With the following data protection declaration, we would like to inform you about the types of your personal data (hereinafter also referred to as
data (hereinafter also referred to as "data" for short), for what purposes and to what extent in the context of the
process the provision of our application.
Plugins and embedded functions and content
Person responsible
Ioannis Athanasias-Mayer
Rotschildallee 49
60389 Frankfurt
Germany
Persons authorized to represent the company:
Ioannis Athanasias-Mayer
E-mail address: info@viga.de
Phone: +49 177 6126763
Imprint: https://www.viga.de?cmd=imprint
Applicable legal basesApplicable
legal bases according to the GD
PR:
Below you will find an overview of the legal bases of the GDPR on the basis of which we process personal data.
Please note that, in addition to the provisions of the GDPR, national data protection regulations may apply in your or our country of residence or domicile.
country of residence or domicile may apply. Should more specific legal bases also apply in individual cases, we will inform you of these in the privacy policy.
- Contract fulfillment and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR) - The processing is
for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract
measures taken at the request of the data subject.
- Legal obligation (Art. 6 para. 1 sentence 1 lit. c) GDPR) -
Processing is necessary for compliance with a legal obligation to which the controller is subject.
- Legitimate
Interests (Art. 6 para. 1 sentence 1 lit. f) GDPR) - Processing is necessary for the purposes of the legitimate interests pursued by the controller
controller or a third party, unless the interests or fundamental rights and freedoms of the data subject which require the protection of
of personal data prevail.
National data protection regulations in Germany: In addition
to the data protection regulations of the GDPR, national data protection regulations apply in Germany. These include in particular the law
on the protection against misuse of personal data in data processing (Federal Data Protection Act - BDSG). The BDSG contains in particular
special regulations on the right to information, the right to erasure, the right to object, the processing of special categories of personal data
processing for other purposes and transmission as well as automated decision-making in individual cases, including profiling.
Furthermore, state data protection laws of the individual federal states may apply.
Reference to the validity of the GDPR and Swiss DPA: This data protection notice serves to provide information in accordance with the
Swiss Federal Act on Data Protection (Swiss DPA) and the General Data Protection Regulation (GDPR). For this reason, please
please note that the terms of the GDPR are used due to the broader spatial application and comprehensibility. In particular
instead of the terms "processing" of "personal data", "overriding interest" and "particularly sensitive personal data" used in the Swiss DPA
the terms "processing" of "personal data" used in the GDPR as well as "legitimate interest" and "special categories of data"
are used. However, the legal meaning of the terms will continue to be determined in accordance with the Swiss DPA within the scope of application of the Swiss DPA.
Overview of the processing operationsThe
following overview summarizes the types of data processed and the purposes of their
processing and refers to the data subjects.
types of data processed
- Inventory data.
- Payment data.
- Location data.
- Contact data.
- Content data.
- Contract data.
- Usage data.
- Meta, communication and process data.
Special categories of data
Categories of data subjects
- Customers.
- Interested parties.
- Communication partners.
- Users.
- Business and contractual partners.
Purposes of the processing
- Provision of contractual services and fulfillment of contractual obligations.
- Contact requests and communication.
- Security measures.
- Office and organizational procedures.
- Managing and responding to requests.
- Feedback.
- Marketing.
- Provision of our online services and user-friendliness.
- Information technology infrastructure.
Security measures
We take security measures in accordance with the legal requirements, taking into account the state of the art, the implementation costs and the type, scope
the circumstances and purposes of the processing and the various likelihoods and severity of the threat to the rights and freedoms of
of natural persons, appropriate technical and organizational measures to ensure a level of protection appropriate to the risk.
The measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as the
electronic access to the data as well as the access, input, disclosure, safeguarding of availability and its separation.
Furthermore, we have established procedures that ensure the exercise of data subjects' rights, the deletion of data and responses to data breaches.
guarantee data. Furthermore, we take the protection of personal data into account as early as the development or selection of hardware, software and
processes in accordance with the principle of data protection, through technology design and data protection-friendly default settings.
International data transfersData processing
in third countries: If we process data in a third country (i.e. outside the
European Union (EU), the European Economic Area (EEA)) or the processing in the context of the use of third party services or the disclosure or transfer of data to a third country.
services of third parties or the disclosure or transfer of data to other persons, bodies or companies, this will only take place in accordance
with the legal requirements. If the level of data protection in the third country has been recognized by means of an adequacy decision (Art. 45 GDPR),
this serves as the basis for the data transfer. Otherwise, data transfers only take place if the level of data protection is otherwise ensured,
in particular through standard contractual clauses (Art. 46 para. 2 lit. c) GDPR), express consent or in the case of contractual or legally
transmission required by law (Art. 49 para. 1 GDPR). In addition, we will inform you of the basis of the third country transfer with the individual
providers from the third country, whereby the adequacy decisions take precedence. Information on third country transfers
and existing adequacy decisions can be found in the information provided by the EU Commission:
https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de.
EU-US Trans-Atlantic Data Privacy Framework: Within the framework of the so-called "Data Privacy Framework" (DPF), the EU Commission has
level of data protection for certain companies from the USA as part of the adequacy decision of 10.07.2023.
The list of certified companies as well as further information on the DPF can be found on the website of the US Department of Commerce
at https://www.dat aprivacyframework.gov/ (in English).
We will inform you which service providers we use are certified under the Data Privacy Framework as part of the data protection information.
Rights of data subjectsRights
ofdata subjects under the GDPR: As a data subject, you have various rights under the
GDPR, you are entitled to various rights, which arise in particular from Art. 15 to 21 GDPR:
- Right to object:
You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you
personal data concerning you, which is based on Art. 6 para. 1 lit. e or f GDPR, to object; this
also applies to profiling based on these provisions. If the personal data concerning you are processed
for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising.
data for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct advertising.
is connected.
- Right to withdraw consent: You have the right to withdraw your consent at any time.
revoked.
- Right to information: You have the right to request confirmation as to whether the data in question is being
processed and for information about this data as well as for further information and a copy of the data in accordance with the legal
requirements.
- Right to rectification: In accordance with the legal requirements, you have the right to request the completion
of the data concerning you or to request the rectification of inaccurate data concerning you.
- Right to
erasure and restriction of processing: In accordance with the legal requirements, you have the right to demand
that data concerning you be deleted immediately, or alternatively, in accordance with the legal requirements, to restrict the processing of the data.
the processing of the data.
- Right to data portability: You have the right to
data concerning you, which you have provided to us, in accordance with the legal requirements in a structured, commonly used and
common and machine-readable format or to request that it be transferred to another controller.
- Complaint
with the supervisory authority: Without prejudice to any other administrative or judicial remedy, you have the
right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the
place of work or the place of the alleged infringement if you consider that the processing of personal data relating to you
personal data concerning you violates the provisions of the GDPR.
Business servicesWe
process data of our contractual and business partners, e.g. customers and
interested parties (collectively referred to as
interested parties (collectively referred to as "contractual partners") in the context of contractual and comparable legal relationships
as well as related measures and in the context of communication with the contractual partners (or pre-contractual), e.g. to answer inquiries.
We process this data in order to fulfill our contractual obligations. This includes in particular the obligations
to provide the agreed services, any updating obligations and remedies in the event of warranty and other service disruptions.
In addition, we process the data to safeguard our rights and for the purpose of the administrative tasks associated with these obligations
and the company organization. In addition, we process the data on the basis of our legitimate interests in a
proper and efficient business management as well as in security measures to protect our contractual partners and our business operations.
business operations from misuse, threats to their data, secrets, information and rights (e.g. to the involvement of
telecommunications, transportation and other auxiliary services as well as subcontractors, banks, tax and legal advisors, payment service providers
or financial authorities). Within the framework of applicable law, we only pass on the data of contractual partners to third parties insofar as this is necessary
necessary for the aforementioned purposes or to fulfill legal obligations. About other forms of processing, e.g. for
marketing purposes, the contractual partners will be informed in the context of this privacy policy.
We inform the contractual partners which data is required for the aforementioned purposes before or as part of the data collection, e.g. i
in online forms, by means of special marking (e.g. colors) or symbols (e.g. asterisks or similar), or in person.
We delete the data after the expiry of statutory warranty and comparable obligations, i.e. generally after the expiry of
of 4 years, unless the data is stored in a customer account, e.g. as long as it must be stored for legal reasons of
archiving must be retained. The statutory retention period for documents relevant under tax law is
as well as for commercial books, inventories, opening balance sheets, annual financial statements, the documents required to understand these documents
work instructions and other organizational documents and accounting vouchers for ten years and, in the case of received commercial and
commercial and business letters and reproductions of the commercial and business letters sent for six years. The period begins at the end of the
calendar year in which the last entry was made in the book, the inventory, the opening balance sheet, the annual financial statements or the management report were
management report was prepared, the commercial or business letter was received or sent or the accounting document was created,
the record has also been made or the other documents have been created.
Insofar as we use third-party providers or platforms for the provision of our services, the relationship between the
users and the providers, the terms and conditions and data protection notices of the respective third-party providers or platforms apply.
- Processed data types: inventory data (e.g. names, addresses); payment data (e.g. bank details
bank details, invoices, payment history); contact data (e.g. email, telephone numbers); contract data (e.g. subject matter of the contract,
term, customer category); usage data (e.g. websites visited, interest in content, access times). Meta, communication
and process data (e.g. IP addresses, time data, identification numbers, consent status).
- Special
categories of personal data: Health data.
- Data subjects: Customers; interested parties.
Business and contractual partners.
- Purposes of processing: Provision of contractual services and fulfillment of contractual
fulfilment of contractual obligations; security measures; contact requests and communication; office and organizational procedures.
Managing and responding to requests.
- Legal basis: Performance of a contract and
pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR); Legal obligation (Art. 6 para. 1 sentence 1 lit. c) GDPR).
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Further information on processing operations,
procedures and services:
- Store and e-commerce: We process the data of our
data of our customers in order to enable them to select, purchase or order the selected products, goods and associated
services, as well as their payment and delivery, or execution. If necessary for the fulfillment of an
order, we use service providers, in particular postal, forwarding and shipping companies, to ensure the
delivery or fulfillment to our customers. For the processing of payment transactions, we use
the services of banks and payment service providers. The required information is marked as such in the context of the order
or comparable purchase process and include the information required for delivery, provision and billing as well as contact information.
as well as contact information in order to be able to hold any consultation; legal bases:
Contract fulfillment and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR).
- Artistic and literary
services: We process the data of our clients in order to enable them to select, purchase or commission the
selected services or works and related activities as well as their payment and delivery or execution or provision.
or performance.
The required information is identified as such in the context of the order, purchase order or comparable
contract and include the information required for delivery and invoicing as well as contact information,
in order to be able to hold any consultations;
Legal basis: Contract fulfillment and pre-contractual
inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR). - Therapeutic services: We process the data
of our clients as well as interested parties and other clients or contractual partners (uniformly referred to as "clients") in order to provide them
be able to provide our services to them. The data processed, the type, scope, purpose and necessity of its processing are
processing are determined by the underlying contractual and client relationship.
As part of our activities, we may also process
we may also process special categories of data, in particular information on the health of clients, possibly with reference to their
sexual life or sexual orientation, as well as data revealing racial or ethnic origin, political opinions, religious or
religious or philosophical beliefs or trade union membership. For this purpose we obtain,
where necessary, obtain express consent from clients and otherwise process the special categories of data
if this serves the health of the client, the data is public or other legal permissions exist.
If it is necessary
necessary for the performance of our contract, for the protection of vital interests or by law, or with the consent of the client.
clients, we disclose or transfer the client's data to third parties or agents in compliance with the requirements of professional law, such as
or agents, such as public authorities, medical institutions, laboratories, billing offices and in the area of IT, office services or comparable services.
or comparable services;
Legal bases: Performance of a contract and pre-contractual
inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR). - Events and functions: We process the data of
data of the participants of the events, functions and similar activities offered or organized by us
(hereinafter uniformly referred to as "participants" and "events") in order to enable them to participate in the events
and to enable them to take advantage of the services or promotions associated with participation.
Insofar as we collect in this
health-related data, religious, political or other special categories of data are processed in this context, then
this is done in the context of disclosure (e.g. for thematically oriented events or for the purpose of
health care, security or is carried out with the consent of the data subjects).
The required information
are identified as such in the context of the conclusion of the contract, order or comparable contract and include the information required for the
service provision and billing as well as contact information in order to be able to hold any consultations.
Insofar as we receive access to information from end customers, employees or other persons, we process this in accordance with the
legal and contractual requirements;
Legal bases: Contract fulfillment and pre-contractual
inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR).
Use of online platforms for offer and sales purposesWe
offer our services on online platforms
which are operated by other service providers. In this context, in addition to our privacy policy, the privacy policies of the
privacy notices of the respective platforms. This applies in particular with regard to the execution of the payment process and the
procedures used on the platforms to measure reach and for interest-based marketing.
- Processed data types: inventory data (e.g. names, addresses); payment data (e.g. bank details
bank details, invoices, payment history); contact data (e.g. email, telephone numbers); contract data (e.g. subject matter of the contract,
term, customer category); usage data (e.g. websites visited, interest in content, access times). Meta, communication
and process data (e.g. IP addresses, time data, identification numbers, consent status).
- Data subjects
Persons: Customers.
- Purposes of processing: Provision of contractual services and fulfillment of contractual
of contractual obligations. Marketing.
- Legal bases: Fulfillment of contract and pre-contractual
inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR). Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Further
Information on processing processes, procedures and services:
Payment proceduresIn
the context of contractual and other legal relationships, due to legal obligations or otherwise on the
basis of our
legal obligations or otherwise on the basis of our legitimate interests, we offer the data subjects efficient and secure payment options and use
service providers in addition to banks and credit institutions (collectively referred to as "payment service providers").
The data processed by the payment service providers includes inventory data, such as the name and address, bank data, such as account numbers
or credit card numbers, passwords, TANs and checksums as well as contract, total and recipient-related information. The information is
required to carry out the transactions. However, the data entered will only be processed by the payment service providers and
stored with them. This means that we do not receive any account or credit card-related information, but only information with
Confirmation or negative information about the payment. Under certain circumstances, the data may be transmitted by the payment service provider to credit agencies
transmitted. The purpose of this transmission is to check identity and creditworthiness. Please refer to the terms and conditions and data protection information of the
payment service provider.
For payment transactions, the terms and conditions and the data protection notices of the respective payment service providers apply, which can be found within
available on the respective websites or transaction applications. We also refer to these for the purpose of further information and
assertion of rights of revocation, information and other rights of data subjects.
- Processed data types: inventory data (e.g. names, addresses); payment data (e.g. bank details,
invoices, payment history); contract data (e.g. subject matter of the contract, duration, customer category); usage data (e.g. websites visited,
interest in content, access times); meta, communication and process data (e.g. IP addresses, time data, identification numbers,
consent status). Contact data (e.g. e-mail, telephone numbers).
- Data subjects: Customers. Interested parties.
-
Purposes of processing: Provision of contractual services and fulfillment of contractual obligations.
-
Legal bases: Fulfillment of contracts and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR).
Further information on processing processes, procedures and services:
- Apple Pay: payment services
(technical connection of online payment methods); Service provider: Apple Inc, Infinite Loop, Cupertino, CA 95014, USA;
Legal basis: Contract fulfillment and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR); Website:
https://www.apple.com/de/apple-pay/. Data protection declaration:
https://www.apple.com/legal/privacy/de-ww/.
- PayPal:
Payment services (technical connection of online payment methods) (e.g. PayPal, PayPal Plus, Braintree); Service provider:
PayPal (Europe) S.Ã r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg; Legal basis: Performance of contract
and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR); Website:
https://www.paypal.com/de. Data protection declaration:
https://www.paypal.com/de/webapps/mpp/ua/privacy-full.
Provision of the online service and web hostingWe
process users' data in order to make our online services available to them.
be able to provide them with our online services. For this purpose, we process the user's IP address, which is necessary to transmit the content and functions of our
online services to the user's browser or end device.
- Processed data types: Usage data (e.g. websites visited, interest in content, access times).
Meta, communication and process data (e.g. IP addresses, time data, identification numbers, consent status).
- Data subjects
Persons: Users (e.g. website visitors, users of online services).
- Purposes of processing: Provision of our online
of our online services and user-friendliness; information technology infrastructure (operation and provision of information systems and technical
technical devices (computers, servers, etc.). Security measures.
- Legal bases: Legitimate interests
(Art. 6 para. 1 sentence 1 lit. f) GDPR).
Further information on processing processes, procedures and services:
- Collection of access data and log files: Access to our online offering is recorded in the form of
so-called "server log files". The server log files may include the address and name of the web pages and files accessed,
date and time of access, data volumes transferred, notification of successful access, browser type and version, the user's operating system
the user's operating system, referrer URL (the previously visited page) and, as a rule, IP addresses and the requesting provider.
The server log files
can be used for security purposes, e.g. to avoid overloading the server (especially in the case of
abusive attacks, so-called DDoS attacks) and, on the other hand, to ensure the utilization of the servers and their stability;
Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). Deletion of data: Log file information
is stored for a maximum of 30 days and then deleted or anonymized. Data whose further storage is required for evidentiary purposes
is required are excluded from deletion until final clarification of the respective incident.
Contact and inquiry managementWhen
contacting us (e.g. by post, contact form, email, telephone or via social media)
as well as in the context of existing user and business relationships, the details of the inquiring persons are processed insofar as this is necessary to answer the
contact requests and any requested measures.
- Processed data types: Contact data (e.g. email, telephone numbers); Content data (e.g. entries in online forms);
Usage data (e.g. websites visited, interest in content, access times). Meta, communication and process data (e.g. IP addresses, time data,
identification numbers, consent status).
- Data subjects: Communication partners.
- Purposes of processing:
Contact requests and communication; Managing and responding to inquiries; Feedback (e.g. collecting feedback via online form). Provision of our
online offer and user-friendliness.
- Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Presence in social networks (social media)
We maintain online presences within social networks and process user data in this
context in order to
data of users in order to communicate with the users active there or to offer information about us.
We would like to point out that user data may be processed outside the European Union. This may result in risks for
risks for users because, for example, this could make it more difficult to enforce users' rights.
Furthermore, user data is usually processed within social networks for market research and advertising purposes. For example, on the basis of
user profiles can be created on the basis of user behavior and the resulting interests of the users. The usage profiles can in turn be used
be used, for example, to place advertisements within and outside the networks that presumably correspond to the interests of the users. For these purposes
cookies are usually stored on the user's computer, in which the user's usage behavior and interests are stored.
Furthermore, data can also be stored in the user profiles regardless of the devices used by the users (in particular if the users
are members of the respective platforms and are logged in to them).
For a detailed description of the respective forms of processing and the possibilities of objection (opt-out), please refer to the
data protection declarations and information provided by the operators of the respective networks.
In the case of requests for information and the assertion of data subject rights, we would also like to point out that these can be asserted most effectively with the
can be asserted with the providers. Only the providers have access to the users' data and can directly take appropriate measures and obtain information.
take appropriate measures and provide information. If you still need help, you can contact us.
- Processed data types: Contact data (e.g. e-mail, telephone numbers); Content data (e.g.
entries in online forms); usage data (e.g. websites visited, interest in content, access times). Meta, communication
and process data (e.g. IP addresses, time data, identification numbers, consent status).
- Data subjects
Persons: Users (e.g. website visitors, users of online services).
- Purposes of processing:
Contact requests and communication; feedback (e.g. collecting feedback via online form). Marketing.
-
Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Further information on
Processing processes, procedures and services:
- Instagram: Social
Network; Service provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2,
Ireland; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR) ;
Website: https://www.instagram.com. Data protection declaration:
https://instagram.com/about/legal/privacy.
-
Facebook pages: Profiles within the social network Facebook - We are jointly responsible with Meta Platforms Ireland
Limited for the collection (but not the further processing) of data of visitors to our Facebook page (so-called "fan page")
responsible. This data includes information about the types of content that users view or interact with, or that they
interact with, or the actions they take (see under 'Things you and others do and provide'
in the Facebook Data Policy: https://www.facebook.com/policy),
as well as information about the devices used by users (e.g. IP addresses, operating system, browser type, language settings,
cookie data; see under "Device Information" in the Facebook Data Policy:
https://www.facebook.com/policy). As described in the Facebook data policy
under "How do we use this information?", Facebook also collects and uses information to provide analysis services, so-called
"Page Insights", for page operators to provide them with insights into how people interact with their
interact with their pages and the content associated with them. We have entered into a special agreement with Facebook
("Information about Page Insights",
https://www.facebook.com/legal/terms/page_controller_addendum),
which regulates in particular which security measures Facebook must observe and in which Facebook has agreed to fulfill the rights of data subjects
(i.e. users can, for example, send information or deletion requests directly to Facebook). The rights of users (in particular to information, deletion, objection and
complaint to the competent supervisory authority) are not restricted by the agreements with Facebook. Further information can be found in the
"Information on page insights"
(https://www.facebook.com/legal/terms/information_about_page_insights_data);
Service provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland;
Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR);
Website: https://www.facebook.com;
Data protection declaration: https://www.facebook.com/about/privacy;
Basis for third country transfer: EU-US Data Privacy Framework (DPF), standard contractual clauses
(https://www.facebook.com/legal/EU_data_transfer_addendum).
Further information: Agreement on joint controllership:
https://www.facebook.com/legal/terms/information_about_page_insights_data.
The joint controllership is limited to the collection by and transfer of data to Meta Platforms Ireland Limited, a company based in the EU.
The further processing of the data is the sole responsibility of Meta Platforms Ireland Limited, which includes in particular the transfer of data to
the parent company Meta Platforms, Inc. in the USA (on the basis of the standard contractual clauses concluded between Meta Platforms Ireland Limited and Meta Platforms, Inc.
concluded standard contractual clauses).
Plugins and embedded functions and contentWe
incorporatefunctional and content elements into our online offering that
are provided by the
servers of their respective providers (hereinafter referred to as "third-party providers"). These may be, for example, graphics, videos or
city maps (hereinafter uniformly referred to as "content").
The integration always requires that the third-party providers of this content process the IP address of the user, as without the IP address they
would not be able to send the content to their browser. The IP address is therefore required to display this content or function. We endeavor to use only
content whose respective providers only use the IP address to deliver the content. Third-party providers can also
use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. Through the "pixel tags"
can be used to analyze information such as visitor traffic on the pages of this website. The pseudonymous information can also be stored in cookies
stored on the user's device and, among other things, technical information about the browser and operating system, referring websites, the
visiting time and other information on the use of our online offer, as well as being linked to such information from other sources.
- Processed data types: Usage data (e.g. websites visited, interest in content, access times); meta,
communication and process data (e.g. IP addresses, time data, identification numbers, consent status); inventory data (e.g. names, addresses);
Contact data (e.g. e-mail, telephone numbers); Content data (e.g. entries in online forms). Location data (information on the geographical position of a
device or a person).
- Persons concerned: Users (e.g. website visitors, users of online services).
- Purposes of processing: Provision of our online services and user-friendliness.
- Legal bases:
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
Further information on processing processes, procedures and services:
- Google Maps: We integrate the maps of the Google Maps service provided by Google.
The processed data may include, in particular, IP addresses and user location data; service provider:
Google Cloud EMEA Limited, 70 Sir John Rogersonâs Quay, Dublin 2, Ireland; Legal basis:
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website:
https://mapsplatform.google.com/; Privacy Policy:
https://policies.google.com/privacy. Basis for third country transfer:
EU-US Data Privacy Framework (DPF).
- YouTube videos: Video content; service provider:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Legal basis: Legitimate interests
(Art. 6 para. 1 sentence 1 lit. f) GDPR) ;Website: https://www.youtube.com;
Data protection declaration: https://policies.google.com/privacy;
Basis for third country transfer: EU-US Data Privacy Framework (DPF). Possibility of objection (opt-out):
Opt-out plugin: https://tools.google.com/dlpage/gaoptout?hl=de,
Settings for the display of advertisements: https://adssettings.google.com/authenticated.
Created with free Datenschutz-Generator.de by Dr. Thomas Schwenke