data protection

data protection

We have written this data protection declaration (version 22.07.2020-31196705) to you General Data Protection Regulation (EU) 2016/679 To explain what information we collect, how we use data and what decision -making options you have as a visitor to this website.

Unfortunately, it is in the nature of the matter that these explanations sound very technical, but we tried to describe the most important things as easily and clearly as possible when creating.

Automatic data storage

If you visit websites these days, certain information is automatically created and saved, including on this website.

If you are visiting our website like now, our web server (computer on which this website is saved) automatically stores data such as

  • The address (URL) of the accessed website
  • Browser and browser version
  • The operating system used
  • The address (URL) of the previously attended page (referrer URL)
  • the host name and the IP address of the device from which is accessed
  • Date and Time

in files (web server log files).

As a rule, web server log files are saved for two weeks and then automatically deleted. We do not pass this data further, but cannot rule out that this data is viewed when the illegal behavior is present.

Cookies

Our website uses HTTP cookies to save user-specific data.
In the following we explain what cookies are and why they are used so that you can better understand the following data protection declaration.

What exactly are cookies?

Whenever you surf through the Internet, use a browser. Well -known browsers include Chrome, Safari, Firefox, Internet Explorer and Microsoft Edge. Most websites store small text files in your browser. These files are called cookies.

One thing is not to be pointed out: cookies are really useful helpers. Almost all websites use cookies. More specifically, they are HTTP cookies, as there are other cookies for other areas of application. HTTP cookies are small files stored by our website on your computer. These cookie files are automatically accommodated in the cookie folder, almost the “brain” of your browser. A cookie consists of a name and value. When defining a cookies, one or more attributes must be given.

Cookies save certain user data from you, such as language or personal page settings. When you call up our page again, your browser will return the "user -related" information to our website. Thanks to the cookies, our website knows who they are and offers you your usual standard setting. In some browsers, each cookie has its own file, in others, such as Firefox, all cookies are saved in a single file.

There are cookies and third-party cookies. Inheritance cookies are created directly from our site, third-party cookies are created by partner websites (e.g. Google Analytics). Each cookie is to be assessed individually because each cookie stores different data. The expiry time of a cookies also varies from a few minutes to a few years. Cookies are not software programs and contain no viruses, Trojans or other "pests". Cookies cannot access your PC information either.

For example, cookie data can look:

  • Name: _GA
  • Departure time: 2 years
  • Use: Differentiation of website visitors
  • Exemplary value: GA1.2.1326744211.152311196705

A browser should support the following minimum sizes:

  • A cookie should be able to contain at least 4096 bytes
  • At least 50 cookies should be saved per domain
  • A total of at least 3000 cookies should be saved

What types of cookies are there?

The question of which cookies we use in particular depends on the services used and is clarified in the following sections of the data protection declaration. At this point we would like to briefly go into the different types of HTTP cookies.

One can distinguish 4 types of cookies:

Absolutely necessary cookies
These cookies are necessary to ensure basic functions of the website. For example, these cookies are needed when a user puts a product in the shopping cart, then surfing on other sides and later goes to the cash register. These cookies do not delete the shopping cart, even if the user closes its browser window.

Functional cookies
These cookies collect information about user behavior and whether the user receives any error messages. In addition, the loading time and the behavior of the website are also measured at various browsers with the help of these cookies.

Target -oriented cookies
These cookies ensure better user -friendliness. For example, entered locations, font sizes or formal data are saved.

Advertising cookies
These cookies are also called targeting cookies. They serve to deliver individually adapted advertising to the user. That can be very practical, but also very annoying.

Usually you are asked when visiting a website for the first time, which of these cookie types you want to allow. And of course this decision is also saved in a cookie.

How can I delete cookies?

You decide how and whether you want to use cookies. Regardless of which service or website the cookies come, you always have the opportunity to delete cookies, only partially allow or deactivate. For example, you can block cookies from third -party providers, but allow all other cookies.

If you want to determine which cookies have been saved in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:

Chrome: Delete, activate and manage cookies in Chrome

Safari: Management of cookies and website data with safari

Firefox: Delete cookies to remove data that have stored websites on your computer

Internet Explorer: Delete and Manage Cookies

Microsoft Edge: Delete and Manage Cookies

If you basically do not want cookies, you can set up your browser so that it always informs you if a cookie is to be set. So you can decide for every single cookie whether you allow the cookie or not. The procedure varies depending on the browser. It is best to search for the instructions in Google with the search term “Delete Cookies Chrome” or “Deactivate Cookies” in the case of a Chrome browser or exchange the word “Chrome” for the name of your browser, e.g. Edge, Firefox, Safari.

What about my data protection?

The so-called "cookie guidelines" have been around since 2009. It states that storing cookies requires consent from you. However, there are still very different reactions on these guidelines within the EU countries. In Germany, the cookie guidelines were not implemented as national law. Instead, the implementation of this guideline was largely carried out in Section 15 (3) of the Telemedia Act (TMG).

If you want to know more about cookies and do not shy away from technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments of the Internet Engineering Task Force (IETF) called “HTTP State Management Mechanism”.

Storage of personal data

Personal data that you transmit us electronically on this website, such as the name, email address, address or other personal information as part of the transmission of a form or comments on the blog, are together with the time and the IP- Address only used for the specified purpose, safely kept and not passed on to third parties.

We therefore only use your personal data for communication with those visitors who expressly wish and for the processing of the services and products offered on this website. We do not pass on your personal data without consent, but we cannot rule out that this data will be viewed when there is illegal behavior.

If you send us personal data by email-thus away from this website-we cannot guarantee secure transmission and protection of your data. We recommend that you never send confidential data unencrypted by email.

The legal basis is after Article 6 paragraph 1 a GDPR (Legality of processing) in the fact that you give us the consent to process the data you have entered. You can revoke this consent at any time-an informal email is sufficient, you will find our contact details in the imprint.

Rights according to the General Data Protection Regulation

According to the provisions of the GDPR, the following rights are generally entitled to them:

  • Right to correction (Article 16 GDPR)
  • Right to deletion ("right to be forgotten") (Article 17 GDPR)
  • Right to restriction of processing (Article 18 GDPR)
  • Right to notification - notification of communication in connection with the correction or deletion of personal data or the restriction of processing (Article 19 GDPR)
  • Right to data portability (Article 20 GDPR)
  • Right of objection (Article 21 GDPR)
  • Right to be subjected to a decision based exclusively on automated processing - including profiling - (Article 22 GDPR)

If you believe that the processing of your data violates data protection law or your data protection claims have otherwise been violated in a way, you can go to the Federal Commissioner for Data Protection and Freedom of Information (BFDI) turn around.

Evaluation of visitor behavior

In the following data protection declaration, we will inform you about whether and how we evaluate data from your visit to this website. The data collected is usually anonymously and we cannot indicate your behavior on this website.

You can find out more about this evaluation of the visiting data in the following data protection declaration.

TLS encryption with https

We use HTTPS to transmit data in a negative -proof manner on the Internet (data protection through technology design Article 25 paragraph 1 GDPR). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data. You can see the use of this protection of the data transmission on the small lock symbol in the top left of the browser and the use of the HTTPS schema (instead of http) as part of our Internet address.

Google Analytics data protection declaration

On our website we use the analysis tracking tool Google Analytics (GA) of the American company Google Inc. The company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. Google Analytics collects data about your actions on our website. For example, if you click on a link, this action will be saved in a cookie and sent to Google Analytics. With the help of the reports we receive from Google Analytics, we can better adapt our website and our service to your wishes. In the following we go into the tracking tool in more detail and primarily inform you about the data stored and how you can prevent this.

What is Google Analytics?

Google Analytics is a tracking tool that serves the data traffic analysis of our website. To ensure that Google Analytics works, a tracking code is installed in the code of our website. When you visit our website, this code records various actions that you perform on our website. As soon as you leave our website, this data will be sent to the Google Analytics servers and stored there.

Google processes the data and we receive reports about your user behavior. Among other things, it can be the following reports:

  • Target group reports: We get to know our users better about target group reports and know more precisely who is interested in our service.
  • Displayor: Due to display interface, we can analyze and improve our online advertising more easily.
  • Acquisition reports: Acquisition reports give us helpful information about how we can inspire more people for our service.
  • Behavioral reports: Here we learn how to interact with our website. We can understand which way you cover on our page and which links you click.
  • Conversion reports: Conversion is called a process in which you carry out a desired action due to a marketing message. For example, when you become a buyer or newsletter subscriber from a pure website visitor. With the help of these reports, we learn more about how our marketing measures arrive at you. This is how we want to increase our conversion rate.
  • Real -time reports: Here we always find out immediately what is happening on our website. For example, we see how many users read this text.

Why do we use Google Analytics on our website?

Our goal with this website is clear: we want to offer you the best possible service. The statistics and data from Google Analytics help us achieve this goal.

The statistically evaluated data show us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimize our site so that it is more easily found by interested people on Google. On the other hand, the data helps us to better understand it as a visitor. We therefore know very well what we have to improve on our website to offer you the best possible service. The data also serves us to carry out our advertising and marketing measures more individual and cheaper. After all, it only makes sense to show our products and services people who are interested in it.

What data is stored by Google Analytics?

With the help of a tracking code, Google Analytics creates a random, unique ID associated with its browser cookie. So she recognizes Google Analytics as a new user. The next time you visit our site, you will be recognized as a "recurring" user. All data collected is saved together with this user ID. So it is even possible to evaluate pseudonyms user profiles.

Designings such as cookies and app instance IDs measure your interactions on our website. Interactions are all types of actions that you perform on our website. If you also use other Google systems (such as a Google account), data generated by Google Analytics can be linked to third-party cookies. Google does not pass on Google Analytics data, unless we as website operators.

The following cookies are used by Google Analytics:

Surname: _ga
Value: 2.1326744211.152311196705-5
Purpose of use: By default, analytics.js uses the cookie _GA to save the user ID. Basically, it serves to differentiate between website visitors.
Expiry Date: after 2 years

Surname: _Gid
Value: 2.1687193234.152311196705-1
Purpose of use: The cookie also serves to differentiate between website visitors.
Expiry Date: after 24 hours

Surname: _GAT_GTAG_UA_
Value: 1
Purpose of use: Is used to lower the requirements rate. If Google Analytics is provided via Google Tag Manager, this cookie receives the name _DC_GTM_ .
Expiry Date: after 1 minute

Surname: Amp_token
Value: not specified
Purpose of use: The cookie has a token with which a user ID can be called up by the AMP client ID service. Other possible values ​​indicate a cancellation, an inquiry or an error.
Expiry Date: After 30 seconds to a year

Surname: __utma
Value: 1564498958.1564498958.1564498958.1
Purpose of use: With this cookie you can follow your behavior on the website and measure the performance. The cookie is updated every time information is sent to Google Analytics.
Expiry Date: after 2 years

Surname: __utmt
Value: 1
Purpose of use: The cookie is used as _gat_gtag_ua_ to throttle the requirement rate.
Expiry Date: after 10 minutes

Surname: __utmb
Value: 3.10.1564498958
Purpose of use: This cookie is used to determine new sessions. It is updated every time new data or information is sent to Google Analytics.
Expiry Date: after 30 minutes

Surname: __utmc
Value: 167421564
Purpose of use: This cookie is used to set new sessions for recurring visitors. It is a session cookie, and it is only saved until they close the browser again.
Expiry Date: After closing the browser

Surname: __utMz
Value: m | utmccn = (referral) | utmcmd = referral | utmcct =/
Purpose of use: The cookie is used to identify the source of visitor volume on our website. That means that the cookie saves from where you came to our website. That may have been a different page or a advertising circuit.
Expiry Date: after 6 months

Surname: __utmv
Value: not specified
Purpose of use: The cookie is used to save custom user data. It is always updated when information is sent to Google Analytics.
Expiry Date: after 2 years

Annotation: This list cannot be entitled to complete, since Google keeps changing the choice of its cookies.

Here we show you an overview of the most important data collected with Google Analytics:

Heatmaps: Google creates so -called heat maps. You can see exactly those areas that you click on over heat maps. So we get information where you are "on the move" on our page.

Session duration: Google describes the time that you spend on our site without leaving the page. If you were inactive for 20 minutes, the session ends automatically.

Bounce rate (Bouncerate): There is talk of a jump when you only watch one page on our website and then leave our website again.

Account creation: If you create an account on our website or make an order, Google Analytics collects this data.

IP address: The IP address is only shown in a shortened form so that no clear assignment is possible.

Location: The country and its approximate location can be determined via the IP address. This process is also referred to as IP location determination.

Technical information: The technical information includes your browser type, your internet provider or your screen resolution.

Source of origin: Google Analytics or us, of course, are also interested in which website or which advertising you came to our website.

Further data are contact details, any reviews, playing the media (e.g. if you play a video on our site), sharing content via social media or adding to your favorites. The list is not entitled to completeness and only serves as a general orientation of data storage by Google Analytics.

How long and where are the data saved?

Google has distributed its servers all over the world. Most servers are located in America and consequently your data is mostly saved on American servers. Here you can read exactly where the Google calculation centers are: https://www.google.com/about/datacenters/inside/locations/?hl=de

Your data will be distributed on various physical data carriers. This has the advantage that the data is available faster and are better protected from manipulation. There are corresponding emergency programs for your data in every Google computer center. For example, if the hardware is on Google or the natural disasters paralyze servers, the risk of interrupting service on Google remains low.

Standardized in Google Analytics, a retention period of your user data of 26 months is set. Then your user data will be deleted. However, we have the option of choosing the storage duration of user data ourselves. Five variants are available for this:

  • Deletion after 14 months
  • Deletion after 26 months
  • Deletion after 38 months
  • Deletion after 50 months
  • No automatic deletion

If the specified period has expired, the data will be deleted once a month. This retention period applies to your data, which are linked to cookies, user recognition and advertising IDs (e.g. cookies of the double-click-domain). Report results are based on aggregated data and are stored independently of user data. Agregated data are a melting up of individual data into a larger unit.

How can I delete my data or prevent data storage?

According to the data protection law of the European Union, you have the right to obtain information about your data, to update, delete or limit it. With the help of the browser add-on for deactivation of Google Analytics JavaScript (GA.JS, Analytics.js, DC.JS), prevent Google Analytics from using your data. The browser add-on can be https://tools.google.com/dlpage/gaoptout?hl=de Download and install. Please note that this add-on only deactivates the data collection by Google Analytics.

If you basically want to deactivate, delete or manage cookies (regardless of Google Analytics), there is a separate guide for each browser:

Chrome: Delete, activate and manage cookies in Chrome

Safari: Management of cookies and website data with safari

Firefox: Delete cookies to remove data that have stored websites on your computer

Internet Explorer: Delete and Manage Cookies

Microsoft Edge: Delete and Manage Cookies

Google Analytics is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure data transfer of personal data. You can find more information on this https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&tid=311196705. We hope we were able to bring you closer to the most important information about the data processing of Google Analytics. If you want to learn more about the tracking service, we recommend these two links: http://www.google.com/analytics/terms/de.html and https://support.google.com/analytics/answer/6004245?hl=de.

Google Analytics IP-anonymization

We implemented the IP address anonymization of Google Analytics on this website. This function was developed by Google so that this website can comply with the applicable data protection regulations and recommendations of the local data protection authorities if they prohibit the storage of the full IP address. The anonymization or masking of the IP takes place as soon as the IP addresses in the Google Analytics data acquisition network occur and before the data is stored or processing.

You can find more information on IP anonymization https://support.google.com/analytics/answer/2763052?hl=de.

Google Analytics reports on demographic characteristics and interests

We have switched on the functions for advertising reports in Google Analytics. The reports on demographic characteristics and interests contain information on age, gender and interests. With this, without being able to assign this data to individuals - we can get a better picture of our users. You can find out more about the advertising functions At https://support.google.com/analytics/answer/3450482?hl=de_at&utm_id=ad.

You can use the use of the activities and information of your Google account under “Settings for Advertising” https://adssettings.google.com/authenticated End the checkbox.

Newsletter data protection declaration

If you enter the personal data mentioned above for our newsletter and give us the right to contact you by email. We only use the data stored as part of the registration for the newsletter for our newsletter and do not pass it on.

If you are unsubscribing from the newsletter - you will find the link in every newsletter at the bottom - then we delete all the data that has been saved by registering for the newsletter.

Instagram data protection declaration

We have installed functions of Instagram on our website. Instagram is a social media platform of the company Instagram LLC, 1601 Willow RD, Menlo Park CA 94025, USA. Instagram has been a subsidiary of Facebook Inc. since 2012 and is one of the Facebook products. Embetting Instagram content on our website is called embedding. This enables us to show you content such as buttons, photos or videos from Instagram directly on our website. If you call up websites of our website that have integrated an Instagram function, data is transmitted, saved and processed on Instagram. Instagram uses the same systems and technologies such as Facebook. Your data is thus processed across all Facebook companies.

In the following we want to give you a more detailed insight why Instagram collects data, which data it is and how you can largely control data processing. Since Instagram belongs to Facebook Inc., we obtain our information on the one hand from the Instagram guidelines, but on the other hand also from the Facebook data guidelines themselves.

What is Instagram?

Instagram is one of the most famous social media networks worldwide. Instagram combines the advantages of a blog with the advantages of audiovisual platforms such as YouTube or Vimeo. You can upload photos and short videos on "Insta" (as many of the users call the platform casual), edit with various filters and also spread them on other social networks. And if you don't want to be active yourself, you can only follow other interesting users.

Why do we use Instagram on our website?

Instagram is the social media platform that has been going through the ceiling in recent years. And of course we also reacted to this boom. We want you to feel as comfortable on our website as possible. That is why a varied preparation of our content is a matter of course for us. Thanks to the embedded Instagram functions, we can enrich our content with helpful, funny or exciting content from the Instagram world. Since Instagram is a subsidiary of Facebook, the data collected can also be useful for personalized advertising on Facebook. So our advertisements only get people who are really interested in our products or services.

Instagram also uses the collected data for measurement and analysis purposes. We get combined statistics and thus more insight into your wishes and interests. It is important to mention that these reports do not identify them personally.

What data is saved by Instagram?

If you come across one of our pages and have installed Instagram functions (such as Instagram pictures or plug-ins), your browser automatically contacts the Instagram servers. Data is sent to Instagram, saved and processed. And regardless of whether you have an Instagram account or not. This includes information about our website, your computer, about purchases made, about advertisements that you see and how you use our offer. Furthermore, the date and time of your interaction are saved with Instagram. If you have an Instagram account or are logged in, Instagram stores significantly more data about you.

Facebook differentiates between customer data and event data. We assume that this is the case with Instagram. Customer data are, for example, the name, address, telephone number and IP address. It is important to mention that these customer data will only be transmitted to Instagram if they have been “held” beforehand. Hashing says that a data record is transformed into a string. This can encrypt the contact details. The “event data” mentioned above are also transmitted. “Event data” means Facebook-and consequently also Instagram-data about your user behavior. It can also happen that contact details are combined with event data. The contact details collected are compared with the data that Instagram has already compared from them.

The collected data is transmitted to Facebook via small text files (cookies), which are usually placed in your browser. Depending on the Instagram functions used and whether you have an Instagram account yourself, different amounts of data are saved.

We assume that data processing will work the same as on Facebook at Instagram. That means: if you have an Instagram account or www.instagram.com have attended at least one cookie. If this is the case, your browser sends information on Instagram via the cookie as soon as you come into contact with an Instagram function. At the latest after 90 days (after comparison), this data is deleted or anonymized again. Although we have dealt intensively on Instagram's data processing, we cannot say exactly which data Instagram collects and stores exactly.

In the following we show you cookies that are at least set in your browser when you click on an Instagram function (such as button or an insta-picture). In our test, we assume that you do not have an Instagram account. If you are logged in on Instagram, of course, significantly more cookies are set in your browser.

These cookies were used in our test:

Surname: csrftoken
Value: “”
Purpose of use: This cookie is most likely set for security reasons to prevent counterfeiting from inquiries. However, we could not find out more precisely.
Expiry Date: after a year

Surname: mid
Value: “”
Purpose of use: Instagram sets this cookie to optimize its own services and offers in and outside of Instagram. The cookie defines a clear user ID.
Expiry Date: after the end of the session

Surname: FBSR_311196705124024
Value: not specified
Purpose of use: This cookie stores the log-in request for users of the Instagram app.
Expiry Date: after the end of the session

Surname: rur
Value: Atn
Purpose of use: It is an Instagram cookie that guarantees functionality on Instagram.
Expiry Date: after the end of the session

Surname: arden
Value: “{\” 194.96.75.33 \ ”: 1901}: 1IEYV: Y833K2_UJKVXGYE311196705”
Purpose of use: This cookie serves the marketing purposes of Instagram.
Expiry Date: after the end of the session

Annotation: We cannot claim completeness here. Which cookies are set in the individual case depends on the embedded functions and their use of Instagram.

How long and where are the data saved?

Instagram shares the information obtained between the Facebook companies with external partners and with people with whom they combine worldwide. Data processing takes place in compliance with your own data guideline. Your data is distributed on the Facebook servers around the world, among other things, for security reasons. Most of these servers are in the USA.

How can I delete my data or prevent data storage?

Thanks to the basic regulation data protection, you have the right to information, transferability, correction and deletion of your data. You can manage your data in the Instagram settings. If you want to completely delete your data on Instagram, you must delete your Instagram account permanently.

And so the deletion of the Instagram account works:

First open the Instagram app. On your profile page, go down and click on "Help Sector". Now they come to the company's website. On the website, click on "Manage the account" and then on "Delete your account".

If you completely delete your account, Instagram deletes posts such as your photos and status updates. Information that other people have shared about you do not belong to your account and are therefore not deleted.

As already mentioned above, Instagram stores your data primarily through cookies. You can manage, deactivate or delete these cookies in your browser. Depending on your browser, the administration always works a little differently. Here we show you the instructions of the most important browsers.

Chrome: Delete, activate and manage cookies in Chrome

Safari: Management of cookies and website data with safari

Firefox: Delete cookies to remove data that have stored websites on your computer

Internet Explorer: Delete and Manage Cookies

Microsoft Edge: Delete and Manage Cookies

You can also set up your browser so that you are always informed when a cookie is to be set. Then you can always decide individually whether you want to allow the cookie or not.

Instagram is a subsidiary of Facebook Inc. and Facebook is an active participant in the EU-U.S. Privacy Shield Framework. This framework ensures correct data transmission between the USA and the European Union. Under https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC  Find out more about it. We tried to bring you closer to the most important information about data processing by Instagram. On https://help.instagram.com/519522125107875
You can deal with the data guidelines from Instagram even closer.

Source: Created with the Data protection generator From adsimple in cooperation with slashtechnik.de