Privacy Policy

(informational translation – German version prevails)

1) Introduction and contact details of the controller

1.1

We are pleased that you are visiting our website and thank you for your interest. Below, we inform you about the handling of your personal data when using our website. Personal data are all data with which you can be personally identified.

1.2

The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is K+R Reinigungssysteme e.K.

Owner: Kosta Radojevic, Herrenwiesenweg 1, 71701 Schwieberdingen, Germany, Tel.: +4915732033980, E-mail: info@rossen-kosmetik.de

The controller responsible for the processing of personal data is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.

2) Data collection when visiting our website

2.1

When using our website for purely informational purposes, i.e. if you do not register or otherwise transmit information to us, we collect only the data that your browser transmits to the website server (so-called “server log files”). When you access our website, we collect the following data, which are technically necessary for us to display the website to you:

Our visited website

Date and time at the time of access

Amount of data sent in bytes

Source/referrer from which you accessed the page

Browser used

Operating system used

IP address used (if applicable, in anonymized form)

Processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. The data are not passed on or used in any other way. However, we reserve the right to subsequently review the server log files if there are concrete indications of unlawful use.

2.2

For security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries sent to us), this website uses SSL or TLS encryption. You can recognize an encrypted connection by the character string “https://” and the lock symbol in your browser’s address bar.

3) Hosting & Content Delivery Network

3.1

For the hosting of our website and the presentation of page content, we use a provider that delivers its services itself or through selected subcontractors exclusively on servers within the European Union.

All data collected on our website are processed on these servers.

We have concluded a data processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

3.2 Cloudflare

We use a content delivery network from the following provider:

Cloudflare Inc., 101 Townsend St., San Francisco, CA 94107, USA

This service enables us to deliver large media files such as graphics, page content or scripts more quickly via a network of regionally distributed servers. The processing is carried out to safeguard our legitimate interest in improving the stability and functionality of our website in accordance with Art. 6 para. 1 lit. f GDPR.

We have concluded a data processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision of the European Commission.

4) Cookies

In order to make visiting our website attractive and to enable the use of certain functions, we use cookies, i.e. small text files that are stored on your end device. Some of these cookies are automatically deleted after closing the browser (so-called “session cookies”), while others remain on your end device for a longer period of time and enable the storage of page settings (so-called “persistent cookies”). In the latter case, you can find the storage duration in the overview of cookie settings of your web browser.

If personal data are also processed through individual cookies used by us, the processing is carried out in accordance with Art. 6 para. 1 lit. b GDPR either for the performance of the contract, in accordance with Art. 6 para. 1 lit. a GDPR in the case of consent given, or in accordance with Art. 6 para. 1 lit. f GDPR to safeguard our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective design of the website visit.

You can configure your browser so that you are informed about the setting of cookies and can decide individually on their acceptance or exclude the acceptance of cookies for certain cases or in general.

Please note that if cookies are not accepted, the functionality of our website may be limited.

5) Contact

5.1 WhatsApp Business

We offer you the opportunity to contact us via the WhatsApp messaging service of WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. For this purpose, we use the so-called “business version” of WhatsApp.

If you contact us via WhatsApp in connection with a specific transaction (for example, an order you have placed), we store and use the mobile phone number you use with WhatsApp as well as – if provided – your first and last name in accordance with Art. 6 para. 1 lit. b GDPR for the purpose of processing and responding to your request. On the basis of the same legal basis, we may ask you via WhatsApp to provide further data (order number, customer number, address or email address) in order to be able to assign your request to a specific transaction.

If you use our WhatsApp contact option for general inquiries (such as questions about our range of services, availability or our website), we store and use the mobile phone number you use with WhatsApp as well as – if provided – your first and last name in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in efficiently and promptly providing the requested information.

Your data will always be used exclusively to respond to your inquiry via WhatsApp. No data will be passed on to third parties.

Please note that WhatsApp Business accesses the address book of the mobile device we use for this purpose and automatically transmits phone numbers stored in the address book to a server of the parent company Meta Platforms Inc. in the USA. For the operation of our WhatsApp Business account, we use a mobile device whose address book contains only the WhatsApp contact data of users who have also contacted us via WhatsApp.

This ensures that every person whose WhatsApp contact data is stored in our address book has already consented to the transmission of their WhatsApp phone number from the address books of their chat contacts pursuant to Art. 6 para. 1 lit. a GDPR when first using the app on their device by accepting the WhatsApp terms of use. The transmission of data of users who do not use WhatsApp and/or have not contacted us via WhatsApp is excluded.

For the purpose and scope of data collection and the further processing and use of data by WhatsApp, as well as your rights and settings options for protecting your privacy, please refer to WhatsApp’s privacy policy:

https://www.whatsapp.com/legal/?eea=1#privacy-policy

In the course of the above-mentioned processing, data may be transferred to servers of Meta Platforms Inc. in the USA.

5.2

When contacting us (e.g. via contact form or email), personal data are processed exclusively for the purpose of processing and responding to your request and only to the extent necessary for this purpose.

The legal basis for processing these data is our legitimate interest in responding to your request pursuant to Art. 6 para. 1 lit. f GDPR. If your contact is aimed at concluding a contract, the additional legal basis for processing is Art. 6 para. 1 lit. b GDPR. Your data will be deleted when it can be inferred from the circumstances that the matter in question has been conclusively clarified, provided that no statutory retention obligations conflict with this.

6) Data processing when opening a customer account

Pursuant to Art. 6 para. 1 lit. b GDPR, personal data are collected and processed to the extent necessary when you provide them to us when opening a customer account. The data required for opening an account can be found in the input mask of the corresponding form on our website.

Deletion of your customer account is possible at any time and can be carried out by sending a message to the address of the controller stated above. After deletion of your customer account, your data will be deleted provided that all contracts concluded via the account have been fully processed, no statutory retention periods prevent deletion, and there is no legitimate interest on our part in continued storage.

7) Use of customer data for direct advertising

7.1 Subscription to our email newsletter

If you subscribe to our email newsletter, we will regularly send you information about our offers. The only mandatory information required for sending the newsletter is your email address. Providing additional data is voluntary and is used to address you personally. We use the so-called double opt-in procedure for sending the newsletter, which ensures that you only receive newsletters after you have expressly confirmed your consent to receive the newsletter by activating a verification link sent to the specified email address.

By activating the confirmation link, you give us your consent to use your personal data in accordance with Art. 6 para. 1 lit. a GDPR. In this process, we store the IP address entered by your Internet service provider (ISP) as well as the date and time of registration in order to be able to trace any possible misuse of your email address at a later time. The data collected by us when registering for the newsletter are used strictly for the intended purpose.

You can unsubscribe from the newsletter at any time via the link provided in the newsletter or by sending a corresponding message to the controller named at the beginning. After unsubscribing, your email address will be immediately deleted from our newsletter distribution list unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.

7.2 SendGrid

Our email newsletters are sent via the following provider:

SendGrid Inc., 1801 California St #500, Denver, CO 80202, USA

On the basis of our legitimate interest in effective and user-friendly newsletter marketing, we pass on the data you provided when subscribing to the newsletter to this provider in accordance with Art. 6 para. 1 lit. f GDPR so that the provider can carry out the newsletter dispatch on our behalf.

Subject to your express consent pursuant to Art. 6 para. 1 lit. a GDPR, the provider also carries out a statistical evaluation of the success of newsletter campaigns by means of web beacons or tracking pixels in the emails sent, which can measure open rates and specific interactions with the newsletter content. End device information (e.g. time of access, IP address, browser type and operating system) is also collected and evaluated, but not merged with other data sets.

You can revoke your consent to newsletter tracking at any time with effect for the future.

We have concluded a data processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

7.3 Shopping cart reminders by email

If you cancel your purchase with us before completing the order, you have the option of receiving a one-time reminder by email of the contents of your virtual shopping cart.

The only mandatory information required for sending this reminder is your email address. Providing additional data is voluntary and may be used to address you personally. We use the so-called double opt-in procedure for sending emails, which ensures that you only receive a notification after you have expressly confirmed your consent by activating a verification link sent to the specified email address.

By activating the confirmation link, you give us your consent to use your personal data in accordance with Art. 6 para. 1 lit. a GDPR for sending a shopping cart reminder. In this process, we store the IP address entered by your Internet service provider (ISP) as well as the date and time of registration in order to be able to trace any possible misuse of your email address at a later time. The data collected by us when registering for our email notification service are used strictly for the intended purpose.

You can unsubscribe from shopping cart reminders at any time by sending a corresponding message to the controller named at the beginning. After unsubscribing, your email address will be immediately deleted from the distribution list set up for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.

8) Data processing for order processing

8.1

Insofar as this is necessary for contract processing for delivery and payment purposes, the personal data collected by us are passed on to the commissioned transport company and the commissioned credit institution in accordance with Art. 6 para. 1 lit. b GDPR.

If, on the basis of a corresponding contract, we owe you updates for goods with digital elements or for digital products, we process the contact data (name, address, email address) transmitted by you when placing the order in order to personally inform you about upcoming updates within the legally prescribed period via a suitable communication channel (such as post or email) as part of our statutory information obligations in accordance with Art. 6 para. 1 lit. c GDPR. Your contact data are used strictly for the purpose of notifications about updates owed by us and are processed by us only to the extent necessary for the respective information.

For the processing of your order, we also work together with the following service provider(s), who support us in whole or in part in the performance of concluded contracts. Certain personal data are transmitted to these service providers in accordance with the following information.

8.2 Transfer of personal data to shipping service providers

– Deutsche Post

We use the following provider as a transport service provider:

Deutsche Post AG, Charles-de-Gaulle-Straße 20, 53113 Bonn, Germany

We pass on your email address and/or telephone number to the provider prior to the delivery of the goods for the purpose of coordinating a delivery date or for delivery notification in accordance with Art. 6 para. 1 lit. a GDPR, provided that you have given your explicit consent for this during the ordering process. Otherwise, for the purpose of delivery, we only pass on the recipient’s name and delivery address to the provider in accordance with Art. 6 para. 1 lit. b GDPR. The transfer is carried out only insofar as this is necessary for the delivery of the goods. In this case, prior coordination of a delivery date with the provider or delivery notification is not possible.

Consent may be revoked at any time with effect for the future vis-à-vis the controller named above or vis-à-vis the provider.

– DHL

We use the following provider as a transport service provider:

DHL Paket GmbH, Sträßchensweg 10, 53113 Bonn, Germany

Consent may be revoked at any time with effect for the future vis-à-vis the controller named above or vis-à-vis the provider.

8.3 Use of payment service providers (payment services)

– Apple Pay

If you choose the payment method “Apple Pay” from Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland, payment processing is carried out via the “Apple Pay” function of your end device operated with iOS, watchOS or macOS by debiting a payment card stored with “Apple Pay”. Apple Pay uses security features integrated into the hardware and software of your device to protect your transactions. To authorize a payment, the entry of a code previously set by you as well as verification via the “Face ID” or “Touch ID” function of your end device is required.

For the purpose of payment processing, the information you provided during the ordering process, together with information about your order, is transmitted to Apple in encrypted form. Apple then encrypts this data again using a developer-specific key before transmitting the data to the payment service provider of the payment card stored in Apple Pay for the execution of the payment. The encryption ensures that only the website through which the purchase was made can access the payment data. After the payment has been made, Apple sends your device account number as well as a transaction-specific, dynamic security code to the originating website to confirm the success of the payment.

Insofar as personal data are processed during the described transmissions, processing is carried out exclusively for the purpose of payment processing in accordance with Art. 6 para. 1 lit. b GDPR.

Apple stores anonymized transaction data, including the approximate purchase amount, the approximate date and time, and whether the transaction was successfully completed. Through anonymization, any personal reference is completely excluded. Apple uses the anonymized data to improve “Apple Pay” and other Apple products and services.

If you use Apple Pay on the iPhone or Apple Watch to complete a purchase that you made via Safari on the Mac, the Mac and the authorization device communicate via an encrypted channel on Apple servers. Apple does not process or store any of this information in a format that allows your person to be identified. You can disable the ability to use Apple Pay on your Mac in the settings of your iPhone. To do so, go to “Wallet & Apple Pay” and disable “Allow Payments on Mac”.

Further information on data protection at Apple Pay can be found at the following internet address:

https://support.apple.com/de-de/HT203027

– Klarna

On this website, one or more online payment methods of the following provider are available:

Klarna Bank AB, Sveavägen 46, 111 34 Stockholm, Sweden

If you select a payment method of the provider in which you make advance payment (e.g. credit card payment), the payment data provided by you during the ordering process (including name, address, bank and payment card information, currency and transaction number) as well as information about the content of your order are transmitted to the provider in accordance with Art. 6 para. 1 lit. b GDPR. The transfer of your data in this case takes place exclusively for the purpose of payment processing with the provider and only to the extent necessary for this purpose.

If you select a payment method in which the provider makes advance payment (e.g. purchase on account or installment purchase or direct debit), you will also be requested during the ordering process to provide certain personal data (first and last name, street, house number, postal code, city, date of birth, email address, telephone number, if applicable data on an alternative means of payment).

In order to safeguard our legitimate interest in determining the creditworthiness of our customers, these data are transmitted by us to the provider for the purpose of a credit check in accordance with Art. 6 para. 1 lit. f GDPR. Based on the personal data provided by you as well as further data (such as shopping cart, invoice amount, order history, payment experiences), the provider checks whether the payment option selected by you can be granted with regard to payment and/or default risks.

To make a decision within the scope of the application review, identity and creditworthiness information from the following credit agencies may be included in addition to provider-internal criteria in accordance with Art. 6 para. 1 lit. f GDPR:

https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies

The credit report may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. Among other things, but not exclusively, address data are included in the calculation of the score values.

You can object to this processing of your data at any time by sending a message to us or to the provider. However, the provider may still be entitled to process your personal data insofar as this is necessary for contractual payment processing.

– PayPal

On this website, one or more online payment methods of the following provider are available:

PayPal (Europe) S.à r.l. et Cie, S.C.A., 22–24 Boulevard Royal, L-2449 Luxembourg

If you select a payment method of the provider in which you make advance payment, the payment data provided by you during the ordering process (including name, address, bank and payment card information, currency and transaction number) as well as information about the content of your order are transmitted to the provider in accordance with Art. 6 para. 1 lit. b GDPR. The transfer of your data in this case takes place exclusively for the purpose of payment processing with the provider and only to the extent necessary for this purpose.

If you select a payment method in which we make advance payment, you will also be requested during the ordering process to provide certain personal data (first and last name, street, house number, postal code, city, date of birth, email address, telephone number, if applicable data on an alternative means of payment).

In order to safeguard our legitimate interest in determining your creditworthiness in such cases, these data are transmitted by us to the provider for the purpose of a credit check in accordance with Art. 6 para. 1 lit. f GDPR. The provider checks whether the payment option selected by you can be granted with regard to payment and/or default risks based on the personal data provided by you as well as further data (such as shopping cart, invoice amount, order history, payment experiences).

– Sofortüberweisung

On this website, one or more online payment methods of the following provider are available:

Klarna Bank AB (publ), Sveavägen 46, 11134 Stockholm, Sweden

– Stripe

On this website, one or more online payment methods of the following provider are available:

Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland

In order to safeguard our legitimate interest in determining the creditworthiness of our customers, these data are transmitted by us to the provider for the purpose of a credit check in accordance with Art. 6 para. 1 lit. f GDPR. The provider checks whether the payment option selected by you can be granted with regard to payment and/or default risks based on the personal data provided by you as well as further data (such as shopping cart, invoice amount, order history, payment experiences).

9) Web analytics services

9.1 Google Analytics 4

This website uses Google Analytics 4, a web analytics service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”), which enables an analysis of your use of our website.

By default, when visiting the website, Google Analytics 4 sets cookies, which are stored as small text modules on your end device and collect certain information. The scope of this information also includes your IP address, which is, however, shortened by Google by the last digits in order to exclude a direct personal reference.

The information is transmitted to Google servers and further processed there. In this context, transmissions to Google LLC, USA, are also possible.

Google uses the information collected on our behalf to evaluate your use of the website, to compile reports on website activities for us, and to provide further services related to website usage and internet usage. The IP address transmitted and shortened by your browser within the scope of Google Analytics is not merged with other Google data. The data collected within the scope of the use of Google Analytics 4 are stored for a period of two months and then deleted.

All processing described above, in particular the setting of cookies on the end device used, takes place only if you have given us your explicit consent in accordance with Art. 6 para. 1 lit. a GDPR. Without your consent, Google Analytics 4 is not used during your visit to the website. You can revoke your consent at any time with effect for the future. To exercise your right of revocation, please deactivate this service via the “cookie consent tool” provided on the website.

We have concluded a data processing agreement with Google, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

Further legal information on Google Analytics 4 can be found at

https://business.safety.google/intl/de/privacy/,

https://policies.google.com/privacy?hl=de&gl=de

and at

https://policies.google.com/technologies/partner-sites

Demographic characteristics

Google Analytics 4 uses the special function “demographic characteristics” and can use it to generate statistics that make statements about the age, gender and interests of website visitors. This is done through the analysis of advertising and information from third-party providers. This allows target groups for marketing activities to be identified. However, the collected data cannot be assigned to a specific person and are deleted after being stored for a period of two months.

Google Signals

As an extension to Google Analytics 4, Google Signals can be used on this website to create cross-device reports. If you have enabled personalized ads and have linked your devices to your Google account, Google may, subject to your consent to the use of Google Analytics pursuant to Art. 6 para. 1 lit. a GDPR, analyze your usage behavior across devices and create database models, including cross-device conversions. We do not receive any personal data from Google, but only statistics.

If you wish to stop cross-device analysis, you can deactivate the “Personalized advertising” function in the settings of your Google account. To do so, follow the instructions on this page:

https://support.google.com/My-Ad-Center-Help/answer/12155764?hl=de

Further information on Google Signals can be found at the following link:

https://support.google.com/analytics/answer/7532985?hl=de

User IDs

As an extension to Google Analytics 4, the “User IDs” function can be used on this website. If you have consented to the use of Google Analytics 4 in accordance with Art. 6 para. 1 lit. a GDPR, have created an account on this website and log in to this account on different devices, your activities, including conversions, can be analyzed across devices.

9.2 Google Tag Manager

This website uses the “Google Tag Manager”, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: “Google”).

Google Tag Manager provides a technical basis for bundling various web applications, including tracking and analytics services, and for calibrating, controlling and linking them to conditions via a uniform user interface. Google Tag Manager itself does not store any information on users’ end devices or read such information. The service also does not carry out any independent data analyses. However, when a page is accessed, your IP address is transmitted to Google and may be stored there. Transmission to servers of Google LLC in the USA is also possible.

This processing is carried out only if you have given us your explicit consent in accordance with Art. 6 para. 1 lit. a GDPR. Without such consent, Google Tag Manager is not used during your visit to the website. You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the “cookie consent tool” provided on the website.

We have concluded a data processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

Further legal information on Google Tag Manager can be found at

https://policies.google.com/privacy?hl=de&gl=de

10) Retargeting / Remarketing and Conversion Tracking

10.1 Meta Pixel

Within our online offering, we use the service “Meta Pixel” from the following provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (“Meta”).

If you click on an advertisement placed by us on Facebook and/or Instagram, the URL of our linked page is extended by a parameter using the “Meta Pixel”. This URL parameter is then stored in the user’s browser after the redirect by means of a cookie that our linked page sets itself.

This enables Meta, on the one hand, to determine the visitors of our online offering as a target group for the display of advertisements (so-called “ads”). Accordingly, we use the service to display the Facebook and/or Instagram ads placed by us only to users who have shown an interest in our online offering or who have certain characteristics (e.g. interests in certain topics or products, which are determined based on the websites visited) that we transmit to Meta (so-called “custom audiences”).

On the other hand, the “Meta Pixel” can be used to track whether users were redirected to our website after clicking on an advertisement and which actions they perform there (so-called “conversion tracking”).

The data collected are anonymous for us and therefore do not allow us to draw conclusions about the identity of the users. However, the data are stored and processed by Meta so that a connection to the respective user profile is possible and Meta can use the data for its own advertising purposes.

All processing described above, in particular the setting of cookies for reading information on the end device used, is carried out only if you have given us your explicit consent pursuant to Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future by deactivating this service in the “cookie consent tool” provided on the website.

We have concluded a data processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

The information generated by Meta is usually transmitted to and stored on a Meta server; in this context, transmission to servers of Meta Platforms Inc. in the USA may also occur.

10.2 Google Ads Remarketing

This website uses retargeting technology from the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.

For this purpose, Google sets a cookie in your browser, which automatically enables interest-based advertising using a pseudonymous cookie ID and on the basis of the pages you have visited. Further data processing only takes place if you have given Google your consent to link your internet and app browser history with your Google account and to use information from your Google account to personalize ads that you view on the web. If you are logged into Google during your visit to our website in this case, Google uses your data together with Google Analytics data to create and define target group lists for cross-device remarketing. For this purpose, your personal data are temporarily linked by Google with Google Analytics data in order to form target groups.

Within the scope of using Google Ads Remarketing, personal data may also be transmitted to the servers of Google LLC in the USA.

All processing described above, in particular the setting of cookies for reading information on the end device used, is carried out only if you have given us your explicit consent pursuant to Art. 6 para. 1 lit. a GDPR. Without such consent, the use of retargeting technology does not take place during your visit to the website.

You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the “cookie consent tool” provided on the website.

Details on the processing initiated by Google and on Google’s handling of data from websites can be found here:

https://policies.google.com/technologies/partner-sites

Further information on Google’s data protection provisions can be found here:

https://business.safety.google/intl/de/privacy/

https://www.google.de/policies/privacy/

10.3 Google Ads Conversion Tracking

This website uses the online advertising program “Google Ads” and, within the scope of Google Ads, conversion tracking from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).

We use Google Ads to draw attention to our attractive offers on external websites by means of advertising materials (so-called Google AdWords). In relation to the data of advertising campaigns, we can determine how successful individual advertising measures are. We pursue the objective of showing you advertising that is of interest to you, making our website more interesting for you and achieving a fair calculation of advertising costs.

The conversion tracking cookie is set when a user clicks on an ad placed by Google. Cookies are small text files that are stored on your end device. These cookies usually lose their validity after 30 days and do not serve to personally identify you. If the user visits certain pages of this website and the cookie has not yet expired, Google and we can recognize that the user clicked on the ad and was redirected to this page.

Each Google Ads customer receives a different cookie. Cookies therefore cannot be tracked across the websites of Google Ads customers. The information obtained with the help of the conversion cookie is used to create conversion statistics for Google Ads customers who have opted for conversion tracking. Customers learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive information that personally identifies users.

Within the scope of using Google Ads, personal data may also be transmitted to the servers of Google LLC in the USA.

Details on the processing initiated by Google Ads Conversion Tracking and on Google’s handling of data from websites can be found here:

https://policies.google.com/technologies/partner-sites

You can also permanently object to the setting of cookies by Google Ads Conversion Tracking by downloading and installing the browser plug-in available at the following link:

https://support.google.com/My-Ad-Center-Help/answer/12155656?hl=de

Please note that certain functions of this website may not be available or may only be available to a limited extent if you have disabled the use of cookies. Google’s data protection provisions can be viewed here:

https://business.safety.google/intl/de/privacy/

https://www.google.de/policies/privacy/

11) Site functionalities

Google Sign-In

On our website, we provide a single sign-on function from the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.

In addition to a transfer of data to the provider location mentioned above, data may also be transferred to: Google LLC, USA.

If you have an account with the provider, you can use these account details to create a user account or to register on our website.

When visiting this page, a direct connection may be established between your browser and the provider’s servers via this login function, even if you do not have an account with the provider or are not logged in to such an account. The provider thereby receives the information that you have visited our website. The information collected in this context (if applicable, including your IP address) is transmitted directly by your browser to a server of the provider and stored there. However, this information is not used to personally identify you and is not passed on to third parties.

These data processing operations are carried out in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in a user-friendly and interactive design of our online presence.

If you click the login button in order to register on our website using the data of your account with the provider, the provider will transmit to us, exclusively on the basis of your explicit consent pursuant to Art. 6 para. 1 lit. a GDPR, the general and publicly accessible information stored in your account (user ID, name, address, email address, age and gender).

We store and use the data transmitted by the provider for the purpose of setting up a user account with the necessary data (salutation, first name, last name, address data, country, email address, date of birth), provided that you have released this data to the provider. Conversely, on the basis of your consent, data (e.g. information about your browsing or purchasing behavior) may be transferred by us to your account with the provider.

The consent given may be revoked at any time with effect for the future by notifying us.

Further information on Google’s data protection can be found here:

https://business.safety.google/intl/de/privacy/

12) Tools and miscellaneous

Cookie consent tool

This website uses a so-called “cookie consent tool” to obtain effective user consent for cookies requiring consent and cookie-based applications. The “cookie consent tool” is displayed to you in the form of an interactive user interface when you access the website, on which you can grant consent for certain cookies and/or cookie-based applications by ticking the relevant boxes. By using this tool, all cookies/services requiring consent are only loaded if you grant the corresponding consent by ticking the relevant boxes. This ensures that such cookies are only set on your respective end device if consent has been granted.

The tool sets technically necessary cookies in order to store your cookie preferences. Personal user data is generally not processed in this context.

If, in individual cases, personal data (such as the IP address) is nevertheless processed for the purpose of storing, assigning or logging cookie settings, this is carried out in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in a legally compliant, user-specific and user-friendly consent management for cookies and thus in a legally compliant design of our website.

A further legal basis for processing is Art. 6 para. 1 lit. c GDPR. As the controller, we are subject to the legal obligation to make the use of technically non-essential cookies dependent on the respective user consent.

Where required, we have concluded a data processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

Further information on the operator and the configuration options of the cookie consent tool can be found directly in the corresponding user interface on our website.

13) Rights of the data subject

13.1

The applicable data protection law grants you, as the data subject, the following data subject rights (rights of access and intervention) vis-à-vis us as the controller with regard to the processing of your personal data, whereby reference is made to the stated legal basis for the respective requirements for exercising these rights:

Right of access pursuant to Art. 15 GDPR;

Right to rectification pursuant to Art. 16 GDPR;

Right to erasure pursuant to Art. 17 GDPR;

Right to restriction of processing pursuant to Art. 18 GDPR;

Right to notification pursuant to Art. 19 GDPR;

Right to data portability pursuant to Art. 20 GDPR;

Right to withdraw consent given pursuant to Art. 7 para. 3 GDPR;

Right to lodge a complaint pursuant to Art. 77 GDPR.

13.2 RIGHT TO OBJECT

IF WE PROCESS YOUR PERSONAL DATA ON THE BASIS OF OUR PREVAILING LEGITIMATE INTEREST WITHIN THE FRAMEWORK OF A BALANCING OF INTERESTS, YOU HAVE THE RIGHT AT ANY TIME, FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION, TO OBJECT TO THIS PROCESSING WITH EFFECT FOR THE FUTURE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL TERMINATE THE PROCESSING OF THE DATA CONCERNED. HOWEVER, FURTHER PROCESSING REMAINS RESERVED IF WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, FUNDAMENTAL RIGHTS AND FREEDOMS, OR IF THE PROCESSING SERVES THE ASSERTION, EXERCISE OR DEFENCE OF LEGAL CLAIMS.

IF YOUR PERSONAL DATA ARE PROCESSED BY US FOR THE PURPOSE OF DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSES OF SUCH ADVERTISING. YOU MAY EXERCISE THE OBJECTION AS DESCRIBED ABOVE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL TERMINATE THE PROCESSING OF THE DATA CONCERNED FOR DIRECT ADVERTISING PURPOSES.

14) Duration of storage of personal data

The duration of the storage of personal data is determined by the respective legal basis, the purpose of processing and – where applicable – additionally by the respective statutory retention period (e.g. retention periods under commercial and tax law).

When personal data are processed on the basis of an explicit consent pursuant to Art. 6 para. 1 lit. a GDPR, the data concerned are stored until you withdraw your consent.

If statutory retention periods exist for data that are processed within the framework of contractual or quasi-contractual obligations on the basis of Art. 6 para. 1 lit. b GDPR, these data are routinely deleted after the expiry of the retention periods, provided that they are no longer required for contract performance or contract initiation and/or there is no legitimate interest on our part in continued storage.

When personal data are processed on the basis of Art. 6 para. 1 lit. f GDPR, these data are stored until you exercise your right to object pursuant to Art. 21 para. 1 GDPR, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the assertion, exercise or defence of legal claims.

When personal data are processed for the purpose of direct advertising on the basis of Art. 6 para. 1 lit. f GDPR, these data are stored until you exercise your right to object pursuant to Art. 21 para. 2 GDPR.

Unless otherwise stated in the other information of this privacy policy regarding specific processing situations, stored personal data are otherwise deleted when they are no longer necessary for the purposes for which they were collected or otherwise processed.