Privacy policy
General
Based on Article 13 of the Swiss Federal Constitution and the data protection provisions of the Swiss Confederation (Data Protection Act, DSG), every person has the right to protection of their privacy as well as protection against misuse of their personal data. The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations as well as this privacy policy.
In cooperation with our hosting providers, we make every effort to protect the databases as well as possible against unauthorized access, loss, misuse or falsification.
We would like to point out that data transmission on the Internet (e.g. communication by e-mail) can have security gaps. A complete protection of data against access by third parties is not possible.
By using this website, you consent to the collection, processing and use of data in accordance with the following description. This website can generally be visited without registration. Data such as pages accessed or names of files accessed, date and time are stored on the server for statistical purposes without this data being directly related to your person. Personal data, in particular name, address or e-mail address are collected as far as possible on a voluntary basis. Without your consent, the data will not be passed on to third parties.
Processing of personal data
Personal data is any information that relates to an identified or identifiable person. A data subject is a person about whom personal data is processed. Processing includes any handling of personal data, regardless of the means and procedures used, in particular the storage, disclosure, acquisition, deletion, storage, modification, destruction and use of personal data.
We process personal data in accordance with Swiss data protection law. Furthermore, to the extent and insofar as the EU-GDPR is applicable, we process personal data in accordance with the following legal bases in connection with Art. 6 (1) GDPR:
- lit. a) Processing of personal data with the consent of the data subject.
- lit. b) Processing of personal data for the fulfillment of a contract with the data subject as well as for the implementation of corresponding pre-contractual measures.
- lit. c) Processing of personal data for the fulfillment of a legal obligation to which we are subject under any applicable law of the EU or under any applicable law of a country in which the GDPR is applicable in whole or in part.
- lit. d) Processing of personal data in order to protect the vital interests of the data subject or another natural person.
- lit. f) Processing of personal data to protect the legitimate interests of us or of third parties, unless the fundamental freedoms and rights and interests of the data subject are overridden. Legitimate interests include, in particular, our business interest in being able to provide our website, information security, the enforcement of our own legal claims and compliance with Swiss law.
We process personal data for the duration required for the respective purpose or purposes. In the case of longer-term retention obligations due to legal and other obligations to which we are subject, we restrict processing accordingly.
Data Subject Rights
Right to confirmation
Every data subject has the right to request confirmation from the website operator as to whether personal data concerning him or her are being processed. If you wish to exercise this right of confirmation, you may, at any time, contact the Data Protection Officer.
Right of access
Every person affected by the processing of personal data has the right to receive information free of charge from the operator of this website at any time about the personal data stored about him or her and a copy of this information. Furthermore, information may be provided about the following, if applicable:
- the purposes of processing
- the categories of personal data processed
- the recipients to whom the personal data have been or will be disclosed
- if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration
- the existence of a right to obtain the rectification or erasure of personal data concerning him or her, or the restriction of processing by the controller, or a right to object to such processing
- the existence of a right of appeal to a supervisory authority
- if the personal data are not collected from the data subject: Any available information about the origin of the data.
Furthermore, the data subject has the right to be informed whether personal data have been transferred to a third country or to an international organization. If this is the case, the data subject also has the right to obtain information about the appropriate safeguards in connection with the transfer.
If you would like to make use of this right to information, you can contact our data protection officer at any time.
Right to rectification
Every person affected by the processing of personal data has the right to demand the immediate correction of incorrect personal data concerning him or her. Furthermore, the data subject has the right, taking into account the purposes of the processing, to request that incomplete personal data be completed, including by means of a supplementary declaration.
If you wish to exercise this right of rectification, you may contact our data protection officer at any time.
Right to erasure (right to be forgotten)
Any person concerned by the processing of personal data has the right to obtain from the controller of this website the erasure without delay of personal data concerning him or her, where one of the following grounds applies and insofar as the processing is no longer necessary:
- The personal data have been collected or otherwise processed for such purposes for which they are no longer necessary.
- The data subject revokes the consent on which the processing was based and there is no other legal basis for the processing
- The data subject objects to the processing on grounds relating to his or her particular situation and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing in the case of direct marketing and related profiling
- The personal data have been processed unlawfully
- The erasure of the personal data is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject
- The personal data has been collected in relation to information society services provided directly to a child
If one of the above reasons applies and you wish to arrange for the deletion of personal data stored by theoperator of this website, you can contact our data protection officer at any time. The data protection officer of this website will arrange for the erasure request to be complied with immediately.
Right to restriction of processing
Any person concerned by the processing of personal data has the right to obtain from the controller of this website the restriction of processing if one of the following conditions is met:
- The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data
- The processing is unlawful, the data subject objects to the erasure of the personal data and requests instead the restriction of the use of the personal data
- The controller no longer needs the personal data for the purposes of the processing, but the data subject needs it for the assertion, exercise or defense of legal claims
- The data subject has objected to the processing on grounds relating to his or her particular situation, and it is not yet clear whether the legitimate interests of the controller override those of the data subject
If one of the aforementioned conditions is met, you can request the restriction of personal data stored by the operator of this website at any time by contacting our data protection officer. The data protection officer of this website will arrange the restriction of the processing.
Right to data portability
Every person affected by the processing of personal data has the right to receive the personal data concerning him or her in a structured, common and machine-readable format. He or she also has the right to have this data transferred to another controller if the legal requirements are met.
Furthermore, the data subject has the right to obtain that the personal data be transferred directly from one controller to another controller, insofar as this is technically feasible and insofar as this does not adversely affect the rights and freedoms of other persons.
To assert the right to data portability, you may at any time contact the data protection officer appointed by the operator of this website.
Right of objection
Any person affected by the processing of personal data has the right to object at any time, on grounds relating to his or her particular situation, to the processing of personal data concerning him or her.
The operator of this website shall no longer process the personal data in the event of the objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or if the processing serves the purpose of asserting, exercising or defending legal claims.
To exercise the right to object, you may directly contact the Data Protection Officer of this website.
Right to revoke consent granted under data protection law
Every person affected by the processing of personal data has the right to revoke a given consent to the processing of personal data at any time.
If you wish to exercise your right to revoke consent, you may contact our data protection officer at any time.
Cookies
This website uses cookies. These are small text files that make it possible to store specific information related to the user on the user’s terminal device while the user is using the website.
Cookies are primarily used to exchange information between the enddevice you use and our website. This includes, among other things, the language settings on a website, the login status or where a video was watched.
Necessary cookies: these are cookies that are absolutely necessary for the operation of our website, to store logins or shopping carts for the duration of your session, or cookies that are set for security reasons.
Statistics, marketing and personalization cookies: these are cookies that are used for analysis purposes or reach measurement. In particular, information on search terms entered or the frequency of page views may be stored via such “tracking” cookies. In addition, the surfing behavior of an individual user (e.g. viewing certain content, using functions, etc.) can also be stored in a user profile. Such profiles are used to display content to users that matches their potential interests. Insofar as we use services that store cookies on your terminal device for statistical, marketing and personalization purposes, we will inform you separately in the following sections of our data protection statement or in the context of obtaining your consent.
A general objection to the use of cookies used for online marketing purposes can be declared for a large number of the services, especially in the case of tracking, via the U.S. site http://www.aboutads.info/choices/ or the EU site http://www.youronlinechoices.com/.
Furthermore, the storage of cookies can be achieved by disabling them in the browser settings. Please note that in this case not all functions of this online offer can be used.
If we do not obtain your consent to the setting of cookies, we base the processing of your data on our legitimate interest in improving the quality and user-friendliness of our website, in particular the content and functions. You have via the security settings of your browser to object to the use of cookies set by us in the context of our legitimate interest. There you have the option of specifying whether you do not accept cookies from the outset or only on request, or specify that cookies are deleted each time you close your browser. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website to their full extent. Legal basis: Legitimate interest, Art. 6 para. 1 lit. f GDPR.
If we ask you before your visit to our website to be allowed to set certain cookies on your terminal device and you consent, the consent you give is the legal basis. As part of the consent, we inform you about which cookies we set in detail. If you do not give this consent, we will only set the so-called technically necessary cookies that are required for the proper operation of our website and its display in your browser. If you have consented to the setting of cookies, you have the option to revoke your consent at any time. Legal basis: Consent, Art. 6 para. 1 lit. a GDPR.
Webhosting
To maintain our Internet pages, we use a host provider on whose server our Internet pages are stored and made available for retrieval on the Internet (hosting). In this context, the provider may process all data transmitted via the browser used by you, which is generated during the use of our Internet pages. This includes, in particular, your IP address, which the provider requires in order to deliver our online offer to the browser you are using, as well as all entries you make via our website. Legal basis: Legitimate interest, Art. 6 para. 1 lit. f GDPR.
With SSL/TLS encryption
This website uses SSL/TLS encryption for security reasons and to protect the transmission of confidential content, such as requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Server Log-Files
The provider of this website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- Browser type and Browser version
- Operating system used
- referrer URL
- Host name of the accessing computer
- Time of the server request
This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of specific indications of illegal use.
Webhosting-Provider
Nine
Provider: Nine Internet Solutions
Web: Nine Internet Solutions, Badenerstrasse 47, 8004 Zürich, Schweiz
Privacy policy: https://www.nine.ch/de/privacy-policy
Website (CMS & Extensions)
You have the possibility on our online medium, which is operated with the free open source CMS WordPress, to get in contact with us via contact form, to comment on articles and to subscribe to comments, to make ratings and to set bookmarks as well as to log in to your user account or to register new.
Contact form
If you send us inquiries via the contact form, your data from the inquiry form including the contact data you provided there will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not pass on this data without your consent. Legal basis: Contract fulfillment and pre-contractual inquiries, Art. 6 para. 1 lit. b GDPR, legitimate interest, Art. 6 para. 1 lit. f GDPR.
Comments
For the comment function on this website, in addition to your comment, details of when the comment was created, your e-mail address and, if you do not post anonymously, the username you have chosen will be stored. An anonymized string may be created from your email address (also called a hash) and passed to the Gravatar service to verify that you are using it. The privacy policy of the Gravatar service can be found here: https://automattic.com/privacy/. After your comment is shared, your profile picture is publicly visible in the context of your comment. Legal basis: legitimate interest, Art. 6 para. 1 lit. f GDPR.
Storage of the IP address
Our comment function stores the IP addresses of users who post comments. Since we do not check comments on our site before they are activated, we need this data to be able to take action against the author in the event of legal violations such as insults or propaganda. Legal basis: legal obligation, Art. 6 para. 1 lit. c GDPR.
Subscribing to comments
As a user of the site, you can subscribe to comments after registering. You will receive a confirmation email to verify that you are the owner of the email address provided. You can unsubscribe from this feature at any time via a link in the info emails. Legal basis: Consent, Art. 6 para. 1 lit. a GDPR.
Ratings and bookmarks
When using the ratings or bookmarks feature, cookies are used to provide a better user experience. These cookies are used solely and exclusively for the functionality of the application and not for evaluations. Legal basis: legitimate interest, Art. 6 para. 1 lit. f GDPR.
Registration, login and user account
You have the possibility to register on our online medium to create a user account. For this purpose, it is necessary to submit personal data, which can be seen in the input mask. The data requested there includes, in particular, your name, your e-mail address, a user name, if applicable, and the password. This data is stored and processed by us in order to set up a user account for you and to enable (repeated) registration. The data can be changed or deleted by you at any time. The data will not be disclosed to third parties unless this serves the technical and organizational processing of the existing user contract between us. To protect you and us from abusive registrations, we store the IP address assigned to you at the time of registration, as well as the date and time of registration. Legal basis: contract performance and pre-contractual inquiries, Art. 6 para. 1 lit. b GDPR, legal obligation, Art. 6 para. 1 lit. c GDPR, legitimate interest, Art. 6 para. 1 lit. f GDPR.
Sharing content
Users of this website have the possibility to share articles or posts on social networks, send them by e-mail or with other services. Clicking on a share button opens a link that redirects to the corresponding service in a new window (without loading an external script beforehand). Clicking on a share button opens a new window in which the respective service or network is loaded. The legal basis is legitimate interest, Art. 6 para. 1 lit. f GDPR.
Newsletter
If you would like to receive the newsletter offered on this website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the specified e-mail address and agree to receive the newsletter (Double-Opt-In). Further data will not be collected. We use this data exclusively for sending the requested information and do not pass it on to third parties.
You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the “unsubscribe link” in the newsletter. Legal basis: Consent, Art. 6 para. 1 lit. a GDPR.
Evaluation of user behavior
If you have given your consent, we evaluate your user behavior when sending the newsletter. For this purpose, our newsletter contains tracking pixels and tracking links. This allows us to recognize whether and when you have opened the newsletter and whether and which links you have clicked on in the newsletter.
Mailing service provider
Mailgun
Provider: Mailgun, San Antonio HQ 112 E Pecan St, 1135 San Antonio, TX, 78205, USA
Web: https://www.mailgun.com
Privacy policy: https://www.mailgun.com/gdpr/
The newsletter is sent using the mailing service provider Mailgun, a newsletter mailing platform of the US provider Mailgun, San Antonio HQ 112 E Pecan St, 1135 San Antonio, TX, 78205, USA.
The shipping service provider is used on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR and an order processing agreement pursuant to Art. 28 para. 3 p. 1 GDPR.
The dispatch service provider may use the data of the recipients in pseudonymous form, i.e. without assignment to a user, to optimize or improve its own services, e.g. to technically optimize the dispatch and presentation of the newsletters or for statistical purposes. However, the dispatch service provider does not use the data of our newsletter recipients to write to them itself or to pass the data on to third parties.
Security
We use the security plugin “iThemes Security” for the security of our website and to protect against brute force attacks. There is a legitimate interest to protect our website according to Art. 6 para. 1 lit. f GDPR. For this purpose, the collection of the IP address is necessary to protect the website from unauthorized access attempts. The IP addresses are only used for this purpose and are not merged with other data. Furthermore, the IP address is only collected when the login or administration area of this website is accessed.
iThemes Security Plugin
Provider: Liquid Web Inc, 2703 Ena Dr., Lansing, MI 48917, USA
Web: https://ithemes.com/
Privacy policy: https://ithemes.com/privacy-policy/
Privacy policy GDPR: https://www.liquidweb.com/blog/liquid-web-and-gdpr-compliance/
The use of the security service is based on our legitimate interests according to Art. 6 para. 1 lit. f GDPR and an order processing agreement according to Art. 28 para. 3 p. 1 GDPR.
Advertising by e-mail, mail or telephone
We process personal data for our promotional communications by e-mail, mail or telephone. You can at any time contradict our advertising measures or revoke the previously given consent to receive our advertising communication at any time. In order to be able to prove in case of doubt that your consent was given even after your objection or revocation, we may store your data for up to 4 years after your objection/revocation. We will not use your data for any further purposes after your objection/revocation. If you want us to delete your data before then, we will do so after you have confirmed that you originally gave us consent. Legal basis: Consent, Art. 6 para. 1 lit. a GDPR, legitimate interest, Art. 6 para. 1 lit. f GDPR.
Onlineshop
We process the data of our customers in accordance with the data protection provisions of the Federal (Data Protection Act, DSG) and the EU-GDPR, in the context of the ordering processes in our online store to enable them to select and order the selected products and services, as well as their payment and delivery, or execution.
The processed data includes master data (inventory data), communication data, contract data, payment data and the persons affected by the processing include our customers, prospective customers and other business partners. The processing is carried out for the purpose of providing contractual services in the context of operating an online store, billing, delivery and customer services. In this context, we use session cookies, e.g. for storing the shopping cart content, and permanent cookies, e.g. for storing the login status.
The processing is carried out on the basis of Art. 6 para. 1 lit. b (execution of order transactions) and c (legally required archiving) GDPR. In this context, the information marked as required is necessary for the justification and fulfillment of the contract. We disclose the data to third parties only in the context of delivery, payment or in the context of legal permissions and obligations. The data is only processed in third countries if this is necessary for the fulfillment of the contract (e.g. at the request of the customer for delivery or payment).
Users can optionally create a user account, in which they can view their orders in particular. As part of the registration process, the required mandatory information will be provided to users. User accounts are not public and cannot be indexed by search engines, e.g. Google. If users have terminated their user account, their data with regard to the user account will be deleted, subject to their retention is necessary for commercial or tax reasons entspr. Art. 6 para 1 lit. c GDPR. Information in the customer account remains until its deletion with subsequent archiving in the event of a legal obligation. It is the responsibility of the users to save their data in the event of termination before the end of the contract.
Within the scope of registration and renewed registrations as well as the use of our online services, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests, as well as those of users in protection against abuse and other unauthorized use. In principle, this data is not passed on to third parties, unless it is necessary for the pursuit of our claims or there is a legal obligation to do so in accordance with Art. 6 Para. 1 lit. c GDPR.
The deletion takes place after the expiry of legal warranty and comparable obligations, the necessity of keeping the data is reviewed at irregular intervals. In the case of legal archiving obligations, deletion takes place after their expiry.
External payment service providers
This website uses external payment service providers through whose platforms users and we can make payment transactions. For example via
- PostFinance (https://www.postfinance.ch/de/detail/rechtliches-barrierefreiheit.html)
- Visa (https://www.visa.de/nutzungsbedingungen/visa-privacy-center.html)
- Mastercard (https://www.mastercard.ch/de-ch/datenschutz.html)
- American Express (https://www.americanexpress.com/de/legal/online-datenschutzerklarung.html)
- Paypal (https://www.paypal.com/de/webapps/mpp/ua/privacy-full)
- Bexio AG (https://www.bexio.com/de-CH/datenschutz)
- Payrexx AG (https://www.payrexx.ch/site/assets/files/2592/datenschutzerklaerung.pdf)
- Apple Pay (https://support.apple.com/de-ch/ht203027)
- Stripe (https://stripe.com/ch/privacy)
- Klarna (https://www.klarna.com/de/datenschutz/)
- Skrill (https://www.skrill.com/de/fusszeile/datenschutzrichtlinie/)
- Giropay (https://www.giropay.de/rechtliches/datenschutzerklaerung) etc.
In the context of the performance of contracts, we use the payment service providers on the basis of the Swiss Data Protection Ordinance and, where necessary, Art. 6 para. 1 lit. b. GDPR. Furthermore, we use external payment service providers on the basis of our legitimate interests pursuant to the Swiss Data Protection Ordinance as well as and to the extent necessary pursuant to Art. 6 para. 1 lit. f. GDPR in order to offer our users effective and secure payment options.
The data processed by the payment service providers includes inventory data, such as the name and address, bank data, such as account numbers or credit card numbers, passwords, TANs and checksums, among others, as well as the contract, totals and recipient-related information. The information is required in order to carry out the transactions. However, the data entered is only processed by the payment service providers and stored with them. We as the operator do not receive any information about (bank) account or credit card, but only information to confirm (accept) or reject the payment. Under certain circumstances, the data is transmitted by the payment service providers to credit agencies. The purpose of this transmission is to check identity and creditworthiness. In this regard, we refer to the terms and conditions and data protection information of the payment service providers.
For the payment transactions, the terms and conditions and the privacy policy of the respective payment service providers apply, which can be accessed within the respective website or transaction applications. We also refer to these for the purpose of further information and assertion of revocation, information and other data subject rights.
Web analytics and statistics
In order to record and statistically evaluate the flow of visitors to our Internet presence, we use web analysis services. Such services collect, among other things, data about the website from which you have accessed our website (so-called referrers), which pages of our website you have accessed, how long you have visited our pages and which interactions you have carried out there. In addition, data on the browser you use, computer system and type of device are collected. In addition, demographic information such as age or gender can be collected as pseudonymous values via such a service. If you have consented to the collection of your location data, this may also be processed, depending on the provider.
In order to collect and store this data, the web analysis service we use usually sets a cookie on the terminal device you use, which also collects the IP address assigned to you. However, this is shortened via a so-called IP masking procedure, so that the IP address can no longer be assigned to your visit to our website. In addition, no clear data such as names or e-mail addresses are stored. Neither we nor the service we use know the identity of visitors to our website.
We would like to point out that, depending on the country of domicile of the service provider mentioned below, the data collected via the service may be transmitted and processed outside the area of the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR may not be complied with and that the enforcement of your rights may not be possible or may be difficult.
If we have asked you for your consent before using the respective service, this is the legal basis, Art. 6 (1) lit. a GDPR. In addition, we use the respective service on the basis of our legitimate interest in analyzing the flow of visitors to our website in order to be able to continuously improve the functions, offers and the user experience, the legal basis is Art. 6 para. 1 lit. f GDPR.
We use the following web analysis services:
Matomo Analytics (without Cookies, self-hosted)
Provider: InnoCraft Ltd. 150 Willis St, 6011 Wellington, Neuseeland
Web: https://matomo.org/
Privacy policy: https://matomo.org/privacy/
When using Matomo, the data collected via the analysis tool is not transmitted to the service provider, but rather remains on our server. In addition, no cookies are used in the variant we use. Rather, returning users are recognized with the help of a so-called “digital fingerprint”. This is stored anonymously and changed every 24 hours. Conclusions about the identity of individual users are not possible.
Google Analytics (GA4)
Provider: Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Domicil inside EU: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland
Web: https://marketingplatform.google.com/intl/de/about/analytics/
Privacy policy: https://policies.google.com/privacy
Privacy policy GDPR GA4: https://support.google.com/analytics/answer/12017362
This website uses Google Analytics, a web analytics service provided by Google Ireland Limited. If the data controller on this website is located outside the European Economic Area or Switzerland, then the Google Analytics data processing is carried out by Google LLC. Google LLC and Google Ireland Limited are hereinafter referred to as “Google”.
The statistics obtained enable us to improve our offer and make it more interesting for you as a user. This website also uses Google Analytics for a cross-device analysis of visitor flows, which is carried out via a user ID. If you have a Google user account, you can deactivate the cross-device analysis of your usage in the settings there under “My data”, “Personal data”.
No IP addresses are logged or stored during data collection in Google Analytics 4.
In Analytics, all IP addresses collected from users in the EU are deleted before being recorded across EU domains and servers.
No precise location data is provided in Analytics. Instead, the following metadata is derived from IP addresses: “city” (and the derived latitude and longitude of the city), “continent”, “country”, “region”, “subcontinent” (and the ID-based equivalents). For accesses originating from the EU, IP address data is only used to derive location data and is immediately deleted afterwards. They are not logged, are not accessible, and are not used for any other use cases.
When collecting measurement data in Analytics, all IP searches take place on EU-based servers before the traffic is forwarded to Analytics servers for processing.
In Google Analytics 4, all data from devices located in the EU (based on geographic location according to IP address) is collected via domains and servers in the EU before traffic is forwarded to Analytics servers for processing.
Google Analytics uses cookies. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout.
This will save a so-called opt-out cookie on your data carrier, which prevents the processing of personal data by Google Analytics. Please note that if you delete all cookies on your terminal device, these opt-out cookies will also be deleted, i.e. you will have to set the opt-out cookies again if you wish to continue to prevent this form of data collection. The opt-out cookies are set per browser and computer/end device and must therefore be activated separately for each browser, computer or other end device.
The legal basis for the use of Google Analytics is Art. 6 para. 1 lit. a GDPR and Art. 6 para. 1 p. 1 lit. f GDPR.
Google TagManager
Google Tag Manager is a solution with which we can manage so-called website tags via an interface and thus, for example, integrate Google Analytics and other Google marketing services into our online offering. The Tag Manager itself, which implements the tags, does not process any personal data of the users. With regard to the processing of users’ personal data, please refer to the following information on Google services. Usage guidelines: https://www.google.com/intl/de/tagmanager/use-policy.html.
Online Marketing
We would like to point out that, depending on the country of domicile of the service provider mentioned below, the data collected via the service may be transferred and processed outside the area of the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR will not be complied with and that the enforcement of your rights will not be possible or will be difficult.
If we have asked you for your consent before using the respective service, this is the legal basis, Art. 6 (1) lit. a GDPR. In addition, we use the respective service on the basis of our legitimate interest to analyze the flow of visitors to our website in order to continuously improve the functions, offers and user experience, Art. 6 para. 1 lit. f GDPR.
We use the following marketing services:
Google Ads
This website may use Google conversion tracking. If you have reached our website via an ad placed by Google, Google Ads will set a cookie on your computer. The conversion tracking cookie is set when a user clicks on an ad placed by Google. These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of our website and the cookie has not yet expired, we and Google can recognize that the user clicked on the ad and was redirected to this page. Each Google Ads customer receives a different cookie. Cookies can therefore not be tracked across Ads customers’ websites. The information obtained using the conversion cookie is used to create conversion statistics for Ads customers who have opted in to conversion tracking. Clients learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users.
If you do not wish to participate in the tracking, you can refuse the setting of a cookie required for this – for example, by means of a browser setting that generally deactivates the automatic setting of cookies or by setting your browser so that cookies from the domain “googleleadservices.com” are blocked.
Please note that you may not delete the opt-out cookies as long as you do not want any measurement data to be recorded. If you have deleted all your cookies in the browser, you must set the respective opt-out cookie again.
Google Remarketing
This website may use the remarketing function of Google Inc. The function is used to present interest-based advertisements to website visitors within the Google advertising network. A so-called “cookie” is stored in the browser of the website visitor, which makes it possible to recognize the visitor when they visit websites that belong to the Google advertising network. On these sites, the visitor can be presented with advertisements that relate to content that the visitor has previously accessed on websites that use Google’s remarketing function.
According to its own information, Google does not collect any personal data during this process. However, if you do not wish to use Google’s remarketing function, you can deactivate it in principle by making the appropriate settings at http://www.google.com/settings/ads. Alternatively, you can deactivate the use of cookies for interest-based advertising via the advertising network initiative by following the instructions at http://www.networkadvertising.org/managing/opt_out.asp.
Amazon affiliate program
We are, on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f. GDPR, participant of the affiliate program of Amazon EU, which was designed to provide a medium for websites, by means of which through the placement of advertisements and links to Amazon, advertising fees can be earned (affiliate system). As an Amazon affiliate, we earn from qualified purchases.
Amazon uses cookies to track the origin of orders. Among other things, Amazon can recognize that you have clicked on the affiliate link on our website and subsequently purchased a product from Amazon.
For more information on the use of data by Amazon and the possibility to object, please refer to the company’s privacy policy under the link: https://www.amazon.de/gp/help/customer/display.html?nodeId=201909010.
Amazon and the Amazon logo are trademarks of Amazon.com, Inc. or one of its affiliated or associated companies.
Booking.com affiliate program
We are, on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f. GDPR, participant of the affiliate program of Booking.com, which was designed to provide a medium for websites, by means of which through the placement of advertisements and links to Booking.com advertising fees can be earned (affiliate system). As a Booking.com affiliate, we earn from qualified bookings.
Booking.com uses cookies to track the origin of the booking. Among other things, Booking.com can recognize that you have clicked on the affiliate link on our website and subsequently made a booking with Booking.com.
For more information on the use of data by Booking.com and the possibility to object, please refer to the company’s privacy policy under the link: https://www.booking.com/content/privacy.de.html.
Partner programs of affiliate networks
We are on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f. GDPR, participants of affiliate programs (usually online stores or service providers) of various affiliate networks designed to provide a medium for websites, by means of which advertising fees can be earned through the placement of advertisements and links to affiliate programs (affiliate system). As a partner of various affiliate networks, we earn from qualified purchases.
Affiliate networks use cookies to track the origin of the booking. Affiliate networks can recognize, among other things, that you have clicked on the affiliate link on our website and subsequently made a booking with the respective affiliate program.
Further information on the use of data by affiliate networks and the possibility to object can be found in the list below:
Adtraction
Provider: Adtraction AB, Biblioteksgatan 29, 114 35 Stockholm, Schweden
Web: https://adtraction.com/
Privacy policy: https://adtraction.com/about-us/privacy-policy
AWIN
Provider: AWIN AG, Eichhornstraße 3, 10785 Berlin
Web: https://www.awin.com/de
Privacy policy: https://www.awin.com/de/datenschutzerklarung
Tradedoubler
Provider: Tradedoubler GmbH, Herzog-Wilhelm-Straße 26, 80331 München
Web: https://www.tradedoubler.com/de/
Privacy policy: https://www.tradedoubler.com/de/privacy-policy/
TradeTracker
Provider: TradeTracker Deutschland GmbH, Uhlandstraße 26, 22087 Hamburg
Web: https://tradetracker.com/
Privacy policy: https://tradetracker.com/privacy-policy/
Webgains
Provider: ad pepper media GmbH, FrankenStraße 150C, FrankenCampus, 90461 Nürnberg
Web: https://www.webgains.com/public/de/
Privacy policy: https://www.webgains.com/public/de/datenschutzerklaerung/
Online presence on social networks and platforms
We operate online presences within the social networks listed below. If you visit one of these presences, the data listed in more detail below will be collected and processed by the respective provider. As a rule, this data is collected for advertising and market research purposes and usage profiles are created with it. In the usage profiles, data can be stored regardless of the device you use. This is particularly the case if you are a member of the respective platform and logged in to it. The usage profiles can be used by the providers to play interest-based advertising to you. You have a right of revocation against the creation of user profiles. To exercise this right, you must contact the respective provider.
If you have an account with one of the providers listed below and are logged in there when you visit our website, the respective provider may collect data about your usage behavior on our website. To prevent such a linking of your data, you can log out of the provider’s service before visiting our site.
For what purpose and to what extent data is collected by the provider, you can see the respective, in the following communicated, privacy statements of the providers.
We would like to point out that, depending on the country of domicile of the provider named below, the data collected via its platform may be transmitted and processed outside the area of the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR will not be complied with and that the enforcement of your rights will not be possible or will be difficult. Legal basis: consent, Art. 6 para. 1 lit. a GDPR, legitimate interests Art. 6 para. 1 lit. f GDPR.
We maintain online presences on the following social networks:
Provider: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
Domicile in EU: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Web: https://www.facebook.com/
Privacy policy: https://www.facebook.com/about/privacy/
Privacy policy Facebook-pages: https://www.facebook.com/legal/terms/information_about_page_insights_data
Github
Provider: Github Inc., 88 Colin P Kelly Jr St San Francisco California 94107
Web: https://github.com/
Privacy policy: https://docs.github.com/de/site-policy/privacy-policies/github-privacy-statement
Provider: Instagram Inc., 1601 Willow Road, Menlo Park CA 94025, USA
Parent company: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
Domicile in EU: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Web: https://www.instagram.com/
Privacy policy: http://instagram.com/about/legal/privacy
Provider: LinkedIn Corporation, 1000 W Maude, Sunnyvale, CA 94085, USA
Domicile in EU: LinkedIn, Hofstatt 4th Floor, Sendlinger Str. 12, 80331 München
Web: https://www.linkedin.com/?trk=nav_logo
Privacy policy: https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy
Provider: Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA
Web: https://twitter.com/?lang=de
Privacy policy: https://twitter.com/de/privacy
WordPress
Provider: Automattic Inc., 60 29th St 343, San Francisco, California, 94110, United States
Web: https://wordpress.org/
Privacy policy: https://wordpress.org/about/privacy/
Provider: New Work SE, Dammtorstraße 30, 20354 Hamburg
Web: https://www.xing.com/
Privacy policy: https://privacy.xing.com/de/datenschutzerklaerung
Data transfer to third-party countries
Among other things, tools from companies based in the USA are integrated on our website. If these tools are active, your personal data may be transferred to the US servers of the respective companies. We would like to point out that the USA is not a safe third country in the sense of EU data protection law. US companies are obliged to hand over personal data to security authorities without you as a data subject being able to take legal action against this. It can therefore not be ruled out that US authorities (e.g. intelligence services) process, evaluate and permanently store your data located on US servers for monitoring purposes. We have no influence on these processing activities.
Security precautions
We also take state-of-the-art technical and organizational security measures to comply with the provisions of data protection laws and to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized third-party access.
Actuality and change of this privacy policy
The current version published on our website applies. Due to changes in legal or regulatory requirements, it may become necessary to adapt this privacy policy.
Sources: This privacy policy contains translated passages and texts from the free privacy generators of:
- BrainBox Solutions (Brainbox.swiss)
- SOS Recht (SOS Recht is a service of Mueller.legal Rechtsanwälte Partnerschaft, based in Berlin).
Translation: This privacy policy is partially translated with deepl.com.