Article 12 of the General Data Protection Regulation obliges us to tell you how we process your data in a precise, transparent, understandable and easily accessible form and in clear and simple language. We want to make a sincere contribution to this and summarise our privacy policy as follows. The details can be found under the summary:
|
Processing operations |
tools/processing procedures used, if applicable |
|
Processing operations necessary for the performance of contracts |
Contact form, internal area, Klick-Tipp (for contract-related communication), Hubspot (for contract-related communication), Webinaris, Zapier (for contract-related communication) |
|
Processing operations for which your consent is required |
Google Analytics, Kameleoon, Facebook (company page and advertising material), Instagram (company page and advertising material), LinkedIn (company page and advertising material), Xing (company page and advertising material), YouTube, Vimeo, Google Ads, Google Remarketing, Newsletter, Klick-Tipp (for advertising communication), Hubspot (for advertising communication), Zapier (for advertising communication). |
|
Processing operations which are in our legitimate interest |
Transient cookies, data processing during the informative use of our website, Rights management, external consulting, affiliate programs, especially Amazon affiliate program |
|
Processing operations involving automated decision-making, including profiling where applicable. |
No processing takes place here. |
This data protection declaration is directed at all persons who visit our website. All personal terms refer to both male and female and diverse persons and language forms and are always to be understood with the addition "(m/f/d)".
is the controller within the meaning of Article 4(7) of the GDPR for the processing of personal data described herein: Greator GmbH, Brüsseler Str. 89-93, Phone: +49 (0)221 - 6695980, Fax: +49 (0)221 - 9543235, impressum@greator.com. The managing directors are Dr. med. Stefan Frädrich and Mr. Alexander Müller. The external data protection officer is lawyer Dr. Stephan Gärtner, dsb@stanhope.de.
Visitors have several rights with regard to the personal data processed about them under the General Data Protection Regulation. In particular
As far as the factual prerequisites of the respective claims are given and we can identify you, we will fulfil your claims promptly.
(1) As far as we can see in the above table ("Data protection at a glance") in the last line ("Processing operations involving automated decision-making, including profiling where applicable."), this means that we exceptionally carry out a special form of data processing for these tools/processing constellations. In this context, we would like to point out the following:
(2) In principle, such processing operations are As far as we can see in the table above ("Data protection at a glance") in the last line ("Processing operations involving automated decision-making, including profiling where applicable."), we do not use this technology within the framework of our website.
(1) It is possible that we transfer personal data to bodies that are located outside the European Union or at least cannot exclude this (henceforth: third country body). In these cases, we must guarantee in accordance with Article 44 of the GDPR that the level of protection provided by the GDPR will not be undercut as a result. As a precaution, we would like to point out that the third country agency can be both a controller and a processor.
(2) Insofar as we refer to a so-called adequacy decision in the following statement, this means that the third country agency is located in a country, territory or specific sector for which the Commission has decided that it offers an adequate level of protection. This guarantee then follows from Article 45 GDPR.
(3) Insofar as we refer to the so-called standard contractual clauses in the following declaration, this means that the third country agency has accepted the so-called EU standard contractual clauses and has thus contractually committed itself to respecting the level of protection of the General Data Protection Regulation. This guarantee then follows from Article 46(1) and (5) GDPR.
(4) Insofar as we refer in the following statement to the fact that you have consented to the transfer to the third country body, this means that you have been informed about all existing possible risks of such transfers for which there is no adequacy decision or other guarantees and have nevertheless consented to the data transfer. This guarantee then follows from Article 49(1)(a) of the GDPR. For reasons of transparency, we describe the corresponding risks in a separate section.
(5) We are only providing this information as a precautionary measure. It shall only apply if we refer to it in the following declaration. There is also the possibility that we do not make use of this.
(1) In addition to the explanations under "Data transfer to bodies outside the European Union" - paragraph 3, we would like to draw your attention to a special constellation. In the case of transfers to third-country bodies based in the USA, the possibility of invoking the EU standard contractual clauses is restricted. Therefore, if we intend to invoke (or are already invoking) the EU standard contractual clauses in this context, please note the following:
(2) We will only base the transfer of personal data to US third country entities on the EU standard contractual clauses if we have previously conducted a thorough review of the related facts. In doing so, we first determine a risk level (type and, in particular, sensitivity of the data concerned, scope of data processing, purpose of data processing, susceptibility to abuse). We then check whether the contractual commitments made by the US third country office and the technical and organisational measures taken there (e.g. processing of data exclusively in EU-based data centres, encryption technology) sufficiently minimise the risks identified in advance. Only if we come to the conclusion that the EU standard contractual clauses are a sufficient guarantee even in the case of a US third-country entity, will we invoke them.
(3) We are only providing this information as a precautionary measure. It shall only apply if we refer to it in the following declaration. There is also the possibility that we do not make use of this.
(1) In addition to the explanations under "Data transfer to bodies outside the European Union" - paragraph 4, we would like to draw your attention to a further special constellation. In the case of transfers to third-country bodies based in the USA, the possibility of invoking the EU standard contractual clauses is restricted. Therefore, in some cases, the only option is to ask for your consent to this transfer. However, before you give this consent, we ask you to take note of the following risks and consider them when deciding whether to consent:
(2) We strongly advise you that a data transfer to the USA without the protection of an adequacy decision may entail significant risks. In particular, please note the following risks:
1. There is no uniform data protection law in the US; certainly not one comparable to the data protection law applicable in the EU. This means that both US companies and government agencies have more possibilities to process your personal data, especially for advertising targeting, profiling and conducting (criminal) investigations. Our possibilities to take action against this are significantly limited.
The US legislator has granted itself numerous rights of access to your personal data (see, for example, Section 702 of FISA or E.O. 12333 in conjunction with PPD-28), which are not compatible with our understanding of the law. In particular, there is no proportionality test comparable to those in the European Union prior to access.
3. citizens of the European Union cannot expect effective legal protection in the USA.
4. we will generally only ask you for such consent if we have concluded that the US third party cannot successfully rely on EU standard contractual clauses.
(3) We make this declaration merely as a precaution. It shall only apply if we refer to it in the subsequent declaration. There is also the possibility that we do not make use of this.
(1) In addition to the explanations under "Data transfer to bodies outside the European Union" - paragraph 4, we would like to draw your attention to a further special constellation. In the case of transfers to third-country bodies based in the Russian Federation, the possibility of invoking the EU standard contractual clauses is limited. Therefore, in some cases, the only option is to ask for your consent to this transfer. However, before you give this consent, we ask you to take note of the following risks and consider them when deciding whether to consent:
(2) We strongly advise you that a data transfer to the Russian Federation without the protection of an adequacy decision may entail significant risks. In particular, please note the following risks:
Only insofar as we refer to Article 6 (1) sentence 1 lit. c DSGVO in the following data protection declaration is there a legal obligation to process.
(1) The purpose of the processing operations described below is the establishment, performance, termination of contracts as well as the defence against claims on your part which are directly or indirectly related to the respective contract.
(2) Insofar as the purpose of the processing is the establishment, performance, termination of contracts, Article 6 (1) sentence 1 lit. b DSGVO is the legal basis for the processing of your personal data. According to this provision, the processing of your personal data is also permissible without your consent if it is necessary for the performance of a contract to which you are a party or for the implementation of pre-contractual measures that are carried out at your request.
(3) Insofar as the purpose of the processing is the defence against claims on your part which are directly or indirectly related to the respective contract, Article 6 (1) sentence 1 lit. b DSGVO shall also be the legal basis in addition to Article 6 (1) sentence 1 lit. f DSGVO. Our legitimate interest in this respect follows from our right to defend ourselves against claims on their part.
(4) Only insofar as we process your data in your function as an applicant or current or former employee on this website, Article 88 DSGVO in conjunction with. § Section 26 (1) BDSG2018 is the legal basis. According to this provision, the processing of your personal employee data (including your applicant data) is also permitted without your consent if it is necessary for the performance of an employment contract to which you are a party or for the implementation of pre-contractual measures.
(5) Insofar as we refer to Article 6(1) sentence 1 lit. f DSGVO, you have the right to object to the processing, which in cases of justified objection leads to an end of the processing based on this. And insofar as we do not expressly refer to Article 6(1) sentence 1 lit. c DSGVO, there is no obligation to process.
(1) We store the data as long as this is necessary to establish, execute, possibly terminate the contract and/or to defend ourselves against claims by you that are directly or indirectly related to the respective contract.
(2) Insofar as a contractual relationship is established between us, we store the data additionally until the expiry of our statutory retention periods. The legal basis for this is Article 6 (1) sentence 1 lit. c DSGVO in conjunction with. § 147 AO, § 257 HGB. According to these regulations, some of the above-mentioned data must also be retained beyond the point in time at which the purpose was achieved. We may be obliged to do so,
to retain data relating to your person resulting from received commercial or business letters, from the reproduction of the received commercial or business letters as well as from other documents which are of significance for taxation for six years, whereby the retention period generally begins with the end of the calendar year in which the relevant document arose (Article 6 (1) sentence 1 lit. c DSGVO in conjunction with. § 147 AO or in conjunction with. § 257 HGB)."
(3) If we process your data in your capacity as an applicant on this website, we will generally store the data until a final decision has been made regarding your application and
In the cases of paragraph 3 clauses 1 and 2, we only reserve the right to store data, but this data protection declaration does not establish an obligation to store data.
(4) Insofar as we refer to Article 6(1) sentence 1 lit. f DSGVO, you have the right to object to the processing, which in cases of justified objection leads to an end of the processing based on this. And insofar as we do not expressly refer to Article 6(1) sentence 1 lit. c DSGVO, there is no obligation to process.
(1) We would like to briefly describe this processing operation: We provide you with a contact form on this website. We will receive, check and use the data processed in this way to reply to you if necessary.
(2) In doing so, we generally process the following data from you:
(1) We use the following provider to create and manage forms: HubSpot, Inc, 25 First Street, Cambridge, MA 02141 (USA), hubspotgermany@hubspot.com. We have commissioned this provider with the processing of your data in accordance with Article 28 DSGVO. You can find the agreement here: https://legal.hubspot.com/de/dpa. You can find the privacy policy of this provider here: https://legal.hubspot.com/de/privacy-policy.
(2) Here, we generally process all data about the content, manner and scope of your entries in the respective form. You can find more details about the manner of processing via this provider here: https://www.hubspot.de/products/marketing/forms and under the heading "Contact form" in this privacy policy.
(3) The fact that this provider is based outside the European Union does not prevent it from being commissioned. This is because the provider has committed itself in accordance with the EU standard contractual clauses.
(1) We would like to briefly describe this processing procedure: On our website, you have the option of registering to use an internal area, then logging in to it and finally logging out again. When you register for the internal area, we collect the data you provide during the registration process. Within the internal area we register your actions, as far as this is necessary for the provision of the hereby pursued debt relationship. When you deregister, we delete the data, provided that no retention periods are opposed (cf. our explanations above under "General information on the retention period of data in the context of the processing operations described below“).
(2) In doing so, we generally process the following data from you: (1) the registration data you entered, (2) the data about logins, (3) about actions you take within the log-in area, (4) about the status for logging out.
(1) We use the following provider here: Webinaris GmbH, Bussardstr. 5, 82166 Gräfelfing (Germany). We would like to briefly describe this processing procedure: You can register for one of our webinars on our website or otherwise communicate with us via video call. We carry out all the necessary steps associated with this, from the initiation, to the implementation, to the follow-up of the webinar via this service provider, who receives your data for these purposes as soon as you register for the webinar via our website, but at the latest when you participate in the webinar. Here, we process the data that the provider provides to us for the purpose of establishing, executing and terminating this contract precisely for these purposes. We have commissioned this provider in accordance with Article 28 DSGVO. You can find the privacy policy of this provider here: https://www.webinaris.com/datenschutzerklaerung/. You can also find more information about data protection with this provider here: https://support.webinaris.com/hc/de/articles/360000957829-Webinaris-und-die-DSGVO.
(2) In doing so, we generally process the following data from you: We document via this provider all data that you disclose when registering and participating in the respective webinar. You can find more information on the type and manner of processing under: https://www.webinaris.com/webinar-software-funktionen/.
(1) We use the following provider: KLICK-TIPP LIMITED, 15 Cambridge Court, 210 Shepherd's Bush Road, London W6 7NJ (United Kingdom). We would like to describe this processing operation briefly: On our website you have the opportunity to buy products from us and/or book services from us. We control
We have commissioned this provider with the processing of your personal data required in this respect in accordance with Article 28(3) DSGVO. You can find the privacy policy of this provider here: https://www.klick-tipp.com/datenschutzerklärung.
(2) In doing so, we generally process the following data from you: (1) all contact and order data entered by you, (2) payment data, if applicable, (3) data on delivery, and (4) data on the assertion of rights on your part and the response on our part. You can find more information on the type and manner of processing at: https://www.klick-tipp.com/handbuch.
(3) The commissioning of this provider is also not prevented by the fact that it has its registered office outside the European Union. This is because, in view of the agreement between us and the provider, the data processing associated with this is additionally justified by Article 46 of the GDPR in conjunction with the Commission Decision of 5 February 2010 on standard contractual clauses (C(2010) 593) of 5 February 2010.
(1) We use the following provider here: HubSpot, Inc, 25 First Street, Cambridge, MA 02141 (USA), hubspotgermany@hubspot.com. On our website, you have the option of purchasing products from us and/or booking services from us. We control
We have commissioned this provider with the processing of your personal data required in this respect in accordance with Article 28(3) DSGVO. You can find the agreement here: https://legal.hubspot.com/de/dpa. You can find the privacy policy of this provider here: https://legal.hubspot.com/de/privacy-policy.
(2) In doing so, we generally process the following data from you: (1) all contact and order data entered by you, (2) payment data, if applicable, (3) data on delivery and (4) data on the assertion of rights on your part and the reaction on our part.
(3) The fact that this provider is based outside the European Union does not prevent it from being commissioned. This is because the provider has committed itself in accordance with the EU standard contractual clauses.
(1) We use the following provider here: Zapier Inc., 548 Market St #62411, San Francisco, California 94104 (USA), which provides the "Zapir" tool we use. We would like to describe this processing process briefly: With Zapier, we can connect web apps so that customer and prospect data can be exchanged automatically between the various applications. In this context, the data is exchanged via Zapier, so that the data may also be processed there. We have commissioned this provider with the processing of your personal data required in this respect in accordance with Article 28(3) DSGVO. You can find the privacy policy of this provider here: https://zapier.com/privacy/.
(2) In doing so, we generally process the following data from you: All data that we collect via tools that we use in connection with the establishment, execution and/or termination of contracts between us and have linked automatically via this provider. As a rule, this can be all data from the initiation of the contract (often your contact data), from the execution of the contract (often order and payment data) and from the termination of the contract (status end of contract, status discontinuation of services). You can find more information about the application possibilities under: https://zapier.com/learn/getting-started-guide/what-is-zapier/.
(3) The fact that this provider is based outside the European Union does not prevent it from being commissioned. This is because the provider has committed itself in accordance with the EU standard contractual clauses.
(1) The purpose of the processing operations described below is described separately for each tool.
(2) The legal basis for the respective data processing is your consent pursuant to Article 6(1) sentence 1 lit. a DSGVO. According to this provision, the processing of your personal data is permissible if you have given your consent to the processing of the personal data relating to you for one or more specific purposes.
(1) We store the data until you have revoked your consent.
(2) If a contractual relationship is established between us following processing based on your consent, we may additionally store some of your data until the expiry of our statutory retention periods. The legal basis for this is Article 6 (1) sentence 1 lit. c DSGVO in conjunction with. § 147 AO, § 257 HGB. According to these regulations, some of the above-mentioned data must also be retained beyond the point in time at which the purpose was achieved. We may be obliged to do so,
(1) Insofar as we obtain consent from you for processing, you have the right to revoke this consent at any time with effect for the future. As a rule, this is possible by sending an informal message to us (see above "Person responsible.").
(2) Furthermore, we would like to point out that we process further of your personal data within the scope of obtaining consent. These are on the one hand identity features (such as your name, your e-mail address, your IP address) and on the other hand protocol data on consent (time of consent, status of consent, scope of consent). We base this data processing on Article 6(1) sentence 1 lit. c DSGVO in conjunction with. Article 7 (1) DSGVO. The purpose is the need to prove that you have given your consent.
(3) We store the identity features and log data for consent until the end of the third calendar year following the year in which you revoke your consent. The legal basis for this storage is Article 6 (1) sentence 1 lit. f DSGVO, whereby our legitimate interest follows from the fact that we must be able to prove within the relevant, civil law limitation period that and what you have consented to.
(1) To analyse your user behaviour on our website, we use the following service provider with its tool described in more detail in the heading: Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043. If you are based within the European Economic Area, your data will be additionally processed by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland. We would like to briefly describe this processing procedure: The tool uses so-called "cookies". These are text files that are stored on your computer and enable an analysis of your use of the website. The provider will use this information on our behalf for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The privacy policy of this provider can be found here: https://policies.google.com/privacy?fg=1.
(2) The purpose can be described as follows: We use this tool to be able to analyse and regularly improve the use of our website. The statistics obtained allow us to improve our offer and make it more interesting for you as a user. You can find more details about the way of processing via this provider here: https://marketingplatform.google.com/intl/de/about/analytics/.
(3) In doing so, we generally process the following data from you: This tool uses so-called "cookies". These are text files that are stored on your computer and enable an analysis of your use of the website. The information generated by this about your use of this website is usually transferred to a server of the provider in the USA and stored there. However, your IP address will be truncated beforehand by the provider within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a server of the provider in the USA and shortened there. The IP address transmitted by your browser when using this tool is not merged with other data by the provider. We also use this tool for a cross-device analysis of visitor flows, which is carried out via a user ID. You can deactivate the cross-device analysis of your usage in your customer account under "My data", "Personal data". For your information, we would like to point out that we use this tool with the extension "_anonymizeIp()". This means that IP addresses are processed in abbreviated form, which means that it is impossible to relate them to a specific person. As far as the data collected about you a personal reference, this is excluded immediately and the personal data is deleted immediately.
(3) The data processing operations are also not prevented by the fact that the data may be processed by the provider outside the European Union, possibly in cooperation with Google LLC. This is because your consent also includes a declaration pursuant to Article 49(1)(a) DSGVO. Please read our notes beforehand under "General section/ Special constellation: Consent to transfer to third country entities located in the USA, including the 'risk notice'.
(1) To analyse your user behaviour on our website, we use the following service provider with its tool described in more detail in the heading: Kameleoon, Société par actions simplifiées (SAS), 12 rue de la Chaussée d'Antin, 75009 Paris. You can find more information about data protection with this provider here: https://www.kameleoon.com/de/datenschutz and here: https://www.kameleoon.com/de/compliance/ dsgvo/. We would like to briefly describe this processing procedure: Kameleoon uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site. The pseudonymised IDs and cookie IDs generated by this enable an analysis of your user behaviour on our website. You have the option to prevent the data processing described here and, if necessary, to delete data that has already been collected and stored. You can find a simple description of this here: https://www.kameleoon.com/de/compliance/cookies/. Furthermore, you can object to the use of Kameleoon at any time by clicking on the following link: Deactivate Kameleoon.
(2) The purpose can be described as follows: We use this tool to be able to analyse and regularly improve the use of our website. The statistics obtained allow us to improve our offer and make it more interesting for you as a user.
(1) We use the above-mentioned social medium. Its provider is: Facebook Inc., 1601 S. California Avenue, Palo Alto, CA 94304, USA. If you are located outside the USA and/or Canada, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland is responsible. We have no influence on the data collected and data processing operations, nor are we aware of the full extent of the data collection, the purposes of the processing, the storage periods. We also have no information on the deletion of the collected data by this provider. If you select our company pages, it is possible that the provider will store the data collected about you as a user profile and use it for the purposes of advertising, market research and/or designing his website to meet your needs. You have the right to object to the creation of these user profiles, whereby you must contact the provider to exercise this right. A privacy policy of the provider can be found here: https://www.facebook.com/policy.php.
(2) Insofar as we can influence the data processing, its purpose is to present our company, to analyse your usage behaviour in relation to interaction with our company page maintained there, as well as to communicate with you via this social network (possibly advertising).
(3) The categories of personal data we process about you will depend on the specific use of that social media, as described in paragraph 4.
(4) In addition, we inform about the data processing in this context:
(5) Insofar as you contact us via the messenger function in this social network, we point out that this communication (in particular also of your contact data) runs via the provider of this social network. By contacting us, you consent to this separately.
(6) In addition to our general statements on the legal basis, we also inform you here: If you yourself maintain a profile on this social medium, the legal basis is your consent within the meaning of Article 6(1) sentence 1 lit. a DSGVO, which you have given to the provider of the social network. In all other cases, the legal basis is Article 6(1) sentence 1 lit. f DSGVO, according to which your data may be processed if it is necessary for the protection of our legitimate interests or the interests of a third party, unless your interests or fundamental rights and freedoms requiring the protection of personal data prevail, in particular if the data subject is a child. We have the economic interest to link our company pages, whereby you click on the links independently and voluntarily. In all other respects, the provider is responsible.
(7) If and insofar as we analyse the visitor interactions with our company page, we are in this respect jointly responsible with Facebook under data protection law; this in accordance with Article 26 DSGVO. If and insofar as we commission Facebook to process data for us in addition, we are the client within the meaning of Article 28 of the GDPR. The data processing operations are not prevented by the fact that the data may be processed by the provider outside the European Union. This is because your consent also includes a declaration pursuant to Article 49(1)(a) DSGVO. Please read our notes beforehand under "General section/ Special constellation: Consent to transfer to third country entities located in the USA, including the 'risk notice'.
(1) We use the above-mentioned social medium. Its provider is Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland, impressum@support.instagram.com. We have no influence on the data collected and data processing operations, nor are we aware of the full extent of the data collection, the purposes of the processing, the storage periods. We also have no information on the deletion of the collected data by this provider. If you select our company pages, it is possible that the provider will store the data collected about you as a user profile and use it for the purposes of advertising, market research and/or designing his website to meet your needs. You have the right to object to the creation of these user profiles, whereby you must contact the provider to exercise this right. You can find a privacy policy of the provider here: https://help.instagram.com/519522125107875.
(2) Insofar as we can influence the data processing, its purpose is to present our company, to analyse your usage behaviour in relation to interaction with our company page maintained there, as well as to communicate with you via this social network (possibly advertising).
(3) The categories of personal data we process about you will depend on the specific use of that social media, as described in paragraph 4.
(4) In addition, we inform about the data processing in this context:
(5) Insofar as you contact us via the messenger function in this social network, we point out that this communication (in particular also of your contact data) runs via the provider of this social network. By contacting us, you consent to this separately.
(6) In addition to our general statements on the legal basis, we also inform you here: If you yourself maintain a profile on this social medium, the legal basis is your consent within the meaning of Article 6(1) sentence 1 lit. a DSGVO, which you have given to the provider of the social network. In all other cases, the legal basis is Article 6(1) sentence 1 lit. f DSGVO, according to which your data may be processed if it is necessary for the protection of our legitimate interests or the interests of a third party, unless your interests or fundamental rights and freedoms requiring the protection of personal data prevail, in particular if the data subject is a child. We have the economic interest to link our company pages, whereby you click on the links independently and voluntarily. In all other respects, the provider is responsible.
(7) If and insofar as we analyse visitor interactions with our company website, we are jointly responsible with this provider for data protection purposes; this in accordance with Article 26 of the GDPR. If and insofar as we commission this provider to process data for us in addition, we are the client within the meaning of Article 28 of the GDPR. The data processing operations are also not prevented by the fact that the data may be processed outside the European Union by the provider; if applicable, in cooperation with Facebook Inc, 1601 S. California Avenue, Palo Alto, CA 94304, USA. This is because your consent also includes a declaration pursuant to Article 49(1)(a) DSGVO. Please read our notes beforehand under "General section/ Special constellation: Consent to transfer to third country entities located in the USA, including the 'risk notice'.
(1) We use the above-mentioned social medium. Its provider is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. We have neither influence on the collected data and data processing procedures nor are we aware of the full extent of the data collection, the purposes of the processing, the storage periods. We also have no information on the deletion of the collected data by this provider. If you select our company pages, it is possible that the provider will store the data collected about you as a user profile and use it for the purposes of advertising, market research and/or designing his website to meet your needs. You have the right to object to the creation of these user profiles, whereby you must contact the provider to exercise this right. You can find a privacy policy of the provider here: https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv.
(2) To the extent that we can influence the data processing, its purpose is to present our company, to analyse your usage behaviour in relation to interaction with our company page maintained there, as well as to communicate with you via this social network (possibly advertising).
(3) The categories of personal data we process about you will depend on the specific use of that social media, as described in paragraph 4.
(4) In addition, we inform about the data processing in this context:
(5) Insofar as you contact us via the messenger function in this social network, we point out that this communication (in particular also of your contact data) runs via the provider of this social network. By contacting us, you consent to this separately.
(6) In addition to our general statements on the legal basis, we also inform you here: If you yourself maintain a profile on this social medium, the legal basis is your consent within the meaning of Article 6(1) sentence 1 lit. a DSGVO, which you have given to the provider of the social network. In all other cases, the legal basis is Article 6(1) sentence 1 lit. f DSGVO, according to which your data may be processed if it is necessary for the protection of our legitimate interests or the interests of a third party, unless your interests or fundamental rights and freedoms requiring the protection of personal data prevail, in particular if the data subject is a child. We have the economic interest to link our company pages, whereby you click on the links independently and voluntarily. In all other respects, the provider is responsible.
(7) If and insofar as we analyse visitor interactions with our company website, we are jointly responsible with this provider for data protection purposes; this in accordance with Article 26 of the GDPR. If and insofar as we commission this provider to process data for us in addition, we are the client within the meaning of Article 28 of the GDPR. The data processing operations are also not prevented by the fact that the data may be processed outside the European Union by the provider, possibly in cooperation with LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043, USA. This is because your consent also includes a declaration pursuant to Article 49(1)(a) DSGVO. Please read our notes beforehand under "General section/ Special constellation: Consent to transfer to third country entities located in the USA, including the 'risk notice'.
(1) We use the above-mentioned social medium. Its provider is New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany. We have neither influence on the collected data and data processing procedures nor are we aware of the full extent of the data collection, the purposes of the processing, the storage periods. We also have no information on the deletion of the collected data by this provider. If you select our company pages, it is possible that the provider will store the data collected about you as a user profile and use it for the purposes of advertising, market research and/or designing his website to meet your needs. You have the right to object to the creation of these user profiles, whereby you must contact the provider to exercise this right. You can find a privacy policy of the provider here: https://privacy.xing.com/de/datenschutzerklaerung. You can also find more information about data protection with this provider here: https://privacy.xing.com/de.
(2) To the extent that we can influence the data processing, its purpose is to present our company, to analyse your usage behaviour in relation to interaction with our company page maintained there, as well as to communicate with you via this social network (possibly advertising).
(3) The categories of personal data we process about you will depend on the specific use of that social media, as described in paragraph 4.
(4) In addition, we inform about the data processing in this context:
(5) Insofar as you contact us via the messenger function in this social network, we point out that this communication (in particular also of your contact data) runs via the provider of this social network. By contacting us, you consent to this separately.
(6) In addition to our general statements on the legal basis, we also inform you here: If you yourself maintain a profile on this social medium, the legal basis is your consent within the meaning of Article 6(1) sentence 1 lit. a DSGVO, which you have given to the provider of the social network. In all other cases, the legal basis is Article 6(1) sentence 1 lit. f DSGVO, according to which your data may be processed if it is necessary for the protection of our legitimate interests or the interests of a third party, unless your interests or fundamental rights and freedoms requiring the protection of personal data prevail, in particular if the data subject is a child. We have the economic interest to link our company pages, whereby you click on the links independently and voluntarily. In all other respects, the provider is responsible.
(7) If and insofar as we analyse visitor interactions with our company website, we are in this respect jointly responsible with this provider under data protection law; this in accordance with Article 26 DSGVO.
(1) We may process your data to send you a newsletter. A newsletter is an electronic newsletter that is published on a regular basis. At the beginning, you provide us with the data that we request to subscribe to the newsletter. After carrying out the double opt-in procedure (cf. paragraph 2), we use your data to address you by means of a newsletter.
(2) To obtain consent, we use the so-called double opt-in procedure. This means that after your registration, we will send you an email to the specified email address in which we ask you to confirm your consent. In addition, we store your IP addresses and the times of registration and confirmation. The purpose of this procedure is to be able to prove your registration and, if necessary, to clarify a possible misuse of your personal data. The legal basis for this processing is Article 6 paragraph 1 sentence 1 lit. c DSGVO. According to this provision, we may process your data if this is necessary for the fulfilment of a legal obligation to which we are subject. The legal obligation to which we are subject follows from Article 7(1) DSGVO or Article 5(1) DSGVO. This is because according to these provisions, we are legally obliged to document the obtaining of consent. This is only possible if we collect your data for this purpose for verification purposes. We store the data as long as this is necessary for verification purposes. If you confirm the consent, the retention period ends only after revocation of your consent plus the time until the statute of limitations of any civil claims, so usually on 31 December of the 3rd calendar year following the year in which you revoked your consent.
(3) In doing so, we generally process the following data from you: The data that you provide to us for registration to the newsletter and the data that we need in accordance with paragraph 2 to prove the granting of consent (opt-in status data) and, if applicable, data for revoking your consent.
(1) We use the above-mentioned video platform or video portal on our website. Their provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043. If you are based within the European Economic Area, your data will additionally be processed by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland. A privacy policy of the provider can be found here: https://policies.google.com/privacy?fg=1.
(2) We are happy to briefly describe this processing procedure: Plugins of the video portal YouTube are integrated on our website. Each time you call up a page that offers one or more YouTube video clips, a direct connection is established between your browser and a YouTube server. These videos are all integrated in the "extended data protection mode". No data about you as a user will be transmitted to YouTube if you do not play the videos. Only when you play the videos, the data mentioned in paragraph 3 will be transmitted. We have no influence on this data transmission. If you use a Google account and do not wish to have your profile associated with YouTube, you must log out before activating the button.
(3) In doing so, we generally process the following data from you: By visiting the website, YouTube receives the information that you have called up the corresponding sub-page of our website. This occurs regardless of whether YouTube provides a user account via which you are logged in or whether no user account exists. If you are logged in to Google, your data will be directly assigned to your account. YouTube stores your data as usage profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, and you must contact YouTube to exercise this right. Further information on the purpose and scope of data collection and processing by YouTube can be found in the privacy policy. There you will also find further information on your rights and setting options to protect your privacy: https://www.google.de/intl/de/policies/privacy.
(4) We also maintain a company page with this provider. If you interact with this company page, it is possible that the provider processes your data as described in paragraph 3.
(5) The data processing operations are also not prevented by the fact that the data may be processed outside the European Union by the provider; possibly in cooperation with Google LLC. This is because your consent also includes a declaration pursuant to Article 49(1)(a) DSGVO. Please read our notes beforehand under "General section/ Special constellation: Consent to transfer to third country entities located in the USA, including the 'risk notice'.
(1) We use the above-mentioned video platform or video portal on our website. Its provider is Vimeo, LLC, 555 West 18th Street, New York, New York 10011, USA. A privacy policy of the provider can be found here: https://vimeo.com/privacy.
(2) We are happy to briefly describe this processing procedure: Plugins of the video portal Vimeo are integrated on our website. Each time you call up a page that offers one or more Vimeo video clips, a direct connection is established between your browser and a Vimeo server in the USA.
(3) In doing so, we usually process the following data from you: In the process, information about your visit and your IP address are stored there. Through interactions with the Vimeo plugins (e.g. clicking the start button), this information is also transmitted to Vimeo and stored there. In addition, Vimeo calls up the Google Analytics tracker via an iFrame in which the video is called up. This is a proprietary tracking of Vimeo, on which we have no influence.
Have access.
(4) We also maintain a company page with this provider. If you interact with this company page, it is possible that the provider processes your data as described in paragraph 3.
(5) The fact that data may be processed outside the European Union shall not prevent the processing operations. This is because your consent also includes a declaration pursuant to Article 49(1)(a) DSGVO. Please read our notes beforehand under "General section/ Special constellation: Consent to transfer to third country entities located in the USA, including the 'risk notice'.
(1) We use the above-mentioned social medium. Its provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043. If you are based within the European Economic Area, your data will additionally be processed by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland. A privacy policy of the provider can be found here: https://policies.google.com/privacy?fg=1.
(2) This is a procedure with which we would like to address you with advertising. Through this application, our advertisements can be displayed to you after visiting our website during your further internet use. This is done by means of cookies stored in your browser, via which your usage behaviour is recorded and evaluated by the provider when you visit various websites. In this way, your previous visit to our website can be determined by this provider. According to the provider's own statements, the data collected in the course of remarketing is not merged with your personal data that may be stored by the provider. In particular, according to this provider, pseudonymisation is used in remarketing. This is done across all devices on which you are logged in with an account with this provider or were logged in for only a short moment.
(3) These advertising materials are delivered by Google via so-called "ad servers". For this purpose, we use ad server cookies, through which certain parameters for measuring success, such as display of the ads or clicks by users, can be measured. If you access our website via a Google ad, Google Ads will store a cookie on your PC. These cookies usually expire after 30 days and are not intended to identify you personally. The unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be addressed) are usually stored as analysis values for this cookie. These cookies enable Google to recognise your internet browser. If a user visits certain pages of an Ads customer's website and the cookie stored on their computer has not yet expired, Google and the customer will be able to recognize that the user clicked on the ad and was redirected to that page. A different cookie is assigned to each Ads customer. Cookies can therefore not be tracked across Ads customers' websites. We ourselves do not collect or process any personal data in the aforementioned advertising measures. We only receive statistical evaluations from Google. Based on these evaluations, we can see which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising tools, in particular we cannot identify the users on the basis of this information. Due to the marketing tools used, your browser automatically establishes a direct connection with the provider's server.
(4) You can prevent participation in this tracking process in various ways: a) by adjusting your browser software settings accordingly, in particular the suppression of third-party cookies will result in you not receiving ads from third-party providers; b) by disabling cookies for conversion tracking by setting your browser to block cookies from the domain "www.googleadservices.com", https://www.google.de/settings/ads, whereby this setting will be deleted when you delete your cookies.
(5) The data processing operations are also not prevented by the fact that the data may be processed outside the European Union by the provider; possibly in cooperation with Google LLC. This is because your consent also includes a declaration pursuant to Article 49(1)(a) DSGVO. Please read our notes beforehand under "General section/ Special constellation: Consent to transfer to third country entities located in the USA, including the 'risk notice'.
(1) We use the above-mentioned social medium. Its provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043. If you are based within the European Economic Area, your data will additionally be processed by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland. A privacy policy of the provider can be found here: https://policies.google.com/privacy?fg=1.
(2) To the extent that we can influence the data processing, its purpose is to present our company, to analyse your usage behaviour in relation to interaction with our company page maintained there, as well as to communicate with you via this social network (possibly advertising).
(3) These advertising materials are delivered by Google via so-called "ad servers". For this purpose, we use ad server cookies, through which certain parameters for measuring success, such as display of the ads or clicks by users, can be measured. If you access our website via a Google ad, Google Ads will store a cookie on your PC. These cookies usually expire after 30 days and are not intended to identify you personally. The unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be addressed) are usually stored as analysis values for this cookie. These cookies enable Google to recognise your internet browser. If a user visits certain pages of an Ads customer's website and the cookie stored on their computer has not yet expired, Google and the customer will be able to recognize that the user clicked on the ad and was redirected to that page. A different cookie is assigned to each Ads customer. Cookies can therefore not be tracked across Ads customers' websites. We ourselves do not collect or process any personal data in the aforementioned advertising measures. We only receive statistical evaluations from Google. Based on these evaluations, we can see which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising tools, in particular we cannot identify the users on the basis of this information. Due to the marketing tools used, your browser automatically establishes a direct connection with Google's server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of ads, Google receives the information that you have called up the corresponding part of our website or clicked on an ad from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is the possibility that the provider learns your IP address and stores it.
(4) You can prevent participation in this tracking process in various ways: a) by setting your browser software accordingly, in particular the suppression of third-party cookies will result in you not receiving ads from third-party providers; b) by disabling cookies for conversion tracking by setting your browser to block cookies from the domain "www.googleadservices.com", https://www.google.de/settings/ads, deleting this setting when you delete your cookies; c) by disabling the interest-based ads of the providers that are part of the self-regulatory campaign "About Ads" via the link http://www.aboutads.info/choices, deleting this setting when you delete your cookies; d) by permanently disabling them in your Firefox, Internetexplorer or Google Chrome browsers at the link http://www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to use all functions of this offer to their full extent.
(5) The data processing operations are also not prevented by the fact that the data may be processed outside the European Union by the provider; possibly in cooperation with Google LLC. This is because your consent also includes a declaration pursuant to Article 49(1)(a) DSGVO. Please read our notes beforehand under "General section/ Special constellation: Consent to transfer to third country entities located in the USA, including the 'risk notice'.
(1) We use the above marketing automation tool. Its provider is KLICK-TIPP LIMITED, 15 Cambridge Court, 210 Shepherd's Bush Road, London W6 7NJ (United Kingdom).
(2) We are happy to briefly describe this processing operation: We use Klick-Tipp to apply marketing measures to you, which we have identified and described as such in this privacy policy. We have commissioned this provider with the necessary processing of your personal data in accordance with Article 28(3) of the GDPR. You can find the privacy policy of this provider here: https://www.klick-tipp.com/datenschutzerklärung.
(3) In doing so, we generally process the following data from you: We process all data that we use for advertising purposes, as already described in this privacy policy. Furthermore, we use the so-called "tags" of Klick-Tipp in the communication with you (for example for the processing of the contract or for follow-up emails) and for the delivery of newsletters and webinars. A tag is a labeling of information with additional information, specifications or categories. With tagging, information is linked with suitable keywords, categories or other parameters defined by us in advance. You can find more information about tagging at Klick-Tipp at https://www.klick-tipp.com/handbuch/erste-schritte/tag-erstellen . It is important that we use and define these tags so that Klick-Tipp follows our instructions here. Klick Tipp uses so-called SmartTags and manual tags. SmartTags are used when you register for something (appointment, newsletter, webinar, etc.) via a registration form. In this case, you automatically receive a tag with the name of the registration form in question. Klick-Tipp also automatically sets the tags "Email received", "Email opened", "Email clicked" and "Email viewed in browser" for us. We set manual tags completely on our own. For example, we might tag you "customer" or, more specifically, "product B purchased" or "webinar viewed up to this point." Klick-Tipp collects some of the information that becomes the basis for tagging via additional tracking pixels. The tags are basically used to enable us to fulfil our pre-contractual and contractual obligations. Furthermore, they enable us to communicate with you automatically, which increases our accessibility and thus our service level. If we use the tags to send advertising, this is part of the legal basis claimed for this. We also use the tags to improve the promotional approach. If you do not want any analysis by Klick-Tipp, you must therefore unsubscribe or object to the reason for our communication. For this purpose, we provide a corresponding link in every message aimed at this. Furthermore, you can also unsubscribe from the newsletter or webinar directly on the website.
(5) The data processing operations are also not prevented by the fact that they may be processed outside the European Union. This is because the provider has committed itself in accordance with the EU standard contractual clauses.
(1) We use the above-mentioned marketing automation tool. Its provider is HubSpot, Inc., 25 First Street, Cambridge, MA 02141 (USA), hubspotgermany@hubspot.com. We have commissioned this provider with the processing of your personal data required in this respect in accordance with Article 28(3) DSGVO.
(2) We are happy to briefly describe this processing operation: We use Hubspot to apply marketing measures to you, which we have identified and described as such in this privacy policy. We have commissioned this provider with the processing of your personal data required in this respect in accordance with Article 28(3) of the GDPR. You can find the agreement here: https://legal.hubspot.com/de/dpa. You can find the privacy policy of this provider here: https://legal.hubspot.com/de/privacy-policy.
(3) The fact that this provider is based outside the European Union does not prevent it from being commissioned. This is because the provider has committed itself in accordance with the EU standard contractual clauses.
(1) We use the following provider here: Zapier Inc., 548 Market St #62411, San Francisco, California 94104 (USA), which provides the "Zapir" tool we use. We would like to describe this processing process briefly: With Zapier, we can connect web apps so that customer and prospect data can be exchanged automatically between the various applications. In this context, the data is exchanged via Zapier, so that the data may also be processed there. We have commissioned this provider with the processing of your personal data required in this respect in accordance with Article 28(3) DSGVO. You can find the privacy policy of this provider here: https://zapier.com/privacy/.
(2) In doing so, we generally process the following data from you: All data that we collect via tools that we use in connection with the establishment, execution and/or termination of contracts between us and have linked automatically via this provider. As a rule, this can be all data from the initiation of the contract (often your contact data), from the execution of the contract (often order and payment data) and from the termination of the contract (status end of contract, status discontinuation of services). You can find more information about the application possibilities under: https://zapier.com/learn/getting-started-guide/what-is-zapier/.
(3) The fact that this provider is based outside the European Union does not prevent it from being commissioned. This is because the provider has committed itself in accordance with the EU standard contractual clauses.
(1) The purpose of the processing operations described below is described separately for each tool. It is the decisive justification for our legitimate interest in the processing.
(2) The legal basis for the respective data processing is Article 6 (1) sentence 1 lit. f DSGVO. According to this provision, the processing of your personal data is also permitted without your consent if it is necessary for the protection of our legitimate interests or those of a third party, provided that your interests or fundamental rights and freedoms requiring the protection of personal data do not prevail.
(1) We store the data until our purpose has ceased to exist, which is always the case if you have raised a justified objection (cf. "Note on the right to object.").
(2) Should a contractual relationship be established between us following processing based on the legitimate interest, we shall store the data on a supplementary basis until the expiry of our statutory retention periods. The legal basis for this is Article 6 (1) sentence 1 lit. c DSGVO in conjunction with. § 147 AO, § 257 HGB. According to these regulations, some of the above-mentioned data must also be retained beyond the point in time at which the purpose was achieved. We may be obliged to do so,
(1) Insofar as we base data processing in the following data protection statement on Article 6 (1) sentence 1 lit. f DSGVO, i.e. on a legitimate interest in the processing, you always have the right to object to the processing. As a rule, this is possible by sending an informal message to us (see "Responsible party." above). If the objection is justified, we will stop the processing.
(2) If the legitimate interest is based on the interest in direct advertising or promotional targeting, your objection is always justified insofar as you are identified.
(1) If you use our website purely for information purposes, i.e. if you do not register as a user or otherwise transmit information, we collect the following data from you: IP address, date and time of the request, time zone difference to Greenwich Mean Time (GMT), content of the request (specific page), access status/HTTP status code, amount of data transferred in each case , website from which the request comes, browser, operating system and its interface, language and version of the browser software. We receive this data via cookies and directly from your browser.
(2) The purpose of this processing is the provision of our website and statistical analysis.
(1) We would like to briefly describe this processing procedure: We use so-called transient cookies on our website. These include in particular the session cookies. These store a so-called session ID, with which various requests of the visitor's browser can be assigned to the common session. This means that the visitor's computer can be recognised when the visitor returns to your website.
(2) The purpose, from which our legitimate interest also follows, can be described as follows: The cookies serve the presentation and use of the website suitable for you.
(3) In doing so, we usually process the following data from you: Session cookies. These store a so-called session ID, with which various requests of your browser can be assigned to the joint session. This enables your computer to be recognised when you return to our website. The session cookies are deleted when you log out or close the browser.
(1) You have certain rights vis-à-vis us (cf. General Section, Rights of Visitors to the Website). If you assert rights against us, we process the associated contact, communication and transaction data.
(2) We process your data as follows:
(3) While the processing within the meaning of paragraph 2 (1) to (3) is governed by Article 6 (1) sentence 1 lit. c DSGVO is justified (we are obliged to process your requests as a rule from the DSGVO), the purpose of the storage (paragraph 2 number 4) is that we store the data in order to be able to defend ourselves later against claims on your part. This is also our legitimate interest. We store your data until the end of the third calendar year following your request/input (cf. Article 6 (1) sentence 1 lit. f DSGVO in conjunction with Sections 193, 195 BGB).
(1) You have certain rights vis-à-vis us (cf. General Section, Rights of Visitors to the Website). If you assert your rights against us, we will transfer your data to external consultants who we have either sworn to secrecy or who are bound to silence by professional law.
(2) The purpose of the processing is for us to obtain expert advice to deal with your concerns in a legally compliant manner. This is in both our and your legitimate interests.
(1) We use affiliate marketing systems on our website, in our e-mails and in our other communications with you. Affiliate systems are Internet-based sales methods in which a commercial provider (hereinafter: Provider) remunerates its sales partners (hereinafter: Affiliates) through commissions. In this context, the Provider makes advertising material available which the Affiliate presents to third parties on its Internet pages and via other communication channels (hereinafter: Affiliate Link). If the third parties click on the Affiliate-Links, they will be directed to the Internet offers of the Provider, whereby the information that they have arrived there via the Affiliate-Link will also be transmitted. If a contract and/or transaction is concluded between the third party and the Provider, the Affiliate receives a commission.
(2) The legitimate interest required for this processing follows from the fact that affiliate commission may have to be calculated and paid out. This is a creditable, economic interest. Your interests are protected by the fact that we make this process transparent and that you have a right of objection if necessary. Insofar as this is based on so-called cookies, we refer to our explanations in the special section "Processing operations for which your consent is required".
(1) We use affiliate marketing systems on our website, in our e-mails and in our other communications with you. Affiliate systems are Internet-based sales methods in which a commercial provider (hereinafter: Provider) remunerates its sales partners (hereinafter: Affiliates) through commissions. In this context, the Provider makes advertising material available which the Affiliate presents to third parties on its Internet pages and via other communication channels (hereinafter: Affiliate Link). If the third parties click on the Affiliate-Links, they will be directed to the Internet offers of the Provider, whereby the information that they have arrived there via the Affiliate-Link will also be transmitted. If a contract and/or transaction is concluded between the third party and the Provider, the Affiliate receives a commission.
(2) We use the affiliate system "Amazon Partner Program" and are therefore participants in the affiliate program of Amazon Europe S. à. r. l. and partner of the advertising program, which was designed to provide a medium for websites by means of which advertising costs can be earned through the placement of advertisements and links to amazon.de. We pursue with the program the interest to show you advertisements which are of interest to you and which make our website more interesting for our users. For the provision of the advertisements, statistical information about you is collected, which is processed by our advertising partners. By visiting the website, Amazon receives the information that you have accessed the corresponding page of our website. For this purpose, Amazon determines your demand via web beacons and may set a cookie on your computer. We have no influence on the data collected, nor are we aware of the full extent of the data collection and the storage period. If you are logged in to Amazon, your data can be directly assigned to your account there. If you do not want the assignment with your Amazon profile, you must log out. It is possible that your data will be passed on to contractual partners of Amazon and authorities. We have no influence on the data collected, nor are we aware of the full extent of the data collection. The data is transferred to the USA and evaluated there. You can prevent the installation of the Amazon Partner Program cookies in various ways: a) by adjusting your browser software accordingly, in particular the suppression of third-party cookies will result in you not receiving any third-party ads; b) by deactivating the interest-based ads on Amazon via the link http://www.amazon.de/gp/dra/info. For more information on the purpose and scope of the data collection and its processing, as well as further information on your rights in this regard and setting options for protecting your privacy, please also contact: Amazon EU S.à.r.l, Amazon Services Europe S.à.r. l. and Amazon Media EU S.à.r. l., all three located 5, Rue Plaetis, L-2338 Luxembourg; email: ad-feedback@amazon.de. Amazon has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework. For more information on Amazon's data use, please see the company's privacy policy:http://www.amazon.de/gp/help/customer/display.html/ref=footer_privacy?ie=UTF8&nodeId=3312401 and at: http://www.amazon.de/gp/BIT/InternetBasedAds.
(3) The legitimate interest required for this processing follows from the fact that affiliate commission may have to be calculated and paid out. This is a creditable, economic interest. Your interests are protected by the fact that we make this process transparent and that you have a right of objection if necessary. Insofar as this is based on so-called cookies, we refer to our explanations in the special section "Processing operations for which your consent is required".
