Privacy policy
Introduction
With the following privacy policy, we would like to inform you about which types of personal data (also referred to as “data”). The privacy policy applies to all processes of personal data carried out by us, both in the context of the provision of our services and in particular on our web pages, in mobile applications and within external online presences, such as e. our social media profiles (collectively referred to as “online offer”).
The terms used are not gender specific.
Date: October 9, 2019
Contents
- Introduction
- Responsible person
- Overview of the processing
- Relevant legal bases
- Safety measures
- Transmission and disclosure of personal data
- Data processing in third countries </a >
- Use of cookies
- Commercial and business services
- payment service
- Blogs and publication media
- Newsletter and Latitude Communication
- Online Marketing
- Social Media Presence
- Plugins and Embedded Features and Content
- Deleting Data
- Changing and Updating the Privacy Policy
Responsible
Julia Unterberger
Rua Marques de Pombal 366
2755-247 Alcabideche
Portugal
Email Address : hello@mandalart.at
Imprint : https://mandalart.pt/impressum -mandalart
Processing Overview
The following overview summarizes and references the types of data processed and the purposes of their processing the individuals involved.
Types of processed data </h3>
- Inventory data (eg names, addresses).
- Content data (eg text input, photographs, videos).
- Contact details (eg e-mail, telephone numbers).
- Meta / communication data (eg device information, IP addresses).
- Usage data (eg websites visited, interest in content, access times).
- Contract data (eg subject of agreement, term, customer category).
- Payment details (eg bank details, invoices, payment history).
Categories of affected persons
- Business and Contractor.
- Interested parties.
- Communications Partners.
-
Customers.
- Users (eg website visitors, users of online services).
Purposes of processing
- Providing our online experience and usability.
- Visit Action Evaluation.
- Office and Organization Procedures. < / p>
- direct marketing (e.g. by e-mail or by post).
- Feedback (eg collecting feedback via online form).
- Interest-based and Behavioral marketing.
- Contact requests and communication.
- Conversion measurement (measurement of the effectiveness of marketing activities).
- Profiling (creating user profiles).
- Remarketing.
- Reach metering (eg, access statistics, Recognizing Recurring Visitors).
- Security Measures.
- Tracking (eg interest / behavioral profiling, use of cookies). < / p>
- Contractual Services and Service.
- Manage and respond to inquiries.
Relevant Legal Documents
In the following, we share the legal basis of the General Data Protection Regulation (DSGVO), on the basis of which we process the personal data. Please note that in addition to the provisions of the GDPR, the national data protection regulations may apply in your home or in our home country.
- Consent (Article 6 (1) (1) (a) GDPR)
– The data subject has consented to the processing of personal data concerning him or her for a specific purpose or purposes. - Performance of the contract and pre-contractual requests (Art. 6 (1) (1) (b) GDPR) – the processing is necessary for the performance of a contract to which the data subject is a party or for the performance of pre-contractual measures taken at the request of the data subject. p>
- Legal obligation (Article 6 (1) (1) (c) GDPR) – the processing is necessary to fulfill a legal obligation which the
Protection of vital interests (Article 6 (1), first sentence, of the GDPR) – Processing is required to: to protect vital interests of the person or other natural person.
- Berec beneficial interests (Art. 6 para. 1 sentence 1 lit. f. DSGVO) – Processing is necessary to safeguard the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject requiring personal data protection prevail.
Safety Measures
We comply with the legal requirements in consideration of the state of the art, the Implementation costs and the nature, scope, circumstances and purposes of the processing, as well as the different likelihoods of occurrence and the extent of the threat to the rights and freedoms of natural persons, appropriate technical and organizational measures to ensure a level of protection commensurate with the risk.
Measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling the physical and electronic access to, and the access, input, transfer, availability and disconnection of data. We have also set up procedures to ensure the enjoyment of data subject rights, the erasure of data and responses to the threat to data. Furthermore, we consider the protection of personal data already in the development or selection of hardware, software and procedures according to the principle of data protection, through technology design and through privacy-friendly default settings.
SSL Encryption (https) : To protect your data transmitted via our online offering, we use SSL encryption. You recognize such encrypted connections with the prefix https: // in the address bar of your browser.
Transmission and Disclosure of Personal Information
As part of our processing of personal information, data may be transmitted to or transmitted to other entities, businesses, legally independent organizational units or individuals be disclosed. To the recipients of this data may e.g. Payment institutions involved in payment transactions, IT service providers or providers of services and content incorporated into a website. In such cases, we comply with the legal requirements and in particular conclude corresponding contracts or agreements that serve to protect your data with the recipients of your data.
Data processing in third countries
Provided that we process data in a third country (ie, outside the European Union (EU), the European Economic Area (EEA)) or processing in the context of utilization third party services or the disclosure or transmission of data to other persons, bodies or companies, this is done only in accordance with legal requirements.
Except where expressly permitted or required by contract or by law, we process or disclose the data only in third countries with a recognized level of privacy, including those certified under the Privacy Shield, or on the basis of specific warranties, such as limited liability. contractual obligation through so-called standard protection clauses of the EU Commission, the existence of certifications or binding internal data protection regulations (Art. 44 to 49 GDPR, information page of the European Commission: https://ec.europa.eu/info/law/law-topic/data -protection / international-dimension-data-protection_en ).
Use of cookies
“Cookies” are small files that are stored on users’ devices and that can be used to store different information, such as language settings on a web page, the login status, a shopping cart, or the location where a video was viewed.
Cookies are also generally used when the interests of a user or his behavior (for example, viewing specific content, use of functions, etc.) are stored on individual websites in a user profile. Such profiles serve to provide users with e.g. View content that matches your potential interests. This method is also referred to as “tracking,” that is, tracking the potential interests of users. The term “cookies” also includes other technologies that perform the same functions as cookies (for example, if user information is stored using pseudonymous online identifiers, also known as “user IDs”).
If we use cookies or “tracking” technologies, we will inform you separately in our privacy policy.
Legal advice: The legal basis on which we use your personal information with the help of cookies depends on whether we ask for your consent. If this is the case and you consent to the use of cookies, the legal basis for the processing of your data is the informed consent. Otherwise, the data processed by means of cookies will be processed on the basis of our legitimate interests (for example, in the course of a business operation of our online offer and its improvement) or, if the use of cookies is required, in order to fulfill our contractual obligations.
General notice on withdrawal and opt-out: Regardless of whether the processing is based on a consent or legal permission, you have at any time the opportunity to revoke a given consent or the Processing of your data through cookie technologies (collectively referred to as “opt-out”).
You may initially declare your disagreement using the settings on your browser, for example, by disabling the use of cookies (which may limit the ability of our online service).
An objection to the use of cookies for online marketing purposes may also be made through the US through a variety of services, especially in the case of tracking http://www.aboutads.info/choices/ or the EU page http://www.youronlinechoices.com/ or generally to http://optout.aboutads.info .
Processing of cookie data based on consent : Before we process or process data in the context of the use of cookies, we ask the user for a revocable consent. Before consent has been given, cookies may be used that are necessary for the operation of our online offer. Their use is based on our interest and the interest of the users in the expected functionality of our online offer.
Cookie Settings / Contradiction :
Cookie Einstellungen AKZEPTIEREN
- Processed data types: Usage data (eg websites visited, interest in content, access times), meta / communication data (eg device information, IP
- Affected persons: Users (eg website visitors, users of online services).
- < p> Legal basis: Consent (Article 6 (1) (1) (a) GDPR), Legitimate interests (Article 6 (1) (1) (f) GDPR).
Commercial and Business Services
We process data of our contract and business partners, eg Customers and prospects (collectively referred to as “contractors”) in the context of contractual and comparable legal relationships and related measures and in the context of communication with the contractors (or pre-contractual), for example, to answer inquiries.
We process this data in order to fulfill our contractual obligations, to safeguard our rights and for the purposes of the administrative tasks associated with this information as well as the entrepreneurial organization. Within the scope of the applicable law, we only pass on the data of the contracting parties to third parties insofar as this is necessary for the aforementioned purposes or for the fulfillment of legal obligations or with the consent of the contractual partners (eg to participating telecommunications, transport and other auxiliary services as well as subcontractors , Banks, tax and legal advisers, payment service providers or tax authorities). About other forms of processing, e.g. for marketing purposes, the contracting parties are informed in the context of this privacy policy.
What data is required for the above purposes, we inform the contractors or in the context of data collection, e.g. in online forms, by special marking (for example colors) or symbols (for example asterisks or the like), or in person with.
We delete the data after expiration of legal warranty and comparable obligations, ie basically after expiration of 4 years, unless the data are stored in a customer account, eg, as long as they have to be kept for legal reasons of archiving (eg for tax purposes usually 10 years). Data that has been disclosed to us as part of an order by the contracting party, we delete according to the specifications of the contract, in principle after the end of the contract.
To the extent that we use third-party vendors or platforms to provide our services, the terms and conditions and privacy notices of the respective third-party vendors or platforms apply to the relationship between the users and the vendors.
Customer account : Contractors can create an account within our online offer (eg customer or user account, in short “customer account”). If registration of a customer account is required, contractors will be notified as well as the information required for registration. The customer accounts are not public and can not be indexed by search engines. As part of the registration and subsequent registrations and uses of the customer account, we store the IP addresses of the customers along with the access times in order to prove the registration and to prevent any misuse of the customer account.
When customers cancel their customer account, the data relating to the customer’s account will be deleted, subject to retention being required by law. It is up to the customer to save their data upon termination of the customer account.
Shop and E-Commerce : We process the data of our customers to enable them to select, purchase or order the products, goods and related services as well as their payment and delivery , or to allow execution.
The required information is marked as such within the scope of the order or comparable purchase process and includes the information required for delivery, provision and billing, as well as contact information in order to be able to consult it.
- Processed data types: Inventory data (eg names, addresses), payment data (eg bank details, invoices, payment history), contact data (eg e-mail , Telephone numbers), contract data (eg subject matter, term, customer category), usage data (eg visited websites, interest in content, access times), meta / communication data (eg device information, IP addresses).
- Affected Individuals: Prospects, Business and Contractors, Customers.
- Purposes of Processing: Contractual services and service, contact requests and communications, office and organizational procedures, administration and response to inquiries, security measures.
- Legal basis: Contract performance and pre-contractual requests ( Article 6 (1) (1) (b) of the GDPR), Legal Obligation (Article 6 (1) (1) (c) GDPR), Legitimate Interests (Art 6 para. 1 sentence 1 lit. f. DSGVO).
Payment Service Provider
Within the framework of contractual and other legal relationships, due to legal obligations or otherwise based on our legitimate interests We offer efficient and secure payment options to the persons affected, and in addition to banks and credit institutions, they use additional payment service providers (collectively “payment service providers”).
The data processed by the payment service providers includes inventory data, e.g. the name and the address, bank data, e.g. Account numbers or credit card numbers, passwords, TANs and checksums as well as the contract, summary and recipient-related information. The information is required to complete the transactions. However, the data entered will only be processed and stored by the payment service providers. That is, we do not receive any account or credit card related information, but only information with confirmation or negative disclosure of the payment. The data may be transmitted by the payment service providers to credit reporting agencies. This transmission aims at the identity and credit check. For this we refer to the terms and conditions and the privacy policy of payment service providers.
For the payment transactions, the terms and conditions and the privacy notices of the respective payment service providers apply, which can be accessed within the respective websites or transaction applications. We also refer to these for further information and assertion of rights of withdrawal, information and other data subjects.
- Processed data types: Inventory data (eg names, addresses), payment data (eg bank details, invoices, payment history), contract data (eg contract object, term , Customer category), usage data (eg visited websites, interest in content, access times), meta / communication data (eg device information, IP addresses).
- Affected People: Customers, prospects.
- Purposes of Processing: Contractual Services and Service.
- Legal basis: Performance of the contract and pre-contractual inquiries (Article 6 (1) sentence 1 (b) GDPR), legitimate interests (Article 6 (1) sentence 1 lit. DSGVO).
Deployed services and service providers:
- PayPal: Payment services and solutions (eg PayPal, PayPal Plus, Braintree); Service Provider: PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg; Website: https://www.paypal.com/en ; Privacy Policy: https://www.paypal.com / en / webapps / mpp / ua / privacy-full .
- Visa: Payment Services; Service Provider: Visa Europe Services Inc., London Branch, 1 Sheldon Square, London W2 6TT, UK; Website: https://www.visa.de ; Privacy Policy: https://www.visa.com/usual-conditions /visa-privacy-center.html .
Blogs and Publishing Media
We use blogs or similar resources from the Online communication and publication (hereinafter referred to as “publication medium”). The data of the readers are processed for the purposes of the publication medium only insofar as it is necessary for its presentation and communication between authors and readers or for reasons of security. Incidentally, we refer to the information on the processing of visitors to our publication medium in the context of this Privacy Notice.
Comments and posts : When users leave comments or other posts, their IP addresses may be stored based on our legitimate interests. This is for our own security, if someone leaves illegal content in comments and contributions (insults, prohibited political propaganda, etc.). In this case, we may be prosecuted for the comment or post and are therefore interested in the identity of the author.
We further reserve the right to process users’ information for spam detection based on our legitimate interests.
On the same legal basis, we reserve the right, in the case of surveys, to store users’ IP addresses for their duration and to use cookies to avoid multiple reconciliation.
The information provided in the comments and contributions to the person, any contact and website information as well as the content information is stored by us until the opposition of the user.
Akismet Anti-Spam Review : We use the Akismet service based on our legitimate interests, and use Akismet to distinguish real people’s comments from spam comments Servers in the United States, where they are analyzed and stored for four days for comparison, and if a comment is classified as spam, the data is stored beyond that time, including the name entered, the email address, and the IP Address, the comment content, the referrer, details of the browser used, the computer system and the time of the entry.
Users are welcome to use pseudonyms or to refrain from entering the name or email address. You can completely prevent the transfer of data by not using our commenting system. That would be a pity, but unfortunately we do not see any alternatives that work just as effectively.
- Processed data types: Inventory data (eg names, addresses), contact data (eg e-mail, telephone numbers), content data (eg text input, photographs) , Videos), usage data (eg visited websites, interest in content, access times), meta / communication data (eg device information, IP addresses).
- Affected Persons: Users (eg website visitors, users of online services).
- Purposes of processing: Contractual services and service, feedback (eg collecting of feedback via online form), security measures, administration and answering of inquiries.
- Legal foundations: Performance of the contract and pre-contractual inquiries (Article 6 (1) sentence 1 (b) GDPR), legitimate interests (Article 6 (1) sentence 1 (f) of the GDPR), consent (Article 6 (1)). 1 lit. a DSGVO), protection of vital interests (Article 6 (1) sentence 1 lit. of the GDPR).
Deployed services and service providers:
Akismet Anti-Spam Check:
- Akismet Anti-Spam Check; Service Provider: Automattic Inc., 60 29th Street # 343, San Francisco, CA 94110, USA; Website:
- ; Privacy Policy:
https://automattic.com/privacy
- .
- WordPress.com: Hosting Platform for Blogs; Service Provider: Automattic Inc., 60 29th Street # 343, San Francisco, CA 94110, USA; Website: https://wordpress.com ; Privacy Policy: https://automattic.com/en/privacy/ . < / p>
Newsletter and Breitenkommunikation
We send out newsletters, e-mails and other electronic notifications (hereinafter referred to as “newsletters”) only with the consent the recipients or a legal permit If the contents of a newsletter are specifically described, they are authoritative for the consent of the users.Otherwise, our newsletter contains information about our services and us.
In order to subscribe to our newsletters, it is generally sufficient to provide your e-mail address. However, we may ask you to provide a name for personal address in the newsletter, or other information as required for the purpose of the newsletter.
Double opt-in procedure: The registration for our newsletter is basically done in a so-called double opt-in procedure. This means that after signing up you will receive an e-mail asking you to confirm your registration. This confirmation is necessary so that nobody can register with external e-mail addresses. Registration for the newsletter will be logged in order to prove the registration process according to the legal requirements. This includes saving the login and confirmation times as well as the IP address. Likewise, changes to your data stored with the shipping service provider will be logged.
Deletion and Limitation of Processing: We may save the email addresses discharged for up to three years on the basis of our legitimate interests before we delete them in order to provide evidence of prior consent. The processing of this data is limited to the purpose of a possible defense against claims. An individual request for cancellation is possible at any time, provided that at the same time the former existence of a consent is confirmed. In the case of obligations to permanently observe contradictions, we reserve the sole purpose of storing the e-mail address for this purpose in a blacklist.
The logging of the registration process is based on our legitimate interests for the purpose of proving its proper course. Insofar as we commission a service provider with the dispatch of e-mails, this is done on the basis of our legitimate interests in an efficient and secure shipping system.
Legal notice: The distribution of the newsletter is based on the consent of the recipient or, if consent is not required, on the basis of our legitimate interests in direct marketing, if and as far as legally permitted, e.g. in the case of existing customer advertising. Insofar as we entrust a service provider with the sending of e-mails, this is done on the basis of our legitimate interests. The registration process is recorded on the basis of our legitimate interests in order to prove that it has been performed in accordance with the law.
Content : Information about MandalArt, products, actions and exhibits.
Performance Measurement : The newsletters contain a so-called “web-beacon”, ie a pixel-sized file that is available from our server when the newsletter is opened or, if we use a shipping service provider, from our server This request will initially collect technical information, such as browser and system information, as well as your IP address and time of retrieval.
This information is used to improve the technicality of our newsletter, based on the technical data or the target groups and their reading habits, based on their retrieval locations (which can be determined using the IP address) or access times. This analysis also includes determining if the newsletters are opened, when they are opened, and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our goal nor, if used, that of the shipping service provider to observe individual users. The evaluations serve to recognize the reading habits of our users and to adapt our content to them or to send different contents according to the interests of our users.
The evaluation of the newsletter and the performance measurement, subject to the express consent of the Users, shall be made on the basis of our legitimate interests for the purposes of using a user-friendly and secure newsletter system which serves both our business interests and the users’ expectations / p> A separate revocation of the performance measurement is unfortunately not possible, in this case the entire newsletter subscription must be terminated, or it must be contradicted.
Prerequisite for the use of free services : The consent to the sending of mailings can be made conditional on the use of free services (eg access to certain content or participation in certain actions). If the users want to use the free service without registering for the newsletter, please contact us.
- Processed data types: Inventory data (eg names, addresses), contact data (eg e-mail, telephone numbers), meta- / communication data (eg Device information, IP addresses), usage data (eg websites visited, interest in content, access times).
- Affected persons: Communication partners, users ( eg website visitors, users of online services).
- Purposes of processing: Direct marketing (eg by e-mail or by post), contractual services and service. < / p>
- Legal basis: Consent (Article 6 (1) sentence 1 (a) GDPR), entitled interests (Article 6 (1) p. 1 lit. fs. DSGVO).
- Opt-out: You can cancel the receipt of our newsletter at any time, ie Revoke your consent, or object to further reception. You can find a link to cancel the newsletter either at the end of each newsletter or else you can use one of the above-mentioned contact options, preferrably e-mail.
Deployed services and service providers:
- Mailchimp: Email Marketing Platform; Service Provider: “Mailchimp” – Rocket Science Group, LLC, 675 Ponce De Leon Ave NE # 5000, Atlanta, GA 30308, USA; Website: https://mailchimp.com ; Privacy Policy: https://mailchimp.com/legal/privacy/ ; https://www.privacyshield.gov/participant? id = a2zt0000000TO6hAAG & status = Active .
Online Marketing
We process personal data for online marketing purposes, which may include the marketing of advertising space or the presentation of advertising and other content (collectively referred to as “content”) based on the potential interests of users and the measurement of their effectiveness.
For these purposes, so-called user profiles are created and stored in a file (so-called “cookie”) or similar methods are used, by means of which the information relevant to the presentation of the aforementioned contents to the user is stored. To this information can e.g. content viewed, websites visited, online networks used, as well as communication partners and technical information, such as the browser used, the computer system used and information on usage times. If users have consented to the collection of their location data, these can also be processed.
The IP addresses of the users are also saved. However, we use available IP masking techniques (i.e., pseudonymization by truncating the IP address) to protect users. In general, the online marketing process does not store user data (such as e-mail addresses or names) but pseudonyms. That is, we as well as the providers of online marketing methods do not know the actual identity of the users, but only the information stored in their profiles.
The information in the profiles are usually stored in the cookies or similar procedures. These cookies can later generally be read on other websites using the same online marketing method, read out and analyzed for the purpose of displaying content, and supplemented with other data and stored on the server of the online marketing process provider.
By way of exception, clear data can be assigned to the profiles. This is the case when users are e.g. Members of a social network whose online marketing process we use and the network connects the profiles of users in the aforementioned information. We kindly ask you to note that users have additional agreements with the providers, e.g. through consent as part of the registration process.
We basically only have access to aggregated information about the success of our advertisements. However, in the context of so-called conversion measurements, we can examine which of our online marketing methods led to a so-called conversion, i. for example, to a contract with us. The conversion measurement is used solely to analyze the success of our marketing efforts.
Legal advice: If we ask users for their consent to the use of third-party providers, the legal basis for the processing of data is their consent. Otherwise, users’ data will be processed based on our legitimate interests (i.e., interest in efficient, economical and recipient-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this privacy policy.
- Processed data types: Usage data (eg websites visited, interest in content, access times), meta / communication data (eg device information, IP
- Affected Persons: Users (eg website visitors, online service users), prospects.
- Purposes of Processing: Tracking (eg Interesting / Behavioral Profiling, Use of Cookies), Remarketing, Visitor Action Evaluation, Interest Based and Behavioral Marketing, Profiling (Creating User Profiles), Conversion Measurement (Measurement of Effectiveness of marketing measures), range measurement (eg access statistics, recognition of returning visitors).
- Security measures: IP-Masking
- Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a DSGVO), entitled interests (Article 6 (1) sentence 1 lit. DSGVO).
- Opposition possibility (opt. Out): We refer to the privacy notices of the respective providers and the contradictions given to the providers (so-called “opt-out”). Unless an explicit opt-out option has been specified, there is the possibility that you disable cookies in the settings of your browser. However, this can restrict functions of our online offer. We therefore also recommend the following opt-out options, which are offered in summary for specific areas:a) Europe: https://www.youronlinechoices.eu .
b) Canada: http://www.youradchoices.ca/choices
c) USA: https://www.aboutads.info/choices .
d) Territorial: http://optout.aboutads.info .
Deployed services and service providers:
- Google Analytics: online marketing and web analytics; Service Providers: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, Parent Company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA; Website: https://marketingplatform.google.com/intl/ de / about / analytics / code; Privacy Policy: https://policies.google.com/privacy ; Privacy Shield (Data protection level when processing data in the US): https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active code; Opt-out plugin: http: //tools.google.com/dlpage/gaoptout?hl=en , ad insertion settings: https://adssettings.google.com/authenticated .
social media presences
We maintain online presence within social networks to communicate with or provide information about users.
We point out that data of users outside of the European Union can be processed. This may result in risks to users because, e.g. the enforcement of user rights could be made more difficult. With respect to US providers that are certified under the Privacy Shield or offer similar guarantees of a secure level of privacy, we point out that they are committed to respecting the EU’s privacy standards.
Furthermore, the data of users within social networks is usually processed for market research and advertising purposes. Thus, e.g. Based on the user behavior and the resulting interests of users usage profiles are created. The usage profiles may in turn be used to e.g. To place advertisements inside and outside the networks that are allegedly in the interests of users. For these purposes, cookies are usually stored on the computers of the users, in which the user behavior and the interests of the users are stored. Furthermore, in the usage profiles data can also be stored independently of the devices used by the users (in particular if the users are members of the respective platforms and are logged in to them).
For a detailed description of the respective forms of processing and the possibilities of opting out (opt-out), we refer to the privacy statements and information of the operators of the respective networks.
Also in the case of requests for information and the assertion of data subject rights, we point out that these can be claimed most effectively from the providers. Only the providers have access to the data of the users and can directly take appropriate measures and provide information. If you still need help, then you can contact us.
- Processed data types: Inventory data (eg names, addresses), contact data (eg e-mail, telephone numbers), content data (eg text input, photographs) , Videos), usage data (eg visited websites, interest in content, access times), meta / communication data (eg device information, IP addresses).
- Affected Persons: Users (eg website visitors, users of online services).
- Purposes of processing: Contact requests and communication, tracking (eg interest / behavioral profiling, use of cookies), remarketing, reach measurement (eg access statistics, recognition of returning visitors).
- Legal basis: Legitimate interests (Article 6 (1) sentence 1 lit. DSGVO).
Used Services and service providers:
- Instagram: Social Network; Service Provider: Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA; Website: https://www.instagram.com ; Privacy Policy: http://instagram.com/about/legal/privacy .
- Facebook: Social Network; Service Providers: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland, Parent Companies: Facebook, 1 Hacker Way, Menlo Park, CA 94025, USA; Website: https://www.facebook.com ; Privacy Policy: https://www.facebook.com/about/privacy ; Privacy Shield (data protection level when processing data in the US): https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active code; Opt-Out: Ad Settings: https: // www. facebook.com/settings?tab=ads code; Additional Privacy Policy: Agreement on Collaborative Processing of Personal Information on Facebook Pages: https : //www.facebook.com/legal/terms/page_controller_addendum Privacy Policy for Facebook Pages: https://www.facebook.com/legal / terms / information_about_page_insights_data .
- Pinterest: Social Network; Service Provider: Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA; Website: https://www.pinterest.com ; Privacy Policy: https://about.pinterest.com/en/privacy-policy ; Opt-Out: https://about.pinterest.com/ en / privacy-policy .
Plugins and Embedded Features and Content
We’re Integrating into Our Online Offering and content items obtained from the servers of their respective providers (hereinafter referred to as “Third Party Providers”), such as graphics, videos or social media buttons, and contributions (collectively referred to herein as “Content”). .
Involvement always requires that third-party content providers process the users’ IP address, as they would not be able to send the content to their browser without the IP address. The IP address is therefore required for the presentation of these contents or functions. We endeavor to use only those content whose respective providers use the IP address only for the delivery of the content. Third parties may also use so-called pixel tags (invisible graphics, also referred to as “web beacons”) for statistical or marketing purposes. The “pixel tags” can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user’s device and may include, but is not limited to, technical information about the browser and the operating system, websites to be referenced, time of visit, and other information regarding the use of our online offer.
Legal advice: If we ask users for their consent to the use of third-party providers, the legal basis for the processing of data is their consent. Otherwise, users’ data will be processed based on our legitimate interests (i.e., interest in efficient, economical and recipient-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this privacy policy.
- Processed data types: Usage data (eg websites visited, interest in content, access times), meta / communication data (eg device information, IP Addresses), contact information (eg e-mail, phone numbers), content data (eg text input, photographs, videos).
- Affected persons: Users ( eg website visitors, users of online services), communication partners.
- Processing purposes: Provision of our online offer and user-friendliness, contractual services and services, contact inquiries and communication, direct marketing (eg by e-mail or post), tracking (eg interest / behavioral profiling, use of cookies) , Interest-based and behavioral marketing, profiling (creating user profiles).
- Legal basis: Legitimate interests (Article 6 (1) sentence 1 lit. DSGVO), consent (Article 6 (1) (1) (a) GDPR).
Services and service providers used: < / p>
- Google Fonts: We integrate the fonts (\ “Google Fonts \”) of the Google provider, where the data of the Users are used solely for purposes of displaying the fonts in the user’s browser. The integration is based on our legitimate interests in a technically secure, maintenance-free and efficient use of fonts, their consistent presentation and taking into account possible licensing restrictions for their integration. Service Providers: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, Parent Company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA; Website: https://fonts.google.com/ ; Privacy Policy: https://policies.google.com/privacy ; Privacy Shield (Data protection level when processing data in the US): https://www.privacyshield.gov/participant?id=a2zt0000000TRkEAAW&status=Active .
- Pinterest plugins and buttons: Pinterest plugins and buttons – For example, you can Content such as images, videos, or text and buttons that allow users to share content from this online offering within Pinterest.Service Provider: Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA; Website: https://www.pinterest.com ; Privacy Policy: https://about.pinterest.com/en/privacy-policy .
- ReCaptcha: We are using the \ “ReCaptcha \” function to detect bots, eg when entering in online forms, a. User behavior (e.g., mouse movements or queries) is evaluated to distinguish people from bots. Service Providers: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, Parent Company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA; Website: https://www.google.com/recaptcha/ ; Privacy Policy: https://policies.google.com/privacy ; Privacy Shield (Data protection level when processing data in the US): https://www.privacyshield.gov/participant?id=a2zt0000000TRkEAAW&status=Active code; Opt-out plugin: http: //tools.google.com/dlpage/gaoptout?hl=en , ad insertion settings: https://adssettings.google.com/authenticated .
- Adobe Typekit Fonts: We integrate the fonts (\ “Typekit fonts \”) of the supplier Adobe, whereby the data of the users are used solely for the purpose of displaying the fonts in the browser of the users. The integration is based on our legitimate interests in a technically secure, maintenance-free and efficient use of fonts, their consistent presentation and taking into account possible licensing restrictions for their integration. Service Provider: Adobe Systems Software Ireland Limited, 4-6 Riverwalk, Citywest Business Campus, Dublin 24, Ireland; Website: https://www.adobe.com/en ; Privacy Policy: https://www.adobe.com/privacy.html ; Privacy Shield (Data privacy protection in the US): https://www.privacyshield.gov/participant?id=a2zt0000000TNo9AAG&status=Active .
Deleting Data
The data processed by us will be deleted in accordance with the legal requirements as soon as their consent for processing is revoked or other authorizations abolished (eg, if the purpose of the processing of this data has expired or they are not necessary for the purpose ).
Unless the data is deleted because it is necessary for other and legitimate purposes, its processing is limited to these purposes. That is, the data is locked and not processed for other purposes. This applies, for example for data that must be retained for commercial or tax law reasons or that is required to be stored in order to assert, exercise or defend legal claims or to protect the rights of another natural or legal person.
Further information on the deletion of personal data may also be provided in the context of the individual data protection notices of this privacy policy.
Changing and Updating the Privacy Policy
We ask that you regularly check the content of our Privacy Policy. We will adjust the Privacy Policy as soon as the changes to the data processing we make require it. We will inform you as soon as the changes require your participation (eg consent) or other individual notification.
Created with free Privacy-Generator.de by Dr. med. Thomas Schwenke