•  
    •  
    •  
    •  
    •  
DATA SECURITY
privacy
ECO EFX Solutions GmbH

With this privacy policy, we inform you about the nature, scope and purpose of processing personal data on our website in accordance with the GDPR (Data Protection General Regulation). With regard to personal data and/or its processing , we refer to Article 4 of the GDPR. Personal data is all data that has a personal connection to you, such as name, address, email address or user behavior.


Responsible under Article 4 of the GDPR:

ECO EFX Solutions GmbH

Hamburger Strasse 180

22083 Hamburg

Germany

0049-40-298 23460

info[at]ecoefxsol.com


www.ecoefxsol.com/imprint


Processing your data as part of our company's core activities


We process your personal data transferred to us within the framework of the contractual and pre-contractual relationships that exist between us. The scope, nature, purpose and necessity of the processing depends on the underlying contractual relationship. To do this, we store and process your data in the computer systems we use. The data we process includes all data provided for the purpose of your use of contractual or pre-contractual services and required to process your request or the contract concluded between us Be.

This may include, in particular, the following data:

  • Name and address
  • Email address and phone number
  • Contract
  • Payment.

Processing is limited to those data that are necessary and appropriate to respond to requests and/to fulfill a contract concluded between you and us. The personal data will only be passed on to third parties if this is necessary for the purpose of providing the service or in the context of the organisation of our company in order to process financial accounting as well as to comply with legal obligations. In this case, only those data that are necessary and appropriate to comply with the contract or to process financial accounting and compliance with legal obligations will be transferred to external service providers. We process it in accordance with your instructions or legal requirements. Legal basis: The processing of your personal data as well as the transfer to third parties takes place in accordance with Article 6 (1) lit. (b) GDPR and serves to fulfill the contract between you and us. Moreover, we will only pass on data to third parties if there is a legal obligation to do so, Article 6 (1) lit. (c) GDPR or if there is a legitimate interest in this, Article 6 (1) lit f. GDPR. This is the case, for example, where this is necessary to prosecute our claims. Deletion: Your data are deleted as soon as the data no longer to fulfil contractual or statutory fiduciary duty, as well as for the handling of any warranty and similar obligations are required. The statutory retention obligations remain unaffected thereof.


Transfer of data to third countries


The adoption of the European General Data Protection Regulation (GDPR) has created a unified basis for data protection in Europe. Your data is therefore primarily processed by companies for which GDPR is used. If the processing is carried out by the services of third parties outside the European Union or the European Economic Area, they must have the special requirements of Article 44 ff. GDPR. This means that processing is based on special guarantees, such as the official finding of an EU data protection level or compliance with officially recognised special contractual obligations, which is officially recognised by the EU Commission, The so-called "standard contract clauses." For US companies, submission to the so-called "Privacy Shield," the data protection agreement between the EU and the US, meets these requirements.


Web hosting and Creation From log files


We use us to maintain our online presence of an Internet service provider, on whose server the website is stored (hosting) and which makes our site available on the Internet. In this case, the Internet service provider processes contact data, content data, contract data, usage data, inventory data as well as meta and communication data on our behalf. Legal basis: The Internet service provider processes the aforementioned data on our behalf, Article 28 GDPR. The data processing takes place on the basis of our legitimate interest in the efficient and secure provision of our website, Article 6 (1) lit. f) GDPR.


If you only use our website informationally, only those personal data that the browser you use transmits to its server will be collected by our Internet service provider. This is the following data:

  • IP address
  • The date and time of access to our website
  • Time zone difference to Greenwich Mean Time (GMT)
  • Access status (HTTP status)
  • The amount of data transferred
  • The Internet service provider of the access system
  • The type of browser you use and its version
  • The operating system you use
  • The website from which you may have entered our website
  • The pages or sub-pages you visit on our website.

This data, together with other personal data, will not be stored by you.

The aforementioned data is stored as log files on the servers of our Internet service provider. This is necessary to display the website on the device you are using, as well as to ensure stability and security. In the above purposes lies our legitimate interest in data processing. Legal basis: The data processing takes place on the basis of our legitimate interest in the efficient and secure provision of our website, Article 6 (1) lit. f) GDPR. Duration: The above data for the provision of our website is stored for a period of 7 days and then deleted.


Cookies


Our website uses cookies. Cookies are small text files consisting of a series of numbers and letters stored and stored on the device you use. Cookies do not transmit viruses or run programs. Rather, they are primarily used to exchange information between the device you use and our website in order to make our website more user-friendly and effective for you. A distinction must be drawn between temporary (transient) cookies and persistent cookies. Transient cookies include session cookies in particular.


• Session cookies: We use so-called cookies to recognize multiple use of an offer by the same user (e.g. if you have logged in to determine your login status). When you revisit our site, these cookies provide information to automatically recognize you. The information obtained in this way is used to optimise our offerings and to give you easier access to our site. If you close the browser or you log out, the session cookies will be deleted.


• Persistent cookies: These are automatically deleted after a specified duration, which may differ depending on the cookie. In your browser's security settings, you can delete cookies at any time.


• Third-party cookies (third-party cookies): According to your wishes, you can configure your browser setting, such as Reject the acceptance of third-party cookies or all cookies. However, we would like to point out that you may not be able to use all the functions of this website. Read more about these cookies in the respective third-party privacy policy.


The cookies are used to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change. In particular, these cookies may store information about voice settings or log-in information.


In addition, we also use cookies on our website, which allow an analysis of your visit to our website. In particular, these cookies may store information about entered search terms, frequency of page views or use of website functions. These cookies allow us to understand how frequently and in what type of website and its functions are used. They serve to improve the quality and user-friendliness of our website, especially the content and functions. This allows us to continuously optimize our offer. The data collected in this way is pseudonymised by technical precautions. Therefore, it is not possible to assign the data to your person. The data will not be stored together with any other personal data concerning you.


In the above purposes lies our legitimate interest in data processing. The legal basis for this is Article 6 (1) of a lite. f GDPR.

Because the cookies are stored on your computer, you as a user also have full control over the use of cookies. You can use your browser's security settings to determine whether cookies are stored at all. For example, you cannot accept cookies from the outset or only on demand, or you can specify that cookies will be deleted after each close to your browser.

You can find out the details in the respective instructions of your browser manufacturer. or at www.aboutcookies.org /or www.allaboutcookies.org


Contradiction and "opt-out": If cookies are disabled for our website, you may no longer be able to use all the functions of the website to the full.

You can use third-party cookies for advertising purposes via an opt-out via this American website (https://optout.aboutads.info) or this European Website (http://www.youronlinechoices.com/de/praferenzmanagement).


Or


The help feature in the menu bar of most web browsers explains how to stop your browser from accepting new cookies, how to let your browser know when you receive a new cookie or how to get all the cookies you have already received Delete and lock for everyone else.


Please do the following:

On Internet Explorer:

1. Select the "Internet Options" point in the Extras menu.

2. Click on the "Privacy" sedab.

3. Now you can make the security settings for the Internet ons. Set whether and which cookies should be accepted or rejected.

4. With "OK," you confirm your setting.


In Firefox:

1. Select the Settings point in the Extras menu.

2. Click on "Privacy."

3. In the drop-down menu, select the "Create by custom settings" entry.

4. Now you can choose whether cookies should be accepted, how long you want to keep these cookies and add exceptions, which websites you always or never want to allow to use cookies.

5. With "OK," you confirm your setting.


In the Google Chrome:

1. Click on the Chrome menu in the browser's toolbar.

2. Select "Settings."

3. Click "Show Advanced Settings."

4. Under "Privacy," click "Content Settings."

5. Under "Cookies," you can make the following settings for cookies:

• Delete cookies

• Block cookies by default

• Delete cookies and website data by default after the browser has been renewed

• Allow exceptions for cookies from certain websites or domains


Memory permanently/erasure


We will delete or block your personal data as soon as the purpose of the storage has been achieved or is omitted, unless its further retention is necessary for evidentiary purposes or is contrary to the statutory retention obligations. This includes, for example, commercial retention obligations of business letters in accordance with § 257 (1) of the German Civil Code (HGB) (6 years) as well as tax retention obligations under § 147 (1) AO of documents (10 years). . Any additional storage will only take place if we are given up on this by national or European rules. In this case, the data will be blocked or deleted if the storage period prescribed in the relevant regulations has expired, unless we need your data to fulfill a contract concluded between us or if this is the case. Assertion, exercise or defence of legal claims.


Details of the contact intake options we have provided


If you contact us via e-mail, social media, telephone, fax, post, our contact form or anything else, providing us with personal data such as your name, telephone number or e-mail address or further information about your person or Concern for your request, this data will be stored and processed in our company for the processing of your request. Legal basis: If you have submitted your request via our contact form, the legal basis for processing your data is Article 6 (1) lit. a GDPR. If you submit your request in the context of contractual or pre-contractual relations with us, the legal basis for processing your data is Article 6 (1) lit. b. GDPR. Unless your request falls within any of the above categories, our legitimate interest in processing your data is to respond to your request properly and in your interest, Article 6 (1) lit. f GDPR. Deletion: The personal data we collect will be deleted if it is no longer required. We check the requirements every 2 years. You can also revoke data processing at any time.


Registration


You have the option to register on our website and create a user account in order to be able to access specific content on our website. This requires the disclosure of personal data resulting from the input mask. The data requested there includes, in particular, your name, password and e-mail address. This data is stored and processed by us to give you access to your user account. The data can be changed or deleted by you at any time. The data will not be passed on to third parties unless they are used to process the contract. In order to protect you and us from abusive registrations, we store the IP address used in registration, as well as the date and time of registration. This data will not be shared with third parties. Legal basis:We process your data on the basis of Article 6 (1) lit. b GDPR for the purpose of providing your user account. Deletion: The personal data, as well as IP address, date and time will be stored until the purpose for this is omitted. The data collected as part of the registration process will take place as soon as the corresponding account is deleted or changed on our website: You can delete your account at any time or delete it by the above for processing Demanding those responsible.


Insist a Automated decision-making


We do not use automatic decision-making or profiling


Contact via contact form/email/fax/post


  1. When contacting us via contact form, fax, post or e-mail, your details will be processed for the purpose of processing the contact request.
  2. The legal basis for processing the data is Article 6 GDPR if you have given your consent. Article 6 of the GDPR is the legal basis for processing the data sent in the course of a contact request or e-mail, letter or fax. The person responsible has a legitimate interest in processing and storing the data in order to be able to respond to user requests, to safeguard the evidence on grounds of liability and, if necessary, to comply with his legal retention obligations in the event of business letters. Can. If the contact is aimed at the conclusion of a contract, the additional legal basis for processing is Article 6 GDPR.
  3. We may store your information and contact request in our Customer Relationship Management System ("CRM System") or a comparable system.
  4. Deletion: The data will be deleted as soon as it is no longer necessary to achieve the purpose of its collection. For the personal data from the contact form input mask and those sent by email, this is the case when the conversation with you is over. The conversation ends when it can be seen from the circumstances that the matter in question has been finally resolved. We will store requests from users who have an account or contract with us until the expiry of two years after the termination of the contract. In the case of legal archiving obligations, the deletion takes place after its expiry: The end of commercial law (6 years) and tax law (10 years) retention.
  5. Revocation: You have the option at any time to revoke the consent under Article 6 of the GDPR for the processing of the personal data. Contact us by e-mail, so you can object to the storage of personal data at any time

Newsletter


We regularly send out a newsletter to inform our customers and business partners and interested parties about our offers and related news. You have the opportunity to register for our newsletter on our website and to enter the newsletter as part of the registration process. When you sign up for our newsletter, it is mandatory to provide your e-mail address. We store the e-mail address in order to be able to send you the newsletter. The disclosure of further data, such as address or name, is voluntary and will be used to address you personally. As soon as you register for our newsletter, you will receive a confirmation email to the e-mail address stored at the time of registration in the so-called double-opt-in procedure. This email contains a link. When you click on this link, you confirm that you want to receive the newsletter. This ensures that your email address was not misused by a third party when you signed up. For the same reason, we store the date and time of registration, as well as the IP address assigned to you when you sign up. We do not disclose the aforementioned data to third parties. Legal basis: The legal basis for processing your data is Article 6 (1) lit. a GDPR. Deletion: The E-Mail address will be deleted either, if you 1 month after sending the confirmation E-mail in the double-opt-in proceed have not clicked on the confirmation link, or directly after you have unsubscribed from our newsletter. Withdrawal: You can at any time revoke your consent to receive the newsletter and unsubscribe from the subscription of the newsletter. We offer following options, which you can explain the revocation:


  • Click on the link provided in the newsletter
  • Form on our website
  • Email: info[at]ecoefxsol.com
  • Through the contact details stored in the imprint of our website

Shipping by shipping service providers


We have commissioned the following shipping service providers to send our newsletter: Tilda Publishing Ltd. Republic of Ireland (Registration number 671800). You can view its privacy policy here: https://tilda.cc/privacy. The shipping service provider is based outside the EU. It is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law. The shipping service provider can use your data in pseudonymous form, i.e. without assigning to a user, to optimize or improve its own services, e.g. for the technical optimization of the shipment and presentation of the newsletters or for statistical purposes Use. However, the shipping service provider is not entitled to write to you or share your data with third parties. Legal basis: The shipping service provider is based on our legitimate interests in the proper sending of the newsletter in accordance with Article 6 (1) lit. f GDPR and acting for us under an order processing contract in accordance with Article 28 (3) p. 1 GDPR.

Evaluation of user behaviour

If you have consented to this, we will evaluate your user behaviour when sending the newsletter. For this purpose, our newsletter includes tracking pixels as well as tracking links. This allows us to see if and when you opened the newsletter and if and which links you clicked on in the newsletter. Purpose: We evaluate the newsletter as described above in order to be able to measure a statistical analysis of the success or failure of our newsletter. Legal basis:The legal basis for processing your data is Article 6 (1) lit. a GDPR. Preventing: You can revoke your consent to receive the newsletter at any time via the above options. Deletion:We will delete your data after revocation has taken place.


Your rights under the GDPR


According to the GDPR, you are entitled to the following rights, which you can assert at any time with the person responsible for the person responsible for this Privacy Statement:

  • Right to information: You may request confirmation under Article 15 of the GDPR as to whether and what personal data we process from you. In addition, you can provide us with free information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right. Require, delete, restrict the processing or object, the existence of a right to appeal and the origin of their data, unless these have been collected from us. You also have the right to know whether your personal data has been transferred to a third country or to an international organisation. If this is the case, you have the right to receive information about the appropriate guarantees in connection with the transfer.
  • Right to correct: In accordance with Article 16 of the GDPR, you may request the correction of incorrect or incomplete personal data stored and concerning us.
  • Right to erasure: Pursuant to Article 17 of the GDPR, you have the right to request the deletion of your personal data stored with us, provided that we do not need to process it for the following purposes:
  • In order to fulfil a legal obligation,
  • To assert, exercise or defend legal claims,
  • To exercise the right to freedom of expression and information, or
  • For reasons of the public interest cases referred to in Article 17 (3) lit c and d GDPR.
  • Right to restrict: Pursuant to Article 18 of the GDPR, you have the right to require the restriction of the processing of your personal data if
  • The accuracy of the data is disputed by you, for a period of time that allows us to verify the accuracy of the personal data,
  • Processing your data is unlawful, but you refuse to delete it and instead require restricting the use of the data,
  • We no longer need the personal data for the purposes of processing, but you need the data to assert, exercise or defend legal claims
  • You have objected to the processing of your data in accordance with Article 21 of the GDPR, but it is not yet clear whether the legitimate reasons which entitle us to further processing, despite your objection, outweigh your rights.
  • Right to be informed: If you have asserted the right to correct, delete or restrict the processing against us, we are obliged to disclose the personal information requested by you to all recipients to whom the personal data concerning you To notify the data of correction or to limit the processing, unless this proves impossible or involves a disproportionate effort. You have the right to be informed by us about these recipients.
  • Right to data portability: Pursuant to Article 20 of the GDPR, you may require that we obtain the personal data that you have provided to us in a structured, common and machine reading format, or to require the transfer to another person responsible.
  • The right to complain: Under Article 77 of the GDPR, you have the right to complain to a supervisory authority. For this purpose, you can contact the supervisory authority of your usual place of residence, your workplace or our company headquarters.

Revocation


Pursuant to Article 7 (3) of the GDPR, you have the right to revoke your consent to the processing of your data at any time. The revocation you have declared does not alter the legality of the processing of your personal data until the revocation.


Right to object


For reasons arising from your particular situation, you have the right to object at any time to the processing of the personal data concerning you, which is due to a balance of interest (Article 6 (1) of a split GDPR). This is particularly the case where data processing is not required to fulfil a contract. If you exercise your right to object, please explain the reasons. We will no longer process your personal data unless we can prove to you that compelling reasons for data processing are worthy of protection.

Regardless of what is said above, you have the right at all to object to the processing of your personal data for the purposes of advertising and data analysis.

Please address your objection to the contact address provided above by the person responsible.


YouTube Videos


  1. We have integrated YouTube videos from youtube.com using the embedded feature on our website, so that they can be accessed directly on our website. YouTube is part of Google Ireland Limited, Registernr.: 368047, Gordon House, Barrow Street, Dublin 4, Ireland. We have integrated the videos into the so-called "extended data protection mode" without having cookies to record usage behavior in order to personalize video playback. Instead, the video recommendations are based on the video currently being played. Videos played in an embedded player in advanced privacy mode won't affect which videos are recommended to you on YouTube. When you start a video (click on the video), YouTube receives the information that you have accessed the corresponding bottom of our website. The data obtained is transferred to the United States and stored there. This is done without a user account with Google. If you are logged into your Google account, Google can assign the above data to your account. If you don't want to, you'll need to log out of your Google account. Google creates user profiles from such data and uses this data for the purpose of advertising, market research or optimizing its websites.
  2. The legal basis for this is our legitimate interest in data processing in accordance with Article 6 (1) of 1:1 lit, which is also valid in the purposes of the above. (F) GDPR.
  3. You have a right to object to Google against the formation of user profiles. Please contact Google directly via the privacy policy below. You can make an opt-out contradiction regarding advertising cookies here in your Google account:https://adssettings.google.com/authenticated.
  4. You can find more information in YouTube's terms of use at https://www.youtube.com/t/terms and Google's Advertising Privacy Policy at https://policies.google.com/technologies/ads To use Google Cookies and their advertising technologies, storage time, anonymization, location data, how it works and your rights. Google's General Privacy Statement: https://policies.google.com/privacy .
  5. Google is certified in accordance with the EU-US Privacy Shield (https://www.privacyshield.gov/EU-US-Framework) and is therefore obliged to comply with European data protection law.

Google ReCAPTCHA


  1. We have integrated on our website the anti-spam function "reCAPTCHA" of "Google" (Google Ireland Limited, Registernr.: 368047, Gordon House, Barrow Street, Dublin 4, Ireland). By using "reCAPTCHA" in our forms, we can determine whether the input was done by a machine (robot) or a human. When using the service, your IP address and any other data you need can be transferred to Google servers in the United States.
  2. The purpose of processing this data is to prevent spam and misuse as well as our economic interest in optimizing our website.
  3. The legal basis for this is our legitimate interest in data processing in accordance with Article 6 (1) of 1:1 lit, which is also valid in the purposes of the above GDPR.
  4. Google is certified under the Privacy Shield Agreement (https://www.privacyshield.gov/EU-US-Framework). This will ensure that European data protection law is respected.
  5. For more information, visit Google ReCAPTCHA at https://www.google.com/recaptcha/and Google's privacy policy at: https://policies.google.com/privacy .

Google Maps


  1. We have integrated maps of "Google Maps" (Google Ireland Limited, Registernr.: 368047, Gordon House, Barrow Street, Dublin 4, Ireland) on our website. This allows you to view the location of addresses and directions directly on our website in interactive maps and allow you to use this tool.
  2. When we access our website, where Google Maps is integrated, a connection is established to Google's servers in the USA. Your IP and location can be transferred to Google. In addition, Google receives the information that you have accessed the corresponding page. This is done without a user account with Google. If you are logged into your Google account, Google can assign the above data to your account. If you don't want to, you'll need to log out of your Google account. Google creates user profiles from such data and uses this data for the purpose of advertising, market research or optimizing its websites.
  3. The legal basis for this is our legitimate interest in data processing in accordance with Article 6 (1) of 1:1 lit, which is also valid in the purposes of the above GDPR.
  4. You have a right to object to Google against the formation of user profiles. Please contact Google directly via the privacy policy below. You can make an opt-out contradiction regarding advertising cookies here in your Google Account:https://adssettings.google.com/authenticated.
  5. In Google Maps ' terms of use under https://www.google.com/intl/en_en/help/terms_maps.html and Google's Advertising Privacy Policy at https://policies.google.com/technologies/ads Learn more about using Google Cookies and their advertising technologies, storage time, anonymization, location data, how it works, and your rights. Google's General Privacy Statement: https://policies.google.com/privacy .
  6. Google is certified in accordance with the EU-US Privacy Shield (https://www.privacyshield.gov/EU-US-Framework) and is therefore obliged to comply with European data protection law.

Presence on social media


  1. We maintain profiles or fan pages on social media to communicate with the users connected and registered there and to inform about our products, offers and services. The US providers are certified according to the so-called Privacy Shield and are therefore obliged to comply with European data protection. When you use and access our profile on the respective network, the respective privacy notices and terms of use of the respective network apply.
  2. We process your data that you send us through these networks to communicate with you and to respond to your messages there.
  3. The legal basis for the processing of personal data is our legitimate interest in communicating with users and our external presentation for advertising in accordance with Article 6 (1) lit. (F) DS GMOs. To the extent that you have given the social network manager consent to the processing of your personal data, the legal basis is Article 6 (1) lit. (a) and Article 7 of the GDPR.
  4. The data protection notices, information options and opt-out of the respective networks can be found here:

• Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)

Privacy Policy: https://www.facebook.com/about/privacy/ ,

Opt-Out: https://www.facebook.com/settings?tab=ads

And

http://www.youronlinechoices.com

PrivacyShield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active .


• Google + (Google Ireland Limited, Registernr.: 368047, Gordon House, Barrow Street, Dublin 4, Ireland) – Privacy Policy: https://policies.google.com/privacy, opt-out: https://adssettings.google.com/authenticated , Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active .


• Twitter (Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA)-Privacy Policy : https://twitter.com/de/privacy,opt-out: https://twitter.com/personalization, Privacy Shield : https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active .


• LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland) – Privacy Policy: https://www.linkedin.com/legal/privacy-policy, Cookie Policy and Opt-Out : https://www.linkedin.com/legal/cookie-policy, Privacy Shield of the US company LinkedIn Inc.: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active .


Social media plug-ins


  1. We use social media plug-ins from social networks on our website. We use the so-called "two-click solution" shariff from c't or heise.de. When our website is retrieved, no personal data is transmitted to the providers of the plug-ins. In addition to the logo or brand of the social network, you will find a controller with which you can activate the plug-in by clicking. Once activated, the provider of the social network receives the information that you have accessed our website and that your personal data is transmitted to the provider of the plug-in and stored there. These are so-called third-party cookies. Some providers, such as Facebook and XING, provide their information to notify your IP immediately after the survey.
  2. The plug-in provider stores the data collected about the user as user profiles. These are used for the purposes of advertising, market research and/or on-demand design of its website. Such an evaluation is carried out in particular (also for non-logged-in users) to present demand-oriented advertising and to inform other users of the social network about the activities of the user on our website. The user is entitled to object to the formation of these user profiles, whereby one has to contact the respective plug-in provider in order to exercise this right.
  3. The legal basis for the use of the plug-ins is our legitimate interest in improving and optimizing our website by increasing our awareness through social networks as well as the possibility of interacting with you and the users with each other Social networks in accordance with Article 6 (1) of 1:1 lit. GDPR.
  4. We have no control over the data and data processing processes collected. Nor do we know the extent of the data collection, the purpose of processing and the storage periods. We do not have any information about the deletion of the collected data by the plug-in provider.
  5. With regard to the purpose and scope of data collection and processing, we refer to the respective data protection statements of the social networks. You will also find information on your rights and settings to protect your personal data.

Facebook


  1. We have integrated plug-ins from the social network Facebook.com (headquartered in the EU: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) on our website as part of Shariff's so-called "two-click solution." You can recognize these on the Facebook logo "f" or the addition "Like," "Like" or "Share."
  2. As soon as you willingly activate the Facebook plug-in, it connects from your browser to Facebook's servers. In doing so, Facebook receives the information, including your IP, that you have accessed our website and transmits this information to servers of Facebook in the USA, where this information is stored. If you are logged into your account with Facebook, Facebook can assign this information to your account. When using the functions of the plug-in, e.g. operating the "Like" button, this information is also transmitted from your browser to the servers of Facebook in the USA and stored there and displayed in your Facebook profile and, if necessary, with your friends.
  3. The purpose and scope of the data collection, as well as its further processing and use of the data by Facebook, as well as your rights in this regard and setting options to protect your privacy, can be found in the data protection notices of Facebook: https://www.facebook.com/about/privacy/. Data collection at the "Like" button: https://www.facebook.com/help/186325668085084. You can manage and object to your settings regarding the use of your profile data for advertising purposes on Facebook: https://www.facebook.com/ads/preferences/ .
  4. If you log out of Facebook before visiting our website and delete your cookies, no data about visiting our website will be assigned to your profile on Facebook when you activate the plug-in.
  5. You can also prevent the loading of the Facebook plug-in by so-called "Facebook Blocker," which you can install as an add-on for your browser: Facebook Blocker for Firefox, Chrome and Opera or 1blockers for Safari, iPad and iPhone.
  6. Facebook has submitted to the Privacy Shield, ensuring that European data protection law is respected: https://www.privacyshield.gov/EU-US-Framework .

Twitter/ X


  1. We have integrated plug-ins from the social network Twitter.com (Twitter Inc., 1355 Market St., Suite 900, San Francisco, California 94103, USA) on our website as part of Shariff's so-called "two-click solution." You can recognize these plug-ins by the Twitter logo with white bird on a blue background. An overview of Twitter buttons or tweets can be found at: https://developer.twitter.com/en/docs/twitter-for-websites/overview .
  2. If you're logged into your Twitter account while you willingly activate the Twitter plug-ins, Twitter can assign the call to our website to your Twitter profile. We are not aware of what data is being submitted to Twitter.
  3. If you want to exclude data when the plug-in is activated to Twitter, log out of Twitter and delete your cookies before visiting our website.
  4. The purpose and scope of the data collection, as well as its further processing and use of the data by Twitter, as well as your rights in this regard and setting options to protect your privacy, can be found in Twitter's privacy policy: https://twitter.com/de/privacy. Opt-Out: https://twitter.com/personalization .
  5. Twitter has submitted to the Privacy Shield, ensuring that European data protection law is respected: https://www.privacyshield.gov/EU-US-Framework .

Google Plus


  1. We have integrated plug-ins from the social network Google + (G +) (Google Ireland Limited, Registernr.: 368047, Gordon House, Barrow Street, Dublin 4, Ireland) on our website as part of Shariff's so-called "two-click solution." You can recognize these from buttons with the sign "+ 1" on a white or colored background.
  2. As soon as you willingly activate the Google + plug-in, it will connect from your browser to Google's servers. In doing so, Google receives the information, including your IP, that you have accessed our website and transmits this information to Google servers in the United States, where this information is stored. If you are logged into your account with Google, Google can assign this information to your account. When using the functions of the plug-in, e.g. operating the "+ 1" button, this information is also transmitted from your browser to Google's servers in the USA and stored there, and displayed in your Google + profile and, if necessary, with your friends.
  3. The purpose and scope of the data collection, as well as its further processing and use of the data by Google, as well as your rights in this regard and setting options to protect your privacy, can be found in the data protection notices of Google +: https://www.google.com/intl/de_de/+/policy/index.html. Data collection on the "+ 1" button: https://developers.google.com/+/web/buttons-policy. You can manage and object to your settings regarding the use of your profile data for advertising purposes on Google (opt-out): https://adssettings.google.com/authenticated .
  4. If you log out of Google + before visiting our website and delete your cookies, no data about visiting our website will be assigned to your profile on Google + when you activate the plug-in.
  5. 5Google has submitted to the Privacy Shield, ensuring that European data protection law is respected: https://www.privacyshield.gov/EU-US-Framework .

Linkedin


Our website uses functions of the network LinkedIn. Provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Every time you access one of our pages, which contains functions of LinkedIn, a connection is established to servers of LinkedIn. LinkedIn is informed that you have visited our website with your IP address. If you click on the "Recommend" button of LinkedIn and are logged into your account on LinkedIn, LinkedIn is able to assign your visit to our website to you and your user account. We would like to point out that

The fact that we, as the provider of the pages, have no knowledge of the content of the transmitted data as well as its use by LinkedIn.

For more information, see LinkedIn's privacy policy at:

https://www.linkedin.com/legal/privacy-policy

Google Analytics


  • We use the analysis tracking tool "Google Analytics" in version Google Analytics 4 (GA4) from the American company Google Inc. For the European area, the company is Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) for everyone Google services responsible. Google Analytics collects data about your actions on our website. Through the combination of different technologies such as cookies, device IDs and login information, you as a user can be identified across different devices. This means your actions can also be analyzed across platforms. For example, if you click on a link, this event is stored in a cookie and sent to Google Analytics. The reports we receive from Google Analytics allow us to better tailor our website and service to your needs. Below we will go into more detail about the tracking tool and, above all, inform you about what data is processed and how you can prevent this. Google Analytics is a tracking tool that is used to analyze traffic on our website. The basis of these measurements and analyzes is a pseudonymous user identification number. This number does not contain any personal data such as name or address, but is used to assign events to a device. GA4 uses an event-based model that captures detailed information about user interactions such as page views, clicks, scrolling, conversion events. In addition, various machine learning functions have been built into GA4 to better understand user behavior and certain trends. GA4 relies on modeling with the help of machine learning functions. This means that based on the data collected, missing data can also be extrapolated in order to optimize the analysis and also to be able to make forecasts. In order for Google Analytics to work, a tracking code is built into the code of our website. When you visit our website, this code records various events that you perform on our website. With GA4's event-based data model, we as website operators can define and track specific events to obtain analysis of user interactions. In addition to general information such as clicks or page views, specific events that are important for our business can also be tracked. Such special events could be, for example, sending a contact form or purchasing a product. As soon as you leave our website, this data is sent to the Google Analytics servers and stored there. Google processes the data and we receive reports about your user behavior. These may include, among others, the following reports:
  • Target group reports: Through target group reports we get to know our users better and know more precisely who is interested in our service.
  • Display reports: Display reports make our online advertising easier analyze and improve.
  • Acquisition reports: Acquisition reports give us helpful information about how we can attract more people to our service.
  • Behavioral reports: This tells us how you interact with our website. We can understand which path you take on our site and which one Click on the left.
  • Conversion reports: Conversion is the process in which you take a desired action based on a marketing message. For example, when you go from being just a website visitor to a buyer or newsletter subscriber. These reports help us learn more about how our marketing efforts are being received by you. This is how we want to increase our conversion rate.
  • Real-time reports: Here we always find out immediately what is happening on our website. For example, we see how many users are currently reading this text.

In addition to the above-mentioned analysis reports, Google Analytics 4 also offers, among other things the following functions:

  • Event-based data model: This model captures very specific events that may occur on our website. For example, playing a video, purchasing a product or signing up for our newsletter.
  • Advanced analytics features: These features allow us to better understand your behavior on our website or certain general trends. For example, we can segment user groups, carry out comparative analyzes of target groups, etc Trace your route or path on our website
  • Predictive modeling: Based on collected data, machine learning can extrapolate missing data that predicts future events and trends. This can help us develop better marketing strategies.
  • Cross-platform analysis: Data can be collected and analyzed from both websites and apps. This gives us the opportunity to analyze user behavior across platforms, provided you have of course consented to data processing.
  1. Why Google Analytics Our goal with this website is clear: we want to offer you the best possible service. The statistics and data from Google Analytics help us achieve this goal. The statistically evaluated data shows us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimize our site so that interested people can find it more easily on Google. On the other hand, the data helps us to better understand you as a visitor. We therefore know exactly what we need to improve on our website in order to offer you the best possible service. The data also helps us to carry out our advertising and marketing measures more individually and cost-effectively. After all, it only makes sense to show our products and services to people who are interested in them.
  2. Which data will be stored in Google Analytics Google Analytics creates a random, unique ID associated with your browser cookie using a tracking code. This is how Google Analytics recognizes you as a new user and you are assigned a user ID. The next time you visit our site, you will be recognized as a “returning” user. All collected data will be stored together with this user ID. This makes it possible to evaluate pseudonymous user profiles. In order to be able to analyze our website with Google Analytics, a property ID must be inserted into the tracking code. The data is then saved in the corresponding property. The Google Analytics 4 property is the default for every newly created property. Depending on the property used, data is stored for different lengths of time. Using identifiers such as cookies, app instance IDs, user IDs or custom event parameters, your interactions are measured across platforms, provided you have consented. Interactions are all types of actions that you take on our website. If you also use other Google systems (such as a Google account), data generated via Google Analytics may be linked to third-party cookies. Google does not pass on Google Analytics data unless we as website operators authorize this. Exceptions may occur if required by law. According to Google, Google Analytics 4 does not log or store IP addresses. However, Google uses the IP address data to derive location data and deletes it immediately afterwards. All IP addresses collected from users in the EU are deleted before the data is stored in a data center or on a server. Because Google Analytics 4 focuses on event-based data, the tool uses significantly fewer cookies compared to previous versions (like Google Universal Analytics). However, there are some specific cookies used by GA4. These include, for example:

Name: _ga

Value: 2.1326744211.152331725887362-5

Purpose: By default, analytics.js uses the _ga cookie to store the user ID. Basically, it is used to distinguish website visitors.

Expiry date: after 2 years


Name: _gid

Value: 2.1687193234.152331725887362-1

Purpose: The cookie is also used to distinguish website visitors

Expiry date: after 24 hours


Name: _gat_gtag_UA_<property-id>

Value: 1

Intended use: Used to reduce the request rate. If Google Analytics is provided via Google Tag Manager, this cookie is named _dc_gtm_ <property-id>.

Expiry date: after 1 minute

Note: This list cannot claim to be complete, as Google continually changes its choice of cookies. GA4 also aims to improve data protection. Therefore, the tool offers some options for controlling data collection. For example, we can set the storage period ourselves and also control data collection.


Here we show you an overview of the main types of data used by Google Analytics are collected:

Heatmaps: Google creates so-called heatmaps. Heatmaps show exactly the areas you click on. This gives us information about where you are on our site.

Session duration: Google refers to the time that you spend on our site without leaving the site. If you have been inactive for 20 minutes, it ends session automatically.

Bounce rate: A bounce is when you only view one page on our website and then leave our website again.

Account creation: When you create an account or order on our website Google Analytics collects this data. Location: IP addresses are not logged or stored in Google Analytics. However, shortly before the IP address is deleted, derivatives for location data are used.

Technical Information: Technical information includes, but is not limited to, your Browser type, your internet provider or your screen resolution.

Source of origin: Google Analytics or we are of course also interested in which website or advertising you came to our site from.


Other data includes contact details, any reviews, playing media (e.g. when you play a video via our site), sharing content via social media or adding it to your favorites. The list does not claim to be complete and only serves as a general guide to data storage by Google Analytics.

3. The data will be stored for how long and where Google has their servers spread all over the world. You can read exactly where the Google data centers are located here: https://www.google.com/about/datacenters/locations/?hl=de. Your data is distributed on different physical storage media. This has the advantage that the data can be accessed more quickly and is better protected against manipulation. Every Google data center has appropriate emergency programs for your data. For example, if Google's hardware fails or natural disasters paralyze servers, the risk of service disruption at Google remains low. The retention period of the data depends on the properties used. The storage period is always determined specifically for each individual property. Google Analytics offers us four options for controlling storage duration:

  • 2 months: this is the shortest storage period.
  • 14 months: by default, GA4 stores data for 14 months.
  • 26 months: you can also save the data for 26 months.
  • Data will not be deleted until we delete it manually

There is also the option that data will only be deleted if you no longer visit our website within the period chosen by us. In this case, the retention period will be reset each time you visit our website again within the specified period.

Once the specified period has expired, the data will be deleted once a month. This retention period applies to your data linked to cookies, user recognition and advertising IDs (e.g. cookies from the DoubleClick domain). Report results are based on aggregated data and are stored independently of user data. Aggregated Data is a fusion of individual data into a larger unit.

4. How can I erase my data and/ or prevent the storage of my data Under European Union data protection law, you have the right to access, update, delete or restrict your data. You can prevent Google Analytics 4 from using your data using the browser add-on to deactivate Google Analytics JavaScript (analytics.js, gtag.js). You can download and install the browser add-on at https://tools.google.com/dpage/gaoptout?hl=de. Please note that this add-on only deactivates data collection by Google Analytics. If you generally want to deactivate, delete or manage cookies, you will find the relevant links to the relevant instructions for the most popular browsers under the “Cookies” section.

5. Legal The use of Google Analytics requires your consent, which we obtained with our cookie popup. This consent constitutes according to Art. 6 Para. 1 lit. a GDPR (Consent) represents the legal basis for the processing of personal data, as may occur when collected by web analytics tools. In addition to consent, we have a legitimate interest in analyzing the behavior of website visitors and thus improving our offering technically and economically. With the help of Google Analytics, we recognize errors on the website, identify attacks and improve profitability. The legal basis for this is Article 6 Paragraph 1 Letter f GDPR (legitimate interests). However, we only use Google Analytics if you have given your consent. Google also processes your data in the USA, among other places. Google is an active participant in the EU-US Data Privacy Framework, which regulates the correct and secure transfer of personal data from EU citizens to the USA. More information can be found at https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en.

Google also uses so-called standard contractual clauses = Article 46, paragraphs 2 and 3 GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through the EU-US Data Privacy Framework and the Standard Contractual Clauses, Google undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur- lex.europa.eu/eli/dec_impl/2021/914/oi?locale=de

The Google Ads Data Processing Terms, which refer to the standard contractual clauses, can be found at https://business.safety.google/intl/de/adsprocessorterms/

We hope we were able to provide you with the most important information about data processing by Google Analytics. If you want to find out more about the tracking service, we recommend these two links: https://marketingplatform.google.com/about/analytics/terms/de/ and https://support.google.com/analytics/answer/6004245?hl=de. If you want to find out more about data processing, please use the Google data protection declaration at https://policies.google.com/privacy?hl=de.


Cloudflare


We use Cloudflare from Cloudflare, Inc. (101 Townsend St., San Francisco, CA 94107, USA) to make our website faster and more secure. Cloudflare uses cookies and processes user data. Cloudflare, Inc. is an American company that offers a content delivery network and various security services. These services are between the user and our hosting provider. We will try to explain in more detail what this all means below. A Content Delivery Network (CDN), like the one provided by Cloudflare, is nothing more than a network of connected servers. Cloudflare has servers like this distributed around the world to get websites to your screen faster. To put it simply, Cloudflare creates copies of our website and places them on their own servers. When you now visit our website, a load balancing system ensures that the largest parts of our website are delivered from the server that can display our website to you the fastest. The data transfer route to your browser is significantly shortened by a CDN. This means that the content of our website is delivered to you by Cloudflare not only from our hosting server, but from servers from all over the world. The use of Cloudflare is particularly helpful for users from abroad, as the site can be delivered from a nearby server. In addition to quickly delivering websites, Cloudflare also offers various security services, such as DDoS protection or web applications Firewall on.

  1. Why do we use Cloudflare Of course we want to offer you the best possible service with our website. Cloudflare helps us make our website faster and more secure. Cloudflare offers us both web optimization and security services such as DDoS protection and web firewall. This also includes a reverse proxy and the content distribution network (CDN). Cloudflare blocks threats and limits abusive bots and crawlers that waste our bandwidth and server resources. By storing our website on local data centers and blocking spam software, Cloudflare allows us to reduce our bandwidth usage by approximately 60%. Serving content from a data center near you and doing some web optimization there reduces the average load time of a web page by about half. According to Cloudflare, the "I'm Under Attack Mode" setting can be used to mitigate further attacks by displaying a JavaScript math problem that must be solved before a user can access a website. Overall, this makes our website significantly more powerful and less susceptible to spam or other attacks.
  2. Which data is used Cloudflare generally only forwards data that is controlled by website operators. The content is therefore not determined by Cloudflare, but always by the website operator itself. In addition, Cloudflare may collect certain information about the use of our website and process data that is sent by us or for which Cloudflare has received corresponding instructions. In most cases, Cloudflare receives data such as IP address, contact and log information, security fingerprints, and website performance data. For example, log data helps Cloudflare detect new threats. This allows Cloudflare to ensure a high level of security protection for our website. Cloudflare processes this data as part of the Services in compliance with applicable laws. Of course, this also includes the General Data Protection Regulation (GDPR). Cloudflare also works with third parties. They may only process personal data under the instructions of Cloudflare and in accordance with the data protection guidelines and other confidentiality and security measures. Cloudflare will not pass on any personal data without our explicit consent.
  3. For how long is the data stored Cloudflare stores your information primarily in the United States and the European Economic Area. Cloudflare may transfer and access the information described above from anywhere in the world. In general, Cloudflare stores data at the VAT level for domains in Free, Pro and Business versions for less than 24 hours. For enterprise domains that have Cloudflare Logs (formerly Enterprise LogShare or ELS) enabled, data can be stored for up to 7 days. However, if IP. If addresses trigger security warnings at Cloudflare, there may be exceptions to the storage period listed above.
  4. How can I erase my data and/ or prevent the storage of my data Cloudflare only retains data logs for as long as necessary and in most cases this data is deleted within 24 hours. Cloudflare also does not store any personal data, such as your IP address. However, there is information that Cloudflare stores indefinitely as part of its persistent logs to improve the overall performance of Cloudflare Resolver and detect any security risks. You can see which permanent logs are stored exactly Read https://www.cloudflare.com/application/privacypolicy. All data that Cloudflare collects (temporary or permanent) is purged of any personal information. All permanent logs are also anonymized by Cloudflare Cloudflare states in their privacy policy that they are not responsible for the content they receive. For example, if you ask Cloudflare whether you can update or delete your content, Cloudflare generally refers to us as the website operator. You can also completely stop Cloudflare from collecting and processing your data by executing script code Deactivate your browser or integrate a script blocker into your browser.
  5. Legal Legal basis If you have consented to Cloudflare being used, the legal basis for the corresponding data processing is this consent. This According to Article 6 Paragraph 1 Letter a of the GDPR (consent), consent represents the legal basis for the processing of personal data, as may occur when it is collected by Cloudflare. We also have a legitimate interest in using Cloudflare to optimize our online service and make it more secure. The corresponding legal basis for this is Article 6 Paragraph 1 Letter f GDPR (legitimate interests). However, we only use Cloudflare if you have given your consent. Cloudflare also processes your data in the USA, among other places. Cloudflare is an active participant in the EU-US Data Privacy Framework, which regulates the correct and secure transfer of personal data from EU citizens to the USA. More information can be found at https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en. Cloudflare also uses so-called standard contractual clauses (= Art. 46 Para. 2 and 3 GDPR). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through the EU-US Data Privacy Framework and the Standard Contractual Clauses, Cloudflare undertakes to comply with European data protection levels when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the resolution and the corresponding standard contractual clauses here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de.You can find out more about the standard contractual clauses and data processed through the use of Cloudflare in the data protection declaration https://www.cloudflare.com/de-de/privacypolicy.

Safety measures


We also take state-of-the-art technical and organisational security measures to comply with data protection laws and to prevent accidental or intentional manipulation, partial or complete loss, Destruction or against unauthorized access of third parties.