When you visit our website, our web server temporarily evaluates so-called usage data for statistical purposes as a protocol used to improve the quality of our website. This data record consists of
- name and address of the requested content,
- date and time of the query,
- of the transferred data volume,
- the access status (content transferred, content not found),
- the description of the web browser and operating system used,
- the referral link, which indicates from which page you reached ours,
- the IP address of the requesting computer, which is shortened in such a way that a personal reference can no longer be established.
- This data will only be evaluated anonymously.
Storage of the IP address for security purposes
In addition, we store the complete IP address transmitted by your web browser for a period of seven days in the interest of detecting, limiting and eliminating attacks on our web pages. After this, we delete or anonymize the IP address. The legal basis is Art. 6 para. 1 let. f) GDPR.
We take technical and organizational measures to protect your data as comprehensively as possible from unwanted access. We use an encryption procedure on our web pages. Your data is transferred from your computer to our server and vice versa via the Internet using TLS encryption. You can usually recognize this by the fact that the lock symbol in the status bar of your browser is closed and the address line begins with https://.
We use the web analysis tool “Matomo” to design our websites according to your needs. Matomo creates user profiles based on pseudonyms. For this purpose, permanent cookies are stored on your end device and read out by us. Through this, we are able to recognize returning visitors and count them as such.
The data processing is based on your consent in accordance with Art. 6 Para. 1 let. a) GDPR or § 15 Para. 3 TMG, if you have given your consent via our banner.
You can revoke your consent at any time. Please follow this link and make the appropriate settings via our banner.
- Maximum Storage Duration
- Adequate Level of Data Protection: Processing within EU/EEA
- Revocation of Consent: If you want to revoke your consent, please click here and make the appropriate setting via our banner.
On our websites, we embed videos that are not stored on our servers. To ensure that visiting our websites with embedded videos does not automatically lead to reloading of third-party content, we merely show locally stored preview images of the videos in a first step. This does not provide the third party provider with any information.
Only after a clicking the preview image, contents of the third party provider are reloaded. The third party provider is then informed that you visited our site and receives the usage data technically required in this context. Furthermore, the third party provider is then able to implement tracking technologies. We have no influence on the further data processing by the third party provider. By clicking on the preview image, you give us your consent to reload content from the third-party provider.
The embedding takes place on the basis of your consent in accordance with Art. 6 para. 1 let. a) GDPR, provided that you have given your consent by clicking on the preview image. Please note that the embedding of many videos leads to your data being processed outside the EU or EEA. In some countries, there is a risk that authorities may access the data for security and surveillance purposes without you being informed or having the right to appeal. If we use providers in insecure third countries and you give your consent, the transfer to an insecure third country is based on Art. 49 para. 1 let. a) GDPR.
- Provider: Vimeo (USA)
- Adequate Level of Data Protection: No adequate level of data protection. The data is transmitted on the basis of Art. 49 para. 1 let. a) GDPR.
- Revocation of Consent: If you clicked on a preview image, the contents of the third party provider will be reloaded immediately. If you do not wish such reloading on other sites, please do not click on the thumbnails anymore.
Newsletter Registration and Dispatch
On our website, you can order a newsletter. Please note that we need certain data (at least your e-mail address) to register for the newsletter.
The newsletter will only be sent if you have given us your explicit consent in accordance with Art. 6 Para. 1 let. a) GDPR. After signing up for the newsletter on our website, you will receive a confirmation e-mail to the e-mail address you provided (so-called double opt-in). You can revoke your consent at any time. An uncomplicated way to revoke your consent is, for example, to use the unsubscribe link provided in every newsletter.
As part of the newsletter registration process, we store further data in addition to the data already mentioned, if this is necessary to prove that you have ordered our newsletter. This may include the storage of the complete IP address at the time of the order or confirmation of the newsletter, as well as a copy of the confirmation mail sent by us. The corresponding data processing is carried out on the basis of Art. 6 para. 1 let. f) GDPR and is carried out in the interest of being able to account for the legality of the newsletter dispatch.
When sending out newsletters, we are supported by our service provider, CleverReach GmbH & Co. KG. We transmit your e-mail address to CleverReach GmbH & Co. KG, which acts for us as a strictly instruction-bound order processor. We have concluded a corresponding order processing contract with the service provider in accordance with Art. 28 para. 3 GDPR. No data will be transferred to countries outside the EU or EEA.
Unless we have already informed you in detail about the storage period, we will delete personal data if it is no longer required for the aforementioned processing purposes and no legal storage obligations prevent deletion.
Other Contract Processors
In accordance with Art. 28 GDPR, we pass on your data to service providers who support us in the operation of our websites and related processes. These are e.g. hosting service providers. Our service providers are strictly instruction-bound via respective contacts.
In what follows, we list the contract processors with whom we collaborate, if we have not already done so in the above text of the data protection declaration. Should data be transferred outside the EU or EEA in this context, we will provide information on the appropriate level of data protection.
Order Processor: CDLX GmbH
Adequate Level of Data Protection: Processing only within EU/EEA
Order Processor: Hetzner Online GmbH
Adequate Level of Data Protection: Processing only within EU/EEA