Privacy Policy

1. An overview of data protection

General information

The fol­low­ing infor­ma­tion will pro­vide you with an easy to nav­i­gate overview of what will hap­pen with your per­sonal data when you visit this web­site. The term “per­sonal data” com­prises all data that can be used to per­son­ally iden­tify you. For detailed infor­ma­tion about the sub­ject mat­ter of data pro­tec­tion, please con­sult our Data Protection Declaration, which we have included beneath this copy.

Data recording on this website

Who is the responsible party for the recording of data on this website (i.e., the “controller”)?

The data on this web­site is processed by the oper­a­tor of the web­site, whose con­tact infor­ma­tion is avail­able under sec­tion “Information about the respon­si­ble party (referred to as the “con­troller” in the GDPR)” in this Privacy Policy.

How do we record your data?

We col­lect your data as a result of your shar­ing of your data with us. This may, for instance be infor­ma­tion you enter into our con­tact form.

Other data shall be recorded by our IT sys­tems auto­mat­i­cally or after you con­sent to its record­ing dur­ing your web­site visit. This data com­prises pri­mar­ily tech­ni­cal infor­ma­tion (e.g., web browser, oper­at­ing sys­tem, or time the site was accessed). This infor­ma­tion is recorded auto­mat­i­cally when you access this website.

What are the purposes we use your data for?

A por­tion of the infor­ma­tion is gen­er­ated to guar­an­tee the error free pro­vi­sion of the web­site. Other data may be used to ana­lyze your user pat­terns. If con­tracts can be con­cluded or ini­ti­ated via the web­site, the trans­mit­ted data will also be processed for con­tract offers, orders or other order enquiries.

What rights do you have as far as your information is concerned?

You have the right to receive infor­ma­tion about the source, recip­i­ents, and pur­poses of your archived per­sonal data at any time with­out hav­ing to pay a fee for such dis­clo­sures. You also have the right to demand that your data are rec­ti­fied or erad­i­cated. If you have con­sented to data pro­cess­ing, you have the option to revoke this con­sent at any time, which shall affect all future data pro­cess­ing. Moreover, you have the right to demand that the pro­cess­ing of your data be restricted under cer­tain cir­cum­stances. Furthermore, you have the right to log a com­plaint with the com­pe­tent super­vis­ing agency.

Please do not hes­i­tate to con­tact us at any time if you have ques­tions about this or any other data pro­tec­tion related issues.

Analysis tools and tools provided by third parties

There is a pos­si­bil­ity that your brows­ing pat­terns will be sta­tis­ti­cally ana­lyzed when your visit this web­site. Such analy­ses are per­formed pri­mar­ily with what we refer to as analy­sis programs.

For detailed infor­ma­tion about these analy­sis pro­grams please con­sult our Data Protection Declaration below.

2. Hosting

We are host­ing the con­tent of our web­site at the fol­low­ing provider:

External Hosting

This web­site is hosted exter­nally. Personal data col­lected on this web­site are stored on the servers of the host. These may include, but are not lim­ited to, IP addresses, con­tact requests, meta­data and com­mu­ni­ca­tions, con­tract infor­ma­tion, con­tact infor­ma­tion, names, web page access, and other data gen­er­ated through a web site.

The exter­nal host­ing serves the pur­pose of ful­fill­ing the con­tract with our poten­tial and exist­ing cus­tomers (Art. 6(1)(b) GDPR) and in the inter­est of secure, fast, and effi­cient pro­vi­sion of our online ser­vices by a pro­fes­sional provider (Art. 6(1)(f) GDPR). If appro­pri­ate con­sent has been obtained, the pro­cess­ing is car­ried out exclu­sively on the basis of Art. 6 (1)(a) GDPR and § 25 (1) TDDDG, inso­far the con­sent includes the stor­age of cook­ies or the access to infor­ma­tion in the user’s end device (e.g., device fin­ger­print­ing) within the mean­ing of the TDDDG. This con­sent can be revoked at any time.

Our host(s) will only process your data to the extent nec­es­sary to ful­fil its per­for­mance oblig­a­tions and to fol­low our instruc­tions with respect to such data.

We are using the fol­low­ing host(s):

Kinsta Inc.
8605 Santa Monica Blvd #92581
West Hollywood, CA 90069
United States of America

Data processing

We have con­cluded a data pro­cess­ing agree­ment (DPA) for the use of the above-​mentioned ser­vice. This is a con­tract man­dated by data pri­vacy laws that guar­an­tees that they process per­sonal data of our web­site vis­i­tors only based on our instruc­tions and in com­pli­ance with the GDPR.

3. General information and mandatory information

Data protection

The oper­a­tors of this web­site and its pages take the pro­tec­tion of your per­sonal data very seri­ously. Hence, we han­dle your per­sonal data as con­fi­den­tial infor­ma­tion and in com­pli­ance with the statu­tory data pro­tec­tion reg­u­la­tions and this Data Protection Declaration.

Whenever you use this web­site, a vari­ety of per­sonal infor­ma­tion will be col­lected. Personal data com­prises data that can be used to per­son­ally iden­tify you. This Data Protection Declaration explains which data we col­lect as well as the pur­poses we use this data for. It also explains how, and for which pur­pose the infor­ma­tion is collected.

We here­with advise you that the trans­mis­sion of data via the Internet (i.e., through e‑mail com­mu­ni­ca­tions) may be prone to secu­rity gaps. It is not pos­si­ble to com­pletely pro­tect data against third-​party access.

Information about the responsible party (referred to as the “controller” in the GDPR)

The data pro­cess­ing con­troller on this web­site is:

EP Electronic Print GmbH
Am Weidegrund 8 & 10
82194 Gröbenzell

Phone: +49 (0) 8142 /​ 42 08 96 — 0
E‑mail: info@ep-electronicprint.de

The con­troller is the nat­ural per­son or legal entity that single-​handedly or jointly with oth­ers makes deci­sions as to the pur­poses of and resources for the pro­cess­ing of per­sonal data (e.g., names, e‑mail addresses, etc.).

Storage duration

Unless a more spe­cific stor­age period has been spec­i­fied in this pri­vacy pol­icy, your per­sonal data will remain with us until the pur­pose for which it was col­lected no longer applies. If you assert a jus­ti­fied request for dele­tion or revoke your con­sent to data pro­cess­ing, your data will be deleted, unless we have other legally per­mis­si­ble rea­sons for stor­ing your per­sonal data (e.g., tax or com­mer­cial law reten­tion peri­ods); in the lat­ter case, the dele­tion will take place after these rea­sons cease to apply.

General information on the legal basis for the data processing on this website

If you have con­sented to data pro­cess­ing, we process your per­sonal data on the basis of Art. 6(1)(a) GDPR or Art. 9 (2)(a) GDPR, if spe­cial cat­e­gories of data are processed accord­ing to Art. 9 (1) DSGVO. In the case of explicit con­sent to the trans­fer of per­sonal data to third coun­tries, the data pro­cess­ing is also based on Art. 49 (1)(a) GDPR. If you have con­sented to the stor­age of cook­ies or to the access to infor­ma­tion in your end device (e.g., via device fin­ger­print­ing), the data pro­cess­ing is addi­tion­ally based on § 25 (1) TDDDG. The con­sent can be revoked at any time. If your data is required for the ful­fill­ment of a con­tract or for the imple­men­ta­tion of pre-​contractual mea­sures, we process your data on the basis of Art. 6(1)(b) GDPR. Furthermore, if your data is required for the ful­fill­ment of a legal oblig­a­tion, we process it on the basis of Art. 6(1)© GDPR. Furthermore, the data pro­cess­ing may be car­ried out on the basis of our legit­i­mate inter­est accord­ing to Art. 6(1)(f) GDPR. Information on the rel­e­vant legal basis in each indi­vid­ual case is pro­vided in the fol­low­ing para­graphs of this pri­vacy policy.

Recipients of personal data

In the scope of our busi­ness activ­i­ties, we coop­er­ate with var­i­ous exter­nal par­ties. In some cases, this also requires the trans­fer of per­sonal data to these exter­nal par­ties. We only dis­close per­sonal data to exter­nal par­ties if this is required as part of the ful­fill­ment of a con­tract, if we are legally oblig­ated to do so (e.g., dis­clo­sure of data to tax author­i­ties), if we have a legit­i­mate inter­est in the dis­clo­sure pur­suant to Art. 6 (1)(f) GDPR, or if another legal basis per­mits the dis­clo­sure of this data. When using proces­sors, we only dis­close per­sonal data of our cus­tomers on the basis of a valid con­tract on data pro­cess­ing. In the case of joint pro­cess­ing, a joint pro­cess­ing agree­ment is concluded.

Revocation of your consent to the processing of data

A wide range of data pro­cess­ing trans­ac­tions are pos­si­ble only sub­ject to your express con­sent. You can also revoke at any time any con­sent you have already given us. This shall be with­out prej­u­dice to the law­ful­ness of any data col­lec­tion that occurred prior to your revocation.

Right to object to the collection of data in special cases; right to object to direct advertising (Art. 21 GDPR)

IN THE EVENT THAT DATA ARE PROCESSED ON THE BASIS OF ART. 6(1)(E) OR (F) GDPR, YOU HAVE THE RIGHT TO AT ANY TIME OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA BASED ON GROUNDS ARISING FROM YOUR UNIQUE SITUATION. THIS ALSO APPLIES TO ANY PROFILING BASED ON THESE PROVISIONS. TO DETERMINE THE LEGAL BASIS, ON WHICH ANY PROCESSING OF DATA IS BASED, PLEASE CONSULT THIS DATA PROTECTION DECLARATION. IF YOU LOG AN OBJECTION, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA, UNLESS WE ARE IN A POSITION TO PRESENT COMPELLING PROTECTION WORTHY GROUNDS FOR THE PROCESSING OF YOUR DATA, THAT OUTWEIGH YOUR INTERESTS, RIGHTS AND FREEDOMS OR IF THE PURPOSE OF THE PROCESSING IS THE CLAIMING, EXERCISING OR DEFENCE OF LEGAL ENTITLEMENTS (OBJECTION PURSUANT TO ART. 21(1) GDPR).

IF YOUR PERSONAL DATA IS BEING PROCESSED IN ORDER TO ENGAGE IN DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR AFFECTED PERSONAL DATA FOR THE PURPOSES OF SUCH ADVERTISING AT ANY TIME. THIS ALSO APPLIES TO PROFILING TO THE EXTENT THAT IT IS AFFILIATED WITH SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR DIRECT ADVERTISING PURPOSES (OBJECTION PURSUANT TO ART. 21(2) GDPR).

Right to log a complaint with the competent supervisory agency

In the event of vio­la­tions of the GDPR, data sub­jects are enti­tled to log a com­plaint with a super­vi­sory agency, in par­tic­u­lar in the mem­ber state where they usu­ally main­tain their domi­cile, place of work or at the place where the alleged vio­la­tion occurred. The right to log a com­plaint is in effect regard­less of any other admin­is­tra­tive or court pro­ceed­ings avail­able as legal recourses.

Right to data portability

You have the right to have data that we process auto­mat­i­cally on the basis of your con­sent or in ful­fill­ment of a con­tract handed over to you or to a third party in a com­mon, machine-​readable for­mat. If you should demand the direct trans­fer of the data to another con­troller, this will be done only if it is tech­ni­cally feasible.

Information about, rectification and eradication of data

Within the scope of the applic­a­ble statu­tory pro­vi­sions, you have the right to demand infor­ma­tion about your archived per­sonal data, their source and recip­i­ents as well as the pur­pose of the pro­cess­ing of your data at any time. You may also have a right to have your data rec­ti­fied or erad­i­cated. If you have ques­tions about this sub­ject mat­ter or any other ques­tions about per­sonal data, please do not hes­i­tate to con­tact us at any time.

Right to demand processing restrictions

You have the right to demand the impo­si­tion of restric­tions as far as the pro­cess­ing of your per­sonal data is con­cerned. To do so, you may con­tact us at any time. The right to demand restric­tion of pro­cess­ing applies in the fol­low­ing cases:

• In the event that you should dis­pute the cor­rect­ness of your data archived by us, we will usu­ally need some time to ver­ify this claim. During the time that this inves­ti­ga­tion is ongo­ing, you have the right to demand that we restrict the pro­cess­ing of your per­sonal data.
• If the pro­cess­ing of your per­sonal data was/​is con­ducted in an unlaw­ful man­ner, you have the option to demand the restric­tion of the pro­cess­ing of your data instead of demand­ing the erad­i­ca­tion of this data.
• If we do not need your per­sonal data any longer and you need it to exer­cise, defend or claim legal enti­tle­ments, you have the right to demand the restric­tion of the pro­cess­ing of your per­sonal data instead of its eradication.
• If you have raised an objec­tion pur­suant to Art. 21(1) GDPR, your rights and our rights will have to be weighed against each other. As long as it has not been deter­mined whose inter­ests pre­vail, you have the right to demand a restric­tion of the pro­cess­ing of your per­sonal data.

If you have restricted the pro­cess­ing of your per­sonal data, these data – with the excep­tion of their archiv­ing – may be processed only sub­ject to your con­sent or to claim, exer­cise or defend legal enti­tle­ments or to pro­tect the rights of other nat­ural per­sons or legal enti­ties or for impor­tant pub­lic inter­est rea­sons cited by the European Union or a mem­ber state of the EU.

SSL and/​or TLS encryption

For secu­rity rea­sons and to pro­tect the trans­mis­sion of con­fi­den­tial con­tent, such as pur­chase orders or inquiries you sub­mit to us as the web­site oper­a­tor, this web­site uses either an SSL or a TLS encryp­tion pro­gram. You can rec­og­nize an encrypted con­nec­tion by check­ing whether the address line of the browser switches from “http://” to “https://” and also by the appear­ance of the lock icon in the browser line.

If the SSL or TLS encryp­tion is acti­vated, data you trans­mit to us can­not be read by third parties.

Rejection of unsolicited e‑mails

We here­with object to the use of con­tact infor­ma­tion pub­lished in con­junc­tion with the manda­tory infor­ma­tion to be pro­vided in our Site Notice to send us pro­mo­tional and infor­ma­tion mate­r­ial that we have not expressly requested. The oper­a­tors of this web­site and its pages reserve the express right to take legal action in the event of the unso­licited send­ing of pro­mo­tional infor­ma­tion, for instance via SPAM messages.

4. Recording of data on this website

Cookies

Our web­sites and pages use what the indus­try refers to as “cook­ies.” Cookies are small data pack­ages that do not cause any dam­age to your device. They are either stored tem­porar­ily for the dura­tion of a ses­sion (ses­sion cook­ies) or they are per­ma­nently archived on your device (per­ma­nent cook­ies). Session cook­ies are auto­mat­i­cally deleted once you ter­mi­nate your visit. Permanent cook­ies remain archived on your device until you actively delete them, or they are auto­mat­i­cally erad­i­cated by your web browser.

Cookies can be issued by us (first-​party cook­ies) or by third-​party com­pa­nies (so-​called third-​party cook­ies). Third-​party cook­ies enable the inte­gra­tion of cer­tain ser­vices of third-​party com­pa­nies into web­sites (e.g., cook­ies for han­dling pay­ment services).

Cookies have a vari­ety of func­tions. Many cook­ies are tech­ni­cally essen­tial since cer­tain web­site func­tions would not work in the absence of these cook­ies (e.g., the shop­ping cart func­tion or the dis­play of videos). Other cook­ies may be used to ana­lyze user behav­ior or for pro­mo­tional purposes.

Cookies, which are required for the per­for­mance of elec­tronic com­mu­ni­ca­tion trans­ac­tions, for the pro­vi­sion of cer­tain func­tions you want to use (e.g., for the shop­ping cart func­tion) or those that are nec­es­sary for the opti­miza­tion (required cook­ies) of the web­site (e.g., cook­ies that pro­vide mea­sur­able insights into the web audi­ence), shall be stored on the basis of Art. 6(1)(f) GDPR, unless a dif­fer­ent legal basis is cited. The oper­a­tor of the web­site has a legit­i­mate inter­est in the stor­age of required cook­ies to ensure the tech­ni­cally error-​free and opti­mized pro­vi­sion of the operator’s ser­vices. If your con­sent to the stor­age of the cook­ies and sim­i­lar recog­ni­tion tech­nolo­gies has been requested, the pro­cess­ing occurs exclu­sively on the basis of the con­sent obtained (Art. 6(1)(a) GDPR and § 25 (1) TDDDG); this con­sent may be revoked at any time.

You have the option to set up your browser in such a man­ner that you will be noti­fied any time cook­ies are placed and to per­mit the accep­tance of cook­ies only in spe­cific cases. You may also exclude the accep­tance of cook­ies in cer­tain cases or in gen­eral or acti­vate the delete-​function for the auto­matic erad­i­ca­tion of cook­ies when the browser closes. If cook­ies are deac­ti­vated, the func­tions of this web­site may be limited.

Which cook­ies and ser­vices are used on this web­site can be found in this pri­vacy policy.

Real Cookie Banner

Our web­site uses Real Cookie Banner’s con­sent tech­nol­ogy to obtain your con­sent for the stor­age of cer­tain cook­ies on your device or for the use of spe­cific tech­nolo­gies and to doc­u­ment the for­mer in a data pro­tec­tion com­pli­ant man­ner. The provider of this tech­nol­ogy is devowl​.io GmbH, Tannet 12, 94539 Grafling, Germany (here­inafter referred to as “Real Cookie Banner”).

Real Cookie Banner is installed locally on our servers, which ensures that a con­nec­tion with Real Cookie Banner provider’s servers is not estab­lished. Real Cookie Banner stores a cookie in your browser to be able to allo­cate the con­sent you have granted or revoked. The data recorded in this man­ner will be stored until you ask us to delete them, revoke your con­sent to the archiv­ing of your data or until the pur­pose of archiv­ing the data no longer exists (e.g., upon com­ple­tion of the pro­cess­ing of your inquiry). This does not affect manda­tory statu­tory pro­vi­sions – in par­tic­u­lar those gov­ern­ing reten­tion periods.

We use Real Cookie Banner to obtain the con­sent required by law for the use of cook­ies from site vis­i­tors. The legal basis for this is Art. 6(1)© GDPR.

Server log files

The provider of this web­site and its pages auto­mat­i­cally col­lects and stores infor­ma­tion in so-​called server log files, which your browser com­mu­ni­cates to us auto­mat­i­cally. The infor­ma­tion comprises:

• The type and ver­sion of browser used
• The used oper­at­ing system
• Referrer URL
• The host­name of the access­ing computer
• The time of the server inquiry
• The IP address

This data is not merged with other data sources.

This data is recorded on the basis of Art. 6(1)(f) GDPR. The oper­a­tor of the web­site has a legit­i­mate inter­est in the tech­ni­cally error free depic­tion and the opti­miza­tion of the operator’s web­site. In order to achieve this, server log files must be recorded.

Contact form

If you sub­mit inquiries to us via our con­tact form, the infor­ma­tion pro­vided in the con­tact form as well as any con­tact infor­ma­tion pro­vided therein will be stored by us in order to han­dle your inquiry and in the event that we have fur­ther ques­tions. We will not share this infor­ma­tion with­out your consent.

The pro­cess­ing of these data is based on Art. 6(1)(b) GDPR, if your request is related to the exe­cu­tion of a con­tract or if it is nec­es­sary to carry out pre-​contractual mea­sures. In all other cases the pro­cess­ing is based on our legit­i­mate inter­est in the effec­tive pro­cess­ing of the requests addressed to us (Art. 6(1)(f) GDPR) or on your agree­ment (Art. 6(1)(a) GDPR) if this has been requested; the con­sent can be revoked at any time.

The infor­ma­tion you have entered into the con­tact form shall remain with us until you ask us to erad­i­cate the data, revoke your con­sent to the archiv­ing of data or if the pur­pose for which the infor­ma­tion is being archived no longer exists (e.g., after we have con­cluded our response to your inquiry). This shall be with­out prej­u­dice to any manda­tory legal pro­vi­sions, in par­tic­u­lar reten­tion periods.

Request by e‑mail, telephone, or fax

If you con­tact us by e‑mail, tele­phone or fax, your request, includ­ing all result­ing per­sonal data (name, request) will be stored and processed by us for the pur­pose of pro­cess­ing your request. We do not pass these data on with­out your consent.

These data are processed on the basis of Art. 6(1)(b) GDPR if your inquiry is related to the ful­fill­ment of a con­tract or is required for the per­for­mance of pre-​contractual mea­sures. In all other cases, the data are processed on the basis of our legit­i­mate inter­est in the effec­tive han­dling of inquiries sub­mit­ted to us (Art. 6(1)(f) GDPR) or on the basis of your con­sent (Art. 6(1)(a) GDPR) if it has been obtained; the con­sent can be revoked at any time.

The data sent by you to us via con­tact requests remain with us until you request us to delete, revoke your con­sent to the stor­age or the pur­pose for the data stor­age lapses (e.g. after com­ple­tion of your request). Mandatory statu­tory pro­vi­sions — in par­tic­u­lar statu­tory reten­tion peri­ods — remain unaffected.

5. Analysis tools and advertising

Google Tag Manager

We use the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

The Google Tag Manager is a tool that allows us to inte­grate track­ing or sta­tis­ti­cal tools and other tech­nolo­gies on our web­site. The Google Tag Manager itself does not cre­ate any user pro­files, does not store cook­ies, and does not carry out any inde­pen­dent analy­ses. It only man­ages and runs the tools inte­grated via it. However, the Google Tag Manager does col­lect your IP address, which may also be trans­ferred to Google’s par­ent com­pany in the United States.

The Google Tag Manager is used on the basis of Art. 6(1)(f) GDPR. The web­site oper­a­tor has a legit­i­mate inter­est in the quick and uncom­pli­cated inte­gra­tion and admin­is­tra­tion of var­i­ous tools on his web­site. If appro­pri­ate con­sent has been obtained, the pro­cess­ing is car­ried out exclu­sively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, inso­far the con­sent includes the stor­age of cook­ies or the access to infor­ma­tion in the user’s end device (e.g., device fin­ger­print­ing) within the mean­ing of the TDDDG. This con­sent can be revoked at any time.

The com­pany is cer­ti­fied in accor­dance with the “EU-​US Data Privacy Framework” (DPF). The DPF is an agree­ment between the European Union and the US, which is intended to ensure com­pli­ance with European data pro­tec­tion stan­dards for data pro­cess­ing in the US. Every com­pany cer­ti­fied under the DPF is obliged to com­ply with these data pro­tec­tion stan­dards. For more infor­ma­tion, please con­tact the provider under the fol­low­ing link: https://​www​.dat​apri​va​cyframe​work​.gov/​p​a​r​t​i​c​i​p​a​n​t​/​5​780.

Google Analytics

This web­site uses func­tions of the web analy­sis ser­vice Google Analytics. The provider of this ser­vice is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics enables the web­site oper­a­tor to ana­lyze the behav­ior pat­terns of web­site vis­i­tors. To that end, the web­site oper­a­tor receives a vari­ety of user data, such as pages accessed, time spent on the page, the uti­lized oper­at­ing sys­tem and the user’s ori­gin. This data is sum­ma­rized in a user-​ID and assigned to the respec­tive end device of the web­site visitor.

Furthermore, Google Analytics allows us to record your mouse and scroll move­ments and clicks, among other things. Google Analytics uses var­i­ous mod­el­ing approaches to aug­ment the col­lected data sets and uses machine learn­ing tech­nolo­gies in data analysis.

Google Analytics uses tech­nolo­gies that make the recog­ni­tion of the user for the pur­pose of ana­lyz­ing the user behav­ior pat­terns (e.g., cook­ies or device fin­ger­print­ing). The web­site use infor­ma­tion recorded by Google is, as a rule trans­ferred to a Google server in the United States, where it is stored.

The use of these ser­vices occurs on the basis of your con­sent pur­suant to Art. 6(1)(a) GDPR and § 25(1) TDDDG. You may revoke your con­sent at any time.

Data trans­mis­sion to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://​busi​ness​.safety​.google/​a​d​s​c​o​n​t​r​o​l​l​e​r​t​e​r​m​s​/​s​c​cs/.

The com­pany is cer­ti­fied in accor­dance with the “EU-​US Data Privacy Framework” (DPF). The DPF is an agree­ment between the European Union and the US, which is intended to ensure com­pli­ance with European data pro­tec­tion stan­dards for data pro­cess­ing in the US. Every com­pany cer­ti­fied under the DPF is obliged to com­ply with these data pro­tec­tion stan­dards. For more infor­ma­tion, please con­tact the provider under the fol­low­ing link: https://​www​.dat​apri​va​cyframe​work​.gov/​p​a​r​t​i​c​i​p​a​n​t​/​5​780.

IP anonymization

Google Analytics IP anonymiza­tion is active. As a result, your IP address will be abbre­vi­ated by Google within the mem­ber states of the European Union or in other states that have rat­i­fied the Convention on the European Economic Area prior to its trans­mis­sion to the United States. The full IP address will be trans­mit­ted to one of Google’s servers in the United States and abbre­vi­ated there only in excep­tional cases. On behalf of the oper­a­tor of this web­site, Google shall use this infor­ma­tion to ana­lyze your use of this web­site to gen­er­ate reports on web­site activ­i­ties and to ren­der other ser­vices to the oper­a­tor of this web­site that are related to the use of the web­site and the Internet. The IP address trans­mit­ted in con­junc­tion with Google Analytics from your browser shall not be merged with other data in Google’s possession.

Browser plug-​in

You can pre­vent the record­ing and pro­cess­ing of your data by Google by down­load­ing and installing the browser plu­gin avail­able under the fol­low­ing link: https://​tools​.google​.com/​d​l​p​a​g​e​/​g​a​o​p​t​o​u​t​?​h​l​=en.

For more infor­ma­tion about the han­dling of user data by Google Analytics, please con­sult Google’s Data Privacy Declaration at: https://​sup​port​.google​.com/​a​n​a​l​y​t​i​c​s​/​a​n​s​w​e​r​/​6​0​0​4​2​4​5​?​h​l​=en.

Google Signals

We use Google Signals. Whenever you visit our web­site, Google Analytics records, among other things, your loca­tion, the pro­gres­sion of your search and YouTube pro­gres­sion as well as demo­graphic data (site vis­i­tor data). This data may be used for cus­tomized adver­tis­ing with the assis­tance of Google Signal. If you have a Google account, your site vis­i­tor infor­ma­tion will be linked to your Google account by Google Signal and used to send you cus­tomized pro­mo­tional mes­sages. The data is also used to com­pile anonymized sta­tis­tics of our users’ online patterns.

Contract data processing

We have exe­cuted a con­tract data pro­cess­ing agree­ment with Google and are imple­ment­ing the strin­gent pro­vi­sions of the German data pro­tec­tion agen­cies to the fullest when using Google Analytics.

6. Newsletter

Newsletter data

If you would like to receive the newslet­ter offered on the web­site, we require an e‑mail address from you as well as infor­ma­tion that allows us to ver­ify that you are the owner of the e‑mail address pro­vided and that you agree to receive the newslet­ter. Further data is not col­lected or only on a vol­un­tary basis. For the han­dling of the newslet­ter, we use newslet­ter ser­vice providers, which are described below.

Mailchimp

This web­site uses the ser­vices of Mailchimp to send out its newslet­ters. The provider is the Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA.

Among other things, Mailchimp is a ser­vice that can be deployed to orga­nize and ana­lyze the send­ing of newslet­ters. Whenever you enter data for the pur­pose of sub­scrib­ing to a newslet­ter (e.g. your e‑mail address), the infor­ma­tion is stored on Mailchimp servers in the United States.

With the assis­tance of the Mailchimp tool, we can ana­lyze the per­for­mance of our newslet­ter cam­paigns. If you open an e‑mail that has been sent through the Mailchimp tool, a file that has been inte­grated into the e‑mail (a so-​called web-​beacon) con­nects to Mailchimp’s servers in the United States. As a result, it can be deter­mined whether a newslet­ter mes­sage has been opened and which links the recip­i­ent pos­si­bly clicked on. Technical infor­ma­tion is also recorded at that time (e.g. the time of access, the IP address, type of browser and oper­at­ing sys­tem). This infor­ma­tion can­not be allo­cated to the respec­tive newslet­ter recip­i­ent. Their sole pur­pose is the per­for­mance of sta­tis­ti­cal analy­ses of newslet­ter cam­paigns. The results of such analy­ses can be used to tai­lor future newslet­ters to the inter­ests of their recip­i­ents more effectively.

If you do not want to per­mit an analy­sis by Mailchimp, you must unsub­scribe from the newslet­ter. We pro­vide a link for you to do this in every newslet­ter message.

The data is processed based on your con­sent (Art. 6(1)(a) GDPR). You may revoke any con­sent you have given at any time by unsub­scrib­ing from the newslet­ter. This shall be with­out prej­u­dice to the law­ful­ness of any data pro­cess­ing trans­ac­tions that have taken place prior to your revocation.

The data deposited with us for the pur­pose of sub­scrib­ing to the newslet­ter will be stored by us until you unsub­scribe from the newslet­ter or the newslet­ter ser­vice provider and deleted from the newslet­ter dis­tri­b­u­tion list after you unsub­scribe from the newslet­ter. Data stored for other pur­poses with us remain unaffected.

Data trans­mis­sion to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://​mailchimp​.com/​e​u​-​u​s​-​d​a​t​a​-​t​r​a​n​s​f​e​r​-​s​t​a​t​e​m​e​nt/ and https://​mailchimp​.com/​l​e​g​a​l​/​d​a​t​a​-​p​r​o​c​e​s​s​i​n​g​-​a​d​d​e​n​d​u​m​/​#​A​n​n​e​x​_​C​_​-​_​S​t​a​n​d​a​r​d​_​C​o​n​t​r​a​c​t​u​a​l​_​C​l​a​u​ses.

After you unsub­scribe from the newslet­ter dis­tri­b­u­tion list, your e‑mail address may be stored by us or the newslet­ter ser­vice provider in a black­list, if such action is nec­es­sary to pre­vent future mail­ings. The data from the black­list is used only for this pur­pose and not merged with other data. This serves both your inter­est and our inter­est in com­ply­ing with the legal require­ments when send­ing newslet­ters (legit­i­mate inter­est within the mean­ing of Art. 6(1)(f) GDPR). The stor­age in the black­list is indef­i­nite. You may object to the stor­age if your inter­ests out­weigh our legit­i­mate interest.

For more details, please con­sult the Data Privacy Policies of Mailchimp at: https://​mailchimp​.com/​l​e​g​a​l​/​t​e​r​ms/.

The com­pany is cer­ti­fied in accor­dance with the “EU-​US Data Privacy Framework” (DPF). The DPF is an agree­ment between the European Union and the US, which is intended to ensure com­pli­ance with European data pro­tec­tion stan­dards for data pro­cess­ing in the US. Every com­pany cer­ti­fied under the DPF is obliged to com­ply with these data pro­tec­tion stan­dards. For more infor­ma­tion, please con­tact the provider under the fol­low­ing link: https://​www​.dat​apri​va​cyframe​work​.gov/​p​a​r​t​i​c​i​p​a​n​t​/​7​693.

Data processing

We have con­cluded a data pro­cess­ing agree­ment (DPA) for the use of the above-​mentioned ser­vice. This is a con­tract man­dated by data pri­vacy laws that guar­an­tees that they process per­sonal data of our web­site vis­i­tors only based on our instruc­tions and in com­pli­ance with the GDPR.

Newsletter mailing to existing customers

If you order goods or ser­vices from us and enter your e‑mail address, this e‑mail address may sub­se­quently be used by us to send you newslet­ters, pro­vided we inform you of this in advance. In such a case, only direct adver­tis­ing for our own sim­i­lar goods or ser­vices will be sent via the newslet­ter. You can unsub­scribe from this newslet­ter at any time. There is a cor­re­spond­ing link in every newslet­ter for this pur­pose. In this case, the legal basis for send­ing the newslet­ter is Art. 6 (1)(f) GDPR in con­junc­tion with Section 7 (3) UWG.

After you unsub­scribe from the newslet­ter dis­tri­b­u­tion list, we may store your email address in a black­list to pre­vent future mail­ings to you. The data from the black­list will only be used for this pur­pose and will not be merged with other data. This serves both your inter­est and our inter­est in com­ply­ing with the legal require­ments when send­ing newslet­ters (legit­i­mate inter­est within the mean­ing of Art. 6 (1)(f) GDPR). Storage in the black­list is not lim­ited in time. You can object to the stor­age if your inter­ests out­weigh our legit­i­mate interest.

7. Plug-​ins and Tools

YouTube with expanded data protection integration

This web­site inte­grates videos from the YouTube web­site. The oper­a­tor of the web­site is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

When you visit one of these web­sites on which YouTube is inte­grated, a con­nec­tion to the YouTube servers is estab­lished. This tells the YouTube server which of our pages you have vis­ited. If you are logged into your YouTube account, you enable YouTube to assign your surf­ing behav­ior directly to your per­sonal pro­file. You can pre­vent this by log­ging out of your YouTube account.

We use YouTube in extended data pro­tec­tion mode. According to YouTube, videos that are played in extended data pro­tec­tion mode are not used to per­son­al­ize brows­ing on YouTube. Ads that are played in extended data pro­tec­tion mode are also not per­son­al­ized. No cook­ies are set in extended data pro­tec­tion mode. Instead, so-​called local stor­age ele­ments are stored in the user’s browser, which con­tain per­sonal data sim­i­lar to cook­ies and can be used for recog­ni­tion. Details on the extended data pro­tec­tion mode can be found here: https://​sup​port​.google​.com/​y​o​u​t​u​b​e​/​a​n​s​w​e​r​/​1​7​1​780.

After acti­vat­ing a YouTube video, fur­ther data pro­cess­ing oper­a­tions may be trig­gered over which we have no influence.

The use of YouTube is based on our inter­est in pre­sent­ing our online con­tent in an appeal­ing man­ner. Pursuant to Art. 6(1)(f) GDPR, this is a legit­i­mate inter­est. If appro­pri­ate con­sent has been obtained, the pro­cess­ing is car­ried out exclu­sively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, inso­far the con­sent includes the stor­age of cook­ies or the access to infor­ma­tion in the user’s end device (e.g., device fin­ger­print­ing) within the mean­ing of the TDDDG. This con­sent can be revoked at any time.

For more infor­ma­tion on how YouTube han­dles user data, please con­sult the YouTube Data Privacy Policy under: https://​poli​cies​.google​.com/​p​r​i​v​a​c​y​?​h​l​=en.

The com­pany is cer­ti­fied in accor­dance with the “EU-​US Data Privacy Framework” (DPF). The DPF is an agree­ment between the European Union and the US, which is intended to ensure com­pli­ance with European data pro­tec­tion stan­dards for data pro­cess­ing in the US. Every com­pany cer­ti­fied under the DPF is obliged to com­ply with these data pro­tec­tion stan­dards. For more infor­ma­tion, please con­tact the provider under the fol­low­ing link: https://​www​.dat​apri​va​cyframe​work​.gov/​p​a​r​t​i​c​i​p​a​n​t​/​5​780.

Google Fonts

To ensure that fonts used on this web­site are uni­form, this web­site uses so-​called Google Fonts pro­vided by Google. When you access a page on our web­site, your browser will load the required fonts into your browser cache to cor­rectly dis­play text and fonts.

To do this, the browser you use will have to estab­lish a con­nec­tion with Google’s servers. As a result, Google will learn that your IP address was used to access this web­site. The use of Google Fonts is based on Art. 6(1)(f) GDPR. The web­site oper­a­tor has a legit­i­mate inter­est in a uni­form pre­sen­ta­tion of the font on the operator’s web­site. If appro­pri­ate con­sent has been obtained, the pro­cess­ing is car­ried out exclu­sively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, inso­far the con­sent includes the stor­age of cook­ies or the access to infor­ma­tion in the user’s end device (e.g., device fin­ger­print­ing) within the mean­ing of the TDDDG. This con­sent can be revoked at any time.

If your browser should not sup­port Google Fonts, a stan­dard font installed on your com­puter will be used.

For more infor­ma­tion on Google Fonts, please fol­low this link: https://​devel​op​ers​.google​.com/​f​o​n​t​s​/​faq and con­sult Google’s Data Privacy Declaration under: https://​poli​cies​.google​.com/​p​r​i​v​a​c​y​?​h​l​=en.

The com­pany is cer­ti­fied in accor­dance with the “EU-​US Data Privacy Framework” (DPF). The DPF is an agree­ment between the European Union and the US, which is intended to ensure com­pli­ance with European data pro­tec­tion stan­dards for data pro­cess­ing in the US. Every com­pany cer­ti­fied under the DPF is obliged to com­ply with these data pro­tec­tion stan­dards. For more infor­ma­tion, please con­tact the provider under the fol­low­ing link: https://​www​.dat​apri​va​cyframe​work​.gov/​p​a​r​t​i​c​i​p​a​n​t​/​5​780.

Font Awesome (local embedding)

This web­site uses Font Awesome to ensure the uni­form use of fonts on this site. Font Awesome is locally installed so that a con­nec­tion to Fonticons, Inc.’s servers will not be estab­lished in con­junc­tion with this application.

For more infor­ma­tion on Font Awesome, please and con­sult the Data Privacy Declaration for Font Awesome under: https://​fontawe​some​.com/​p​r​i​v​acy.

Google Maps

This web­site uses the map­ping ser­vice Google Maps. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. With the means of this ser­vice, we can inte­grate map mate­r­ial on our website.

To enable the use of the Google Maps fea­tures, your IP address must be stored. As a rule, this infor­ma­tion is trans­ferred to one of Google’s servers in the United States, where it is archived. The oper­a­tor of this web­site has no con­trol over the data trans­fer. In case Google Maps has been acti­vated, Google has the option to use Google Fonts for the pur­pose of the uni­form depic­tion of fonts. When you access Google Maps, your browser will load the required web fonts into your browser cache, to cor­rectly dis­play text and fonts.

We use Google Maps to present our online con­tent in an appeal­ing man­ner and to make the loca­tions dis­closed on our web­site easy to find. This con­sti­tutes a legit­i­mate inter­est as defined in Art. 6(1)(f) GDPR. If appro­pri­ate con­sent has been obtained, the pro­cess­ing is car­ried out exclu­sively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, inso­far the con­sent includes the stor­age of cook­ies or the access to infor­ma­tion in the user’s end device (e.g., device fin­ger­print­ing) within the mean­ing of the TDDDG. This con­sent can be revoked at any time.

Data trans­mis­sion to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://​pri​vacy​.google​.com/​b​u​s​i​n​e​s​s​e​s​/​g​d​p​r​c​o​n​t​r​o​l​l​e​r​t​e​r​ms/ and https://​pri​vacy​.google​.com/​b​u​s​i​n​e​s​s​e​s​/​g​d​p​r​c​o​n​t​r​o​l​l​e​r​t​e​r​m​s​/​s​c​cs/.

For more infor­ma­tion on the han­dling of user data, please review Google’s Data Privacy Declaration under: https://​poli​cies​.google​.com/​p​r​i​v​a​c​y​?​h​l​=en.

The com­pany is cer­ti­fied in accor­dance with the “EU-​US Data Privacy Framework” (DPF). The DPF is an agree­ment between the European Union and the US, which is intended to ensure com­pli­ance with European data pro­tec­tion stan­dards for data pro­cess­ing in the US. Every com­pany cer­ti­fied under the DPF is obliged to com­ply with these data pro­tec­tion stan­dards. For more infor­ma­tion, please con­tact the provider under the fol­low­ing link: https://​www​.dat​apri​va​cyframe​work​.gov/​p​a​r​t​i​c​i​p​a​n​t​/​5​780.

ManageWP

We admin­is­trate this web­site with the assis­tance of the ManageWP tool. The provider is GoDaddy​.com WP Europe, Trg repub­like 5, 11000 Belgrade, Serbia (here­inafter referred to as ManageWP).

Among other things, ManageWP ensures that we can mon­i­tor the secu­rity and per­for­mance of our web­site as well as gen­er­ate auto­matic back­ups. Consequently, ManageWP has access to all of the website’s con­tent, includ­ing our data­bases. ManageWP is being hosted on the provider’s servers.

The use of ManageWP is based on Art. 6 (1)(f) GDPR. The web­site oper­a­tor has a legit­i­mate inter­est in a website(s) that work(s) as effec­tively and securely as pos­si­ble. If appro­pri­ate con­sent has been obtained, the pro­cess­ing is car­ried out exclu­sively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, inso­far the con­sent includes the stor­age of cook­ies or the access to infor­ma­tion in the user’s end device (e.g., device fin­ger­print­ing) within the mean­ing of the TDDDG. This con­sent can be revoked at any time.

The com­pany is cer­ti­fied in accor­dance with the “EU-​US Data Privacy Framework” (DPF). The DPF is an agree­ment between the European Union and the US, which is intended to ensure com­pli­ance with European data pro­tec­tion stan­dards for data pro­cess­ing in the US. Every com­pany cer­ti­fied under the DPF is obliged to com­ply with these data pro­tec­tion stan­dards. For more infor­ma­tion, please con­tact the provider under the fol­low­ing link: https://​www​.dat​apri​va​cyframe​work​.gov/​p​a​r​t​i​c​i​p​a​n​t​/​4​957.

Data processing

We have con­cluded a data pro­cess­ing agree­ment (DPA) for the use of the above-​mentioned ser­vice. This is a con­tract man­dated by data pri­vacy laws that guar­an­tees that they process per­sonal data of our web­site vis­i­tors only based on our instruc­tions and in com­pli­ance with the GDPR.

8. eCommerce and payment service providers

Processing of Customer and Contract Data

We col­lect, process, and use per­sonal cus­tomer and con­tract data for the estab­lish­ment, con­tent arrange­ment and mod­i­fi­ca­tion of our con­trac­tual rela­tion­ships. Data with per­sonal ref­er­ences to the use of this web­site (usage data) will be col­lected, processed, and used only if this is nec­es­sary to enable the user to use our ser­vices or required for billing pur­poses. The legal basis for these processes is Art. 6(1)(b) GDPR.

The col­lected cus­tomer data shall be deleted upon com­ple­tion of the order or ter­mi­na­tion of the busi­ness rela­tion­ship and upon expi­ra­tion of any exist­ing statu­tory archiv­ing peri­ods. This shall be with­out prej­u­dice to any statu­tory archiv­ing periods.

9. Custom Services

Handling applicant data

We offer web­site vis­i­tors the oppor­tu­nity to sub­mit job appli­ca­tions to us (e.g., via e‑mail, via postal ser­vices on by sub­mit­ting the online job appli­ca­tion form). Below, we will brief you on the scope, pur­pose and use of the per­sonal data col­lected from you in con­junc­tion with the appli­ca­tion process. We assure you that the col­lec­tion, pro­cess­ing, and use of your data will occur in com­pli­ance with the applic­a­ble data pri­vacy rights and all other statu­tory pro­vi­sions and that your data will always be treated as strictly confidential.

Scope and purpose of the collection of data

If you sub­mit a job appli­ca­tion to us, we will process any affil­i­ated per­sonal data (e.g., con­tact and com­mu­ni­ca­tions data, appli­ca­tion doc­u­ments, notes taken dur­ing job inter­views, etc.), if they are required to make a deci­sion con­cern­ing the estab­lish­ment or an employ­ment rela­tion­ship. The legal grounds for the afore­men­tioned are § 26 BDSG accord­ing to German Law (Negotiation of an Employment Relationship), Art. 6(1)(b) GDPR (General Contract Negotiations) and – pro­vided you have given us your con­sent – Art. 6(1)(a) GDPR. You may revoke any con­sent given at any time. Within our com­pany, your per­sonal data will only be shared with indi­vid­u­als who are involved in the pro­cess­ing of your job application.

If your job appli­ca­tion should result in your recruit­ment, the data you have sub­mit­ted will be archived on the grounds of § 26 BDSG and Art. 6(1)(b) GDPR for the pur­pose of imple­ment­ing the employ­ment rela­tion­ship in our data pro­cess­ing system.

Data Archiving Period

If we are unable to make you a job offer or you reject a job offer or with­draw your appli­ca­tion, we reserve the right to retain the data you have sub­mit­ted on the basis of our legit­i­mate inter­ests (Art. 6(1)(f) GDPR) for up to 6 months from the end of the appli­ca­tion pro­ce­dure (rejec­tion or with­drawal of the appli­ca­tion). Afterwards the data will be deleted, and the phys­i­cal appli­ca­tion doc­u­ments will be destroyed. The stor­age serves in par­tic­u­lar as evi­dence in the event of a legal dis­pute. If it is evi­dent that the data will be required after the expiry of the 6‑month period (e.g., due to an impend­ing or pend­ing legal dis­pute), dele­tion will only take place when the pur­pose for fur­ther stor­age no longer applies.

Longer stor­age may also take place if you have given your agree­ment (Article 6(1)(a) GDPR) or if statu­tory data reten­tion require­ments pre­clude the deletion.