Privacy policy
This privacy policy in accordance with Art. 13 GDPR clarifies the nature, scope and purpose of the processing of personal data (hereinafter referred to as ‘data’) in the context of the provision of our services and within our online offer and the associated websites, functions and content as well as external online presences, such as our social media profile (hereinafter collectively referred to as ‘online offer’). With regard to the terms used, such as “processing” or “responsible”, we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR). If you have any questions about our privacy policy, please do not hesitate to contact us at the e-mail address below.
Person responsible
Karl Amadeus Hartmann – Gesellschaft e.V. represented by the Managing Director Andreas Hérm Baumgartner
Franz-Joseph-Straße 20
80801 Munich (Germany)
Phone: +49 (0)89 34 79 67
Fax (analog): +49 (0)89 33 03 92 06
E-mail: info@hartmann-gesellschaft.de
Types of data processed
– Inventory data (e.g., personal master data, names or addresses).
– Contact details (e.g., e-mail, telephone numbers).
– Content data (e.g., text input, photographs, videos).
– Usage data (e.g., websites visited, interest in content, access times).
– Meta/communication data (e.g., device information, IP addresses).
Categories of affected persons
Visitors and users of the online offer (hereinafter we refer to the data subjects collectively also as “users”).
Purpose of processing
– Providing the online offer, its functions and content.
– Respond to contact requests and communicate with users.
– Security measures.
– Range measurement/marketing
Terminology used (pursuant to Art. 4 GDPR)
‘Personal Data’ means any information relating to an identified or identifiable natural person (hereinafter ‘data subject’); identifiable is a natural person who is directly or indirectly, directly or indirectly, directly or indirectly, by means of an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or one or more special characteristics. which are an expression of the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.
‘Processing’ means any operation carried out with or without the aid of automated procedures or any series of operations relating to personal data. The term goes far and includes virtually every handling of data.
‘pseudonymisation’ means the processing of personal data in such a way that personal data can no longer be assigned to a specific data subject without the use of additional information, provided that such additional data may be information is kept separately and subject to technical and organisational measures to ensure that the personal data is not assigned to an identified or identifiable natural person.
‘profiling’ means any type of automated processing of personal data consisting in the use of such personal data to assess certain personal aspects relating to a natural person, in particular in order to to analyse or predict the performance, economic situation, health, personal preferences, interests, reliability, behaviour, whereabouts or relocation of this natural person.
“Responsible” means the natural or legal person, authority, body or other body which decides, alone or jointly with others, on the purposes and means of the processing of personal data.
‘processor’ means a natural or legal person, authority, body or other body processing personal data on behalf of the controller.
Relevant legal bases
In accordance with Article 13 GDPR, we shall inform you of the legal bases of our data processing. For users within the scope of the General Data Protection Regulation (GDPR), i.e. the EU and the EEC, unless the legal basis is mentioned in the data protection declaration, the following applies:
The legal basis for obtaining consent is Article 6(4) of the 1 lit. a and Article 7 GDPR;
The legal basis for the processing for the performance of our services and the implementation of contractual measures as well as answering requests is Art. 1 lit. b GDPR;
The legal basis for processing to fulfil our legal obligations is Article 6(4) of the 1 lit. c GDPR;
In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6(4) of the 1 lit. d GDPR as legal basis.
The legal basis for the necessary processing to carry out a task which is in the public interest or carried out in the exercise of official authority, which has been entrusted to the controller, is Article 6(4) of the 1 lit. e GDPR.
The legal basis for processing in order to safeguard our legitimate interests is Article 6(4) of the 1 lit. f GDPR.
The processing of data for purposes other than those for which it was collected is determined in accordance with the provisions of Article 6(3) of the 4 GDPR.
The processing of special categories of data (according to Art. 9 sec. 1 GDPR) is determined in accordance with the provisions of Article 9(1) of the GDPR. 2 GDPR.
Security
We shall take place in accordance with the legal requirements, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing, as well as the different probability and severity of the risk to the rights and freedoms of natural persons, appropriate technical and organisational measures to ensure a level of protection appropriate to the risk.
Measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as access, input, disclosure, ensuring availability and availability. Separation. In addition, we have established procedures to ensure the exercise of data subjects’ rights, deletion of data and a response to data threats. Furthermore, we take into account the protection of personal data already in the development or selection of hardware, software and procedures, in accordance with the principle of data protection through technical design and by data protection-friendly presets.
Hosting
We host the content of our website with the provider 1&1 IONOS. The provider is IONOS SE, Elgendorfer Str. 57, 56410 Montabaur (hereinafter referred to as IONOS). When you visit our website, IONOS records various log files including your IP addresses. Details can be found in the IONOS privacy policy:https://www.ionos.de/terms-gtc/terms-privacy.
Our website also uses the open source software WordPress.org to create and manage content. WordPress.org is provided by the WordPress Foundation and does not require the transfer of personal data to the developers or operators of the platform. When you visit our website, WordPress records various log files including your IP addresses. Details can be found in the privacy policy of WordPress.orghttps://de.wordpress.org/about/privacy/.
The use of data on IONOS and WordPress.org is based on Art. 6 paragraph 1 lit. f GDPR. We have a legitimate interest in ensuring that our website is as reliable, functional and secure as possible. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 paragraph 1 lit. a GDPR and § 25 paragraph 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s end device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time.
Cooperation with processors, joint managers and third parties
If, in the course of our processing, we disclose data to other persons and companies (processors, joint controllers or third parties), transmit them to them or otherwise grant them access to the data, this is only done on the basis of a legal permission (e.g. if a transfer of the data to third parties, such as to payment service providers, is necessary for the performance of the contract), have consented to the performance of the contract, have a legal obligation to do so or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).
If we disclose, transmit or otherwise grant access to data to other companies in our group of companies, this is done in particular for administrative purposes as a legitimate interest and in addition to a legal appropriate basis.
Transfers to third countries
Insofar as we process data in a third country (i.e. outside the European Union (EU), the European Economic Area (EEA) or the Swiss Confederation) or in the context of the use of third-party services or disclosure or transmission of Data to other persons or companies is only done if it is done to fulfil our (pre)contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to express consent or contractually required transfer, we process or leave the data only in third countries with a recognised level of data protection, including u.S. processors certified under the “Privacy Shield” or based on special guarantees, such as contractual obligation through so-called standard safeguard clauses of the EU Commission, to process the existence of certifications or binding internal data protection rules (Art. 44 to 49 GDPR, Data Protection – European Commission (europa.eu)).
Rights of data subjects
You have the right to request confirmation of whether the relevant data is being processed and to provide information about this data, as well as to further information and a copy of the data in accordance with the legal requirements.
In accordance with the legal requirements, you have the right to request the completion of data concerning you or the correction of incorrect data concerning you.
In accordance with the legal requirements, you have the right to demand that the data in question be deleted immediately or, alternatively, to demand a restriction of the processing of the data in accordance with the legal requirements.
You have the right to request that the data concerning you that you have provided to us be received in accordance with the legal requirements and to request their transmission to other responsible persons.
You also have the right to lodge a complaint with the competent data protection supervisory authority in accordance with the statutory provisions.
Withdrawal
You have the right to revoke consents given with effect for the future.
Right to object
Sie können der künftigen Verarbeitung der Sie betreffenden Daten nach Maßgabe der gesetzlichen Vorgaben jederzeit widersprechen. In particular, the opposition may be made against the processing for the purposes of direct marketing.
SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from ‘http://’ to ‘https://’ and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Cookies and right of objection in direct marketing
Cookies are small files that are stored on the user’s computer. Different information can be stored within the cookies. A cookie is primarily used to store information about a user (or the device on which the cookie is stored) during or after their visit to an online service. Temporary cookies, also known as ‘session cookies’ or ‘transient cookies’, are deleted after a user leaves an online service and closes their browser. In such a cookie, for example, the contents of a shopping cart can be stored in an online shop or a login status. ‘Permanent’ or ‘persistent’ cookies remain stored even after the browser is closed. For example, the login status can be saved if the user visits the website again after several days. Likewise, such a cookie may store the interests of users used for range measurement or marketing purposes. ‘Third-party cookies’ are cookies that are set by providers other than the controller who operates the online service (otherwise they are referred to as ‘first-party cookies’).
We may use temporary and permanent cookies and clarify this as part of our privacy policy.
Insofar as we ask users to consent to the use of cookies (e.g. in the context of a cookie consent), the legal basis of this processing is Art. 6 1 lit. a GDPR. Otherwise, the personal data of users processed by cookies will be processed in accordance with the following explanations in the context of this data protection declaration on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f GDPR) or if the use of cookies is necessary for the provision of our contract-related services, in accordance with Art. 6 para. 1 lit. f GDPR. Art. 6 paragraph 1 lit. b GDPR, or if the use of cookies is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller, in accordance with Art. 6 paragraph 1 lit. e GDPR.
If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Saved cookies can be deleted in the browser’s system settings. The exclusion of cookies may lead to functional limitations of this online offer.
A general objection to the use of cookies used for online marketing purposes can be declared for a large number of services, especially in the case of tracking, via the US website http://www.aboutads.info/choices/ or the EU website http://www.youronlinechoices.com/. Furthermore, the storage of cookies can be prevented by switching them off in the browser settings. Please note that not all functions of this online offer can be used.
Deletion of data
The data processed by us will be deleted or restricted in its processing in accordance with the legal requirements. Unless expressly stated in the context of this data protection declaration, the data stored by us will be deleted as soon as they are no longer necessary for their purpose and no legal retention obligations preclude deletion.
Unless the data is deleted because it is necessary for other and legally permissible purposes, their processing will be restricted. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax reasons.
Changes and updates to the Privacy Policy
We kindly ask you to inform yourself regularly about the content of our data protection declaration. We will amend the Privacy Policy as soon as the changes to the data processing we perform require it. We will inform you as soon as the changes require an act of participation on your part (e.g. consent) or any other individual notification.
Contractual services
We process the data of our contractual partners and interested parties as well as other clients, customers, clients, clients or contractual partners (uniformly referred to as “contractual partners”) in accordance with Art. 6 1 lit. b. GDPR in order to provide them with our contractual or pre-contractual services. The data processed here, the nature, scope and purpose and necessity of its processing, are determined by the underlying contractual relationship.
The processed data includes the master data of our contractual partners (e.g., names and addresses), contact data (e.g. e-mail addresses and telephone numbers) as well as contract data (e.g., services used, contract content, contractual communication, names contact persons) and payment data (e.g., bank details, payment history).
In principle, we do not process specific categories of personal data, unless these are components of commissioned or contractual processing.
We process data that are necessary for the establishment and fulfilment of the contractual services and indicate the necessity of their disclosure, unless this is evident to the contractual partners. Disclosure to external persons or companies is only made if it is required under a contract. When processing the data provided to us within the scope of an order, we act in accordance with the instructions of the client as well as the legal requirements.
As part of the use of our online services, we may store the IP address and the time of the respective user action. The storage is based on our legitimate interests as well as the interests of the users in the protection against misuse and other unauthorized use. In principle, this data will not be passed on to third parties, unless it is intended to pursue our claims in accordance with the Art. 6 paragraph 1 lit. f. GDPR is required or there is a legal obligation to do so in accordance with Art. 6 paragraph 1 lit. c. GDPR.
The deletion of the data takes place when the data are no longer necessary for the fulfilment of contractual or statutory duty of care as well as for the handling of any warranty and comparable obligations, whereby the need for the retention of the data reviewed every three years; in addition, the statutory retention obligations apply.
Administration, Financial Accounting, Office Organization, Contact Management
We process data within the scope of administrative tasks as well as the organisation of our operations, financial accounting and compliance with legal obligations, such as archiving. In doing so, we process the same data that we process in the context of the provision of our contractual services. The basis for processing is Art. 6 paragraph 1 lit. c. GDPR, Art. 6 paragraph 1 lit. f. GDPR. The processing affects customers, prospects, business partners and website visitors. The purpose and our interest in processing lies in administration, financial accounting, office organization, archiving of data, i.e. tasks related to the maintenance of our business activities, the performance of our tasks and the provision of our services. The erasure of the data with regard to contractual services and contractual communication corresponds to the information provided in these processing activities.
We disclose or transmit data to the tax administration, consultants, such as tax consultants or auditors as well as other fee agencies and payment service providers.
Furthermore, based on our business interests, we store information about suppliers, organizers and other business partners, e.g. for later contact. In principle, we store this majority of company-related data permanently.
Business analysis and market research
In order to operate our business economically, to be able to recognize market trends, wishes of the contractual partners and users, we analyze the data available to us on business transactions, contracts, enquiries, etc. We process inventory data, communication data, contract data, payment data, usage data, metadata on the basis of Art. 6 paragraph 1 lit. f. GDPR, whereby the data subjects include contractual partners, interested parties, customers, visitors and users of our online offer.
The analyses are carried out for the purpose of business evaluations, marketing and market research. In doing so, we can take into account the profiles of registered users with information, e.g. on their services. The analyses serve us to increase user-friendliness, optimize our offer and make it operational. The analyses serve us alone and are not disclosed externally, unless they are anonymous analyses with summarized values.
If these analyses or profiles are personal, they will be deleted or anonymised upon termination of the users, otherwise after two years from the conclusion of the contract. In addition, the macroeconomic analyses and general trends are compiled anonymously, if possible.
Provision of our statutory and business-based services
We process the data of our members, supporters, interested parties, customers or other persons in accordance with Art. 6 paragraph 1 lit. b. GDPR, if we offer them contractual services or act within the framework of existing business relations, e.g. towards members, or are themselves recipients of services and grants. In addition, we process the data of data subjects in accordance with Art. 6 paragraph 1 lit. f. GDPR based on our legitimate interests, e.g. administrative tasks or public relations.
The data processed here, the nature, scope and purpose and necessity of its processing shall be determined by the underlying contractual relationship. This generally includes the personal data (e.g., name, address, etc.), as well as the contact data (e.g., e-mail address, telephone, etc.), the contract data (e.g., services used, communicated content and information, names of contact persons) and if we offer paid services or products, payment data (e.g., bank details, payment history, etc.).
We delete data that is no longer necessary for the provision of our statutory and business purposes. This is determined according to the respective tasks and contractual relations. In the case of business processing, we retain the data for as long as it may be relevant for business transactions as well as with regard to any warranty or liability obligations. The need to retain the data shall be reviewed every three years; in addition, the statutory retention obligations apply.
Registration function
Users can create a user account. In the course of registration, the required mandatory information shall be communicated to the users and, on the basis of Art. 6 paragraph 1 lit. b GDPR for the purpose of providing the user account. The data processed includes in particular the login information (name, password and an e-mail address). The data entered during the registration process will be used for the purposes of using the user account and its purpose.
Users can be informed by e-mail about information that is relevant to their user account, such as technical changes. If users have cancelled their user account, their data will be deleted with regard to the user account, subject to a legal retention obligation. It is the responsibility of users to secure their data before the end of the contract if they have been terminated. We are entitled to irretrievably delete all data of the user stored during the term of the contract.
As part of the use of our registration and registration functions as well as the use of the user account, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests, as well as the user in protection against misuse and other unauthorized use. In principle, this data will not be passed on to third parties, unless it is necessary for the prosecution of our claims or there is a legal obligation to do so in accordance with the Art. 6 paragraph 1 lit. c. GDPR. The IP addresses will be anonymized or deleted after 7 days at the latest.
Contact
When contacting us (e.g. by contact form, e-mail, telephone or via social media), the user’s details will be used to process the contact enquiry and its handling in accordance with Art. 6 para. 1 lit. b. (in the context of contractual/pre-contractual relationships), Art. 6 para. 1 lit. f. (legitimate interest) GDPR. The user’s details may be stored in a customer relationship management system (‘CRM system’) or comparable enquiry organisation.
We will delete the requests if they are no longer required. We check the necessity every two years; In addition, the statutory archiving obligations apply.
Newsletter
With the following information we inform you about the contents of our newsletter as well as the registration, dispatch and statistical evaluation procedure and your rights of objection. By subscribing to our newsletter, you agree to the reception and the procedures described.
Content of the newsletter: We send newsletters, e-mails and other electronic notifications with advertising information (hereinafter “newsletter”) only with the consent of the recipients or a legal permission. If the contents of the newsletter are specifically defined in the context of a registration for the newsletter, they are decisive for the consent of the users. In addition, our newsletters contain information about our services and us.
Double-opt-in and logging: The registration for our newsletter takes place in a so-called double-opt-in procedure. That is, after registration, you will receive an e-mail requesting confirmation of your registration. This confirmation is necessary so that no one can log in with foreign e-mail addresses. The registrations for the newsletter are logged in order to be able to prove the registration process in accordance with the legal requirements. This includes the storage of the login and confirmation date, as well as the IP address. The changes to your data stored with the shipping service provider are also logged.
Registration details: To sign up for the newsletter, it is sufficient to provide your e-mail address. Optionally, we ask you to provide a name in the newsletter for personal contact.
Rechtsgrundlagen: Der Versand des Newsletters und die mit ihm verbundene Erfolgsmessung erfolgen auf Grundlage einer Einwilligung der Empfänger gem. Art. 6 paragraph 1 lit. a, Art. 7 GDPR in accordance with Section 7 paragraph 2 No. 3 UWG or, if consent is not required, on the basis of our legitimate interests in direct marketing in accordance with Art. 6 paragraph 1 lit. f. GDPR in accordance with § 7 paragraph 3 UWG. The registration procedure is logged on the basis of our legitimate interests in accordance with the Art. 6 paragraph 1 lit. f GDPR. Our interest is directed towards the use of a user-friendly and secure newsletter system that serves both our business interests and meets the expectations of the users and also allows us to prove consent.
Cancellation/revocation – You can cancel the receipt of our newsletter at any time, i.e. revoke your consents. You will find a link to cancel the newsletter at the end of each newsletter. We may store the e-mail addresses for up to three years on the basis of our legitimate interests before deleting them in order to be able to prove a previously given consent. The processing of this data is limited to the purpose of a possible defense against claims. An individual request for deletion is possible at any time, provided that the former existence of consent is confirmed at the same time.
Newsletter – Mailster
The newsletter is sent using the ‘Mailster’ software, a newsletter plug-in from WordPress.org. Further information can be found at https://kb.mailster.co/gdpr/. You can view the data protection provisions of the shipping service provider here: https://mailster.co/legal/privacy-policy/. If you enter data for the purpose of subscribing to the newsletter (e.g. e-mail address), this data will be stored on our company’s server. Mailster states that it does not transfer any data to external servers. The shipping service provider is based on our legitimate interests. Art. 6 paragraph 1 lit. f. GDPR and an order processing contract acc. Art. 28 paragraph 3 sentence 1 GDPR used.
With the help of Mailster, we are able to analyse our newsletter campaigns. For example, we can see whether a newsletter message has been opened. Mailster also allows us to categorise newsletter recipients according to different recipient categories (e.g. place of residence). In this way, the newsletters can be better customised to the respective target groups.
The shipping service provider can process the recipient’s data in pseudonymous form, i.e. use without assignment to a user, to optimize or improve their own services, e.g. use for technical optimization of the dispatch and presentation of the newsletter or for statistical purposes. However, the shipping service provider does not use the data of our newsletter recipients to write to them themselves or to pass the data on to third parties.
Detailed information on the functions of Mailster can be found at the following link: https://mailster.co/.
We have concluded a contract with Mailster in which we oblige Mailster to protect our customers’ data and not to pass it on to third parties.
You can find more details in Mailster’s privacy policy at:https://mailster.co/legal/privacy-policy/.
Collection of access data and log files
We, or our hosting provider, collect data based on our legitimate interests within the meaning of Art. 6 paragraph 1 lit. f. GDPR and collect data about every access to the server on which this service is located (so-called server log files). The access data include the name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider .
For security reasons (e.g. to investigate misuse or fraud), log file information is stored for a maximum of 7 days and then deleted. Data whose further storage is required for evidence purposes are excluded from deletion until the respective incident has been finally clarified.
Online presence in social media
We maintain online presences within social networks and platforms in order to communicate with the customers, interested parties and users active there and to be able to inform them there about our services.
We would like to point out that the data of users can be processed outside the European Union. This can result in risks for the user, because e.g. enforcing users’ rights could be difficult. With regard to US providers that are certified under the Data Privacy Framework, we would like to point out that they thereby undertake to comply with the data protection standards of the EU.
In addition, user data is usually processed for market research and advertising purposes. For example, usage profiles are created from the usage behavior and the resulting interests of the users. The usage profiles can in turn be used to e.g. Place advertisements inside and outside of the platforms that presumably correspond to the interests of the users. For these purposes, cookies are usually stored on the users’ computers, in which the usage behavior and interests of the users are stored. Furthermore, data can be stored in the usage profiles regardless of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).
The processing of users’ personal data takes place on the basis of our legitimate interests in effective information for users and communication with users in accordance with. Art. 6 para. 1 lit. f. GDPR. If the users of the respective providers of the platforms are asked for their consent to the data processing described above, the legal basis for the processing is Art. 6 Paragraph 1 lit. a., Art. 7 GDPR.
For a detailed description of the respective processing and the possibilities of objection (opt-out), we refer to the information provided below by the provider.
Also in the case of requests for information and the assertion of user rights, we would like to point out that these can be most effectively asserted by the providers. Only the providers have access to user data and can take appropriate measures and provide information directly. If you still need help, you can contact us.
– Facebook, pages, groups, (Meta Platforms Ireland Limited, Merrion Road, Dublin 4, Ireland)
on the basis of an agreement on joint processing of personal data – Privacy Policy: https://www.facebook.com/privacy/center/, specifically for pages: https://www.facebook.com/legal/terms/information_about_page_insights_data , Opt-Out: https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com, Data Privacy Framework: https://www.dataprivacyframework.gov/list.
– Google/ YouTube (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) – privacy policy: https://policies.google.com/privacy, Opt-Out: https://adssettings.google.com/authenticated, Data Privacy Framework: https://www.dataprivacyframework.gov/list.
– Instagram (Meta Platforms Ireland Limited, Merrion Road, Dublin 4, Ireland) – Privacy Policy/ Opt-Out: https://privacycenter.instagram.com/.
Integration of third-party services and content – plug-ins & tools
We use content or service offers from third-party providers within our online offer based on our legitimate interests (ie interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 Paragraph 1 lit. f. GDPR Services such as Include videos or fonts (hereinafter referred to as “content”).
This always presupposes that the third-party providers of this content perceive the IP address of the user, since without the IP address they could not send the content to their browser. The IP address is therefore required to display this content. We endeavor to only use content whose respective providers only use the IP address to deliver the content. Third-party providers can also use so-called pixel tags (invisible graphics, also known as “web beacons”) for statistical or marketing purposes. The “pixel tags” can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information can also be stored in cookies on the user’s device and contain, among other things, technical information about the browser and operating system, referring websites, time of visit and other information on the use of our online offer, as well as being linked to such information from other sources.
Youtube
We integrate the videos from the “YouTube” platform from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Privacy Policy: https://policies.google.com/privacy, Opt-Out: https://adssettings.google.com/authenticated.
Google Web Fonts
This site uses so-called web fonts provided by Google for the standardised display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.
For this purpose, the browser you are using must connect to Google’s servers. As a result, Google becomes aware that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a uniform and appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 paragraph 1 lit. f GDPR.
If your browser does not support web fonts, a standard font will be used by your computer.
Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://www.google.com/policies/privacy/.
Of course, we fulfil all criteria in accordance with Article 25 GDPR and operate our services according to the state of the art. We have received appropriate security guarantees from all processors. Insofar as we act as a processor, we have concluded a contract with our clients in accordance with Art. 28 GDPR. Our employees are trained in accordance with the requirements of the GDPR. We neither pass on personal data nor market it in any other way. Our technology is continuously maintained and meets the requirements of the GDPR (data security, data availability, data minimisation). We regularly review our data protection efforts.