Notice: Diese Seite ist auf englisch.

1. Privacy Police

General Notes

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data are all data with which you can be personally identified. Detailed information on the topic of data protection can be found in the privacy policy below this text.

Data Collection on this Website

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. You can find their contact details in the section "Note on the Responsible Entity" in this privacy policy.

How do we collect your data?

Your data is collected partly by you providing it to us. This may include data that you enter into a contact form.

Other data is automatically collected or collected after your consent by our IT systems when you visit the website. These are primarily technical data (e.g., internet browser, operating system, or time of page view). This data is collected automatically as soon as you enter this website.

What do we use your data for?

Part of the data is collected to ensure error-free provision of the website. Other data can be used to analyze your user behavior.

What rights do you have regarding your data?

You always have the right to obtain free information about the origin, recipients, and purpose of your stored personal data. You also have the right to request the correction or deletion of this data. If you have given consent for data processing, you can revoke this consent at any time for the future. You also have the right to request restriction of the processing of your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.

You can contact us about this at any time, as well as for any other questions regarding data protection.

Analysis Tools and Third-Party Tools

When visiting this website, your surfing behavior may be statistically evaluated. This is done primarily with so-called analysis programs.

Detailed information about these analysis programs can be found in the following privacy policy.

2. Hosting

We host the contents of our website with the following provider:

Squarespace

Provider is Squarespace Ireland Ltd., Le Pole House, Ship Street Great, Dublin 8, Ireland (hereinafter Squarespace).

Squarespace is a tool for creating and hosting websites. When you visit our website, your data will be processed on Squarespace's servers. In this process, personal data may also be transmitted to Squarespace's parent company, Squarespace Inc., 8 Clarkson St, New York, NY 10014, USA. Squarespace also stores cookies that are necessary for displaying the page and ensuring security (necessary cookies).

The use of Squarespace is based on Art. 6 Para. 1 lit. f GDPR. We have a legitimate interest in as reliable a presentation of our website as possible. If a corresponding consent was requested, the processing takes place exclusively on the basis of Art. 6 Para. 1 lit. a GDPR and § 25 Para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information on the end device of the user (e.g., device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.

The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://support.squarespace.com/hc/de/articles/360000851908-DSGVO-und-Squarespace.

The company has a certification under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA that is intended to ensure compliance with European data protection standards in data processing in the USA. Each company certified under the DPF is committed to complying with these data protection standards. You can obtain further information from the provider at the following link: https://www.dataprivacyframework.gov/participant/4774.

Order Processing

We have concluded an order processing agreement (AVV) for the use of the above-mentioned service. This is a data protection-related contract that ensures that the service processes the personal data of our website visitors only according to our instructions and in compliance with the GDPR.

3. General Notes and Mandatory Information

Data Protection

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations and this privacy policy.

When you use this website, various personal data will be collected. Personal data are data with which you can be personally identified. This privacy policy explains which data we collect and what we use it for. It also explains how and for what purpose this occurs.

We would like to point out that data transmission over the Internet (e.g., communication via email) can have security gaps. A comprehensive protection of data from access by third parties is not possible.

Note on the Responsible Entity

The responsible entity for data processing on this website is:

Represented by the Managing Director: Ms. Amrei Lüdemann Kampweg 4 37133 Friedland Germany

The responsible entity is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (such as names, email addresses, etc.).

Storage Duration

Unless a more specific storage duration was specified within this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you assert a legitimate deletion request or revoke consent to data processing, your data will be deleted, unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial law retention periods); in the latter case, deletion will occur after these reasons cease to apply.

General Information on the Legal Bases of Data Processing on this Website

If you have consented to data processing, we process your personal data on the basis of Art. 6 Para. 1 lit. a GDPR or Art. 9 Para. 2 lit. a GDPR, if special categories of data according to Art. 9 Para. 1 GDPR are processed. In the case of explicit consent to the transfer of personal data to third countries, data processing also occurs on the basis of Art. 49 Para. 1 lit. a GDPR. If you have consented to the storage of cookies or access to information on your end device (e.g., via device fingerprinting), data processing additionally occurs on the basis of § 25 Para. 1 TDDDG. Consent can be revoked at any time. If your data is necessary for contract fulfillment or for carrying out pre-contractual measures, we process your data on the basis of Art. 6 Para. 1 lit. b GDPR. Furthermore, we process your data if these are necessary to fulfill a legal obligation on the basis of Art. 6 Para. 1 lit. c GDPR. Data processing can also occur on the basis of our legitimate interest according to Art. 6 Para. 1 lit. f GDPR. The specific legal bases applicable in each individual case will be informed in the following paragraphs of this privacy policy.

Note on Data Transfer to Legally Insecure Third Countries and Transfer to US Companies Not DPF-Certified

We use tools from companies located in legally insecure third countries as well as US tools whose providers are not certified under the EU-US Data Privacy Framework (DPF). When these tools are active, your personal data can be transferred to these countries and processed there. We point out that in legally insecure third countries, no data protection level comparable to the EU can be guaranteed.

We point out that the USA is fundamentally considered a secure third country with a data protection level comparable to the EU. A data transfer to the USA is therefore permissible if the recipient has a certification under the "EU-US Data Privacy Framework" (DPF) or has appropriate additional guarantees. Information on transfers to third countries, including data recipients, can be found in this privacy policy.

Recipients of Personal Data

In the course of our business activities, we work with various external entities. This sometimes requires the transmission of personal data to these external entities. We only pass on personal data to external entities if this is necessary for contract fulfillment, if we are legally obligated to do so (e.g., passing on data to tax authorities), if we have a legitimate interest according to Art. 6 Para. 1 lit. f GDPR in the transfer, or if another legal basis allows the data transfer. When using contract processors, we only pass on personal data of our customers on the basis of a valid contract processing agreement. In the case of joint processing, a joint processing agreement is concluded.

Revocation of Your Consent to Data Processing

Many data processing procedures are only possible with your express consent. You can revoke a consent already given at any time. The legality of data processing carried out up to the revocation remains unaffected.

Right to Object to Data Collection in Special Cases and Against Direct Advertising (Art. 21 GDPR)

IF THE DATA PROCESSING IS BASED ON ART. 6 PARA. 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT AT ANY TIME TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH A PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA CONCERNED UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS, OR THE PROCESSING SERVES THE ESTABLISHMENT, EXERCISE OR DEFENSE OF LEGAL CLAIMS (OBJECTION PURSUANT TO ART. 21 PARA. 1 GDPR).

IF YOUR PERSONAL DATA ARE PROCESSED FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR SUCH MARKETING. THIS ALSO APPLIES TO PROFILING INSOFAR AS IT IS RELATED TO SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE USED FOR THE PURPOSES OF DIRECT MARKETING (OBJECTION PURSUANT TO ART. 21 PARA. 2 GDPR).

Right to Lodge a Complaint with the Competent Supervisory Authority

In the event of violations of the GDPR, those affected have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, workplace, or the place of the alleged violation. The right to lodge a complaint exists without prejudice to other administrative or judicial legal remedies.

Right to Data Portability

You have the right to have data that we process automatically based on your consent or in fulfillment of a contract handed over to you or a third party in a common, machine-readable format. If you request direct transfer of the data to another responsible entity, this will only occur insofar as it is technically feasible.

Information, Correction and Deletion

Within the framework of applicable legal provisions, you always have the right to free information about your stored personal data, their origin and recipients, and the purpose of data processing and, if applicable, a right to correction or deletion of this data. You can contact us about this at any time, as well as for any other questions regarding personal data.

Right to Restriction of Processing

You have the right to request restriction of the processing of your personal data. You can contact us about this at any time. The right to restriction of processing exists in the following cases:

If you dispute the accuracy of your personal data stored with us, we typically need time to verify this. For the duration of the review, you have the right to request restriction of the processing of your personal data.
If the processing of your personal data was/is unlawful, you can request restriction of data processing instead of deletion.
If we no longer need your personal data, but you need them to exercise, defend, or assert legal claims, you have the right to request restriction of the processing of your personal data instead of deletion.
If you have lodged an objection pursuant to Art. 21 Para. 1 GDPR, a balancing of interests must be carried out. As long as it has not yet been determined whose interests prevail, you have the right to request restriction of the processing of your personal data.

If you have restricted the processing of your personal data, these data – apart from their storage – may only be processed with your consent or for the establishment, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a Member State.

SSL or TLS Encryption

For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. An encrypted connection can be recognized by the browser's address bar changing from "http://" to "https://" and by the lock symbol in your browser bar.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Objection to Advertising Emails

We hereby object to the use of contact data published in accordance with the imprint obligation for sending unsolicited advertising and information materials. The site operators expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, such as spam emails.

4. Data Collection on this Website

Cookies

Our websites use so-called "cookies". Cookies are small data packets and do not cause any damage to your end device. They are stored either temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your end device. Session cookies are automatically deleted after the end of your visit. Permanent cookies remain stored on your end device until you delete them yourself or an automatic deletion is performed by your web browser.

Cookies can come from us (first-party cookies) or from third-party companies (so-called third-party cookies). Third-party cookies enable the integration of certain services from third-party companies within websites (e.g., cookies for processing payment services).

Cookies have various functions. Many cookies are technically necessary because certain website functions would not work without them (e.g., the shopping cart function or video display). Other cookies can be used to evaluate user behavior or for advertising purposes.

Cookies that are necessary for carrying out the electronic communication process, for providing certain desired functions (e.g., for the shopping cart function) or for optimizing the website (e.g., cookies for measuring web audience) (necessary cookies) are stored on the basis of Art. 6 Para. 1 lit. f GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of its services. If consent for storing cookies and similar recognition technologies was requested, processing occurs exclusively on the basis of this consent (Art. 6 Para. 1 lit. a GDPR and § 25 Para. 1 TDDDG); consent can be revoked at any time.

You can configure your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or generally, and activate the automatic deletion of cookies when closing the browser. When deactivating cookies, the functionality of this website may be limited.

You can find which cookies and services are used on this website in this privacy policy.

Contact Form

When you send us inquiries via the contact form, your information from the inquiry form, including the contact details you provided, will be stored by us for the purpose of processing the inquiry and for any follow-up questions. We will not pass on this data without your consent.

The processing of this data is based on Art. 6 Para. 1 lit. b GDPR, insofar as your inquiry is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of inquiries directed to us (Art. 6 Para. 1 lit. f GDPR) or on your consent (Art. 6 Para. 1 lit. a GDPR) if this was requested; consent can be revoked at any time.

The data you enter in the contact form will remain with us until you request deletion, revoke your consent to storage, or the purpose of data storage no longer applies (e.g., after completion of your inquiry). Mandatory legal provisions – especially retention periods – remain unaffected.

Inquiry via Email, Telephone, or Fax

If you contact us via email, telephone, or fax, your inquiry, including all personal data resulting from it (name, inquiry), will be stored and processed by us for the purpose of processing your request. We will not pass on this data without your consent.

The data you send to us via contact inquiries will remain with us until you request deletion, revoke your consent to storage, or the purpose of data storage no longer applies (e.g., after completion of your request). Mandatory legal provisions – especially statutory retention periods – remain unaffected.

5. Analysis Tools and Advertising

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics allows the website operator to analyze the behavior of website visitors. In doing so, the website operator receives various usage data, such as page views, duration of stay, operating systems used, and user origin. This data is assigned to the respective end device of the user. No assignment to a user ID occurs.

Furthermore, we can record your mouse and scroll movements and clicks with Google Analytics. Google Analytics also uses various modeling approaches to supplement the captured data sets and employs machine learning technologies in data analysis.

Google Analytics uses technologies that enable user recognition for the purpose of analyzing user behavior (e.g., cookies or device fingerprinting). The information collected by Google about the use of this website is usually transmitted to a Google server in the USA and stored there.

The use of this service is based on your consent according to Art. 6 Para. 1 lit. a GDPR and § 25 Para. 1 TDDDG. Consent can be revoked at any time.

The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/.

The company has a certification under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA intended to ensure compliance with European data protection standards in data processing in the USA. Each company certified under the DPF is committed to complying with these data protection standards. You can obtain further information from the provider at the following link: https://www.dataprivacyframework.gov/participant/5780.

IP Anonymization

Google Analytics IP anonymization is activated. This means your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before transmission to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activities, and to provide additional services related to website and internet usage to the website operator. The IP address transmitted by your browser within the framework of Google Analytics will not be merged with other Google data.

6. Plugins and Tools

Use of Adobe Fonts

External fonts from Adobe Fonts are used on this website. Adobe Fonts is a service of Adobe Systems Incorporated, 345 Park Avenue, San Jose, CA 95110-2704, USA.

When the website is accessed, your browser loads the required web fonts directly from an Adobe server to display texts and fonts correctly. Your IP address is transmitted to Adobe in the process. According to Adobe, no cookies are stored. However, the transmitted IP address can be considered personal data.

The use of Adobe Fonts is based on Art. 6 Para. 1 lit. f GDPR. Our legitimate interest lies in an appealing and consistent presentation of our online offering.

Further information can be found in Adobe's privacy policy: https://www.adobe.com/de/privacy/policies/adobe-fonts.html

Google reCAPTCHA

We use "Google reCAPTCHA" (hereinafter "reCAPTCHA") on this website. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

reCAPTCHA is used to verify whether data entry on this website (e.g., in a contact form) is performed by a human or by an automated program. To do this, reCAPTCHA analyzes the website visitor's behavior based on various characteristics. This analysis begins automatically as soon as the website visitor enters

the website. For the analysis, reCAPTCHA evaluates various information (e.g., IP address, website visitor's duration of stay on the website, or mouse movements made by the user). The data collected during the analysis is transmitted to Google.

The reCAPTCHA analyses run completely in the background. Website visitors are not notified that an analysis is taking place.

The storage and analysis of data occurs on the basis of Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its web offerings from abusive automated scanning and spam. If a corresponding consent was requested, processing occurs exclusively on the basis of Art. 6 Para. 1 lit. a GDPR and § 25 Para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information on the end device of the user (e.g., device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.

Further information about Google reCAPTCHA can be found in Google's privacy policy and Google Terms of Use at the following links: https://policies.google.com/privacy?hl=de and https://policies.google.com/terms?hl=de.

7. E-Commerce and Payment Providers

Data Transmission When Concluding Contracts for Services and Digital Content

We only transmit personal data to third parties when this is necessary for contract processing, such as to the financial institution commissioned with payment processing.

No further transmission of data occurs, or only then if you have explicitly consented to the transmission. A transfer of your data to third parties without express consent, for example for advertising purposes, does not occur.

The basis for data processing is Art. 6 Para. 1 lit. b GDPR, which permits the processing of data for contract fulfillment or pre-contractual measures.

Payment Services

We integrate payment services from third-party companies on our website. When you make a purchase from us, your payment data (e.g., name, payment amount, bank details, credit card number) will be processed by the payment service provider for the purpose of payment processing. The respective contract and data protection provisions of the respective providers apply to these transactions. The use of payment service providers is based on Art. 6 Para. 1 lit. b GDPR (contract processing) as well as in the interest of a smooth, convenient, and secure payment process (Art. 6 Para. 1 lit. f GDPR). Insofar as consent is requested for certain actions, the legal basis for data processing is Art. 6 Para. 1 lit. a GDPR; consents can be revoked at any time for the future.

We use the following payment services / payment service providers on this website:

Digistore24

Some of our products, services, and content are offered by Digistore24 as a reseller. The provider and contract partner is Digistore24 GmbH, St.-Godehard-Straße 32 in 31139 Hildesheim. Digistore24 GmbH, as the responsible entity, explains in its own privacy policy which data Digistore24 stores and processes when this website is accessed. You can find more information in Digistore24's privacy policy: https://www.digistore24.com/dataschutz.

Promo Links/Content Links

We use various links to offers from Digistore24 on this website. The purpose of the links is to draw your attention to interesting products.

Some of these links are links to the digistore24.com domain of Digistore24 GmbH.

When you click on a link, you access a webpage on Digistore24's server.

Our server does not transmit any data to Digistore24; instead, the data is transmitted to Digistore24 by your web browser as with any website access. We have no influence on the extent to which your web browser transmits data to Digistore24.

Please refer to the additional information about Digistore24's handling of data from website visits in Digistore24's privacy policy: https://www.digistore24.com/dataschutz

8. Audio and Video Conferences

Data Processing

For communication with our customers, we use online conference tools. The specific tools we use are listed below. When you communicate with us via video or audio conference over the internet, your personal data will be collected and processed by us and the provider of the respective conference tool.

The conference tools collect all data that you provide/use for tool usage (email address and/or your phone number). Furthermore, the conference tools process the duration of the conference, start and end (time) of participation in the conference, number of participants, and other "context information" related to the communication process (metadata).

Additionally, the tool provider processes all technical data necessary for handling online communication. This particularly includes IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or speaker, and the type of connection.

If content is exchanged, uploaded, or provided in any other way within the tool, these are also stored on the servers of the tool providers. Such content includes, in particular, cloud recordings, chat/instant messages, voicemails, uploaded photos and videos, files, whiteboards, and other information shared during service use.

Please note that we do not have full influence over the data processing procedures of the used tools. Our possibilities are primarily determined by the corporate policy of the respective provider. Additional information on data processing by the conference tools can be found in the privacy policies of the respective tools used, which we have listed below this text.

Purpose and Legal Bases

The conference tools are used to communicate with prospective or existing contract partners or to offer certain services to our customers (Art. 6 Para. 1 lit. b GDPR). Furthermore, the use of the tools serves the general simplification and acceleration of communication with us or our company (legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR). If consent was requested, the use of the respective tools occurs on the basis of this consent; the consent can be revoked at any time with effect for the future.

Storage Duration

The data directly collected by us via video and conference tools will be deleted from our systems as soon as you request deletion, revoke your consent to storage, or the purpose of data storage no longer applies. Stored cookies remain on your end device until you delete them. Mandatory statutory retention periods remain unaffected.

We have no influence on the storage duration of your data stored by the conference tool operators for their own purposes. For details, please inform yourself directly with the operators of the conference tools.

Deployed Conference Tools

We use the following conference tools:

Zoom

We use Zoom. The provider of this service is Zoom Communications Inc., San Jose, 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA. Details on data processing can be found in Zoom's privacy policy: https://explore.zoom.us/de/privacy/.

The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://explore.zoom.us/de/privacy/.