Legal

Data protection

introduction

The following privacy statement, we would like to enlighten you on what types of personal data (hereinafter also referred to as “data”), we for what purposes and to what extent process. The Privacy Statement applies to all of us carried out the processing of personal data, both within the provision of our services and in particular on our website, in mobile applications as well as within external online presences, such as our social media profiles (collectively referred to as “online offer”).

As of September 16, 2019

Contents

Introduction
Responsible
Overview of processing
Relevant statutory foundations
Safety measures
Data processing in third countries
Use of Cookies
Provision of reserves and web hosting
Cloud services
Online marketing
Plugins and embedded functions and content
Deletion of data
Modification and updating of the Privacy Policy
definitions
Responsible

Pawlowski, Krystian
Waisenhausstraße, 25th 46117, Oberhausen, Germany

E-mail address: krystian.pawlowski2@gmail.com

Overview of processing

The following table summarizes the types of data processed and the purpose of their processing and refers to the persons concerned.

Types of data processed

Inventory data (eg names, addresses).

Content data (eg text entries, photos, videos).

Contact information (such as email, phone numbers).

Meta / communications data (eg, device information, IP addresses).

Usage data (eg web sites visited, interest in content, access times).

Categories of data subjects

Employees (eg employees, applicants, former employees).

Interested persons.

Communication partner.

Customers.

Users (eg Web site users, users of online services).

Purposes of the processing

Providing our online presence and user friendliness.

Visit Action evaluation.

Office and organization procedures.

Interest-based and behavior-related marketing.

Conversion measurement (measurement of the effectiveness of marketing actions).

Profiling (creating user profiles).

Remarketing.

Audience measurement (eg access statistics, detect returning visitors).

Tracking (eg interest- / behavior-related profiling, use of cookies).

Contractual services and service.

Relevant statutory foundations

Below, we share the legal bases of privacy Regulation (DSGVO), based on which we process the personal data with. Please note that in addition to the provisions of DSGVO national data protection requirements may apply in your or our living room seating country.

Consent (Article 6 paragraph 1 sentence 1 item a DSGVO..) – The person concerned has given their consent to the processing of personal data concerning him for a specific purpose or more specific purposes.

Contract and pre-requests (.. Article 6 1 sentence 1 item b DSGVO.) – The processing is necessary for compliance with a contract, the contracting party is the person, or the implementation of pre-contractual measures that on request of the data subject respectively.

Legitimate interests (.. Lit. Article 6, Section 1 Sentence 1 f DSGVO.) – The processing is necessary to protect the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject, the personal protection require data predominate.

National data protection regulations in Germany: In addition to the data protection provisions of the Data Protection Regulation national regulations on data protection in Germany apply. This includes in particular the law to protect against misuse of personal data in data processing (Federal Data Protection Act – BDSG). in particular the Federal Data Protection Act contains special provisions on the right to information, the right to delete, the right to object to the processing of special categories of personal data for processing for other purposes and to transmit and automated decision making in individual cases including profiling. Furthermore, it controls the data processing for the purpose of employment (§ 26 BDSG), in particular with regard to the establishment, Implementation or termination of employment as well as the consent of employees. Further, state data protection laws of the individual states can be used.

Safety measures

We meet in accordance with the statutory requirements, taking into account the prior art, the cost of implementation and the nature, scope, the circumstances and the purposes of the processing and the different probabilities of occurrence and the extent of the threat to the rights and freedoms of individuals with appropriate technical and organizational measures in order to ensure adequate risk protection.

Among the measures include protecting the confidentiality, integrity and availability of data by controlling the physical and electronic access to the data and the concern them access, input, transfer, ensuring the availability and their separation. Furthermore, we have established procedures to ensure the perception of affected rights, the deletion of data and responses to the threat to the data. We also take into account the protection of personal data already in the development or selection of hardware, software and procedures in accordance with the principle of data protection through technology design and privacy-friendly default settings.

SSL (https): To protect your data submitted via our online services, we use SSL encryption. You can recognize such encrypted connections to the prefix https: // in your browser’s address bar.

Data processing in third countries

Unless we in a third country data (ie, (outside of the European Union EU), the European Economic Area (EEA)) process or the processing in the context of use of services of third parties or the disclosure or communication of data to other persons, bodies or companies takes place, this is done only in accordance with the legal requirements.

process unless expressly consent or contractually or legally required transfer or we let the data only in third countries with a recognized level of data protection to which belong under the “Privacy Shield” certified US processors, or based on specific safeguards, such as contractual obligations by so-called standard safeguards the EU Commission, the existence of certification or mandatory internal data protection rules, process (Article 44 to 49 DSGVO, information page of the European Commission. https://ec.europa.eu/info/law/law-topic/data -Protection / international-dimensional-data-protection_de).

Use of Cookies

As “cookies” are called small files that are stored on users’ devices. Using cookies different data can be stored. The information may, for example, the language settings on a Web page, the login status, a cart or the point at which looked a video was belong.

Cookies are also used as a rule, if a user’s interests or behavior (for example, viewing certain content, utility functions, etc.) are stored on individual web pages in a user profile. Such profiles are used to display content such as users that meet their potential interests. This process is referred to as “tracking”, ie, tracking of potential users’ interests. To the concept of cookies, we also include other technologies that the same functions as cookies meet (eg, if the user information is stored based pseudonymous online identifiers as “user IDs”) is.

As far as we use cookies or “tracking” technologies, we inform you separately in our Privacy Policy.

Information on legal bases: On what legal basis, we process your personal data using cookies, depends on whether we ask for consent. If so and you consent to the use of cookies, the legal basis for the processing of your data is the consent given. Otherwise, the use of cookies processed data is processed on the basis of our legitimate interests (eg on a business operation of our reserves and its improvement), or if the use of cookies is required in order to fulfill our contractual obligations.

Revocation and objection (opt-out): Regardless of whether the processing on the basis carried a consent or legal authorization, you always have the ability to revoke your consent or the processing of data through cookie technology to contradict (collectively ” opt-Out “).

You can treat your objection initially using the settings of your browser explain for example, by disabling the use of cookies (with this also the functionality of our online offer may be limited).

An objection to the use of cookies for the purposes of online marketing can through a variety of services, especially in the case of tracking, http://www.aboutads.info/choices/ on the American side or the EU http: //www.youronlinechoices.com/ or generally explained on http://optout.aboutads.info.

Processing of cookie data on the basis of consent: Before we process data in the context of the use of cookies or be processed, we ask the user a revocable at any time consent. Before the consent was not pronounced, cookies are used at most, which are necessary for the operation of our online offer. Their use is based on our interests and the interests of users in the expected functionality of our online offer.

Processed data types: user data (eg, web sites visited, interest in content, access times), meta / communications data (eg, device information, IP addresses).

Affected individuals: users (eg Web site users, users of online services).

Legal basis: consent (.. Article 6 1 p 1 lit. a DSGVO), authorized interests (. Article 6 1 p 1 lit. f DSGVO..).

Provision of reserves and web hosting

In order to provide our online offer safe and efficient, we use the services of one or more web hosting companies to complete, from their servers (or servers they manage) the online offer can be accessed. For these purposes, we can take advantage of the infrastructure and platform services, computing power, storage and database services and security services and technical maintenance services.

Among the processed under the provision of the hosting offer data can all users of our online information shall include, incurred in the use and communication. To this end, regularly includes the IP address, which is necessary in order to deliver the content of online resources to browsers and all entries made within our reserves or web pages.

E-mail delivery and hosting: Measurements taken from us to complete Web hosting services also include sending, receiving and storing e-mails. For these purposes, the addresses of the recipient and the sender and other information (eg, providers) as well as the contents of the relevant e-mails processed e-mails concerning. The above data may be further processed for the purpose of detection of SPAM. We ask you to note that e-mails are sent in principle not encrypted on the Internet. Normally, e-mails are encrypted while in transit, but (unless a so-called end-to-end encryption method is used) is not on the servers on which they are sent and received.

Collection of access data and log files, we ourselves (or our Web hosting provider) collect data on every access to the server (so-called server log files). To the server log files, the address and name of the downloaded Web pages and files, date and time of the call, transferred amount of data, notification of successful retrieval, browser type along with version, the user’s operating system, referrer URL can (previously visited page) and generally IP address and the requesting provider belong.

The server log files can be used on the one hand for safety purposes, for example in order to avoid overloading the server (especially in the case of abusive attacks, called DDoS attacks) and secondly to ensure the utilization of the servers and their stability.

Processed data types: content data (eg text entries, photos, videos), usage data (eg web sites visited, interest in content, access times), meta / communications data (eg, device information, IP addresses).

Affected individuals: users (eg Web site users, users of online services).

Purposes of processing: Contractual services and service.

Legal basis: authorized interests (.. Article 6 1 p 1 lit. f DSGVO.).

Used services and service providers:

1 & 1 IONOS: hosting platform for e-commerce / web sites; Service Provider: 1 & 1 IONOS SE, Elgendorfer Str 57, 56410 Montabaur, Germany;. Website: https://www.ionos.de; Privacy Policy: https://www.ionos.de/terms-gtc/terms-privacy.

Cloud services

We use accessible via the Internet and executed on the servers of their party software services (so-called “cloud services”, also referred to as “software as a service”) for the following purposes: document storage and management, calendar management, e-mails, spreadsheets and presentations, share documents, content and information with certain receivers or publish web pages, forms or any other content and information as well as chat and participate in audio and video conferences.

In this context, personal data may be processed and stored on the servers of the provider, as far as this part of communications with us or otherwise set forth by us as part of this Privacy Policy, processed. These data, in particular master data and contact information of users, data on transactions, contracts, other processes and their contents may belong. The providers of cloud services further processed usage data and metadata for security purposes by them and are used to service optimization.

Unless we provide with the help of cloud services for other users or publicly available websites forms above documents and content providers Cookies can on users’ devices for purposes of web analytics or the user (eg in the case of media control) settings to Remember to save.

Information on legal bases: If we ask for a consent to the use of cloud services, the legal basis of processing is the consent. Furthermore, their use may be a component of our contractual (before), provided the use of cloud services was agreed in this context. Otherwise, the user data is based on our legitimate interests (ie, interest in efficient and safe management and collaboration processes) processes

Processed data types: inventory data (eg name, address), contact information (eg e-mail, phone numbers), content data (eg text entries, photos, videos), usage data (eg web sites visited, interest in content, access times), meta / communications data (eg device information, IP addresses).

Affected people: customers, employees (eg employees, applicants, former employees), prospects, communication partner.

Purposes of processing: office and organizational methods.

Legal basis: Consent (.. Article 6 1 sentence 1 item a DSGVO), performance and pre-requests (… Article 6 1 sentence 1 item b DSGVO) Legitimate interests (Article 6 § 1 S.. lit.. 1 f. DSGVO).

Used services and service providers:

Google Cloud services: cloud storage services; Service Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043; Website: https://cloud.google.com/; Privacy Policy: https://www.google.com/policies/privacy, safety: https://cloud.google.com/security/privacy; Privacy Shield (guarantee level of data protection when processing data in the US): https://www.privacyshield.gov/participant?id=a2zt0000000000001L5AAI&status=Aktive; Standard contractual clauses (guarantee level of data protection when processing in a third country): https://cloud.google.com/terms/data-processing-terms; Additional information on data protection: https://cloud.google.com/terms/data-processing-terms.

Online marketing

We process personal data for the purposes of online marketing, including in particular the presentation of advertising and other content (collectively, the “Content”) fall on the basis of potential interests of users and measuring their effectiveness.

For these purposes, so-called user profiles are created and in a file (so-called “cookie”) is stored or used similar methods, by which is stored to the user relevant to the presentation of the aforementioned contents information. These data may for example looked at content, websites visited, used online networks, as well as communication partners and technical information such as the browser used, the computer system used and information among periods of use. Unless users have consented to the collection of their location data, these can also be processed.

There are also stored the IP addresses of users. However, we use IP masking process (ie, pseudonyms by reducing the IP address) to protect users. In general, no clear data of the user (such as e-mail addresses or names) are part of the online marketing methods stored but pseudonyms. That is, we and the providers of online marketing methods actually do not know the identity of users, but only the data stored in their profiles information.

The information in the profiles are stored as a rule in the cookies or other similar methods. These cookies can use later in general on other websites the same online marketing methods, read and analyzed for purposes of presentation of content be supplemented with other data and stored on the server of the online marketing process as a provider.

Exceptionally clear data can be associated with the profiles. This is the case if the users are, for example, members of a social network, the online marketing methods we use and the network connecting the profiles of users in the information above. We ask you to note that users can make additional agreements with the providers, for example by consent during the registration process.

We basically get only access to summarized information on the success of our advertisements. However, we can consider in the context of so-called conversion measurements that our online marketing methods have led to a so-called conversion, ie for example, to conclude a contract with us. The conversion measurement alone is used to analyze the success of our marketing activities.

Information on legal bases: If we ask users about their consent to the use of third-party, the legal basis for the processing of data is the consent. Otherwise, the user data are processed (ie, interest in efficient, economic and receiver friendly services) on the basis of our legitimate interests. In this context, we would like to draw your attention to the information on the use of cookies in this Privacy Policy.

Processed data types: user data (eg, web sites visited, interest in content, access times), meta / communications data (eg, device information, IP addresses).

Affected individuals: users (eg Web site users, users of online services) prospects.

Purposes of processing: Tracking (eg interest- / behavior-related profiling, use of cookies), remarketing, visit action evaluation, interest-based and behavior-related marketing, profiling (creating user profiles), conversion measurement (measure the effectiveness of marketing activities), audience measurement (eg access statistics, detection of recurrent visitors).

Precautions: IP masking (pseudonyms of the IP address).

Legal basis: consent (.. Article 6 1 p 1 lit. a DSGVO), authorized interests (. Article 6 1 p 1 lit. f DSGVO..).

Of objection (opt-out): Please refer to the privacy policy of the provider and the Opposition options given to the party (so-called \ “opt-out \”.). Provided that no explicit opt-out option is specified, there is firstly the possibility that you turn cookies off in your browser settings. This, however, functions of our reserves are limited. Therefore, in addition, we recommend the following opt-out options offered collectively directed to respective areas: a) Europe: https://www.youronlinechoices.eu. b) Canada: https://www.youradchoices.ca/choices. c) USA: https://www.aboutads.info/choices. d) straddling: http://optout.aboutads.info.

Used services and service providers:

Google Analytics: Online marketing and web analytics; Service Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043; Website: https://marketingplatform.google.com/intl/de/about/analytics/; Privacy Policy: https://policies.google.com/privacy; Privacy Shield (guarantee level of data protection when processing data in the US): https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active; Of objection (opt-out): Opt-out Plugin: http://tools.google.com/dlpage/gaoptout?hl=de, settings for the display of advertisements: https://adssettings.google.com/authenticated.

Google Adsense with personalized codes: are displayed We use Google Adsense service with personalized ads, which helps within our reserves ads and we get a reward for their display or other use. ; Service Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043; Website: https://marketingplatform.google.com; Privacy Policy: https://policies.google.com/privacy; Privacy Shield (guarantee level of data protection when processing data in the US): https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.

Plugins and embedded functions and content

We integrate in our online offer functional and content items (hereinafter referred to as “Third Party”) by the servers of their respective providers are related. It may be, for example, graphics, video or social media buttons and contributions (hereinafter uniformly referred to as “content”).

The integration always assumes that the third-party content this process the IP address of the user, as they could not send their browser the contents without the IP address. The IP address is now required to view this content or functionality. We strive to use only such content, respective providers whose use the IP address only to the delivery of content. Third parties can also so-called pixel tags (invisible images, referred to as “web beacons”) for statistical or use marketing purposes. such as the visitor traffic will be evaluated on the pages of this website by the “pixel tags” information.

Information on legal bases: If we ask users about their consent to the use of third-party, the legal basis for the processing of data is the consent. Otherwise, the user data are processed (ie, interest in efficient, economic and receiver friendly services) on the basis of our legitimate interests. In this context, we would like to draw your attention to the information on the use of cookies in this Privacy Policy.

Processed data types: user data (eg, web sites visited, interest in content, access times), meta / communications data (eg, device information, IP addresses).

Affected individuals: users (eg Web site users, users of online services).

Processing purposes: to provide our online presence and user-friendliness, contractual services and service.

Legal basis: authorized interests (.. Article 6 1 p 1 lit. f DSGVO.).

Used services and service providers:

Google Fonts: We integrate the fonts (\ “Google Fonts \”), a provider of Google, where the user data is used solely for purposes of illustration of the fonts in the browser of the user. The integration is based on our legitimate interests in a technically safe, maintenance-free and efficient use of fonts whose uniform representation and taking into account that licensing restrictions on their involvement. Service Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043; Website: https://fonts.google.com/; Privacy Policy: https://policies.google.com/privacy; Privacy Shield (guarantee level of data protection when processing data in the US): https:

Deletion of data

The products we will be deleted in accordance with the law, as soon as their allowed for processing of consents to revoke permits or other accounts (for example, if the purpose of the processing of this data is omitted or are not required for the purpose).

Unless the data is not deleted because they are needed for other lawful purposes and whose processing is limited to these purposes. Ie, the data is locked and not processed for other purposes. This applies to data that must be kept for commercial or tax purposes or storing them for the establishment, exercise or defense of legal claims or to protect another person or entity of the rights is required.

For more information on the deletion of personal data can also be carried out in the context of individual privacy notices of this privacy policy.

Modification and updating of the Privacy Policy

We ask you to be informed regularly about the content of our Privacy Policy. We adjust the privacy statements once the changes on our data processes so require. We will inform you when necessitated by the changes an act of cooperation on your part (eg consent) or any other individual notification.

definitions

This section provides an overview of those used in this privacy policy terms. Many of the terms are taken from the law and especially in Art. 4 DSGVO defined. The statutory definitions are binding. The following explanations ones would serve primarily for understanding. The terms are in alphabetical order.

Visit action analysis: “visit action Evaluation” (English “conversion tracking”) refers to a method by which the effectiveness of marketing activities can be determined. For this, a cookie is stored on users’ devices within the web pages that carried the marketing measures and then called again on the target website as a rule. For example, we can understand so that the ads we display on other websites were successful).
IP masking: When “IP masking” refers to a method in which the last octet, that is, the last two digits of an IP address is deleted, so the IP address can not uniquely identify a person. therefore, the IP masking is a means of pseudonyms of processing methods, especially in online marketing
Interest-based and behavior-related marketing: from interest- and / or verhaltensbezogenem marketing is when potential interest of users in ads and other content as precisely as possible predetermined. This is done by using information on their Vorverhalten (eg exploration of certain websites and linger on them, buying behavior or interaction with other users) that are stored in a so-called profile. For these purposes, cookies are used as a rule.
Conversion measurements: The conversion measurement is a method by which the effectiveness of marketing activities can be determined. For this, a cookie is stored on users’ devices within the web pages that carried the marketing measures and then called again on the target website as a rule. For example, we can understand so that the ads we display on other websites were successful.
Personal data: “Personal data” is all information relating to an identified or identifiable natural person (the “data subject”); as identifiable natural person is one who can be identified, directly or indirectly, in particular by means of assignment to an identifier such as a name, an identification number, location data, to an online identification (eg cookie) or one or more special features, the expression of the physical, physiological, genetic, mental, economic, cultural or social identity of that individual are.
Profiling: As a “profiling” any type of automated processing of personal data is referred to, which is that this personal data is used to treat certain personal aspects relating to a natural person (depending on the type of profiling these include information concerning the Age to analyze the gender, location data and transaction data, interact with websites and their content, purchasing behavior, social interactions with other people), to assess or to predict them (eg the interests of specific content or products, the click behavior on a website or the whereabouts). For purposes of profiling often cookies and Web beacons are used.
Audience measurement: The audience measurement (also called Web Analytics) is used to analyze the flow of visitors of reserves and the behavior or interests of visitors to certain information, such as for example, include content from Web sites. Using the range analysis website owner can identify, for example, at which time visitors to visit their website and what content they’re interested in. This allows them to, for example, adjust the content of the website better to the needs of their visitors. For purposes of coverage analysis often pseudonymous cookies and Web beacons are used to recognize repeat visitors and to obtain more accurate analyzes of the use of reserves.
Remarketing: From the “Remarketing” or “retargeting” occurs when, for example, is noted for advertising purposes, for which products a user has interested in a Web page to remind the user to other websites for these products, including in advertisements.
Tracking: From the “Tracking” is when the behavior of users across multiple online services can be traced across a rule, the tracking technologies are stored in view of the widely used online offers behavioral and interest information in cookies or on servers of providers (so-called profiling).. this information can be used to display ads to users who are likely to correspond to their interests then for example.
Charge: The “controller” is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data, referred.
Processing: “Processing” means any operation performed with or without the aid of automatic means or each such operation in the series connection with personal data. The term extends far and encompasses virtually every handling of data, be it as collection, analyzing, storing, transmitting or deletion.