Privacy Policy & Cookies Protecting your privacy is important to us.
We process your personal data only in accordance with the provisions of the EU General Data Protection Regulation (GDPR) and other statutory data protection regulations, in particular the Federal Data Protection Act (BDSG). Of course, all data will be treated confidentially. With the following data protection information, we would like to explain to you in detail how your data is handled when you use our websites.
1. General information about the collection of personal data The collection, processing, and use of personal data for our website is limited to the necessary extent and the necessary data. Personal data can be related to you personally, e.g., B. name, address, email addresses, and user behavior. In addition, we use the widespread SSL (Secure Socket Layer) method on our website in conjunction with the highest level of encryption supported by your web browser. This is usually 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is being transmitted in encrypted form by the closed representation of the key or lock symbol in the lower status bar of your browser.
1.1. Responsible body The responsible body for the collection, processing, and use of your data by Art. 4 (7) GDPR is: LD13 Ltd Prollstrasse 24 86157 Augsburg T +49 (0)151 419 573 74 Email: community@ld13.de
2. Purposes and legal bases for the processing of your personal data as well as further information on specific data processing 2.1. General processing of data from our business partners
2.1.1. Description and scope of data processing For processing business relationships with our business partners (customers, suppliers, other business partners), we also store your data (e.g., email address, postal address, telephone number, etc.). The personal data we collect is used internally by the departments handling the business relationship. If necessary, this data is merged and stored with the data of other orders, inquiries, and business correspondence you transmit to us by other means (fax, post, telephone, etc.) transmitted, merged and stored.
2.1.2. Purposes of data processing We process your data for the purposes that are necessary for the fulfillment of the business relationship between you and us, such as for the following purposes: Preparation of offers to customers for deliveries and services Determination of your prices Internal processing of your order Delivery of the ordered goods Inquiries to our suppliers contract negotiations Clarification of all technical aspects of the products and services from the business relationship payment transactions General business correspondence with you If necessary, we also use the help of service providers (e.g., logistics service providers for shipping the products to banks for payment processing). We will only pass on your data to such third parties to the extent that they are necessary to fulfill these tasks. Our legitimate interest in using external service providers, such as logistics service providers, for shipping your ordered goods is to provide our services as efficiently and effectively as possible and, therefore, as quickly and cost-effectively as possible for you. Third parties who receive personal data from our business partners must comply with data protection regulations. We reserve the right to pass on your data to external service providers to carry out a credit check to safeguard our legitimate interest in securing our claims. We receive information about your previous payment history and credit ratings from these credit agencies. This data enables us to evaluate our business relationship and is used to decide on delivery and protect us against payment defaults.
2.1.3. Legal basis of data processing The legal basis for processing your data is Article 6 Paragraph 1 Clause 1 Letter A and f GDPR. The processing takes place based on implied Consent and the basis of our legitimate interests. Our legitimate interests follow from the stated purposes for data collection. If the business relationship is specifically aimed at concluding a contract, the additional legal basis for the processing is Article 6 (1) sentence one lit. b GDPR.
2.1.4. Duration of storage We store your data for the duration of our business relationship or by the statutory retention periods.
2.2. visiting our websites
2.2.1. Description and scope of data processing Each time our website is accessed, our systems automatically record data and information from the computer system of the accessing computer (personal data that your browser transmits to our server). This also happens if you do not register or otherwise provide us with information, for example, through active input. The following data is continuously collected when you visit our website: The IP address of the user Date and time of the request or access Time zone difference to Greenwich Mean Time (GMT) Content of the request (specific page) Access Status/HTTP Status Code amount of data transferred Website from which the request comes (from which the user's system reaches our website) Website accessed by the user's system through our website Information about the browser type and version used Operating system and its interface Browser software language and version This data is stored in the log files of our system. Storage together with other of your data only takes place occasionally.
2.2.2. Purposes of data processing The storage of the data mentioned, in particular the IP address by our systems, is only temporary for the duration of the session and is necessary to operate and display the website correctly. This processing of your data also serves the purpose of evaluating and continuing to guarantee system security and system stability, as well as other administrative purposes. If your data is stored in our log files, this also only happens to ensure the functionality of our website. In addition, we use the data to optimize and ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not occur in this context. 2.2.3. Legal basis of data processing The legal basis for the processing and temporary storage of your personal data is Article 6, Paragraph 1, Sentence 1 lit. f GDPR. Our legitimate interests follow from the stated purposes for data collection.
2.2.4. Duration of storage Your data will be deleted when they are no longer required to achieve the purpose. In the case of data collection for the website provision, this is the case when the respective session has ended. If your data is stored in log files, this is the case after seven days at the latest. Storage beyond this is only intended in exceptional circumstances, for example, if this is necessary for technical reasons or to improve our systems. In this case, the user's IP addresses are deleted or alienated, so an assignment is no longer possible.
2.2.5. Possibility of objection and elimination The collection of your data for the provision of the website and the possible storage in log files is necessary for the website's operation. There is, therefore, no possibility of objection.
2.3. E-mail contact
2.3.1. Description and scope of data processing It is possible to contact us via the e-mail addresses provided by us. In this case, your data transmitted by e-mail will be stored by us and processed further, in particular, to process your inquiry or the reason for your contacting us. There is no transfer of the data to third parties. The data will only be used to process the conversation.
2.3.2. Legal basis of data processing The legal basis for the processing of your data when sending us an email is Article 6, Paragraph 1, Sentence 1 lit. A and f GDPR. The processing takes place based on implied Consent and the basis of our legitimate interests. If the e-mail contact aims to conclude a contract, the additional legal basis for the processing is Art. 6 (1) sentence one lit. b GDPR.
2.3.3. Purposes of data processing The processing of the personal data of the e-mail sent to us only serves to process your contact with us. If you contact us by e-mail, this is to be the necessary legitimate interest in processing the data by us. The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.
2.3.4. Duration of storage We will delete your data as soon as we no longer need them to achieve the purposes presented. For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with you has ended. The conversation is usually over when it can be inferred from the circumstances that the reason for your contacting us has been finally clarified. The additional personal data collected during the sending process will be deleted after seven days.
2.3.5. Possibility of objection and elimination You can revoke your Consent to processing personal data at any time. If you contact us by email, you can object to storing your data anytime. In such a case, however, the conversation with you may not be able to continue. All personal data that was saved in the course of making contact will be deleted in this case.
2.4. Orders via our online shop (e-shop)
2.4.1. Description and scope of data processing An order of our products via our online sales is only possible for consumers. We also ask you for personal data (name, e-mail address, postal address, telephone number, etc.) for this. The personal data you provide to us here will be used internally by the departments that process your inquiries and orders. If necessary, your data will be merged and saved with the data of further orders that you transmit to us by other means of ordering (fax, post, telephone, ...).
2.4.2. Purposes of data processing We process your data for the purposes necessary to fulfill the business relationship between you and us. We process your data, which you give us for the use of our e-shop offer, for the processing of your inquiries and orders, such as for the following purposes: Checking your access authorization Your use of the shopping cart Determination of your prices Internal processing of your order Delivery of the ordered goods payment transactions marketing measures If necessary, we also use the help of service providers (e.g., logistics service providers for shipping your ordered products to banks for payment processing). We will only pass on your data to such third parties to the extent that they are necessary to fulfill these tasks. Third parties who receive data from our customers are obliged to comply with data protection regulations. Our legitimate interest in using external service providers, such as our logistics service provider, for shipping your ordered goods is to provide our services as efficiently and effectively as possible and, therefore, as quickly and cost-effectively as possible for you. We reserve the right to pass on your data to external service providers to carry out a credit check. We receive information from these credit agencies about your previous payment history and credit ratings. This data enables us to evaluate our customer relationship and is used to decide on delivery and protect us against payment defaults. This is also our legitimate interest.
2.4.3. Legal basis of data processing The legal basis for processing is the conclusion and fulfillment of the purchase contract for the ordered goods, Article 6 Paragraph 1 Letter B and Letter F GDPR. 2.4.4. Duration of storage This data will be deleted when it is no longer required for the execution of the contract (including customer service and warranty) unless we are legally obliged to store it, e.g., due to commercial or tax storage obligations.
2.5. General information on the use of cookies When you visit and use our website, cookies are stored on your computer. Cookies are text files that are stored in the internet browser or by the internet browser on the user's computer system. A cookie can be stored on the user's operating system if a user calls up a website. This cookie contains a characteristic character string that enables the browser to be identified when the website is called up again. Some of them are essential, i.e., they are technically necessary for the operation of our website. Other cookies are used for statistical purposes to, analyze access to our website fo,r marketing purposes, or to be able to offer you the use of external media. Both temporary/session cookies and cookies stored for longer (so-called permanent cookies) are used. Transient cookies are deleted again as soon as you close your browser. Permanent cookies are retained longer but can be manually deleted at any time. Some of the cookies are placed by third parties. The legal basis for data processing when using essential cookies is Article 6 Paragraph 1 Clause 1 Letter f GDPR; when using all other cookies, the legal basis is your Consent by Article 6 Paragraph 1 Clause 1 Letter a GDPR. Suppose we do not process your data based on your explicit Consent. In that case, your data will only be processed to the extent necessary to protect our legitimate interests or the legitimate interests of a third party and not your interests or fundamental rights and freedoms, which require the protection of personal data, predominate. You can find detailed information about the use of the respective cookies, in particular about their purpose, the individual functional duration, and to what extent they are placed by third parties or third parties have access to the data collected via the cookies, in addition to the information provided in our data protection declaration in our " Cookie Settings." Depending on the category of cookies used, you will also find detailed information on the legal basis for the respective data processing here. You can agree to the use of the respective categories of cookies individually. You can also change the Consent you have given at any time under "Cookie Settings" or revoke it from us.
2.5. General information on the use of cookies When you visit and use our website, cookies are stored on your computer. Cookies are text files that are stored in the internet browser or by the internet browser on the user's computer system. A cookie can be stored on the user's operating system if a user calls up a website. This cookie contains a characteristic character string that enables the browser to be identified when the website is called up again. Some of them are essential, i.e., they are technically necessary for the operation of our website. Other cookies are used for statistical purposes to analyze access to our website for marketing purposes or to be able to offer you the use of external media. Both temporary/session cookies and cookies stored for longer (so-called permanent cookies) are used. Transient cookies are deleted again as soon as you close your browser. Permanent cookies are retained for extended periods but can be manually deleted anytime. Some of the cookies are placed by third parties. The legal basis for data processing when using essential cookies is Article 6 Paragraph 1 Clause 1 Letter f GDPR, when using all other cookies, the legal basis is your Consent by Article 6 Paragraph 1 Clause 1 Letter a GDPR. Suppose we do not process your data based on your explicit Consent. In that case, your data will only be processed to the extent necessary to protect our legitimate interests or the legitimate interests of a third party and not your interests or fundamental rights and freedoms, which require the protection of personal data, predominate. You can find detailed information about the use of the respective cookies, in particular about their purpose, the individual functional duration, and to what extent they are placed by third parties or third parties have access to the data collected via the cookies, in addition to the information provided in our data protection declaration in our " Cookie Settings." Depending on the category of cookies used, you will also find detailed information on the legal basis for the respective data processing here. You can agree to the use of the respective categories of cookies individually. You can also change the Consent you have given at any time under "Cookie Settings" or revoke it from us.
3.2. Processing by other bodies If our website links to the websites of other providers or partners, our data protection declaration does not apply to their content. We do not influence these third-party providers' compliance with legal data protection regulations. Information about the data protection of the operators of these pages can be found on the respective websites.
3.3. For legal reasons We will disclose your personal information to companies, organizations, or individuals outside of our business if we have a good faith belief that access to, use, preservation, or disclosure of that information is reasonably necessary to comply, in particular, with any applicable law, regulation or Comply with legal process or an enforceable governmental order.
4. Transfer of your data to a third country or an international organization Unless expressly stated in this data protection declaration, your data will not be transferred to third countries or international organizations.
5. Automated Decision Making Automated decision-making does not take place. Integration of social media plug-ins
6.1. Integration of LinkedIn
6.1.1. Description and scope of data processing Our website uses a social media plug-in from LinkedIn. You can recognize the plug-in and its provider by marking the box above its initials or logo. We use the so-called two-click solution. When you visit our site, no personal data is initially passed on to the provider of the plug-ins or third parties. Only when you click on the marked field and activate it, does the plug-in provider receive the information that you have accessed the corresponding website of our online offer? In this case, the information collected when you visit our website is transmitted to the third-party provider. Since the plug-in provider uses cookies to collect data, we recommend that you check the cookie settings in your browser's security settings and delete all cookies before you click on the provider button. We would like to point out that, according to our information, the data is passed on to the plug-in provider regardless of whether you have an account with the plug-in provider and/or are logged in there. If you are logged in to the plug-in provider, your data collected from us will be assigned directly to your existing account with the plug-in provider. If you press the activated button and e.g. If, for example, you link the page, the plug-in provider also stores this information in your user account and, if necessary, shares it publicly with your contacts.
6.1.2. Purposes of data processing The data is transmitted to the plug-in provider to simplify the use of the plug-in provider's website. With the plug-ins, we offer you the opportunity to interact with social networks and other users so that we can improve our offer and make it more interesting for you as a user.
6.1.3. Consent to the transfer of personal data to a third country Subject to legal or contractual permissions, personal data may only be processed in a third country if the unique requirements of Art. 44 et seq. GDPR are met. The data transfer may be carried out if the European Commission has determined using a decision within the meaning of Art. 45 Para. 1, 3 DS-GVO that an appropriate level of data protection is offered in the third country concerned. Through such so-called adequacy decisions, the European Commission certifies that third countries have data protection that is comparable to the recognized standard in the European Economic Area (a list of these countries and a copy of the adequacy decisions can be found here: https://ec.europa.eu/info/law/ law-topic/data-protection_de). Insofar as data is transferred between the USA and the EU in exceptional cases, it should be pointed out that there is no such adequacy decision for the USA. Therefore, other suitable guarantees would have to exist to ensure that data protection is adequately guaranteed in the USA. This would generally be possible via binding company rules, European Commission standard contractual clauses for protecting personal data, certificates, or recognized codes of conduct. Although LinkedIn has submitted to the corresponding standard contractual clauses of the European Commission, US companies are still obliged to hand over personal data to security authorities without you, as the person concerned can take legal action against this. It can, therefore, not be ruled out that US authorities (e.g., secret services) will process, evaluate, and permanently store your data on US servers for monitoring purposes. We do not influence these processing activities. You may also be unable to assert or enforce your right to information vis-à-vis LinkedIn in the long term. Furthermore, the technical and organizational measures for the protection of personal data at LinkedIn may not fully comply with the requirements of the GDPR in terms of quantity and quality. It is possible that the standard contractual clauses of the European Commission used by LinkedIn do not represent sufficient guarantees within the meaning of Article 46 (2) (a) GDPR. By agreeing to the data collection by LinkedIn, you expressly consent to the data transfer described here. However, above, you have been informed about the possible risks of such data transfers without an adequate decision and suitable guarantees. This Consent can be revoked at any time. A revocation does not affect the legality of the process based on the Consent up to the cancellation.
6.1.4. Legal basis of data processing The legal basis is your explicit and voluntary Consent by Article 6 Paragraph 1 Clause 1 Letter a) GDPR to the processing of your personal data for presentation and advertising purposes.
6.1.5. Duration of storage; Possibility of objection and elimination Our cookies are stored on your computer and transmitted to our site. You, therefore, have control over the use of cookies. By changing the settings in your Internet browser, you can deactivate or restrict the transmission of cookies. You can delete cookies that have already been saved at any time. If you deactivate cookies for our website or delete cookies that have been set, you may no longer be able to use all the website functions to their full extent.
6.1.6. Purposes and legal bases of data processing, duration of storage, Possibility of objection and removal at the plug-in provider We do not influence the data collected and processing operations, nor are we aware of the full scope of data collection, the purposes of processing, and the storage periods. We also need to find out about deleting the collected data by the plug-in provider. However, the plug-in provider may store the data collected about you as usage profiles and use them for advertising, market research, and needs-based design of its website. Such an evaluation is carried out (also for users who are not logged in) to display needs-based advertising and inform other social network users about your activities on our website. You have the right to object to the creation of these user profiles. To exercise, you must contact the respective plug-in provider. Further information on the purpose and scope of the data collection and its processing by the plug-in provider can be found in the provider's data protection declaration. You will also receive further information on your rights and setting options to protect your privacy there.
6.1.7. Further information Further information on the purpose and scope of data collection and processing, as well as more details on your rights in this regard and setting options for protecting your privacy, can be obtained from LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA / LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, and at https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy.
6.2. Integration of Instagram
6.2.1. Description and scope of data processing Our website uses a social media plug-in from Instagram. You can recognize the plug-in and its provider by marking the box above its initials or logo. We use the so-called two-click solution. When you visit our site, no personal data is initially passed on to the provider of the plug-ins or third parties. Only when you click on the marked field and activate it, does the plug-in provider receive the information that you have accessed the corresponding website of our online offer? In this case, the information collected when you visit our website is transmitted to the third-party provider. Since the plug-in provider uses cookies to collect data, we recommend that you check the cookies in your browser's security settings and delete all cookies before you click the provider button. According to our information, we want to point out that the data is passed on to the plug-in provider regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in to the plug-in provider, your data collected from us will be assigned directly to your existing account with the plug-in provider. If you press the activated button, e.g., if you link the page, the plug-in provider also stores this information in your user account and, if necessary, shares it publicly with your contacts.
6.2.2. Purposes of data processing The data is transmitted to the plug-in provider to simplify the use of the plug-in provider's website. With the plug-ins, we offer you the opportunity to interact with social networks and other users so that we can improve our offer and make it more interesting for you as a user.
6.2.3. Consent to the transfer of personal data to a third country Subject to legal or contractual permissions, personal data may only be processed in a third country if the unique requirements of Art. 44 et seq. GDPR are met. The data transfer may be carried out if the European Commission has determined using a decision within the meaning of Art. 45 Para. 1, 3 DS-GVO that an appropriate level of data protection is offered in the third country concerned. Through such so-called adequacy decisions, the European Commission certifies that third countries have data protection that is comparable to the recognized standard in the European Economic Area (a list of these countries and a copy of the adequacy decisions can be found here: https://ec.europa.eu/info/law/ law-topic/data-protection_de). Insofar as data is transferred between the USA and the EU in exceptional cases, it should be pointed out that there is no such adequacy decision for the USA. Therefore, in principle, other suitable guarantees would have to exist to ensure that data protection is adequately guaranteed in the USA. This would generally be possible via binding company rules, European Commission standard contractual clauses for protecting personal data, certificates, or recognized codes of conduct. Although Instagram has submitted to the corresponding standard contractual clauses of the European Commission, US companies are still obliged to hand over personal data to security authorities without you, as the person concerned can take legal action against this. It can, therefore, not be ruled out that US authorities (e.g., secret services) will process, evaluate, and permanently store your data on US servers for monitoring purposes. We do not influence these processing activities. You may also be unable to assert or enforce your right to information vis-à-vis Instagram in the long term. Furthermore, the technical and organizational measures for protecting personal data at Instagram may not fully comply with the requirements of the GDPR in terms of quantity and quality. It is, therefore, possible that the standard contractual clauses of the European Commission used by Instagram do not represent sufficient guarantees within the meaning of Article 46 (2) (a) GDPR. By agreeing to the data collection by Instagram, you expressly consent to the data transfer described here. However, above, you have been informed about the possible risks of such data transfers without an adequate decision and suitable guarantees. This Consent can be revoked at any time. A revocation does not affect the legality of the processing carried out based on the Consent up to the cancellation.
6.2.4. Legal basis of data processing The legal basis is your explicit and voluntary Consent by Article 6 Paragraph 1 Clause 1 Letter a) GDPR to the processing of your data for presentation and advertising purposes.
6.2.5. Duration of storage; Possibility of objection and elimination Our cookies are stored on your computer and transmitted to our site. You, therefore, have control over the use of cookies. By changing the settings in your Internet browser, you can deactivate or restrict the transmission of cookies. You can delete cookies that have already been saved at any time. If you deactivate cookies for our website or delete cookies that have been set, you may no longer be able to use all the website functions to their full extent.
6.2.6. Purposes and legal bases of data processing, duration of storage, Possibility of objection and removal at the plug-in provider We do not influence the data collected and processing operations, nor are we aware of the full scope of data collection, the purposes of processing, and the storage periods. We also need to find out about deleting the collected data by the plug-in provider. However, the plug-in provider may store the data collected about you as usage profiles and use them for advertising, market research, and needs-based design of its website. Such an evaluation is carried out (also for users who are not logged in) to display needs-based advertising and inform other social network users about your activities on our website. You have the right to object to the creation of these user profiles. To exercise, you must contact the respective plug-in provider. Further information on the purpose and scope of the data collection and its processing by the plug-in provider can be found in the provider's data protection declaration. You will also receive further information on your rights and setting options to protect your privacy.
6.2.7. Further information Further information on the purpose and scope of data collection and its processing, as well as further information on your rights in this regard and setting options for protecting your privacy, can be obtained from Instagram LLC, 1601 Willow Rd, Menlo Park, CA 94025, USA. More information about Instagram's social plug-ins is available at the following Internet address: https://help.instagram.com
6.3. Integration of Spotify
6.3.1. Description and scope of data processing Our website uses a social media plug-in from Spotify. You can recognize the plug-in and its provider by marking the box above its initials or logo. We use the so-called two-click solution. When you visit our site, no personal data is initially passed on to the provider of the plug-ins or third parties. Only when you click on the marked field and activate it, does the plug-in provider receive the information that you have accessed the corresponding website of our online offer? In this case, the information collected when you visit our website is transmitted to the third-party provider. Since the plug-in provider uses cookies to collect data, we recommend that you check the cookies in your browser's security settings and delete all cookies before you click the provider button. According to our information, we want to point out that the data is passed on to the plug-in provider regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in to the plug-in provider, your data collected from us will be assigned directly to your existing account with the plug-in provider. If you press the activated button, e.g., for example, you link the page; the plug-in provider also stores this information in your user account and, if necessary, shares it publicly with your contacts.
6.3.2. Purposes of data processing The data is transmitted to the plug-in provider to simplify the use of the plug-in provider's website. With the plug-ins, we offer you the opportunity to interact with social networks and other users so that we can improve our offer and make it more interesting for you as a user.
6.3.3. Consent to transferring personal data to a third country Subject to legal or contractual permissions, personal data may only be processed in a third country if the unique requirements of Art. 44 et seq. GDPR are met. The data transfer may be carried out if the European Commission has determined using a decision within the meaning of Art. 45 Para. 1, 3 DS-GVO that an appropriate level of data protection is offered in the third country concerned. Through such so-called adequacy decisions, the European Commission certifies that third countries have data protection that is comparable to the recognized standard in the European Economic Area (a list of these countries and a copy of the adequacy decisions can be found here: http://ec.europa.eu/justice/data- protection/international-transfers/adequacy/index_en.html). Insofar as data is transferred between the USA and the EU in exceptional cases, it should be pointed out that there is no such adequacy decision for the USA. Therefore, in principle, other suitable guarantees would have to exist to ensure that data protection is adequately guaranteed in the USA. This would generally be possible via binding company rules, European Commission standard contractual clauses for protecting personal data, certificates, or recognized codes of conduct. Although Spotify has submitted to the corresponding standard contractual clauses of the European Commission, US companies are still obliged to hand over personal data to security authorities without you, as the person concerned, being able to take legal action against this. It can, therefore, not be ruled out that US authorities (e.g., secret services) will process, evaluate, and permanently store your data on US servers for monitoring purposes. We do not influence these processing activities. You may also be unable to assert or enforce your right to information vis-à-vis Spotify in the long term. Furthermore, the technical and organizational measures for protecting personal data at Spotify may not fully comply with the requirements of the GDPR in terms of quantity and quality. It is, therefore, possible that the standard contractual clauses of the European Commission used by Spotify do not represent sufficient guarantees within the meaning of Article 46 (2) (a) GDPR. By agreeing to the data collection by Spotify, you expressly consent to the data transfer described here, having been informed above about the possible risks of such data transfers without the existence of an adequacy decision and without suitable guarantees. This Consent can be revoked at any time. A revocation does not affect the legality of the processing carried out based on the Consent up to the cancellation.
6.3.4. Legal basis of data processing
The legal basis is your explicit and voluntary Consent by Article 6 Paragraph 1 Clause 1 Letter a) GDPR to the processing of your data for presentation and advertising purposes.
6.3.5. Duration of storage; Possibility of objection and elimination Our cookies are stored on your computer and transmitted to our site. You, therefore, have control over the use of cookies. By changing the settings in your Internet browser, you can deactivate or restrict the transmission of cookies. You can delete cookies that have already been saved at any time. If you deactivate cookies for our website or delete cookies that have been set, you may no longer be able to use all the website functions to their full extent.
6.3.6. Purposes and legal bases of data processing, duration of storage, Possibility of objection and removal at the plug-in provider We do not influence the data collected and processing operations, nor are we aware of the full scope of data collection, the purposes of processing, and the storage periods. We also need to find out about deleting the collected data by the plug-in provider. However, the plug-in provider may store the data collected about you as usage profiles and use them for advertising, market research, and needs-based design of its website. Such an evaluation is carried out (also for users who are not logged in) to display needs-based advertising and inform other social network users about your activities on our website. You have the right to object to the creation of these user profiles. To exercise, you must contact the respective plug-in provider. Further information on the purpose and scope of the data collection and its processing by the plug-in provider can be found in the provider's data protection declaration. You will also receive further information on your rights and setting options to protect your privacy.
6.3.7. Further information
Further information on the purpose and scope of data collection and processing, as well as further information on your rights in this regard and setting options to protect your privacy, can be obtained from Spotify Spotify AB, Regeringsgatan 19,111 53 Stockholm, Sweden, and at https://www.spotify.com /en/legal/privacy-policy/
7. Integration of marketing and statistical tools
7.1. Integration of Google Analytics
7.1.1. Description and scope of data processing This website uses Google Analytics, a web analytics service provided by Google Ireland Limited Gordon House, Barrow Street Dublin 4 (from now on: Google). Google Analytics uses cookies, enabling an analysis of your website use. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. Suppose IP anonymization is activated on this website (see below). In that case, your IP address will be shortened beforehand by Google within European Union member states or other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and then shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity, and to provide other services related to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You can prevent the storage of cookies by setting your browser software accordingly; we would like to point out that, in this case, you will not be able to use all functions of this website in full, if applicable. You can also prevent the data generated by the cookie and related to your use of the website (including your IP address) from being sent to Google and the processing of this data by Google by using the browser plug-in available under the following link. Download and install it: https://tools.google.com/dlpage/gaoptout?hl=de. Google Analytics is used on this website with the extension "_anonymizeIp()." As a result, IP addresses are further processed in abbreviated form, and personal reference can thus be ruled out. If the data collected about you has a personal connection, this will be excluded immediately, and the personal data will be deleted immediately.
7.1.2. Purposes of data processing
We use Google Analytics to analyze and regularly improve our website. We can use the statistics obtained to improve our offer and make it more interesting for you.
7.1.3. Consent to the transfer of personal data to a third country Subject to legal or contractual permissions, personal data may only be processed in a third country if the unique requirements of Art. 44 et seq. GDPR are met. The data transfer may be carried out if the European Commission has determined using a decision within the meaning of Art. 45 Para. 1, 3 DS-GVO that an appropriate level of data protection is offered in the third country concerned. Through such so-called adequacy decisions, the European Commission certifies that third countries have data protection that is comparable to the recognized standard in the European Economic Area (a list of these countries and a copy of the adequacy decisions can be found here: https://ec.europa.eu/info/law/ law-topic/data-protection_de). Insofar as data is transferred between the USA and the EU in exceptional cases, it should be pointed out that there is no such adequacy decision for the USA. Therefore, in principle, other suitable guarantees would have to exist to ensure that data protection is adequately guaranteed in the USA. This would generally be possible via binding company rules, European Commission standard contractual clauses for protecting personal data, certificates, or recognized codes of conduct. Although Google has submitted to the corresponding standard contractual clauses of the European Commission, US companies are still obliged to hand over personal data to security authorities without you, as the person concerned, being able to take legal action against this. It can, therefore, not be ruled out that US authorities (e.g., secret services) will process, evaluate, and permanently store your data on US servers for monitoring purposes. We do not influence these processing activities. You may also need help to assert or enforce your right to information against Google in the long term. Furthermore, the technical and organizational measures for protecting personal data at Google may only partially comply with the requirements of the GDPR in terms of quantity and quality. It is, therefore, possible that the standard contractual clauses of the European Commission used by Google do not represent sufficient guarantees within the meaning of Article 46 (2) (a) GDPR. By agreeing to the data collection by Google Analytics, you expressly consent to the data transfer described here. However, above, you have been informed about the possible risks of such data transfers without an adequate decision and suitable guarantees. This Consent can be revoked at any time. A revocation does not affect the legality of the processing carried out based on the Consent up to the cancellation.
7.1.4. Legal basis of data processing
The legal basis is your explicit and voluntary Consent per Article 6 Paragraph 1 Clause 1 Letter a) GDPR to the processing of your personal data for analysis and statistics on user behavior using Google Analytics.
7.1.5. Further information
You can obtain further information on the purpose and scope of data collection and its processing as well as more details on your rights in this regard and setting options for protecting your privacy from Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: + 353 (1) 436 1001. User conditions: https://marketingplatform.google.com/about/analytics/terms/de/, as well as the data protection declaration: https://policies.google.com/privacy?hl=de&gl=de 8. Use of Google Web Fonts
8.1. Description, scope, and purpose of data processing
This site uses so-called web fonts provided by Google Ireland Limited, Gordon House, Barrow Street Dublin 4, for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache to display text and fonts correctly. For this purpose, your browser must connect to the Google servers. This gives Google knowledge that our website was accessed via your IP address. Google Web Fonts are used in the interest of a uniform and appealing presentation of our online offering. If your browser does not support web fonts, a standard font will be used by your computer.
8.2. Consent to the transfer of personal data to a third country
Subject to legal or contractual permissions, personal data may only be processed in a third country if the unique requirements of Art. 44 et seq. GDPR are met. The data transfer may be carried out if the European Commission has determined using a decision within the meaning of Art. 45 Para. 1, 3 DS-GVO that the third country in question offers appropriate protection under data protection law. Through such so-called adequacy decisions, the European Commission certifies that third countries have data protection that is comparable to the recognized standard in the European Economic Area (a list of these countries and a copy of the adequacy decisions can be found here: https://ec.europa.eu/info/law/ law-topic/data-protection_de). Insofar as data is transferred between the USA and the EU in exceptional cases, it should be pointed out that there is no such adequacy decision for the USA. Therefore, in principle, other suitable guarantees would have to exist to ensure that data protection is adequately guaranteed in the USA. This would generally be possible via binding company rules, European Commission standard contractual clauses for protecting personal data, certificates, or recognized codes of conduct. Although Google has submitted to the corresponding standard contractual clauses of the European Commission, US companies are still obliged to hand over personal data to security authorities without you, as the person concerned, being able to take legal action against this. It can, therefore, not be ruled out that US authorities (e.g., secret services) will process, evaluate, and permanently store your data on US servers for monitoring purposes. We have no influence on these processing activities. It may also be the case that you cannot assert or enforce your right to information against Google in the long term. Furthermore, the technical and organizational measures for protecting personal data at Google may only partially comply with the requirements of the GDPR in terms of quantity and quality. It is, therefore, possible that the standard contractual clauses of the European Commission used by Google do not represent sufficient guarantees within the meaning of Article 46 (2) (a) GDPR. By agreeing to the data collection by Google, you expressly consent to the data transfer described here. However, above, you have been informed about the possible risks of such data transfers without an adequate decision and suitable guarantees. This Consent can be revoked at any time. A revocation does not affect the legality of the processing carried out based on the Consent up to the cancellation.
8.3. Legal basis for data processing
The legal basis is your explicit and voluntary Consent by Article 6 Paragraph 1 Clause 1 Letter a) GDPR to the processing of your data for the uniform display of fonts using Google Web Fonts. 8.4. Further information Further information on Google Web Fonts can be found at Google Ireland Limited Gordon House, Barrow Street Dublin 4 and at https://developers.google.com/fonts/faq and in Google's data protection declaration: https://policies.google.com /privacy?hl=de&gl=de 9. Adobe Typekit integration
9.1. Description, scope, and purpose of data processing
The script code "Adobe Typekit" from Adobe Systems Software Ireland, 4-6, Riverwalk Drive, Citywest Business Campus, Cooldown Commons, Dublin 24, D24 DCW0, Ireland (from now on: Adobe) is integrated on this website. In this context, a connection is established between your browser and the Adobe servers. This gives Adobe knowledge that our website was accessed via your IP address.
9.2. Consent to the transfer of personal data to a third country
Subject to legal or contractual permissions, personal data may only be processed in a third country if the unique requirements of Art. 44 et seq. GDPR are met. The data transfer may be carried out if the European Commission has determined using a decision within the meaning of Art. 45 Para. 1, 3 DS-GVO that the third country in question offers appropriate protection under data protection law. Through such so-called adequacy decisions, the European Commission certifies that third countries have data protection that is comparable to the recognized standard in the European Economic Area (a list of these countries and a copy of the adequacy decisions can be found here: https://ec.europa.eu/info/law/ law-topic/data-protection_de). Insofar as data is transferred between the USA and the EU in exceptional cases, it should be pointed out that there is no such adequacy decision for the USA. Therefore, in principle, other suitable guarantees would have to exist to ensure that data protection is adequately guaranteed in the USA. This would generally be possible via binding company rules, European Commission standard contractual clauses for protecting personal data, certificates, or recognized codes of conduct. Although Adobe has submitted to the corresponding standard contractual clauses of the European Commission, US companies are still obliged to hand over personal data to security authorities without you, as the person concerned can take legal action against this. It can, therefore, not be ruled out that US authorities (e.g., secret services) will process, evaluate, and permanently store your data on US servers for monitoring purposes. We do not influence these processing activities. You may also be unable to assert or enforce your right to information against Adobe in the long term. Furthermore, the technical and organizational measures for protecting personal data at Adobe may only partially comply with the requirements of the GDPR in terms of quantity and quality. It is, therefore, possible that the standard contractual clauses of the European Commission used by Adobe do not represent sufficient guarantees within the meaning of Article 46 (2) (a) GDPR. By consenting to the data collection by Adobe, you expressly agree to the data transfer described here, whereby you have been informed above about the possible risks of such data transfers without the existence of an adequacy decision and without suitable guarantees. This Consent can be revoked at any time. A revocation does not affect the legality of the processing carried out based on the Consent up to the cancellation. 9.3. Legal basis for data processing The legal basis is your explicit and voluntary Consent by Article 6 Paragraph 1 Clause 1 Letter a) GDPR to the processing of your data for Adobe's uniform display of fonts.
9.4. Further information
For more information about Adobe, visit Adobe Systems Software Ireland, 4-6, Riverwalk Drive, Citywest Business Campus, Cooldown Commons, Dublin 24, D24 DCW0, Ireland and Adobe Systems Incorporated 345 Park Avenue San Jose, CA 95110-2704, USA and at https://www.adobe.com/de/privacy.html.
10. Your Rights
You have the right: To request information about your data processed by us by Art. 15 GDPR. In particular, you can obtain information about the processing purposes, the category of personal data, the types of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to correction, deletion, restriction of processing or objection, the existence of a Right to complain, the origin of your data, if not collected from us, and the presence of automated decision-making including profiling and, if necessary, meaningful information about their details; by Art. 16 GDPR, to immediately request the correction of incorrect or incomplete personal data stored by us; According to Art. 17 GDPR, to request the deletion of your data stored by us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest, or to assert, exercise or defend legal claims is required; under Art. 18 GDPR to request the restriction of the processing of your data if you dispute the accuracy of the data, the processing is unlawful, but you refuse to delete it, and we no longer need the data, but you use them to assert, exercise or defense of legal claims or you have objected to the processing by Art. 21 GDPR; by Art. 20 GDPR, to receive the data that you have provided to us in a structured, standard, and machine-readable format or to request transmission to another person responsible; under Art. 7 Para. 3 GDPR, to revoke the Consent you have given us at any time (see also Section 7.1). As a result, we are no longer allowed to continue the data processing based on this Consent for the future and to complain to a supervisory authority by Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual residence, work, or our company headquarters. by Art. 16 GDPR, to immediately request the correction of incorrect or incomplete personal data stored by us; According to Art. 17 GDPR, to request the deletion of your data stored by us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest, or to assert, exercise or defend legal claims is required; under Art. 18 GDPR to request the restriction of the processing of your data if you dispute the accuracy of the data, the processing is unlawful, but you refuse to delete it, and we no longer need the data, but you use them to assert, exercise or defense of legal claims or you have objected to the processing by Art. 21 GDPR; in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, standard, and machine-readable format or to request transmission to another person responsible; under Art. 7 Para. 3 GDPR, to revoke the Consent you have given us at any time (see also Section 7.1).
As a result, we are no longer allowed to continue the data processing based on this Consent for the future and to complain to a supervisory authority by Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual residence, work, or our company headquarters.