Logo Kevin Pfeiffer
Logo Kevin Pfeiffer Logo Kevin Pfeiffer

Privacy Policy

Preamble

With the following privacy policy we would like to inform you about what types of your personal data (hereinafter also referred to as “data” for short) hereinafter referred to as “data”) we process, for what purposes and to what extent. The Privacy Policy applies to all processing of personal data carried out by us personal data, both in the context of the provision of our services and in particular on our websites, as well as within external external online presences, such as our social media profiles (hereinafter summarized as “online offer”).

As of February 28, 2025

Table of contents

  • Preamble
  • Person responsible
  • Overview of processing
  • Applicable legal bases
  • Security measures
  • Transmission of personal data
  • International data transfers
  • General information on data storage and deletion
  • Rights of the data subjects
  • Provision of the online offer and web hosting
  • Use of cookies
  • Blogs and publication media
  • Contact and request management
  • Audio content
  • Web analysis, monitoring and optimization
  • Presence in social networks (social media)
  • Plug-ins and embedded functions and content
  • Management, Organisation und Hilfswerkzeuge
  • Change and update

Person responsible

Kevin Pfeiffer
Dornblüthstraße 25
01277 Dresden

E-mail address: [email protected]

Imprint: https://pfeiffer.is/legal/imprint

Overview of processing

The following overview summarizes the types of data processed and the purposes of their purposes of their processing and refers to the data subjects.

Types of data processed

  • Inventory data.
  • Contact data.
  • Content data.
  • Usage data.
  • Meta, communication and process data.
  • Protocol data.

Categories of data subjects

  • Communication partners.
  • Users.

Purposes of processing

  • Communication.
  • Security measures.
  • Reach measurement.
  • Tracking.
  • Conversion measurement.
  • Target group formation.
  • Organizational and administrative procedures.
  • Feedback.
  • Marketing.
  • Profiles with user-related information.
  • Provision of our online offering and user-friendliness.
  • Information technology infrastructure.
  • Public relations and information purposes.
  • Public relations.

Applicable legal bases

Relevant legal bases according to the GDPR: The following you will find an overview of the legal bases of the GDPR on the basis of which we process personal data. Please note that in addition to the provisions of the GDPR, national data protection regulations in your or our country of residence or domicile may apply. Furthermore, if in individual cases more specific legal bases are relevant in individual cases, we will inform you of these in the privacy policy.

  • Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR) - The data data subject has given his or her consent to the processing of his or her personal data concerning them for one or more specific purposes. several specific purposes.
  • Contract fulfillment and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR) - Processing is necessary for the performance of a contract to which the data contract to which the data subject is party or for the performance of pre-contractual measures taken at the request of the data subject. person..
  • Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR) - processing is necessary for the purposes of the legitimate interests pursued by the controller or a third party, provided that the legitimate interests interests, fundamental rights and freedoms of the data subject which require the protection of personal data do not prevail.

National data protection regulations in Germany: In addition to the the data protection regulations of the GDPR, national data protection data protection in Germany. These include, in particular, the Act on the Protection against misuse of personal data in data processing (Federal Data Protection Act - BDSG). The BDSG contains in particular special regulations on the right to information, the right to erasure, the right to right to object, the processing of special categories of personal data, processing for other categories of personal data, processing for other purposes and transmission and automated decision-making in individual cases, including profiling. Furthermore, the data protection laws of the individual federal states may apply. may apply.

Note on the validity of the GDPR and Swiss DPA: This data protection data protection information serves to provide information in accordance with both the Swiss DSG as well as according to the General Data Protection Regulation (GDPR). For this reason we ask you to note that due to the broader geographical application and and comprehensibility, the terms of the GDPR are used. In particular instead of the terms “processing” used in the Swiss DPA of “personal data”, ‘overriding interest’ and ‘sensitive personal data’ used in the data”, the terms ‘processing’ of ‘personal data’ and ‘legitimate interest’ used in the “personal data” as well as ‘legitimate interest’ and ”special categories of categories of data” are used. However, the legal meaning of the terms is however, within the scope of application of the Swiss FADP, the legal meaning of the DPA.

Security measures

In accordance with the legal requirements and taking into account the the state of the art, the costs of implementation and the nature, scope, context and purposes of the circumstances and purposes of the processing as well as the the likelihood and severity of the threat to the rights and freedoms of natural persons. the rights and freedoms of natural persons, appropriate technical and organizational measures to ensure a level of protection appropriate to the risk.

The measures include, in particular, safeguarding the confidentiality integrity and availability of data by controlling physical and electronic electronic access to the data as well as the access relating to it, input, disclosure, securing availability and their separation. separation. Furthermore, we have established procedures that enable the exercise rights of data subjects, the deletion of data and responses to data data at risk. Furthermore, we take the protection of personal data as early as the development and selection of hardware, software software and procedures in accordance with the principle of data protection, through technology design and through data protection-friendly default settings.

Securing online connections using TLS/SSL encryption technology (HTTPS): To protect user data transmitted via our online services from unauthorized from unauthorized access, we rely on TLS/SSL encryption technology. TLS/SSL encryption technology. Secure Sockets Layer (SSL) and Transport Layer Security Layer Security (TLS) are the cornerstones of secure data transmission on the Internet. These technologies encrypt the information that is transmitted between the website or app and the user's browser (or between two servers), thereby which protects the data from unauthorized access. TLS, as the more advanced and secure version of SSL, ensures that all data transmissions comply with the highest security standards. If a website is secured by an SSL/TLS certificate, this is indicated by the display of HTTPS in the URL. This serves as an indicator for users that their data is being transmitted securely and encrypted.

Transmission of personal data

In the context of our processing of personal data, it may happen that to other bodies, companies, legally independent organizational units or organizational units or persons or are disclosed to them. disclosed to them. The recipients of this data may include, for example IT tasks or providers of services and content that are integrated into a website. content that is integrated into a website. In such cases, we comply with the legal requirements and, in particular, conclude appropriate contracts or agreements that serve to protect your data with the recipients of your data. of your data.

International data transfers

Data processing in third countries: If we process data in a third country (i.e, outside the European Union (EU), the European Economic Area (EEA) (EEA)) or the processing is carried out in the context of the use of third-party services of third parties or the disclosure or transfer of data to other persons persons, bodies or companies, this only takes place in accordance with legal with the legal requirements. If the level of data protection in the third country has been recognized by means of an adequacy decision (Art. 45 GDPR), this serves as the basis for the data transfer. Otherwise data transfers only take place if the level of data protection is otherwise ensured, in particular through standard contractual clauses (Art. 46 para. 2 lit. c) GDPR), express consent or in the case of contractual or legally transmission required by law (Art. 49 para. 1 GDPR). Otherwise, we will inform you the basis of the third country transfer with the individual providers from the third the third country, with the adequacy decisions taking precedence. apply with priority. Information on third country transfers and existing adequacy decisions can be found in the information provided by the EU Commission can be found here: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection_en?prefLang=de. As part of the so-called “Data Privacy Framework” (DPF), the EU Commission has also recognized the level of data protection for certain companies from the USA in the recognized as secure as part of the adequacy decision of 10.07.2023. The list of certified companies as well as further information on the DPF can be found on the website of the US Department of Commerce at https://www.dataprivacyframework.gov/. We inform you in the context of the data protection information which service providers we use are certified under the Data Privacy Framework are certified.

General information on data storage and deletion

We delete personal data that we process in accordance with the statutory legal provisions as soon as the underlying consents are revoked or are revoked or there is no further legal basis for the processing. processing exist. This applies to cases in which the original processing purpose no longer applies or the data is no longer required. Exceptions to this rule exist if legal obligations or special interests require special interests require longer storage or archiving of the data. require longer storage or archiving.

In particular, data that must be retained for commercial or tax law reasons must be retained or the storage of which is necessary for legal prosecution or to protect the rights of other natural or legal persons legal persons, must be archived accordingly.

Our data protection information contains additional information on storage and deletion of data that applies specifically to certain processing operations.

If there is more than one indication of the retention period or deletion period of a date, the longest period is always decisive.

If a period does not expressly begin on a specific date and is at least one year, it starts automatically at the end of the calendar year in which the calendar year in which the event triggering the time limit occurred. In the case of ongoing contractual relationships in the context of which data is stored, the the event triggering the time limit is the date on which the termination takes effect or other termination of the legal relationship.

Data that is no longer required for the originally intended purpose but is stored due to legal requirements or other reasons, we only process data for the reasons that justify its retention. justify their retention.

Rights of the data subjects

Rights of data subjects under the GDPR: As a data subject, you are entitled to under the GDPR, you have various rights, which arise in particular from Art. 15 to 21 GDPR:

  • Right to object: You have the right to object, on grounds relating to your reasons arising from your particular situation, to object at any time to the processing of your personal data concerning you, which is based on Art. 6 para. 1 lit. e or f GDPR; this also applies to profiling based on these provisions. profiling based on these provisions. If the personal data concerning you personal data are processed for direct marketing purposes, you have the you have the right to object at any time to the processing of personal data concerning you personal data concerning you for the purpose of such advertising purposes of such advertising; this also applies to profiling insofar as it is direct advertising.
  • Right to withdraw consent: You have the right to to withdraw your consent at any time.
  • Right of access: You have the right to obtain confirmation as to whether confirmation as to whether or not personal data concerning you are being information about this data as well as further information and a copy of the data in accordance with the legal requirements.
  • Right to rectification: You have the right, in accordance with the legal requirements, you have the right to request the completion of data concerning you data or the rectification of inaccurate data concerning you. request.
  • Right to erasure and restriction of processing: You have the right, in accordance with the legal requirements, to demand that data concerning you be deleted immediately, or alternatively, in accordance with the alternatively, in accordance with the legal requirements, to demand that the processing of the to demand data.
  • Right to data portability: You have the right to have data concerning you data concerning you, which you have provided to us, in accordance with the legal requirements in a structured, commonly used and machine-readable machine-readable format or to request its transmission to another controller. to another controller.
  • Complaint to the supervisory authority: Without prejudice to any other without prejudice to any other administrative or judicial remedy the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the place of the alleged infringement if you consider that the processing of personal data relating to you processing of personal data concerning you infringes the provisions of the GDPR.

Provision of the online offer and web hosting

We process users' data in order to provide them with our online services. to be able to provide them with our online services. For this purpose, we process the IP address of the user, which is necessary to transmit the content and functions of our online services to the user's browser or end device.

  • Types of data processed: Usage data (e.g. page impressions and dwell time, click paths, intensity and frequency of use, device types and operating device types and operating systems used, interactions with content and functions); Meta, communication and process data (e.g. IP addresses, time data, identification numbers, persons involved); log data (e.g. log files relating to logins concerning logins or the retrieval of data or access times). Content data (e.g. textual or pictorial messages and contributions as well as information relating to them, such as details of authorship or time of creation). time of creation).
  • Persons concerned: Users (e.g. website visitors, users of online services).
  • Purposes of the processing: Provision of our online online offer and user-friendliness; Information technology infrastructure infrastructure (operation and provision of information systems and technical technical equipment (computers, servers, etc.)). Security measures.
  • Retention and deletion: Deletion in accordance with the information in the section “General information on data storage and erasure”.
  • Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR).

Further information on processing operations, procedures and services:

  • Provision of online services on own/dedicated server hardware: For the provision of our online offer, we use server hardware operated by us server hardware operated by us and the associated storage space, computing computing capacity and software; Legal basis: Legitimate interests (Art. 6 para. 1 S. 1 lit. f) GDPR).Deletion of data: Log file information is stored for a maximum stored for a maximum of 30 days and then deleted or anonymized. anonymized. Data whose further storage is required for evidence purposes is required for evidentiary purposes are excluded from deletion until the excluded from deletion.
  • Content Delivery Network: We use a content delivery network (CDN). “content delivery network” (CDN). A CDN is a service that is used to content of an online offer, in particular large media files, such as graphics or program such as graphics or program scripts, with the help of regionally distributed servers connected via the distributed servers connected via the Internet can be delivered faster and more can be delivered faster and more securely; Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR).
  • Cloudflare: Content-Delivery-Network (CDN) - service, with service, with the help of which the contents of an online media files, such as graphics or program scripts with the help of regionally distributed servers connected via the Internet, faster and more securely. can be delivered faster and more securely; Service provider: Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA; Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR); Website: https://www.cloudflare.com; Privacy policy: https://www.cloudflare.com/privacypolicy/; Data processing agreement: https://www.cloudflare.com/cloudflare-customer-dpa/. Basis for third country transfers: Data Privacy Framework (DPF).

Use of cookies

The term “cookies” refers to functions that store information on the user devices and read from them. Cookies can also be used in relation to various concerns, such as for purposes of the functionality, security and convenience of online online offers and the creation of analyses of visitor flows. We use cookies in accordance with the statutory provisions. For this purpose, we obtain, if necessary, we obtain the user's consent in advance. If consent is not necessary, we rely on our legitimate interests. This applies if the storage and retrieval of information is essential in order to provide expressly to be able to provide the requested content and functions. This includes, for example the storage of settings and ensuring the functionality and security and security of our online offering. Consent can be revoked at any time. be revoked at any time. We provide clear information about the scope and which cookies are used.

Notes on the legal basis for data protection: Whether we process personal data using process personal data with the help of cookies depends on consent. consent. If consent has been given, it serves as the legal basis. Without consent, we rely on our legitimate interests, which are described explained above in this section and in the context of the respective services and procedures are explained above.

Storage duration: With regard to the storage duration, the following types of cookies are distinguished:

  • Temporary cookies (also: session cookies): Temporary cookies are deleted at the latest after a user has left an online online offer and closes their end device (e.g. browser or mobile application). application) has been closed.
  • Permanent cookies: Permanent cookies remain stored even after stored even after the end device is closed. For example, the log-in status can be saved and preferred content can be displayed directly when the user visits a website again. The user data collected with the help of user data collected using cookies can also be used to measure reach. If we do not provide users with explicit information on the type and storage duration of information about the type and storage duration of cookies (e.g. when consent is obtained), they should assume that they are permanent and that the storage period can be up to two years. can be up to two years.

General information on revocation and objection (opt-out): Users can revoke the consents they have given at any time and also object to the processing in accordance with the legal legal requirements, also by means of the privacy settings of their browser. browser, declare.

Cookie settings/opposition option:

pfeiffer.is/en/legal/cookies/

  • Types of data processed: Meta data, communication data and process data (e.g. IP addresses, time data, identification numbers, persons involved).
  • Persons concerned: Users (e.g. website visitors, users of online services).
  • Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR). Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR).

Further information on processing operations, procedures and services:

  • Processing of cookie data on the basis of consent: We use a consent management solution in which the user's consent to the users' consent to the use of cookies or to the procedures and providers specified in the consent management solution is obtained for the procedures and providers mentioned is obtained. This procedure is used to obtain, log, manage and revoke the revocation of consent, in particular with regard to the use of cookies and cookies and similar technologies that are used to store, read and process information and processing of information on the end devices of users. are used. As part of this process, the consents of users for the use of cookies for the use of cookies and the associated processing of information, including the of information, including the specific processing operations and providers specific processing and providers mentioned in the consent management procedure. The users also have the option of managing and revoking their consents. revoke them. The declarations of consent are stored in order to avoid a renewed avoid repeated queries and to be able to prove consent in accordance with the legal requirements. The storage takes place on the server side and/or in a cookie (so-called opt-in cookie) or by means of comparable technologies in order to assign the consent to a specific user or their device. If no specific information on the providers of consent management services is available the following general information applies: The duration of the storage of consent is stored for up to two years. In the process, a pseudonymous user identifier is created, which is stored together with the time of consent consent, the information on the scope of the consent (e.g. the relevant categories of cookies and/or service providers) and information about the browser the browser, the system and the end device used; Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR).
  • CCM19: Einwilligungsmanagement: Verfahren zur Einholung, Protokollierung, Verwaltung und des Widerrufs von Einwilligungen, insbesondere für den Einsatz von Cookies und ähnlichen Technologien zur Speicherung, Auslesen und Verarbeitung von Informationen auf Endgeräten der user devices and their processing; Service provider: Papoo Software & Media GmbH, Auguststr. 4, 53229 Bonn, Germany; Website: https://www.ccm19.de/; Privacy policy: https://www.ccm19.de/datenschutzerklaerung.html.

Blogs and publication media

We use blogs or comparable means of online communication and publication publication (hereinafter “publication medium”). Readers' data will only be processed for processed for the purposes of the publication medium only to the extent that it is necessary for its presentation and communication between authors and readers or for security reasons. necessary for security reasons. For the rest, we refer to the information on the processing of visitors to our publication medium in the within the scope of this data protection notice.

  • Processed data types: inventory data (e.g. the full name full name, residential address, contact information, customer number, etc.); Contact data (e.g. postal and email addresses or telephone numbers); content data (e.g. textual or pictorial messages and contributions as well as information relating to them, such as information on authorship or the time of time of creation); usage data (e.g. page impressions and duration, click paths, intensity and frequency of use, device types and operating systems used, interactions device types and operating systems used, interactions with content and functions). Meta, communication and process data (e.g. IP addresses, time data, identification numbers, persons involved).
  • Persons concerned: Users (e.g. website visitors, users of online services).
  • Purposes of the processing: Feedback (e.g. collection of feedback via online form). Provision of our online services and user-friendliness.
  • Retention and deletion: Deletion in accordance with the information in the section “General information on data storage and erasure”.
  • Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR).

Contact and request management

When contacting us (e.g. by post, contact form, e-mail, telephone or telephone or via social media) and in the context of existing user and business business relationships, the data of the inquiring persons are processed, insofar as this is necessary to answer the contact requests and any requested measures is required.

  • Types of data processed: Inventory data (e.g. the full name full name, residential address, contact information, customer number, etc.); Contact data (e.g. postal and email addresses or telephone numbers); content data (e.g. textual or pictorial messages and contributions as well as information relating to them, such as information on authorship or the time of time of creation); usage data (e.g. page impressions and duration, click paths, intensity and frequency of use, device types and operating systems used, interactions device types and operating systems used, interactions with content and functions). Meta, communication and process data (e.g. IP addresses, time data, identification numbers, persons involved).
  • Persons concerned: Communication partners.

Purposes of processing: Communication; organizational and administrative procedures; feedback administrative procedures; Feedback (e.g. collecting feedback via online form). Provision of our online services and user-friendliness.

  • Retention and deletion: Deletion in accordance with the information in the section “General information on data storage and erasure”.
  • Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR). Contract fulfillment and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR).

Further information on processing operations, procedures and services:

  • Contact form: When contacting us via our contact form, by e-mail or other communication channels, we process the we process the personal data transmitted to us for the purpose of answering and processing the respective request. This usually includes information such as name, contact information and, if applicable, further information that is mitgeteilt werden und zur angemessenen Bearbeitung erforderlich sind. Wir nutzen diese Daten ausschließlich für den angegebenen Zweck der Kontaktaufnahme und Kommunikation; Legal bases: Contract performance and pre-contractual Requests (Art. 6 para. 1 sentence 1 lit. b) GDPR), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Audio content

We use hosting offers from service providers to make our audio content available for listen to and download our audio content. In doing so, we use platforms that enable the upload, store and distribute audio material.

  • Types of data processed: Usage data (e.g. page impressions and dwell time, click paths, intensity and frequency of use, device types and operating device types and operating systems used, interactions with content and functions); Meta, communication and process data (e.g. IP addresses, time data, identification numbers, persons involved). Log data (e.g. log files concerning logins or the retrieval of data or access times).
  • Persons concerned: Users (e.g. website visitors, users of online services).
  • Purposes of processing: Reach measurement (e.g. access statistics access statistics, recognition of returning visitors); conversion measurement (measuring the effectiveness of marketing measures); profiles with user-related user-related information (creation of user profiles). Provision of of our online offering and user-friendliness.
  • Retention and deletion: Deletion in accordance with the information in the section “General information on data storage and erasure”.
  • Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR).

Further information on processing operations, procedures and services:

Web analysis, monitoring and optimization

Web analysis (also referred to as “reach measurement”) is used to evaluate visitor of the streams of visitors to our online offering and may include behavior, interests or demographic information about visitors, such as age or gender, as pseudonymous values. gender, as pseudonymous values. With the help of reach analysis we can, for example, recognize at what time our online offering or its its functions or content are used most frequently, or invite users to reuse them. It is also possible for us to understand which areas require optimization.

In addition to web analysis, we may also use test procedures, for example to test and optimize different versions of our online offering or its components. and optimize them.

Unless otherwise stated below, profiles can be created for these purposes, data summarized for a usage process, can be created and information information can be stored in a browser or on an end device and then read out. The information collected includes, in particular, websites visited websites visited and the elements used there, as well as technical information, such as the browser used, the computer system used and information about times of use. If users consent to the collection of their location data to us or to the providers of the services used by us, the processing have given their consent, the processing of location data is also possible. is also possible.

In addition, the IP addresses of users are stored. However, we use we use an IP masking procedure (i.e. pseudonymization by shortening the IP IP address) to protect users. In general, the data collected in the context of web analysis, A/B testing and optimization, no clear user data (e.g. e-mail addresses or names) is stored. e-mail addresses or names) are stored, but pseudonyms. This means that we as well as the providers of the software used do not know the actual identity of the users, but only the information stored in their profiles for the purpose of the stored in their profiles for the purpose of the respective process.

Notes on legal bases: If we ask users for their consent to the use of third-party the use of third-party providers, the legal basis for data processing is consent. data processing is the consent. Otherwise, the user data is processed on the basis of our legitimate interests (i.e. interest in efficient economic and recipient-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this privacy policy.

  • Types of data processed: Usage data (e.g. page impressions and dwell time, click paths, intensity and frequency of use, device types and operating device types and operating systems used, interactions with content and functions). Meta, communication and process data (e.g. IP addresses, time data, identification numbers, persons involved).
  • Persons concerned: Users (e.g. website visitors, users of online services).
  • Purposes of the processing: Reach measurement (e.g. access access statistics, recognition of returning visitors). Profiles with user-related information (creation of user profiles).
  • Retention and deletion: Deletion in accordance with the information in the section “General information on data storage and deletion”. Storage of cookies for up to 2 years (Unless otherwise stated, cookies and similar storage methods may be stored on users' devices for a period of two stored on users' devices for a period of two years).
  • Security measures: IP masking (pseudonymization of the IP address).
  • Legal bases: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR). Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Further information on processing operations, procedures and services:

  • Plausible Analytics (self hosted): Plausible Analytics is a data protection-friendly web analysis software that works without cookies and does not store any personal data. The data is collected anonymized, so that no conclusions can be drawn about the identity of individual users. are possible. Die im Rahmen der Nutzung von Plausible Analytics erhobenen Daten werden ausschließlich auf unseren eigenen Servern verarbeitet und nicht mit Dritten geteilt. Legal bases: Legitimate interests (Art. 6 para. 1 S. 1 lit. f) GDPR). Website: https://plausible.io/.

Presence in social networks (social media)

We maintain online presences within social networks and process user data user data in this context in order to communicate with the users active there or to provide information about us.

We would like to point out that user data may be processed outside the area of the European Union may be processed. This may result in risks for the risks for users because, for example, the enforcement of user rights could be could be made more difficult.

Furthermore, the data of users within social networks are generally processed processed for market research and advertising purposes. For example user behavior and the resulting interests of users can be used to create user profiles. user profiles can be created. The latter may in turn be used be used, for example, to place advertisements inside and outside the networks that presumably correspond to the interests of the users. Therefore cookies are therefore generally stored on the user's computer, in which the user's user behavior and interests are stored. In addition data can also be stored in the user profiles independently of the devices devices used by the users (especially if they are members of the respective respective platforms and are logged in there).

For a detailed description of the respective forms of processing and the options (opt-out), we refer to the privacy policies and information data protection declarations and information provided by the operators of the respective networks.

Also in the case of requests for information and the assertion of data rights, we would like to point out that these can be asserted most effectively with the can be asserted with the providers. Only the latter have access to the user to the user data and can take appropriate measures and provide information directly. provide information. Should you nevertheless require assistance, you can contact contact us.

  • Types of data processed: Contact data (e.g. postal and e-mail addresses or telephone numbers) e-mail addresses or telephone numbers); content data (e.g. text or image messages and messages and contributions as well as the information relating to them, such as information on authorship or time of creation); Usage data (e.g. page views and length of stay, click paths, intensity and frequency of use, device types and operating systems used operating systems used, interactions with content and functions); inventory data (e.g. full name, residential address, contact information, customer number, etc.). Meta, communication and process data (e.g. IP addresses, time data, identification numbers, persons involved).
  • Persons concerned: Users (e.g. website visitors, users of online services).
  • Purposes of processing: Communication; feedback (e.g. Collecting feedback via online form); Public relations; Provision of our online services and user-friendliness; Information technology infrastructure (operation and provision of information information systems and technical equipment (computers, servers, etc.)). Public relations and information purposes.
  • Retention and deletion: Deletion in accordance with the information in the section “General information on data storage and erasure”.
  • Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR).

Further information on processing operations, procedures and services:

  • Bluesky: Decentralized social media network - enables the creation, sharing and commenting of content as well as the following user profiles; Service provider: Bluesky, PBLLC., Seattle, USA, [email protected]; Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR); Website: https://bsky.social/. Privacy policy: https://bsky.social/about/support/privacy-policy.
  • Instagram: Social network, enables the sharing of photos and videos, commenting on and favoriting posts, sending messages, subscribing to profiles and pages; Service provider: Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Irland; Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR); Website: https://www.instagram.com; Privacy policy: https://privacycenter.instagram.com/policy/. Basis for third country transfers: Data Privacy Framework (DPF).
  • Facebook-Pages: Profiles within the social network Facebook - We are jointly responsible with Meta Platforms Ireland Limited for the collection (but not further processing) of data from visitors to our Facebook of our Facebook page (so-called “fan page”). This data includes information about the types of content users view or interact with or with which they interact, or the actions they take (see under “Things done and provided by you and others” in the Facebook Data Policy: https://www.facebook.com/privacy/policy/)as well as information about the devices used by the users (e.g. IP addresses, operating system, browser type, language settings, cookie data; see under “Device information” in the Facebook Data Policy: https://www.facebook.com/privacy/policy/). As explained in the Facebook Data Policy under “How do we use this information? Information?”, Facebook also collects and uses information to provide analytics services, known as “Page Insights”, for page operators to to help them understand how people interact with their pages and the interact with their pages and the content associated with them. We have concluded a special agreement with Facebook ("Information about Page Insights”, https://www.facebook.com/legal/terms/page_controller_addendum)which regulates in particular which security measures Facebook must observe and in which Facebook has agreed to fulfill the rights of data subjects (i.e. users can, for example, send information or deletion deletion requests directly to Facebook). The rights of users (in particular to information, deletion, objection and complaint to the competent supervisory authority) are not restricted by the agreements with Facebook. are not restricted. Further information can be found in the “Information on Page Insights” (https://www.facebook.com/legal/terms/information_about_page_insights_data). Joint control is limited to the collection by and the transfer of data to Meta Platforms Ireland Limited, a company domiciled company based in the EU. The further processing of the data is the sole responsibility of Meta Platforms Ireland Limited; Service provider: Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland; Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR); Website: https://www.facebook.com; Datenschutzerklärung: https://www.facebook.com/privacy/policy/. Basis of third country data transfers: Data Privacy Framework (DPF).
  • LinkedIn: Social network - We are jointly responsible with LinkedIn Ireland Unlimited Company for the collection (but not the further processing) of visitors' data, which is used to create the “page insights “Page Insights” (statistics) of our LinkedIn profiles. This This data includes information about the types of content that users users view or interact with, as well as the actions they actions they have taken. Details about the devices used are also used, such as IP addresses, operating system, browser type, language settings and cookie language settings and cookie data, as well as information from user profiles such as job function, country, industry, hierarchy level, company size and employment status. employment status. Data protection information on the processing of user data by LinkedIn can be found in LinkedIn's privacy policy can be found here: https://www.linkedin.com/legal/privacy-policy.
    We have entered into a special agreement with LinkedIn Ireland („Page Insights Joint Controller Addendum", https://legal.linkedin.com/pages-joint-controller-addendum), which regulates in particular which security measures LinkedIn must observe and in which LinkedIn has agreed to fulfill the rights of the rights of data subjects (i.e. users can, for example, send requests for information or deletion requests directly to LinkedIn). The rights of users (in particular the right to information, deletion, objection and complaint to the competent supervisory authority) are not restricted by the agreements with LinkedIn are not restricted. The joint responsibility is limited is limited to the collection and transmission of data to LinkedIn Ireland Unlimited Company, a company based in the EU. The further processing of the data is the sole responsibility of LinkedIn Ireland Unlimited Company, in particular with regard to the transfer of data to the parent company LinkedIn Corporation in the USA; Service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR); Website: https://www.linkedin.com; Privacy policy: https://www.linkedin.com/legal/privacy-policy; Basis of third country transfers: Data Privacy Framework (DPF). Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Plug-ins and embedded functions and content

We integrate functional and content elements into our online offering that are provided by the servers of their respective providers (hereinafter referred to as “third-party providers”). referred to below). These may be, for example, graphics, videos or city maps (hereinafter uniformly referred to as “content”). referred to as “content”).

The integration always presupposes that the third-party providers of this content process the IP address of the user, as they would not be able to send the content to their could send the content to their browser. The IP address is therefore necessary for the content or functions. We endeavor to only use content content whose respective providers only use the IP address to deliver the content. delivery of the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as “web beacons”) for statistical or statistical or marketing purposes. The “pixel tags” can be used to information, such as visitor traffic on the pages of this website, be analyzed. The pseudonymous information can also be stored in stored in cookies on the user's device and, among other things technical information about the browser and operating system, referring websites websites, the time of the visit and other information about the use of our online offer, but may also be combined with such information from other sources. sources.

Notes on legal bases: Insofar as we ask users for their consent to the consent to the use of third-party providers, the legal legal basis for data processing is permission. Otherwise, the user data on the basis of our legitimate interests (i.e. interest in efficient efficient, economical and recipient-friendly services) processed. In this context, we would also like to draw your attention to the information on the use of cookies in this privacy policy.

  • Types of data processed: Usage data (e.g. page impressions and dwell time, click paths, intensity and frequency of use, device types and operating device types and operating systems used, interactions with content and functions). Meta, communication and process data (e.g. IP addresses, time data, identification numbers, persons involved).
  • Persons concerned: Users (e.g. website visitors, users of online services).
  • Purposes of the processing: Provision of our online online offer and user-friendliness; range measurement (e.g. access access statistics, recognition of returning visitors); tracking (e.g. interest/behavioral interest/behavioral profiling, use of cookies); Target group formation. Marketing.
  • Retention and deletion: Deletion in accordance with the information in the section “General information on data storage and deletion”. Storage of cookies for up to 2 years (Unless otherwise stated, cookies and similar storage methods may be stored on users' devices for a period of two stored on users' devices for a period of two years).
  • Legal bases: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR). Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Further information on processing operations, procedures and services:

  • Integration of third-party software, scripts or frameworks (e.g. jQuery): We integrate software into our online offering that we retrieve from servers of other providers providers (e.g. function libraries that we use for the purpose of displaying or or user-friendliness of our online offering). Here the respective providers collect the IP address of the users and can use this for the purpose of transmitting the software to the user's browser and for security purposes of security, as well as for the evaluation and optimization of their process their offer. - We integrate software into our online offering that we retrieve from servers of other providers (e.g. function libraries that for the purpose of presentation or user-friendliness of our online offer. use). The respective providers collect the IP address of the users and can use this for the purpose of transmitting the software to the the user's browser and for security purposes, as well as for the evaluation and and optimization of their offer; Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR)
  • Cloudflare Turnstile: Cloudflare Turnstile is a privacy-friendly and user-friendly alternative to traditional CAPTCHA solutions. It enables the verification of users without them having to solve having to solve CAPTCHA tasks. Turnstile works without forwarding traffic through traffic through Cloudflare and without displaying CAPTCHA elements. It provides a frictionless user experience while increasing security by security by recognizing and blocking automated access. In the process no personal data such as IP addresses are stored or processed; no processed; Service provider: Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA; Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR); Website: https://www.cloudflare.com/application-services/products/turnstile/; Privacy Policy: https://www.cloudflare.com/privacypolicy/.
  • Bunny Fonts: Obtaining fonts (and symbols) for the purpose of a technically secure, maintenance-free and efficient use of fonts and symbols fonts and symbols with regard to up-to-dateness and loading times, their uniform presentation and consideration of possible licensing restrictions. restrictions. In contrast to Google Fonts, Bunny Fonts does not collect any personal data such as user IP addresses are processed or stored. stored. The fonts are provided by servers within the EU which means that no data is transferred to third countries. This guarantees data protection-friendly integration of the fonts; Service provider: BunnyWay d.o.o., Cesta komandanta Staneta 4A, 1215 Medvode, Slovenia; Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR); Website: https://fonts.bunny.net/; Privacy policy: https://bunny.net/privacy/.
  • Font Awesome (self hosted): Display of fonts and symbols; Service provider: The Font Awesome Icons are hosted on our server, no data will be transmitted to the provider of Font Awesome provider; Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR).
  • YouTube-Videos: Within our online offer are embedded videos that are stored on YouTube. The integration of these YouTube videos is done via a special domain using the component “youtube-nocookie” in the so-called ‘extended data protection mode’. In “extended data protection mode”, until the start of the video, only information information, which includes your IP address and information about the browser and your device, can be stored on your device in cookies or by means of comparable procedures YouTube for the output, control and optimization of the video display. optimization of the video display. As soon as you play the videos, additional information for the analysis of user behavior and for storage in the user storage in the user profile and for the personalization of content and ads are processed by YouTube. The storage period for cookies can be up to two years; Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Legal bases: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR); Website: https://www.youtube.com; Privacy policy: https://policies.google.com/privacy; Basis of thoird country transfers: Data Privacy Framework (DPF).

Management, organization and support tools

We use services, platforms and software from other providers (hereinafter referred to as “third-party providers”) for the purposes of organizing, managing administration, planning and provision of our services. When selecting providers and their services, we comply with the legal requirements.

In this context, personal data may be processed and stored on the servers of servers of the third-party providers. This may affect various data which we process in accordance with this privacy policy. This data may include, in particular, master data and contact data of users, data on transactions, contracts, other processes and their content.

If users access the third-party providers or their software or platforms in the context of relationships with us to the third-party providers or their software or platforms, the third-party platforms, the third-party providers may use usage data and metadata for security security purposes, for service optimization or for marketing purposes. process. We therefore ask you to observe the data protection notices of the respective third party providers.

  • Types of data processed: Content data (e.g. textual or visual messages and messages and contributions as well as the information relating to them such as information on authorship or time of creation); Usage data (e.g. page views and dwell time, click paths, intensity and frequency of use, device types and operating systems used operating systems used, interactions with content and functions); meta, communication and process data (e.g. IP addresses, time data, identification numbers, persons involved). Contact data (e.g. postal and e-mail e-mail addresses or telephone numbers).
  • Persons affected: Communication partners. Users (e.g. Website visitors, users of online services).
  • Purposes of processing: Communication; provision of contractual contractual services and fulfillment of contractual obligations. Office and organizational procedures.
  • Retention and deletion: Deletion in accordance with the information in the section “General information on data storage and erasure”.
  • Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR).

Further information on processing operations, procedures and services:

  • Rally (self hosted): Online scheduling and appointment management. The data is processed exclusively on our own servers and is not passed on to third parties. Personal data such as name, e-mail address and appointment preferences are processed in order to ensure the functionality of the platform; Service provider: Own server under our data protection responsibility; Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR); Website:https://rallly.co. Further information: Data processing takes place exclusively on servers within the EU;
  • Nextcloud (self hosted): Nextcloud is a self-hosted platform for storing and managing files, contacts, calendars and other data. The data is processed exclusively on our own servers and is not passed on to third parties. Personal data such as files, metadata, IP addresses and log data are processed to ensure the functionality of the platform; Service provider: Own server under our data protection responsibility; Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR); Website:https://nextcloud.com. Further information: Data processing takes place exclusively on servers within the EU;
  • AppFlowy (self hosted): AppFlowy is a privacy-friendly, open-source platform for notes, wikis, projects and more. The platform makes it possible to organize projects and teams in one central location without losing control of your own data. The data is processed exclusively on our own servers and is not passed on to third parties. Personal data such as user data, project information and log data is processed to ensure the functionality of the platform; Service provider: Own server under our data protection responsibility; Legal bases: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) GDPR); Website: https://appflowy.io/; Further information: Data processing takes place exclusively on servers within the EU;

Change and update

We ask you to inform yourself regularly about the content of our privacy policy information. We will adapt the privacy policy as soon as changes to the the data processing carried out by us make this necessary. We will inform you as soon as the changes require an act of cooperation on your part (e.g. consent) or any other individual notification. notification becomes necessary.

If we provide addresses and contact information of companies and organizations of companies and organizations in this privacy policy, please note that the addresses addresses may change over time and ask you to check the details before check the information before contacting us.

Created with free Datenschutz-Generator.de by Dr. Thomas Schwenke (adapted by Kevin Pfeiffer)