Privacy Policy - Etienne Dubach

This privacy policy informs you about the nature, scope and purpose of the processing of personal data (hereinafter referred to as “data”) within our online offering and the associated websites, functions and content as well as external online presences, such as our social media profiles (hereinafter collectively referred to as the “online offering”). With regard to the terminology used, such as “processing” or “controller”, we refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).

Based on Article 13 of the Swiss Federal Constitution and the data protection provisions of the Swiss Confederation (Data Protection Act, DPA), every person is entitled to protection of their privacy as well as protection against misuse of their personal data. We comply with these provisions. Personal data is treated as strictly confidential and is neither sold to third parties nor passed on.
In close cooperation with our hosting providers, we strive to protect the databases as well as possible against unauthorized access, loss, misuse or falsification.
When accessing our websites, the following data is stored in log files: IP address, date, time, browser request and general transmitted information about the operating system or browser. These usage data form the basis for statistical, anonymous evaluations, so that trends can be identified on the basis of which we can improve our offerings accordingly.

Below you will be informed about which type of data is collected and for what purpose it is collected:

Types of processed data:

Inventory data (e.g., names, addresses).
Contact data (e.g., e-mail, telephone numbers).
Content data (e.g., text entries, photographs, videos).
Usage data (e.g., visited websites, interest in content, access times).
Meta/communication data (e.g., device information, IP addresses).

Categories of affected persons

Visitors and users of the online offering (hereinafter we also collectively refer to the affected persons as “users”).

Purpose of processing

Provision of the online offering, its functions and content.
Answering contact requests and communication with users.
Security measures.
Reach measurement/marketing

Used terminology

“Personal data” is all information relating to an identified or identifiable natural person (hereinafter “data subject”); a natural person is considered identifiable who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

“Processing” is any operation or set of operations which is performed on personal data, whether or not by automated means. The term is broad and covers practically any handling of data.

“Pseudonymization” the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures that ensure that the personal data is not assigned to an identified or identifiable natural person.

“Profiling” any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning work performance, economic situation, health, personal preferences, interests, reliability, behavior, location or movements of that natural person.

The “controller” is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data.

“Processor” a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

Relevant legal bases

In accordance with Art. 13 GDPR, we inform you of the legal bases of our data processing. If the legal basis is not mentioned in the privacy policy, the following applies: The legal basis for obtaining consent is Art. 6 para. 1 lit. a and Art. 7 GDPR, the legal basis for processing for the fulfillment of our services and the performance of contractual measures as well as answering inquiries is Art. 6 para. 1 lit. b GDPR, the legal basis for processing for the fulfillment of our legal obligations is Art. 6 para. 1 lit. c GDPR, and the legal basis for processing to safeguard our legitimate interests is Art. 6 para. 1 lit. f GDPR. In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR serves as the legal basis.

Security measures

In accordance with Art. 32 GDPR, taking into account the state of the art, implementation costs and the nature, scope, circumstances and purposes of processing as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, we take appropriate technical and organizational measures to ensure a level of security appropriate to the risk.

The measures include in particular safeguarding the confidentiality, integrity and availability of data by controlling physical access to the data as well as access concerning them, input, disclosure, ensuring availability and their separation. Furthermore, we have established procedures that ensure the exercise of data subject rights, deletion of data and response to threats to the data. Furthermore, we take the protection of personal data into account already in the development or selection of hardware, software and procedures, in accordance with the principle of data protection by design and by default (Art. 25 GDPR).

Cooperation with processors and third parties

If, in the course of our processing, we disclose data to other persons and companies (processors or third parties), transmit it to them or otherwise grant them access to the data, this is only done on the basis of a legal permission (e.g. if a transfer of data to third parties, such as payment service providers, is required pursuant to Art. 6 para. 1 lit. b GDPR for the performance of a contract), you have consented, a legal obligation provides for it, or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).

If we commission third parties with the processing of data on the basis of a so-called “data processing agreement”, this is done on the basis of Art. 28 GDPR.

Transfers to third countries

If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if this happens in the context of using services of third parties or disclosure or transfer of data to third parties, this is only done if it is necessary for the fulfillment of our (pre-)contractual obligations, on the basis of your consent, due to a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we process or have the data processed in a third country only if the special requirements of Art. 44 et seq. GDPR are met. This means that processing takes place, for example, on the basis of special guarantees, such as the officially recognized determination of a level of data protection corresponding to that of the EU (e.g. for the USA through the “Privacy Shield”) or compliance with officially recognized special contractual obligations (so-called “standard contractual clauses”).

Rights of data subjects

You have the right to request confirmation as to whether data concerned is being processed and to information about this data as well as to further information and a copy of the data in accordance with Art. 15 GDPR.

In accordance with Art. 16 GDPR, you have the right to request the completion of the data concerning you or the correction of incorrect data concerning you.

In accordance with Art. 17 GDPR, you have the right to request that data concerned be deleted immediately or, alternatively, in accordance with Art. 18 GDPR to request a restriction of the processing of the data.

You have the right to request to receive the data concerning you that you have provided to us in accordance with Art. 20 GDPR and to request its transfer to other controllers.

You also have the right under Art. 77 GDPR to lodge a complaint with the competent supervisory authority.

Right of withdrawal

You have the right to withdraw consents given in accordance with Art. 7 para. 3 GDPR with effect for the future.

Right to object

You can object to the future processing of the data concerning you in accordance with Art. 21 GDPR at any time. The objection can in particular be made against processing for purposes of direct advertising.

Cookies and right to object to direct advertising

“Cookies” are small files that are stored on users’ computers. Different information can be stored within the cookies. A cookie primarily serves to store the information about a user (or the device on which the cookie is stored) during or even after his visit within an online offering. Temporary cookies, or “session cookies” or “transient cookies”, are cookies that are deleted after a user leaves an online offering and closes his browser. In such a cookie, for example, the contents of a shopping cart in an online shop or a login status can be stored. “Permanent” or “persistent” cookies are cookies that remain stored even after the browser is closed. For example, the login status can be stored if users visit them after several days. Likewise, the interests of users can be stored in such a cookie, which are used for reach measurement or marketing purposes. “Third-party cookies” are cookies offered by providers other than the controller operating the online offering (otherwise, if they are only its cookies, they are referred to as “first-party cookies”).

We may use temporary and permanent cookies and clarify this in the context of our privacy policy.

If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in their browser’s system settings. Stored cookies can be deleted in the browser’s system settings. The exclusion of cookies may lead to functional restrictions of this online offering.

A general objection to the use of cookies used for online marketing purposes can be declared for a large number of services, especially in the case of tracking, via the US page http://www.aboutads.info/choices/ or the EU page http://www.youronlinechoices.com/. Furthermore, the storage of cookies can be achieved by switching them off in the browser settings. Please note that then not all functions of this online offering may be usable.

Deletion of data

The data processed by us is deleted or restricted in its processing in accordance with Art. 17 and 18 GDPR. Unless expressly stated within this privacy policy, the data stored by us is deleted as soon as it is no longer required for its purpose and no legal retention obligations prevent deletion. If the data is not deleted because it is required for other and legally permissible purposes, its processing is restricted. This means the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax reasons.

According to statutory provisions in Germany, retention is in particular for 10 years according to §§ 147 para. 1 AO, 257 para. 1 no. 1 and 4, para. 4 HGB (books, records, management reports, accounting documents, commercial books, documents relevant for taxation, etc.) and 6 years according to § 257 para. 1 no. 2 and 3, para. 4 HGB (commercial letters).

According to statutory provisions in Austria, retention is in particular for 7 years according to § 132 para. 1 BAO (accounting documents, vouchers/invoices, accounts, vouchers, business papers, statement of income and expenses, etc.), for 22 years in connection with real estate and for 10 years for documents in connection with electronically provided services, telecommunications, broadcasting and television services provided to non-entrepreneurs in EU member states and for which the Mini-One-Stop-Shop (MOSS) is used.

Business-related processing

In addition, we process

contract data (e.g., subject matter of the contract, term, customer category).
payment data (e.g., bank details, payment history)
from our customers, interested parties and business partners for the purpose of providing contractual services, service and customer care, marketing, advertising and market research.

Order processing in the online shop and customer account

We process the data of our customers in the context of the ordering processes in our online shop in order to enable them to select and order the selected products and services as well as their payment and delivery or execution.

The processed data includes inventory data, communication data, contract data, payment data and the persons affected by the processing include our customers, interested parties and other business partners. The processing is carried out for the purpose of providing contractual services in the context of operating an online shop, billing, delivery and customer services. Here we use session cookies for storing the shopping cart content and permanent cookies for storing the login status.

The processing is carried out on the basis of Art. 6 para. 1 lit. b (execution of ordering processes) and c (legally required archiving) GDPR. The information marked as required is necessary for the establishment and fulfillment of the contract. We disclose the data to third parties only in the context of delivery, payment or in the context of legal permissions and obligations towards legal advisors and authorities. The data is processed in third countries only if this is necessary for the fulfillment of the contract (e.g. at the customer’s request for delivery or payment).

Users can optionally create a user account, in which they can in particular view their orders. In the context of registration, the required mandatory information is communicated to the users. User accounts are not public and cannot be indexed by search engines. If users have terminated their user account, their data relating to the user account will be deleted, subject to retention for commercial or tax reasons in accordance with Art. 6 para. 1 lit. c GDPR being necessary. Information in the customer account remains until it is deleted with subsequent archiving in the event of a legal obligation. It is the responsibility of the users to secure their data after termination before the end of the contract.

When registering and logging in again as well as using our online services, we store the IP address and the time of the respective user action. The storage is carried out on the basis of our legitimate interests as well as the users’ interest in protection against misuse and other unauthorized use. This data is generally not passed on to third parties, unless it is necessary to pursue our claims or there is a legal obligation to do so pursuant to Art. 6 para. 1 lit. c GDPR.

Deletion takes place after the expiry of statutory warranty and comparable obligations, the necessity of retaining the data is reviewed every three years; in the case of statutory archiving obligations, deletion takes place after their expiry (end of commercial law (6 years) and tax law (10 years) retention obligation).

We process the data of our customers within the scope of our contractual services, which include conceptual and strategic consulting, campaign planning, software and design development/consulting or maintenance, implementation of campaigns and processes/handling, server administration, data analysis/consulting services and training services.

In doing so, we process inventory data (e.g., customer master data, such as names or addresses), contact data (e.g., e-mail, telephone numbers), content data (e.g., text entries, photographs, videos), contract data (e.g., subject matter of the contract, term), payment data (e.g., bank details, payment history), usage and meta data (e.g. as part of the evaluation and success measurement of marketing measures). We generally do not process special categories of personal data unless these are part of commissioned processing. The data subjects include our customers, interested parties and their customers, users, website visitors or employees as well as third parties. The purpose of processing is the provision of contractual services, billing and our customer service. The legal bases of processing result from Art. 6 para. 1 lit. b GDPR (contractual services), Art. 6 para. 1 lit. f GDPR (analysis, statistics, optimization, security measures). We process data that is necessary for the establishment and fulfillment of the contractual services and point out the necessity of providing it. Disclosure to external parties only takes place if it is required within the scope of an order. When processing the data provided to us within the scope of an order, we act in accordance with the instructions of the clients and the legal requirements of order processing pursuant to Art. 28 GDPR and do not process the data for any purposes other than those commissioned.

We delete the data after the expiry of statutory warranty and comparable obligations. The necessity of retaining the data is reviewed every three years; in the case of statutory archiving obligations, deletion takes place after their expiry (6 years, pursuant to § 257 para. 1 HGB, 10 years, pursuant to § 147 para. 1 AO). In the case of data disclosed to us by the client within the scope of an order, we delete the data in accordance with the specifications of the order, generally after the end of the order.

Therapeutic services and coaching

We process the data of our clients and interested parties and other clients or contractual partners (uniformly referred to as “clients”) in accordance with Art. 6 para. 1 lit. b) GDPR in order to provide our contractual or pre-contractual services to them. The data processed, the type, scope and purpose and the necessity of their processing are determined by the underlying contractual relationship. The processed data generally includes inventory and master data of the clients (e.g., name, address, etc.), as well as contact data (e.g., e-mail address, telephone, etc.), contract data (e.g., services used, fees, names of contact persons, etc.) and payment data (e.g., bank details, payment history, etc.).

In the context of our services, we may also process special categories of data pursuant to Art. 9 para. 1 GDPR, in particular information about the health of the clients, if applicable with reference to their sex life or sexual orientation, ethnic origin or religious or ideological beliefs. For this purpose, if required, we obtain an explicit consent of the clients pursuant to Art. 6 para. 1 lit. a., Art. 7, Art. 9 para. 2 lit. a GDPR and otherwise process the special categories of data for purposes of health care on the basis of Art. 9 para. 2 lit h GDPR, § 22 para. 1 no. 1 b. BDSG.

If necessary for the fulfillment of the contract or required by law, we disclose or transmit the data of the clients in the context of communication with other specialists, to third parties necessarily or typically involved in the fulfillment of the contract, such as billing agencies or comparable service providers, insofar as this serves the provision of our services pursuant to Art. 6 para. 1 lit b GDPR, is prescribed by law pursuant to Art. 6 para. 1 lit c GDPR, serves our interests or those of the clients in an efficient and cost-effective health care as legitimate interest pursuant to Art. 6 para. 1 lit f GDPR or is necessary pursuant to Art. 6 para. 1 lit d GDPR to protect vital interests of the clients or another natural person or within the scope of consent pursuant to Art. 6 para. 1 lit. a., Art. 7 GDPR.

The deletion of the data takes place when the data is no longer necessary for the fulfillment of contractual or legal duties of care and dealing with any warranty and comparable obligations, whereby the necessity of retaining the data is reviewed every three years; otherwise the statutory retention obligations apply.

External payment service providers

We use external payment service providers via whose platforms users and we can carry out payment transactions (e.g., each with link to the privacy policy, Paypal (https://www.paypal.com/de/webapps/mpp/ua/privacy-full), Klarna (https://www.klarna.com/de/datenschutz/), Skrill (https://www.skrill.com/de/fusszeile/datenschutzrichtlinie/), Giropay (https://www.giropay.de/rechtliches/datenschutz-agb/), Visa (https://www.visa.de/datenschutz), Mastercard (https://www.mastercard.de/de-de/datenschutz.html), American Express (https://www.americanexpress.com/de/content/privacy-policy-statement.html)

In the context of fulfilling contracts, we use the payment service providers on the basis of Art. 6 para. 1 lit. b GDPR. Otherwise, we use external payment service providers on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR in order to offer our users effective and secure payment options.

The data processed by the payment service providers includes inventory data, such as name and address, bank data, such as account numbers or credit card numbers, passwords, TANs and checksums as well as contract, amount and recipient-related information. The information is required to carry out the transactions. However, the entered data is only processed by the payment service providers and stored by them. This means that we do not receive any account- or credit card-related information, but only information with confirmation or negative information about the payment. Under certain circumstances, the data may be transmitted by the payment service providers to credit agencies. This transmission is intended for identity and creditworthiness checks. For this purpose, we refer to the terms and conditions and data protection notices of the payment service providers.

For payment transactions, the terms and conditions and data protection notices of the respective payment service providers apply, which can be accessed within the respective websites or transaction applications. We also refer to these for further information and for asserting revocation, information and other data subject rights.

Administration, financial accounting, office organization, contact management

We process data within the scope of administrative tasks as well as organization of our business, financial accounting and compliance with legal obligations, such as archiving. In doing so, we process the same data that we process in the context of providing our contractual services. The processing bases are Art. 6 para. 1 lit. c GDPR, Art. 6 para. 1 lit. f GDPR. Customers, interested parties, business partners and website visitors are affected by the processing. The purpose and our interest in processing lies in administration, financial accounting, office organization, archiving of data, i.e. tasks that serve to maintain our business activities, perform our tasks and provide our services. The deletion of the data with regard to contractual services and contractual communication corresponds to the information mentioned for these processing activities.

We disclose or transmit data to the tax authorities, consultants, such as tax advisors or auditors, as well as other fee offices and payment service providers.

Furthermore, on the basis of our business interests, we store information about suppliers, organizers and other business partners, e.g. for the purpose of later contact. This predominantly company-related data is generally stored permanently.

Our online offering uses the service “Akismet”, which is offered by Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, USA. The use is based on our legitimate interests within the meaning of Art. 6 para. 1 lit. f) GDPR. With the help of this service, comments by real people are distinguished from spam comments. For this purpose, all comment information is sent to a server in the USA, where it is analyzed and stored for comparison purposes for four days. If a comment has been classified as spam, the data is stored beyond this period. This information includes the entered name, the e-mail address, the IP address, the comment content, the referrer, information about the used browser as well as the computer system and the time of the entry.

More information about the collection and use of data by Akismet can be found in Automattic’s privacy notices: https://automattic.com/privacy/.

Users are welcome to use pseudonyms or refrain from entering their name or e-mail address. Users can prevent the transfer of data completely by not using our comment system. That would be a pity, but unfortunately we see no alternatives that work just as effectively.

Contacto

When contacting us (e.g. via contact form, e-mail, telephone or via social media), the user’s information is processed to handle the contact request and its processing pursuant to Art. 6 para. 1 lit. b. (in the context of contractual/pre-contractual relationships), Art. 6 para. 1 lit. f. (other inquiries) GDPR. The information of the users may be stored in a customer relationship management system (“CRM system”) or comparable inquiry organization.

We delete the inquiries if they are no longer necessary. We review the necessity every two years; furthermore, statutory archiving obligations apply.

Newsletter – Mailchimp

Newsletters are sent using the shipping service provider “MailChimp”, a newsletter shipping platform of the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. You can view the privacy provisions of the shipping service provider here: https://mailchimp.com/legal/privacy/. The Rocket Science Group LLC d/b/a MailChimp is certified under the Privacy Shield agreement and thus offers a guarantee to comply with the European data protection level (https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&status=Active). The shipping service provider is used on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR and a data processing agreement pursuant to Art. 28 para. 3 sentence 1 GDPR.

The shipping service provider may use the data of the recipients in pseudonymous form, i.e. without assigning it to a user, to optimize or improve its own services, e.g. to technically optimize the shipping and presentation of the newsletters or for statistical purposes. However, the shipping service provider does not use the data of our newsletter recipients to write to them itself or to pass the data on to third parties.

Google Analytics

On the basis of our legitimate interests (i.e. interest in analyzing, optimizing and operating our online offering economically within the meaning of Art. 6 para. 1 lit. f GDPR), we use Google Analytics, a web analysis service of Google LLC (“Google”). Google uses cookies. The information generated by the cookie about the use of the online offering by the users is generally transferred to a server of Google in the USA and stored there.

Google is certified under the Privacy Shield agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

Google will use this information on our behalf to evaluate the use of our online offering by users, to compile reports on activities within this online offering and to provide us with further services related to the use of this online offering and internet use. In doing so, pseudonymous usage profiles of users can be created from the processed data.

We use Google Analytics only with activated IP anonymization. This means that the IP address of users is shortened by Google within member states of the European Union or in other contracting states of the agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a server of Google in the USA and shortened there.

The IP address transmitted by the user’s browser is not merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; users can also prevent the collection of the data generated by the cookie and relating to their use of the online offering to Google as well as the processing of this data by Google by downloading and installing the browser plugin available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

Further information on data use by Google, setting and objection options can be found in Google’s privacy policy (https://policies.google.com/technologies/ads) as well as in the settings for displaying advertising by Google (https://adssettings.google.com/authenticated).

Users’ personal data is deleted or anonymized after 14 months.

Google AdWords and conversion measurement

We use the online marketing procedure Google “AdWords” to place ads in the Google advertising network (e.g., in search results, in videos, on websites, etc.) so that they are displayed to users who are presumed to have an interest in the ads. This allows us to display ads for and within our online offering in a more targeted way in order to present users only ads that potentially match their interests. If, for example, a user is shown ads for products that he has been interested in on other online offerings, this is referred to as “remarketing”. For these purposes, when our and other websites on which the Google advertising network is active are accessed, a code is executed by Google directly and so-called (re)marketing tags (invisible graphics or code, also referred to as “web beacons”) are embedded into the website. With their help, an individual cookie, i.e. a small file, is stored on the user’s device (instead of cookies, comparable technologies can also be used). This file records which websites the user visited, which content he is interested in and which offers the user clicked, as well as technical information about the browser and operating system, referring websites, time of visit and other information about the use of the online offering.

Furthermore, we receive an individual “conversion cookie”. The information collected with the help of the cookie is used by Google to create conversion statistics for us. However, we only learn the anonymous total number of users who clicked on our ad and were redirected to a page equipped with a conversion tracking tag. However, we do not receive any information that allows users to be personally identified.

User data is processed pseudonymously within the scope of the Google advertising network. This means that Google stores and processes, for example, not the name or e-mail address of users, but processes the relevant data cookie-related within pseudonymous user profiles. This means that from Google’s point of view, the ads are not managed and displayed for a specifically identified person, but for the cookie owner, regardless of who this cookie owner is. This does not apply if a user has expressly allowed Google to process the data without this pseudonymization. The information collected about users is transmitted to Google and stored on Google’s servers in the USA.

Visual Website Optimizer

Within our online offering, on the basis of our legitimate interests (i.e. interest in analyzing, optimizing and operating our online offering economically within the meaning of Art. 6 para. 1 lit. f GDPR), the service Visual Website Optimizer (an offering of Wingify Software Private Limited, 404, Gopal Heights, Netaji Subhash Place, Pitam Pura, Delhi 110034, India) is used.

Visual Website Optimizer enables tracking within so-called “A/B testing”, “click tracking” and “heatmaps” how different changes to a website affect it (e.g. changes to input fields, design, etc.). A/B tests serve to improve the user-friendliness and performance of online offerings. Users, for example, are shown different versions of a website or its elements, such as input forms, where the placement of content or labels of navigation elements may differ. Subsequently, based on the behavior of users, e.g. longer staying on the website or more frequent interaction with the elements, it can be determined which of these websites or elements better meet the users’ needs. “Click tracking” allows the movements of users within an entire online offering to be viewed. Since the results of these tests are more accurate if the interaction of users can be tracked over a certain period of time (e.g. being able to see whether a user likes to return), cookies are generally stored on users’ computers for these test purposes. “Heatmaps” are mouse movements of users that are summarized into an overall picture, with the help of which, for example, it can be recognized which website elements are preferred and which website elements users prefer less.

Cookies are placed on users’ devices only for these test purposes. Only pseudonymous user data is processed. For more information, we refer to the privacy policy of Visual Website Optimizer: https://vwo.com/privacy-policy/.

If you do not want Visual Website Optimizer to record your user behavior, you can object to data collection using this link: https://[PLEASE-INSERT-YOURDOMAIN]/?vwo_opt_out=1.

Online presences in social media

We maintain online presences within social networks and platforms in order to communicate with customers, interested parties and users active there and to inform them there about our services. When accessing the respective networks and platforms, the terms and conditions and data processing guidelines of their respective operators apply.

Unless otherwise stated within the scope of our privacy policy, we process the data of users if they communicate with us within the social networks and platforms, e.g. write posts on our online presences or send us messages.

Integration of services and content of third parties

Within our online offering, on the basis of our legitimate interests (i.e. interest in analyzing, optimizing and operating our online offering economically within the meaning of Art. 6 para. 1 lit. f GDPR), we use content or service offerings of third-party providers in order to integrate their content and services, such as videos or fonts (hereinafter collectively referred to as “content”).

This always requires that the third-party providers of this content perceive the users’ IP address, because without the IP address they could not send the content to their browser. The IP address is therefore required for the display of this content. We strive to use only content whose respective providers use the IP address only to deliver the content. Third-party providers may also use so-called pixel tags (invisible graphics, also referred to as “web beacons”) for statistical or marketing purposes. Through the “pixel tags”, information such as visitor traffic on the pages of this website can be evaluated. The pseudonymous information can also be stored in cookies on the users’ device and contain, among other things, technical information about the browser and operating system, referring websites, time of visit and other information about the use of our online offering, and can also be linked with such information from other sources.

Youtube

We embed the videos of the platform “YouTube” of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://www.google.com/policies/privacy/, opt-out: https://adssettings.google.com/authenticated.

Google ReCaptcha

We embed the function for detecting bots, e.g. when entering data in online forms (“ReCaptcha”) of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://www.google.com/policies/privacy/, opt-out: https://adssettings.google.com/authenticated.

Use of Facebook social plugins

On the basis of our legitimate interests (i.e. interest in analyzing, optimizing and operating our online offering economically within the meaning of Art. 6 para. 1 lit. f GDPR), we use social plugins (“plugins”) of the social network facebook.com, which is operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”). The plugins can display interaction elements or content (e.g. videos, graphics or text posts) and can be recognized by one of the Facebook logos (white “f” on a blue tile, the terms “Like”, “Gefällt mir” or a “thumbs up” sign) or are marked with the addition “Facebook Social Plugin”. The list and appearance of the Facebook social plugins can be viewed here: https://developers.facebook.com/docs/plugins/.

Facebook is certified under the Privacy Shield agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

If a user calls up a function of this online offering that contains such a plugin, his device establishes a direct connection with the servers of Facebook. The content of the plugin is transmitted by Facebook directly to the user’s device and integrated into the online offering. In doing so, usage profiles of users can be created from the processed data. We therefore have no influence on the scope of the data that Facebook collects with the help of this plugin and inform users therefore according to our level of knowledge.

By integrating the plugins, Facebook receives the information that a user has accessed the corresponding page of the online offering. If the user is logged in to Facebook, Facebook can assign the visit to his Facebook account. If users interact with the plugins, for example by pressing the like button or leaving a comment, the corresponding information is transmitted directly from their device to Facebook and stored there. If a user is not a member of Facebook, there is still the possibility that Facebook learns and stores his IP address. According to Facebook, only an anonymized IP address is stored in Germany.

Purpose and scope of data collection and the further processing and use of the data by Facebook as well as the related rights and setting options to protect the privacy of users can be found in Facebook’s privacy notices: https://www.facebook.com/about/privacy/.

If a user is a Facebook member and does not want Facebook to collect data about him via this online offering and link it to his member data stored at Facebook, he must log out of Facebook before using our online offering and delete his cookies. Further settings and objections to the use of data for advertising purposes are possible within the Facebook profile settings: https://www.facebook.com/settings?tab=ads or via the US page http://www.aboutads.info/choices/or the EU page http://www.youronlinechoices.com/. The settings are platform-independent, i.e. they are adopted for all devices such as desktop computers or mobile devices.

Twitter

Within our online offering, functions and content of the service Twitter, offered by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, may be embedded. This can include, for example, content such as images, videos or texts and buttons with which users can share content of this online offering within Twitter.
If users are members of the Twitter platform, Twitter can assign the access of the above-mentioned content and functions to the users’ profiles there. Twitter is certified under the Privacy Shield agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active). Privacy policy: https://twitter.com/de/privacy, opt-out: https://twitter.com/personalization.

Within our online offering, functions and content of the service LinkedIn, offered by the inkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland, may be embedded. This can include, for example, content such as images, videos or texts and buttons with which users can share content of this online offering within LinkedIn. If users are members of the LinkedIn platform, LinkedIn can assign the access of the above-mentioned content and functions to the users’ profiles there. LinkedIn privacy policy: https://www.linkedin.com/legal/privacy-policy.. LinkedIn is certified under the Privacy Shield agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active). Privacy policy: https://www.linkedin.com/legal/privacy-policy, opt-out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Changes to this privacy policy
We will update these policies to protect your personal data from time to time. You should occasionally review these policies to stay informed about how we protect your data and continuously improve the content of our website. If we make material changes to the collection, use and/or disclosure of the personal data you provide to us, we will draw your attention to this by a clear and prominent notice on the website. By using the website, you agree to the terms of these policies for the protection of personal data.

If you have any questions about this privacy policy, please contact us via our contact page.

Cookie	Duración	Descripción
cookielawinfo-checkbox-advertisement	session	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	session	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Analytics" category .
cookielawinfo-checkbox-functional	session	The cookie is set by the GDPR Cookie Consent plugin to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	session	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Necessary" category .
cookielawinfo-checkbox-others	session	Set by the GDPR Cookie Consent plugin, this cookie is used to store the user consent for cookies in the category "Others".
cookielawinfo-checkbox-performance	session	Set by the GDPR Cookie Consent plugin, this cookie is used to store the user consent for cookies in the category "Performance".
CookieLawInfoConsent	session	Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.

Cookie	Duración	Descripción
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_gtag_UA_54347152_1	1 minute	Set by Google to distinguish users.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.

Cookie	Duración	Descripción
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.

Contacto

Información legal

Diese Website verwendet Cookies, um Ihnen mehr als nur Körpersprache zu bieten.