Data protection declaration
This Privacy Statement clarifies the nature, scope and purpose of processing personal data (“Data”) within our online offering and related websites, functions and content, as well as external online presence; Such as Our social media profiles on. (collectively referred to below as an “online offering”). In terms of the terms used, such as We refer to the definitions in the kind “processing” or “responsible.” 4 of the General Data Protection Regulation (GDPR).
Martin Luther St. 20
Types of data processed:
– Inventory data (e.g., names, addresses).
– Contact details (e.g., e-mail, telephone numbers).
– Content data (e.g., text input, photographs, videos).
– Usage data (e.g., websites visited, interest in content, access times).
– Meta/communication data (e.g., device information, IP addresses).
Purpose of processing
– Providing the online offer, its functions and content.
– Respond to contact requests and communicate with users.
– Security measures.
– Range measurement/marketing
“Personal data” is any information relating to an identified or identifiable natural person (‘ the person concerned ‘); Identifiable is a natural person who is directly or indirectly, in particular by assigning it to an identifier such as a name, to a identification number, to location data, to an online identifier (e.g. Cookie) or can be identified as one or more special characteristics that are an expression of the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person.
‘Processing’ means any operation carried out with or without the aid of automated procedures or any series of operations relating to personal data. The term goes far and encompasses virtually every handling of data.
The “person responsible” is the natural or legal person, authority, institution or other body that decides alone or together with others on the purposes and means of processing personal data.
Authoritative legal bases
By the sort. 13 We inform you about the legal basis of our data processing. If the legal basis is not mentioned in the Privacy Statement, the following applies: The legal basis for obtaining consents is Art. 6 paragraph 1 lit. a and kind. 7 GDPR, the legal basis for processing to fulfil our services and implement contractual measures, as well as answering inquiries is kind. 6 paragraph 1 lit. b GDPR, the legal basis for processing to fulfil our legal obligations is kind. 6 paragraph 1 lit. c GDPR, and the legal basis for processing to safeguard our legitimate interests is kind. 6 paragraph 1 lit. f DSGVO. In the event that vital interests of the person concerned or another natural person require the processing of personal data serves Art. 6 paragraph 1 lit. D GDPR as the legal basis.
Working with contract processors and third parties
If, as part of our processing, we disclose data to other persons and companies (processors or third parties), transmit it to them or otherwise grant them access to the data, this will only be done on the basis of legal permission ( Such as. If the data is transmitted to third parties, such as payment service providers. Article. 6 paragraph 1 lit. (F) GDPR is required to comply with the contract), you have consented to a legal obligation to do so or on the basis of our legitimate interests (e.g. When using agents, web hosts, etc.).
If we provide third parties with the processing of data on the basis of a so-called Commissioning “contract processing contracts” is done on the basis of the kind. 28 GDPR.
Transfers to third countries
If we provide data in a third country (i.e. Process outside the European Union (EU) or the European Economic Area (EEA)) or do so as part of the use of third-party services or disclosure, or disclosure. This is only done if it is done to fulfil our (before) contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permits, we process or leave the data in a third country only in the event of the special requirements of the species. 44 ff. GDPR. I.e. Processing takes place, for example. On the basis of special guarantees, such as the officially recognised finding of a level of data protection corresponding to the EU (e.g. For the United States through the “Privacy Shield” or observance of officially recognized special contractual obligations (so-called “standard contractual clauses”).
Rights of the persons concerned
You have the right to request confirmation as to whether data in question is processed and for information about this data, as well as for further information and copy of the data in accordance with nature. 15 GDPR.
You have accordingly. Article. 16 GDPR has the right to require the completion of the data concerning you or the correction of the incorrect data concerning you.
You have by way of the species. 17 GDPR the right to demand that data in question be deleted immediately, or that data in question be deleted. Alternatively, according to the species. 18 GDPR to require a restriction of the processing of the data.
You have the right to request that the data you have provided to us is provided by the species. 20 GDPR and demand it be transmitted to other persons responsible.
They are also well. Article. 77 GDPR has the right to lodge a complaint with the competent supervisory authority.
You have the right to give consent. Article. 7 para. 3 GDPR to be revoked with effect for the future
Right to object
You can process the data in question in the future according to the type. 21 GDPR at any time. The objection may be made in particular against processing for direct advertising purposes.
Cookies and the right to object to direct advertising
“Cookies” are small files that are stored on users ‘ computers. Different information can be stored within the cookies. A cookie is primarily used to provide the information about a user (or To store the device on which the cookie is stored) during or after its visit within an online offer. As temporary cookies, or “Session cookies” or “transient cookies” are referred to as cookies that are deleted after a user leaves an online offer and closes their browser. In such a cookie, for example, can. the contents of a shopping cart are stored in an online shop or a login traffic jams. Cookies are referred to as “permanent” or “persistent,” which remain stored even after the browser is closed. For example, Login status is saved when users visit it after several days. Similarly, such a cookie can store the interests of users used for range measurement or marketing purposes. Cookies are referred to as a “third-party cookie” offered by providers other than the person who runs the online offer (otherwise, if only its cookies are referred to as “first-party cookies”).
If users do not want cookies to be stored on their computer, they are asked to disable the option in their browser’s system settings. Saved cookies can be deleted from the browser’s system settings. The exclusion of cookies can lead to functional limitations of this online offer.
Deletion of data
The data we process is based on the type. 17 and 18 GDPR deleted or restricted in their processing. Unless expressly stated in the context of this Privacy Statement, the data stored with us will be deleted as soon as it is no longer necessary for its purpose and no legal retention obligations stand in the way of deletion. Unless the data is deleted because it is necessary for other and legally permissible purposes, its processing will be restricted. I.e. The data will be blocked and will not be processed for any other purpose. This applies, for example, to For data that must be retained for commercial or tax reasons.
In accordance with legal requirements in Germany, storage takes place for 6 years in particular in accordance with Section 257 para. 1 HGB (trading books, inventories, opening balance sheets, annual financial statements, trade letters, accounting documents, etc.) and for 10 years in accordance with Section 147 para. 1 AO (books, records, management reports, accounting documents, commercial and business letters, documents relevant to taxation, etc.).
According to legal requirements in Austria, the storage takes place in particular for 7 J in accordance with § 132 (). 1 BAO (accounting documents, receipt invoices, accounts, receipts, business papers, preparation of revenues and expenses, etc.), for 22 years in connection with land and for 10 years for documents related to electronically provided services, Telecommunications, broadcasting and television services provided to non-entrepreneurs in EU Member States, for which the Mini-One-Stop Shop (MOSS) is used.
The hosting services we use are used to provide the following services: infrastructure and platform services, computing capacity, storage space and database services, security services as well as technical Maintenance services that we use for the purpose of operating this online offer.
In doing this, we process, or Our hosting provider inventory data, contact data, content data, contract data, usage data, meta-and communication data of customers, interested parties and visitors of this online offer based on our legitimate interests in an efficient and Secure provision of this online offer. Article. 6 paragraph 1 lit. f GDPR i.V.m. Article. 28 GDPR (completion contract of contract).
Users can optionally create a user account. As part of the registration process, the required mandatory information will be communicated to the users. The data entered during the registration process will be used for the purposes of using the offer. Users may be informed by e-mail about information relevant to the offer or registration, such as changes in the scope of the offer or technical circumstances. If users have cancelled their user account, their data will be deleted with regard to the user account, subject to their retention is due for commercial or tax reasons. Article. 6 paragraph 1 lit. c GDPR is necessary. It is incumbent on users to secure their data before the end of the contract if they are terminated. We are entitled to irretrievably delete all user data stored during the duration of the contract.
In the context of the use of our registration and registration functions as well as the use of the user account, the IP address and the time of the respective user action will be stored. The storage is based on our legitimate interests, as well as the user in terms of protection against abuse and other unauthorized use. In principle, this data is not passed on to third parties unless it is necessary to pursue our claims or there is a legal obligation to do so. Article. 6 paragraph 1 lit. c GDPR. The IP addresses will be anonymized or deleted after 7 days at the latest.
Comments and posts
If users leave comments or other posts, their IP addresses may be based on our legitimate interests within the meaning of the species. 6 paragraph 1 lit. Q. GDPR for 7 days. This is done for our safety if someone leaves illegal content in comments and posts (insults, forbidden political propaganda, etc.). In this case, we can be prosecuted for the comment or contribution ourselves and are therefore interested in the identity of the author.
Furthermore, we reserve the right to do so on the basis of our legitimate interests. Article. 6 paragraph 1 lit. Q. GDPR to process users ‘ information for spam detection.
The follow-up comments may be related by users with their consent. Article. 6 paragraph 1 lit. (GDPR). Users will receive a confirmation email to check that they are the owner of the email address they enter. Users can opt out of ongoing comment subscriptions at any time. The confirmation email will include hints about the revocation options. For the purpose of proving the user’s consent, we store the registration point in addition to the IP address of the users and delete this information when users unsubscribe from the subscription.
You can cancel the reception of our ABonnemenet at any time, i.e. Resist their consents. We may store the emailed addresses issued for up to three years on the basis of our legitimate interests before deleting them in order to prove prior consent. The processing of this data is limited to the purpose of a possible defense against claims. An individual deletion request is possible at any time, provided that the former existence of consent is confirmed at the same time.