.svg?ts=1759400576)
Privacy policy
Unless otherwise stated below, the provision of your personal data is neither legally nor contractually required, nor is it necessary for the conclusion of a contract. You are not obliged to provide the data. Failure to provide the data has no consequences. This only applies insofar as no other information is provided in the following processing operations.
"Personal data" means any information relating to an identified or identifiable natural person.
Server log files
You can visit our websites without providing any information about yourself.
Whenever you access our website, usage data is transmitted to us or our web host / IT service provider by your internet browser and stored in log data (so-called server log files). The stored data includes e.g. the name of the page accessed, the date and time of the access, the IP address, the amount of data transferred and the requesting provider.
Processing is carried out on the basis of Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in ensuring the trouble-free operation of our website and in improving our services.
Contact
Controller/Data Protection Officer
Contact us if you wish. The controller for data processing is: Fitzner GmbH & Co. KG, Schillerstraße 53, 32361 Pr. Oldendorf, Germany, 05742-9303-0, [email protected]
You can reach our data protection officer directly at: [email protected]
Customer’s initial contact by e-mail
If you contact us on your own initiative by e-mail to initiate business, we will collect your personal data (name, e-mail address, message text) only to the extent provided by you. The data processing serves the purpose of dealing with and answering your contact request.
If the contact serves the purpose of carrying out pre-contractual measures (e.g. consultation in case of interest in a purchase, preparation of an offer) or concerns an already existing contract between you and us, this data processing is carried out on the basis of Art. 6 (1) lit. b GDPR.
If the contact is made for other reasons, this data processing is carried out on the basis of Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in dealing with and answering your request. In this case, you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is based on Art. 6 (1) lit. f GDPR.
We will only use your e-mail address to handle your request. Your data will then be deleted in compliance with statutory retention periods, unless you have consented to further processing and use.
Collection and processing when using the contact form
When using the contact form, we collect your personal data (name, e-mail address, message text) only to the extent provided by you. The data processing serves the purpose of contacting you.
If the contact serves the purpose of carrying out pre-contractual measures (e.g. consultation in case of interest in a purchase, preparation of an offer) or concerns an already existing contract between you and us, this data processing is carried out on the basis of Art. 6 (1) lit. b GDPR. If the contact is made for other reasons, this data processing is carried out on the basis of Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in dealing with and answering your request. In this case, you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is based on Art. 6 (1) lit. f GDPR. We will only use your e-mail address to handle your request. Your data will then be deleted in compliance with statutory retention periods, unless you have consented to further processing and use.
Collection and processing for applications by e-mail
Visitors to the website can apply by e-mail for vacancies posted on our website if they are interested. In doing so, we collect your personal data only to the extent that you provide it. This includes your contact details (e.g. name, e-mail address, telephone number), information about your professional qualifications and education, information about professional training as well as performance-related evidence.... The data processing serves the purpose of contacting you and deciding on the establishment of an employment relationship with you. The provision of the data is necessary in order to carry out the application process. The processing of your personal data is carried out on the basis of Art. 6 (1) lit. b GDPR in conjunction with § 26 (1) BDSG (German Federal Data Protection Act) for the execution of pre-contractual measures (carrying out the application process as initiation of an employment contract).
If you have given us consent to process personal data for inclusion in our applicant pool, e.g. by ticking a checkbox, processing is carried out on the basis of Art. 6 (1) lit. a GDPR. You can withdraw your consent at any time with effect for the future without affecting the lawfulness of the processing carried out on the basis of the consent until the withdrawal.
Insofar as special categories of personal data within the meaning of Art. 9 (1) GDPR are requested from applicants in the course of the application process, such as information on the degree of severe disability, this is done on the basis of Art. 9 (2) lit. b GDPR so that we can exercise rights arising from employment law and social security and social protection law and comply with our related obligations.
We store your personal data as long as this is necessary for the decision on your application. Your data will then be deleted no later than six months after the end of the application process, unless you have consented to further processing and use. If, following the application process, an employment relationship is established, the data you have provided will be further processed on the basis of Art. 6 (1) lit. b GDPR in conjunction with § 26 (1) BDSG for the purposes of carrying out the employment relationship and subsequently transferred to the personnel file.
Use of HubSpot for appointment booking
We use the appointment booking function of HubSpot, Inc. (25 First Street Cambridge, MA 02141, USA; "HubSpot", with a branch in Ireland, HubSpot, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland) on our website as part of order processing.
When using this function, we collect and process your personal data (first and last name, e-mail address and telephone number, message text) only to the extent provided by you. The data processing serves the purpose of appointment scheduling and user-friendliness. HubSpot uses technologies such as cookies. In this context, the following information may be collected and transmitted to HubSpot: IP address, date and time of page view, device model, information about the browser you are using and the operating system you are using as well as location.
Your data may be transferred to third countries such as the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). HubSpot has certified itself under the TADPF and is thus committed to complying with European data protection principles.
The processing of your personal data for appointment booking is carried out on the basis of Art. 6 (1) lit. b GDPR for the performance of the contract concluded with us or for the implementation of pre-contractual measures. The use of cookies or comparable technologies is carried out with your consent on the basis of § 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data by the use of cookies is carried out with your consent on the basis of Art. 6 (1) lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent up to the withdrawal. Further information on data protection and the use of cookies can be found at https://legal.hubspot.com/de/privacy-policy and https://legal.hubspot.com/de/dpa.
Customer account
Orders
Customer account
When opening a customer account, we collect your personal data to the extent specified there. The data processing serves the purpose of improving your shopping experience and simplifying order processing. Processing is carried out on the basis of Art. 6 (1) lit. a GDPR with your consent. You can withdraw your consent at any time by notifying us, without affecting the lawfulness of the processing carried out on the basis of the consent until the withdrawal. Your customer account will then be deleted.
Collection, processing and transfer of personal data for orders
When you place an order, we collect and process your personal data only to the extent that this is necessary to fulfil and process your order and to handle your requests. The provision of the data is necessary for the conclusion of the contract. Failure to provide it means that no contract can be concluded. Processing is carried out on the basis of Art. 6 (1) lit. b GDPR and is necessary for the performance of a contract with you.
Your data will be passed on, for example, to shipping companies, dropshipping or fulfilment providers, payment service providers, service providers for order processing and IT service providers. In all cases, we strictly observe the legal requirements. The scope of data transmission is limited to the minimum necessary.
Reviews
Advertising
Integration of the Trusted Shops Trustbadge / other widgets
To display Trusted Shops services (e.g. trustmark, collected reviews) and to offer Trusted Shops products to buyers after an order, Trusted Shops widgets are integrated on this website. This serves to safeguard our overriding legitimate interests in the optimal marketing of our offer by enabling a secure purchase process, in accordance with Art. 6 (1) sentence 1 lit. f GDPR.
The Trustbadge and the services advertised with it are an offer of Trusted Shops SE, Subbelrather Str. 15C, 50823 Cologne (“Trusted Shops”), with whom we are jointly responsible for data protection under Art. 26 GDPR. In the following, we inform you about the essential contents of the joint responsibility agreement pursuant to Art. 26 (2) GDPR.
Within the framework of the joint controllership between us and Trusted Shops, please preferably contact Trusted Shops for any data protection questions or to exercise your rights, using the contact options provided in their privacy policy. However, you may also contact either controller at any time. Your inquiry will then, if necessary, be forwarded to the other controller for response.
1. Data processing when integrating the Trustbadge / other Widgets
The Trustbadge is provided by a U.S.-based content delivery network (CDN) provider.
An adequate level of data protection is ensured by an adequacy decision of the EU Commission, which can be accessed here for the United States. Service providers from the U.S. are generally certified under the EU-U.S. Data Privacy Framework (DPF). Further information is available here. If a service provider is not certified under the DPF, standard contractual clauses have been concluded as an appropriate safeguard.
When the Trustbadge is accessed, the web server automatically stores a so-called server logfile, which also contains your IP address, the date and time of access, the amount of data transferred, and the requesting provider (access data), thereby documenting the retrieval. The IP address is anonymised immediately after collection so that the stored data cannot be linked to you personally. The anonymised data are used in particular for statistical purposes and error analysis.
2. Data processing after order completion
After completing an order, the Trustbadge accesses order information stored on your device (order total, order number, and possibly the purchased product) as well as your email address. This is required to provide Trusted Shops services and to automatically secure your order, if applicable. For this purpose, your email address is transmitted to Trusted Shops in hashed form using an irreversible cryptographic one-way function. The legal basis is Art. 6 (1) sentence 1 lit. f GDPR.
This serves to check whether you are already registered for Trusted Shops services and is therefore necessary to fulfil our and Trusted Shops’ overriding legitimate interests in providing buyer protection or transactional review services linked to the specific order, in accordance with Art. 6 (1) sentence 1 lit. f GDPR. If this is the case, further processing takes place based on the contractual agreement between you and Trusted Shops. If you are not yet registered, you will subsequently be given the opportunity to do so. Further processing after registration is also based on your contractual agreement with Trusted Shops. If you do not register, all transmitted data are automatically deleted by Trusted Shops and can then no longer be attributed to any individual.
Trusted Shops uses service providers in the areas of hosting, monitoring, and logging. The legal basis is Art. 6 (1) lit. f GDPR for the purpose of ensuring smooth operation. Data processing may take place in third countries (USA and Israel).
An adequate level of data protection is ensured by an EU Commission adequacy decision, which can be accessed here for the United States and here for Israel. The U.S. service providers used are generally certified under the EU-U.S. Data Privacy Framework. Further information is available here. If a service provider is not certified under the DPF, standard contractual clauses have been concluded as appropriate safeguards.
Use of the e-mail address to send newsletters
We use your e-mail address to send you information and offers by newsletter, provided that you have expressly consented to this. The data processing serves the sole purpose of direct advertising. For this purpose, we process your e-mail address and, if applicable, other data that you have voluntarily provided when registering for our newsletter.
Processing is carried out on the basis of Art. 6 (1) lit. a GDPR with your consent. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent up to the withdrawal.
You can unsubscribe from the newsletter at any time by using the corresponding link in the newsletter or by notifying us. Your e-mail address will then be removed from the distribution list. Despite removal from the distribution list, we may continue to store your e-mail address in a so-called blacklist in order to prevent you from receiving newsletter e-mails from us in the future. This storage is carried out on the basis of Art. 6 (1) lit. f GDPR due to our and your legitimate interest in preventing the renewed use of your e-mail address to send our newsletter. You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you.
Use of the e-mail address for sending direct advertising
We use your e-mail address, which we have received in connection with the sale of a product or service, to send you electronic advertising for our own goods or services that are similar to those that you have already purchased from us, unless you have objected to this use. The provision of the e-mail address is necessary for the conclusion of the contract. Failure to provide it means that no contract can be concluded. Processing is carried out on the basis of Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in direct advertising. You can object to this use of your e-mail address at any time by notifying us. The contact details for exercising the objection can be found in the legal notice. You can also use the link provided for this purpose in the advertising e-mail. This does not incur any costs other than the transmission costs according to the basic rates.
Use of HubSpot
We use the service of HubSpot Ireland Ltd. (Ground Floor, Two Dockland Central Guild Street, Dublin 1, Ireland; "HubSpot") for sending newsletters as part of order processing. HubSpot is an affiliate of HubSpot, Inc. (25 First Street, Cambridge, MA 02141 USA).
We pass on the information you provide during newsletter registration (e-mail address, if applicable first and last name) to HubSpot. Data processing serves the purpose of sending the newsletter and its statistical evaluation.
In order to evaluate newsletter campaigns, the newsletters sent contain a 1x1 pixel graphic (tracking pixel) or a tracking link. In this way, we can determine whether you have opened the newsletter and whether you have clicked on any integrated links. In this context, we collect your personal data such as IP address, browser type and device as well as the time. Usage profiles can be created from this data under a pseudonym. The data collected is not used to identify you personally. The data collected is used exclusively for statistical evaluation to improve newsletter campaigns.
Your data may be transmitted to HubSpot servers in the USA and stored there. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). HubSpot has certified itself under the TADPF and is thus committed to complying with European data protection principles.
The processing of your personal data is carried out on the basis of Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in a targeted, effective and user-friendly newsletter system. You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you. Further information and HubSpot's privacy policy can be found at: https://legal.hubspot.com/de/privacy-policy.
Shipping service providers
Transfer of the e-mail address to shipping companies for information on shipping status
We pass on your e-mail address to the transport company within the scope of contract processing, provided that you have expressly consented to this during the ordering process. The transfer serves the purpose of informing you by e-mail about the shipping status. Processing is carried out on the basis of Art. 6 (1) lit. a GDPR with your consent. You can withdraw your consent at any time by notifying us or the transport company, without affecting the lawfulness of the processing carried out on the basis of the consent until the withdrawal.
Payment service providers
Use of the payment service provider Mollie
We use the payment service provider Mollie B.V. (Keizersgracht 313, 1016 EE Amsterdam, Netherlands; "Mollie") for payment processing on our website. Data processing serves the purpose of being able to offer you various payment methods through payment processing via the payment service provider Mollie. If you have opted for one of the payment options provided by the payment service provider Mollie, the data required for payment processing will be transmitted to Mollie. This includes your payment data (for example bank account number or credit card number), your IP address, your internet browser and device type and, in some cases, your first and last name, your address details and information about the product or service you have purchased from us. This data processing is carried out on the basis of Art. 6 (1) lit. b GDPR. Further information on data processing when using the payment service provider Mollie can be found in the relevant privacy policy https://www.mollie.com/de/legal/privacy
Cookies
Our website uses cookies. Cookies are small text files which are stored in the internet browser or by the internet browser on the user's computer system. If a user calls up a website, a cookie can be stored on the user's operating system. This cookie contains a characteristic character string that allows the browser to be uniquely identified when the website is called up again.
Cookies are stored on your computer. Therefore, you have full control over the use of cookies. By selecting appropriate technical settings in your internet browser, you can be informed before cookies are set and decide individually whether to accept them or prevent the storage of cookies and the transmission of the data contained in them. Cookies that have already been stored can be deleted at any time. However, we would like to point out that you may then not be able to use all the functions of this website to their full extent.
You can find out how to manage (including deactivate) cookies in the most important browsers at the following links:
Chrome: https://support.google.com/accounts/answer/61416?hl=de
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9-2a946a29ae09 Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen Safari: https://support.apple.com/de-de/guide/safari/manage-cookies-and-website-data-sfri11471/mac
Technically necessary cookies
Unless otherwise stated below in this privacy policy, we only use these technically necessary cookies in order to make our services more user-friendly, effective and secure. Cookies also enable our systems to recognise your browser even after a page change and to offer you services. Some functions of our website cannot be offered without the use of cookies. For these it is necessary that the browser is recognised even after a page change.
The use of cookies or comparable technologies is carried out on the basis of § 25 (2) TDDDG. The processing of your personal data is carried out on the basis of Art. 6 (1) lit. f GDPR due to our overriding legitimate interest in ensuring the optimal functionality of the website as well as a user-friendly and effective design of our services.
You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you.
Use of Consentmanager
We use the consent management tool Consentmanager of Consentmanager AB (Håltegelvägen 1b, 72348 Västerås, Sweden; "Consentmanager") on our website.
The tool enables you to give your consent to data processing via the website, in particular the setting of cookies, as well as to exercise your right to withdraw consent that has already been given.
The data processing serves the purpose of obtaining necessary consents to data processing and documenting them and thus complying with legal obligations.
Cookies may be used for this purpose. The following information may be collected and transmitted to Consentmanager: date and time of the page view, information about the browser you are using and the device you are using, anonymised IP address, opt-in and opt-out data. This data is not passed on to any other third parties.
Data processing is carried out for the fulfilment of a legal obligation on the basis of Art. 6 (1) lit. c GDPR.
Further information on data protection at Consentmanager can be found at: https://www.consentmanager.net/de/datenschutz/
Analytics
Advertising tracking
Use of Google Analytics 4
We use the web analytics service Google Analytics of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. The data processing serves the purpose of analysing this website and its visitors as well as for marketing and advertising purposes. For this purpose, Google will use the information obtained on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services related to website and internet use. The following information may be collected for this purpose: IP address, date and time of page view, click path, information about the browser you are using and the device you are using, pages visited, referrer URL (website via which you accessed our website), location data, purchasing activities. Your data may be linked by Google with other data such as your search history, your personal accounts, your usage data from other devices and any other data that Google has about you.
The IP address is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area beforehand.
Google uses technologies such as cookies, browser web storage and tracking pixels that enable an analysis of your use of the website. The use of cookies or comparable technologies is carried out with your consent on the basis of § 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR.
The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent up to the withdrawal.
We use the extended implementation of Consent Mode (Advanced Consent Mode). In this case, user data is also transmitted to Google in the form of "pings" even if consent is not given. These pings may contain the following information: IP address to derive the IP country (there is no logging of the IP address), date and time of the page view, URL of the pages visited, user agent, referrer URL (website via which our website was accessed) or information about the triggering of website events such as a conversion. On the basis of this information, Google models user data in order to be able to carry out a comprehensive usage analysis despite refusal of consent.
The information generated in this way about your use of this website is usually transferred to a Google server in the USA and stored there. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is thus committed to complying with European data protection principles. Both Google and US government authorities have access to your data.
Further information on terms of use and data protection can be found at https://policies.google.com/technologies/partner-sites and at https://policies.google.com/privacy?hl=de&gl=de.
Use of the Meta Pixel
We use the Meta Pixel of Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; "Meta") on our website.
Meta and we are jointly responsible for the collection of your data and the transmission of this data to Meta that takes place when the service is integrated. The basis for this is an agreement between us and Meta on the joint processing of personal data, which defines the respective responsibilities. The agreement can be accessed at https://de-de.facebook.com/legal/terms/businesstools. According to this, we are in particular responsible for fulfilling the information obligations pursuant to Art. 13, 14 GDPR, for complying with the security requirements of Art. 32 GDPR with regard to the correct technical implementation and configuration of the service and for complying with the obligations pursuant to Art. 33, 34 GDPR, insofar as a personal data breach affects our obligations under the agreement on joint processing. Meta is responsible for enabling data subject rights pursuant to Art. 15 - 20 GDPR, for complying with the security requirements of Art. 32 GDPR with regard to the security of the service and for complying with the obligations pursuant to Art. 33, 34 GDPR, insofar as a personal data breach affects Meta's obligations under the agreement on joint processing. The application serves the purpose of targeting visitors to the website with interest-based advertising on the social networks Facebook and Instagram. For this purpose, the Meta Remarketing tag has been implemented on the website. When you visit the website, a direct connection to the Meta servers is established via this tag. This transmits to the Meta server which of our pages you have visited. Meta associates this information with your personal Facebook and/or Instagram user account. When you visit the social networks Facebook or Instagram, you will then be shown personalised, interest-based ads.
The application also serves the purpose of creating conversion statistics. In this way, we learn the total number of users who have clicked on one of our ads and have been redirected to a page with a conversion tracking tag and which actions are taken after being redirected to this website. However, we do not receive any information with which users can be personally identified.
Your data may be transferred to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself under the TADPF and is thus committed to complying with European data protection principles.
The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent up to the withdrawal.
You can deactivate the "Custom Audiences" remarketing function here. Further information on the collection and use of data by Meta, your rights in this respect and options for protecting your privacy can be found in Meta's data protection information at https://www.facebook.com/about/privacy/.
Use of Google Ads conversion tracking
We use the online advertising programme "Google Ads" on our website and, in this context, conversion tracking (visit action evaluation). Google Conversion Tracking is an analysis service of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; Google).
If you click on an advertisement placed by Google, a cookie for conversion tracking is stored on your computer. These cookies have a limited validity, do not contain any personal data and therefore do not serve the purpose of personal identification. If you visit certain pages of our website and the cookie has not yet expired, Google and we can recognise that you have clicked on the ad and have been redirected to this page. Each Google Ads customer receives a different cookie. It is therefore not possible for cookies to be tracked via the websites of Ads customers.... The information obtained with the help of the conversion cookie serves the purpose of creating conversion statistics. In this way, we learn the total number of users who have clicked on one of our ads and have been forwarded to a page with a conversion tracking tag. However, we do not receive any information that can be used to personally identify users. We use the extended implementation of Consent Mode (Advanced Consent Mode). In this case, user data is also transmitted to Google in the form of “pings” even if consent is not given. These pings may contain the following information: IP address to derive the IP country (there is no logging of the IP address), date and time of the page view, URL of the pages visited, user agent, referrer URL (website via which our website was accessed) or information about the triggering of website events such as a conversion. On the basis of this information, Google models user data in order to be able to carry out a comprehensive usage analysis despite refusal of consent.
Your data may be transferred to the servers of Google LLC in the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or comparable technologies is carried out with your consent on the basis of § 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent up to the withdrawal.
Further information and Google's privacy policy can be found at: https://www.google.de/policies/privacy/
Use of the Google Inc. remarketing or "Similar audiences" function
We use the remarketing or "Similar audiences" function of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
The application serves the purpose of analysing visitor behaviour and interests. Google uses cookies to analyse the use of the website, which forms the basis for creating interest-based advertisements. Cookies are used to record visits to the website and anonymised data on the use of the website. No personal data of website visitors is stored. If you subsequently visit another website in the Google Display Network, you will be shown ads that are highly likely to take into account previously viewed product and information areas.
Your data may be transferred to the servers of Google LLC in the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or comparable technologies is carried out with your consent on the basis of § 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent up to the withdrawal.
Further information on Google Remarketing and the relevant privacy policy can be found at: https://www.google.com/privacy/ads/
Use of Microsoft Advertising
We use Microsoft Advertising of Microsoft Corporation (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA; "Microsoft") on our website.
The data processing serves marketing and advertising purposes and the purpose of measuring the success of advertising measures (conversion tracking). We learn the total number of users who have clicked on one of our ads and have been redirected to a page with a conversion tracking tag. It is not possible to personally identify these users. Microsoft Advertising uses technologies such as cookies and tracking pixels that enable analysis of your use of the website. If you click on an ad placed by Microsoft Advertising, a cookie for conversion tracking is stored on your computer. This cookie has a limited validity and does not serve the purpose of personal identification. If you visit certain pages of our website and the cookie has not yet expired, Microsoft and we can recognise that you have clicked on the ad and have been redirected to this page. The following information may be collected in this process: IP address, identifiers assigned by Microsoft, information about the browser you are using and the device you are using, referrer URL (website via which you accessed our website), URL of our website. Your data may be transferred to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Microsoft has certified itself under the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or comparable technologies is carried out with your consent on the basis of § 25 (1) sentence 1 TDDDG in conjunction with Art. 6 (1) lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 (1) lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent up to the withdrawal.
Further information on data protection and the cookies used by Microsoft can be found here.
Use of the LinkedIn Insight Tag
We use the LinkedIn Insight Tag of LinkedIn Ireland Unlimited Company (Wilton Place, Dublin 2, Ireland; “LinkedIn”) on our website for conversion tracking (analysis of visit actions) as well as for retargeting (display of personalized advertising). The LinkedIn Insight Tag places a unique LinkedIn browser cookie (conversion cookie) in your browser and enables the collection of the following data for this cookie: metadata such as IP address, timestamp and page events (e.g. page views). These cookies have a limited validity. If you visit certain pages of our website and the cookie has not yet expired, LinkedIn and we can recognize that you clicked on the advertisement and were redirected to this page. The LinkedIn Insight Tag also enables LinkedIn to collect data about visits to our website, including URL, referrer URL, IP address, device and browser characteristics (user agent) and timestamp. This data is transmitted to LinkedIn, encrypted, the IP addresses are shortened and the direct IDs of LinkedIn members are removed within seven days in order to pseudonymize the data. This remaining pseudonymized data is then deleted by LinkedIn within 90 days. LinkedIn does not share any personal data with us, but only provides aggregated reports on the website audience and ad performance. LinkedIn members can determine the use of their personal data for advertising purposes in their account settings. The information obtained with the help of the conversion cookie is used to create conversion statistics. In this way, we learn the total number of users who have clicked on one of our ads and were redirected to a page provided with a conversion tracking tag. Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). LinkedIn has certified itself under the TADPF and is thus committed to complying with European data protection principles. The use of cookies or comparable technologies takes place with your consent on the basis of section 25 para. 1 sentence 1 TDDDG in conjunction with Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of processing carried out on the basis of the consent up to the time of revocation. Further information on cookies and LinkedIn’s privacy policy can be found at: https://www.linkedin.com/legal/cookie-policy and https://www.linkedin.com/legal/privacy-policy.
Use of HubSpot
We use the Marketing Hub software of HubSpot, Inc. (25 First Street, Cambridge, MA 02141, USA; “HubSpot”, with a branch in Ireland: HubSpot, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland) on our website as part of processing on our behalf. The data processing serves the purpose of analyzing our website and its visitors as well as analyzing and evaluating our marketing campaigns and improving customer targeting by placing targeted advertising. Cookies are used for this purpose, which enable the recognition of the browser. In doing so, your IP address can be collected and transmitted to HubSpot, among other things. Usage profiles can be created from the data collected in this way using pseudonyms. Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). HubSpot has certified itself under the TADPF and is thus committed to complying with European data protection principles. The use of cookies or comparable technologies takes place with your consent on the basis of section 25 para. 1 sentence 1 TDDDG in conjunction with Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of processing carried out on the basis of the consent up to the time of revocation. Further information on the collection and use of data by HubSpot, your rights in this regard and options for protecting your privacy can be found in HubSpot’s privacy notices at: https://legal.hubspot.com/de/privacy-policy and https://legal.hubspot.com/de/dpa.
Use of TikTok Pixel
We use the TikTok Pixel of TikTok Technology Limited (10 Earlsfort Terrace, Dublin, D02 T380, Ireland; “TikTok Ireland”) and TikTok Information Technologies UK Limited (6th Floor, One London Wall, London, EC2Y 5EB, United Kingdom; “TikTok UK”) on our website. Both companies are joint controllers for data processing (hereinafter “TikTok”). The data processing serves the purpose of identifying and analyzing our customers’ website visits as well as improving customer targeting by placing targeted advertising and evaluating the effectiveness of advertising on TikTok. For this purpose, TikTok uses technologies such as cookies and pixels, which enable the recognition of your browser. The following information can be collected and transmitted to TikTok, among other things: date and time of the visit, information about the browser and device type you use, screen resolution, IP address. TikTok can assign this information to your personal TikTok user account. Usage profiles can be created from the data collected in this way using pseudonyms. Personal identification of users is not possible. Your data may be transferred to third countries, such as the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). TikTok is not certified under the TADPF. The transfer of data to the USA and to third countries without an adequacy decision is based, among other things, on standard contractual clauses as appropriate safeguards for the protection of personal data, available at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de. The use of cookies or comparable technologies takes place with your consent on the basis of section 25 para. 1 sentence 1 TDDDG in conjunction with Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of processing carried out on the basis of the consent up to the time of revocation. Further information on data protection can be found at https://www.tiktok.com/legal/page/eea/privacy-policy/de and https://ads.tiktok.com/i18n/official/policy/controller-to-controller.
Plug-ins and other tools
Use of Google Tag Manager
We use the Google Tag Manager of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”) on our website. This application manages JavaScript tags and HTML tags that are used in particular to implement tracking and analytics tools. The data processing serves the purpose of designing and optimizing our website according to requirements. Google Tag Manager itself does not store cookies, nor does it process personal data. However, it enables the triggering of further tags that can collect and process personal data. Further information on terms of use and data protection can be found here.
Use of hCaptcha
We use the hCaptcha service of Intuition Machines Inc. (1065 SW 8th St #704, Miami, FL 33130, USA; “hCaptcha”) on our website as part of processing on our behalf. hCaptcha serves to protect our website from spam and misuse by automated access (bots). By implementing hCaptcha, we ensure that certain actions on our website are carried out only by real persons, which ensures the security and integrity of our online services. When using hCaptcha, the following data may be collected and processed: IP address of the user, information about the device used (e.g. browser and operating system), mouse movements and interactions on the website, time spent on the website, user input behavior. Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). hCaptcha has certified itself under the TADPF and is thus committed to complying with European data protection principles. The use of cookies or comparable technologies takes place with your consent on the basis of section 25 para. 1 sentence 1 TDDDG in conjunction with Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of processing carried out on the basis of the consent up to the time of revocation. Further information on data processing and data protection at hCaptcha can be found at https://www.hcaptcha.com/gdpr.
Use of Cloudflare
We use the Cloudflare CDN content delivery network of Cloudflare Inc. (101 Townsend St, San Francisco, CA 94107, USA; “Cloudflare”) on our website. This is a cross-regional network of servers in various data centers that our web server connects to and through which certain content of our website is delivered. The data processing serves the purpose of optimizing loading times of our website and making our services more user-friendly. The following information may be collected, among other things: IP address, system configuration information, information about traffic to and from customer websites (so-called server log files). Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Cloudflare has certified itself under the TADPF and is thus committed to complying with European data protection principles. The processing of your personal data takes place on the basis of Art. 6 para. 1 lit. f GDPR due to our overriding legitimate interest in the needs-based and targeted design of the website. You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data concerning you which is based on Art. 6 para. 1 lit. f GDPR. Further information on data protection when using Cloudflare can be found at https://www.cloudflare.com/de-de/privacypolicy/.
Use of YouTube
We use the function for embedding YouTube videos of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “YouTube”) on our website. YouTube is a company affiliated with Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). The function displays videos stored on YouTube in an iFrame on the website. The “extended data protection mode” option is activated. This means that YouTube does not store any information about visitors to the website. Only when you watch a video are information about this transmitted to YouTube and stored there. Your data may be transferred to the USA. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). YouTube has certified itself under the TADPF and is thus committed to complying with European data protection principles. The use of cookies or comparable technologies takes place with your consent on the basis of section 25 para. 1 sentence 1 TDDDG in conjunction with Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of processing carried out on the basis of the consent up to the time of revocation. Further information on the collection and use of data by YouTube and Google, your rights in this regard and options for protecting your privacy can be found in YouTube’s privacy notices at https://www.youtube.com/t/privacy.
Use of Sentry
We use the Sentry error management tool of Functional Software, Inc. (45 Fremont Street, San Francisco, CA 94105, USA; “Sentry”) on our website as part of processing on our behalf. The data processing serves the purpose of optimizing our website by checking system stability and identifying, collecting and evaluating code errors on the website. Cookies may be used for this purpose. Your (anonymized) IP address is collected and transmitted to Sentry. It is not possible to assign the data to you personally. The data is processed exclusively for the purpose stated above. Processing for other purposes, in particular for advertising measures, does not take place. Your data is transferred to and processed in third countries outside the EU (Canada and the USA). For Canada, there is an adequacy decision by the EU Commission. For the USA, there is an adequacy decision by the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Sentry has committed itself to the TADPF and is thus committed to complying with European data protection principles. The use of cookies or comparable technologies takes place with your consent on the basis of section 25 para. 1 sentence 1 TDDDG in conjunction with Art. 6 para. 1 lit. a GDPR. The processing of your personal data takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time without affecting the lawfulness of processing carried out on the basis of the consent up to the time of revocation. Further information on data protection at Sentry can be found at https://sentry.io/privacy/ and https://sentry.io/legal/dpa/.
Use of LinkedIn Sales Navigator
We use the Sales Navigator tool of LinkedIn Ireland Unlimited Company (Wilton Place, Dublin 2, Ireland; “LinkedIn”) to acquire business partners and to contact and expand our contacts and leads. In this context, personal data may be collected that is made available to us by LinkedIn. This includes, among other things, the following information: first and last name, email address, contact information, employer, position, communication content and business relationships. The data processing serves the purpose of finding suitable business partners and contacting them in order to present our services. The processing of your personal data takes place on the basis of Art. 6 para. 1 lit. f GDPR due to our overriding legitimate interest in addressing suitable business partners in a targeted manner and informing them about our services. You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data concerning you which is based on Art. 6 para. 1 lit. f GDPR. Further information on how it works and on the collection and use of your data by LinkedIn can be found at https://business.linkedin.com/de-de/sales-solutions/sales-navigator and https://de.linkedin.com/legal/privacy-policy.
Data subject rights and storage period
Storage period
After complete performance of the contract, the data is initially stored for the duration of the warranty period and then, taking into account statutory, in particular tax and commercial law retention periods, and deleted after expiry of the period, unless you have consented to further processing and use.
Rights of the data subject
Subject to the statutory requirements, you have the following rights under Art. 15 to 20 GDPR: right of access, right to rectification, right to erasure, right to restriction of processing, right to data portability. In addition, you have a right to object under Art. 21 para. 1 GDPR to processing based on Art. 6 para. 1 lit. f GDPR, as well as to processing for direct marketing purposes.
Right to lodge a complaint with the supervisory authority
Under Art. 77 GDPR, you have the right to lodge a complaint with the supervisory authority if you consider that the processing of your personal data is not lawful.
You may lodge a complaint, among other things, with the supervisory authority responsible for us, which you can contact at the following contact details:
Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
Postfach 20 04 44
40102 Düsseldorf
Tel.: +49 211 384240
Fax: +49 211 38424999
E-mail: [email protected]
Right to object
If the personal data processing listed here is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR, you have the right, for reasons arising from your particular situation, to object at any time to this processing with effect for the future. After an objection has been made, the processing of the data concerned will be stopped, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or if the processing serves the establishment, exercise or defense of legal claims.
If the processing of personal data takes place for direct marketing purposes, you may object to this processing at any time by notifying us. After an objection has been made, we will stop processing the data concerned for direct marketing purposes.
Last update: 22/10/2024