Data protection
In order to fulfill our obligations pursuant to Article 13 of the GDPR, this data protection declaration informs you of the type, scope and purposes of the processing of personal data (hereinafter referred to as "data") generated by us in connection with the provision of our services and our online offerings. The online service includes in particular the website required for this as well as associated functions and content as well as external online presence, such as social networks and media profiles.
For the terms used, please refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR).
1.1 Person in charge
The person responsible for data processing within the meaning of Article 13 Paragraph 1 of the GDPR is:
Legal statement link: support@oximeterbuy.com
1.2 People affected
Visitors and users of our online products are affected by the data processing carried out by us.
1.3 Data types processed
If you simply access our online services, i.e. without registering or providing any other information, only the data transmitted to our server via the respective user's browser (so-called "server log files") will be collected. The following data is affected by this:
Date and time of visit
Amount of data sent (in bytes)
The source/reference from which you visited this page
IP address used
Usage data (e.g. so-called cookies, websites visited, interest in content, access time)
Meta/communication data (such as software information, IP/MAC addresses, operating systems and browsers used).
If the corresponding user completes registration or provides other information, the following data will also be processed:
Inventory data (e.g. personal master data, name, address),
Contact details (e.g. email address, phone number),
Content data (such as text input, photo and video material).
1.4 Purpose of processing
Data processed
provide online products, including their functionality and content,
Performance and processing of contractual obligations arising from orders
Respond to contact requests and communicate with users,
To ensure safety measures,
For range measurements,
For marketing purposes
Ensure the long-term functionality of our information technology systems and website technology
Provide law enforcement authorities with information necessary for criminal prosecution in the event of a cyberattack.
1.5 Terms used
According to Article 4(1) of the GDPR, "personal data" means "all information relating to an identified or identifiable natural person (hereinafter referred to as "data subject"); if a natural person can be identified, directly or indirectly, in particular by A natural person is considered identifiable by reference to an identifier such as a name, an identification number, location data, an online identifier or the expression of one or more special characteristics. The natural person's physical, physiological, genetic, mental, economic, cultural or social identity.
According to Article 4(2) of the GDPR, "processing" means "any process or series of processes relating to personal data which is performed with or without the aid of automated processes, such as collection, recording, organization, organization, storage, adaptation or modify, read, consult, use, disclose by transmission, distribution or any other form of making available, comparison or linking, restriction, deletion or destruction".
According to Article 4 Paragraph 4 of the GDPR, "profiling" means "any type of automated processing of personal data consisting of the use of that personal data to evaluate certain personal aspects relating to a natural person, in particular "to analyze or predict aspects relating to a natural person" ". That natural person's work performance, financial situation, health, personal preferences, interests, reliability, behavior, location or activities".
According to Article 4 Paragraph 5 of the GDPR, "pseudonymization" means "the processing of personal data in such a manner that the personal data can no longer be assigned to a specific data subject without the use of additional information, provided that that additional information is Stored separately and comply with technical and organizational measures, i.e.They ensure that personal data are not assigned to an identified or identifiable natural person".
According to Article 4(6) of the GDPR, a "file system" is "any structured collection of personal data accessible according to specific criteria, whether the collection is centrally managed, decentralized, or organized functionally or geographically".
According to Article 4(7) of the GDPR, "controller" is "the natural or legal person, authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; "If the purposes and means of such processing are determined by is determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law. "
According to Article 4(8), a "processor" is "a natural or legal person, authority, agency or other body which processes personal data on behalf of the controller".
According to Article 4(9) of the GDPR, a "recipient" is "a natural or legal person, authority, agency or other body, whether a third party or not, to which the personal data are disclosed. However, this may not be the case under Union or Member State law in the context of a particular investigation. Public authorities receiving personal data in the course of their mission shall not be regarded as recipients; the processing of these data by the above-mentioned authorities will be carried out in accordance with the applicable data protection rules in accordance with the purposes of the processing."
An "IP address" is a combination of numbers assigned to a device by an Internet service provider in order to grant the device access to the Internet.
1.6 Legal basis
Pursuant to Article 13 Paragraph 1 c of the GDPR, we are obliged to inform you about the legal basis for our processing.
For users within the scope of the General Data Protection Regulation (GDPR) applicable to the European Union (EU) and the European Economic Community (EEC), the following applies, provided no other legal bases are mentioned in the data protection declaration:
6 Article 1(a) and Article 7 of the GDPR are the legal basis for data processing, which is subject to consent.
Article 6 Paragraph 1 b GDPR is the legal basis for processing data to perform services owed to us, carry out pre-contractual measures and answer inquiries.
6 Paragraph 1 letter c of the GDPR is the legal basis for processing for compliance with our legal obligations.
Article 6 Para. 1 lit. d of the GDPR is the legal basis for the processing of personal data which is necessary for the vital interests of the data subject or another natural person.
Paragraph 6 para. 1 of the GDPR is the legal basis for processing for the performance of a task carried out in the public interest or in the exercise of official powers vested in the controller (as long as it is necessary for such purposes).
6 Paragraph 1 para. f of the GDPR is the legal basis for processing which protects our legitimate interests.
6 Paragraph 4 of the GDPR relates to the processing of data other than the purposes for which the data were collected. Such processing is only possible under the conditions set out here.
Article 9(2) of the GDPR sets out special requirements for the processing of special categories of data (corresponding to Article 9(1) of the GDPR).
1.7 Security measures
We take appropriate steps to ensure a level of protection appropriate to the risk
legal requirements, taking into account existing technology,
Cost of implementation, nature, scope, circumstances and purpose of processing
Different probabilities and severity of risks to the rights and freedoms of natural persons
Take appropriate technical and organizational measures.
These measures include, inter alia, ensuring the confidentiality, integrity and availability of data
control physical access to data,
control access to data,
Control data input, transmission, and ensure availability and separation.
In addition, we have procedures in place to enable affected individuals to exercise their rights, delete data and respond to data threats.
1.8 Cooperation with processors, joint controllers and third parties
For some services, as part of our processing of the data, it is necessary to disclose it to another person (usually a company), i.e. to transfer the data to them or to grant them access to the data in another way. These companies are processors or joint controllers on the one hand and third parties such as payment service providers on the other. Such disclosure only takes place if this is permitted or required by law, with the user's consent or on the basis of our legitimate interests, for example when using an agent or web host. This legitimate interest also exists in particular if the data processing is carried out for administrative purposes.
If we pass on data to other companies in our group of companies (by disclosing, transferring or otherwise granting access), this is done in particular for administrative purposes. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 f GDPR. In addition, it may be made accessible due to legal requirements.
1.9 Data transfer to third countries
Data will be disclosed, transferred or otherwise accessed by persons (including companies) in third countries (i.e. outside the European Union, the European Economic Area or the Swiss Confederation) if the legal requirements are met. This is particularly the case if the data processing is carried out to fulfill our contractual or pre-contractual obligations. Otherwise, the processing must be based on your consent, a legal obligation or our legitimate interests. We are also obliged to ensure the minimum standards required in the constellation. If a certified or binding internal data protection regulation exists (Articles 44 to 49 GDPR, information page of the European Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension -data -protection_en).
2.0 Rights of data subjects
You have the right to request information about whether your data is being processed. In addition, you have the right to further information and copies of your data, insofar as this is required by law.
You have the right to enter data about you and to have incorrect data about you corrected.
Subject to the legal requirements, you have the right to demand the immediate deletion of data concerning you. Alternatively, you have the right to restrict data processing in accordance with the legal requirements. (See also right to object)
Subject to the legal requirements, you have the right to receive the data concerning you that you have provided to us and to request that it be transferred to another controller.
You have the right to lodge a complaint with the competent supervisory authority.
2.1 Right of revocation
You can withdraw your consent at any time with effect for the future.
2.2 Right to object
__________________________________________________
You have the right to object to the future processing of your data if this is required by law. The objection may also relate specifically to processing for direct marketing purposes.
__________________________________________________
2.3 Cookies
Our website uses cookies. A cookie is information that is transferred from our web server or a third-party web server to your browser and stored there for later retrieval. Cookies can be small files or other types of information storage. Cookies store information that relates to the specific end device used. Cookies contain a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again. Cookies also contain information about their origin and storage duration. However, this does not mean that we obtain direct knowledge of your identity.
We use cookies to make our website more user-friendly and secure.
There are different types of cookies. Please note that not all cookies listed here are used when you visit our website. We will inform you separately in this privacy policy about the use of cookies by third-party companies or for analysis purposes and, if necessary, obtain your consent.
1 necessary cookie
These are necessary cookies so that you can use our websiteNavigate and use basic functionality of the website, such as assigning anonymous session IDs to bundle multiple related queries to the server.
2.4 performance cookies
Performance cookies are used to improve the user-friendliness of the website and thereby improve the user experience. Performance cookies collect information about how our website is used, such as the internet browser and operating system used; the domain name of the website you came from, the number of visits, average time spent and pages viewed. These cookies do not store any information that personally identifies the user. Information collected using cookies is aggregated and therefore anonymous.
2.5 analytics cookies
We use analytics cookies to make our website more user-friendly. By analyzing cookies we can determine how our website is used, for example: B. On the basis of which preferences and search terms are visited.
2.6 Advertising cookies
We use advertising cookies to provide you with more targeted and relevant content. They are also used to measure and control the effectiveness of advertising campaigns. Marketing cookies record whether the website is visited and what content is used. This information may be shared with third parties (such as advertisers) and is often linked to third-party website features (third-party cookies).
2.7 social media cookies
Social media cookies are set by social networks. For example, you can register on our website using your login details from a social network.
2.8 How do I delete cookies or turn off tracking?
You can delete individual cookies or delete the entire cookie library through your browser settings. You should find information about managing cookies under "Help" or "Settings" on your browser.
You can also find information and instructions on how to delete these cookies or prevent their storage in advance (depending on your browser provider) at the following link:
Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-loeschen-daten-von-websites-entfernen
Internet Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies
Google Chrome: https://support.google.com/accounts/answer/61416?hl=de
Opera: http://www.opera.com/de/help
Safari: https://support.apple.com/kb/PH17191?locale=de_DE&viewlocale=de_DE
You can also manage many companies' cookies and features for advertising individually. To do this, please use the relevant user tools created by many countries as part of self-regulatory schemes, such as B. the US website http://optout.aboutads.info/ or the EU website Your Online Choices http://www.youronlinechoices.com.
Most browsers also offer a so-called "Do Not Track" feature, which allows you to indicate that you do not want to be "tracked" by a website. When this feature is enabled, your browser tells ad networks, websites, and apps that you do not want to be tracked for behavioral advertising and similar purposes. Depending on your browser provider, you can find information and instructions on how to edit this feature using the following links:
Mozilla Firefox browser: https://www.mozilla.org/de/firefox/dnt
Internet Explorer: https://support.microsoft.com/de-de/help/17288/windows-internet-explorer-11-use-do-not-track
Google Chrome: https://support.google.com/chrome/answer/2790761?co=GENIE.Platform%3DDesktop&hl=de
Opera: http://help.opera.com/Windows/12.10/de/notrack.html
Safari: https://support.apple.com/kb/PH21416?locale=de_DE
2.9 Data deletion
Where required by law, we delete the data we collect or restrict its processing.
We delete the data we store as soon as the purpose of storage no longer applies, without contrary legal retention obligations and no different provisions are made in this data protection declaration.
If the data is not deleted because it is necessary for other legally permissible purposes (such as retention for commercial or tax reasons), its processing will be restricted. In this case, the data will be processed exclusively for this purpose, otherwise it will be blocked.
3.0 Changes to the data protection declaration
Legal innovations or changes in the data processing carried out by us may require adjustments to this data protection declaration. For this reason, we ask that you regularly consult the contents of our data protection declaration. If the change requires a cooperative act on your part (e.g. consentung) or other individual notification is required, we will notify you in an appropriate manner.
3.1 Processing for commercial purposes
In addition, we process contract data (e.g. contract subject matter, term, date of conclusion) and payment data (e.g. account number) from customers, stakeholders and business partners in order to provide contractual and other services. This includes, inter alia, service, customer service, marketing, advertising and market research.
3.2 Online store and customer account
When ordering on our platform, we process user data to enable them to select, store and order the selected products and services as well as payment, delivery or execution.
In particular, this concerns inventory data, communication data, contract data, payment data. Those affected are our customers, stakeholders and other business partners.
The purpose of the processing is the provision of contracted services as part of the operation of the online store, billing, delivery and customer service. We use session cookies to store the contents of the shopping cart and items visited. Additionally, we use persistent cookies to store login status.
Data processing is carried out on the one hand for the performance of our services and for the execution of contractual measures (e.g. enabling the ordering process between users) and on the other hand for compliance with legal regulations (e.g. legal requirements for archiving of commercial transactions and tax purposes).
Information marked as required is required for the establishment and performance of the contract.
The data will only be passed on to third parties within the scope of delivery and payment, within the framework of legal permissions and obligations and on the basis of our legitimate interests which we have expressly informed in this data protection declaration. For example, disclosures to legal and tax advisors, financial institutions, trucking companies and authorities.
Our users have the opportunity to create user accounts. In particular, this allows you to review your order and access other services, such as canceling your order or preparing a return. Users are informed of the mandatory information required for registration.
The accounts we create are private in nature and cannot be indexed by search engines. If a User terminates such an account, the data associated with that User's account will be deleted unless retention is required for business or tax reasons.
All information collected as part of a customer account is retained until deleted and subsequently archived in the context of legal obligations or our legitimate interests. This happens, for example, in the context of legal disputes.
If the contract is terminated, the user is responsible for backing up the data before the end of the contract.
We store the IP address you use when registering and subsequently logging in, as well as when you use our online services, as well as the time of the corresponding user action. This storage is based on our legitimate interests and to protect users from misuse and other unauthorized use. In principle, this data will not be passed to third parties. This provision does not apply if these are necessary for us to pursue legal claims as part of our legitimate interests or if we are legally obliged to do so.
The data we collect and store will be deleted once statutory warranty rights or other contractual rights or obligations (such as payment claims or performance obligations under a contract) expire. Review the need to store data every three years. If storage is due to legal archiving obligations, the data will be destroyed upon expiry of this obligation.
We use the following online store providers:
Website: https://shopline.com; Data protection statement: https://www.shopline.com/privacy
3.3 Administration, financial accounting, office organization, contact management
In the course of performing administrative tasks as well as organizing our operations, financial accounting and complying with legal obligations (e.g. filing)We process data for these purposes.
This data is the same data we process for the provision of contractual services. The processing is carried out pursuant to Article 6 Paragraph 1 c. GDPR, Article 6 Paragraph 1 f. GDPR.
Customers, interested parties, business partners and website visitors are affected by the processing. The purposes and interests of the processing are administrative, financial accounting, office organization, data archiving, i.e. tasks necessary to maintain our business activities, perform our tasks and provide our services. The deletion of data relating to contractual services and contractual communications corresponds to the information provided in the context of these processing activities.
We disclose or transfer data to tax authorities, advisors such as tax advisors or auditors, and other fee offices and payment service providers.
In addition, we store information about suppliers, organizers and other business partners based on our business interests, e.g. for the purpose of future contact. We generally store this primarily company-related data permanently.
3.4 Business analysis and market research
We analyze available data, in particular data relating to business transactions, contracts and inquiries, in order to be able to operate our business economically. We also try to identify market trends and the wishes of our contractual partners and users (marketing, market research). For this purpose, we process inventory data, communication data, contract data, payment data, usage data and metadata, in particular in accordance with Article 6 Paragraph 1 f GDPR. For example, as part of processing, we may compare information provided by registered users in their profiles with the services they use.
The analysis performed is aimed at improving user-friendliness and business efficiency and optimizing our products. These analyzes are conducted solely for our own purposes and will not be disclosed unless they are anonymous analyzes with aggregated values.
Those affected by these measures include our contractual partners, stakeholders, customers, visitors and users of our online products.
If such analytics or profiles are personal, they will be deleted or anonymized when the user terminates their subscription. Otherwise, this happens two years after the contract is signed. Additionally, where possible, overall business analysis and overall trend identification are created anonymously.
3.5 Participation in the Affiliate Partner Program
As part of our online services we use industry standard tracking measures insofar as they are necessary for the operation of the affiliate marketing system.
The legal basis for this measure is the protection of our legitimate interests pursuant to Article 6 Paragraph 1 f GDPR, in particular the interests in the analysis, optimization and economic operation of our online offering.
Services provided by us or our contractual partners may also be advertised and linked to on other websites. On the one hand, there is the so-called affiliate system, which is based on the fact that as soon as a user clicks on an affiliate link, the operator of the corresponding website receives a commission and then takes advantage of the corresponding offer. There are also so-called "post-purchase systems", which for example provide links or third-party services after a contract has been concluded.
In order to check whether users who express interest in our offers by clicking on such affiliate links or who are interested in offers within our online services actually take advantage of it, our online offers require us to track the surfing behavior of our users. This can be achieved by adding certain value to affiliate links and our offers. This can be done on the one hand by supplementing the link with a component containing such tracking information or in other ways (e.g. by setting a cookie).
Tracking information specifically includes
Source website (recommender),
time,
the online identifier of the operator of the website to which the affiliate link resides,
the online identifier of the corresponding offer,
the user's online identifier and
Track specific values such as ad material ID, partner ID, and classification.
The online user ID used here contains only pseudonymous values. This means that the online identifier itself does not contain any personal data, such as name or email address.
identifierg is only used to determine whether the same user who clicked on an affiliate link or became interested in an offer within our online services actually took advantage of the offer, i.e. usually concluded a contract with the provider. However, we and our partner companies often store online identifiers together with other user data, which means that the identifier can be considered personal data. This is necessary because it is the only way the partner company can tell us whether a user took advantage of the offer and whether we have to pay the agreed commission.
3.6 Registration function
Users have the option to create a user account. When registering, the User will be provided with the required mandatory information. This data is processed pursuant to Article 6 Paragraph 1 b GDPR for the purpose of providing the user account. In particular, login information (name, password and email address) are recorded and processed. All data entered during registration will be used for the use of the user account and related purposes.
Our users may receive information related to their user accounts via email. This may involve technological changes, for example.
If a User terminates a User Account, data regarding that User Account will be deleted in accordance with legal retention requirements. If the contract is terminated, the user is responsible for backing up their data before the end of the contract. We reserve the right to permanently delete all user data stored during the contract period.
In addition, we store the IP address and the time of the corresponding user action as part of the registration and login functions. This is done to protect our legitimate interests and those of our users, as it is done to ensure protection against abuse and other unauthorized use. Generally speaking, this data is not passed on to third parties unless it is necessary for our claims or we are legally obliged to do so pursuant to Article 6 para. 1 c. GDPR. The IP address will be anonymized or deleted after 7 days at the latest.
For this we use the following providers:
Website: https://shopline.com; Data protection statement: https://www.shopline.com/privacy
3.7 Contact details
When contacting us via the contact form, email, phone, fax or social media, the user's information will be processed for the purpose of processing and processing the contact request. The legal basis for the contractual/pre-contractual relationship derives from Article 6 Paragraph 1(b). GDPR. For further enquiries, please refer to Article 6(1). f GDPR related. User information is typically stored in a customer relationship management system ("CRM system") or similar query organization.
We will delete the data obtained regarding the request if it is no longer required. Necessity is reviewed every two years. Otherwise, statutory filing obligations apply.
Chapter 23 Communication
Please now follow the information about our newsletter content, registration, shipping and statistical evaluation procedure as well as your right to object.
By subscribing to our newsletter, you also agree to receive it and the procedures described.
SMS content:
We will send newsletters in the form of e-mails and other electronic notifications with promotional information only with the recipient's prior consent or as permitted by law.
If the content is specifically described when registering for the newsletter, this is decisive for the user's consent. Our newsletter also contains information about our services and ourselves.
Double opt-in and logging:
Registration for our newsletter takes place via the so-called double opt-in process.
This means that a message will be sent to the email address you provided asking you to confirm your registration by clicking on a specific link. This confirmation is necessary so that users can only log in with email addresses they have access to and not misuse someone else's email address.
In order to be able to provide evidence of a registration process that complies with legal requirements, each registration for the newsletter is recorded. For this purpose, register and confirm time and IP addressUser records.
In addition, changes to the data stored by the transportation service provider are also logged.
Registration details:
To sign up for our newsletter, all you need to do is provide your email address. In order to be able to address you personally in the newsletter, we also ask for your name.
Legal basis:
The legal admissibility of sending the newsletter depends on the above-mentioned consent of the respective recipient in accordance with Article 6 Paragraph 1 a, Article 7 GDPR and Article 7 Paragraph 2 Paragraph 3 UWG, or if no consent has been given This is necessary for our legitimate interests in direct marketing pursuant to Article 6 Paragraph 1 of the GDPR and Article 7 Paragraph 3 of the UWG.
The recording of the registration process is based on the protection of our legitimate interests pursuant to Article 6 (1) (f) of the GDPR.
These interests lie in the establishment and maintenance of a user-friendly and secure newsletter system for commercial purposes, which also enables us to provide evidence of consent.
Termination/Cancellation:
You have the right to cancel our newsletter service at any time. By doing so, you also revoke your consent. You will find a link to unsubscribe from our newsletter at the end of each newsletter. In order to be able to prove that consent was given but was later revoked, we are entitled to store unsubscribed email addresses for up to three years after revocation based on our legitimate interests. This data is processed exclusively for the purpose of defending possible claims. You may choose to submit a personal deletion request at any time if you confirm to us that you have previously provided your consent.
3.8 Hosting and Email Delivery
We use an external hosting service to operate our online products. This involves:
Infrastructure and platform services
Computing power, storage and database services,
There is also an email sending service
Security services and technical maintenance services.
As part of the protection of our legitimate interests, this online offer is provided efficiently and securely in accordance with Article 6(1).
Inventory and contact details,
Content data and contract data
Usage, metadata and communication data.
This data processing affects our customers, interested parties and visitors to our online offerings.
We use the following web hosting providers:
Website: https://shopline.com; Data protection statement: https://www.shopline.com/privacy
3.9 Use of external payment service providers
As part of our services and products, we offer valid and secure payment options through third-party providers.
If you select a specific service provider as a payment option during the ordering process, your data will be automatically transferred to the corresponding payment service provider. By selecting one of these payment options, you agree to the transfer of personal data required to process the invoice or installment purchase or to check your identity and creditworthiness.
The personal data transferred are usually first name, surname, address, date of birth, gender, email address, IP address, telephone number, mobile phone number and other data required for the processing of invoices or installment purchases. In order to process the respective contract, personal data relating to the respective order are also required.
The purpose of the data transmitted is, inter alia, identity verification, payment management and fraud prevention.
The terms and conditions and data protection information of the respective payment service provider apply to payment transactions, which can be accessed on the respective websites or transaction applications. We also refer to the terms and conditions of each payment provider if they wish to assert your affected rights. If you have any questions, please feel free to contact us.
We use the following external payment providers:
Website: https://www.ocean payment.com/
Amazon Payments Europe s.c.a., 5 Rue Plaetis, 2338 Luxembourg, Luxembourg; Website: https://stripe.com/; Data protection statement: https://stripe.com/privacy
Sofort: Sofort GmbH, Theresienhöhe 12, 80339 Munich, Germany; Website: https://www.sofort.com; Data protection statement: https://www.sofort/datenschutz.html
Google Pay: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Website: https://pay.google.com/; Data protection statement: https://policies.google.com/privacy?hl=de&gl =en
Apple Pay: Apple Inc. One Apple Park Way, Cupertino, 95014 California, USA; Website: https://www.apple.com/apple-pay/; Data protection statement: https://www.apple.com/legal /privacy/
4.0 Collection of access data and log files
For the purpose of protecting our legitimate interests pursuant to Article 6 Paragraph 1 (f) GDPR, we or our hosting provider collect data about each access to the server on which this service is hosted (so-called server log files). This data includes
the name of the website visited and, if applicable, certain files,
Retrieve date and time,
The amount of data transferred,
Notification of successful retrieval,
Browser type and version, user's operating system,
Referrer URL (previously visited page),
IP address and
The requested provider.
For security reasons, log file information is stored for up to 7 days and then deleted. This is especially helpful in clarifying abuse or fraud. If the data is suitable as evidence to clarify the issue, it will not be deleted until the relevant matter is finally clarified.
4.1 Google Tag Manager
Google Tag Manager is used to manage so-called website tags through a single interface, through which Google Analytics and other Google marketing services can be integrated into our online products, for example. The tag manager only implements the corresponding tags, i.e. it does not process any of the users' personal data. Regarding the processing of such related data, please refer to the following guidelines for the use of Google services: https://www.google.com/intl/de/tagmanager/use-policy.html.
4.2 Google Analytics
Based on our legitimate interests in the analysis, optimization and economic operation of our online offering within the meaning of Article 6 Paragraph 1 lit. f. of the GDPR, we use Google Analytics, a web analysis service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google uses cookies that contain information about how users use online services. This information is usually transmitted to a Google server in the United States and stored there. The European Commission has not made an adequacy decision against the United States. Our cooperation is based on the European Commission's standard data protection clauses.
The processing of this information is based on our interest in evaluating the use of our online product and recording the activities within the scope of this product. In addition, other services related to the use of this online offer and Internet use are provided. This enables Google to create pseudonymous user profiles based on the processed data.
We only use Google Analytics with IP anonymization enabled. This means that Google shortens the IP address of users within Member States of the European Union or other contracting parties to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.
The IP address transmitted by the user's browser will not be merged with other Google data.
If the user does not consent to such data processing, he or she can choose to deactivate the setting of any cookies through the browser settings.
In addition, Users can prevent Google from collecting the data generated by cookies and relating to their use of online products and from processing this data by Google by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/ gaoptout?hl=en.
For more information about Google's use of data, setting options and objection options, please refer to the Google data protection declaration (https://policies.google.com/privacy) and the Google ad display settings (https:// adssettings.google.com/ authenticated).
Users' personal data will be deleted or anonymized after 14 months.
4.3 Google Adsense personalized advertising
Based on our legitimate interests in the analysis, optimization and economic operation of our online offering pursuant to Article 6 Paragraph 1 (f) GDPR, we use the AdSense service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, Where personal data is processed. These are usually transmitted to Google servers in the United States and stored there. The European Commission has not made an adequacy decision against the United States. Our cooperation is based on the European Commission's standard data protection clauses.
The AdSense service allows us to integrate advertising or other offers into our online presence and receive compensation for this. For this purpose, usage data, such as ad clicks and the user's IP address, are processed, thereby shortening the last two digits of the IP address. Therefore, the processing of user data takes place anonymously.
We use Adsense in conjunction with personalized advertising. Google draws conclusions about users' interests based on the websites they visit or the applications they use and the user profiles created in this way. Advertisers use this information to develop campaigns targeted at these interests, which benefits both users and advertisers. For Google, ads are personalized when collected or known data determines or influences ad selections. This includes, but is not limited to, previous searches, activity, website visits, app usage, demographic and location information. Specifically, this includes: demographic targeting, interest category targeting, remarketing, and targeting of customer match lists and audience lists uploaded to DoubleClick Bid Manager or Campaign Manager.
For more information about Google's data use, settings and objection options, please refer to the Google data protection declaration (https://policies.google.com/technologies/ads) and the Google ad display settings (https://policies.google.com /technologies/ads) /adssettings .google.com/authenticated).
4.4 Google Adsense and non-personalized advertising
Based on our legitimate interests in the analysis, optimization and economic operation of our online offering pursuant to Article 6 Paragraph 1 (f) GDPR, we use the AdSense service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, Where personal data is processed. These are usually transmitted to Google servers in the United States and stored there. The European Commission has not made an adequacy decision against the United States. Our cooperation is based on the European Commission's standard data protection clauses.
The AdSense service allows us to integrate advertising or other offers into our online presence and receive compensation for this. For this purpose, usage data, such as ad clicks and the user's IP address, are processed, thereby shortening the last two digits of the IP address. Therefore, the processing of user data takes place anonymously.
We use Adsense with non-personalized advertising. Ads will not be shown based on user profiles. Non-personalized ads are not based on past user behavior. Targeting uses contextual information, including coarse (e.g., location-level) geotargeting based on current location, content on the current website or app, and current search terms. Google prohibits any personalized targeting, including demographic targeting and targeting based on user lists.
For more information about Google's data use, settings and objection options, please refer to the Google data protection declaration (https://policies.google.com/technologies/ads) and the Google ad display settings (https://policies.google.com /technologies/ads) /adssettings .google.com/authenticated).
4.5Google AdWords and conversion measurement
In order to protect our legitimate interests in the analysis, optimization and economic operation of our online offering pursuant to Article 6 Paragraph 1 Paragraph f GDPR, we use the online marketing process Google "AdWords" of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, where personal data is processed. These are usually transmitted to Google servers in the United States and stored there. The European Commission has not made an adequacy decision against the United States. Our cooperation is based on the European Commission's standard data protection clauses.
With the help of Google "AdWords" we can become part of the Google advertising networkPlace ads (such as in search results, videos, websites, etc.) so that they are shown to users presumed to be interested in the ads. This allows us to display advertising within our online offerings in a more targeted manner so that users are only shown advertising that is likely to match their interests. For example, if users see ads for products they are interested in on other online products, this is called "remarketing." For these purposes, when you visit our website and other websites on which the Google advertising network is active, Google executes code directly from Google and so-called (re)marketing tags (invisible graphics or codes, also known as "Web beacons"). ") ) has been integrated into the website. With their help, a single cookie (i.e. a small file) is stored on the user's device (similar technologies can also be used instead of cookies). This file records which websites the user visited, what the user was interested in and which offers the user clicked on, as well as technical information about the browser and operating system, referring websites, access times and other information about the use of the online offer.
We also receive a separate "conversion cookie". Google uses the information collected by cookies to create conversion statistics for us. However, we only know the total number of anonymous users who clicked on our ads and were redirected to a page with a conversion tracking tag. However, we do not receive any information that could be used to personally identify users.
User data is processed anonymously within the Google advertising network. This means that Google does not store and process information such as the user's name or email address, but rather the relevant cookie-related data in an anonymous user profile. This means that, from Google's perspective, the ads are not managed and displayed to a specifically identified person, but to the cookie holder, whoever the cookie holder is. This provision does not apply if the user has explicitly given Google permission to process the data without pseudonymization. The information collected about the user will be transmitted to and stored by Google on Google servers in the United States.
For more information about Google's use of data, setting options and objection options, please refer to the Google data protection declaration (https://policies.google.com/technologies/ads) and the Google Ads Display Settings (https://adssettings.google. com/authenticated).
4.6 Google Double Click
In order to protect our legitimate interests in the analysis, optimization and economic operation of our online offering pursuant to Article 6 Paragraph 1 f. GDPR, we use the online marketing process Google "Doubleclick" of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4 , Ireland, where personal data is processed. This data is usually transferred to a Google server in the United States and stored there. The US-EU Commission did not make an adequacy decision. Our cooperation is based on the European Commission's standard data protection clauses.
Using Google "Doubleclick" we can place ads in the Google advertising network (e.g. in search results, videos, websites, etc.). Double Click features real-time display of ads based on the user's presumed interests. This allows us to display advertising within our online offerings in a more targeted manner so that users are only shown advertising that is likely to match their interests. For example, if users see ads for products they are interested in on other online products, this is called "remarketing." For these purposes, when you visit our website and other websites on which the Google advertising network is active, Google executes code directly from Google and so-called (re)marketing tags (invisible graphics or codes, also known as "Web beacons"). ") ) has been integrated into the website. With their help, a single cookie (i.e. a small file) is stored on the user's device (similar technologies can also be used instead of cookies). This file records which websites the user visited, what the user was interested in and which offers the user clicked on, as well as technical information about the browser and operating system, referring websites, access times and other information about the use of the online offer.
The user's IP address is also logged, although this is within an EU member stateThe European Union or other Contracting States to the Agreement on the European Economic Area, and only in exceptional cases will be transmitted entirely to Google servers in the United States and shortened there. Google may also combine the above information with this information from other sources. If the user subsequently visits other websites, they may be shown advertisements tailored to their presumed interests based on their user profile.
User data is processed anonymously within the Google advertising network. This means that Google does not store and process information such as the user's name or email address, but rather the relevant cookie-related data in an anonymous user profile. This means that, from Google's perspective, the ads are not managed and displayed to a specifically identified person, but to the cookie holder, whoever the cookie holder is. This provision does not apply if the user has explicitly given Google permission to process the data without pseudonymization. The information about users collected by Google marketing services will be transmitted to and stored by Google on Google servers in the United States.
For more information about Google's data use, settings and objection options, please refer to the Google data protection declaration (https://policies.google.com/technologies/ads) and the Google ad display settings (https://policies.google.com /technologies/ads) /adssettings.google.com/authenticated).
4.7 Facebook Pixel, Custom Audiences, and Facebook Conversions
Due to our legitimate interest in the analysis, optimization and economic operation of our online offering, we use the so-called "Facebook Pixel", which is provided by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland Operates and processes personal data at the time of use. These are usually transmitted to Google servers in the United States and stored there. The European Commission has not made an adequacy decision against the United States. Our cooperation is based on the European Commission's standard data protection clauses. Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA, is responsible for users outside the European Union.
The use of the Facebook pixel enables Facebook to select visitors to our online offerings as target groups for display advertising (so-called "Facebook Ads").
We then use this Facebook pixel to display Facebook ads from us to those Facebook users who have also expressed an interest in our online offerings. In addition, we would like to target target groups with certain characteristics, such as interest in certain topics or products, which are determined by the websites visited. We transfer these characteristics to Facebook (so-called "Custom Audiences").
The use of the Facebook Pixel also helps us determine the receptivity of potentially interested parties to Facebook advertising. It's very important to us that our ads don't appear annoying. With the Facebook Pixel we can accurately evaluate the performance of Facebook ads for statistical and market research purposes. We check whether the corresponding user is redirected to our website after clicking on a Facebook ad (a so-called "conversion").
The data processing by Facebook takes place within the framework of Facebook's data use policy: https://www.facebook.com/policy.
For specific information and details about the Facebook Pixel and how it works, please see the Facebook Help section: https://www.facebook.com/business/help/651294705016616.
Every user can object to the collection of data by the Facebook Pixel and its use to display Facebook ads.
Additionally, you can set exactly what types of ads should appear on Facebook. This is done through the Facebook Settings page, following the instructions for usage-based ad settings: https://www.facebook.com/settings?tab=ads.
These settings are platform independent. Therefore, they are suitable for all devices used. You can also object to the use of cookies for reach measurement and advertising purposes.
This is done through the opt-out page of the Network Advertising Initiative (http://optout.networkadvertising.org/) or through the US site (http://www.aboutads.info/choices) or the European site (http://www.aboutads .info/choices) or the European website (http://www.aboutads.info/choices). /www.youronlinechoices.com/uk/your-ad-choices/).
4.8 Online presence on social media
We operate our online business within the frameworkSocial networks and platforms to communicate with users and introduce our products to them.
User data may be processed outside the EU.
This may create risks for individual users. For example, it may be more difficult to enforce users' rights. The European Commission has not made an adequacy decision against the United States. Our cooperation is based on the European Commission's standard data protection clauses.
In addition, user data is often processed for market research and advertising purposes. For example, usage profiles are created based on a user's usage behavior and resulting interests. These can then be used for personalized advertising on and off the platform that may be tailored to the user's interests.
The technical implementation is usually carried out through the use of cookies which are stored on the user's computer. These encompass users' online behavior, from which conclusions can be drawn about their interests. It should be noted that data from other devices used by the user can also be stored in usage profiles. This is especially true if the user is logged in as a member of the respective platform.
The processing of Users' personal data takes place within the context of protecting our legitimate interests in effectively informing and communicating with Users in accordance with Article 6 Paragraph 1 (f) of the GDPR. If the respective platform provider requests the user's consent to the above-mentioned data processing, Article 6 Paragraph 1 a., Article 7 GDPR is the legal basis for the processing.
For a detailed description of the corresponding processing and objection options (opt-out), we refer to the information provided by the provider linked below.
Information requests and user rights claims can also be made most effectively to the providers themselves, since only they have access to the user's data and can take appropriate measures and provide the information directly. If you still need help, we're here to support you.
- Facebook, pages, groups (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) are based on an agreement for the joint processing of personal data - Data protection declaration: https://www.facebook. com /about/privacy/, in particular the page: https://www.facebook.com/legal/terms/information_about_page_insights_data, opt-out: https://www.facebook.com/settings?tab=ads and http:// /www.youronlinechoices.com.
- Google/YouTube (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) - Data protection statement: https://policies.google.com/privacy, Opt-out: https://adssettings.google.com/ Verified.
- Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) - Data protection statement/opt-out: http://instagram.com/about/legal/privacy/.
- Twitter (Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA) - Data protection statement: https://twitter.com/de/privacy, Opt-out: https://twitter.com/ personalize.
- Pinterest (Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA) - Data protection statement/opt-out: https://about.pinterest.com/de/privacy-policy.
- LinkedIn (LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland) - Data protection statement https://www.linkedin.com/legal/privacy-policy, opt-out: https://www.linkedin.com/psettings/ Guest-Control/Redirect-Opt-Out.
- Xing (XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany) - Data protection declaration/opt-out: https://privacy.xing.com/de/datenschutzerklaerung.