Privacy Policy

Data protection at a glance

This data protection declaration informs you about the type, scope and purpose of the processing of personal data (hereinafter referred to as “data”) within our online offer and the websites, functions and content associated with it, as well as external online presences, such as our social media profiles (hereinafter jointly referred to as “online offer”).
With regard to the terminology used, such as “personal data” or its “processing”, we refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).

Data collection on this website

Who is responsible for data collection on this website?
Data processing on this website is carried out by the website operator. You can find the contact details in the Legal Notice on this website.

How do we collect your data?
Your data is collected by you providing it to us. This can be, for example, data provided by you during the ordering process in the online shop or by entering in a contact form.
Other data is collected automatically by our IT systems while you visit our website. This is mainly technical data (e.g. internet browser, operating system or time of visit). This data is collected automatically as soon as you enter our website.

What do we use your data for?
Some of the data is collected to ensure error-free provision of the website. Other data may be used to analyze your user behavior. Personal data that you voluntarily provide to us is used to process your order in the online shop (e.g. passing on your data to our shipping service provider) or your inquiry, or to send you our newsletter.

What rights do you have regarding your data?
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have a right to request the correction, blocking or deletion of this data. For this purpose, as well as for further questions on the subject of data protection, you can contact us at any time at the address given in the imprint. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
You also have the right to request the restriction of the processing of your personal data under certain circumstances. For details, please refer to the privacy policy under “Right to restriction of processing”.

Analysis tools and third-party tools
When visiting our websites, your surfing behavior may be statistically analyzed. This is done primarily with cookies and with so-called analysis programs. The analysis of your surfing behavior is usually anonymous; the surfing behavior cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. You can find detailed information on this in the following privacy policy.

You can object to this analysis. We will inform you about the objection options in this privacy policy.

Hosting

We host our website with IONOS. The provider is IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany (hereinafter: “IONOS”). When you visit our website, IONOS collects various log files including your IP addresses.
For more information, please refer to the IONOS privacy policy: https://www.ionos.de/terms-gtc/terms-privacy.
The use of IONOS is based on Art. 6 (1) lit. f GDPR. We have a legitimate interest in ensuring that our website is presented as reliably as possible. Insofar as a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 (1) lit. a GDPR; the consent can be revoked at any time.

Order processing
We have concluded an order processing agreement (AVV) with the above-mentioned provider.
This is a contract required by data protection law, which ensures that this provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

General information

The operators of these website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
When you use this website, various personal data are collected. Personal data is data with which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.

Controller / data processor
The responsible party for the data processing of our websites is:
Anja Schäfer
Deutwanger Str. 21
78355 Hohenfels
Germany
Phone: +49 (0) 7775 9394407
E-mail: contact@venus-spirit.com

The responsible party is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses or similar).

SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Changes and updates to the privacy policy
We ask you to regularly inform yourself about the content of our data protection declaration. We will adjust the privacy policy as soon as the changes in the data processing carried out by us make it necessary. We will inform you as soon as the changes require an act of cooperation on your part (e.g. consent) or other individual notification.

Your rights

Right to information (pursuant to Art. 15 GDPR)
In particular, you have the right to obtain information about your personal data processed by us, the purposes of processing, the categories of personal data processed, the recipients or categories of recipients to whom your data have been or will be disclosed, the planned storage period or the criteria for determining the storage period, the existence of a right to rectification, erasure, restriction of processing, objection to processing, complaint to a supervisory authority, the origin of your data if it has not been collected from you by us, the existence of automated decision-making, including profiling, and, where applicable, meaningful information about the logic involved and the implications for you and the intended effects of such processing, as well as your right to be informed about the safeguards pursuant to Article 46 of the GDPR in case of onward transfer of your data to third countries.

Right to rectification (pursuant to Art. 16 GDPR)
You have the right to have any inaccurate data relating to you corrected without delay and/or to have any incomplete data stored by us completed.

Right to deletion (pursuant to Art. 17 GDPR)
You have the right to demand the deletion of your personal data if the conditions of Art. 17 (1) GDPR are met. However, this right does not exist in particular if the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the assertion, exercise or defense of legal claims.

Right to restriction of processing (in accordance with Art. 18 GDPR)
You have the right to request the restriction of the processing of your personal data as long as the accuracy of your data disputed by you is being verified, if you refuse the deletion of your data due to unlawful data processing and instead request the restriction of the processing of your data, if you require your data for the assertion, exercise or defense of legal claims after we no longer need this data after the purpose has been achieved, or if you have lodged an objection for reasons relating to your particular situation as long as it has not yet been determined whether our legitimate grounds prevail.

Right to information (in accordance with Art. 19 GDPR)
If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to inform all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort. You have the right to be informed about these recipients.

Right to data portability (pursuant to Art. 20 GDPR)
You have the right to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller, insofar as this is technically feasible.

Right to revoke consent given (pursuant to Art. 7 (3) GDPR)
You have the right to revoke consent to the processing of data, once given, at any time with effect for the future. In the event of revocation, we will immediately delete the data concerned, unless further processing can be based on a legal basis for processing without consent. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

Right to lodge a complaint (pursuant to Art. 77 GDPR)
If you believe that the processing of personal data concerning you infringes the GDPR, you have – without prejudice to any other administrative or judicial remedy – the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, workplace or the place of the alleged infringement. The competent supervisory authority in matters of data protection law is the state data protection commissioner of the federal state in which our company is based. A list of data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

Right of objection (pursuant to Art. 21 GDPR)
If, in the context of a balancing of interests, we process your personal data on the basis of our overriding legitimate interest, you have the right to object to this processing with effect for the future at any time on grounds arising from your particular situation.
If you exercise your right to object, we will stop processing the data concerned. However, we reserve the right to continue processing if we can demonstrate compelling legitimate grounds for the processing that override your interests, fundamental rights and freedoms, or if the processing serves the purpose of asserting, exercising or defending legal claims.
If your personal data is processed by us for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing. You can exercise the objection as described above.

Data protection officer

Anja Schäfer
Deutwanger Str. 21
78355 Hohenfels
Germany
Phone: +49 (0) 7775 9394407
E-mail: contact@omnec-onec.com

Data collection on our website

Scope of the processing of personal data
We collect, process and use personal data only to the extent that they are necessary for the establishment, content or modification of the legal relationship (inventory data). This is done on the basis of Art. 6 (1) lit. b GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures. We collect, process and use personal data about the use of our Internet pages (usage data) only insofar as this is necessary to enable the user to use the service or to bill the user.
The collected customer data will be deleted after completion of the order or termination of the business relationship. Legal retention periods remain unaffected.

Legal basis for the processing of personal data
In the following, we share the legal bases of the Basic Data Protection Regulation (GDPR), on the basis of which we process personal data. Please note that in addition to the regulations of the GDPR, the national data protection regulations in your or our country of residence and domicile may apply.

  • Consent (Art. 6 (1) p. 1 lit. a GDPR) – The data subject has given his/her consent to the processing of personal data relating to him/her for a specific purpose or purposes.
  • Performance of a contract and pre-contractual requests (Art. 6 para. 1 p. 1 lit. b. GDPR) – Processing is necessary for the performance of a contract to which the data subject is party or for the performance of pre-contractual measures carried out at the data subject’s request.
  • Legal obligation (Art. 6 (1) p. 1 lit. c. GDPR) – Processing is necessary for compliance with a legal obligation to which the controller is subject.
  • Protection of vital interests (Art. 6 (1) p. 1 lit. d. GDPR) – Processing is necessary to protect the vital interests of the data subject or another natural person.
  • Legitimate interests (Art. 6 (1) p. 1 lit. f. GDPR) – Processing is necessary to protect the legitimate interests of the controller or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data.

National data protection regulations in Germany:
In addition to the data protection regulations of the General Data Protection Regulation, national regulations on data protection apply in Germany. These include, in particular, the Act on Protection against Misuse of Personal Data in Data Processing (Federal Data Protection Act – BDSG). In particular, the BDSG contains special regulations on the right to information, the right to erasure, the right to object, the processing of special categories of personal data, processing for other purposes and transmission, as well as automated decision-making in individual cases, including profiling. Furthermore, it regulates data processing for employment purposes (Section 26 BDSG), in particular with regard to the establishment, implementation or termination of employment relationships as well as the consent of employees. Furthermore, state data protection laws of the individual federal states may apply.

Disclosure of personal data to third parties and order processors
If, in the course of our processing, we disclose data to other persons and companies (order processors or third parties), transmit it to them or otherwise grant them access to the data, this will only be done on the basis of a legal permission (e.g. if a transmission of data to third parties, such as payment service providers, is necessary for the performance of the contract pursuant to Art. 6 (1) lit. b GDPR), you have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).
If we commission third parties to process data on the basis of a so-called “order processing agreement”, this is done on the basis of Art. 28 GDPR.

Data transfer to the USA and other third countries
Among other things, we use tools from companies based in the USA or other third countries that are not secure under data protection law. If these tools are active, your personal data may be transferred to these third countries and processed there. We would like to point out that no level of data protection comparable to that in the EU can be guaranteed in these countries. For example, US companies are obliged to hand over personal data to security authorities without you as a data subject being able to take legal action against this. It can therefore not be ruled out that US authorities (e.g. intelligence services) process, evaluate and permanently store your data located on US servers for monitoring purposes. We have no influence on these processing activities.

Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • browser type and browser version
  • Operating system used
  • referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address

This data is not merged with other data sources.
The basis for data processing is Art. 6 (1) lit. b GDPR, which permits the processing of data for the fulfillment of a contract or pre-contractual measures.

Contact forms and contact by e-mail or telephone
If you send us inquiries via contact form or contact us via e-mail or telephone, the information you provide in the form or your inquiry via e-mail or telephone, including all resulting personal data (name, e-mail address, etc.), will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not pass this data on to third parties without your consent.

The data you provide in the contact form, e-mail or by telephone will remain with us until you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies (e.g. after we have completed processing your inquiry). Mandatory legal provisions – in particular retention periods – remain unaffected.

The processing of this data is based on Art. 6 (1) lit. b GDPR, if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6 para. 1 lit. a GDPR) and / or on our legitimate interests (Art. 6 para. 1 lit. f GDPR), as we have a legitimate interest in the effective processing of requests addressed to us.

Online shop

If you want to order goods in our online store, we ask for certain personal data (name, first name, address, payment data, e-mail address). We store the data you provide and use it to process the order. If you create a password-protected customer account, it contains an overview of orders placed and active order transactions. We use address data for shipping the order and share it with the external shipping company for this purpose. If you want to pay via PayPal, after clicking the “Place order” button in the store, you will be redirected to the PayPal website, where you can complete the transaction as usual. We do not receive your account details and are only informed about the successful payment. If you wish to pay by SEPA direct debit, we will only use your account details to make the payment for your order.
The data transmission in our online store is secured by SSL!

Cookies

In order to make the visit to our website attractive and to enable the use of certain functions, we use so-called cookies on various pages. These are small text files that are stored on your terminal device. Some of the cookies we use are deleted after the end of the browser session, i.e. after you close your browser (so-called session cookies).

Other cookies remain on your terminal device and enable us or our partner companies (third-party cookies) to recognize your browser on your next visit (persistent cookies). If cookies are set, they collect and process certain user information such as browser and location data and IP address values to an individual extent. Persistent cookies are automatically deleted after a specified period of time, which may vary depending on the cookie.

If personal data is also processed by individual cookies implemented by us, the processing is carried out in accordance with Art. 6 (1) lit. f GDPR to protect our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective design of the site visit.

We may work together with advertising partners who help us to make our internet offer more interesting for you. For this purpose, cookies from partner companies are also stored on your hard drive when you visit our website (third-party cookies). If we cooperate with aforementioned advertising partners, you will be informed individually and separately about the use of such cookies and the scope of the information collected in each case within the paragraphs below.
Please note that you can set your browser so that you are informed about the setting of cookies and can decide individually about their acceptance or exclude the acceptance of cookies for certain cases or in general. Each browser differs in the way it manages cookie settings. This is described in the help menu of each browser, which explains how you can change your cookie settings. You can find this for each browser at the following links:
Internet Explorer: https://support.microsoft.com/en-gb/windows/delete-and-manage-cookies-168dab11-0753-043d-7c16-ede5947fc64d
Firefox: https://support.mozilla.org/en-US/kb/block-websites-storing-cookies-site-data-firefox
Chrome: https://support.google.com/chrome/answer/95647?hl=en-GB&hlrm=en
Safari: https://support.apple.com/guide/safari/manage-cookies-sfri11471/mac
Opera: https://help.opera.com/en/latest/web-preferences/#cookies
Please note that if you do not accept cookies, the functionality of our website may be limited.

Newsletter

If you would like to receive the newsletter offered on the website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. Further data is not collected or only on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.
The processing of the data entered in the newsletter registration form is based exclusively on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted after you unsubscribe from the newsletter. Data stored by us for other purposes remain unaffected by this.

Double opt-in and logging
Registration for our newsletter takes place in a so-called double opt-in process. This means that after registration you will receive an e-mail in which you are asked to confirm your registration. This confirmation is necessary so that no one can register with other e-mail addresses.
The registrations for the newsletter are logged in order to be able to prove the registration process according to the legal requirements. This includes the storage of the registration and confirmation time, as well as the IP address. Likewise, changes to your data stored with the shipping service provider are logged.

MailChimp
This website uses the services of MailChimp for sending newsletters. The provider is Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA.

MailChimp is a service with which, among other things, the sending of newsletters can be organized and analyzed. When you enter data for the purpose of receiving newsletters (e.g. e-mail address), this data is stored on MailChimp’s servers in the USA.
MailChimp has a certification according to the EU-US Privacy Shield. The Privacy Shield is an agreement between the European Union (EU) and the USA to ensure compliance with European data protection standards in the USA.

With the help of MailChimp, we can analyze our newsletter campaigns. When you open an email sent with MailChimp, a file contained in the email (so-called web-beacon) connects to MailChimp’s servers in the USA. This makes it possible to determine whether a newsletter message has been opened and which links, if any, have been clicked. In addition, technical information is recorded (e.g. time of retrieval, IP address, browser type and operating system). This information cannot be assigned to the respective newsletter recipient. It is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients.

If you do not want any analysis by MailChimp, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. Furthermore, you can also unsubscribe from the newsletter directly on the website.

The data processing is based on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.

The data you have provided to us for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the servers of MailChimp after you unsubscribe from the newsletter. Data that has been stored by us for other purposes (e.g. e-mail addresses for the member area) remains unaffected by this.

For more details, please refer to the privacy policy of MailChimp at: https://mailchimp.com/legal/terms/.

Conclusion of a data processing agreement
We have concluded a so-called Data Processing Agreement with MailChimp, in which we oblige MailChimp to protect the data of our customers and not to pass it on to third parties. This agreement can be viewed at the following link: https://mailchimp.com/legal/forms/data-processing-agreement/sample-agreement/.

Google Analytics

On our websites, we use Google Analytics, a web analytics service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. In this context, pseudonymized usage profiles are created and cookies are used. The information generated by the cookie about your use of this website will be transmitted to and stored by Google on servers in the United States. The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services associated with the use of the website and the Internet for the purposes of market research and demand-oriented design of these Internet pages. This information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other Google data. The IP addresses are anonymized so that an assignment is not possible (IP masking).

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.

You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on (https://tools.google.com/dlpage/gaoptout?hl=en).

As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent the collection by Google Analytics by clicking on the following link: Disable Google Analytics. An opt-out cookie will be set that prevents future collection of your data when visiting this website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again.

Further information on data protection in connection with Google Analytics can be found here: https://policies.google.com/privacy.

Integration of third-party services and content

It may happen that content or services from third-party providers, such as fonts or videos from other websites, are integrated within our online offer. The integration of third-party content always requires that the third-party providers perceive the IP address of the user, since without the IP address they could not send the content to the user’s browser. The IP address is thus required for the display of this content. In addition, the providers of the third-party content can set their own cookies and process the users’ data for their own purposes. In doing so, user profiles can be created from the processed data. We will use this content in a data-saving and data-avoiding manner as far as possible and select reliable third-party providers with regard to data security.

Google Fonts
This site uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.
For this purpose, the browser you are using must connect to Google’s servers. This enables Google to know that our website has been accessed via your IP address. Google Web Fonts are used in the interest of a uniform and appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR.
If your browser does not support web fonts, a standard font will be used by your computer.
For more information on Google Web Fonts, please visit https://developers.google.com/fonts/faq and see Google’s privacy policy: https://policies.google.com/privacy.

YouTube
Our website uses YouTube functions. The provider of these services is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When you visit our site, a connection to the YouTube servers is established. This transmits to the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you give YouTube the opportunity to assign your user behavior directly to your personal YouTube profile. By logging out of your YouTube account, you can avoid this. The data collected by YouTube is transmitted to the USA, which according to the GDPR is considered a third country with an insecure level of data protection. We have no knowledge about the further processing and about the duration of storage by YouTube.
The legal basis for the processing of the data is our legitimate interest pursuant to Art. 6 (1) lit. f GDPR, as we would like to offer you an appealing and informative website.
For more information on the handling of user data by YouTube, please refer to YouTube’s privacy policy at: https://www.google.de/intl/de/policies/privacy

Google reCAPTCHA
We use Google reCAPTCHA on our websites. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
The purpose of reCAPTCHA is to check whether data entry on our websites (e.g. in a contact form) is made by a human or by an automated program. For this purpose, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent by the website visitor on the website or mouse movements made by the user). The data collected during the analysis is forwarded to Google.
The reCAPTCHA analyses run entirely in the background. Website visitors are not made aware that an analysis is taking place.
The data processing is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its web offers from abusive automated spying and from spam.
For more information on Google reCAPTCHA and Google’s privacy policy, please see the following links: https://www.google.com/intl/de/policies/privacy/ and https://www.google.com/recaptcha/intro/android.html.

Google Maps
We use Google Maps from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. Google Maps is a web service for displaying interactive (land) maps to visually display geographical information. By using this service, our location is shown to you and a possible approach is made easier.
Already when calling up those sub-pages in which the map of Google Maps is integrated, information about your use of our website (such as your IP address) is transmitted to Google servers and stored there, this may also result in a transmission to the servers of Google LLC. in the USA. This occurs regardless of whether Google provides a user account through which you are logged in or whether a user account exists. If you are logged in to Google, your data will be directly assigned to your account. If you do not want the assignment with your profile at Google, you must log out before activating the button. Google stores your data (even for users who are not logged in) as usage profiles and evaluates them. The collection, storage and evaluation are carried out in accordance with Art. 6 para. 1 lit. f GDPR on the basis of Google’s legitimate interest in the display of personalized advertising, market research and / or the design of Google websites to meet the needs. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right.
If you do not agree to the future transmission of your data to Google in the context of the use of Google Maps, you also have the option of completely deactivating the Google Maps web service by turning off the JavaScript application in your browser. Google Maps and thus also the map display on this website can then not be used.
You can view Google’s terms of use at https://www.google.de/intl/de/policies/terms/regional.html, the additional terms of use for Google Maps can be found at https://www.google.com/intl/de_US/help/terms_maps.html.
Detailed information on data protection in connection with the use of Google Maps can be found on the Google website: https://www.google.de/intl/de/policies/privacy/.

PayPal
On our website we offer the payment option via PayPal. The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg.
If you select payment via PayPal, the payment data you enter will be transmitted to PayPal.
The transmission of your data to PayPal is based on Art. 6 para. 1 lit. a GDPR (consent) and Art. 6 para. 1 lit. b GDPR (processing for the performance of a contract). You have the option to revoke your consent to data processing at any time. A revocation does not affect the validity of past data processing operations.
PayPal’s applicable privacy policy can be found at https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

Video conferences, webinars and online meetings

Zoom
We use the provider Zoom Video Communications Inc, San Jose Office, 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA for our video conferences, audio conferences, webinars or other online meetings. This takes place either

  • within the scope of our contractual or pre-contractual legal relationships pursuant to Art. 6 para. 1 lit. b GDPR,
  • within the scope of your consent, provided we have obtained it in advance (such as for a recording) pursuant to Art. 6 para. 1 lit. a GDPR or otherwise
  • in the context of our legitimate interest in a technically flawless online offer and its economically efficient design and optimization pursuant to Art.6 para. 1 lit.f GDPR.

Whenever you use our external communication provider, all data that you provide, enter or display during communication (in particular inventory data such as name and email, usage data such as browser used, websites visited, length of stay, referrer URL and your IP address, content data such as audio and video communication and/or recording, chat history, shared screen content) is transmitted to the external communication provider and stored by it. We ourselves use settings that are as privacy-friendly as possible, and you can also take such precautions. For example, you can log in with aliases or unique email addresses, or (partially) disable your audio and video transmission.
This will result in your data being transferred to the USA. We have concluded a contract with our communications provider in accordance with the standard contractual clauses, in which our provider assures protection of your data in accordance with the GDPR requirements. Furthermore, we have concluded an order processing agreement with the external communications provider, according to which the latter will only process your data in accordance with our instructions.

Your data will remain stored insofar as it is still necessary for the purposes of your consent, for the performance/execution of the contract, for legal prosecution by us or for our other legitimate interests or we are required by law to still retain your data.

Your data will not be passed on to third parties by us or the external communication provider. An exception may be an evaluation of usage data for service and security purposes as well as for marketing purposes by the external communication provider. For further use of your data by the external communications provider, please refer to its terms and conditions https://explore.zoom.us/de/terms/ and the associated privacy policy https://explore.zoom.us/de/privacy/.

Insofar as external communication providers store cookies or other trackers on your computer, we also refer you to our general presentation in this data protection declaration for the general handling and deactivation of cookies.

Social Media

Data processing through social media networks
We maintain publicly accessible profiles on social networks. The social networks used by us in detail can be found below.
Social networks such as Facebook and Instagram can generally analyze your user behavior extensively when you visit their website or a website with integrated social media content (e.g., like buttons or advertising banners). Visiting our social media presences triggers numerous processing operations relevant to data protection. In detail:
If you are logged into your social media account and visit our social media presence, the operator of the social media portal can assign this visit to your user account. However, your personal data may also be collected under certain circumstances if you are not logged in or do not have an account with the respective social media portal. In this case, this data collection takes place, for example, via cookies that are stored on your end device or by recording your IP address.
With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, you can be shown interest-based advertising inside and outside the respective social media presence. Provided you have an account with the respective social network, the interest-based advertising may be displayed on all devices on which you are or were logged in.
Please also note that we cannot track all processing on the social media portals. Depending on the provider, further processing operations may therefore be carried out by the operators of the social media portals. For details, please refer to the terms of use and data protection provisions of the respective social media portals.

Legal basis
Our social media presences are intended to ensure the most comprehensive presence possible on the Internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR. The analysis processes initiated by the social networks may be based on different legal bases, which are to be specified by the operators of the social networks (e.g. consent within the meaning of Art. 6 (1) lit. a GDPR).

Responsible party and assertion of rights
If you visit one of our social media sites (e.g. Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during this visit. In principle, you can assert your rights (information, correction, deletion, restriction of processing, data portability and complaint) both vis-à-vis us and vis-à-vis the operator of the respective social media portal (e.g. vis-à-vis Facebook).
Please note that despite the joint responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are largely determined by the corporate policy of the respective provider.

Storage period
The data collected directly by us via the social media presence will be deleted from our systems as soon as the purpose for storing it no longer applies, you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies. Stored cookies remain on your terminal device until you delete them. Mandatory legal provisions – in particular retention periods – remain unaffected.
We have no influence on the storage period of your data, which is stored by the operators of social networks for their own purposes. For details, please contact the operators of the social networks directly (e.g. in their privacy policy, see below).

Social networks in detail

Facebook
The provider is Facebook Inc, 1 Hacker Way, Menlo Park, California 94025, USA. Facebook has certification in accordance with the EU-US Privacy Shield.
You can independently adjust your advertising settings in your user account. To do so, click on the following link and log in: https://www.facebook.com/settings?tab=ads
For details, please refer to Facebook’s privacy policy: https://www.facebook.com/about/privacy/

Instagram
The provider is Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA. For details, please refer to Instagram’s privacy policy: https://instagram.com/about/legal/privacy

Telegram
The provider is Telegram Messenger LLP. For details, please refer to Telegram’s privacy policy: https://telegram.org/privacy
Each Telegram user has the option to request a copy of their recorded data: https://t.me/gdprbot

Protection of minors

Our offer is basically aimed at adults. Persons under the age of 16 may not transmit any personal data to us without the consent of their parents or legal guardians.

Objection to advertising e-mails

We hereby object to the use of contact data published within the framework of the imprint obligation to send advertising and information material that has not been expressly requested. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.

Date of the data protection declaration: December 2021

This data protection declaration was created with the help of https://www.e-recht24.de and https://datenschutz-generator.de.