Privacy Policy
1) Information about the collection of personal data and contact details of the person responsible
1.1 We are pleased that you are visiting our website and thank you for your interest. In the following, we inform you about the handling of your personal data when using our website. Personal data is all data with which you can be personally identified.
1.2 The person responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is CardiAngel, 303 The Bridge, 334 Queenstown Road SW11 08NP London / UK, email: sales@cardiangel.com. The person responsible for the processing of personal data is the natural or legal person who alone or jointly with others decides on the purposes and means of the processing of personal data.
1.3 For security reasons and to protect the transmission of personal data and other confidential content (eg orders or inquiries to the person responsible), this website uses an SSL or TLS encryption. You can recognize an encrypted connection by the character string “https://” and the lock symbol in your browser line.
2) Data collection when visiting our website
If you only use our website for informational purposes, i.e. if you do not register or otherwise provide us with information, we only collect data that your browser transmits to our server (so-called “server log files”). When you visit our website, we collect the following data that is technically necessary for us to display the website to you:
• Our visited website
• Date and time at the time of access
• Amount of data sent in bytes
• Source/reference from which you came to the page
• Browser used
• Operating system used
• IP address used (if necessary: in anonymous form)
The processing takes place in accordance with Article 6 Paragraph 1 Letter f GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. The data will not be passed on or used in any other way. However, we reserve the right to subsequently check the server log files if there are concrete indications of illegal use.
3) Hosting & Content Delivery Network
SiteGround
On our website we use a so-called Content Delivery Network (“CDN”) from the technology service provider SiteGround Hosting Ltd., 3rd Floor, 11-12 St James’s Square, St. James’s, London SW1Y 4LB, United Kingdom (“SiteGround”). A content delivery network is an online service that can be used to help, in particular, with large media files (such as e.g. graphics, page content or scripts) are delivered by a network of regionally distributed servers connected via the Internet. The use of Siteground’s Content Delivery Network helps us to optimize the loading speed of our website. Processing is carried out in accordance with Article 6 (1) (f) GDPR on the basis of our legitimate interest in secure and efficient provision, as well as improving stability and functionality our website.Im As part of the aforementioned SiteGround services, data can also be transmitted to SG Hosting Inc., 901 N Pitt St., Alexandria, VA 22314, USA, as part of further processing. In the event that data is transmitted to SiteGround in the United Kingdom, the European Commission’s adequacy decision ensures the appropriate level of data protection. Further information on SiteGround’s data protection is available on the following website: https://de.siteground.com/privacy.htm
4) Cookies
In order to make visiting our website attractive and to enable the use of certain functions, we use cookies, i.e. small text files that are stored on your end device. Some of these cookies are automatically deleted after closing the browser (so-called “session cookies”), some of these cookies remain on your end device for a longer period of time and enable page settings to be saved (so-called “persistent cookies”). In the latter case, you can see the storage period in the overview of the cookie settings in your web browser.If personal data is also processed by individual cookies used by us, the processing takes place in accordance with Article 6 (1) (b) GDPR either for the execution of the contract , in accordance with Article 6 (1) (a) GDPR if consent has been given or in accordance with Article 6 (1) (f) GDPR to protect our legitimate interests in the best possible functionality of the website and a customer-friendly and effective design of the site visit You can set your browser so that you are informed about the setting of cookies and decide individually whether to accept them or to exclude the acceptance of cookies for certain cases or in general. Please note that if cookies are not accepted, the functionality of our website may be restricted .
5) Contact
5.1 – Tidio
This website uses technologies from Tidio Poland Sp. z oo, Wojska Polskiego 81, 70-481 Szczecin, Poland (www.tidio.com), anonymized data collected and stored for the purpose of web analysis and to operate the live chat system, which is used to answer live support requests. User profiles can be created from this anonymous data under a pseudonym. Cookies may be used. Cookies are small text files that are stored locally in the cache of the website visitor’s Internet browser. Cookies enable recognition of the Internet browser. If the information collected in this way has a personal reference, processing is carried out in accordance with Article 6 (1) (f) GDPR on the basis of our legitimate interest in effective customer service and the statistical analysis of user behavior for optimization purposes. The separately granted consent of the person concerned is not used to personally identify the visitor to this website and is not combined with personal data about the bearer of the pseudonym. In order to avoid the storage of Tidio cookies, you can set your Internet browser so that no more cookies can be stored on your computer in the future or cookies that have already been stored are deleted. However, switching off all cookies can mean that some functions on our website can no longer be executed. You can object to the data collection and storage for the purpose of creating a pseudonymised usage profile at any time with effect for the future by sending us your objection informally by e-mail to the e-mail address given in the imprint.
5.2 Freshdesk
We use the e-mail ticket system of Freshworks, Inc., 2950 S. Delaware Street, Suite 201, San Mateo, California 94403, USA (“Freshdesk”) to process customer inquiries. If users of our website send contact requests by email, these are stored and organized in the ticket system to enable chronological processing and to improve the service experience. Users can always see the current status of the processing of their request via the individually assigned ticket number. Personal data is provided exclusively for the organization of the requests and their processing, as far as in the request, but in any case surname, first name and e-mail address collected, transmitted to Freshdesk, stored there and read out. The legal basis for the processing of this data is our legitimate interest in the efficient design of our customer service, in the fastest possible answer to your request and the optimization of our service offer in accordance with Article 6 Paragraph 1 lit. f GDPR. We have an order processing agreement with Freshdesk (“Data Processing Addendum”, available at https://www.freshworks.com/data-processing-addendum/ ) signed, obliging Freshdesk to protect our customers’ data and not share it with third parties. For the transmission of data outside the European Economic Area, Freshdesk relies on the so-called standard data protection clauses of the European Commission, which are intended to ensure compliance with the European data protection level. Your data will be deleted after your request has been processed. This is the case if it can be inferred from the circumstances that the facts in question have been finally clarified and provided that there are no legal storage obligations to the contrary .
5.3
When contacting us (e.g. via contact form or email), personal data will be processed – exclusively for the purpose of processing and answering your request and only to the extent required for this. The legal basis for the processing of this data is our legitimate interest in answering your request in accordance with Article 6 (1) (f) GDPR. If your contact is aimed at a contract, the additional legal basis for processing is Art. 6 (1) (b) GDPR. Your data will be deleted if it can be inferred from the circumstances that the facts in question have been finally clarified and provided that there are no legal storage obligations to the contrary.
5.4 WhatsApp Business
We offer visitors to our website the opportunity to contact us via the WhatsApp messaging service of WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. For this we use the so-called “Business Version” of WhatsApp. If you contact us via WhatsApp on the occasion of a specific transaction (e.g. an order placed), we will save and use the mobile phone number you use on WhatsApp and – if provided – your first and last name in accordance with Article 6 Paragraph 1 lit. b. DSGVO for processing and answering your request. On the same legal basis, we may ask you via WhatsApp to provide additional data (order number, customer number, address or e-mail address) in order to be able to assign your request to a specific transaction.
If you use our WhatsApp contact for general inquiries (e.g. about the range of services, availabilities or on our website) we store and use the information you provide: Mobile phone number used by WhatsApp and – if provided – your first and last name in accordance with Article 6 (1) (f) GDPR on the basis of our legitimate interest in providing the requested information efficiently and promptly.
Your data will always only be used to answer your request via WhatsApp. A disclosure to third parties does not occur.
Please note that WhatsApp Business has access to the address book of the mobile device we use for this purpose and automatically transfers telephone numbers stored in the address book to a server of the parent company Meta Platforms Inc. in the USA. To operate our WhatsApp business account, we use a mobile end device whose address book only stores the WhatsApp contact data of those users who have also contacted us via WhatsApp. This ensures that every person whose WhatsApp contact details are stored in our address book, when using the app on their device for the first time, by accepting the WhatsApp terms of use in the transmission of their WhatsApp telephone number from the address books of their chat contacts in accordance with Art. 6 Paragraph 1 lit. a GDPR has consented. A transmission of data from users who do not use WhatsApp and/or have not contacted us via WhatsApp is therefore excluded.
The purpose and scope of the data collection and the further processing and use of the data by WhatsApp as well as your rights in this regard and setting options for protecting your privacy can be found in WhatsApp’s data protection information : https://www.whatsapp.com/legal/?eea=1# privacy policy
6) Use of Customer Data for Direct Marketing
If you register for our e-mail newsletter, we will regularly send you information about our offers. The only mandatory information for sending the newsletter is your e-mail address.
Providing further data is voluntary and is used to be able to address you personally. For sending the newsletter, we use the so-called double opt-in procedure, which ensures that you only receive the newsletter if you have expressly confirmed your consent to receive the newsletter by clicking on a verification link sent to the email address provided
By activating the confirmation link, you give us your consent to the use of your personal data in accordance with Article 6 (1) (a) GDPR. We store your IP address entered by the Internet Service Provider (ISP) as well as the date and time of registration in order to be able to trace possible misuse of your e-mail address at a later point in time. The data we collect when registering for the newsletter is used strictly for the intended purpose. You can unsubscribe from the newsletter at any time via the link provided for this purpose in the newsletter or by sending a message to the person responsible mentioned above. After you have unsubscribed, your e-mail address will be deleted from our newsletter distribution list immediately, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we will inform you in this declaration.
7) Data processing for order processing
7.1
Insofar as it is necessary for the execution of the contract for delivery and payment purposes, the personal data collected by us will be passed on to the commissioned transport company and the commissioned bank in accordance with Article 6 Paragraph 1 lit. b GDPR.
If we owe you updates for goods with digital elements or for digital products on the basis of a corresponding contract, we process the contact data you provide when ordering (name, address, e-mail address) in order to inform you within the framework of our legal information obligations in accordance with Art. 6 Para 1 lit. c GDPR via a suitable communication channel (e.g. by post or e- mail) about upcoming updates in the period stipulated by law. Your contact details will be used strictly earmarked for notifications about updates owed by us and will only be processed by us for this purpose to the extent that this is necessary for the information in question.
In order to process your order, we also work together with the following service provider(s), who support us in whole or in part in the implementation of concluded contracts. Certain personal data is transmitted to these service providers in accordance with the following information.
7.2
In order to fulfill our contractual obligations to our customers, we work together with external shipping partners. We pass on your name and your delivery address and, if necessary for the delivery, your telephone number, exclusively for the purpose of delivering the goods to a shipping partner selected by us, Art. 6 (1) (b) GDPR.
7.3
The order processing takes place via the service provider “Interherence” (Interherence GmbH, Henkestr. 91, 91052 Erlangen, Germany). Name, address and, if applicable, other personal data are passed on to Interherence exclusively for processing the online order in accordance with Article 6 (1) (b) GDPR.
Your data will only be passed on to the extent that this is actually necessary to process the order. Details on data protection at Interherence and the data protection declaration of Interherence GmbH are available on the Interherence website at https://interherence.com
7.4 Transfer of personal data to shipping service providers
Deutsche Post
If the goods are delivered by Deutsche Post (Deutsche Post AG, Charles-de-Gaulle-Straße 20, 53113 Bonn), we will provide your e-mail address in accordance with Article 6 (1) (a) GDPR the delivery of the goods for the purpose of coordinating a delivery date or delivery notification to Deutsche Post, provided that you have given your express consent to this during the ordering process. Otherwise, we will only pass on the name of the recipient and the delivery address to Deutsche Post for the purpose of delivery in accordance with Article 6 (1) (b) GDPR. The data will only be passed on if this is necessary for the delivery of the goods. In this case, prior coordination of the delivery date with Deutsche Post or the delivery notification is not possible. Consent can be revoked at any time with effect for the future to the person responsible or to Deutsche Post.
DHL
If the goods are delivered by the transport service provider DHL (DHL Paket GmbH, Sträßchensweg 10, 53113 Bonn), we will give your e-mail address to DHL in accordance with Article 6 (1) (a) GDPR, provided that you have given your express consent to this during the ordering process. Otherwise, we will only pass on the name of the recipient and the delivery address to DHL for the purpose of delivery in accordance with Article 6 (1) (b) GDPR. The data will only be passed on if this is necessary for the delivery of the goods. In this case, prior coordination of the delivery date with DHL or the delivery notification is not possible. Consent can be revoked at any time with future effect to the person responsible or to the transport service provider DHL.
DHL Express
If the goods are delivered by the transport service provider DHL Express (DHL Express Germany GmbH, Heinrich Brüning-Str. 5, 53113 Bonn), we will give your e-mail address in accordance with Art. 6 (1) lit. b GDPR for the delivery notification to DHL Express, provided that you have given your express consent to this during the ordering process. Otherwise, we will only pass on the name of the recipient and the delivery address to DHL Express for the purpose of delivery in accordance with Article 6 (1) (b) GDPR. The data will only be passed on if this is necessary for the delivery of the goods. In this case, prior coordination of the delivery date with DHL Express or the delivery notification is not possible. Consent can be revoked at any time with future effect to the person responsible or to the transport service provider DHL Express.
DPD
If the goods are delivered by the transport service provider DPD (DPD Deutschland GmbH, Wailandtstraße 1, 63741 Aschaffenburg), we will give your e-mail address and your telephone number before the goods are delivered in accordance with Article 6 (1) (a) GDPR for the purpose of coordinating a delivery date or delivery notification to DPD, provided you have given your express consent to this during the ordering process. Otherwise, we will only pass on the name of the recipient and the delivery address to DPD for the purpose of delivery in accordance with Article 6 (1) (b) GDPR. The data will only be passed on if this is necessary for the delivery of the goods. In this case, prior coordination of the delivery date with DPD or the delivery notification is not possible. Consent can be revoked at any time with future effect to the person responsible or to the transport service provider DPD.
UPS
The goods are delivered by the transport service provider UPS ( United Parcel Service Deutschland Inc. & Co. OHG, Görlitzer Straße 1, 41460 Neuss), we will provide your e-mail address before the goods are delivered in accordance with Article 6 (1) (a) GDPR for the purpose of coordinating a delivery date or to UPS for delivery notification, provided that you have given your express consent to this during the ordering process. Otherwise, we will only pass on the name of the recipient and the delivery address to UPS for the purpose of delivery in accordance with Article 6 (1) (b) GDPR. The data will only be passed on if this is necessary for the delivery of the goods. In this case, it is not possible to coordinate the delivery date with UPS beforehand or to transmit status information about the delivery of the shipment. Consent can be revoked at any time with future effect to the person responsible or to the transport service provider UPS.
7.5 Use of payment service providers (payment services)
Apple Pay
If you choose the payment method “Apple Pay” from Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland, the payment is processed via the “Apple Pay” function of your terminal device operated with iOS, watchOS or macOS by debiting a payment card stored with “Apple Pay”. Apple Pay uses security features built into your device’s hardware and software to protect your transactions. To release a payment, it is therefore necessary to enter a code previously defined by you and to verify it using the “Face ID” or “Touch ID” function of your device. For the purpose of payment processing, the information you provided during the ordering process together with the Information about your order in encrypted form to Apple. Apple then encrypts this data again with a developer-specific key before the data is sent to the payment service provider of the payment card stored in Apple Pay to carry out the payment. The encryption ensures that only the website through which the purchase was made can access the payment details. After the payment has been made, Apple sends your device account number and a transaction-specific, dynamic security code to the originating website to confirm the success of the payment. If personal data is processed in the transmissions described, the processing is carried out exclusively for the purpose of payment processing in accordance with Art b GDPR.Apple retains anonymized transaction data, including approximate purchase amount, approximate date and time, and whether the transaction was successfully completed.
The anonymization completely excludes any personal reference. Apple uses the anonymized data to improve Apple Pay and other Apple products and services. When you use Apple Pay on iPhone or Apple Watch to complete a purchase made through Safari on Mac, the Mac communicates and the authorization device over an encrypted channel on the Apple servers. Apple does not process or store any of this information in a format that personally identifies you. You can disable the ability to use Apple Pay on your Mac in your device’s settings. Go to “Wallet & Apple Pay” and turn off “Allow payments on Mac” .
Google Pay
If you decide to use the “Google Pay” payment method from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”), payment will be processed using the “Google Pay” application on your device with at least Android 4.4 (“KitKat”) operated mobile device with an NFC function by debiting a payment card stored with Google Pay or a payment system verified there (e.g PayPal). To release a payment via Google Pay of more than €25, you must first unlock your mobile device using the verification measure set up (e.g. face recognition, password, fingerprint or pattern). For the purpose of payment processing, your information provided during the ordering process together with the information about your order is passed on to Google. Google then transmits your payment information stored in Google Pay in the form of a unique transaction number to the source website, which is used to verify that the payment has been made. This transaction number does not contain any information about the real payment data of your means of payment stored with Google Pay, but is created and transmitted as a uniquely valid numeric token. For all transactions via Google Pay, Google only acts as an intermediary to process the payment process. The transaction is carried out exclusively in the relationship between the user and the source website by debiting the means of payment stored with Google Pay. If personal data is processed in the transmissions described, the processing is carried out exclusively for the purpose of payment processing in accordance with Art. 6 Para. 1 lit. b GDPR. Google reserves the right to collect, store and evaluate certain process-specific information for every transaction made via Google Pay. This includes the date, time, and amount of the transaction, merchant location and description, a description provided by the merchant of the goods or services purchased, photographs you included with the transaction, the name and email addresses of the seller and buyer, or of the sender and recipient, the payment method used, your description of the reason for the transaction and, if applicable, the offer associated with the transaction. According to Google, this processing takes place exclusively in accordance with Art. 6 Paragraph 1 lit. f GDPR on the basis of the legitimate interest in proper accounting, the verification of transaction data and the optimization and functional maintenance of the Google Pay service.Google also reserves the right to merge the processed transaction data with further information, which are collected and stored by Google when you use other Google services. The Google Pay terms of use can be found here: https://payments.google.com/payments/apis-secure/u/0/get_legal_document?ldo=0&ldt =googlepaytos&ldl=en More Information on data protection for Google Pay can be found at the following Internet address: https://payments.google.com/payments/apis-secure/get_legal_document? ldo=0&ldt=privacynotice&ldl=de
Klarna
If you select a Klarna payment service, the payment is processed via Klarna Bank AB (publ), https://www.klarna.com/de/, Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter “Klarna”). In order to enable the payment to be processed, your personal data (first and last name, street, house number, postal code, city, gender, e-mail address, telephone number and IP address, possibly also your date of birth and your bank details) and Data related to the order (e.g. Invoice amount, item, type of delivery) to Klarna for the purpose of identity and credit checks, provided that you have expressly consented to this in accordance with Article 6 (1) (a) GDPR as part of the ordering process. You can see here which credit agencies your data can be forwarded to : https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agenciesDie Credit information can contain probability values (so-called score values). As far as score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical process. Among other things, but not exclusively, address data is included in the calculation of the score values. Klarna uses the information received about the statistical probability of non-payment for a balanced decision on the establishment, implementation or termination of the contractual relationship. You can revoke your consent at any time by sending a message to the person responsible for data processing or to Klarna. However, Klarna may still be entitled to process your personal data if this is necessary for contractual payment processing. Your personal information will be processed in accordance with the applicable data protection regulations and in accordance with the information in Klarna’s data protection regulations for data subjects based in Germany https://cdn. klarna.com/ 1.0/shared/content/legal/terms/0/de_de/privacy for data subjects based in Austria https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_at/
Paypal
When paying via PayPal, credit card via PayPal, direct debit via PayPal or – if offered – “purchase on account” or “payment in installments” via PayPal, we pass on your payment data to PayPal (Europe) as part of the payment process. Sarl et Cie, SCA, 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”), further. The transfer takes place in accordance with Article 6 Paragraph 1 Letter b GDPR and only to the extent that this is necessary for payment processing.PayPal reserves the right to use the payment methods credit card via PayPal, direct debit via PayPal or – if offered – “purchase on account” or “Payment by installments” via PayPal requires a credit check to be carried out. For this purpose, your payment data may be passed on to credit agencies in accordance with Article 6 (1) (f) GDPR on the basis of PayPal’s legitimate interest in determining your solvency. PayPal uses the result of the credit check in relation to the statistical probability of payment default for the purpose of deciding whether to provide the respective payment method. The credit report can contain probability values (so-called score values). As far as score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical process. In the calculation of the score values include, but not exclusively, address data. Further data protection information, including information on the credit agencies used, can be found in PayPal’s data protection declaration: https://www.paypal.com/de/webapps/mpp/ua/privacy-fullSie You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for contractual payment processing.
PayPal Checkout
This website uses PayPal Checkout, an online payment system from PayPal, which consists of PayPal’s own payment methods and local payment methods from third parties. When paying via PayPal, credit card via PayPal, direct debit via PayPal or – if offered – “Pay later” via PayPal, we pass on your payment data to PayPal (Europe) Sarl et Cie, SCA, 22-24 Boulevard Royal, L -2449 Luxembourg (hereinafter “PayPal”), continue. The transfer takes place in accordance with Art. 6 Paragraph 1 lit. b GDPR and only to the extent that this is necessary for payment processing. PayPal reserves the right to use the payment methods credit card via PayPal, direct debit via PayPal or – if offered – “Pay later” via PayPal – the implementation of a credit check. For this purpose, your payment data may be passed on to credit agencies in accordance with Article 6 (1) (f) GDPR on the basis of PayPal’s legitimate interest in determining your solvency. PayPal uses the result of the credit check in relation to the statistical probability of payment default for the purpose of deciding whether to provide the respective payment method. The credit report can contain probability values (so-called score values). As far as score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical process. Among other things, but not exclusively, address data is included in the calculation of the score values. You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for contractual payment processing. If you select the PayPal payment method “purchase on account”, your payment data will first be sent to PayPal to prepare the payment, after which PayPal will use this to carry out the payment to
Stripe
If you choose a payment method from the payment service provider Stripe, the Payment processing via the payment service provider Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, to which we pass on the information you provided during the ordering process together with the information about your order (name, address, account number, bank code, credit card number, invoice amount, currency and transaction number) in accordance with Article 6 (1) (b) GDPR. You can find more information about Stripe’s data protection at the URL https://stripe.com/de/privacy#translation. Stripe reserve the right to carry out a credit check based on mathematical-statistical procedures in order to protect the legitimate interest in determining the user’s solvency. Stripe may transmit the personal data required for a credit check and received as part of payment processing to selected credit agencies, which Stripe discloses to users upon request. The credit report can contain probability values (so-called score values). As far as score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical process. Among other things, but not exclusively, address data is included in the calculation of the score values. Stripe uses the result of the credit check in relation to the statistical probability of payment default for the purpose of deciding whether to use the selected payment method. You can object to this processing of your data at any time by sending a message to Stripe or the commissioned credit agencies. However, Stripe may still be entitled to process your personal data if this is necessary for contractual payment processing.
8) Web Analytics Services
Google (Universal) Analytics without cookies
This website uses Google (Universal) Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). This website uses Google (Universal) Analytics exclusively without the use of cookies, which means that the service never sets cookies on your device. Instead, the local memory of your browser is used to store an individual ID assigned by Google (Universal) Analytics, which allows an analysis of your allowed to use the website. For this purpose, certain user information is processed via the ID. The information generated by the ID about your use of this website (including the shortened IP address) is usually transmitted to a Google server and stored there the servers of Google LLC. come in the USA. This website uses Google (Universal) Analytics exclusively with the extension “_anonymizeIp()”, which ensures anonymization of the IP address by shortening it and excludes direct personal reference. As a result of the extension, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google LLC server in the USA and shortened there. On our behalf, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide us with other services related to website activity and internet usage. Within the framework of Google (Universal) Analytics, the IP address transmitted by your browser is not merged with other data from Google. Google Analytics also enables the creation of statistics with statements about the age, gender and interests of site visitors based on a special function, the so-called “demographic characteristics”, an evaluation of interest-based advertising and using third-party information. This allows the definition and differentiation of user groups of the website for the purpose of target group-optimized alignment of marketing measures. The “demographic characteristics” recorded data sets cannot be assigned to a specific person.
Details on the processing triggered by Google Analytics and on Google’s handling of data from websites can be found here:
https://policies.google.com/technologies/partner sites
The processing described above will only be carried out if you inform us in accordance with Art. 6 Paragraph 1 lit. a GDPR have given your express consent to this. Without this consent, Google Analytics will not be used during your visit to the site. You can revoke your consent at any time with effect for the future. To exercise your revocation, you can download and install the browser plugin available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en
As an alternative to the browser plugin or within browsers on mobile devices, you can revoke your consent by clicking on the following link to set an opt-out cookie that will prevent future collection by Google Analytics within this website (This opt-out cookie only works in this browser and only for this domain. If you delete your cookies in this browser, you must click this link again)
We have concluded an order processing contract with Google for the use of Google Analytics, Google is obliged to protect the data of our website visitors and not to pass it on to third parties. For the transmission of data from the EU to the USA, Google relies on the so-called standard data protection clauses of the European Commission, which ensure compliance with the European data protection level in the USA. Further information on Google (Universal) Analytics can be found here: https://policies.google.com/privacy?hl=de&gl=de
9) Tools and Miscellaneous
Cookie Consent Tool
This website uses a so-called “cookie consent tool” to obtain effective user consent for cookies that require consent and cookie-based applications. The “Cookie-Consent Tool” is displayed to users when the page is accessed in the form of an interactive user interface, on which consent can be given for certain cookies and/or cookie-based applications by ticking the box. By using the tool, all cookies/services that require consent are only loaded if the respective user gives their consent by ticking the box. This ensures that such cookies are only set on the respective end device of the user if consent has been given. The tool sets technically necessary cookies to save your cookie preferences.
Personal user data is generally not processed here. If, in individual cases, personal data (such as the IP address) is processed for the purpose of storing, assigning or logging cookie settings, this takes place in accordance with Article 6 (1) (f) GDPR on the basis of our legitimate interest in a legally compliant, user-specific and user-friendly consent management for cookies and thus in a legally compliant design of our website. Another legal basis for processing is Article 6 Paragraph 1 lit. c GDPR. As the person responsible, we are subject to the legal obligation to make the use of technically unnecessary cookies dependent on the respective user consent. Further information on the operator and the setting options of the cookie content tool can be found directly in the corresponding user interface on our website.
10) Rights of the data subject
10.1
The applicable data protection law grants you the following data subject rights (information and rights of intervention), whereby for the respective conditions for exercise refer to the stated legal basis referenced:
• Right to information according to Art. 15 GDPR;
• Right to rectification according to Art. 16 GDPR;
• Right to erasure according to Art. 17 GDPR;
• Right to restriction of processing according to Art. 18 GDPR;
• Right to information according to Art. 19 GDPR;
• Right to data portability according to Art. 20 GDPR;
• Right to revoke granted consent in accordance with Art. 7 Para. 3 GDPR;
• Right to complain according to Art. 77 GDPR.
10.2
RIGHT TO OBJECT
IF WE PROCESS YOUR PERSONAL DATA ON THE BASIS OF A BALANCING OF INTERESTS ON THE BASIS OF OUR OVERRIDING LEGITIMATE INTERESTS, YOU HAVE THE RIGHT AT ANY TIME TO OBJECT TO THIS PROCESSING FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION. IF YOU MAKE USE OF THIS RIGHT, WE STOP THE PROCESSING OF THE DATA CONCERNED. HOWEVER, FURTHER PROCESSING REMAINS RESERVED IF WE CAN PROVE COMPREHENSIVE REASONS FOR PROCESSING THAT OVERRIDE YOUR INTERESTS, FUNDAMENTAL RIGHTS AND FUNDAMENTAL FREEDOMS, OR IF THE PROCESSING IS FOR THE CERTIFICATION, EXERCISE OR DEFENSE OF LEGAL CLAIMS.
IF YOUR PERSONAL DATA IS PROCESSED BY US FOR DIRECT ADVERTISING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR THE PURPOSES OF SUCH ADVERTISING.
YOU MAY OBJECT AS DESCRIBED ABOVE.
IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP THE PROCESSING OF THE DATA INVOLVED FOR DIRECT MARKETING PURPOSES.
11) Duration of storage of personal data
The duration of the storage of personal data is based on the respective legal basis, the processing purpose and – if relevant – also based on the respective statutory retention period (e.g. commercial and tax retention periods).
When processing personal data on the basis of an express consent in accordance with Article 6 Paragraph 1 lit. a GDPR, this data is stored until the person concerned revokes their consent.
If there are statutory retention periods for data that are processed as part of legal or similar obligations on the basis of Article 6 (1) (b) GDPR, this data will be routinely deleted after the retention period has expired, provided that it is no longer required to fulfill or initiate a contract and/or we have no legitimate interest in further storage.
When personal data is processed on the basis of Article 6 (1) (f) GDPR, this data is stored until the data subject exercises his or her right to object under Article 21 (1) GDPR, unless we can provide compelling reasons worthy of protection for processing that outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.
When processing personal data for the purpose of direct advertising on the basis of Article 6 Paragraph 1 lit. f GDPR, this data is stored until the data subject exercises his right of objection under Article 21 Paragraph 2 GDPR.
Unless otherwise stated in the other information in this declaration on specific processing situations, stored personal data will be deleted when they are no longer necessary for the purposes for which they were collected or otherwise processed.