date and time, unsubscription date and time, SMS status.
You can revoke your consent to receive the newsletter and unsubscribe at any time. You can declare the revocation by clicking on the link provided in every newsletter email, by email to [email protected] or by sending a message to the contact details given in the imprint.
We would like to point out that we evaluate your user behaviour when sending the newsletter. For this evaluation, the emails sent contain so-called web beacons or tracking pixels, which are single-pixel image files that are stored on our website. For the evaluations, we link the data mentioned in paragraph 3 and the web beacons with your e-mail address and an individual ID. Links received in the newsletter also contain this ID. With the data obtained in this way, we create a user profile in order to tailor the newsletter to your individual interests. In doing so, we record when you read our newsletters, which links you click on in them and deduce your personal interests from this. We link this data to actions you have taken on our website. You can object to this tracking at any time by clicking on the separate link provided in each email or by informing us via another contact channel. The information is stored for as long as you are subscribed to the newsletter. After unsubscribing, we store the data purely statistically and anonymously. Moreover, such tracking is not possible if you have deactivated the display of images by default in your e-mail programme. In this case, the newsletter will not be displayed to you in full and you may not be able to use all the functions. If you display the images manually, the above-mentioned tracking takes place.

How do we use Klick-Tipp?
We use Klick-Tipp. The provider of Klick-Tipp is KLICK-TIPP LIMITED, 15 Cambridge Court, 210 Shepherd's Bush Road, London W6 7NJ, United Kingdom (hereinafter: Klick-Tipp). For more information about Klick-Tipp's privacy practices, please visit https://www.klick-tipp.com/datenschutzerklärung. You can find out more about the possible uses of your data and the way in which it is processed at https://www.klick-tipp.com/handbuch.
Our contractual partner, Digistore24 GmbH, St.-Godehard-Straße 32, 31139 Hildesheim in Germany, has enabled us in its function as a reseller to gain access to the Klick-Tipp services. In the abstract, we have commissioned Klick-Tipp in accordance with Article 28 DSGVO. First, we carefully selected Klick-Tipp. We then contracted Klick-Tipp accordingly, ensuring in particular that we retain full control over the data and that Klick-Tipp follows our instructions. Finally, we will regularly review and monitor Klick-Tipp and thus ensure that Klick-Tipp continues to comply with data protection law.
We use so-called tags in our communications with you (e.g. for processing the contract or for follow-up e-mails). You can find more information about this here: https://www.klick-tipp.com/handbuch/erste-schritte/tag-erstellen. Contractual decisions are not based on this. The tags are basically used to enable us to fulfil our pre-contractual and contractual obligations. Furthermore, they enable us to communicate with you automatically, which increases our accessibility and thus our service level. Where we use the tags to send promotional communications, this is part of the legal basis claimed for this. We also use the tags to improve promotional targeting. If you do not want any analysis by Klick-Tipp, you must therefore unsubscribe from the newsletter or webinar. For this purpose, we provide a corresponding link in every message aimed at this. You can also unsubscribe from the newsletter or webinar directly on the website by sending an email to [email protected] or using the contact details provided in the imprint.
Klick-Tipp provides interfaces for the use of other third-party service providers. Insofar as we use third-party service providers via these interfaces, we refer to the rest of the data protection declaration and the explanations there regarding the third-party service providers.

How do we use Google Analytics?
This website uses Google Analytics, a web analytics service provided by Google, Inc ("Google"). Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. In the event that IP anonymisation is activated on this website, however, your IP address will be truncated beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator.
The legal basis is Article 6(1) sentence 1 lit. f DSGVO, Article 6(1) sentence 1 lit. f DSGVO, according to which the processing of personal data is also possible without the consent of the data subject if the processing is necessary for the protection of the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject, which require the protection of personal data, override these interests, in particular if the data subject is a child. Our legitimate business interest is to evaluate user behaviour on this website. Your interests are protected by your avoidance options, which we describe later, and anonymisation. We have also concluded an order processing agreement with the provider, thus ensuring our right to issue instructions to the provider. We delete the data after 14 months at the latest.
2. the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
This website uses Google Analytics with the extension "_anonymizeIp()". This means that IP addresses are processed in abbreviated form, which means that personal references can be ruled out. If the data collected about you is related to a person, this is immediately excluded and the personal data is deleted immediately.
This website uses the "demographic characteristics" function of Google Analytics. This allows reports to be generated that include statements about the age, gender and interests of site visitors. This data comes from interest-based advertising from Google as well as visitor data from third-party providers. This data cannot be assigned to a specific person. You can deactivate this function at any time via the ad settings in your Google account or generally prohibit the collection of your data by Google Analytics as shown in the item "Objection to data collection by Google".
We use Google Analytics to analyse and regularly improve the use of our website. The statistics obtained enable us to improve our offer and make it more interesting for you as a user. For the exceptional cases in which personal data is transferred to the USA, Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
7. information from the third-party provider: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. user conditions: http://www.google.com/analytics/terms/de.html, overview of data protection: http://www.google.com/intl/de/analytics/learn/privacy.html, as well as the data protection declaration: http://www.google.de/intl/de/policies/privacy.

Objection to data collection by Google Analytics
You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set, which will prevent the collection of your data during future visits to this website:

You can find more information on how Google Analytics handles user data in Google's privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.

How do we use Google AdWords and Google Conversion Tracking?
This website uses Google AdWords. AdWords is an online advertising programme of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States ("Google").
Within the framework of Google AdWords, we use so-called conversion tracking. When you click on an ad placed by Google, a cookie is set for conversion tracking. Cookies are small text files that the internet browser stores on the user's computer. These cookies lose their validity after 30 days and are not used to personally identify the user. If the user visits certain pages of this website and the cookie has not yet expired, Google and we can recognise that the user clicked on the ad and was redirected to this page.
Each Google AdWords customer receives a different cookie. The cookies cannot be tracked via the websites of AdWords customers. The information obtained using the conversion cookie is used to create conversion statistics for AdWords customers who have opted in to conversion tracking. The customers learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users. If you do not wish to participate in the tracking, you can object to this use by easily deactivating the Google conversion tracking cookie via your internet browser under user settings. You will then not be included in the conversion tracking statistics.
The storage of "conversion cookies" is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in analysing user behaviour in order to optimise both its website and its advertising.
You can find more information about Google AdWords and Google Conversion Tracking in Google's privacy policy: https://www.google.de/policies/privacy/.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited.

How do we use Google Remarketing?
We use the Google Remarketing application. This is a procedure with which we would like to address you again. Through this application, you can be shown our advertisements when you continue to use the internet after visiting our website. This is done by means of cookies stored in your browser, which Google uses to record and evaluate your usage behaviour when you visit various websites. In this way, Google can determine your previous visit to our website. According to its own statements, Google does not combine the data collected in the course of remarketing with your personal data, which may be stored by Google. In particular, according to Google, pseudonymisation is used in remarketing. This is done across all devices on which you are logged in with a Google account or were logged in only for a short moment. You have the option of revoking this consent at any time; this can be done by sending a simple message, without preconditions and with effect for the future, to the contact channels listed in our imprint.

How do we use Google reCAPTCHA?
We use "Google reCAPTCHA" (hereinafter "reCAPTCHA") on our websites. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google").
The purpose of reCAPTCHA is to check whether data entry on our websites (e.g. in a contact form) is made by a human or by an automated programme. For this purpose, reCAPTCHA analyses the behaviour of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent by the website visitor on the website or mouse movements made by the user). The data collected during the analysis is forwarded to Google.
The reCAPTCHA analyses run completely in the background. Website visitors are not made aware that an analysis is taking place.
The data processing is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in protecting its web offers from abusive automated spying and from SPAM.
For more information on Google reCAPTCHA and Google's privacy policy, please see the following links: https://www.google.com/intl/de/policies/privacy/ and https://www.google.com/recaptcha/intro/android.html.

How do we use Google Web Fonts?
This site uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.
For this purpose, the browser you use must connect to Google's servers. This enables Google to know that our website has been accessed via your IP address. Google Web Fonts are used in the interest of a uniform and appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 Para. 1 lit. f DSGVO.
If your browser does not support web fonts, a standard font is used by your computer.
Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google's privacy policy: https://www.google.com/policies/privacy/.

How do we use Google Maps?
This site uses the map service Google Maps via an API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission.
Google Maps is used in the interest of an appealing presentation of our online offers and to make it easy to find the places we have indicated on the website. This constitutes a legitimate interest within the meaning of Art. 6 Para. 1 lit. f DSGVO.
More information on the handling of user data can be found in Google's privacy policy: https://www.google.de/intl/de/policies/privacy/.

How and to what extent do we use social media plugins on our website?
We currently use the following social media plug-ins: Facebook, Instagram. We use the so-called two-click solution. This means that when you visit our site, no personal data is initially passed on to the providers of the plug-ins. You can recognise the provider of the plug-in by marking the box with its initial letter or logo. We give you the opportunity to communicate directly with the provider of the plug-in via the button. Only if you click on the marked box and thereby activate it, the plug-in provider receives the information that you have called up the corresponding website of our online offer. In addition, the data mentioned in paragraph 3 are transmitted. In the case of Facebook, according to the respective providers in Germany, the IP address is anonymised immediately after collection. By activating the plug-in, your personal data is transmitted to the respective plug-in provider and stored there (in the case of US providers, in the USA). Since the plug-in provider collects the data in particular via cookies, we recommend that you delete all cookies via your browser's security settings before clicking on the greyed-out box.
We have neither influence on the collected data and data processing procedures, nor are we aware of the full extent of the data collection, the purposes of the processing, the storage periods. We also have no information on the deletion of the collected data by the plug-in provider.
The plug-in provider stores the data collected about you as usage profiles and uses them for purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (also for users who are not logged in) for the display of needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact the respective plug-in provider to exercise this right. Via the plug-ins, we offer you the opportunity to interact with the social networks and other users so that we can improve our offer and make it more interesting for you as a user.
The data transfer takes place regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in to the plug-in provider, the data we collect is directly assigned to your account with the plug-in provider. If you click the activated button and, for example, link to the page, the plug-in provider also saves this information in your user account and shares it publicly with your contacts. We recommend that you log out regularly after using a social network, but especially before activating the button, as this will help you avoid being assigned to your profile with the plug-in provider.
Further information on the purpose and scope of the data collection and its processing by the plug-in provider can be found in the data protection declarations of these providers provided below. There you will also receive further information on your rights in this regard and setting options for protecting your privacy.
We also maintain a company page with each of these providers. If you interact with this company page, it is possible that the provider will process your data as described in paragraphs 2 to 5.
7. legal basis is Article 6(1) sentence 1 lit. f DSGVO, Article 6(1) sentence 1 lit. f DSGVO, according to which the processing of personal data is also possible without the consent of the data subject if the processing is necessary to protect the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data override these interests, in particular if the data subject is a child. Our legitimate business interest is to give you the opportunity to interact with us voluntarily on social networks - as described here.
8. addresses of the respective plug-in providers and URL with their data protection notices:
a) Facebook Inc, 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php; further information on data collection: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other#applications as well as http://www.facebook.com/about/privacy/your-info#everyoneinfo. Facebook has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
b) Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA, https://help.instagram.com/155833707900388

How do we use Pinterest?
We use the social network Pinterest, of Pinterest, Inc., 808 Brannan St, San Francisco, CA 94103, USA (hereinafter referred to as "Pinterest"). The websites, apps and services under Pinterest.co.uk are currently provided by Pinterest Europe Ltd, Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland. You can find more detailed and up-to-date information here: https://policy.pinterest.com/de/impressum.
By clicking on the Pinterest button, Pinterest receives the information that you have accessed the corresponding page of our website. If you are logged in to Pinterest, Pinterest can assign the visit to your Pinterest account. The data transmitted by clicking the button is stored by Pinterest in the USA. If you do not agree to this, you must log out of your Pinterest account before clicking the button. We ourselves have no influence over the further fate of this data.
Further information on the type of data processed, the scope and purpose of the data processing and on the further handling of the data is currently available here: https://policy.pinterest.com/de/privacy-policy.
4. the legal basis is Article 6(1) sentence 1 lit. f DSGVO, Article 6(1) sentence 1 lit. f DSGVO, according to which the processing of personal data is possible even without the consent of the data subject if the processing is necessary to protect the legitimate interests of the controller or a third party, unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child. Our legitimate business interest is to provide you with the opportunity to interact with us voluntarily through this provider - as described here.

How do we use YouTube videos?
1. we have integrated YouTube videos into our online offer, which are stored on http://www.YouTube.com and can be played directly from our website. . Here we have also implemented a two-click solution, cf. our explanations under "How do we use social media plugins?
By visiting the website, YouTube receives the information that you have accessed the corresponding sub-page of our website. In addition, the data mentioned in paragraph 3 are transmitted. This occurs regardless of whether YouTube provides a user account via which you are logged in or whether no user account exists. If you are logged in to Google, your data will be directly assigned to your account. If you do not want your data to be associated with your YouTube profile, you must log out before activating the button. YouTube stores your data as usage profiles and uses them for the purposes of advertising, market research and/or designing its website in line with requirements. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, and you must contact YouTube to exercise this right.
For more information on the purpose and scope of data collection and processing by YouTube, please see the privacy policy. There you will also find further information on your rights and setting options to protect your privacy: https://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
We also maintain a company page with this provider. If you interact with this company page, the provider may process your data as described in paragraphs 2 and 3.
5. the legal basis is Article 6(1), first sentence, lit. f DSGVO, Article 6(1), first sentence, lit. f DSGVO, according to which the processing of personal data is also possible without the consent of the data subject if the processing is necessary for the purposes of the legitimate interests of the controller or a third party, unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child. Here, we invoke our interest in direct marketing pursuant to Recital 47 a.E. GDPR.

How do we use Vimeo?
1. plugins of the video portal Vimeo of Vimeo, LLC, 555 West 18th Street, New York, New York 10011, USA are integrated on our website. Each time you access a page that offers one or more Vimeo video clips, a direct connection is established between your browser and a Vimeo server in the USA. Information about your visit and your IP address are stored there. By interacting with the Vimeo plugins (e.g. clicking the start button), this information is also transmitted to Vimeo and stored there. We have also implemented a two-click solution here, cf. our explanations under "How do we use social media plugins?".
2. if you have a Vimeo user account and do not want Vimeo to collect data about you via this website and link it to your membership data stored with Vimeo, you must log out of Vimeo before visiting this website.
3. the privacy policy for Vimeo with more detailed information on the collection and use of your data by Vimeo can be found at http://vimeo.com/privacy.
In addition, Vimeo calls up the Google Analytics tracker via an iFrame in which the video is called up. This is Vimeo's own tracking, to which we have no access. You can prevent tracking by Google Analytics by using the deactivation tools that Google offers for some internet browsers. Users can also prevent the collection of data generated by Google Analytics and related to their use of the website (incl. your IP address) by Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
5. the legal basis is Article 6(1), first sentence, lit. f DSGVO, Article 6(1), first sentence, lit. f DSGVO, according to which the processing of personal data is also possible without the consent of the data subject if the processing is necessary for the purposes of the legitimate interests of the controller or a third party, unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child. Here, we invoke our interest in direct marketing pursuant to Recital 47 a.E. GDPR.

How do we use Facebook Pixel with advanced matching?

With your consent, you have allowed us to use the Facebook Pixel analysis tool from Facebook Inc, 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php; further information on data collection: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other#applications as well as http://www.facebook.com/about/privacy/your-info#everyoneinfo. Facebook has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework. Facebook Pixel is an analysis tool that can be used to measure the effectiveness of advertising. It is usually used to understand and track people's actions on a website. You implement the Facebook pixel on a website by placing the pixel code in the header of the website. When someone then visits the website and performs an action (such as making a purchase), the Facebook pixel is triggered and the action is reported. In this way, you learn when a customer takes an action and can evaluate this. There is also the option of advanced matching, which we also use and which is also covered by your consent. The Facebook pixel makes it possible to transmit customer data such as first name, last name, email address, etc. to Facebook and enrich it with existing tracking data. In this way, it is also possible to collect data from non-Facebook users or to record users who are not logged into Facebook while visiting a website. This tracks website visitors via Facebook who deliberately opt out of third-party cookies. You have the option to revoke this consent at any time; this can be done by simply sending a message, without preconditions and with effect for the future, to the contact channels mentioned in our imprint.

How do we use the Facebook Custom Audiences tool?
Furthermore, the website uses the "Custom Audiences" remarketing function of Facebook Inc ("Facebook"). This allows users of the website to be shown interest-based advertisements ("Facebook ads") when visiting the social network Facebook or other websites that also use this procedure. In this way, we pursue the interest of showing you advertisements that are of interest to you in order to make our website more interesting for you. Due to the marketing tools used, your browser automatically establishes a direct connection with the Facebook server. We have no influence on the scope and further use of the data collected by Facebook through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of Facebook Custom Audiences, Facebook receives the information that you have called up the corresponding web page of our website or clicked on an advertisement from us. If you are registered with a Facebook service, Facebook can assign the visit to your account. Even if you are not registered with Facebook or have not logged in, it is possible that the provider will learn and store your IP address and other identifying features. Deactivation of the "Facebook Custom Audiences" function is available for logged-in users at https://www.facebook.com/settings/?tab=ads#_möglich. Further information on data processing by Facebook is available at https://www.facebook.com/about/privacy. You can revoke your consent at any time by sending an informal message to one of the contact channels specified in our imprint. The legal basis is Article 6(1) sentence 1 lit. f DSGVO, according to which the processing of personal data is also possible without the consent of the data subject if the processing is necessary for the protection of the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject, which require the protection of personal data, override these interests, in particular if the data subject is a child. Here, we invoke our interest in direct marketing pursuant to GDPR 47 a.E.. We delete the data as soon as the purpose has ceased to exist, at the latest if you opt out of the processing.

Are we obliged to collect this data? What happens if we do not collect this data?
There is no legal obligation to collect this data. However, it is possible that failure to collect this data may make it more difficult to visit our website.

To whom do we transfer the data? And: Does the data leave the European Union or the European Economic Area?
The following companies receive the above data, indicating below if the data leaves the European Union or the European Economic Area:
Third country reference:
Facebook Inc, 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php; further information on data collection: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other applications and http://www.facebook.com/about/privacy/your-info everyoneinfo.
Google Inc, 1600 Amphitheater Parkway, Mountainview, California 94043, USA; https://www.google.com/policies/privacy/partners/?hl=de.
Adobe Systems Software Ireland Limited, Ireland, 4-6 Riverwalk, Citywest Business Campus, Dublin 24, Republic of Ireland; [email protected]; http://www.adobe.com/de/privacy/policy.html.
Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA, https://help.instagram.com/155833707900388
Vimeo, LLC, 555 West 18th Street, New York, New York 10011, USA
Pinterest, Inc, 808 Brannan St, San Francisco, CA 94103, USA

Other:
Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001 (Google Analytics)
Pinterest Europe Ltd, Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland

Do we guarantee sufficient data security?
We maintain up-to-date technical measures to ensure data security, in particular to protect your personal data from risks during data transmission and from third parties gaining knowledge. These are adapted to the current state of the art.

What rights do you have?
You have some rights. You have the right to information about the personal data processed about you, as well as to correction or deletion, to restriction of processing, to object to processing and to data portability. Furthermore, you have the possibility to complain about us to the supervisory authority responsible for us. We would like to politely point out that these rights may be linked to prerequisites, which we will insist are met

How do we use SSL or TLS encryption?
For security reasons and to protect the transmission of confidential content, such as enquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Changing your privacy settings and more

Change cookie selection

In addition to the opt-out methods already mentioned in the text above, we would like to give you the opportunity to block Google Analytics and facebook Pixel.

...and...

Furthermore, we list your previous cookie decisions for this website here:

Date	Version	Consents