Privacy policy
Table of contents
Status December 2022
- Name and address of the responsible person
- Contact details of the data protection officer
- General information on data processing
- Rights of the data subject
- Provision of the website and creation of log files
- Use of cookies
- Webshop
- Ordering in the webshop
- Payment options
- Shipping service provider
- Email contact
- Contact form
- Partner programs
- Rating portal
- Email dispatch
- Content Delivery Networks
- Plugins used
1. name and address of the responsible person
The responsible person within the meaning of the General Data Protection Regulation and other national data protection laws of the Member States and other data protection provisions is the:
myfolie GmbH
Von-Stauffenberg-Str 27
82008 Unterhaching
Germany
+49 89 / 92 131 57 - 0
datenschutz@myfolie.com
www.myfolie.com
2. contact details of the data protection officer
The data protection officer of the responsible party is
DataCo GmbH
Dachauer Straße 65
80335 Munich, Germany
+49
89 / 740 045 840
www.dataguard.de
3. general information on data processing
I.) Scope of the processing of personal data
We process personal data of our users in principle only, as far as this is necessary for the provision of a functioning webshop as well as our contents and services. The processing of personal data of our users is regularly only carried out with the consent of the user. An exception applies in those cases where obtaining prior consent is not possible for factual reasons. consent is not possible for factual reasons and the processing of the data is of the data is required by legal regulations.
II.) Legal basis for the processing of personal data
Insofar as we obtain consent for processing operations of personal data of the data subject for processing operations of personal data, Art. 6 para. 1 p. 1 lit. a DSGVO serves as the legal basis.
When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art, Art. 6 para. 1 p. 1 lit. b DSGVO serves as the legal basis. This also applies to processing operations that are necessary for the implementation of pre-contractual measures. are necessary.
Insofar as the processing of personal data is required for the fulfillment of a legal obligation to which our company is subject, Art. 6 para. 1 p. 1 lit. c DSGVO serves as the legal basis.
In the event that vital interests of the data subject or another natural person require the another natural person require the processing of personal data, Art. necessary, Art. 6 para. 1 p. 1 lit. d DSGVO serves as the legal basis. legal basis.
If the processing is necessary for the protection of a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not override the first the first-mentioned interest, Art. 6 (1) p. 1 lit. f DSGVO serves as the legal basis for the processing. processing.
III.) Data deletion and storage period
The personal data of the data subject shall be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may be stored if this is required by the European or national legislator in legislator in regulations, laws or other provisions under Union law to which the regulations to which the responsible party is subject. A Blocking or deletion of data also takes place if a storage period prescribed by the period prescribed by the aforementioned norms expires, unless there is a necessity for the further storage of the data for the conclusion or conclusion or performance of a contract.
4. rights of the data subject
If personal data is processed by you, you are a data subject in the sense of the DSGVO and you have the following rights vis-à-vis the Responsible Party:
I.) The right to information (Art. 15 DSGVO)
You have the right to request confirmation from us as to whether or not personal data personal data concerning you are being processed.
- If this is the case, you have the right to be informed about this data and to receive the following information:
- Purposes of processing
- Categories of personal data
- Recipients or categories of recipients
- Intended storage period or the criteria for determining this period
- The existence of the rights of rectification, erasure or restriction or objection
- Right of appeal to the competent supervisory authority
- If applicable, origin of the data (if collected from a third party)
- If applicable, existence of automated decision-making, including profiling Profiling with meaningful information about the logic involved, the scope and the Scope and the expected effects
- If applicable, transfer of personal data to a third country or an international organization
II.) Right to rectification (Art. 16 DSGVO)
If your personal data is inaccurate or incomplete, you have the right to request right to request that the personal data be corrected or supplemented without delay. personal data without delay.
III.) Right to restriction of processing (Art. 18 DSGVO)
Provided that one of the following conditions is met, you have the right to to demand a restriction of the processing of your personal data demand:
- You dispute the accuracy of your personal data, and this for for a period of time that allows us to verify the accuracy of the personal data. to verify the accuracy of the personal data.
- In the context of unlawful processing, you object to the erasure of the personal data and instead request the restriction of the use of the personal data. use of the personal data.
- We no longer need your personal data for the purposes of the processing no longer need your personal data for the purposes of processing, but you need your personal data to assertion, exercise or defense of your legal claims or
- after you have lodged an objection against the processing, for the for the duration of the examination whether our legitimate reasons outweigh your reasons. outweigh.
IV.) Right to erasure ("right to be forgotten") (Art. 17 DSGVO)
If one of the following reasons applies, you have the right to request the immediate deletion of your personal data:
- Your data is no longer necessary for the processing purposes for which it was originally they were originally collected.
- You revoke your consent and there is no other legal basis for the processing. legal basis for the processing.
- You object to the processing and there are no overriding legitimate grounds for the processing exist or you object objection pursuant to Art. 21 (2) DSGVO.
- Your personal data is processed unlawfully.
- Erasure is necessary for compliance with a legal obligation under Union law or the law of the member state to which we are subject, required.
- The personal data was collected in relation to services offered by the Information Society pursuant to Art. 8 (1) DSGVO.
Please note that the above grounds do not apply insofar as the processing is is necessary:
- To exercise the right to freedom of expression and information;
- For compliance with a legal obligation or for the performance of a task task that is in the public interest and to which we are subject.
- For reasons of public interest in the field of public Health.
- For archival purposes in the public interest, scientific or historical research purposes, or for statistical purposes.
- For the assertion, exercise or defense of legal claims.
V.) Right to information
If you have asserted the right to rectification, erasure or restriction of the processing, the controller is obliged to inform all recipients to whom the personal data obliged to inform all recipients to whom the personal data concerning you have been disclosed of this correction. personal data have been disclosed, of this rectification or erasure of the data or the restriction of processing, unless this proves impossible or involves a disproportionate effort. impossible or involves a disproportionate effort. You the controller the right to be informed about these recipients. to be informed about these recipients.
VI.) Right to data portability (Art. 20 DSGVO)
You have the right to receive your personal data in a structured, structured, common and machine-readable format, or to request the Request the transfer to another responsible party.
VII.) Right to object to certain data processing (Art. 21 DSGVO)
You have the right to object on grounds relating to your particular situation at any time against the processing of personal data relating to you personal data that is processed on the basis of Art. 6 para. 1 p. 1 lit. e or f DSGVO, to object to the processing. This also applies to profiling based on these Provisions based profiling. If the personal data concerning you are personal data is processed in order to carry out direct advertising, you have the right to object at any time to the processing of personal data concerning you for the purpose of such personal data for the purposes of such advertising; this also applies to profiling, insofar as it is also to profiling, insofar as it is connected with such direct advertising. stands.
VIII.) Right to revoke the declaration of consent under data protection law
You have the right to revoke your declaration of consent under data protection law at any time. By revoking the consent, the legality of the the lawfulness of the processing carried out on the basis of the consent processing carried out on the basis of the consent until the revocation.
IX.) Automated decision in individual cases including profiling
You have the right not to be subjected to a decision based exclusively on automated processing - including profiling - which produces legal effects vis-à-vis you or which which produces legal effects against you or similarly significantly affects you. significantly impairs you in a similar way. This does not apply if the decision is necessary for the conclusion or performance of a contract between you and the you and the responsible party, on the basis of legal provisions of the Union or the Member States to which the the controller is subject to, and these legal provisions provide for appropriate measures to safeguard your rights and freedoms as well as your legitimate interests or with your express consent. takes place.
However, these decisions may not be based on special categories personal data pursuant to Art. 9 (1) DSGVO, unless Art. 9 Paragraph 2 lit. a or b DSGVO applies and appropriate measures have been taken to protect the rights and freedoms as well as your legitimate interests have been taken. With regard to the cases mentioned in a. and c., the controller shall take appropriate measures to safeguard the rights and freedoms as well as your legitimate interests, including at least the right to object to the involvement of a person on the part of the controller, to express his or her own position and to contest the decision.
X.) Right to complain to a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the judicial remedy, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of personal data concerning you is in breach of the personal data violates the GDPR. The supervisory authority to which which the complaint has been lodged shall inform the complainant of the the status and outcome of the complaint, including the possibility of of a judicial remedy pursuant to Article 78 of the GDPR. A list of the local supervisory authorities in Germany, can be found on the website of the of the Federal Commissioner for Data Protection at the following link: https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html
5. provision of the website and creation of log files
I.) Description and scope of data processing
Each time our website is accessed, our system automatically collects
data and information from the computer system of the calling computer.
The following data is collected:
- Information about the browser type and the version used.
- The operating system of the user
- The user's Internet service provider
- The IP address of the user
- The date and time of access
- Websites from which the user's system accesses our website
- Web pages that are accessed by the user's system via our website
This data is stored in the log files of our system. A storage of this data with other personal data of the user does not take place. user does not take place.
II.) Purpose of the data processing
The temporary storage of the IP address by the system is necessary, to enable delivery of the website to the user's computer. For this purpose, the user's IP address must be stored for the duration of the session. remain.
The storage in log files is done to ensure the functionality of the website. website. In addition, the data serves us to optimize the website and to to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context. does not take place.
These purposes also constitute our legitimate interest in the data processing according to Art. 6 para. 1 p. 1 lit. f DSGVO.
III.) Legal basis for data processing
The legal basis for the temporary storage of the data and the log files is Art. 6 para. 1 p. 1 lit. f DSGVO.
IV.) Duration of storage
The data will be deleted as soon as they are no longer required to achieve the purpose of their collection. are no longer required for the purpose of their collection. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended. is ended.
In the case of storage of data in log files, this is the case after seven days at the latest. days at the latest. Storage beyond this period is possible. In this In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling assignment of the calling client is no longer possible.
V.) Possibility of objection
The collection of data to provide the website and the storage of the data in logfiles is data in log files is absolutely necessary for the operation of the website. necessary. The user can object to this. Whether the objection successful, is to be determined in the context of a balancing of interests.
6. use of cookies
I.) Description and scope of data processing
When you visit our website, we use technical aids for
various functions, in particular cookies, which can be stored on your end
can be stored. When you call up our website and at any time
later, you can choose whether you want to allow cookies to be set in general or which
individual additional functions you would like to select. You can make changes
in your browser settings or via our Consent Manager.
Cookies are text files or information in a database, which are stored on your
hard drive and assigned to the browser you are using, so that the
browser you are using, so that the party setting the cookie can obtain certain
information to the entity setting the cookie. Below we describe the types of cookies we
use: We use technically necessary cookies, which are required for the
technical structure of the website. Without these cookies
website cannot be displayed (completely correctly) or the support functions are not
support functions are not possible.
The following data is stored and transmitted by the
technically necessary cookies are stored and transmitted:
- Session ID
- Cookie settings
In addition, we use cookies on our website that enable an analysis of the
of the surfing behavior of the users.
In this way
the following data can be transmitted:
- Use of website functions
The user data collected in this way are pseudonymized by technical pseudonymized by technical precautions. Therefore, an assignment of the data to the calling user is no longer possible without the inclusion of additional information. possible. The data is not stored together with other personal personal data of the user.
II.) Purpose of the data processing
The purpose of the use of technically necessary cookies is to ensure the functionality
of our website. Some functions of our website
cannot be offered without the use of cookies. For these it is
necessary that the browser is recognized even after a page change.
is recognized.
For the following applications we need the technically necessary
cookies:
- Shopping cart
- Functionality of the website
- Cookie - settings
III.) Legal basis for data processing
For the storage of information in the end user's terminal equipment and/or access to information already stored in the end user's terminal equipment the provisions of the Telecommunications Telecommunications Telemedia Data Protection Act (TTDSG) are relevant. If the setting and reading of cookies is technically necessary, this is done, to ensure the functionality of our website. In this case the storage of and access to cookies on your terminal equipment is based terminal equipment on the basis of § 25 para. 2 no. 2 TTDSG. This storage and access to the information in your terminal equipment serves to facilitate your to make it easier for you to use our website and to offer you our services as you services as requested by you. Some functions of our website do not work without the use of these cookies and could therefore not be not be offered. The cookies are generally deleted after the end of the session. session (e.g. logging out or closing the browser) or after the expiry of a predefined expiration of a specified duration. Information about deviating storage periods for cookies can be found in the following sections of this privacy policy.
IV.) Duration of storage, possibility of objection and removal
The user has the possibility at any time to revoke his consent to the processing to revoke his consent to the processing of personal data. Cookies are stored on the user's user's computer and are transmitted from it to our site. Therefore, you You as a user also have full control over the use of cookies. Through change the settings in your Internet browser, you can disable or restrict the disable or restrict the transmission of cookies. Already stored Cookies can be deleted at any time. This can also be done automatically. be done. If cookies are deactivated for our website, it may may no longer be able to fully use all functions of the website. be used.
The transmission of Flash cookies cannot be prevented via the settings of the browser settings, but by changing the settings of the Flash Player. settings.
If you are using a Safari browser version 12.1 or higher, cookies are automatically deleted after automatically deleted after seven days. This also applies to opt-out cookies, which are set to set to prevent tracking measures.
7. webshop
We offer a webshop on our website. For this we use a specially developed webshop software.
The website and the webshop are hosted on our own servers. Third parties do not get access to server log files.
The servers automatically collect and store information in so-called server log files, which your browser automatically transmits when you visit the website. transmitted when you visit the website. The information stored is:
- Browser type and browser version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Date and time of server request
- IP address
A consolidation of this data with other data sources is not undertaken. The collection of this data is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the technically error-free presentation and optimization of his website - for this for this purpose, the server log files must be collected. The location of the server of the website is geographically located in Germany.
8. order in the webshop
I.) Description and scope of data processing
We offer our customers the possibility to design their own motifs and texts online and to and to order them as adhesive foil. For this purpose we receive after completion personal data that we need for the processing of the order. the order. For the processing of contracts necessary mandatory data are marked separately, other information that we need by uploading uploading photos or contact details, which are to be printed on the ordered adhesive foil to be printed on the ordered adhesive foil, are voluntary. The personal data, which printed on the adhesive foil may be forwarded to external service providers such as graphic designers. All other personal data will not be not transmitted to external service providers.
II.) Purpose of the data processing
The transmission of the personal data provided by you voluntarily, serves the the processing of the contract and the creation of the product, if you purchase an you purchase an adhesive film.
III.) Legal basis for data processing
The legal basis for data processing is Art. 6 para. 1 p. 1 lit. b DSGVO, as the processing of the data is necessary for the execution of the concluded purchase contract is necessary.
IV.) Duration of storage
Graphics / photos that you upload, so that this is printed on the adhesive foil printed, we delete after the expiry of the statutory storage obligations (refund / warranty reasons).
All payment data and data on any chargebacks that may occur will only be stored as long as they are required for the processing of payments and a possible processing of return debit notes and the collection of receivables as well as for combating and for combating misuse.
Furthermore, the payment data may be stored beyond this if and as long as this is necessary data may be stored if and as long as this is necessary to comply with legal retention periods or for the prosecution of a specific case of misuse. is necessary.
Your personal data will be deleted upon expiry of the retention obligations, i.e. after 10 years at the latest.
9. payment options
I.) Description and scope of data processing
We offer our customers various payment options for processing of their orders. Depending on the payment option, we forward customers to the the platform of the corresponding payment service provider. After completion of the the payment process, we receive the payment data of the customer from the payment payment service providers or our house bank and process them in our systems for the purpose of systems for the purposes of invoicing and accounting.
Payment via Amazon Pay
There is the possibility of the payment process with the payment service provider AmazonPay to process the payment. AmazonPay makes it possible to make online payments to third parties third parties by using the payment and shipping information stored in your Amazon account. shipping information stored in your Amazon account.
The European operating company of AmazonPay is Amazon Payments Europe s.c.a., 38 avenue J.F. Kennedy, L-1855 Luxembourg. If you already have have an Amazon.de customer account, you can immediately start paying with the payment method - either by direct debit or by credit card. For this a login to your Amazon account is required.
More information and your order overview for payment via AmazonPay can be found at https://pays.amazon.de. When paying via Amazon Pay all personal data provided to or collected by Amazon Pay will be used primarily by Amazon Pays s.c.a. and secondarily by Amazon EU. Pay is collected primarily by Amazon Pays s.c.a. and secondarily by Amazon EU SARL, Amazon Services Europe SARL and Amazon Media EU SARL, all three located at at 5, Rue Plaetis L 2338, Luxembourg, are processed. For more information about processing of your data by Amazon in the context of AmazonPay can be found in the the privacy policy of Amazon Pay at:https://pay.amazon.com/en/help/201751600
Payment by credit card
It is possible to complete the payment process by credit card.
If you have chosen payment by credit card, payment data will be passed to payment service providers for payment processing. All payment service providers comply with the requirements of the "Payment Card Industry (PCI) Data Security Standards" and have been certified by an independent PCI Qualified Security Assessor.
Within the scope of payment by credit card, the following data is regularly transmitted transmitted:
- Purchase amount
- Date and time of purchase
- First name and surname
- Address
- Email address
- Credit card number
- Credit card expiration date
- Security code (CVC)
- IP address
- Phone number / mobile phone number
Payment data will be passed on to the following payment service providers:
- Adyen N.V., Simon Carmiggeltstraat 6-50, 1011 DJ Amsterdam, The Netherlands.
For more information about the privacy policy and the revocation and cancellation options vis-à-vis the payment service providers can be found here: https://www.adyen.com/de_DE/legal/terms-and-conditions
Payment in advance
If you have chosen payment in advance, no data will be processed by our side processed except the data transmitted by your bank. These are only used to verify the receipt of payment.
II.) Purpose of the data processing
The transmission of payment data to payment service providers serves the purpose of payment, e.g. if you purchase a product and/or make use of a service. take advantage of a service.
III.) Legal basis for data processing
The legal basis for data processing is Art. 6 para. 1 p. 1 lit. b DSGVO, as the processing of the data is necessary for the execution of the concluded purchase contract is necessary.
IV.) Duration of storage
All payment data as well as data on any chargebacks that may occur will only be will only be stored as long as they are necessary for the processing of payments and a possible processing of returned direct debits and the collection of receivables as well as for combating and for combating misuse.
Furthermore, the payment data may be stored beyond this if and as long as this is necessary data may be stored if and as long as this is necessary to comply with legal retention periods or for the prosecution of a specific case of misuse. is necessary.
Your personal data will be deleted upon expiry of the retention obligations, i.e. after 10 years at the latest.
V.) Discontinuation of the legal basis
The payment service provider used remains entitled to process your payment data payment data, if and as long as this is necessary for the contractual payment is necessary. If necessary, there are also legal retention periods.
10. shipping service provider
I.) Description and scope of data processing
If you order products or services on our website, for the delivery of which a shipping for the delivery of which a shipping service provider is used, you will receive your your email address your order and shipping confirmation and, depending on the shipping the respective shipping service provider, the notification that your shipment has arrived and/or the notification of the parcel announcement as well as possible possible delivery options.
The data will be transmitted to the following service providers:
- DHL Paket GmbH, Sträßchensweg 10, 53113 Bonn, Germany.
- General Logistics Systems Germany GmbH & Co. OHG, GLS Germany-Straße 1 - 7, DE-36286 Neuenstein
- United Parcel Service Germany S.à r.l. & Co. OHG, Görlitzer Straße 1, 41460 Neuss, Germany
The transmitted data are regularly:
- Name
- Address
II.) Purpose of the data processing
The purpose of the processing of the personal data and the transmission of address data to shipping service providers serves the processing of the concluded purchase contract and delivery of the goods.
III.) Legal basis for data processing
The legal basis for the transmission of your address data (first name, surname, address) to the respective shipping service provider is Art. 6 para. 1 S. 1 lit. b DSGVO, as the processing of the data is necessary for the processing of the concluded purchase contract is necessary.
IV.) Duration of storage
The transmitted data will be deleted at the respective shipping service provider deleted when the package could be delivered.
V.) Possibility of objection and elimination
The notification service provided by the shipping service provider may be terminated by the user concerned at any time. For this purpose there is an opt-out link in every email.
11. email contact
I.) Description and scope of data processing
On our website it is possible to contact us via the provided email address is possible. In this case, the user's personal data transmitted with the e-mail personal data of the user will be stored.
The data will be used exclusively for the processing of the conversation. used.
In connection with the data processing, the data will be forwarded to to the service provider: Zendesk Inc.
Part of the order processing agreement with Zendesk are so-called EU standard data protection clauses (Art. 46 para. 2 p. 1 lit. c DSGVO). These are as an appropriate guarantee to protect the transfer and processing of of personal data outside the EU.
For more information about Zendesk's processing of data, please click here: https://www.zendesk.de/company/agreements-and-terms/privacy-notice/
II.) Purpose of the data processing
In the case of contacting us by email, this also constitutes the necessary legitimate interest in the processing of the data.
III.) Legal basis for data processing
The legal basis for processing the data transmitted in the course of sending an email is of an email is Art. 6 para. 1 lit. f DSGVO. Our legitimate interest is to optimally answer your request that you send by email. in the best possible way. If the email contact is aimed at the conclusion of a contract, then the additional legal basis for the processing is Art. 6 para. 1 lit. b DSGVO.
IV.) Duration of storage
The data will be deleted as soon as they are no longer required to achieve the purpose for which they were purpose of their collection and legal retention periods no longer require the retention of the data. no longer require the retention of the data. For the personal data that sent by email, this is the case when the respective conversation with the conversation with the user has ended. The conversation is ended circumstances indicate that the matter in question has been conclusively clarified. has been conclusively clarified.
V.) Possibility of objection
If the user contacts us by e-mail, he can object to the storage of his personal data at any time. his personal data at any time. In such a case the conversation cannot be continued.
Currently none since the contact is voluntary and purpose-bound and is directed only to customers or interested parties; A deletion according to DSGVO can be made by e-mail take place
All personal data stored in the course of contacting us will be deleted in this case. will be deleted in this case.
12. contact form
I.) Description and scope of data processing
On our website there is a contact form which can be used for electronic can be used for electronic contact. If a user makes use of this possibility, the data entered in the input mask is transmitted to us and stored. and stored.
At the time of sending the message, the following data is stored:
- Email address
- IP address of the calling computer
- Date and time of sending the form
- Order number & zip code if it is an existing order for verification;
- Other data submitted by the user as a message
Alternatively, it is possible to contact us via the provided email address is possible. In this case, the user's personal data transmitted with the email personal data of the user will be stored.
The data will be used exclusively for the processing of the conversation. used.
In connection with the data processing, the data will be forwarded to to the service provider: Zendesk Inc.
Part of the order processing agreement with Zendesk are so-called EU standard data protection clauses (Art. 46 para. 2 p. 1 lit. c DSGVO). These are as an appropriate guarantee to protect the transfer and processing of of personal data outside the EU.
For more information about Zendesk's processing of data, please click here: https://www.zendesk.de/company/agreements-and-terms/privacy-notice/
II.) Purpose of the data processing
The processing of the personal data from the input mask serves us solely for the processing of the contact. In the case of contact by email, this also constitutes the necessary legitimate interest in the processing of the data.
The other personal data processed during the sending process serve to prevent the serve to prevent misuse of the contact form and to ensure the security of our security of our information technology systems.
III.) Legal basis for data processing
The legal basis for the processing of the data transmitted in the course of sending a of a contact form is Art. 6 para. 1 p. 1 lit. f DSGVO. Our legitimate interest is to optimally respond to your request that you send to us via contact form to us in the best possible way. If the contact via the contact form is aimed at the conclusion of a contract, then the additional legal basis for the processing is Art. 6 para. 1 p. 1 lit. b DSGVO.
IV.) Duration of storage
The data will be deleted as soon as they are no longer required to achieve the purpose for which they were the purpose of their collection and legal retention periods no longer require the no longer require the retention of the data. For the personal data from the the input mask of the contact form and those sent by e-mail, this is the email, this is the case when the respective conversation with the user has ended. with the user has ended. The conversation is terminated when it can be inferred from the circumstances that the circumstances that the matter in question has been conclusively clarified.
V.) Possibility of objection
The user has the possibility at any time to revoke his consent to the processing of personal data. to revoke his consent to the processing of personal data. If the user contacts us by email contact with us, he can object to the storage of his personal data at any time. at any time. In such a case, the conversation cannot be continued. be continued.
All personal data stored in the course of contacting us will be deleted in this case. will be deleted in this case.
13. partner programs
Furthermore, we use the services of the following partner programs:
Belboon GmbH: Weinmeisterstraße 12-14, 10178
The controller has integrated components of Belboon on this website. integrated components of Belboon. Belboon is a German Affiliate network, which offers affiliate marketing. If you click on an ad provided with an affiliate link, Belboon will place a cookie for conversion tracking on your conversion tracking on your computer. The cookies serve the purpose of of correct billing within the framework of the affiliate program by recording the success of an advertising medium. Through the cookies it is recognized that you have clicked on the clicked on the ad and the origin of the order from the advertiser can be traced. be traced. In addition, Belboon uses so-called tracking pixels. Through these, information such as visitor traffic on the pages can be evaluated.
The information generated by cookies and tracking pixels about the use of this website use of this website (including the IP address) and the delivery of advertising formats is transmitted to a Belboon server and stored there. stored there. Among other things, Belboon can recognize that the affiliate link on on this website has been clicked. Belboon can pass this (anonymized) information to contractual partners under certain circumstances, however, data such as the IP address will not be merged with other stored data. data stored.
Insofar as legally required, we have your consent to the aforementioned your consent in accordance with Art. 6 Para. 1 lit. a DSGVO. You can revoke your consent at any time with effect for the future. revoke it in the future. If you want to block the evaluation of user behavior via cookies cookies, you can set your browser in such a way that you are informed about the about the setting of cookies and decide individually about their acceptance or decide individually about their acceptance or to exclude the acceptance of cookies for certain cases or generally. exclude.
be deleted via an Internet browser or other software programs.
Regarding the processing of your personal data by Instagram and the corresponding objection options, you can find more information here:
Belboon: https://www.belboon.com/en/ueber-uns/datenschutz/
Firstlead GmbH (Adcell): Rosenfelder Str. 15-16, 10315 Berlin.
The controller has integrated components of Adcell on this website. integrated components from Adcell. Adcell is a German Affiliate network, which offers affiliate marketing. When you click on an ad with an affiliate link, Adcell places a cookie on your computer for conversion tracking. conversion tracking on your computer. The cookies serve the purpose of of correct billing within the framework of the affiliate program by recording the success of an advertising medium. Through the cookies it is recognized that you have clicked on the clicked on the ad and the origin of the order from the advertiser can be traced. be traced. In addition, Adcell uses so-called tracking pixels. These allow information such as visitor traffic on the pages to be evaluated.
The information generated by cookies and tracking pixels about the use of this website use of this website (including the IP address) and the delivery of advertising advertising formats is transmitted to a server of Adcell and stored there. stored there. Among other things, Adcell can recognize that the affiliate link on on this website has been clicked. Adcell may share this (anonymized) information to contractual partners under certain circumstances, however, data such as the IP address will not be merged with other stored data. data stored.
Insofar as legally required, we have your consent to the aforementioned your consent in accordance with Art. 6 Para. 1 lit. a DSGVO. You can revoke your consent at any time with effect for the future. revoke it in the future. If you want to block the evaluation of user behavior via cookies cookies, you can set your browser in such a way that you are informed about the about the setting of cookies and decide individually about their acceptance or decide individually about their acceptance or to exclude the acceptance of cookies for certain cases or generally. exclude.
For the processing of your personal data by Adcell and the corresponding corresponding objection options, you can find more information here: https://www.adcell.de/agb#sector_6
14. rating portal
Trust Pilot Rating
We participate in the evaluation procedure of the provider Trustpilot A/S, Pilestræde 58, 5, 1112 Copenhagen, Denmark.
Trustpilot offers users the opportunity to rate our services. Users who have made use of our services are asked for their consent to the sending of the rating request. Provided that the users have given their consent (by clicking on a checkbox after completing the checkbox after completing the order), you will receive a evaluation request with a link to an evaluation page. In order to ensure that the users have actually used our services, we transmit the necessary data to Trustpilot with regard to the user and the service the user and the service used (this includes the name, the e-mail address e-mail address, and an order number as well as the order date). This data used solely to verify the authenticity and address of the user. used.
The legal basis for the processing of the user's data in the context of the evaluation procedure is consent pursuant to Art. 6 para. 1 lit. a. DSGVO.
In order to submit a rating, it is possible to open a customer account with Trustpilot is possible. In this case, the terms and conditions and privacy policy of Trustpilot apply. In order to maintain the neutrality and objectivity of the neutrality and objectivity of the ratings, we have no direct influence on the reviews and cannot delete them ourselves. For this purpose we ask users to to contact Trustpilot.
For more information about the processing of their data by Trustpilot as well as about their rights of objection and further data subject rights, users can obtain in the privacy policy of Trustpilot: https://de.legal.trustpilot.com/end-user-privacy-terms.
15. e-mail dispatch
Mandrill
We use Mandrill by Mailchimp of the provider The Rocket Science Group, LLC, 512 Means Street, Suite 404 Atlanta, GA 30318 United States.
Mandrill is used at the completion of the order to send you a confirmation of the order as well as possible payment reminders and other e-mails. In the process, we, or our hosting provider, process the following data data, contact data, content data, contract data, usage data, meta data and and communication data of customers. The legal basis for the data processing is Art. 6 para. 1 p. 1 lit. b DSGVO, because the processing of the data is necessary for the processing of the concluded purchase contract.
Part of the order processing contract with Mandrill are so-called EU standard data protection clauses (Art. 46 para. 2 p. 1 lit. c DSGVO). These are to be regarded as an appropriate guarantee for the protection of the transfer and processing of of personal data outside the EU.
For more information about Mandrill and Mandrill's data privacy practices, please see here:http://mailchimp.com/legal/privacy/
16 Content Delivery Networks
I.) Description and scope of data processing
We use on our website functions of the Content Delivery Network KeyCDN by proinity LLC, Reichenauweg 1, 8272 Ermatingen Switzerland. A Content Delivery Network (CDN) is a network of regionally distributed servers connected via the Internet. connected via the Internet, with which content - in particular large media files such as e.g. videos - are delivered. KeyCDN provides web optimization and security services, which we use to improve the load times of our website and to and to protect it from misuse. When you our website, a connection is established to the servers of proinity LLC servers, e.g. to retrieve content. Personal data may be stored in server data may be stored and evaluated in server log files, especially the activity of the user (especially which pages have been visited) and device and browser information (in particular, the IP address and the operating system).
Further information on the collection and storage of data by proinity LLC you can obtain here: https://www.keycdn.com/privacy
II.) Purpose of the data processing
The use of the functions serve the delivery and acceleration of online applications and content.
III.) Legal basis for data processing
The collection of this data is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website - for this purpose, the server the server log files are collected.
IV.) Duration of storage
Your personal information will be stored for as long as is necessary to fulfill the purposes described in this privacy policy or as required by or as required by law.
V.) Possibility of objection and removal
Information on opt-out and removal options vis-à-vis proinity LLC can be found at: https://www.keycdn.com/privacy
17. plugins used
We use plugins for various purposes. The plugins used are listed listed below:
Service | Provider | Third country transfer (country) | Purpose of data processing | Legal basis of data processing | Information on data protection and appropriate guarantees for third country transfer |
---|---|---|---|---|---|
Microsoft Advertising (formerly Bing Ads) | Microsoft Corporation | USA | Conversion Tracking | Art. 6 para. 1 p.1 lit. a DSGVO | https://privacy.microsoft.com/de-de/privacystatement https://www.microsoft.com/licensing/docs/view/Microsoft-Products-and-Services-Data-Protection-Addendum-DPA |
Google Ads | Google Inc. | USA | Conversion Tracking | Art. 6 para. 1 p.1 lit. a DSGVO | https://policies.google.com/privacy?gl=DE&hl=de |
Google Ads Remarketing | Google Ireland Ltd. | Ireland (USA) | Marketing / Tracking | Art. 6 para. 1 p.1 lit. a DSGVO | https://policies.google.com/privacy?gl=DE&hl=de https://business.safety.google/gdpr/ |
Google Tag Manager | Google Ireland Ltd. | Ireland (USA) | Tag configuration and integration of Google services | Art. 6 para. 1 p.1 lit. a DSGVO | https://policies.google.com/privacy?gl=DE&hl=de https://business.safety.google/gdpr/ |
*(no third country transfer), **(own hosting), ***(appropriateness decision)
I.) Duration of storage
Your personal information will be stored for as long as is necessary to fulfill the purposes described in this Privacy Policy or as required by law. or as required by law.
II.) Transfer to third countries
When using the plugins marked with third country transfer or USA. personal data may be transferred to servers in third countries outside the EU, such as the e.g. the USA, may be transferred. The legal basis for this transfer is consent according to Art. 6 para. 1 p. 1 lit. a DSGVO. The United States of America does not provide an adequate level of data protection on the basis of a Decision of the European Union. The essential risk of the transfer lies in the obligation of the plug-in providers to make user data accessible to American circumstances to make user data accessible to American authorities. With all providers there is currently an order processing contract with standard contractual clauses, to make the third-country transfer as data-protection-friendly and secure as possible. possible. Adjustments to the ECJ ruling of 16.07.2020 (Schrems II, Ref. C-311/18), including additional security precautions, are currently being currently striving for. A copy of the standard data protection clauses can be obtained by sending an informal email to us.
III.) Possibility of revocation
You have the right to revoke your declaration of consent under data protection law at any time. By revoking the consent, the legality of the the lawfulness of the processing that took place on the basis of the consent processing carried out on the basis of the consent until the revocation is not affected.
You can prevent the collection as well as the processing of your personal data by the respective providers by preventing the storage of cookies from third third-party cookies on your computer, by using the "Do Not Track" function of a supporting browser, deactivating the execution of script code in your browser or using a script blocker such as. NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. install in your browser.
IV.) Danger notice
Your personal data will also be transferred to the USA. For the USA there is no adequacy decision according to Art. 45 (3) DSGVO. We point out Please note that a data transfer without the existence of an adequacy adequacy decision involves certain risks, about which we may inform you below:Intelligence services of the USA take certain online identifiers online identifiers (such as IP addresses or unique identifiers) as a starting point for as a starting point for the surveillance of individuals. In particular in particular, it cannot be ruled out that these intelligence services have already information about you, with which the data transmitted here can be traced back to you. providers of electronic communications services headquartered in the U.S. are subject to monitoring. with headquarters in the USA are subject to surveillance by U.S. intelligence agencies pursuant to 50 U.S. Code § 1881a ("FISA 702"). Accordingly providers of electronic communications services headquartered in the United States have the authorities pursuant to 50 U.S. Code § 1881a to provide personal data without authorities pursuant to 50 U.S. Code § 1881a, without any possible Legal recourse. Even encryption of the data in the data centers of the provider of electronic communications services may not not provide adequate protection, as an electronic communications service provider may have communications service provider with respect to imported data that is in its custody or control, an electronic communications service provider has a direct obligation to grant access to it. obligation to provide access to or surrender it. Such obligation may expressly extend to the cryptographic cryptographic keys, without which the data cannot be read. The fact that this is not merely a "theoretical danger" is illustrated by the by the ECJ's judgment of July 16, 2020 (Case C 311/18, "Schrems-II").With Google we have concluded guarantees in the form of standard data protection clauses pursuant to Art. 46 para. 2 lit. c DSGVO. A copy of the standard data protection clauses can be requested be requested from us.