westernhorse-tack_home_banner_uni

PRIVACY AND SECURITY

Privacy Policy

With this data protection declaration, we would like to inform you about the type, scope and purpose of the processing of personal data (hereinafter also referred to as "data"). Personal data is all data that is personally related to you, e.g. B. name, address, e-mail address or your user behavior. The data protection declaration applies to all data processing operations carried out by us both in the context of our core activity and for the online media provided by us.

Who is responsible for data processing in our company

Responsible for data processing is:

Mark Huber | Westernhorse-Tack
Holunderweg 4
D-91186 Büchenbach
Germany
E-Mail: info@westernhorse-tack.de
Website: https://westernhorse-tack.de
Imprint: https://westernhorse-tack.de/Footer/Information/Impressum/

Processing of your data as part of the core activity of our company

If you are our customer or business partner or are interested in our services, the type, scope and purpose of the processing of your data is based on the contractual or pre-contractual relationships between us. In this sense, the data processed by us includes all data that you provide or have provided for the purpose of using the contractual or pre-contractual services and that are required to process your inquiry or the contract concluded between us. Unless otherwise stated in the further information in this data protection declaration, the processing of your data and its transfer to third parties is limited to the data required to answer your inquiries and/or to fulfill the contract concluded between you and us, to protect our rights and are necessary and appropriate for the fulfillment of legal obligations. We will inform you which data is required for this before or as part of the data collection. Insofar as we use third-party providers to provide our services, the data protection notices of the respective third-party providers apply.

Affected data:

  • Inventory data (e.g. names, addresses)
  • Payment data (e.g. bank details, invoices)
  • Contact details (e.g. e-mail address, telephone number, postal address)
  • Contract data (e.g. subject matter of contract, duration of contract)

Persons affected: interested parties, business and contractual partners

Processing purpose: Processing of contractual services, communication and answering contact requests, office and organizational procedures

Legal basis: fulfillment of contract and pre-contractual inquiries, Article 6(1)(b) GDPR, legal obligation, Article 6(1)(c) GDPR, legitimate interest, Article 6(1)(f) GDPR p>

Your rights under the GDPR

According to the GDPR, you are entitled to the rights listed below, which you can assert at any time with the person responsible named in Section 1 of this data protection declaration:

  • Right to information: You have the right to request information from us as to whether and which of your data we are processing.
  • Right to rectification: You have the right to request the correction of inaccurate data or the completion of incomplete data.
  • Right to erasure: You have the right to request the erasure of your data.
  • Right to restriction: In certain cases you have the right to request that we only process your data to a limited extent.
  • Right to data portability: You have the right to request that we transmit your data to you or another person responsible in a structured, commonly used and machine-readable format.
  • Right to complain: You have the right to complain to a supervisory authority. The supervisory authority at your usual place of residence, your workplace or our company headquarters is responsible.

Right of withdrawal

You have the right to withdraw your consent to data processing at any time.

Right to object

You have the right to object at any time to the processing of your data, which we base on our legitimate interest under Article 6 (1) (f) GDPR. If you make use of your right of objection, we ask you to explain the reasons. We will then no longer process your personal data unless we can prove to you that compelling reasons for data processing worthy of protection outweigh your interests and rights.

Notwithstanding the foregoing, you have the right to object to the processing of your personal data for advertising and data analysis purposes at any time.

Please address your objection to the above contact address of the person responsible.

When do we delete your data?

We delete your data when we no longer need them or when you tell us to do so. This means that - unless otherwise stated in the individual data protection notices of this data protection declaration - we will delete your data,

  • if the purpose of the data processing no longer applies and the legal basis specified in the individual data protection notices no longer exists, e.g.
    • after termination of the existing contractual or membership relationship between us (Art. 6 Para. 1 lit. a GDPR) or
    • after our legitimate interest in the further processing or storage of your data has ceased to exist (Art. 6 Para. 1 lit. f GDPR),
  • if you make use of your right of withdrawal and no other legal basis for processing within the meaning of Article 6 (1) lit. b-f GDPR applies,
  • if you make use of your right to object and there are no compelling reasons worthy of protection to prevent deletion.

If we still have to keep (certain parts of) your data for other purposes, for example because of tax retention periods (usually 6 years for business correspondence or 10 years for accounting documents) or the assertion, exercise or defense of legal claims from contractual relationships (up to four years) or the data is used to protect the rights of another natural or legal person, we will only delete (part of) your data after these periods have expired. However, until these periods expire, we limit the processing of this data to these purposes (fulfilment of storage obligations).

Cookies

Our website uses cookies. Cookies are small text files consisting of a series of numbers and letters that are filed and saved on the end device you are using. Cookies are primarily used to exchange information between the end device you are using and our website. These include i.a. the language settings on a website, the login status or the point at which a video was viewed.

When you visit our website, two types of cookies are used:

  • Temporary cookies (session cookies): These store a so-called session ID, with which various requests from your browser can be assigned to the joint session. The session cookies are deleted when you log out or close your browser.
  • Permanent cookies: Permanent cookies remain stored even after the browser is closed. This allows our website to recognize your computer when you return to our website. Information on language settings or log-in information, for example, is stored in these cookies. In addition, your surfing behavior can be documented and saved with these cookies. This data can be used for statistical, marketing and personalization purposes.

In addition to the above classification, cookies can also be differentiated with regard to their purpose:

  • Necessary cookies: These are cookies that are absolutely necessary for the operation of our website, to save logins or shopping carts for the duration of your session or cookies that are set for security reasons.
  • Statistics, marketing and personalization cookies: These are cookies that are used for analysis or audience measurement purposes. Such “tracking” cookies can store information about search terms entered or the frequency of page views. In addition, the surfing behavior of an individual user (e.g. viewing certain content, using functions, etc.) can also be stored in a user profile. Such profiles are used to show users content that matches their potential interests. If we use services that store cookies on your end device for statistical, marketing and personalization purposes, we will inform you about this separately in the following sections of our data protection declaration or when obtaining your consent.

Affected data:

  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address).

Persons affected: Users of our online offers

Processing purpose: displaying our website, ensuring the operation of our website, improving our website, communication and marketing

Legal basis:
Legitimate interest, Art. 6 Paragraph 1 lit. f GDPR
If we do not obtain your consent to the setting of cookies, we base the processing of your data on our legitimate interest, the quality and user-friendliness of our website, in particular to improve the content and functions. You have to object to the use of cookies set by us within the scope of our legitimate interest via the security settings of your browser. There you have the option of specifying whether you do not accept cookies from the outset or only accept them on request, or whether you want cookies to be deleted each time you close your browser. If cookies are deactivated for our website, it may no longer be possible to use all the functions of the website to their full extent.

Consent, Article 6 Paragraph 1 lit see the legal basis. As part of your consent, we will inform you about which cookies we set in detail. If you do not give your consent, only the so-called technically necessary cookies are set, which are required for the proper operation of our website and its display in your browser. If you have consented to the setting of cookies, you can withdraw your consent at any time.

Adjust cookies settings

Web Hosting

We use a provider to provide our Internet pages, on whose server our Internet pages are stored and made available for access on the Internet (hosting). The provider can process all the data transmitted via the browser you are using that arises when you use our website. This includes, in particular, your IP address, which the provider requires in order to be able to deliver our online offer to the browser you are using, as well as all entries made by you via our website. In addition, the provider we use can  

  • the date and time of access to our website
  • Time zone offset from Greenwich Mean Time (GMT)
  • Access status (HTTP status)
  • the amount of data transferred
  • the internet service provider of the accessing system
  • The type of browser you are using and its version
  • the operating system you are using
  • the website from which you may have accessed our website
  • the pages or sub-pages that you visit on our website.

elevate. The aforementioned data is stored as log files on our provider's servers. This is necessary to ensure the stability and security of the operation of our website.

E-mail dispatch: In addition to hosting our website, we have also commissioned our provider to send, receive and store our e-mails. For this purpose, our provider processes the e-mail addresses of the recipients and senders as well as other data arising from e-mail communication (meta-communication data such as time, IP address, etc.) as well as the content of the respective e-mails. We would like to draw your attention to the fact that e-mails are always sent unencrypted. We therefore assume no responsibility for the transmission path of the e-mails between the sender and receipt on our server.

Affected data:

  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address)

Persons affected: users of our website

Processing purpose: Playing our website, ensuring the operation of our website

Legal basis: Legitimate interest, Art. 6 (1) lit. f GDPR

Web host(s) commissioned by us:

STRATO

Service provider: STRATO AG, Pascalstr. 10, 10587 Berlin
Website: https://www.strato.de/hosting/
Privacy Policy: https://www.strato.de/datenschutz/

Contact us

If you contact us via e-mail, social media, telephone, fax, post, our contact form or otherwise and provide us with personal data such as your name, telephone number or e-mail address or other information about about you or your request, we process this data to answer your request within the framework of the pre-contractual or contractual relationships between us.

Affected data:

  • Inventory data (e.g. names, addresses)
  • Contact details (e.g. e-mail address, telephone number, postal address)
  • Content data (text, photos, videos)
  • Contract data (e.g. subject matter of contract, duration of contract)

Persons affected: interested parties, customers, business and contractual partners

Processing purpose: communication and answering contact requests, office and organizational procedures

Legal basis: Fulfillment of contract and pre-contractual inquiries, Article 6 (1) (b) GDPR, legitimate interest, Article 6 (1) (f) GDPR

Registration, login and user account

You have the option of registering on our online medium in order to create a user account there. This requires the specification of personal data resulting from the input mask. The data requested there includes in particular your name, your e-mail address, if applicable. a username and password. This data is stored and processed by us in order to set up a user account for you and to enable (repeated) registration. You can change or delete the data at any time. The data will not be passed on to third parties unless this serves the technical and organizational processing of the user contract between us. In order to protect you and us from abusive registrations, we store the IP address assigned to you at the time of registration, as well as the date and time of registration.

Affected data:

  • Inventory data (e.g. names, addresses)
  • Contact details (e.g. e-mail address, telephone number, postal address)
  • Contract data (e.g. subject matter of contract, duration of contract)
  • Payment data (e.g. bank details, invoices)
  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address)

Processing purpose: Processing of contractual services, communication and answering contact requests, security measures.

Legal basis: fulfillment of contract and pre-contractual inquiries, Article 6(1)(b) GDPR, legal obligation, Article 6(1)(c) GDPR, legitimate interest, Article 6(1)(f) GDPR

Deletion: See the point: "When do we delete your data?". In addition, we would like to draw your attention to the fact that we delete the data collected during registration and the content data stored in the account as soon as you delete your account, subject to conflicting legal storage obligations. We therefore ask you, if you want or need to access the content data stored in your account even after your account has been deleted, to save it in another way before deleting the account.

Your comments or ratings

You have the option of commenting on our posts, expressing your opinion or posting content on the designated areas of our website. Since we may be held liable for the content of your comment that violates the law (insult, abusive criticism, incitement to hatred, prohibited depiction of violence, etc.), we store your IP address for a period of 7 days in order to be able to determine your identity if necessary.

Legal basis: Article 6 (1) (f) GDPR

Affected data:

  • Inventory data (e.g. names, addresses)
  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address)

Processing purpose: fulfillment of contractual obligations, communication and processing of inquiries, obtaining feedback, security measures.

Processing of your data when placing an order in our online shop

If you place orders via our online shop, we process the information you provide during the ordering process in order to be able to process your order. This includes in particular your name, your address and electronic contact details, information on how to process the payment process and details of your specific order. We will tell you which data we need in detail during the ordering process.

If it is necessary to fulfill the contract concluded between us, to protect your vital interests or because of legal provisions, we will transmit your data to third parties, such as the logistics company commissioned with the delivery, in compliance with your rights Payment service provider for the purpose of payment processing and our tax advisor. Insofar as we use third-party providers to provide our services, the data protection notices of the respective third-party providers apply.

User accounts: You can voluntarily create a user account in which you can view and manage your orders. If you cancel your account, your data will be deleted. It is your responsibility to back up your data prior to termination. We use transient cookies (for the term see above under cookies) to save the contents of the shopping cart and persistent cookies (for the term see above under cookies) for saving the login status. If you place an order, register for a user account or log in again, we save your IP address and the time of the respective user action. The purpose of storage is our but also your legitimate interest in protection against misuse and other unauthorized use.

Advertising measures: We can also use the data you have stored to inform you by post or email about similar interesting products and/or services after you have placed an order.

Information on the shop system we use: We use the following shop system from a third-party provider, which we use to process orders and incoming payments and to administer our inventory. If you place an order in our online shop, we will pass on your name, address and electronic contact details, information on how to process the payment process and the specific order to the provider of the shop system in order to process the order and payment processes.

Affected data:

  • Inventory data (e.g. names, addresses)
  • Payment data (e.g. bank details, invoices)
  • Contact details (e.g. e-mail address, telephone number, postal address)
  • Contract data (e.g. subject matter of contract, duration of contract)
  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address)

Persons affected: customers, prospects, business and contractual partners

Processing purpose: Order processing, communication and, if necessary, marketing and answering inquiries, data security, office and organizational procedures

Legal basis: fulfillment of contract and pre-contractual inquiries, Article 6(1)(b) GDPR, legal obligation, Article 6(1)(c) GDPR, legitimate interest, Article 6(1)(f) GDPR p>

Payment service providers

In accordance with our legal obligations or because of our legitimate interests in efficient, secure and customer-oriented payment processing, persons who have concluded a contract or other legal relationship with us can use banks and credit institutions as well as other payment service providers to make payments . The payment service providers we offer process inventory data in this context, including name, address or bank details such as account/credit card number, passwords, TANs, security numbers as well as information on the contract concluded and information on the recipient of the payment.

The data collected in this context is required in order for the payment service provider to be able to process the payment. Only the payment service provider commissioned by us collects and processes this personal information. At no time do we receive information about your account or credit card details. We are informed by our payment service provider whether or not our customers' payment has arrived. It is possible for our payment service providers to forward our customers' data to business information files in order to be able to check the identity and creditworthiness of the payer. In this respect, we refer to the data protection declaration and general terms and conditions (GTC) of our payment service providers.

The terms and conditions and data protection regulations of the respective payment service provider apply. You can find these notices on the affected service provider's website or in the transaction application. For further information and for the assertion of your rights regarding revocation and information, we refer to the provisions of the respective service provider.

Affected data:

  • Inventory data (e.g. name, address),
  • Usage data (e.g. websites visited, interest in certain topics, times of access),
  • Payment data (e.g. bank details, invoices, payment history),
  • Business transaction data (e.g. term, customer category, subject matter of the contract),
  • Communication and metadata (e.g. IP address, information about the device or computer system)

Processing purpose: Effective, secure and customer-oriented payment offers (service) and processing of payments in accordance with contractual agreements

Legal basis: Fulfillment of contract and fulfillment of pre-contractual inquiries, Article 6 Paragraph 1 lit. b GDPR, legitimate interests, Article 6 Paragraph 1 lit. f GDPR

Revocation options: You can revoke your consent to the use of personal data at any time by contacting the respective payment service provider. Despite revocation, the payment service provider may still be entitled to process, use and transmit the personal data that is absolutely necessary for contractual payment processing. With regard to the storage and timely deletion of personal data, we refer to the respective data protection regulations of the payment service provider.


We use the following payment service providers:

Paypal

Service Provider: PayPal (Europe) S.à.r.l. et Cie., S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg
Website: https: //www.paypal.com/de/webapps/mpp/home
Privacy Policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full#

Web analysis and statistics

We use web analysis services to record and statistically evaluate the flow of visitors to our website. Such services collect, among other things, data about which website you came to our website from (so-called referrers), which pages of our website you accessed, how long you visited our pages and what interactions you carried out there. In addition, data is collected on the browser you are using, the computer system and the type of device. In addition, such a service can also be used to record demographic information, such as age or gender, as pseudonymous values. If you have consented to the collection of your location data, this can also be processed, depending on the provider.

In order to collect and store this data, the web analysis service we use places a cookie on the end device you are using, with which the IP address assigned to you is also collected. However, this is shortened using a so-called IP masking process, so that the IP address can no longer be assigned to your visit to our website. Otherwise, no clear data such as names or e-mail addresses are stored. Neither we nor the service we use knows the identity of the visitors to our website.

We would like to point out that, depending on the country in which the service provider named below is located, the data collected via the service may be transferred and processed outside of the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR is not observed and that your rights cannot be enforced or can only be enforced with difficulty.

Affected data:

  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address).

Persons affected: Users of our online offers

Purpose of processing: range measurement, monitoring the success of campaigns, remarketing and interest and behavioral marketing

Legal basis: If we have asked you for your consent before using the respective service, this is the legal basis, Article 6 (1) (a) GDPR. In addition, we use the respective service based on our legitimate interest in analyzing the flow of visitors to our website in order to be able to continuously improve the functions, offers and user experience, Article 6 Paragraph 1 lit. f GDPR.


We use the following web analysis services:

Google Analytics

Service provider: Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA
Headquarters within the EU: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland
Website : https://marketingplatform.google.com /intl/de/about/analytics/
Privacy Policy: https://policies.google.com/privacy?hl=de
Opt-out option: If you do not want your data to be used by Google Analytics. you can set a so-called opt-out plugin, which will prevent your data from being recorded on our website in the future. You can get this plugin here: https://tools.google.com/dlpage/gaoptout?hl =en

Matomo Analytics (with cookies)

Service Provider: InnoCraft Ltd. 150 Willis St, 6011 Wellington, New Zealand
Website: https://matomo.org/
Privacy Policy: https://matomo.org/privacy/

When using Matomo, the The data collected by the analysis tool is not transmitted to the service provider, but rather remains on our server.

etracker

Service provider: etracker GmbH, Erste Brunnenstrasse 1, 20459 Hamburg, Germany
Website: https://www.etracker.com/
Privacy Policy: https://www.etracker.com/datenschutz/

The provider of this website uses the services of etracker GmbH from Hamburg, Germany (www.etracker.com) to analyze usage data. By default, we do not use cookies for web analysis. If we use analysis and optimization cookies, we will obtain your explicit consent separately in advance. If this is the case and you agree, cookies are used that enable a statistical range analysis of this website, a measurement of the success of our online marketing measures and test procedures, e.g. to test and optimize different versions of our online offer or its components . Cookies are small text files that are stored by the Internet browser on the user's end device. etracker cookies do not contain any information that would allow a user to be identified.

The data generated with etracker is processed and stored by etracker exclusively in Germany on behalf of the provider of this website and is therefore subject to the strict German and European data protection laws and standards. In this regard, etracker has been independently checked, certified and awarded the data protection seal of approval ePrivacyseal.

Data processing is based on the legal provisions of Article 6 Paragraph 1 Letter f (legitimate interest) of the General Data Protection Regulation (GDPR). Our concern within the meaning of the GDPR (legitimate interest) is the optimization of our online offer and our website. Since the privacy of our visitors is important to us, the data that may allow reference to an individual person, such as the IP address, login or device identifiers, are anonymized or pseudonymized as soon as possible. Any other use, combination with other data or disclosure to third parties does not take place.

You can object to the data processing described above at any time. The objection has no adverse consequences.

More information on data protection at etracker can be found here.

The third-party plugins we use

We have plugins on our website in the form of. Embedded “social media buttons” from the providers we use. You can tell which plugin belongs to which provider by the respective logo with which the plugin is identified. If you call up a page of our online presence on which such a plugin is implemented, a connection between your browser and the server of the provider is automatically established with the respective provider of the plug-in and a cookie is set by the provider on the page you sent device used is set. Even at this point in time, data transmission can also take place if you do not have an account with the respective operator of the social network or if you have an account there but are not logged in at the moment you visit our website. In addition, data is transmitted to the provider as a result of further interactions with the respective social plugin (e.g. clicking the “Like” button on Facebook, Re-Tweet button on Twitter).

We would like to point out that, depending on the country in which the service provider named below is based, the data detailed below may be transferred and processed on servers outside the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR is not observed and that your rights cannot be enforced or can only be enforced with difficulty.

Affected data:

  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address)

Persons affected: users of our website

Processing purpose: displaying our website, offering content, ensuring the operation of our website

Legal basis: consent via cookie content banner, Article 6 Paragraph 1 lit. a GDPR, legitimate interests, Article 6 Paragraph 1 lit. f GDPR

We use the following plugins:

Google (Invisible) reCAPTCHA

Service provider: Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA
Website: https://developers.google.com/recaptcha/docs/invisible
Privacy Policy: https://www.google.de/intl/de/policies/privacy

Our online presence on social networks

We operate online presences within the social networks listed below. If you visit one of these sites, the data listed below will be collected and processed by the respective provider. As a rule, this data is collected for advertising and market research purposes and usage profiles are created with it. Data can be stored in the usage profiles regardless of the device you are using. This is particularly the case if you are a member of the respective platform and are logged in to it. The usage profiles can be used by the providers to show you interest-based advertising. You have a right of withdrawal against the creation of user profiles. To exercise this, you must contact the respective provider.

If you have an account with one of the providers listed below and are logged in when you visit our website, the respective provider can collect data about your usage behavior on our website. To prevent such a linking of your data, you can log out of the provider's service before visiting our site.

For what purpose and to what extent data is collected by the provider can be found in the respective data protection declarations of the providers communicated below.

We would like to point out that, depending on the country of domicile of the provider named below, the data collected via its platform may be transferred and processed outside the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR is not observed and that your rights cannot be enforced or can only be enforced with difficulty.

Affected data:

  • Inventory and contact data (e.g. name, address, telephone number, e-mail address)
  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address).

Processing purpose: communication and marketing, tracking and analysis of user behavior

Legal basis: Consent, Article 6(1)(a) GDPR, legitimate interests Article 6(1)(f) GDPR

Possibility of objection: For the respective possibilities of objection (opt-out), we refer to the information of the providers linked below.

We maintain an online presence on the following social networks:

Facebook

Service Provider: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
EU Headquarters: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland
Website : https://www.facebook.com/
Privacy Policy: https://www.facebook.com/about/privacy/
Privacy policy for Facebook pages: https://www.facebook.com/legal/terms/information_about_page_insights_data

Instagram

Service provider: Instagram Inc., 1601 Willow Road, Menlo Park CA 94025, USA
Parent company: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
Headquarters in the EU: Facebook Ireland Limited , 4 Grand Canal Square, Dublin 2, Ireland
Website: https://www.instagram.com/
Privacy Policy: http://instagram.com/about/legal/privacy p>

Messenger Services

We communicate via messenger services. Messenger services are chat programs that can be used to send text messages, but also image or video files between users in real time over the Internet. In addition, messenger services can also be used to transmit emoticons, electronic greeting cards and contacts. In order for messages to be transmitted, participants must be connected to each other with a computer program (called a client) over a network such as the Internet, either directly or through a server. As a rule, messages can also be sent when the person you are talking to is not online - the message is then buffered by the service's server and later delivered to the recipient when he or she is available again. Finally, these services can also be used for screen sharing and online games.

If the service uses end-to-end encryption for the content sent (texts, attachments), only the selected communication partners can view the message, but not third parties or the service provider itself. In this respect, we recommend installing updates for the service regularly to ensure that the content is encrypted. However, the service provider has the possibility to access the metadata of the communication. This includes the time and (depending on the setting) location of the communication as well as the device you are using.

We would like to point out that, depending on the country of domicile of the provider named below, the data collected via its platform may be transferred and processed outside the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR is not observed and that your rights cannot be enforced or can only be enforced with difficulty.

Affected data:

  • Inventory and contact data (e.g. name, telephone number, e-mail address)
  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address).

Processing purpose: communication and marketing

Legal basis: If we have asked you for your consent before using the respective service, this is the legal basis, Article 6 (1) (a) GDPR. In this respect, we make it clear that we will not transmit your contact data to the service provider for the first time without your consent. If we communicate with you as part of the initiation of a contract or as part of an existing contractual relationship via one of the following services, the legal basis is the fulfillment or preparation of the contract, Article 6 (1) (b) GDPR. In addition, we refer to our legitimate interests in fast and efficient communication and the fulfillment of the needs of our communication partners for the communication of the following services, Art. 6 Para. 1 lit. f GDPR.

Possibility of objection: You can revoke the consent given to us for the use of the following service at any time. You can also object to communication via the messenger service at any time.

We use the following messenger services:

Facebook Messenger

Service Provider: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
Headquarters in the EU: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland

WhatsApp

Service Provider: WhatsApp Inc. 1601 Willow Road Menlo Park, California 94025, USA
Registered office in the EU: Whatsapp Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
Parent company: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA

Website: https://www.whatsapp.com/
Privacy Policy: https://www.whatsapp.com/legal/?eea=1#privacy-policy< /a>

Content Services

We use certain services to be able to display certain content or graphics (videos, images, music, fonts, maps) via our website. The services we use process the IP address assigned to you at the time of your visit to our website, since this is the only way the respective content can be displayed in the browser you are using. In addition, the providers of these services can set additional cookies on your end device, which collect information about your usage behavior, your interests, the device you are using and the browser you are using, as well as the time and duration of your session. The providers use this data regularly for analysis, statistical and marketing purposes. In addition, this information can also be linked to information from other sources. This applies in particular if you have an account with the service provider yourself and are logged in there at the time of the session.

We would like to point out that, depending on the country in which the service provider named below is based, the data detailed below may be transferred and processed on servers outside the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR is not observed and that your rights cannot be enforced or can only be enforced with difficulty.

Affected data:

  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address)

Persons affected: users of our website

Processing purpose: displaying our website, offering content, ensuring the operation of our website

Legal basis: consent via cookie content banner, Article 6 Paragraph 1 lit. a GDPR, legitimate interests, Article 6 Paragraph 1 lit. f GDPR


We use the following content services:

Google Maps

We use Google Maps on our website. The IP address of the visitor is collected and processed by Google. If you visit a website on which Google Maps is integrated, regardless of whether Google Maps is actually used or you are logged into your Google account, your IP address and your location data (the latter usually not without your consent) submitted to Google. Your IP address will be assigned to your Google account if you are logged in when you visit our website.

Service provider: Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA
Headquarters in the EU: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Website: https://www.google.de/maps
Privacy Policy: https://policies.google.com/privacy
Opt-out option: https://tools.google.com/dlpage/gaoptout?hl=en

Google Web Fonts

With Google Web Fonts, we can integrate fonts (web fonts) into the design of our website and display them correctly when our website is displayed in your browser. The integration of these web fonts takes place through a server call at Google. From there, the fonts are compressed and forwarded to your browser and unpacked there. This server is usually located in the USA. If you visit one of our pages on which we integrate Google Fonts, it will be transmitted to Google which of our Internet pages you have visited.

Service provider: Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA
Headquarters in the EU: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Website: https://fonts.google.com/
Privacy Policy: https://policies.google.com/privacy

The third-party plugins we use

We have plugins on our website in the form of. Embedded “social media buttons” from the providers we use. You can tell which plugin belongs to which provider by the respective logo with which the plugin is identified. We have deactivated the social media plugins on our website by default, so that data is not automatically transmitted to the provider of the plugin when you visit our website. For this we use the so-called Shariff solution. Only when you click on the "social media button" of the respective provider is the collection of information and its transmission to the provider triggered. If you click on one of these buttons, data can be sent to the operator of the social network even if you do not have an account there or have an account there but are not logged in at the moment you visit our website.

We would like to point out that, depending on the country in which the service provider named below is based, the data detailed below may be transferred and processed on servers outside the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR is not observed and that your rights cannot be enforced or can only be enforced with difficulty.

Affected data:

  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address)

Persons affected: users of our website

Processing purpose: displaying our website, offering content, ensuring the operation of our website

Legal basis: consent via cookie content banner, Article 6 Paragraph 1 lit. a GDPR, legitimate interests, Article 6 Paragraph 1 lit. f GDPR

Security Measures

We also take state-of-the-art technical and organizational security measures to comply with the provisions of data protection laws and to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties.

Currency and changes to this data protection declaration

This data protection declaration is currently valid and has the status of April 2021. Due to changed legal or official requirements, it may be necessary to adapt this data protection declaration.

This data protection declaration was created with the help of the data protection generator from SOS Recht. SOS Recht is an offer from Mueller.legal Rechtsanwälte Partnerschaft based in Berlin.