Privacy Policy
This privacy policy informs you about the nature, scope, and purpose of the processing of personal data (hereinafter referred to as "data") within our online services and the associated websites, functions, and content, as well as external online presences, such as our social media profiles (hereinafter collectively referred to as "online services"). Regarding the terminology used, such as "processing" or "controller," we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR).
Responsible
Upper Lusatian District Sports Association (Oberlausitzer Kreissportbund e.V.) Käthe-Kollwitz-Straße 22 02827 Görlitz Germany Email: info@oberlausitzer-ksb.de Telephone: +49 3581 750080 Fax: +49 3581 7500811 Managing Director: Marko Weber-Schönherr Link to legal notice: http://www.zittauer-gebirgslauf.de/impressum
Types of data processed:
- Inventory data (e.g., names, addresses). - Contact data (e.g., email addresses, telephone numbers). - Content data (e.g., text entries, photographs, videos). - Usage data (e.g., websites visited, interest in content, access times). - Meta/communication data (e.g., device information, IP addresses).
Categories of affected persons
Visitors and users of the online service (hereinafter we will refer to the persons concerned collectively as "users").
Purpose of processing
- Provision of the online service, its functions and content. - Responding to contact requests and communicating with users. - Security measures. - Audience measurement/marketing.
Terminology used
“Personal data” means any information relating to an identified or identifiable natural person (hereinafter referred to as “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g., a cookie), or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person. “Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means. The term is broad and encompasses virtually any handling of data. “Pseudonymisation” means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person. “Profiling” means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements. “Controller” means the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. “Processor” means a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller.
Relevant legal bases
In accordance with Article 13 of the GDPR, we inform you of the legal bases for our data processing. Unless otherwise stated in the privacy policy, the following applies: The legal basis for obtaining consent is Article 6(1)(a) and Article 7 of the GDPR; the legal basis for processing data to fulfill our services and implement contractual measures, as well as to respond to inquiries, is Article 6(1)(b) of the GDPR; the legal basis for processing data to comply with our legal obligations is Article 6(1)(c) of the GDPR; and the legal basis for processing data to protect our legitimate interests is Article 6(1)(f) of the GDPR. In the event that processing personal data is necessary to protect the vital interests of the data subject or another natural person, Article 6(1)(d) of the GDPR serves as the legal basis.
Security measures
In accordance with Article 32 of the GDPR, taking into account the state of the art, the costs of implementation, and the nature, scope, context, and purposes of processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, we implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk. These measures include, in particular, ensuring the confidentiality, integrity, and availability of data by controlling physical access to the data, as well as access to, input of, disclosure of, and ensuring the availability and separation of the data. Furthermore, we have established procedures to ensure the exercise of data subject rights, the erasure of data, and the response to data breaches. We also consider the protection of personal data during the development and selection of hardware, software, and processes, in accordance with the principles of data protection by design and by default (Article 25 of the GDPR).
Cooperation with processors and third parties
If, in the course of our processing, we disclose data to other persons and companies (processors or third parties), transmit it to them, or otherwise grant them access to the data, this is done only on the basis of legal permission (e.g., if the transfer of data to third parties, such as payment service providers, is necessary for the performance of a contract pursuant to Art. 6 para. 1 lit. b GDPR), if you have given your consent, if a legal obligation requires it, or on the basis of our legitimate interests (e.g., when using agents, web hosts, etc.). If we commission third parties to process data on the basis of a so-called "data processing agreement," this is done on the basis of Art. 28 GDPR.
Transfers to third countries
If we process data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)), or if this occurs in the context of using third-party services or disclosing or transferring data to third parties, this will only be done if it is necessary for the performance of our (pre-)contractual obligations, based on your consent, due to a legal obligation, or based on our legitimate interests. Subject to legal or contractual permissions, we will only process or have data processed in a third country if the special requirements of Articles 44 et seq. of the GDPR are met. This means, for example, that processing is based on special guarantees, such as the officially recognized finding of a level of data protection equivalent to that of the EU (e.g., for the USA through the "Privacy Shield") or compliance with officially recognized specific contractual obligations (so-called "standard contractual clauses").
Rights of data subjects
You have the right to request confirmation as to whether your personal data is being processed and to access this data, as well as further information and a copy of the data, in accordance with Article 15 of the GDPR. In accordance with Article 16 of the GDPR, you have the right to request the completion of incomplete personal data concerning you or the rectification of inaccurate personal data concerning you. In accordance with Article 17 of the GDPR, you have the right to request that your personal data be erased without undue delay, or alternatively, in accordance with Article 18 of the GDPR, to request the restriction of processing of your personal data. You have the right to receive the personal data concerning you that you have provided to us, in accordance with Article 20 of the GDPR, and to request its transmission to another controller. Furthermore, in accordance with Article 77 of the GDPR, you have the right to lodge a complaint with the competent supervisory authority.
Right of withdrawal
You have the right to withdraw your consent pursuant to Art. 7 para. 3 GDPR with effect for the future.
Right to object
You can object to the future processing of your personal data at any time in accordance with Article 21 of the GDPR. This objection can be made, in particular, against processing for direct marketing purposes.
Cookies and the right to object to direct marketing
Cookies are small files that are stored on users' computers. Various types of information can be stored within cookies. A cookie primarily serves to store information about a user (or the device on which the cookie is stored) during or even after their visit to an online service. Temporary cookies, also known as "session cookies" or "transient cookies," are deleted after a user leaves an online service and closes their browser. Such a cookie might, for example, store the contents of a shopping cart in an online store or a login status. "Permanent" or "persistent" cookies remain stored even after the browser is closed. These can, for example, save login status so that users remain logged in when they return to the site after several days. Similarly, user interests can be stored in such a cookie for audience measurement or marketing purposes. Third-party cookies are cookies that are offered by providers other than the operator of the website (otherwise, if they are only the operator's own cookies, they are called first-party cookies). We may use temporary and persistent cookies and provide information about this in our privacy policy. If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in their browser's system settings. Stored cookies can be deleted in the browser's system settings. Disabling cookies may lead to functional limitations of this website. A general objection to the use of cookies for online marketing purposes can be declared for many services, especially in the case of tracking, via the US website http://www.aboutads.info/choices/ or the EU website http://www.youronlinechoices.com/ . Furthermore, the storage of cookies can be prevented by disabling them in the browser settings. Please note that in this case, you may not be able to use all the functions of this online service.
Deletion of data
The data we process will be erased or its processing restricted in accordance with Articles 17 and 18 of the GDPR. Unless expressly stated otherwise in this privacy policy, the data stored by us will be erased as soon as it is no longer required for its intended purpose and there are no legal obligations to retain it. If the data is not erased because it is required for other legally permissible purposes, its processing will be restricted. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax law reasons. In accordance with legal requirements in Germany, data is retained for 10 years pursuant to Sections 147 Paragraph 1 AO, 257 Paragraph 1 Nos. 1 and 4, Paragraph 4 HGB (books, records, management reports, accounting documents, ledgers, tax-relevant documents, etc.) and for 6 years pursuant to Section 257 Paragraph 1 Nos. 2 and 3, Paragraph 4 HGB (commercial correspondence). According to legal requirements in Austria, records must be retained for 7 years in particular pursuant to § 132 para. 1 BAO (accounting records, receipts/invoices, accounts, vouchers, business papers, statements of income and expenses, etc.), for 22 years in connection with real estate and for 10 years for documents relating to electronically supplied services, telecommunications, broadcasting and television services provided to non-entrepreneurs in EU member states and for which the Mini One-Stop Shop (MOSS) is used.
Contractual services
We process the data of our contractual partners and prospective clients, as well as other clients, customers, or contractual partners (collectively referred to as "Contractual Partners"), in accordance with Article 6(1)(b) GDPR, in order to provide them with our contractual or pre-contractual services. The data processed, its nature, scope, purpose, and the necessity of its processing are determined by the underlying contractual relationship. The processed data includes our Contractual Partners' master data (e.g., names and addresses), contact details (e.g., email addresses and telephone numbers), contract data (e.g., services used, contract content, contractual communication, names of contact persons), and payment data (e.g., bank details, payment history). We generally do not process special categories of personal data unless they are part of a commissioned or contractually agreed processing activity. We process data that is necessary for establishing and fulfilling the contractual services and will indicate the necessity of providing this data if it is not evident to the Contractual Partners. Disclosure to external persons or companies only occurs when required under a contract. When processing data entrusted to us within the scope of a contract, we act in accordance with the instructions of the client and applicable legal requirements. When using our online services, we may store the IP address and the time of each user action. This storage is based on our legitimate interests, as well as the users' interest in protection against misuse and other unauthorized use. This data is generally not shared with third parties, unless it is necessary for the enforcement of our claims pursuant to Art. 6 para. 1 lit. f GDPR or there is a legal obligation to do so pursuant to Art. 6 para. 1 lit. c GDPR. Data is deleted when it is no longer required for fulfilling contractual or legal obligations of care, as well as for handling any warranty or similar obligations. The necessity of retaining the data is reviewed every three years; otherwise, statutory retention periods apply.
Administration, financial accounting, office organization, contact management
We process data for administrative tasks, the organization of our business operations, financial accounting, and compliance with legal obligations, such as archiving. In doing so, we process the same data that we process when providing our contractual services. The legal bases for this processing are Article 6(1)(c) and (f) of the GDPR. Customers, prospective customers, business partners, and website visitors are affected by this processing. The purpose of and our legitimate interest in this processing lies in administration, financial accounting, office organization, and data archiving—tasks that serve to maintain our business operations, fulfill our obligations, and provide our services. The deletion of data relating to contractual services and contractual communication is carried out in accordance with the information provided for these processing activities. We disclose or transmit data to the tax authorities, consultants such as tax advisors or auditors, as well as other fee-collecting agencies and payment service providers. Furthermore, based on our legitimate business interests, we store information about suppliers, event organizers, and other business partners, for example, for future contact. We generally store this mostly business-related data permanently.
Business analyses and market research
To operate our business efficiently and to identify market trends and the needs of our contractual partners and users, we analyze the data we have on business transactions, contracts, inquiries, etc. We process inventory data, communication data, contract data, payment data, usage data, and metadata based on Article 6 Paragraph 1 Letter f of the GDPR. The data subjects include contractual partners, prospective customers, customers, visitors, and users of our online services. These analyses are conducted for the purposes of business evaluations, marketing, and market research. We may consider the profiles of registered users, including information such as the services they have used. The analyses help us improve user-friendliness, optimize our services, and enhance our business efficiency. These analyses are for our internal use only and will not be disclosed externally, unless they are anonymous analyses with aggregated values. If these analyses or profiles contain personal data, they will be deleted or anonymized upon termination of the user's account, or otherwise two years after the contract was concluded. Furthermore, company-wide business analyses and general trend assessments are created anonymously whenever possible.
Provision of our services in accordance with our statutes and business practices
We process the data of our members, supporters, prospective members, customers, or other individuals in accordance with Article 6(1)(b) GDPR, insofar as we offer them contractual services or act within the framework of an existing business relationship, e.g., with members, or are ourselves recipients of services and contributions. Furthermore, we process the data of data subjects in accordance with Article 6(1)(f) GDPR based on our legitimate interests, e.g., when it comes to administrative tasks or public relations. The data processed, its nature, scope, purpose, and the necessity of its processing are determined by the underlying contractual relationship. This generally includes personal data (e.g., name, address, etc.), contact details (e.g., email address, telephone number, etc.), contract data (e.g., services used, content and information provided, names of contact persons), and, if we offer services or products subject to payment, payment data (e.g., bank details, payment history, etc.). We delete data that is no longer required for fulfilling our statutory and business purposes. This is determined according to the respective tasks and contractual relationships. In the case of business processing, we retain the data for as long as it may be relevant for business transactions, as well as with regard to any warranty or liability obligations. The necessity of retaining the data is reviewed every three years; otherwise, the statutory retention periods apply.
Data protection information for the application process
We process applicant data solely for the purpose and within the scope of the application process, in accordance with legal requirements. The processing of applicant data is carried out to fulfill our (pre-)contractual obligations within the framework of the application process, pursuant to Art. 6 para. 1 lit. b GDPR and Art. 6 para. 1 lit. f GDPR, insofar as data processing becomes necessary for us, for example, in the context of legal proceedings (in Germany, Section 26 BDSG also applies). The application process requires applicants to provide us with their application data. The necessary application data is marked accordingly if we offer an online form; otherwise, it can be found in the job descriptions. This data generally includes personal information, postal and contact addresses, and application documents such as cover letters, CVs, and certificates. Applicants may also voluntarily provide us with additional information. By submitting their application to us, applicants consent to the processing of their data for the purposes of the application process in accordance with the type and scope set out in this privacy policy. If, during the application process, special categories of personal data within the meaning of Article 9(1) GDPR are voluntarily disclosed, their processing is additionally carried out in accordance with Article 9(2)(b) GDPR (e.g., health data, such as information regarding severe disability or ethnic origin). If, during the application process, special categories of personal data within the meaning of Article 9(1) GDPR are requested from applicants, their processing is additionally carried out in accordance with Article 9(2)(a) GDPR (e.g., health data if required for the performance of the job). If available, applicants can submit their applications to us via an online form on our website. The data is transmitted to us using state-of-the-art encryption. Applicants can also submit their applications via email. However, please note that emails are generally not encrypted, and applicants are responsible for ensuring encryption themselves. We therefore cannot assume responsibility for the transmission of applications between the sender and their receipt on our server and recommend using an online form or sending them by post. Applicants still have the option of sending their applications by post instead of using the online form and email. If an application is successful, the data provided by the applicant may be processed by us for the purposes of the employment relationship. Otherwise, if the application for a job offer is unsuccessful, the applicant's data will be deleted. Applicant data will also be deleted if an application is withdrawn, which applicants are entitled to do at any time. Subject to a legitimate objection from the applicant, deletion will take place after a period of six months so that we can answer any follow-up questions regarding the application and comply with our obligations under the Equal Treatment Act. Invoices for any travel expense reimbursements will be archived in accordance with tax regulations.
Talent pool
As part of the application process, we offer applicants the opportunity to be included in our "talent pool" for a period of two years, based on their consent in accordance with Art. 6 para. 1 lit. b and Art. 7 GDPR. Application documents in the talent pool will be processed solely for future job postings and recruitment purposes and will be destroyed no later than the end of this period. Applicants are informed that their consent to be included in the talent pool is voluntary, has no bearing on the current application process, and that they may withdraw this consent at any time for the future and object to the processing of their data in accordance with Art. 21 GDPR.
Contact
When you contact us (e.g., via contact form, email, telephone, or social media), your information will be processed in accordance with Art. 6 para. 1 lit. b (within the framework of contractual/pre-contractual relationships) and Art. 6 para. 1 lit. f (other inquiries) of the GDPR for the purpose of processing and handling your inquiry. Your information may be stored in a customer relationship management system ("CRM system") or a comparable system for managing inquiries. We delete inquiries when they are no longer needed. We review the necessity of retaining inquiries every two years; statutory archiving obligations also apply.
Newsletter
The following information explains the content of our newsletter, the registration, delivery, and statistical evaluation procedures, as well as your rights to object. By subscribing to our newsletter, you agree to receive it and to the procedures described. Newsletter content: We send newsletters, emails, and other electronic notifications containing promotional information (hereinafter "newsletter") only with the recipient's consent or based on legal permission. If the content of the newsletter is specifically described during the registration process, this description is decisive for the user's consent. Otherwise, our newsletters contain information about our services and our company. Double opt-in and logging: Registration for our newsletter uses a double opt-in process. This means that after registering, you will receive an email asking you to confirm your registration. This confirmation is necessary to prevent anyone from registering with someone else's email address. Newsletter registrations are logged to document the registration process in accordance with legal requirements. This includes storing the registration and confirmation times, as well as the IP address. Similarly, changes to your data stored with the email service provider are logged. Registration data: To subscribe to the newsletter, you only need to provide your email address. Optionally, we ask you to provide a name for personalized addressing in the newsletter. The newsletter is sent and its performance is measured based on the recipients' consent pursuant to Art. 6 para. 1 lit. a, Art. 7 GDPR in conjunction with Section 7 para. 2 no. 3 of the German Unfair Competition Act (UWG), or, if consent is not required, based on our legitimate interests in direct marketing pursuant to Art. 6 para. 1 lit. f GDPR in conjunction with Section 7 para. 3 UWG. The registration process is logged based on our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR. Our interest lies in using a user-friendly and secure newsletter system that serves both our business interests and meets user expectations, and also allows us to provide proof of consent. Cancellation/Revocation - You can unsubscribe from our newsletter at any time, i.e., revoke your consent. You will find an unsubscribe link at the end of each newsletter. We may store unsubscribed email addresses for up to three years based on our legitimate interests before deleting them, in order to be able to prove previously given consent. The processing of this data is limited to the purpose of defending against potential claims. An individual deletion request is possible at any time, provided that the prior existence of consent is confirmed.
Hosting and email delivery
The hosting services we use serve to provide the following services: infrastructure and platform services, computing capacity, storage space and database services, email delivery, security services, and technical maintenance services, which we use for the purpose of operating this online service. In doing so, we, or our hosting provider, process inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, prospective customers, and visitors to this online service based on our legitimate interests in the efficient and secure provision of this online service pursuant to Art. 6 Para. 1 lit. f GDPR in conjunction with Art. 28 GDPR (conclusion of a data processing agreement).
Collection of access data and log files
We, or rather our hosting provider, collect data about every access to the server on which this service is located (so-called server log files) based on our legitimate interests within the meaning of Art. 6 para. 1 lit. f GDPR. Access data includes the name of the accessed website, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address, and the requesting provider. Log file information is stored for a maximum of 7 days for security reasons (e.g., to investigate misuse or fraud) and then deleted. Data whose further retention is required for evidentiary purposes is exempt from deletion until the final resolution of the respective incident.
Google Analytics
Based on our legitimate interests (i.e., our interest in analyzing, optimizing, and operating our online services economically, in accordance with Article 6(1)(f) of the GDPR), we use Google Analytics, a web analytics service provided by Google LLC ("Google"). Google uses cookies. The information generated by the cookie about users' use of the online services is generally transmitted to and stored on a Google server in the USA. Google is certified under the Privacy Shield Framework and thus guarantees compliance with European data protection law ( https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active ). Google will use this information on our behalf to evaluate users' use of our online services, to compile reports on activity within these online services, and to provide us with other services relating to the use of these online services and internet usage. Pseudonymous user profiles may be created from the processed data. We use Google Analytics only with IP anonymization enabled. This means that Google will shorten the IP address of users within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. The IP address transmitted by the user's browser will not be merged with other Google data. Users can prevent the storage of cookies by adjusting their browser settings; users can also prevent Google from collecting and processing data generated by the cookie and related to their use of the website by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de . Further information on Google's data usage, settings, and opt-out options can be found in Google's Privacy Policy ( https://policies.google.com/technologies/ads ) and in the settings for Google ad personalization (https://adssettings.google.com/authenticated ). Users' personal data will be deleted or anonymized after 14 months.
Google AdWords and conversion measurement
Based on our legitimate interests (i.e., our interest in analyzing, optimizing, and operating our online services economically, in accordance with Article 6(1)(f) of the GDPR), we use the services of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google"). Google is certified under the Privacy Shield Framework and thus guarantees compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active). We use the online marketing tool Google "AdWords" to place ads in the Google advertising network (e.g., in search results, in videos, on websites, etc.) so that they are displayed to users who have a likely interest in them. This allows us to display ads for and within our online services in a more targeted manner, presenting users only with ads that potentially match their interests. For example, if a user is shown ads for products they have previously viewed on other websites, this is called "remarketing." For this purpose, when our website and other websites using the Google advertising network are accessed, Google immediately executes a code and integrates so-called (re)marketing tags (invisible graphics or code, also known as "web beacons") into the website. These tags store an individual cookie, i.e., a small file, on the user's device (comparable technologies may also be used instead of cookies). This file records which websites the user has visited, which content they are interested in, and which offers they have clicked on, as well as technical information about the browser and operating system, referring websites, visit time, and other information about the use of the online service. We also receive an individual "conversion cookie." The information collected using this cookie is used by Google to create conversion statistics for us. However, we only receive the anonymous total number of users who clicked on our ad and were redirected to a page with a conversion tracking tag. We do not receive any personally identifiable information. User data is processed pseudonymously within the Google advertising network. This means that Google does not store or process, for example, the name or email address of users, but rather processes the relevant data on a cookie-based basis within pseudonymous user profiles. From Google's perspective, this means that ads are not managed and displayed for a specifically identified person, but rather for the cookie holder, regardless of who that cookie holder is. This does not apply if a user has explicitly allowed Google to process the data without this pseudonymization. The information collected about users is transmitted to Google and stored on Google's servers in the USA. Further information on data usage by Google, setting and opt-out options can be found in Google's privacy policy ( https://policies.google.com/technologies/ads ) and in the settings for displaying ads by Google (https://adssettings.google.com/authenticated ).
Facebook Pixel, Custom Audiences and Facebook Conversion
Within our online services, we use the so-called "Facebook Pixel" of the social network Facebook, operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, or, if you are located in the EU, by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook"), based on our legitimate interests in the analysis, optimization, and economic operation of our online services. Facebook is certified under the Privacy Shield Agreement and thus guarantees compliance with European data protection law ( https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active ). With the help of the Facebook Pixel, Facebook is able to identify visitors to our online services as a target group for displaying advertisements (so-called "Facebook Ads"). Accordingly, we use the Facebook pixel to display the Facebook ads we place only to Facebook users who have shown an interest in our online offerings or who exhibit certain characteristics (e.g., interests in specific topics or products, determined based on the websites they visit) that we transmit to Facebook (so-called "Custom Audiences"). With the help of the Facebook pixel, we also want to ensure that our Facebook ads correspond to the potential interests of users and are not perceived as intrusive. Furthermore, the Facebook pixel allows us to track the effectiveness of Facebook ads for statistical and market research purposes by seeing whether users were redirected to our website after clicking on a Facebook ad (so-called "conversion"). Facebook processes the data in accordance with its Data Policy. General information on the display of Facebook ads can be found in Facebook's Data Policy: https://www.facebook.com/policy . Specific information and details about the Facebook pixel and how it works can be found in Facebook's Help Center: https://www.facebook.com/business/help/651294705016616 . You can object to the collection of data by the Facebook pixel and the use of your data for displaying Facebook ads. To adjust which types of ads are displayed to you on Facebook, you can visit the page provided by Facebook and follow the instructions for managing your ad preferences: https://www.facebook.com/settings?tab=ads . These settings are platform-independent, meaning they apply to all devices, such as desktop computers and mobile devices. object to the use of cookies for audience measurement and advertising purposes via the deactivation page of the Network Advertising Initiative ( http://optout.networkadvertising.org/ ) and additionally the US website ( http://www.aboutads.info/choices ) or the European website ( http://www.youronlinechoices.com/uk/your-ad-choices/
Online presence on social media
We maintain online presences within social networks and platforms to communicate with customers, prospects, and users active there and to inform them about our services. When accessing these networks and platforms, the terms and conditions and data processing policies of their respective operators apply. Unless otherwise stated in our privacy policy, we process user data when users communicate with us within these social networks and platforms, for example, by posting on our online presences or sending us messages.
Integration of third-party services and content
Within our online services, we use content or service offerings from third-party providers based on our legitimate interests (i.e., our interest in analyzing, optimizing, and operating our online services economically, in accordance with Article 6(1)(f) of the GDPR) to integrate their content and services, such as videos or fonts (hereinafter referred to collectively as "Content"). This always requires that the third-party providers of this Content are aware of the users' IP addresses, as they cannot send the Content to their browsers without the IP address. The IP address is therefore necessary for displaying this Content. We strive to use only Content from providers who use the IP address solely for delivering the Content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. These pixel tags allow information such as visitor traffic on the pages of this website to be evaluated. The pseudonymous information can also be stored in cookies on the user's device and may include, among other things, technical information about the browser and operating system, referring websites, time of visit and other information about the use of our online service, as well as be combined with such information from other sources.
Vimeo
We can embed videos from the platform “Vimeo” provided by Vimeo Inc., Attention: Legal Department, 555 West 18th Street, New York, NY 10011, USA. Privacy policy: https://vimeo.com/privacy . We would like to point out that Vimeo may use Google Analytics and refer you to Google's privacy policy ( https://www.google.com/policies/privacy ) as well as the opt-out options for Google Analytics ( http://tools.google.com/dlpage/gaoptout?hl=de ) or Google's settings for data usage for marketing purposes ( https://adssettings.google.com/ ).
YouTube
We embed videos from the platform “YouTube” provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://www.google.com/policies/privacy/ , Opt-out: https://adssettings.google.com/authenticated .
Google Fonts
We integrate fonts ("Google Fonts") from the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://www.google.com/policies/privacy/ , Opt-out: https://adssettings.google.com/authenticated .
Google reCaptcha
We integrate the bot detection function, e.g., for entries in online forms ("ReCaptcha"), from the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://www.google.com/policies/privacy/ , Opt-out: https://adssettings.google.com/authenticated .
Google Maps
We integrate maps from the "Google Maps" service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The data processed may include, in particular, users' IP addresses and location data, which, however, are not collected without their consent (usually obtained through their mobile device settings). The data may be processed in the USA. Privacy policy: https://www.google.com/policies/privacy/ , Opt-out: https://adssettings.google.com/authenticated .
OpenStreetMap
We integrate maps from the "OpenStreetMap" service ( https://www.openstreetmap.de ), which are offered by the OpenStreetMap Foundation (OSMF) under the Open Data Commons Open Database License (ODbL). Privacy policy: https://wiki.openstreetmap.org/wiki/Privacy_Policy . To our knowledge, OpenStreetMap uses user data solely for displaying map features and caching selected settings. This data may include users' IP addresses and location data, which, however, are not collected without their consent (usually granted through their mobile device settings). The data may be processed in the USA. Further information can be found in OpenStreetMap's privacy policy: https://wiki.openstreetmap.org/wiki/Privacy_Policy .
Typekit fonts from Adobe
Based on our legitimate interests (i.e., our interest in analyzing, optimizing, and operating our online services economically, in accordance with Article 6(1)(f) of the GDPR), we use external "Typekit" fonts from the provider Adobe Systems Software Ireland Limited, 4-6 Riverwalk, Citywest Business Campus, Dublin 24, Republic of Ireland. Adobe is certified under the Privacy Shield Framework and thus guarantees compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000TNo9AAG&status=Active).
Use of Facebook Social Plugins
Based on our legitimate interests (i.e., our interest in analyzing, optimizing, and operating our online services economically, in accordance with Article 6(1)(f) of the GDPR), we use social plugins ("plugins") from the social network facebook.com, which is operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook"). These plugins may include content such as images, videos, or text, as well as buttons that allow users to share content from this website within Facebook. The list and appearance of the Facebook social plugins can be viewed here: https://developers.facebook.com/docs/plugins/ . Facebook is certified under the Privacy Shield Framework and thus guarantees compliance with European data protection law ( https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active ). When a user accesses a feature of this online service that contains such a plugin, their device establishes a direct connection to Facebook's servers. The plugin's content is transmitted directly from Facebook to the user's device and integrated into the online service. Usage profiles of users can be created from the processed data. We therefore have no influence on the scope of data that Facebook collects using this plugin and inform users accordingly, based on our current knowledge. By integrating the plugins, Facebook receives the information that a user has accessed the corresponding page of the online service. If the user is logged into Facebook, Facebook can associate the visit with their Facebook account. When users interact with the plugins, for example, by clicking the Like button or leaving a comment, the corresponding information is transmitted directly from their device to Facebook and stored there. Even if a user is not a member of Facebook, it is still possible that Facebook will learn and store their IP address. According to Facebook, only an anonymized IP address is stored in Germany. The purpose and scope of data collection and the further processing and use of data by Facebook, as well as the related rights and privacy settings, can be found in Facebook's privacy policy: https://www.facebook.com/about/privacy/ . If a user is a Facebook member and does not want Facebook to collect data about them via this website and link it to their Facebook account, they must log out of Facebook and delete their cookies before using our website. Further settings and options to object to the use of data for advertising purposes are available within the Facebook profile settings: https://www.facebook.com/settings?tab=ads or via the US website http://www.aboutads.info/choices/ or the EU website http://www.youronlinechoices.com/ . These settings are platform-independent, meaning they apply to all devices, such as desktop computers and mobile devices.
Our website may include features and content from the Twitter service, offered by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. This may include content such as images, videos, or text, as well as buttons that allow users to share content from this website on Twitter. If users are members of the Twitter platform, Twitter may associate the access of the aforementioned content and features with their Twitter profiles. Twitter is certified under the Privacy Shield Framework and thus guarantees compliance with European data protection law ( https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active ). Privacy policy: https://twitter.com/de/privacy , Opt-out: https://twitter.com/personalization .
Created with Datenschutz-Generator.de by Attorney Dr. Thomas Schwenke
