Privacy Policy

Unless otherwise stated below, the provision of your personal data is neither legally nor contractually required, nor is it necessary for the conclusion of a contract. You are not obligated to provide the data. Failure to provide it will have no consequences. This only applies unless otherwise stated during the subsequent processing operations.
“Personal data” means any information relating to an identified or identifiable natural person.

Your data may be transferred to third countries outside the EU, particularly to Canada and the USA, and processed there. An adequacy decision of the EU Commission exists for Canada. An adequacy decision of the EU Commission exists for the USA: the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations comparable to those of the EU Commission's standard contractual clauses.

contact

Person responsible
Please contact us if you wish. The person responsible for data processing is: Carsten Pfefferkorn, Maximilianstraße 2, 80539 Munich , Germany, +49892050085718, hello@beauetal.com

Customer's proactive contact via email
If you initiate business contact with us via email, we will only collect your personal data (name, email address, message text) to the extent you provide it. This data processing serves to process and respond to your contact request.
If the contact serves to carry out pre-contractual measures (e.g. advice in the event of purchase interest, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) (b) GDPR.
If contact is made for other reasons, this data processing will be based on Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in processing and responding to your inquiry. In this case, you have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time for reasons arising from your particular situation.
We will only use your email address to process your request. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.

Collection and processing when using the contact form
When you use the contact form, we collect your personal data (name, email address, message text) only to the extent you provide it. Data processing serves the purpose of establishing contact.
If the contact serves to carry out pre-contractual measures (e.g. advice in the event of purchase interest, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) (b) GDPR.
If contact is made for other reasons, this data processing will be based on Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in processing and responding to your inquiry. In this case, you have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time for reasons arising from your particular situation.
We will only use your email address to process your request. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.

Using Endereco's address validation
We use address validation on our website from the provider Endereco UG (limited liability) (Balthasar-Neumann-Str. 4b, 97236 Randersacker, Germany; “Endereco”).
The purpose of data processing is to check your entries in our address forms in real time for input and spelling errors, and to supplement any missing data if necessary. If data is entered incorrectly, alternative suggestions for correcting the data will be displayed.
Among other things, the following information may be transmitted to Endereco and processed there: postal addresses (country, city, postal code, street, house number), email address, telephone number.
Your personal data is processed on the basis of Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in maintaining a correct data basis to fulfill our contractual obligations. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
The data is processed separately by the provider and not merged with other data. It is deleted by the provider as soon as the status of the entered data has been determined, but no later than 30 days later.
Further information on data protection at Endereco can be found at: https://www.endereco.de/datenschutzerklaerung/ .

Using Calendly
We use the appointment booking function “Calendly” from the provider Calendly LLC (BB&T Tower, 271 17th St NW, Atlanta, GA 30363, USA) on our website.
When you use this feature, we collect and process your personal data (first and last name, email address and telephone number, message text) only to the extent you provide it. Data processing serves the purpose of scheduling appointments and improving user-friendliness.
Calendly uses technologies such as cookies. The following information may be collected and transmitted to Calendly: IP address, date and time of page visit, device model, information about the browser and operating system you use, and location.
Your data may be transferred to third countries, such as the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Calendly has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
Your personal data for booking appointments is processed on the basis of Art. 6 (1) (b) GDPR to fulfill the contract concluded with us or to carry out pre-contractual measures.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TDDDG in conjunction with Article 6 (1) (a) GDPR. The processing of your personal data through the use of cookies is based on your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
For more information about privacy and the use of cookies at Calendly, please visit https://calendly.com/privacy .

WhatsApp Business
If you contact us via WhatsApp, we use the WhatsApp Business version of WhatsApp Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; "WhatsApp"). If you are located outside the European Economic Area, this service is provided by WhatsApp Inc. (1601 Willow Road, Menlo Park, CA 94025, USA).
The data processing serves to process and respond to your contact request. For this purpose, we collect and process your mobile phone number stored with WhatsApp, your name if provided, and other data to the extent provided by you. We use a mobile device for the service, whose address book only stores data from users who have contacted us via WhatsApp. Personal data will therefore not be passed on to WhatsApp without your prior consent.
Your data will be transmitted by WhatsApp to Meta Platforms Inc. servers in the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Meta Platforms Inc. has certified itself according to the TADPF and is therefore committed to complying with European data protection principles. If the contact serves to carry out pre-contractual measures (e.g., advice in the event of a purchase interest, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is based on Art. 6 (1) (b) GDPR.
If contact is made for other reasons, this data processing is based on Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in providing quick and easy contact and answering your inquiry. In this case, you have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time for reasons arising from your particular situation.
We will only use your personal data to process your request. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.
Further information on terms of use and data protection when using WhatsApp can be found athttps://www.whatsapp.com/legal/#terms-of-service and https://www.whatsapp.com/legal/#privacy-policy .

Use of WeTransfer
We use the WeTransfer service of WeTransfer BV (Willem Fenengastraat 19, 1096 BL Amsterdam, Netherlands; “WeTransfer”) to send files up to 2 GB in size at your request.
The purpose of this service is to transfer large files in high quality. For this purpose, we will share your email address and the file to be transferred with WeTransfer. WeTransfer will generate a download link, which will be sent to you and us via email. The data is encrypted during transmission and storage by WeTransfer and can only be accessed via the download link.
Your personal data may be transferred to WeTransfer servers in the USA and temporarily stored there (sometimes unencrypted). For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). WeTransfer is not certified under the TADPF. Data transfer is based, among other things, on standard contractual clauses as appropriate safeguards for the protection of personal data, available at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de .
The processing is carried out on the basis of Art. 6 (1) (a) GDPR with your consent, provided that you have expressly agreed to the use of WeTransfer.
You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of your consent until the revocation.
For more information about data protection when using WeTransfer, please visit: https://wetransfer.com/legal/privacy .

Customer account orders

Customer account
When you open a customer account, we collect your personal data to the extent specified therein. The data processing serves the purpose of improving your shopping experience and simplifying order processing. The processing is carried out on the basis of Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of the consent until the revocation. Your customer account will then be deleted.

Your data may be transferred to third countries outside the EU, particularly to Canada and the USA, and processed there. An adequacy decision of the EU Commission exists for Canada. An adequacy decision of the EU Commission exists for the USA: the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations comparable to those of the EU Commission's standard contractual clauses.

Reviews Advertising


Data collection when writing a comment or rating
When you comment on or rate an article or post, we collect your personal data (name, email address, comment text) only to the extent you provide it. The processing serves the purpose of enabling and displaying comments/ratings.

For the purpose of verifying your rating/comment, we also collect the following data: order number, customer number, invoice number, .

By submitting the comment/review, you consent to the processing of the submitted data. This processing is based on Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of your consent until the revocation. Your personal data will then be deleted.

When your comment/review is published, the name and email address you provide will be published.

In addition, when you submit a comment/rating, your IP address will be saved to prevent misuse of the comment or rating function and to ensure the security of our information technology systems. By submitting a comment/rating, you consent to the processing of the submitted data. This processing is based on Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of your consent until the revocation. Your IP address will then be deleted.

Use of your personal data for sending postal advertising
We use your personal data (name, address), which we received as part of the sale of a product or service, to send you postal advertising, unless you have objected to this use. The provision of this data is necessary for the conclusion of the contract. Failure to provide this data will result in no contract being concluded.
Processing is based on Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in direct advertising. You can object to this use of your address data at any time by notifying us. The contact details for exercising your objection can be found in the legal notice.

Use of the email address for sending newsletters
We use your email address to send you information and offers via newsletter, provided you have expressly consented to this. Data processing serves exclusively for the purpose of advertising. For this purpose, we process your email address and, if applicable, other data that you have voluntarily provided when registering for our newsletter.
The processing is based on Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
You can unsubscribe from the newsletter at any time by using the corresponding link in the newsletter or by notifying us. Your email address will then be removed from the mailing list. Despite being removed from the mailing list, we may continue to store your email address in a so-called blacklist to prevent you from receiving newsletter emails from us in the future. This storage is based on Art. 6 (1) (f) GDPR and is in our and your legitimate interest to prevent your email address from being used again to send you our newsletter. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.

Use of the email address for sending direct mail
We use your email address, which we received as part of the sale of a product or service, to electronically send advertising for our own products or services that are similar to those you have already purchased from us, unless you have objected to this use. Providing the email address is necessary to conclude the contract. Failure to provide it will result in no contract being concluded. Processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in direct advertising. You can object to this use of your email address at any time by notifying us. The contact details for exercising your objection can be found in the legal notice. You can also use the link provided for this purpose in the advertising email. There are no costs for this other than the transmission costs according to the basic rates.

Use of the mobile phone number for sending SMS advertising
Regardless of the contract processing, we will use your mobile phone number exclusively for our own advertising purposes to send SMS advertising, provided you have expressly consented to this.
The processing is based on Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of your consent until the revocation. Your mobile phone number will then be removed from the mailing list.

Your mobile phone number will be passed on to a service provider for sending SMS messages as part of order processing.

Shipping service provider

Passing on the email address to shipping companies to inform them about the shipping status
We will pass on your email address to the shipping company as part of the contract processing, provided you have expressly consented to this during the ordering process. The purpose of this transfer is to inform you about the shipping status by email. Processing is carried out on the basis of Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time by notifying us or the shipping company, without affecting the legality of the processing carried out on the basis of your consent until the revocation.

Payment service provider credit report

Using Amazon Payments
We use the payment service Amazon Payments from Amazon Payments Europe sca (38 avenue John F. Kennedy, L-1855 Luxembourg; “Amazon Payments”) on our website.
The purpose of data processing is to be able to offer you payment via the Amazon Payments payment service.
To integrate this payment service, Amazon Payments must collect, store, and analyze data (e.g., IP address, device type, operating system, browser type, and device location) when you visit the website. Cookies may also be used for this purpose. These cookies enable your browser to be recognized.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TDDDG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
By selecting and using “Amazon Payments”, the data required for payment processing will be transmitted to Amazon Payments in order to be able to fulfill the contract with you using the selected payment method.
This processing is carried out on the basis of Art. 6 (1) (b) GDPR.
Further information on data processing when using the Amazon Payments payment service can be found in the associated privacy policy at: https://pay.amazon.com/de/help/201212490

Data collection and processing when registering for installment purchase via easyCredit
When paying by installment purchase via easyCredit, the additional data protection information for installment purchase from easyCredit applies.

Data collection and processing during credit checks
If we make advance payments, e.g. when paying by invoice or direct debit, we reserve the right to obtain a credit report based on mathematical-statistical procedures using SCHUFA Holding AG, Kormoranweg 5, 65201 Wiesbaden . For this purpose, we transmit the personal data required for a credit check to SCHUFA Holding AG, Kormoranweg 5, 65201 Wiesbaden. For this purpose, we transmit the personal data required for a credit check to SCHUFA Holding AG and use the information obtained regarding the statistical probability of a payment default to make a balanced decision regarding the establishment, implementation, or termination of the contractual relationship. The credit report may contain probability values ​​(score values) calculated using scientifically recognized mathematical-statistical procedures, which include, among other things, address data. Your legitimate interests will be taken into account in accordance with the statutory provisions. The data processing serves the purpose of a credit check for the initiation of a contract. The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in protecting against payment default when we make advance payments. You have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time by notifying us, for reasons related to your particular situation. Providing this data is necessary for concluding the contract using your preferred payment method. Failure to provide this data will result in the contract not being concluded using your chosen payment method.

Data collection and processing, credit check for purchase on account via Unzer
When paying by invoice via Unzer (Unzer Invoice), personal data will be transmitted to the debt collection service provider Unzer GmbH (Vangerowstraße 18, 69115 Heidelberg; "Unzer") and its partners UNIVERSUM Inkasso GmbH and UNIVERSUM Payment Solution GmbH, where it will be further processed. The data processing serves the purpose of offering the payment method purchase on account and the necessary risk and creditworthiness assessment. The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in offering various payment methods and in protecting against payment default. You have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time by notifying us, for reasons arising from your particular situation. For the purpose of its own credit assessment, Unzer transmits data to credit agencies (credit agencies) and receives information from them, as well as, where applicable, creditworthiness information based on mathematical-statistical procedures, the calculation of which includes, among other things, address data.
In detail, these may be the following credit agencies – examples but not exhaustive:

• Schufa Holding AG,
• CRIF Bürgel GmbH,
• Arvato Infoscore GmbH,
• Universum Business GmbH,
• Bisnode D & Austria GmbH.

Providing this data is necessary for concluding the contract using your preferred payment method. Failure to provide this data will result in the contract not being concluded using your chosen payment method.

For the "Purchase on account" payment method, Paymorrow checks whether the customer's request to purchase on account can be accepted in light of any payment and default risks (acceptance check according to risk guidelines), or whether an alternative payment method should be used in consultation with the online shop operator. For this purpose, Paymorrow conducts its own acceptance check after the desired payment method, "Purchase on account," has been selected. This requires an identity, creditworthiness, and credit check with the credit agencies listed below.

The data processing serves the purpose of offering the selected payment method and the necessary credit check.
Processing is based on Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the legality of the processing carried out on the basis of your consent until the revocation.
As part of the identity verification, you consent to your personal data being transmitted by Paymorrow to SCHUFA Holding AG (Kormoranweg 5, 65201 Wiesbaden; "SCHUFA") for the purpose of identity verification. SCHUFA will then transmit the degree of match between the personal details stored by it and the personal details you provided, as a percentage, and, if applicable, a reference to a previous ID-based identity check conducted by SCHUFA or another contractual partner. Based on the transmitted match rates, Paymorrow can thus determine whether a person is stored in the SCHUFA database at the address you provided. No further data exchange or transmission of alternative addresses, nor storage of your data in the SCHUFA database, will take place. For verification purposes, only the fact that the address was verified by SCHUFA will be stored.
To conduct the credit check as part of the acceptance process, the following personal data is required from you: title, first and last name; place of residence (street, house number, postal code, city); date of birth; telephone number. The use, processing, and disclosure of the aforementioned personal data by the online shop operator and Paymorrow, as well as the disclosure of this data by Paymorrow to the aforementioned credit agencies for the purpose of the credit check, requires your consent.
As part of the ordering process, you will therefore be asked to consent to the storage, processing and use of your personal data by the online shop operator or Paymorrow for the purpose of credit checks and to the transfer of this data to credit agencies, including the transfer of data to third parties.
Paymorrow reserves the right to transfer personal data to service providers or financial partners commissioned by Paymorrow for the purposes stated above or to grant them access to it, insofar as this is necessary to fulfill their tasks.
Of course, we respect the customer's decision not to give their consent. However, in this case, neither the online shop operator nor Paymorrow can accommodate the customer's request to purchase on account.

For credit checks, Paymorrow or partner companies commissioned by Paymorrow may transmit your address data to credit agencies for creditworthiness and credit checks, within the scope of what is legally permissible and taking into account your respective legitimate interests in excluding such transmission or use when registering for purchase on account. For the purpose of credit checks, we obtain information on the customer's previous purchasing and payment behavior and creditworthiness information based on mathematical-statistical procedures using address data (scoring - to calculate payment probabilities) from the following credit agencies, which store data for the purpose of providing information:

Bürgel, Bürgel Wirtschaftsinformationen GmbH & Co. KG, Gasstraße 18, D-22761 Hamburg, Tel.: +49 (0) 40 - 89 80 3 - 0, Fax: -777;
CEG, Creditreform Consumer GmbH, Hellersbergstrasse 11, D-41460 Neuss, Tel.: +49(0)2131-109-501, Fax: -557;
Deltavista, Deltavista GmbH, Freisinger Landstr. 74, D-80939 Munich, Tel.: +49 (0)89 - 7244880, Fax: - 22;
infoscore Consumer Data GmbH, Data Protection Department, Rheinstraße 99, D-76532 Baden-Baden, Fax: +49 (7221) 5040-3201;
"Real" Inform GmbH, Normannenweg 32, 20537 Hamburg, Fax: +49 40 23 88 14-59.

You can request the data stored about you from the respective credit agencies. Furthermore, data about the conclusion of a contract, the application, the start, and/or the termination of a contractual relationship may be transmitted to the credit agencies. The online shop operator/Paymorrow may also provide the credit agencies with data about any behavior that is not in accordance with the contract. The credit agencies store this data in order to be able to provide their contractual partners, upon credible demonstration of a legitimate interest, with information for assessing the creditworthiness of customers or about the customer's address for debtor identification. Paymorrow ensures that the credit agencies mentioned process and/or use your personal data exclusively for the purpose of "creditworthiness and credit checks."

Providing this data is necessary for concluding the contract using your preferred payment method. Failure to provide this data will result in the contract not being concluded using your chosen payment method.

Data collection and processing for the payment methods by Unzer “purchase on account” (purchase on account) and/or “installment payment” and/or “SEPA direct debit”
When paying using the Unzer payment methods "Purchase on account" (purchase on account) and/or "Instalment payment" and/or "SEPA direct debit", the purchase price claim is assigned to Bank Frick & Co. AG (Landstrasse 14, 9496 Balzers, Liechtenstein; hereinafter "Bank"). The data required for payment processing is transmitted to payolution GmbH (Am Euro Platz 2, 1120 Vienna, Austria). The data transfer serves the purpose of enabling Unzer to carry out an identity and credit check in order to process your purchase using the payment method you have requested. The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in offering a variety of payment methods and in protecting against payment default. You have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time by notifying us, for reasons arising from your particular situation. You can find Unzer's privacy policy here . If you would like information about the use of your personal data, please contact datenschutz@payolution.com. Providing this data is necessary to conclude the contract using your preferred payment method. Failure to provide this data will result in the contract not being concluded using your chosen payment method.

Data collection and processing for payment methods by installment purchase, SEPA direct debit and invoice via Ratepay
When paying using the payment methods "Ratepay Purchase on Account" and/or "Ratepay Direct Debit" and/or "Ratepay Purchase on Installments," the personal data you provide during the ordering process (first and last name, address, date of birth, email address, telephone number, and, in the case of SEPA direct debit, the specified bank account details) will be collected and forwarded to Ratepay GmbH (Franklinstraße 28-29, 10587 Berlin; "Ratepay"). The purpose of this data transfer is to enable Ratepay to conduct a risk analysis to process your purchase using the payment method you selected.
The processing is carried out on the basis of Art. 6 (1) (f) GDPR out of the overriding legitimate interest in determining whether you will be able to meet your payment obligations and in order to rule out fraudulent intent by using your data to commit criminal offenses.
As part of the risk analysis, Ratepay reserves the right, if necessary, to obtain a credit report based on mathematical-statistical procedures using credit agencies. For this purpose, Ratepay transmits the personal data required for a credit check to a credit agency and uses the information received regarding the statistical probability of a payment default to make a balanced decision regarding the establishment, implementation, or termination of the contractual relationship. An overview of the credit agencies used by Ratepay can be found at: https://www.ratepay.com/legal-payment-creditagencies/ . The credit report may contain probability values ​​(score values) calculated based on scientifically recognized mathematical-statistical procedures and which include, among other things, address data. Your legitimate interests will be taken into account in accordance with legal provisions. The data processing serves the purpose of a credit check for the initiation of a contract. The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in protecting against payment default when Ratepay makes advance payments.
You have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time by notifying us or Ratepay, for reasons related to your particular situation. Providing this data is necessary for concluding the contract using your preferred payment method. Failure to provide this data will result in the contract not being concluded using your chosen payment method.
Further information on payment methods and data processing when using the payment service can be found in the associated privacy policy at https://www.ratepay.com/legal-payment-terms/ and https://www.ratepay.com/legal-payment-dataprivacy/ .

How to use the Shopify Consent tool (Shopify Privacy & Compliance)
We use the "Shopify Privacy & Compliance" consent tool from Shopify International Ltd. (Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland; "Shopify") on our website. Shopify is an affiliate of Shopify Inc. (151 O'Connor Street, Ground Floor, Ottawa, Ontario, K2P 2L8, Canada).
The tool allows you to grant consent to data processing via the website, in particular the use of cookies, as well as to exercise your right to withdraw consents you have already granted. Data processing serves the purpose of obtaining and documenting the necessary consents to data processing and thus complying with legal obligations. Cookies may be used for this purpose. User information, including your IP address, is collected and transmitted to Shopify.
Your data may be transferred to third countries outside the EU, particularly to Canada and the USA, and processed there. An adequacy decision of the EU Commission exists for Canada. An adequacy decision of the EU Commission exists for the USA: the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations comparable to those of the EU Commission's standard contractual clauses.
The data processing is carried out to fulfill a legal obligation on the basis of Art. 6 (1) (c) GDPR.
For more information about Shopify’s privacy policy, please visit https://www.shopify.com/de/legal/datenschutz .


Analysis Advertising Tracking Communication

Use of Google Analytics 4
We use the web analysis service Google Analytics from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”) on our website.
The data processing serves the purpose of analyzing this website and its visitors, as well as for marketing and advertising purposes. Google will use the information obtained on behalf of the website operator to evaluate your use of the website, to compile reports on website activity, and to provide the website operator with other services related to website activity and internet usage.
The following information may be collected, among others: IP address, date and time of the page visit, click path, information about the browser and device you use, pages visited, referrer URL (website from which you accessed our website), location data, purchasing activities. Google may link your data with other data, such as your search history, your personal accounts, your usage data from other devices, and any other data Google has about you.

Your IP address will be shortened by us on our own servers beforehand. Google thus receives only pseudonymized data.

Google uses technologies such as cookies, web storage in the browser, and tracking pixels that enable an analysis of your use of the website. The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) of the Telemedia Act (TDDDG) in conjunction with Article 6 (1) (a) of the GDPR.

Your personal data will be processed with your consent on the basis of Art. 6 (1) (a) GDPR. You may revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.

We use the advanced implementation of consent mode (Advanced Consent Mode). This means that user data is transmitted to Google in the form of "pings," even if consent is not granted. These pings may contain, among other things, the following information: IP address to determine the IP country (the IP address is not logged), date and time of the page visit, URL of the pages visited, user agent, referrer URL (website from which our website was accessed), or information about the triggering of website events such as a conversion. Based on this information, Google models user data in order to be able to conduct a comprehensive usage analysis despite the refusal of consent.

The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. For the USA, the EU Commission has adopted an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to adhering to European data protection principles. Both Google and US government authorities have access to your data.

Further information on terms of use and data protection can be found at https://policies.google.com/technologies/partner-sites and at https://policies.google.com/privacy?hl=de&gl=de .

Use of Hotjar
We use the analysis tool of Hotjar Ltd. (Level 2, St Julian's Business Centre, 3, Elia Zammit Street, St Julians STJ1000, Malta; “Hotjar”) on our website.
The data processing serves the purpose of needs-based design, optimization and analysis of our website.
The tool randomly records visitors' movements on the website. This creates a log of mouse movements, scrolling behavior, time spent on the website, and clicks (a so-called heatmap).
For this purpose, Hotjar uses cookies, among other things. The following information may be collected: IP address (in anonymized form), information about the device you use (screen size, device, unique device identifier), information about the browser you use, location data (country only), preferred language for displaying the website, and the operating system used. Detailed information about the cookies used, their function, and the storage period can be found here: https://help.hotjar.com/hc/en-us/articles/115011789248-Hotjar-Cookies .
This data is used to create user profiles under a pseudonym. The data is not used to personally identify the website visitor and is not merged with the personal data of the person using the pseudonym. Hotjar is contractually prohibited from selling the collected data to other third parties.
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Hotjar is not certified under the TADPF. Data transfers are based, among other things, on appropriate safeguards. Hotjar will provide you with further information on the measures taken upon request.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TDDDG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information on data protection when using Hotjar can be found here: https://www.hotjar.com/legal/policies/privacy#enduserenglish .

Using Shopify Statistics
We use the statistical and analytics functions of Shopify International Ltd. (Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland; "Shopify") on our website as part of a contract processing agreement. Shopify is an affiliate of Shopify Inc. (151 O'Connor Street, Ground Floor, Ottawa, Ontario, K2P 2L8, Canada).
The data processing serves the purpose of analyzing this website and its visitors. For this purpose, data is stored for marketing and optimization purposes and made available in reports, analyses, and statistics. The following device information is collected and processed, among other things: information about the web browser, IP address, time zone, and some of the cookies installed on your device. When you navigate the website, information about the websites or products visited, the referrer URL (website from which you accessed our website), and information about how you interact with the website is also collected. Technologies such as cookies, web beacons, tags, and pixels (electronic files used to collect information about how you navigate the website) are used for this purpose.
Your data may be transferred to third countries outside the EU, particularly to Canada and the USA, and processed there. An adequacy decision of the EU Commission exists for Canada. An adequacy decision of the EU Commission exists for the USA: the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations comparable to those of the EU Commission's standard contractual clauses.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TDDDG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
You can find more information about data protection at Shopify at https://www.shopify.com/de/legal/datenschutz , information about the order processing agreement at https://www.shopify.com/de/legal/dpa and information about the cookies used at https://www.shopify.com/de/legal/cookies .

Use of IONOS WebAnalytics
We use the WebAnalytics service of IONOS SE (Elgendorfer Str. 57, 56410 Montabaur, Germany “IONOS”) on our website as part of order processing.
The data processing serves the purpose of analyzing this website and its visitors as well as for marketing and advertising purposes. For this purpose, IONOS, on behalf of the operator of this website, will use the information obtained via pixels or a log file to evaluate your use of the website and to optimize the web offering. To protect personal data, IONOS does not use cookies. To protect visitors, IONOS does not store any personal data of website visitors so that no conclusions can be drawn about individual visitors. However, the following information may be collected, among others: IP address of the visitor (which is immediately anonymized after transmission and processed without personal reference), referrer (previously visited website), requested website or file, browser type and version, operating system used, device type used, time of access.
Your personal data is processed on the basis of Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in the cookie-free analysis of website visits and the needs-based and targeted design of our marketing measures. You have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time for reasons arising from your particular situation.
Further information on data processing by IONOS can be found at https://www.ionos.de/terms-gtc/datenschutzerklaerung/ and https://www.ionos.de/terms-gtc/avv/ as well as at https://www.ionos.de/hilfe/datenschutz/datenverarbeitung-von-webseitenbesuchern-ihres-ionos-produktes/webanalytics .


Use of Google AdSense
We use the AdSense function of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. The data processing serves the purpose of renting advertising space on the website and targeting website visitors with interest-based advertising. Using this function, visitors to the provider's website are shown personalized, interest-based advertising from the Google Display Network. Google uses cookies that enable an analysis of your website use. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. For the USA, an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF), exists. Google has certified itself according to the TADPF and is therefore committed to adhering to European data protection principles. Google may transfer this information to third parties where required to do so by law, or where third parties process the data on Google's behalf. Under no circumstances will Google associate your IP address with any other data held by Google.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TDDDG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information and Google's privacy policy can be found at: https://www.google.com/policies/technologies/ads/ and https://www.google.de/policies/privacy/

Use of HubSpot's
We use the Marketing Hub software from HubSpot, Inc. (25 First Street Cambridge, MA 02141, USA; “HubSpot” with a branch in Ireland HubSpot, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland) on our website as part of order processing.
The data processing serves the purpose of analyzing our website and its visitors, as well as analyzing and evaluating our marketing campaigns and better addressing customers through targeted advertisements. Cookies are used for this purpose, which enable browser recognition. This may include the collection of your IP address and transmission to HubSpot. User profiles can be created from the data collected using pseudonyms.
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). HubSpot has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TDDDG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
For more information about how HubSpot collects and uses data, your rights in this regard, and options for protecting your privacy, please see HubSpot's privacy policy at: https://legal.hubspot.com/de/privacy-policy and https://legal.hubspot.com/de/dpa .

Using Microsoft Teams
To conduct our online seminars/courses (hereinafter: online seminars), we use the video conferencing tool Microsoft Teams from Microsoft Corporation (One Microsoft Way, Redmond, WA 98052-6399, USA; “Microsoft”) within the framework of a data processing agreement.
Participation in our online seminars can be done via the Microsoft Teams app (downloaded from the provider's website) or via the browser version on the provider's website. To participate in our online seminars, you must therefore visit the Microsoft website at least once. Microsoft is responsible for the processing of your personal data there.
We are responsible for the processing of your personal data in connection with the conduct of our online seminars.
This data processing serves the purpose of conducting our online seminar as well as preparing and following up.
For this purpose, we collect and process the following personal data: display name, email address, date/time of the online seminar, IP address, information about the device used, telephone number (for telephone dial-in), location. Providing this data is necessary to fulfill the contract concluded between you and us regarding the provision of the online seminar. Failure to provide this data will prevent you from participating in our online seminar.
In addition, we collect and process text entries you make during the online seminar, as well as video and audio transmissions from your device. You can deactivate your camera and microphone before entering the online seminar and at any time during the online seminar. In this case, no data will be collected. If you do not wish to provide any data via the chat, camera, or audio functions, you will not be able to actively participate in the online seminar or communicate with other participants.
If we record our online seminars for follow-up purposes, particularly for subsequent provision to the respective participants, you will be informed separately before the start of the online seminar. You will also recognize a recording by the marking during the online seminar. When a recording is made, your display name, any text input in the chat, and video/audio transmissions from your device will be saved and subsequently transmitted to the respective participants of the online seminar.
The data collected during our online seminars is transferred to Microsoft, and thus to the USA, as part of the data processing agreement. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Microsoft has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
The processing is based on Art. 6 (1) (b) GDPR and is necessary for the performance of a contract with you.
Further information on data processing when using Microsoft Teams can be found at: https://www.microsoft.com/de-de/microsoft-365/microsoft-teams/security

Using Zoom
To conduct our online seminars/courses (hereinafter: online seminars), we use the video conferencing tool Zoom from Zoom Video Communications, Inc. (55 Almaden Boulevard, San Jose, CA 95113, USA; “Zoom”) within the framework of a data processing agreement.
Participation in our online seminars can be done via the Zoom app (downloaded from the provider's website) or via the browser version on the provider's website. To participate in our online seminars, you must therefore visit the Zoom website at least once. Zoom is responsible for the processing of your data there.
We are responsible for the processing of your personal data in connection with the conduct of our online seminars.
This data processing serves the purpose of conducting our online seminar as well as preparing and following up.
For this purpose, we collect and process the following personal data: name, email address, password (if no single sign-on was used), IP address, information about the device used, the date/time of the online seminar, and, if dialed in by telephone, the incoming and outgoing phone number and the country. Providing this data is necessary to fulfill the contract concluded between you and us regarding the provision of the online seminar. Failure to provide this data will prevent you from participating in our online seminar.
In addition, we collect and process text entries you make during the online seminar, as well as video and audio transmissions from your device. You can deactivate your camera and microphone before entering the online seminar and at any time during the online seminar. In this case, no data will be collected. If you do not wish to provide any data via the chat, camera, or audio functions, you will not be able to actively participate in the online seminar or communicate with other participants.
If we record our online seminars for follow-up purposes, particularly for subsequent provision to the respective participants, you will be informed separately before the start of the online seminar. You will also recognize a recording by the marking during the online seminar. If a recording is made, your name, any text input made in the chat, and video/audio transmissions from your device will be saved and subsequently transmitted to the respective participants of the online seminar.
The data collected during our online seminars is transferred to Zoom, and thus to the USA, as part of the data processing agreement. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Zoom has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
The processing is based on Art. 6 (1) (b) GDPR and is necessary for the performance of a contract with you.
Further information on data processing when using Zoom can be found at: https://zoom.us/de-de/privacy.html


Plug-ins and other


Use of social plug-ins using the “2-click solution”
We use social network plug-ins on our website using the "2-click solution." This means that no connection to the social network servers is established without your express consent, and therefore no data is transmitted.
With the standard integration of plug-ins, when you visit the pages of our website that contain such a plug-in, a link is established between your computer and the servers of the provider of the social network. The plug-in is displayed on the page by a message to your browser. Both your IP address and the information which of our pages you have visited are transmitted to the provider's servers. This applies regardless of whether you are registered with or logged in to the social network. Transmission also takes place for unregistered or unlogged-in users. If you are also logged in to the Facebook social network, this information is assigned to your personal user account. When you use the plug-in functions (e.g. by clicking the button), this information is also assigned to your user account. You can only prevent this by logging out before using the plug-in. So that you retain control over your data, we have decided to deactivate the corresponding button for the time being. You can recognize this by the grayed-out button. Without your express consent – ​​by activating the button – no link will be established to the social network's server and consequently no data will be transmitted.
Only when you activate the button does the button become active (highlighted in color) and a direct connection to the social network's servers is established.
By activating this button, you consent to the transfer of your data to the respective social network provider. This will include, among other things, your IP address and information about which of our pages you have visited. If you are connected to one or more of your social network accounts at the same time, the collected information will also be assigned to your corresponding profiles. You can only prevent this assignment by logging out of your social network user accounts before visiting our website and before activating the buttons.
The social networks listed below are integrated using the "2-click" function. Further information on the scope and purpose of data collection and use, as well as your rights and options for protecting your privacy, can be found in the linked privacy policies of the providers.

Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
https://www.facebook.com/policy.php
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

Instagram of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
http://instagram.com/legal/privacy/
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

LinkedIn ( LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland ):
https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). LinkedIn has certified itself according to the TADPF and is thus committed to complying with European data protection principles.

Pinterest from Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA):
https://policy.pinterest.com/de/privacy-policy
https://help.pinterest.com/de/articles/personalization-and-data
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not certified under the TADPF.


Xing of XING SE (Dammtorstraße 30, 20354 Hamburg):
https://www.xing.com/privacy
https://privacy.xing.com/de/datenschutzerklaerung/welche-rechte-koennen-sie-geltend-machen/widerspruchsrecht
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Xing is not certified under the TADPF. Data transfers are based, among other things, on standard contractual clauses as appropriate safeguards for the protection of personal data, available at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de .

Using Facebook's single sign-on feature
We use the single sign-on function (formerly Facebook Connect) of Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; “Facebook”) on our website.
Meta Platforms Ireland and we are jointly responsible for the collection of your data when the service is integrated and the transmission of this data to Facebook. This is based on an agreement between us and Meta Platforms Ireland on the joint processing of personal data, which specifies the respective responsibilities. The agreement can be accessed at https://www.facebook.com/legal/controller_addendum . According to this agreement, we are particularly responsible for fulfilling the information obligations pursuant to Art. 13 and 14 GDPR, for adhering to the security requirements of Art. 32 GDPR with regard to the correct technical implementation and configuration of the service, and for complying with the obligations under Art. 33 and 34 GDPR, insofar as a breach of the protection of personal data affects our obligations under the agreement on joint processing. Meta Platforms Ireland is responsible for enabling the rights of data subjects in accordance with Articles 15 - 20 GDPR, for complying with the security requirements of Article 32 GDPR with regard to the security of the service and for complying with the obligations under Articles 33 and 34 GDPR insofar as a breach of the protection of personal data affects Meta Platforms Ireland's obligations under the joint processing agreement.
This feature allows website visitors to log in to the website using their existing Facebook account. Data processing serves the purpose of verification during registration, personalization, and interest-based advertising.
In order to offer the function on the website, a connection is established to the Facebook server. Cookies are used for this purpose. The following information, among others, may be collected and transmitted to Facebook: IP address, browser information, referrer URL (website from which you accessed our website), location data. This applies regardless of whether you are registered with the social network or logged in. Transmission also takes place for unregistered or unlogged users. If you are connected to one or more of your social network accounts at the same time, the information collected can also be assigned to your corresponding profiles. You can prevent this assignment by logging out of your social media accounts before visiting our website and before activating the buttons. Your data may be transmitted to the USA. For the USA, the EU Commission has an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
When using the single sign-on feature, the website visitor's Facebook profile is linked to a customer account for this website. We receive personal data from Facebook, as specified during the login process. This may include, among other things, the following information: name, address, public profile information (e.g., name, profile picture, age, gender), email address, friends lists, and "likes."
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TDDDG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
For more information about the collection and use of data by Facebook, your rights in this regard and options for protecting your privacy, please see Facebook's privacy policy at https://www.facebook.com/about/privacy/ .
Use of Google invisible reCAPTCHA
We use the invisible reCAPTCHA service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
This serves the purpose of distinguishing between input by a human and automated, machine-based processing. In the background, Google collects and analyzes usage data, which Invisible reCAPTCHA uses to distinguish regular users from bots. For this purpose, your input is transmitted to Google, where it is further processed. In addition, the IP address and any other data required by Google for the Invisible reCAPTCHA service are transmitted to Google.
This data is processed by Google within the European Union and may also be transferred to Google LLC servers in the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TDDDG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information about Google reC APTCHA and the associated privacy policy can be found at: https://www.google.com/recaptcha/intro/android.html and https://www.google.com/privacy

Use of Google Maps
We use the function for embedding Google Maps from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland, "Google") on our website.
This feature enables the visual display of geographical information and interactive maps. Google also collects, processes, and uses data from visitors to the website when they access pages that incorporate Google Maps.
Your data may also be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TDDDG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
For more information about how Google collects and uses data, please see Google's privacy policy at https://www.google.com/privacypolicy.html . There, you can also change your settings in the Privacy Center so that you can manage and protect the data processed by Google.

Use of YouTube
We use the function for embedding YouTube videos from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “YouTube”) on our website. YouTube is an affiliated company of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”).
This feature displays videos stored on YouTube in an iFrame on the website. The "Enhanced Data Protection Mode" option is activated. This means that YouTube does not store any information about website visitors. Only when you watch a video is information about it transmitted to YouTube and stored there. Your data may be transferred to the USA. For the USA, the EU Commission has adopted an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). YouTube has certified itself according to the TADPF and is therefore committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TDDDG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
For more information about the collection and use of data by YouTube and Google, your rights in this regard and options for protecting your privacy, please see YouTube's privacy policy at https://www.youtube.com/t/privacy .

Use of Vimeo
We use plug-ins from Vimeo Inc. (555 West 18th Street New York, New York 10011, USA; “Vimeo”) on our website to embed videos from the “Vimeo” portal.
When you access pages of our website containing such a plug-in, a connection to Vimeo's servers is established, and the plug-in is displayed on the page by sending a message to your browser. This transmits both your IP address and information about which of our pages you have visited to Vimeo's servers.
If you are logged in to Vimeo, Vimeo assigns this information to your personal user account. When you use the plug-in functions (e.g., by starting a video by clicking the corresponding button), this information is also assigned to your Vimeo account.
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Vimeo has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TDDDG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information on the purpose and scope of the collection and further use and processing of the data by Vimeo as well as your rights and options for protecting your privacy can be found in Vimeo's privacy policy: https://vimeo.com/privacy

Use of Google Fonts
We use Google Fonts from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”) on our website.
The data processing serves the purpose of ensuring a consistent display of fonts on our website. To load the fonts, a connection to Google servers is established when the page is accessed. Cookies may be used for this purpose. This process includes, among other things, your IP address and information about the browser you use, which are processed and transmitted to Google. This data is not linked to your Google account.
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TDDDG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information on data processing and data protection can be found at https://www.google.de/intl/de/policies/ and at https://developers.google.com/fonts/faq .

Using Algolia
We use the Algolia search function of Algolia SAS (55 Rue d'Amsterdam, 75008 Paris, France; "Algolia") on our website. Data processing serves the purpose of making the information on our website easier to find and user-friendly. Algolia uses technologies such as cookies. This may collect, among other things, the following information: IP address, date and time of the page visit, information about the browser you use, and the operating system you use. The data is stored on Algolia's server for a period of 90 days.
Your data may be transferred to third countries, such as the USA. For the USA, the EU Commission has an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Algolia is not certified under the TADPF. Data transfers are based, among other things, on standard contractual clauses as appropriate safeguards for the protection of personal data, available at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de .
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TDDDG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
For more information about data protection and the use of cookies at Algolia, please visit https://www.algolia.com/policies/privacy/ .

Using Pushly
We use the Pushly plug-in from WebLab GmbH (Großbeerenstraße 169-171, 12277 Berlin; "Pushly") on our website.
The data processing serves the purpose of converting our online shop into an Android or iOS app. For this purpose, the following data, which we receive in particular through your input during the ordering process, will be transmitted to Pushly and temporarily stored on Pushly servers within the EU: name, email, customer ID, order number, payment method, billing and delivery address. Your data will not be shared with any other third parties.
Your personal data is processed on the basis of Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in providing our services in a customer-oriented and user-friendly manner. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
Further information on data protection at Pushly can be found at: https://www.pushly.de/datenschutz

Rights of data subjects and storage period

Duration of storage
After the contract has been fully processed, the data will initially be stored for the duration of the warranty period, then in accordance with statutory retention periods, in particular those under tax and commercial law, and then deleted after the expiry of the period unless you have consented to further processing and use.

Rights of the data subject
If the legal requirements are met, you are entitled to the following rights under Articles 15 to 20 GDPR: Right to information, to rectification, to erasure, to restriction of processing, to data portability.
Furthermore, according to Art. 21 (1) GDPR, you have the right to object to processing based on Art. 6 (1) (f) GDPR and to processing for the purposes of direct marketing.

Right to lodge a complaint with the supervisory authority
According to Art. 77 GDPR, you have the right to complain to the supervisory authority if you believe that the processing of your personal data is unlawful.

You can lodge a complaint with the supervisory authority responsible for us, which you can reach using the following contact details:

Bavarian State Office for Data Protection Supervision (BayLDA)
Promenade 18
91522 Ansbach
Phone: +49 981 1800930
Fax: +49 981 180093800
Email: poststelle@lda.bayern.de

Right of objection
If the personal data processing listed here is based on our legitimate interest pursuant to Art. 6 (1) (f) GDPR, you have the right to object to this processing at any time with future effect for reasons arising from your particular situation.
Once you have objected, the processing of the data in question will be stopped unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims.

If personal data is processed for direct marketing purposes, you can object to this processing at any time by notifying us. After your objection, we will stop processing the data concerned for direct marketing purposes.

last updated: 22.10.2024