Data Protection Declaration

As the data controller we have prepared this privacy notice to inform you in accordance with the requirements of the EU General Data Protection Regulation 2016/679 (GDPR) about the nature, scope and purpose of the processing of personal data in relation to the services we offer on our web site.

I. Definitions

'Personal data' means any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
'Processing' means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
'Controller' means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
'Recipient' means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;

II. General Information

1. The data controller

Neuffer Fenster + Türen GmbH
Kronprinzstr. 8
70173 Stuttgart
Germany

Telephone: +49 711 860 601 60
Telefax: +49 711 860 60 - 111
E-mail: info@noSpamneuffer.de

2. Contact details of the Data Protection Officer

OBSECOM GmbH
Königstr 40
70173 Stuttgart
Germany

Telephone: 0711 / 4605025-40
Telefax: 0711 / 4605025-49
E-Mail: datenschutz@noSpamobsecom.de
Website: www.obsecom.de

3. Legal bases

We process personal data based on at least one of the following legal bases:

The data subject has given consent to the processing of his or her personal data for one or more specific purposes (Art. 6 (1) lit. a GDPR);
Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract (Art. 6(1) lit. b GDPR);
Processing is necessary for compliance with a legal obligation to which we are subject (Art. 6(1) lit. c GDPR);
Processing is necessary in order to protect the vital interests of the data subject or of another natural person (Art. 6 (1) lit. d GDPR);
Processing is necessary for the purposes of the legitimate interests pursued by us or by a third party (Art. 6 (1) lit. f GDPR)

In this privacy policy we refer to the respective legal basis of the individual data processing operations.

4. Onward transfer of personal data

We forward personal data to recipients (data processors or other third parties) only to the extent required and only if one of the subsequent conditions are met:

the data subject has consented to the data transfer;
the onward transfer is required to fulfil a contractual obligation or pre-contractual measure on the request of the data subject;
we are obliged by law to make such a transfer;
The onward transfer is made on the basis of our legitimate interest or on those of a third party.

5. Third countries

The transfer of personal data to a third country or an international organisation outside the European Union (EU) or the European Economic Area (EEA) is subject to legal or contractual permission only in accordance with the provisions under Art. 44 et seq. GDPR. It means that pursuant to Art. 45 GDPR an adequacy decision of the EU commission must be present for the respective country, appropriate safeguards for data privacy under Art. 46 GDPR, or Binding Corporate Rules under Art. 47 GDPR do exist. In individual cases, a data transfer may be permitted on the basis of an exception under Art. 49 GDPR.

We may use on our web site we external services provided by organisations based in the USA. If these services are active, personal data is collected in connection with the provision of the relevant service and may be transferred to and stored on servers in the USA. The European Court of Justice considers the USA to have an inadequate level of data protection. When data is transferred to the US, there is a fundamental risk that the US authorities may access and use the data for surveillance and monitoring purposes without notification and without the possibility of a legal remedy.

6. Rights of data subjects

As a data subject you have the following right:

Pursuant to Art. 15 GDPR to request information about your personal data processed by us. You may also request information regarding the purposes of the processing; the categories of personal data concerned; the recipients or categories of recipients to whom the personal data have been or will be disclosed; the envisaged period for which the personal data will be stored, or the criteria used to determine that period; where the personal data are not collected from you, the data source; the existence of automated decision-making, including profiling, and meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing; the existence of the right to request rectification or erasure of data concerning you, the right to restrict processing or to object to such processing, the right to lodge a complaint with a supervisory authority. Finally, you have a right to know whether personal data has been transferred to a third country or to an international organisation, and, if so, the appropriate safeguards relating to this transfer;
Pursuant to Art. 16 GDPR to demand the immediate rectification of inaccurate personal data and to have incomplete personal data that are stored by us to be completed;
Pursuant to Art. 17 GDPR to demand the erasure of your personal data stored by us, unless the processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise or defence of a legal claim;
Pursuant to Art. 18 GDPR to request the restriction of the processing of your personal data if the accuracy of the personal data is contested by you; the processing is unlawful but you oppose the erasure of the personal data and request the restriction of their use instead; we no longer need the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims; you have objected to processing pursuant to Art. 21(1) GDPR pending the verification whether our legitimate grounds override your interests;
Pursuant to Art. 20 GDPR to receive your personal data, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller;
Pursuant to Art. 21 GDPR to object to the processing of your personal data on grounds relating to your particular situation, or if you object to processing for direct marketing purposes and the legal basis for the processing are our legitimate interests pursuant to Art. 6 (1) lit. f GDPR;
Pursuant to Art. 7(3) GDPR to withdraw your consent given to us at any time. As a result, we are no longer allowed to continue to process the data that was based on this consent in the future;
Pursuant to Art. 77 GDPR to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement. A list of contact details of the data protection officers and supervisory authorities can be found on this web site: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

If you wish to assert the data subject rights mentioned above, you can contact us or our data protection officer at any time using the contact details above.

7. Erasure and restriction of personal data

Unless otherwise provided for in this privacy notice, personal data will be deleted, if these data are no longer necessary in relation to the purposes for which they were collected or otherwise processed and the deletion does not conflict with statutory retention requirements. In addition, we will erase the personal data processed by us in accordance with Art. 17 GDPR on your request, if the conditions provided therein are met. If personal data are required for other lawful purposes, they will not be erased, but their processing will be restricted in accordance with Art. 18 GDPR. In case of restriction, the data will not be processed for other purposes. This applies, for example, to personal data that must be retained by us for commercial or tax law reasons. For example, data must be kept for 6 years pursuant to Section 257 (1) Nos. 2 and 3 German Commercial Code (HGB) and Section 147 (1) Nos. 2, 3, 5 German Tax Code (AO); data must be kept for 10 years pursuant to Section 257 (1) Nos. 1 and 4 HGB and Section 147 (1) No. 1, 4, 4a AO.

8. Cookies

Our web site uses cookies. Cookies are small text files that your browser automatically creates and stores on your device (laptop, tablet, smartphone, PC, etc.) when you visit our web site. Cookies do no harm to your device, nor do they contain any viruses or other malicious software. The cookie stores information which is created in relation to the specific device you are using. However, this does not mean that we become immediately aware of your identity. Cookies are mainly used to make the web site more user-friendly, effective and secure.

Most browsers accept cookies automatically. However, if you do not wish to accept cookies, you can configure your browser so that no cookies are stored on your device or a message is displayed before new cookies are created. Informationen on how to remove cookies in Internet Explorer / Edge, please refer to: https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies. Informationen on the emoval of cookies in Firefox, please refer to: https://support.mozilla.org/en-US/kb/clear-cookies-and-site-data-firefox?redirectlocale=en-US&redirectslug=delete-cookies-remove-info-websites-stored. Learn how to remove cookies in Safari here: https://support.apple.com/en-gb/guide/safari/sfri11471/mac.

A general objection to the use of cookies used for online marketing purposes can be made for a variety of services, such as explained at http://www.youronlinechoices.com/ or the opt-out page of the Network Advertising Initiative http://optout.networkadvertising.org. However, disabling cookies may mean that you may not be able to use all the features of our web site.

This website uses the Consentmanager cookie banner, which sets technically necessary cookies to save your cookie preferences. The cookie banner itself does not process any personal data. The list below shows the cookies we use on our website:

The data processed by essential/necessary cookies are required for the aforementioned purposes to protect our legitimate interests as well as those of third parties in the provision and operation of our website in accordance with Art. 6 (1)(f) GDPR. The legal basis for the use of cookies for advertising, market research and the integration of external media is your voluntarily given consent according to Art. 6 (1)(a) GDPR.

III. Individual processing operations

1. Hosting

In order to make our web site available, we use services provided by hosting companies, such as: Provision of web servers, disk space, database services, and security or maintenance services. Here we, or our hosting providers, process personal data of the web site visitors based on our legitimate interests in providing efficient and secure access to our web site in accordance with Art. 6 (1) lit. f GDPR.

2. Access data and log files

By visiting our web site or its individual pages, your device’s internet browser automatically sends information to the server of our web site. This information is stored in so-called log files by us or our hosting provider and will be deleted after 12 Months at the latest.

The following information is stored:

IP address of the requesting computer;
Date and time of access;
Name and URL of the requested file;
Web site from which our site was accessed (Referrer-URL);
The browser used and your computer’s operating system;
Status codes and the transferred amount of data;
Name of your access providers.

This data will be used for the following purposes:

The provision of our web site, including all of its features and contents;
To ensure a smooth connection to our web site;
To ensure a more user-friendly experience on our web site;
To ensure system security and stability;
For anonymised statistical evaluation of web site access;
To optimise our web site;
For disclosure to law enforcement authorities in the event of unlawful interference / attacks on our systems;
For further administrative purposes.

The legal basis for data processing is Art. 6 (1)(f) GDPR. Our legitimate interest relates to the data collection purposes mentioned above. Under no circumstances will we use the personal data collected for the purpose of drawing conclusions about a person.

3. General means of contact

If you contact us using the contact details published on our web site (for example, by e-mail) and in this context provide us with personal data, we will use this data to process your request on the basis of Art. 6 (1)(b) GDPR, if your request is related to the performance of a contract or is required to perform pre-contractual action. In all other cases, processing is based on your consent in accordance with Art. 6 (1)(a) GDPR and / or our legitimate interest in the effective processing of requests addressed to us pursuant to Art. 6 (1)(f) GDPR. We will store your personal data until you ask us for deletion, revoke your consent to the storage, or the data are no longer necessary for the purpose for which they were collected (for example, after completion of your request). Mandatory statutory provisions - especially retention periods - remain thereof unaffected.

4. Contact form

If you use the contact form, you will be asked to provide your e-mail address, name, gender and any other contact details, so that we can get in touch with you. Further information can be provided voluntarily. The data processing for the purpose of contacting us and answering your request takes place in accordance with Art. 6 (1)(a) GDPR based on your voluntary consent. All personal data collected in connection with the contact form will be deleted after your request has been processed, unless further storage is required for the documentation of other transactions (for example, subsequent conclusion of a contract).

5. E-Mail direct marketing to customers

If you are an existing customer and we have received your e-mail address in connection with the sale of goods or services, we may use your e-mail address for direct marketing purposes of our own similar goods or services. This only applies if you have not objected and we clearly and unequivocally have advised you of the possibility of objection at the time of collecting the e-mail address, and every time we use it. The legal basis of processing is our legitimate interest in direct marketing according to Art. 6 (1)(f) GDPR.

6. E-mail reminder to rate your purchase

If you have given us your express consent to do so during or after your order by activating a checkbox or clicking a button provided for this purpose, we will use your e-mail address for the purpose of reminding you to submit a rating of your order via the rating system used by us. The personal data is processed in accordance with Art. 6 (1)(a) GDPR based on your voluntary consent. This consent can be revoked at any time by sending us a message. The data collected in this context will be deleted after your request has been dealt with unless storage is required for the documentation of other processes.

7. Newsletter

If you would like to receive our newsletter, we need your e-mail address. The data processing for the purpose of sending the newsletter takes place in accordance with Art. 6 (1)(a) GDPR based on your voluntary consent by means of the so-called double-opt-in procedure. The e-mail address will be used and stored for this purpose until you withdraw your consent or unsubscribe from receiving the newsletter. You can unsubscribe at any time, for example by using the link at the bottom of each newsletter. You can also send your withdrawal/unsubscribe request at any time to the e-mail address given under Clause II.

We embed a so-called counting pixel into our newsletters. A counting pixel is a miniature graphic embedded in the HTML format of the newsletter to allow us an analysis of the reader's reading behaviour. In this context, we gather information whether and at what time a newsletter was opened by you and which of the links contained in the newsletter were accessed by you. We use this data to generate statistical evaluations of the success or failure of a marketing campaign to optimize the distribution of our newsletters and to better tailor the content of future newsletters to your interests. The collected data will not be passed on to third parties and will be deleted after the statistical evaluation.

8. MailChimp

We process our e-mail newsletters via MailChimp. The provider is the Rocket Science Group, LLC, 675 Ponce De Leon Ave NE # 5000, Atlanta, GA 30308, USA (hereafter 'MailChimp'). MailChimp is used to send and evaluate the reach of our newsletters. For this purpose, MailChimp processes your e-mail address and any other data required by MailChimp for the provision of the newsletter on our behalf. The legal basis for data processing is our legitimate interest in the use of a user-friendly and secure newsletter system in accordance with Art. 6 (1)(f) GDPR. The personal data required for processing the newsletter is stored on servers in the United States. The data transfer to MailChimp is legitimised according to Art. 46 (2)(c) GDPR based on the EU Standard Contractual Clauses. A copy of the clauses can be found at: https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32010D0087&from=en. For more information on how MailChimp handles your personal information, please refer to the privacy policy at: http://mailchimp.com/legal/privacy/.

9. Registration / user account

You can register on our website with your personal data. Registration is optional and takes place in accordance with Art. 6 (1)(a) GDPR based on your voluntarily given consent. What categories of personal data are used for registration can be seen on the registration form. The collected personal data will be used for the purposes of providing the services offered on our web site as well as getting into contact with you in order to provide you with information about our offers and the services you registered for. When logging in to your user account you can view your personal data and make changes to this data. We will not pass your personal data to third parties unless it is necessary for the fulfilment of contractual obligations in accordance with Art. 6 (1)(b) GDPR or for the pursuit of any claims to which we are entitled, or unless there is a legal obligation to do so in accordance with Art. 6 (1)(c) GDPR. Your data will be stored until you delete the user account or instruct us to delete your data. Insofar as we are obliged to retain your personal data on the basis of statutory retention periods, in particular tax and commercial law, the processing of your personal data will be restricted until the expiration of the relevant retention periods and then subsequently deleted.

If you register on our web site or use the user account, we will store your IP address and the time of usage. The processing takes place on the basis of our legitimate interests pursuant to Art. 6 (1)(f) GDPR in order to provide our services. The data are also processed to protect you from misuse and other unauthorized use. The IP addresses will be anonymized or deleted after 7 Days at the latest.

10. Application form

If you are applying for a job, please send your application documents to the e-mail address jobs@noSpamfensterversand.com. The data processing for the purpose of processing your application is carried out in accordance with Art. 6 (1)(a) GDPR based on your voluntary consent. Taking into account the limitation periods of the General Equal Treatment Act (AGG), application documents will be kept for a period of 6 months after completion of the application process and then deleted, unless storage is required for the documentation of other operations (for example, subsequent recruitment).

11. Contractual data

In connection with and for the purpose of fulfilling pre-contractual measures and contractual obligations initiated through our Internet offers, which are carried out at the request of the data subject, we process personal data required for the fulfilment of a contract with the data subject. These include:

Data of the contracting party, such as name, address and contact details, if applicable, alternate delivery or billing address or recipients;
if necessary the date of birth;
contractual documentation including subject matter, duration or customer category;
payment data such as bank details, credit card details, and payment history.

The legal basis for data processing is Art. 6 (1) lit. b GDPR.

The data will be disclosed to third parties only to the extent necessary to fulfil pre-contractual and contractual obligations, e.g. banks and payment providers credit card companies for processing the payment, to shipping service providers for the shipment of goods.

12. Userlike Chat

Our website uses the Userlike chat function. Provider is Userlike UG, Probsteigasse 44-46, 50670 Cologne, Germany (hereinafter 'Userlike'). The data processing is carried out for the purpose of contacting us and to answer your requests according to Art. 6 (1)(a) GDPR based on your voluntarily given consent. Userlike uses cookies. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. All personal data collected in connection with the chat conversation will be deleted after your request has been dealt with unless the storage is necessary for the documentation of other processes (e.g. subsequent conclusion of a contract). For more information on how Userlike handles your personal data, please refer to Userlike's privacy policy at: https://www.userlike.com/de/terms - privacy-policy.

13. Installation service

If you make use of our installation service, we will forward your name, address and contact details (telephone, e-mail) to an external installation service provider selected by us in your vicinity so that we can carry out the desired installation service. All personal data transferred to the service provider in connection with the installation service will be deleted after completion of the order, unless storage is required for the documentation of other processes.

IV. Payment provider

1. PayPal

This web site uses PayPal as a payment service. The provider is PayPal (Europe) S.à r.l. et Cie, SCA, 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter 'PayPal'). PayPal acts as an online payment service provider and trustee offering buyers and sellers secure services for payments via PayPal, credit card via PayPal, direct debit via PayPal or - if offered - purchase on account. For processing the payment transaction we will forward your name, e-mail address, purchased products, invoice amount as well as billing and delivery address to PayPal. When using the payment methods credit card via PayPal, direct debit via PayPal or - if offered - purchase on account via PayPal, PayPal will make a decision as to whether your transaction request is accepted, and, if necessary, performs a credit check for checking the creditworthiness and to minimize the default of payments. Calculating the creditworthiness includes probability values (so-called score values) and address data. The calculation of this score is based on a scientifically recognized mathematical-statistical procedure. If the credit rating is insufficient, PayPal can reject the chosen method of payment. The legal basis of the processing is Art. 6 (1)(b) GDPR. If you object to the data transfer, or you believe that your credit rating is not suitable for the chosen method of payment, please use a different method of payment. For more information on how PayPal deals with your personal data, please refer to the Privacy Policy at: https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_EN.

2. Klarna

This website uses Klarna as a payment service. Provider is Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter 'Klarna'). Klarna acts as an online payment service provider as well as a trustee and credit reference agency. When making a payment via Klarna, we will forward your name, e-mail address, date of birth, purchased products or services, invoice amount, invoice and delivery address, bank and credit card data, as well as mobile phone number, if applicable, to Klarna. If you use the payment methods “purchase on account” and “payment by instalments”, Klarna may check your credit rating to decide on the release of the payment transaction and to minimise payment defaults. In this context, your personal data may be shared with other credit reference agencies. In addition, score values are calculated for credit rating checks (so-called score values), which includes address data. The calculation of these score values is based on a scientifically recognised mathematical-statistical procedure. In the event of insufficient creditworthiness, Klarna may refuse the selected payment method. The legal basis for the processing is Art. 6 (1)(b) GDPR. If you object to the data transfer or if you believe that your credit rating is not suitable for the selected payment method, please use a different payment method. For more information on how Klarna handles your personal data, please refer to the privacy policy at: https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/privacy.

3. Immediate bank transfer

This web site uses Sofortüberweisung / Klarna Checkout as a payment service provider. Provider is the Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden, or the Klarna GmbH / SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany (hereinafter 'Klarna' / 'SOFORT'). SOFORT / Klarna takes on the role of an online payment service provider. When making a payment via SOFORT / Klarna Checkout your name, purchased products or services, invoice amount, and invoice and delivery address will be passed on to SOFORT / Klarna. The legal basis of the processing is Art. 6 (1)(b) GDPR. For more information on how SOFORT / Klarna handles your personal data, please refer to the privacy policy at: https://www.klarna.com/sofort/datenschutz/.

4. Komfortkasse

This website uses Komfortkasse as a payment service. The provider is LTC Information Services GmbH; Business Tower; Seligenstädter Str. 107; 63073 Offenbach am Main; Germany (hereinafter "LTC"). If Komfortkasse is selected to make a prepayment, payment on account or cash on delivery, LTC will take care of the automated processing and allocation of the payment. For this purpose, we forward your order data (name, order number, e-mail address, amount, currency, country) to LTC as part of the payment process. For cash on delivery orders we will additionally transfer the parcel number/shipping number to LTC. The data is forwarded to LTC exclusively for the purpose of payment processing. The legal basis for the processing is Art. 6 (1) lit. b GDPR. For further information on how LTC handles your personal data, please refer to the relevant privacy notice at: https://komfortkasse.eu/datenschutz.

V. Statistics and Analytics

1. Facebook pixel

This web site uses the so-called ‘Facebook pixel’. Provider is Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. Responsible for the processing of personal data of data subjects in the EU is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland. The use of the Facebook pixel-technology enables Facebook to recognize visitors of our web site and to associate them to certain groups for the display of specific advertisements (for example, so-called 'Custom Audiences', visitors to our website according to areas of interest which we have given to Facebook). This ensures that the users are shown only interest-oriented ads, and thus avoiding annoyance by improper advertising. By using Facebook pixel, we can also track the effectiveness of our Facebook ads for statistical purposes and track whether and how users have used our offer after clicking on the advertisement. The use of the Facebook pixel helps us to promote our products and services in an appropriate manner without anoying users with inappropriate advertising.

For more information about the Facebook Pixel and how it works, please refer to: https://www.facebook.com/business/help/651294705016616. More information on how Facebook processes the data obtained, and general details about Facebook advertisement is made available on the Facebook data policy at: https://www.facebook.com/about/privacy/update. In your personal Facebook account under the heading 'Settings', you also have the option to object to the collection of your personal data via the Facebook pixel and its use for the display of specific advertisements. More information about these settings are available at: https://www.facebook.com/settings?tab=ads (Login required).

The legal basis for the use of the Facebook pixel is your voluntarily given consent in accordance with Art. 6 (1)(a) GDPR. The legal basis for data transfer to the USA is also your voluntarily given consent in accordance with Art. 49 (1)(a) GDPR.

2. Mouseflow

Our website uses Mouseflow. Provider is Mouseflow ApS, Flaesketorvet 68, 1711 Copenhagen, Denmark (hereinafter 'Mouseflow'). Mouseflow is an analysis tool that records mouse clicks and movements, scrolling movements and other metadata. The data is processed for the purpose of optimising our website. The legal basis is our legitimate interests according to Art. 6 (1) lit. f GDPR. Cookies are used for analysis and evaluation. This service collects your IP address in anonymised form, which of our webpages you visited and, if applicable, further data required by Mouseflow for the provision of the service. You can prevent the collection of data by clicking on the link [https://mouseflow.de/opt-out] to obtain an opt-out cookie. This cookie ensures that no visitor data will be collected and stored by Mouseflow when visiting this website in the future. Please note: If you delete your cookies, the opt-out cookie will also be deleted and you may have to reactivate it. For further information on the use of personal data and cookies by Mouseflow, please refer to the Mouseflow privacy notice at: https://mouseflow.de/privacy/.

3. Taboola

We use Taboola to present advertisements of our products to web site visitors. The provider is Taboola Inc, 1115 Broadway, 7th Floor, New York, NY 10010, USA (hereinafter 'Taboola'). We have integrated the Taboola Pixel Tag on our website. This is an invisible image file which is loaded in the background by your browser when you visit our website. We use the Taboola Pixel Tag for the purpose of optimising marketing campaigns and, based on statistical evaluations, to gain an understanding of user interaction with our website and to optimise the display of advertising. This ensures that advertising is placed in accordance with the interests of the users and that annoyance caused by inappropriate advertising is avoided. The legal basis for the use of Taboola Pixel Tag is our legitimate interest and the interest of third parties in the optimised display of advertisements in accordance with Art. 6(1)(f) GDPR.

Taboola uses cookies to determine which content you are interested in and which of our pages you have visited. The information collected via cookies includes, for example, information about your operating system, the dates and times at which you accessed our website, information about events (e.g. irregular system crashes) and general location information (e.g. city). For more information about the purposes and extent to which Taboola uses cookies, please visit: https://policies.taboola.com/en/cookie-policy/. The legal basis for the use of cookies by Taboola is your voluntarily given consent in accordance with Art. 6(1)(a) GDPR. If you do not want Taboola to place cookies on your device, you can obtain an opt-out cookie from Taboola via this link: https://policies.taboola.com/en/privacy-policy/#user-choices-and-optout

The information generated about your use of this website is transferred to and stored on servers in the USA. Please also note the information above on data transfer to third countries. Further information on how Taboola handles personal data can be found at: https://policies.taboola.com/de/datenschutzerklaerung/

VI. Google Services

Provider of the services below is Google Ireland Limited (Register No: 368047), Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter „Google“).

The information collected by Google in connection with the provision of the respective services may be transferred to and processed by Google servers in the USA. Please also note our information on data transfer to third countries, see above.

For more information about how Google handles personal data, please refer to Google's Privacy Policy: https://www.google.com/intl/de/policies/privacy/. For information on the use of data for advertising purposes by Google, settings and your right to object please refer to: https://www.google.de/policies/privacy/partners/, https://www.google.de/policies/technologies/ads/, https://adssettings.google.de/

1. Google services for which your consent is required

The legal basis for the use of the following services is your voluntarily given consent according to Art. 6 (1)(a) GDPR. The legal basis for data transfer to the USA is also your voluntarily given consent in accordance with Art. 49 (1)(a) GDPR.

1.1 Google Analytics

Our Web site uses Google Analytics. Google Analytics uses cookies. Google Analytics collects information about the visits of web site users and analyses their behavior. This data serves the purpose of developing a user-friendly web site design, the continuous optimisation of our services and offers, to measure the success of marketing activities, and to create statistical analysis. In this context, pseudonymised user profiles are created and cookies are used. Google Analytics collects information such as browser type / version, operating system, referrer URL (the previously visited page), host name of the accessing computer (IP address), time of server request. The information generated is transferred to the US and stored on servers owned by Google. The collected user data and event data will be deleted after after 26 months. Information may also be transferred to third parties if required by law or if third parties process this data on behalf of us or Google. Under no circumstances will your IP address be merged with any other data that is kept by Google. The IP address will be anonymised so that assignment is impossible. You can prevent the local storage of cookies by configuring your browser software accordingly. However, be advised that in this case you may not be able to use all the features of this web site to the full extent possible. Additionally, in order to prevent Google from collecting and processing the data generated in relation to your use of the web site you may download and install the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

1.2 Google Analytics Remarketing

This web site uses Google Analytics Remarketing. Google Analytics Remarketing is used in order to present web site visitors advertisements related to content of previously visited web sites. Google uses cookies to recognize visitors who access web pages from the Google Advertising Network. This service collects your IP address, which of our web sites you have visited and, if necessary, other data required by Google for the provision of Analytics Remarketing. Your IP address will not be merged with other data provided by Google. The information gathered about your use of this web site is stored on a server in the USA. This information may also be transferred to third parties if required by law or if third parties process this data on behalf of us or Google. You can prevent the local storage of cookies by configuring your browser software correspondingly. However, be advised that in this case you may not be able to use all the features of this web site to the full extent possible. However, if you do not wish to use Google Remarketing, you can disable it by configuring you personal settings at: http://www.google.com/settings/ads.

1.3 Google Ads Remarketing

This website uses Google Ads Remarketing. Ads Remarketing is used to deliver personalized ads to users who have already interacted with our website when they visit another Google website or a website in the Google advertising network. Google uses cookies to identify a web browser on a specific device and to analyse website usage (e.g. which offers a user is interested in) in order to display interest-related advertising to users on other pages after they have visited our website. For more information about what other criteria Google uses to personalise advertisements, please refer to: https://support.google.com/ads/answer/1634057?visit_id=637292785957338239-1447476022&rd=1. This service collects your IP address, which of our websites you have visited and any other data required by Google for the provision of Ads Remarketing. The information collected about your use of this web site is stored on a server in the USA. This information may also be transferred to third parties if required by law or if third parties process this data on behalf of us or Google.

If you use a Google account that is logged in, Google may link your web and app browsing history to your account and uses this information to personalize ads, depending on the settings in your Google account. If you don't want to have your browsing history linked to your account, you'll need to sign out before you access our website.

You can also prevent the local storage of cookies by configuring your browser software settings accordingly; however, be advised that in this case you may not be able to use all the features of this web site to their full extent. If you do not wish to see personalised ads displayed by Google, you can deactivate this function at http://www.google.com/settings/ads and manage the use of device IDs for the personalisation of advertising via the device settings, see: https://support.google.com/ads/answer/1660762#mob.

1.4 Google AdWords with Conversion-Tracking

This web site uses Google AdWords and Google AdWords with Conversion Tracking. Google Conversion Tracking is used to track and evaluate the clicks on ads, purchases, signups, phone calls, app downloads, and other actions on our web site. In this context Google AdWords collects your IP address, which of our web sites you have visited and, if necessary, other data required by Google for providing conversion tracking statistics. Under no circumstances will your IP address be merged with any other data that is kept by Google. This service also uses Cookies for analysis and evaluation purposes. You can prevent the storage of cookies by configuring your browser so that no Cookies will be stored on your device. However, disabling cookies may mean that you may not be able to use all the features on our web site. The information generated is transferred to the US and stored on servers owned by Google. This information may also be transferred to third parties if required by law or if third parties process this data on behalf of us or Google.

1.5 Google+ Button

Our website uses the Google+ plugin. The plugin is recognisable by the Google+ logo. In this context, your IP address is recorded, which of our web pages you have visited, and possibly other data that Google can determine in connection with the connection. If you have a registered Google account, it is also possible for Google to associate your website visit with your Google account. The personal data collected is stored on servers in the USA.

1.6 Google Maps

This web site uses Google Maps to display site maps, maps, terrain data, or geographic maps. This service collects your IP address, which of our web sites you have visited and, if necessary, other data required by Google for the provision of the maps (such as location data). The generated information is stored on servers in the USA. This information may also be transferred to third parties if required by law or if third parties process this data on behalf of us or Google. The Google Maps terms of service can be found at: https://www.google.com/intl/en_uk/help/terms_maps.html.

1.7 YouTube

Our web site uses media content from the YouTube platform. Provider is Google Ireland Limited (Register No: 368047), Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter 'Google'). The purpose is to display content of the YouTube platform that relates to the content of our web site. This service collects your IP address and any additional data Google may need to provide the YouTube content. The information gathered about your use of this web site is stored on a server in the USA. This information may also be transferred to third parties if required by law or if third parties process this data on behalf of us or Google. If you are logged in to your YouTube account while you are visiting our web site, Google can link your visit of our web site directly to your YouTube user account. If you do not want Google to be able to associate the data collected on our web site with your respective user account on YouTube, you must first log out of YouTube.

2. Other Google services

The legal basis for the use of the following services are our legitimate interests according to Art. 6 (1)(f) GDPR. Our legitimate interests are listed below for each service individually.

2.1 Google Web Fonts

This web site uses external typesets provided by Google, so-called web fonts. To do this, your browser loads the required web fonts into your browser cache when you visit the web site. If your browser does not support this feature, your computer will use a standard font to display the web site. This service collects your IP address, which of our web sites you have visited and, if necessary, other data required by Google for the provision of the web fonts. The generated information about your use of this web site is stored on servers in the USA. This information may also be transferred to third parties if required by law or if third parties process this data on behalf of us or Google.

2.2 Google Hosted Libraries

This web site uses Google Hosted Libraries for dynamic presentation of the web page content. To do this, your browser loads the required JavaScript-Libraries into your browser cache when you visit the web site. If your browser does not support this feature, your computer will use alternative means to display the web page. This service collects your IP address, which of our web sites you have visited and, if necessary, other data required by Google for the provision of the hosted libraries. The generated information about your use of this web site is stored on servers in the USA. This information may also be transferred to third parties if required by law or if third parties process this data on behalf of us or Google.

2.3 Google Tag Manager

This web site uses Google Tag Manager in order to manage web site through a single tag management interface. Google Tool Manager only implements tags. This means: no cookies are used and no personal data is collected. Google Tag Manager triggers other tags, which may collect data. However, Google Tag Manager does not access this data. If deactivated at the domain or cookie level, it will remain effective for all tracking tags as far as they are implemented with the Google Tag Manager.

2.4 Google Customer Reviews

This website uses Google Customer Reviews to display the number and quality of reviews and gather feedback from users who made purchases on our website. To do this, your browser loads a JavaScript library into your browser cache when you visit the website. This service records your IP address, which of our web pages you have visited and, where applicable, other data required by Google for provision. The information generated about your use of this website is stored on a server in the USA. This information may also be transferred to third parties if this is required by law or if third parties process this data on behalf of us or Google.

VII. Social Media Plugins

On our website we use plugins from social media networks. If you open a website with such a plugin, your browser establishes a direct connection with the server of the respective provider, whereby the provider receives knowledge of which page you have visited and which IP address made the request. The same also applies to the use of the component, e.g. the liking or sharing of a content or the commenting of a post.

If you are logged in to the respective provider of the social media network while you are using the Shariff button, the respective provider can link the visit of our web site to your social media user profile. If you click on the button of one of the plugins, information will be transmitted to the respective provider and published in your social media profile. If you do not want the provider to be able to link the data collected to your social media user profil, you must first log out from the social media network. The purpose of the plugins is to promote awareness of our web site and to share content from our website in social media networks.

We use a 2-click methode to integrate the plugins and social media content. Hence, the data transfer only takes place once you have clicked on a link to load the plugin or the social media content.

1. Facebook-Plugins

Our website use features of the social network Facebook. Facebook enables participants of the social network to communicate and interact in order to exchange opinions and experiences or to publish information. Provider is Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA. Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, is responsible for processing personal data of individuals in the EU. Information on the collection, processing and use of personal data by Facebook can be found in the data policy available at: www.facebook.com/about/privacy/update There, you will also find setting for the protection of your personal data as well as methods to prevent the transfer of data to Facebook. An overview of the available Facebook plug-ins can be found at: https://developers.facebook.com/docs/plugins/?locale=de_DE.

2. Twitter Tweet-Button

Our website uses features of the social network Twitter. Provider is Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA or Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland. The plugin is recognisable by the Twitter logo. In this context, your IP address is recorded, which of our websites you have visited, and possibly other data that Twitter can determine in connection with the connection. If you have a registered Twitter account, it is also possible for Twitter to associate your visit with your Twitter account. The personal data collected is stored on servers in the USA. You can find more information about the settings in your Twitter account to protect your privacy at: http://twitter.com/account/settings. Further information on how Twitter handles your personal data can be found in Twitter's privacy policy at: http://twitter.com/privacy.

VIII. Rating platforms

1. Trusted Shops

Our website uses the Trusted Shops trust badge. Provider is Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne (hereinafter 'Trusted Shops'). The Trustbadge displays the Trusted Shops seal of approval and our ratings. When the Trustbadge is loaded, personal data such as your IP address, date and time of the request, the volume of data transferred and the website are automatically stored and processed. This data will not be evaluated and is automatically deleted after 7 days of your visit at the latest. The legal basis for the use of the Trusted Shops trust badge is our legitimate interest in optimising our marketing activities in accordance with Art. 6 (1)(f) GDPR. Further personal data will only be transferred to Trusted Shops (e.g. for requesting feedback) if you have given your consent, you decided to use Trusted Shops’ services after having completed an order or you have already registered to its use. In this case the contractual agreement between you and Trusted Shops applies. For further information on how Trusted Shops handles your personal data please refer to the Trusted Shops privacy notice at: https://www.trustedshops.de/impressum/.

IX. Media content

Our web site partially uses third party content loaded directly from servers of the content providers, as named below. The purpose of integrating this content is to make our web site more attractive.

1. Other Media content

The legal basis for the use of the following media content is our legitimate interests according to Art. 6 (1)(f) GDPR. Our legitimate interest in using third-party content is to improve the reach of our website through attractive web content. Further legitimate interests are listed individually below.

1.1 Bootstrap Fonts

This web site uses external fonts provided by Bootstrap, so-called “fonts”. Provider is StackPath, LLC, 2021 McKinney Avenue, Suite 1100 Dallas, Texas 75201, USA (hereinafter “StackPath”). In order to do this, your browser loads the required fonts into the browser cache when you access our web page. If your browser does not support this function, your computer will use a standard font instead to display the web site. This service collects your IP address, which of our web pages you have visited and, if necessary, other data required for the provision of the fonts. The information collected about your use of this web site is stored on a server in the USA. For more information on how StackPath handes your personal data, see the privacy policy on: https://www.bootstrapcdn.com/privacy-policy/.

Was this information useful?

(0 ratings , Ø 0.0)