Privacy statement

1. Introduction

This website is operated by: BühlerCreative.

It is very important to us to handle the data of our website visitors with confidence and to protect it in the best possible way. For this reason, we make every effort to meet the requirements of the GDPR.

In the following, we will explain to you how we process your data on our website. To do this, we use language that is as clear and transparent as possible so that you really understand what is happening with your data.

2. General information

2.1 Processing of personal data and other terms

Data protection applies when processing personal data. Personal means all data with which you can be personally identified. This is, for example, the IP address of the device (PC, laptop, smartphone, etc.) in front of which you are currently sitting. Such data is processed when “something happens to it.” Here, for example, the IP is transmitted from the browser to our provider and automatically stored there. This is then processing (in accordance with Article 4 No. 2 GDPR) of personal data (in accordance with Article 4 No. 1 GDPR).

These and other legal definitions can be found in Article 4 GDPR.

2.2 Applicable regulations/laws — GDPR, BDSG and TTDSG

The scope of data protection is regulated by law. In this case, this is the GDPR (General Data Protection Regulation) as a European regulation and the BDSG (Federal Data Protection Act) as a national law.

In addition, the TTDSG supplements the provisions of the GDPR as far as the use of cookies is concerned.

2.3 The person responsible

Responsible for data processing on this website is the person responsible within the meaning of the GDPR. This is the natural or legal person who, alone or together with others, decides on the purposes and means of processing personal data.

You can contact the person responsible at:

BühlerCreative

Rechgasse 12, 74939 Zuzenhausen, Germany

johannes@buehlercreative.com

2.4 This is how data is generally processed on this website

As we have already established, there is data (e.g. IP address) that is automatically collected. This data is mainly required for the technical provision of the homepage. If we also use personal data or collect other data, we will explain this to you or ask for consent.

You deliberately share other personal data with us.

You can find detailed information about this below.

2.5 Your rights

The GDPR provides you with comprehensive rights. These include, for example, free information about the origin, recipient and purpose of your stored personal data. You can also request the correction, blocking or deletion of this data or complain to the responsible data protection supervisory authority. You can withdraw your consent at any time.

You can find out what these rights look like in detail and how to exercise them in the last section of this privacy policy.

2.6 Data Protection — Our View

For us, data protection is more than just a chore! Personal data is of great value and careful handling of this data should be a matter of course in our digitalized world. In addition, as a website visitor, you should be able to decide for yourself what, when and by whom “happens” with your data. That is why we are committed to complying with all legal requirements, collect only the data necessary for us and, of course, treat it confidentially.

2.7 Transfer and deletion

The transfer and deletion of data are also important and sensitive topics. That is why we would like to briefly inform you in advance about our general approach to this.

Data will only be passed on on the basis of a legal basis and only if this is unavoidable. This may be the case in particular if it is a so-called order processor and an order processing contract has been concluded in accordance with Article 28 GDPR.

We delete your data when the purpose and legal basis for processing cease to apply and the deletion also does not conflict with any other legal obligations. Article 17 GDPR also provides a “good” overview of this.

Please read all further information in this privacy policy and contact the person responsible if you have specific questions.

2.8 Hosting

This website is hosted externally. The personal data collected on this website is stored on the host's servers. This includes, on the one hand, the automatically collected and stored log files (see below for more details), as well as all other data that website visitors provide.

External hosting is carried out for the purpose of providing our website securely, quickly and reliably and, in this context, serves to fulfill the contract with our potential and existing customers.

The legal basis for processing is Art. 6 para. 1 lit. a, b and f DSGVO, as well as § 25 para. 1 TTDSG, insofar as consent includes the storage of cookies or access to information on the website visitor's or user's device within the meaning of the TTDSG.

Our host only processes data that is necessary to fulfill its performance obligation and acts as our contract processor, which means that it is subject to our instructions. We have concluded a corresponding contract for order processing with our host.

We use the following host:

Webflow

Webflow, Inc., 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA

privacy@webflow.com

https://webflow.com/legal/eu-privacy-policy.

2.9 Legal bases

The processing of personal data always requires a legal basis. The GDPR provides for the following options in Article 6 (1) sentence 1:

a) The data subject has given consent to the processing of personal data concerning him or her for one or more specific purposes;

b) processing is necessary for the performance of a contract to which the data subject is a party or to carry out pre-contractual measures taken at the request of the data subject;

c) processing is necessary to fulfill a legal obligation to which the person responsible is subject;

d) processing is necessary to protect the vital interests of the data subject or of another natural person;

e) processing is necessary for the performance of a task which is in the public interest or is carried out in the exercise of official authority vested in the person responsible;

f) processing is necessary to protect the legitimate interests of the controller or of a third party, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data prevail, in particular when the data subject is a child.

In the following sections, we will tell you the specific legal basis for the respective processing.

3. That's what happens on our website

When you visit our website, we process your personal data.

In order to best protect this data against unauthorized access by third parties, we use SSL or TLS encryption. You can recognize this encrypted connection by the fact that an https://or a lock symbol is shown in the address bar of your browser.

In the following, you will find out which data is collected when you visit our website, for what purpose this is done and on which legal basis.

3.1 Data collection when you visit the website

When you access the website, information is automatically stored in so-called server log files. The information is as follows:

•Browser type and browser version

•operating system used

•Referrer URL

•Host name of the accessing computer

•Time of server request

•IP address

This data is temporarily required in order to be able to display our website to you permanently and easily. In particular, this data is used for the following purposes:

•Site system security

•Site system stability

•Troubleshooting on the website

•Establishing a connection to the website

•Presentation of the website

Data processing is carried out in accordance with Article 6 (1) (f) GDPR and is based on our legitimate interest in processing this data, in particular out of interest in the functionality of the website and its security.

Where possible, this data is stored pseudonymized and deleted after the respective purpose has been achieved.

Insofar as the server log files make it possible to identify the person concerned, the data is stored for a maximum period of 14 days. There is an exception when a safety-related event occurs. In this case, the server log files are stored until the security-relevant event has been resolved and finally clarified.

Otherwise, there is no merging with other data.

3.2 Cookies

3.2.1 General

This website uses so-called cookies. This is a data set, information that is stored in the browser of your device and is related to our website.

In particular, setting cookies can make it easier for visitors to navigate the website.

In our cookie consent tool, you will find all information about the cookies that we use on our website (possibly with your consent).

3.2.2 Rejecting cookies

You can manage all cookies that are not technically necessary directly via our cookie consent tool.

You can prevent cookies from being set by adjusting your browser settings.

Here you can find the corresponding links to frequently used browsers:

If you use another browser, it is recommended to enter the name of your browser and 'delete and manage cookies' into a search engine and follow the official link to your browser.

Alternatively, you can also change your cookie settings at https://www.aboutads.info/choices/ or https://www.youronlinechoices.com/ manage.

However, we must point out that comprehensive blocking/deleting cookies may affect the use of the website.

3.2.3 Technically necessary cookies

We use technically necessary cookies on this website so that our website functions error-free and in accordance with applicable laws. They help make the website user-friendly. Some functions of our website cannot be displayed without the use of cookies.

Depending on the individual case, the legal basis for this is Art. 6 para. 1 lit. b, c and/or f GDPR.

3.2.4 Technically unnecessary cookies

In addition, we also use cookies on our website that are not technically necessary. These cookies are used, among other things, to analyze the surfing behavior of website visitors or to offer website functions that are not technically necessary.

The legal basis for this is your consent in accordance with Article 6 (1) (a) GDPR.

Technically unnecessary cookies are only set with your consent, which you can revoke at any time in the cookie consent tool.

3.3 Data processing through user input

3.3.1 Own data collection

We offer the following (service) service on our website: Website Design & Development.

For this purpose, we collect the following data:

name

email address

phone number

The legal basis for this data processing is Article 6 (1) (b) GDPR.

The data will be deleted as soon as the respective purpose no longer applies and it is possible in accordance with legal requirements.

3.3.2 Contact

a) Email

If you contact us by email, we process your email address and any other data contained in the email. These are stored on the mail server and partly on the respective end devices. Depending on the issue, the legal basis for this is usually Art. 6 para. 1 lit. f DSGVO or Art. 6 para. 1 lit. b GDPR. The data will be deleted as soon as the respective purpose no longer applies and it is possible in accordance with legal requirements.

b) Contact form

We offer a contact form. This is used to contact our company.

In this form, we usually process your first and last name, your telephone number, your e-mail address, a postal address and the content of the message. The data is stored on our web server and forwarded internally to the relevant email addresses.

The legal basis for data processing is Art. 6 para. 1 lit. f DSGVO, as we have a legitimate interest in answering your request and in making contact easy. If the purpose of contacting us is to conclude a contract, the additional legal basis for processing is Art. 6 para. 1 lit. b DSGVO.

We delete this data no later than 3 months after receipt, unless it is required for an established contractual relationship.

We include the contact form from

Webflow

Webflow, Inc., 398 11th Street, 2nd Floor San Francisco, CA 94103, United States of America

https://webflow.com/legal/eu-privacy-policy.

on our website.

3.4 Cookie consent tool

3.4.1 ConsentManager

To ensure that only cookies are set on our website for which there is a legal basis, we use the consent management tool ConsentManager from Jaohawi AB, Haltegelvägen 1b, 72348 Västeras, Sweden.

This service is used to obtain the website visitor's consent to the storage of certain cookies in their browser or the use of certain technologies and to document them in accordance with data protection regulations.

When this website is accessed, the consent given by the website visitor or the withdrawal of consent is stored as a consent manager cookie in the website visitor's browser. To do this, a connection to the ConsentManager servers is established.

The legal basis is Art. 6 para. 1 lit. c GDPR. ConsentManager is used to obtain the legally required consent for the use of cookies.

Until the website visitor requests deletion or deletes ConsentManager himself, or the purpose for storing the data no longer applies, the collected data is stored. The mandatory legal storage periods remain unaffected by this.

3.5 Website builder system

3.5.1 Webflow

We use Webflow to create our website. This is a service provided by Webflow, Inc., 398 11th Street, 2nd Floor San Francisco, CA 94103, United States of America.

Webflow is a website builder system. With this service, we can design our website according to our wishes and meet our goal of user friendliness.

Webflow uses cookies for safe browsing and to prevent cross-site request forgery (session cookies), as well as for secure transactions.

The service is technically necessary to display our website. The legal basis for processing is Article 6 (1) (f) GDPR.

Webflow also processes data in the USA. We have concluded standard contract clauses (SCCs) with webflow.

More detailed information:

https://webflow.com/legal/privacy.

3.6. newsletters

3.6.1 Webflow

We use Webflow's email marketing and newsletter feature to deliver our newsletter. This service is offered by Webflow, Inc., 398 11th Street, 2nd Floor San Francisco, CA 94103, United States of America.

Through this service, the sending of newsletters can be organized and analyzed. The data that is entered to receive the newsletter is stored on Webflow's servers.

With the help of Webflow, interactions with the newsletter can be analyzed. Conversion rates can also be determined and newsletter users categorized in order to adapt the newsletter to the different target groups.

This analysis can be contradicted.

The legal basis for processing is Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG. The consent can be withdrawn at any time by unsubscribing from the newsletter. The lawfulness of the processing that has already been carried out remains unaffected by any revocation that may have taken place.

The data will be deleted at the end of the contract between us and Webflow, unless the website visitor withdraws their consent beforehand. If this is the case, the data is deleted from the distribution list.

More information:

https://webflow.com/legal/privacy.

3.7 Analysis and tracking tools

3.7.1 Google Analytics

We use Google Analytics on this website. Google Analytics is a web analytics service. This service is offered by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics uses cookies to recognize the user and thus analyze usage behavior. These cookies are only set with consent. Consent can be withdrawn at any time and managed in our cookie consent tool.

The legal basis for processing is Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG.

The information collected here is usually transferred to a Google server in the USA and stored there. On July 10, 2023, the European Commission adopted an adequacy decision for the USA. Goggle LLC is certified according to the EU-US Privacy Framework. However, since Google servers are stationed worldwide and data transmission to third countries (e.g. Singapore) cannot be ruled out, the EU Commission's standard contractual clauses (SCC) apply.

By using Google Analytics, IP anonymization takes effect. The IP address of the respective user is abbreviated within the member states of the EU (or the European Economic Area) on servers within the EU in such a way that tracing back to a natural person is no longer possible. In addition, Google is committed to adequate data protection through the Google Ads data processing conditions and compiles an evaluation of website usage and website activity and provides the services associated with the use. The Google Ads data processing terms apply to companies that are subject to the EU General Data Protection Regulation (GDPR) of the European Economic Area (EEA), the California Consumer Privacy Act (CCPA), or similar regulations.

An additional browser plug-in can be used to prevent the collected information (such as the IP address) from being sent to Google and used by Google. The plugin and further information about it can be found at https://tools.google.com/dlpage/gaoptout?hl=de.

Otherwise, the storage period depends on the type of data processed. Each customer can choose how long Google Analytics stores data before it is automatically deleted. The maximum lifespan of a Goggle Analytics cookie is two years.

You can also find more information about Google's use of data at https://support.google.com/analytics/answer/6004245?hl=de. If you have any further questions, you can also contact us directly at support-deutschland@google.com turn around.

3.7.2 Hotjar

We use Hotjar on this website. Hotjar is a web analytics service. This service is offered by Hotjar Ltd., Level 2, St Julian's Business Centre, 3, Elia Zammit Street, St. Julian's STJ 1000, Malta.

With the help of Hotjar, we can analyze user behavior on the corresponding website. Hotjar creates so-called heat maps, which can be used to understand which areas of the website are preferred by website visitors. It also determines how long the website visitor stayed on the website and when they left it.

Hotjar uses cookies to recognize website visitors and to be able to analyze user behavior.

The legal basis for processing is Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as this consent includes access to information on the user's terminal device or the storage of cookies within the meaning of the TTDSG.

More details:

https://www.hotjar.com/policies/do-not-track/

https://www.hotjar.com/privacy.

3.8 Social media profiles

In addition to our website, our company is also present on social networks. In doing so, we want to present our company and create the opportunity to get in touch with us.

We also use the opportunity to place advertisements and job applications on social media.

In the following, we will inform you which data we and the respective social network process when you visit and interact with our profile.

3.8.1 LinkedIn

We run a LinkedIn profile on https://www.linkedin.com/. This social network is operated by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA.

a) Interaction with our company profile

When you visit our LinkedIn profile and interact with us via it, we process personal data. On the one hand, the publicly available data on the profile. On the other hand, there is also the personal data contained in posts, comments or direct messages to us. Through interactions such as liking or sharing, we can see the user profile with public information.

The legal basis for this processing is Article 6 (1) (f) GDPR. It is in our legitimate interest to provide relevant and interesting content and to enable the use and functionality of our LinkedIn profile

Insofar as an enquiry is related to the fulfilment of a contract or is necessary to carry out pre-contractual measures, our processing is based on Art. 6 para. 1 lit. b GDPR.

b) Page insights

LinkedIn provides us with summarized statistics and insights (so-called page insights) that tell us how people interact with our company page. Among other things, we receive information about the number of profiles that view, comment on, or otherwise interact with our posts, as well as summarized demographic and other information that helps us learn about interaction with our page or LinkedIn profile. Pages Insights, which are provided to us by LinkedIn, consist of aggregated data, and LinkedIn does not provide us with any personal data from members in relation to Page Insights. We also have no option to link Page Insights to individual members.

When we place ads, LinkedIn gives us information about the types of people who see our ads and how successful our ads are. Personal data will only be passed on to us if this person has consented to such processing. We also receive information from LinkedIn that allows us to understand which of our ads led to a purchase being made or an action being taken.

The processing of this data serves the purpose of analyzing our reach and adapting our content and ads to user interests. Based on the analysis of this data, we can see how our content, profile and advertising are being consumed. This allows us to create content tailored to target groups and advertise in order to better market our company and services.

The processing is based on our legitimate interest in accordance with Article 6 (1) (f) GDPR.

When processing personal data as part of so-called page insights, processing is carried out under joint responsibility with LinkedIn in accordance with Article 26 (1) GDPR.

For this purpose, we have reached a corresponding agreement with LinkedIn, which is available here (https://legal.linkedin.com/pages-joint-controller-addendum) can be viewed.

LinkedIn's contact details are:

LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland.

For LinkedIn, you can contact the data protection officer at the following link:

https://www.linkedin.com/help/linkedin/ask/TSO-DPO.

3.8.2 Processing by LinkedIn

LinkedIn may also process additional personal data in connection with your visit to our company profile. In this case, the processing is the sole responsibility of LinkedIn and without our knowledge. You can find more information about this from LinkedIn at:

https://de.linkedin.com/legal/privacy-policy.

3.8.3 LinkedIn Ads

Our website also includes the functions of LinkedIn Ads.

With the help of LinkedIn Ads, we can easily create effective ads that can be noticed by a large target group on LinkedIn.

LinkedIn collects personal data using cookies for this purpose. This evaluates user behavior in order to analyze the effectiveness of advertising measures and adapt them more user-oriented for future campaigns.

These cookies are only set with consent. The consent can be withdrawn at any time. The legal basis for this is Article 6 (1) (a) GDPR.

In addition, the legal basis for processing data by LinkedIn Ads is Art. 6 para. 1 lit. f DSGVO. We have a legitimate interest in expanding and optimizing our advertising presence on the LinkedIn platform.

3.9 Facebook

We run a Facebook fan page at https://www.facebook.com/. This social network is operated by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

3.9.1 Interaction with our company profile

When you visit our Facebook profile and interact with us via it, we process personal data. On the one hand, the publicly available data on the profile. On the other hand, there is also the personal data contained in posts, comments or direct messages to us. Through interactions such as liking or sharing, we can see the user profile with public information.

Insofar as an enquiry is related to the fulfilment of a contract or is necessary to carry out pre-contractual measures, our processing is based on Art. 6 para. 1 lit. b GDPR.

3.9.2 Page Insights

As described in the Meta Privacy Policy under “How do we use your information? “(also explains, collects and uses meta information to provide analysis services, so-called page insights, for site operators. This also applies to our Facebook page.

Page insights are summarized statistics that are created based on specific visitors' interactions with pages and the content associated with them (such as watching a page or video, subscribing to a page, “Like” or “Dislike” a page, etc.) and logged by Meta Servers.

Meta provides us with summarized statistics and insights in connection with page insights that tell us how people are interacting with our company page. This does not give us access to personal data, but only to the summarized page insights. With the help of page insights, we can view anonymous statistics, such as the reach of our account, page views, likes, etc. These also include analyses based on the age, gender and location of users (as stated by them in their respective Facebook profiles). To evaluate reach, we can make settings or set appropriate filters with regard to the selection of a period of time, the consideration of a specific contribution and demographic groups. This data is anonymized. It is not possible for us to draw conclusions about specific people.

The purpose of processing this data is to analyze our reach and adapt our content and ads to user interests so that visitors can get the most out of it. Based on the analysis of this data, we can see how our content, profile and advertising are being consumed. This allows us to create content tailored to target groups and advertise in order to better market our company and services.

The processing is based on our legitimate interest in accordance with Article 6 (1) (f) GDPR.

When processing personal data as part of so-called page insights, there is joint responsibility with Facebook in accordance with Article 26 (1) GDPR.

For this purpose, we have made a corresponding agreement with Facebook, which can be viewed here (https://www.facebook.com/legal/terms/page_controller_addendum).

Facebook's contact details are:

Online contact: https://www.facebook.com/help/contact/1650115808681298

By post: Meta Platforms Ireland Limited, ATTN: Privacy Operations, Merrion Road, Dublin 4, D04 X2K5, Ireland.

For Facebook, you can contact the data protection officer at the following link:

https://www.facebook.com/help/contact/540977946302970

Learn more about page insights:

https://de-de.facebook.com/help/pages/insights

3.9.3 Processing of personal data and cookies by Meta

When you access a Facebook page, the IP address assigned to your device is transmitted to Facebook. According to information from Facebook, this IP address is anonymized (in the case of “German” IP addresses). Facebook also stores information about its users' devices (e.g. as part of the “login notification” function); this may allow Facebook to assign IP addresses to individual users. If you are currently logged in to Facebook as a user, there is a cookie on your device with your Facebook ID. This allows Facebook to understand that you visited this page and how you used it. Facebook buttons integrated into websites enable Facebook to record your visits to these websites and associate them with your Facebook profile. Based on this data, content or advertising can be offered tailored to you.

Information on how personal data can be managed or deleted can be found in the Facebook Privacy Center:

https://www.facebook.com/privacy/center/

More information on how Facebook handles data can be found here:

http://de-de.facebook.com/about/privacy

3.10Instagram

We run an Instagram profile. This social media platform is offered by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

3.10.1 Interaction with our company profile

Insofar as an enquiry is related to the fulfilment of a contract or is necessary to carry out pre-contractual measures, our processing is based on Art. 6 para. 1 lit. b GDPR.

3.10.2 Insights

As described in the Meta Privacy Policy under “How do we use your information? “(https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect) also explains, collects and uses meta information to provide analysis services, so-called insights, for site operators. This also applies to our Instagram profile.

Insights are summarized statistics that are created based on specific interactions of visitors with pages and the content associated with them and are logged by the meta servers. This includes the following information

•How many people view and interact with our products, services, or content, including posts, videos, Facebook pages, ads, stores, and ads (when the ad is shown on meta products);

•How do people interact with our content, websites, apps, and services;

•Which group of people interacts with our content or which group of people use our services.

Meta provides us with summarized reports and insights that tell us how well our content, features, products, and services are doing.

In doing so, we do not have access to personal data, but only to the summarized reports.

To evaluate reach, we can make settings or set appropriate filters with regard to the selection of a period of time, the consideration of a specific contribution and demographic groups. This data is anonymized. It is not possible for us to draw conclusions about specific people.

The processing is based on our legitimate interest in accordance with Article 6 (1) (f) GDPR.

When processing personal data as part of so-called insights, processing is carried out under joint responsibility with Meta in accordance with Article 26 (1) GDPR.

For this purpose, we have reached a corresponding agreement with Meta, which can be viewed here (https://www.facebook.com/legal/terms/page_controller_addendum.).

Meta's contact details are:

Online contact: https://www.facebook.com/help/contact/1650115808681298

By post: Meta Platforms Ireland Limited, ATTN: Privacy Operations, Merrion Road, Dublin 4, D04 X2K5, Ireland.

For Facebook, you can contact the data protection officer at the following link:

https://www.facebook.com/help/contact/540977946302970

Learn more about the insights:

https://de-de.facebook.com/help/pages/insights

Instagram's full privacy policy can be found here:

https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect

3.10.3 Processing of personal data and cookies by Meta

When you access an Instagram page, the IP address assigned to your device is transmitted to Meta. According to Meta, this IP address is anonymized (in the case of “German” IP addresses). Meta also stores information about its users' devices (e.g. as part of the “login notification” function); Meta may thus be able to assign IP addresses to individual users. If you are currently logged in to Instagram as a user, there is a cookie on your device with your Instagram ID. This allows Meta to understand that you visited this page and how you used it. Meta buttons integrated into websites make it possible for Meta to record your visits to these websites and associate them with your Instagram profile. Based on this data, content or advertising can be offered tailored to you.

More detailed information:

https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect.

3.11 Third party content

3.11.1 Google Fonts

We have integrated Google Fonts locally on our server. This means that, despite use, no data is transferred to Google.

3.11.2 Font Awesome

We have integrated Adobe fonts locally on our server. This means that, despite use, no data is transferred to Adobe.

3.11.3 Google reCAPTCHA

This website uses Google reCAPTCHA. Google reCAPTCHA is a plugin offered by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

The service makes it possible to determine whether data is entered by a person or by an automated program. This analysis starts automatically in the background as soon as the website is entered. For this purpose, various information is collected, which is transmitted to Google. There is no reference to this analysis.

The legal basis for processing is Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG. The consent can be withdrawn at any time.

More details:

https://policies.google.com/privacy?hl=de

https://policies.google.com/terms?hl=de.

3.12 Affiliate marketing

4. That's also important

Finally, we would like to inform you in detail about your rights and tell you how you will be informed about changes in data protection requirements.

4.1 Your rights in detail

4.1.1 Right to information in accordance with Art. 15 GDPR

You can request information as to whether your personal data is being processed. If this is the case, you can request further information on the method of processing. A detailed list can be found in Art. 15 para. 1 lit. a to h DSGVO.

4.1.2 Right to correction under Article 16 GDPR

This right includes the correction of incorrect data and the addition of incomplete personal data.

4.1.3 Right to deletion in accordance with Article 17 GDPR

This so-called “right to be forgotten” gives you the right, under certain conditions, to request the deletion of personal data by the person responsible. In principle, this is the case when the purpose of data processing has ceased to apply, if consent has been withdrawn or the outgoing processing took place without a legal basis. A detailed list of reasons can be found in Art. 17 para. 1 lit. a to f DSGVO. This “right to be forgotten” also corresponds to the duty of the person responsible under Article 17 (2) GDPR to take appropriate measures to bring about a general deletion of the data.

4.1.4 Right to restrict processing in accordance with Article 18 GDPR

This right is subject to the conditions set out in Article 18 (1) (a) to (d).

4.1.5 Right to data portability in accordance with Article 20 GDPR

This regulates the fundamental right to receive your own data in a standard form and to transfer it to another person responsible. However, this only applies to data processed on the basis of consent or contract in accordance with Art. 20 (1) lit. a and b and insofar as this is technically feasible.

4.1.6 Right to object under Article 21 GDPR

In principle, you can object to the processing of your personal data. This applies in particular if your interest in objecting outweighs the legitimate interest of the person responsible in processing and if the processing relates to direct marketing and/or profiling.

4.1.7 Right to “decision in individual cases” under Article 22 GDPR

In principle, you have the right not to be subject to a decision based exclusively on automated processing (including profiling) which has legal effect on you or significantly affects you in a similar way. However, this right is also subject to restrictions and additions in Article 22 (2) and (4) GDPR.

4.1.8 Other rights

The GDPR includes comprehensive rights to inform third parties whether or how you have asserted rights under Articles 16, 17, 18 GDPR. However, this only insofar as this is also possible or can be carried out with reasonable effort.

At this point, we would like to draw your attention once again to your right to withdraw consent in accordance with Article 7 (3) GDPR. However, this does not affect the lawfulness of the processing carried out up to that point.

In addition, we would also like to draw your attention to your rights under Sections 32 et seq. of the BDSG, which, however, are largely congruent with the rights just described.

4.1.9 Right to lodge a complaint under Art. 77 GDPR

You also have the right to complain to a data protection supervisory authority if you believe that processing of personal data relating to you is contrary to this regulation.

5. What if the GDPR is abolished tomorrow or other changes take place?

The current status of this privacy policy is 05.05.2024. From time to time, it is necessary to adjust the content of the privacy policy in order to respond to actual and legal changes. We therefore reserve the right to change this privacy policy at any time. We will publish the amended version in the same place and recommend that you read the privacy policy regularly.

‍