Privacy policy

Data protection information (valid from 07.03.2025)

This data protection notice is intended to provide an overview of what happens to your personal data (hereinafter also referred to as "data") in our company and to inform you about the data protection claims and rights to which you are entitled within the meaning of the European General Data Protection Regulation ("GDPR") and the Federal Data Protection Act ("BDSG") and the Telecommunications Digital Services Data Protection Act ("TDDDG"). We therefore ask you to take note of this data protection information and, if necessary, to print it out or save it.

Personal data is all data with which you can be personally identified. Your personal data may be processed for various purposes. Essentially, the data processing operations may be carried out by Peter Park System GmbH (hereinafter also referred to as "Peter Park" or "We") can be divided into the following areas of application:

  • General: General information on data protection, data processing procedures and data subject rights, which apply to all data processing procedures carried out for us, can be found in Part A below.
  • Our websites: In connection with our website www.peter-park.de (hereinafter: "website") or related external online presences, such as our social media profiles from which we refer to this data protection notice (website and external online presences hereinafter jointly also: "internet presences"), we process data of visitors that is exchanged between their internet-enabled end devices and the server operated by us, as well as data that is communicated to us in the course of using the website. You can find details on this under Part B
  • B2B: We process the necessary data of our business customers and interested parties for the purpose of processing or initiating contracts. Data from our business partners and suppliers is used exclusively for the direct placement, processing and execution of orders. You can find more information on this under Part C.

Please visit the individual sections if you want quick, contextual information on specific processing situations.

A. General information on data protection and data subject rights

I. Who is responsible for data processing and whom can you contact if you have any questions?

The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is the:

Peter Park System GmbH
Balanstraße 71a
81541 Munich
Tel.: +49 89 21536542
E-mail: info@peter-park.de  

For questions regarding data protection, you are welcome to contact our data protection officer at the following contact details:

Richard Metz

External data protection officer (TÜV certified)/lawyer

LLP Data Protect GmbH

Würmtalstraße 20a (postal address)

81375 Munich

E-mail: datenschutz@peter-park.de

II. What rights do you have regarding your personal data

If your personal data is processed, you are a "data subject" within the meaning of the GDPR, which may entitle you to the rights described below. If you assert rights against Peter Park as the controller, we recommend that you address them to our contact details above:

1. right to information

In accordance with Art. 15 DSGVO, you may request confirmation from us as to whether personal data relating to you is being processed by us and request information as to the extent to which we are processing your data.

2. right to rectification 

If personal data concerning you is incorrect or incomplete, you have a right to rectification and/or completion in accordance with Art. 16 DSGVO.

3. right to deletion

‍Ifthe legal requirements of Art. 17 GDPR are met, you can demand that we delete your data if we process it unlawfully or if the processing disproportionately interferes with your legitimate protection interests. Please note that there may be reasons that prevent immediate erasure, e.g. in the case of statutory retention obligations.

Irrespective of the exercise of your right to erasure, we will erase your data immediately and completely to fulfill our statutory erasure obligations once the purpose of processing no longer applies, provided that there is no legal or statutory retention period to the contrary.

4. right to restriction of processing

You can request that we restrict the processing of your data in the cases specified in Art. 18 GDPR. If you have restricted the processing of your personal data, this data - apart from its storage - may only be processed with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or of a Member State.

5. right to data portability

According to Art. 20 DSGVO, you have the right to have data provided by you, which we process automatically on the basis of your consent or in fulfillment of a contract, handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible. The right to data portability does not apply to processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

6. right of objection

If we process your data on the basis of a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR, you can object to this data processing at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions (see Art. 21 GDPR). If you object, we will no longer process your personal data concerned unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the establishment, exercise or defense of legal claims.

Where your personal data are processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing. If you object, your personal data will subsequently no longer be used for the purpose of direct advertising. You can object to the processing of your data for the purpose of direct advertising at any time without giving reasons.

7. right to revoke the declaration of consent under data protection law

Some data processing operations are only possible with your express consent within the meaning of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time with effect for the future. However, the legality of the data processing carried out until the revocation remains unaffected by the revocation. Please note that even after consent has been withdrawn, it may still be possible to process the data concerned in whole or in part on the basis of other legal bases.

8. right to complain to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR (Art. 77 GDPR in conjunction with Section 19 BDSG). A list of data protection officers and their contact details can be found at the following link: www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

If you are of the opinion that we are violating German or European data protection law when processing your data, please contact us so that we can clarify any questions you may have. 

Of course, you also have the right to contact the supervisory authority responsible for us at our company headquarters:

Bavarian State Office for Data Protection Supervision (BayLDA), Promenade 18, 91522 Ansbach; Fax: +49 (0) 981 180093-800; E-Mail: poststelle@lda.bayern.de; www.lda.bayern.de

III. What personal data are processed and from which sources do these data originate?

1. origin of the personal data

We mainly process the data that we receive directly from the data subjects when they use our website as part of a business initiation or in the course of the business relationship (see also Part B Section VI). 

Via our website and our services, we process data that we receive during your visit or that you actively communicate to us as part of your use (e.g. when using our contact form or a chat function). Other data is collected automatically by our IT systems when you visit the website or use one of our services. This is primarily technical data (e.g. internet browser, operating system or time of a page view). This data is collected automatically as soon as you enter our website or access one of our services. You can find details on this under Part B.

In individual cases, we also process data that we have permissibly received or acquired from other third parties such as credit agencies, creditor protection associations or from authorities, or that we have permissibly taken, received or acquired from publicly accessible sources (e.g. telephone directories, company registers, press, Internet or other media). 

2. categories of personal data

‍Thepersonal data that we regularly process includes personal master/contact data such as: Title, first and last name, salutation, date of birth. Address, e-mail address, telephone number, fax, position in the company.

In addition, depending on the order, service or other relationship with you, we process the following other personal data:

  • Address data: street, house number, if necessary address additions, postal code, city, country
  • Contact information: Phone number(s), e-mail address(es)
  • Registration Data: Information about the service through which you have registered; timing and technical information about registration, confirmation and deregistration; data provided by you during registration.
  • Offer data
  • Access data: Date and time of the visit to our service; the page from which the accessing system arrived at our site; pages accessed during use; session identification data (session ID); in addition, the following information of the accessing computer system: Internet Protocol address (IP address) used, browser type and version, device type, operating system and similar technical information.
  • Information about the nature and content of our business relationship, such as contract data, order data, sales and document data, customer and supplier history, consulting documents
  • Advertising and sales data,
  • Documentation data (e.g. consultation logs, data from service calls or support cases)
  • other data that we have received from you in the course of our business relationship (e.g. in discussions with customers),
  • the documentation of consent declarations

 

IV. for what purposes and on what legal basis are the data processed?

We process your data in accordance with the provisions of the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG) as amended, in particular on the following basis:

1. fulfillment of (pre-)contractual obligations (Art. 6 para. 1lit. b DSGVO)

The processing of personal data takes place on the basis of Art. 6 para. 1 lit. b GDPR for the fulfillment of contractual obligations of Peter Park in particular in connection with the sale and distribution of our products and services as well as all services required for the operation or administration of Peter Park industry-standard activities (e.g. customer and user administration). The data may also be processed at a pre-contractual level as part of a business initiation with Peter Parkor in the course of other contractual relationships with Peter Park are processed. 

For example, Art. 6 para. 1 lit. b GDPR is the legal basis in the following cases:

  • Creation and management of a partner or supplier account in our CRM system
  • Creation and maintenance of customer/prospect files or our customer/prospect database in our CRM system.
  • Sending information 
  • Offer and sale of Peter Park products 
  • Offer and implementation of our offered services

Details on the purpose of this data processing can be found in the respective contract documents and terms and conditions.

2. safeguarding legitimate interests (Art. 6 para. 1 lit.f DSGVO)

Based on a balancing of interests, data processing may go beyond the actual performance of a contract in order to protect the legitimate interests of Peter Park or third parties. This is permissible unless your interests or fundamental rights and freedoms require the protection of personal data to be overridden. Data processing for the protection of legitimate interests occurs, for example, in the following cases:

  • Provision of the online offer, its functions and contents
  • Responding to contact requests and communicating with users
  • Transfer of data to companies and partners associated with us
  • Execution of payment transactions via external service providers 
  • Use of collection service providers and lawyers to collect receivables and/or enforce them in court
  • Assertion of other legal claims and defense in legal disputes
  • Advertising or marketing 
  • Market and opinion surveysMeasures for business management and further development of our services
  • Maintaining databases of customer/prospective customers and/or service providers to improve our offerings.
  • Conducting a risk assessment (due-diligence) in the context of any corporate restructuring or a company acquisition or sale
  • Ensuring IT security and the IT operation of our company and our services
  • Measures for building and plant safety

3. fulfillment of legal obligations (Art. 6 para. 1 lit.c DSGVO)

Processing of your data may be necessary in part for the purpose of fulfilling various legal obligations and requirements to which we are subject, e.g. from the German Commercial Code or the German Fiscal Code.

4. consent (Art 6 para. 1 lit.a DSGVO):

If a service used by us in any way stores information in the user's terminal equipment or accesses such information, consent is required in accordance with Section 25 (1) sentence 1 TDDDG. If the service functions without any access to the terminal equipment, the GDPR is relevant. If we request your consent within the scope of the GDPR, this is done on the basis of Art. 6 para. 1 lit. a in conjunction with Art. 7 GDPR.

If you have given us your consent to process your data in individual cases, it will be processed in accordance with the purposes and to the extent agreed in the declaration of consent. Consent given, e.g. for sending a newsletter, can be revoked at any time with effect for the future. To do so, please use the contact details provided in Section A. I or II. Please note that processing that took place before the revocation is not affected by the revocation and that data processing may still be possible, at least in part, on the basis of another legal basis.

V. Who receives my data?

At Peter Park those employees or organizational units receive your data that need them to fulfill our contractual and legal obligations or to process or pursue our legitimate interests. Your data will be forwarded for the initiation or processing of a contractual relationship (e.g. provision of a service or sale of goods) in accordance with Art. 6 para. 1 sentence 1 lit. b DSGVO or - depending on the nature of the specific contractual relationship - as well as on the basis of our legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO, in particular to companies that we regularly use in connection with the provision of our service or for contract processing. This concerns the following recipients or categories of recipients:

    • IT service providers (e.g. e-mail service providers, web hosting companies)
      • Amazon Web Services, Inc., 410 Terry Avenue North
        Seattle WA 98109, USA (cloud storage provider)
      • Google Ireland Limited, Gordon House, Barrow Street
        Dublin 4, Ireland (provider of a platform and solutions for advertising and analytics data)
      • Google Cloud EMEA Limited, 70 Sir John Rogerson's Quay, Dublin 2, Ireland (email service provider)
      • HubSpot Inc. 25 First Street, 2nd Floor, Cambridge, MA 02141 USA (CRM system provider)
      • Webflow, Inc, 398 11th Street, San Francisco, CA 94103, United States (web hosting service provider for the website)
      • Weglot, SAS, 138, rue Pierre Joigneaux in Bois-Colombes 92270 France (translation service provider)
    • Sales partner 
    • Advertising partner
    • Insurances 
    • Banks 
    • Communication provider (telephone provider, fax provider) 
    • Payment service provider 
    • Shipping and logistics service provider 
    • Credit bureaus 
    • Certified Public Accountant
    • Tax and legal adviser

If we use a service provider in the sense of order processing in accordance with Art. 28 GDPR, we nevertheless remain responsible for the protection of your data. Where required by law, processors are contractually obliged by means of an order processing agreement to treat your data confidentially and to process it only in the context of providing the service. The processors commissioned by us will receive your data if they require the data to perform their respective service. 

Your data will only be transmitted to state institutions and authorities or collected for this purpose within the scope of the GDPR.

VI. how long will my data be stored?

Your personal data will only be used for the purpose for which you have provided it to us or for which you have consented to its processing and will only be stored until this purpose has been fulfilled. After complete fulfillment of the purpose or as soon as you have requested us to delete your data, your data will only be stored for as long as this is necessary due to statutory limitation or retention periods (in particular tax and commercial law). However, the data will be deleted after these periods have expired at the latest, unless you have expressly consented to further or different use. You can also assert rights during the retention periods, such as the blocking of your data. Please see Section A. Clause II.

Your data will be deleted or blocked by us as soon as the purpose of storage no longer applies or you request us to delete it. 

As a matter of principle, we process and, in particular, store your data only until the end of the business relationship or until the expiry of the applicable guarantee, warranty and limitation periods. For example, the limitation period according to §§ 195 ff. of the German Civil Code (BGB) is generally three years, but in certain cases up to thirty years. In addition, it may be necessary to retain data until the legally binding conclusion of any legal disputes in which the data is required as evidence.

We are also subject to statutory documentation and retention periods (e.g. from the German Commercial Code (e.g. Section 257 HGB), the German Money Laundering Act or the German Fiscal Code (e.g. Section 147 AO)). The retention and documentation periods specified there are two to ten years. For example, we would have to store your data even after termination of a contract with you for a period up to the conclusion of the tax audit of the last calendar year in which you were our customer.

 

VII. Is personal data transferred to a third country?

As part of our processing operations, personal data may also be transferred to entities in so-called third countries outside the EU or the EEA in certain business transactions or areas of activity that have not yet been certified by the EU Commission as having an adequate level of data protection, for example to the USA. If such a data transfer should become necessary in individual cases, this will only take place on the basis of an adequacy decision by the European Commission, standard contractual clauses, suitable guarantees for compliance with data protection or your express consent.

B. Use of our Internet presence

In principle, you can visit our websites and use them for information purposes without having to provide any personal information (e.g. register, place orders or otherwise provide information about yourself). In this case, we process personal data of our users only to the extent necessary to provide a functional website and our content and services or to the extent that cookies and similar technologies used on the website transmit personal information to us when you visit the website. Information on our own cookies and similar technologies used by us can be found in section B, point II. In addition to us, other cookies and similar technologies may also enable our partner companies or third parties to recognize your browser on your next visit. For information on such third-party cookies and similar technologies, please refer to Section B No. III.

The processing of personal data of our users takes place regularly only with the consent of the user. An exception applies in cases where prior consent cannot be obtained for factual reasons and the processing of the data is permitted by law.

I. Provision of the website and creation of log files Description of data processing

Each time you visit our website, our system automatically collects data and information from the computer system of the calling computer, which your Internet browser automatically transmits to us or our web host (so-called log files). These server log files contain IP addresses or other data that allow an assignment to a user. This could be the case, for example, if the link to the website from which the user arrives at the website or the link to the website to which the user goes contains personal data. The following information is collected and stored by our hosting provider in this context:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer Time of the server request
  • IP address

The data is stored in the log files of our web hoster. A storage of this data together with other personal data of the user does not take place. 

We use the company Webflow, Inc, 398 11th Street, San Francisco, CA 94103, USA(www.webflow.com)(hereinafter: "Webflow") as web host and software provider for the creation, provision and operation of our website, online forms and other web elements. Information on data protection at Webflow can be found at https://webflow.com/legal/eu-privacy-policy. We have concluded an agreement with Webflow for the processing of data on our behalf in accordance with Art. 28 GDPR ("Data Processing Addendum, see https://webflow.com/legal/dpa). As part of the aforementioned services provided by Webflow, data may be transferred to the USA on the basis of standard contractual clauses that Webflow has agreed with us as part of its Data Processing Addendum or an equivalent data protection guarantee as part of commissioned processing.

Legal basis and purpose of data processing

The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR. The above information is also required to provide the service in accordance with Section 25 (2) No. 2 TDDDG.

Temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. For this purpose, the user's IP address must remain stored for the duration of the session.

Data is stored in log files to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. 

Duration of storage / possibility of objection and removal

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

If the data is stored in log files, this is the case after 7 days at the latest. 

The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. Consequently, the user has no option to object.

II Use of cookies and similar technologies

Description of data processing

Our website uses cookies or similar processes (e.g. web beacons, local storage) and collects, processes and uses usage data (e.g. access times, websites accessed) or meta and communication data (IP address, device information), including personal data. For the sake of simplicity, we also refer to these technical processes generally as "cookies".

Cookies are text files with a characteristic string of characters that are stored in the Internet browser or by the Internet browser on the user's computer system and that enable the browser to be uniquely identified when the offer is called up again. If a user calls up a website, a cookie may be stored on the user's operating system. A cookie contains a characteristic string of characters. The use of these cookies serves to make a website more user-friendly, effective and secure. When you visit a website on which a cookie is embedded, the data you enter is stored exclusively in the cookie on your computer. In this case, data is only transmitted to the servers of our offer when a page request is made.

Some cookies are deleted again after the end of the browser session when your browser is closed (so-called session cookies). These cookies are technically necessary, e.g. so that you can log in to the application and also remain logged in across pages while visiting our offer. 

Other cookies remain on your terminal device for a specified period of time and allow us to recognize your browser the next time you visit (so-called persistent or protocol cookies). The purpose of the use of these cookies is to be able to offer you an optimal user experience as well as to "recognize" you and to present you with the most varied website and new content possible during repeated use. 

Cookies that originate from partner companies or third parties may be used, for example, to collect information for advertising, user-defined content or statistics ("third-party cookies"). If we do not identify cookies as originating from third-party providers, the cookies originate from our website ("first-party cookies"). We will inform you separately about third-party cookies or tracking technologies that we use in the following sections of our privacy policy.

Flash cookies are stored as data elements of websites on your computer if they are operated with Adobe Flash. Flash cookies have no time limit.

For more information about which cookies and similar technologies we use to design our website, what purpose they serve and what data is stored with them or transmitted to third parties, please refer to our cookie management tool "CookieHub" from the provider CookieHub ehf, Hafnargata 18, 230 Reykjanesbær, Iceland, through which you can give your consent to the use of cookies and similar technologies when you visit our website in accordance with the preferences you have selected. 

Our cookie management tool collects log file and consent data using JavaScript. This JavaScript makes it possible to inform users about their consent to certain tags on our website and to obtain, manage and document this consent. Cookie-Management-Tool stores the selected setting and the consent you gave when you entered the website and processes the following data: 

  • Consent data or data of consent (anonymized logbook data (Consent ID, Processor ID, Controller ID), Consent Status, Timestamp).
  • Device data or data of the devices used (including shortened IP addresses (IP v4, IP v6), device information, timestamp).
  • User data or user data (e.g. eMail, ID, browser information, SettingIDs, Changelog)

For this purpose, the cookie management tool stores a technically necessary cookie. Information on data protection at CookieHub can be found at: https://www.cookiehub.com/legal/privacy-policy

For more information about which cookies we use to design our website, what purpose they serve and what data is stored in them or transmitted to third parties, please refer to CookieHub's detailed information, which you can access there under "More options" or "Cookie declaration". CookieHub automatically analyzes which cookies are set on the site. The list of processes used and the cookie declaration are then also automatically adjusted.

Legal basis and purpose of data processing

The legal basis for the processing of personal data using cookies and similar technologies is Art. 6 para. 1 lit. f GDPR to safeguard our legitimate interests in the best possible functionality and security of the website as well as a customer-friendly and effective design of the site visit, unless we ask you for your consent in accordance with Art. 6 para. 1 lit. a GDPR. 

The legal basis for the storage and reading of other information is Section 25 (1) TDDDG for cookies requiring consent and similar technologies, otherwise Section 25 (2) No. 2 TDDDG for cookies required for the function of the website. 

We have integrated CookieHub to obtain consent. This makes it easier for users to give or manage consent for the individual categories of cookies and similar technologies we use. CookieHub blocks all categories of cookies that are not essential for the proper functioning of the website unless you give your consent to the use of additional tools. When accessing our website, users are shown an interface for this purpose: 

  • By clicking on the "Accept all" button, you can either allow all processes or use the "More options" button to decide individually (by activating the individual selection sliders and clicking on the final "Save settings" button) for which cookies and/or cookie-based applications and subsequent data processing you give your consent. 
  • Alternatively, you can reject allnon-essentialcookies by clicking on the "Essential cookies only" button and only use the website with cookies required for its operation.

The purpose of using technically necessary cookies is to make the use of websites easier or more convenient for users and is therefore necessary to provide the service in accordance with Section 25 (2) No. 2 TDDDG. Some functions of our website cannot be offered without the use of such cookies. In particular, it is necessary for these functions that the browser recognizes users even after a page change. 

In addition, the purpose of the cookies we use in the categories of the cookie statement "Analytical cookies", "Marketing cookies" and "Necessary cookies" depends on the services used and subsequent data processing and is explained in more detail in the following sections of the data protection information and in CookieHub.

The legal basis for the data processed using our cookie management tool is Art. 6 para. 1 lit. c GDPR with regard to user consent data, otherwise Art. 6 para. 1 lit. f GDPR and Section 25 para. 2 no. 2 TDDDG. As a website operator, we have a legitimate interest in legally compliant, user-specific and user-friendly consent management for cookies and the legally compliant design of our website.

Duration of storage / possibility of objection and removal

For details on the storage period of our cookies, please refer to the information from CookieHub under the heading "Cookie declaration". 

Cookies are stored on the user's end device and transmitted by it to our website. As a user, you therefore have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be deleted at any time. This can also be done automatically. 

If cookies are deactivated for our website, it may no longer be possible to use all functions of the website to their full extent.

Alternatively, you can also use the functionalities of the cookie consent tool integrated by us and revoke your consent at any time or decide otherwise by clicking on the "Cookie settings" button (bottom left on our website) or this link to access and adjust your settings:

III. statistical analysis of the website / coverage increase / tracking to measure the success of advertising campaigns and optimization of the display of advertising

1. google analytics

Description of data processing

‍Weuse functions of the web analysis service Google Analytics for our online services. The provider in Europe is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: "Google"), a subsidiary of Google LLC Amphitheatre Parkway, Mountain View, CA 94043, USA. 

Google Analytics also uses cookies. The information generated by a Google cookie about your use of this website is usually transferred to a Google server in the USA and stored there. Google processes the data and we receive reports on your user behavior. These may include the following reports:

  • Target group reports: Through target group reports, we get to know our users better and know more precisely who is interested in our service.
  • Behavior reports: This is where we learn how you interact with our website. We can track which path you take on our site and which links you click.
  • Real-time reports: Here we always know immediately what is happening on our website. For example, we can see how many users are reading this text.

Google Analytics uses a tracking code to create a random, unique ID that is linked to your browser cookie. This is how Google Analytics recognizes you as a new user. The next time you visit our site, you will be recognized as a "returning" user. All collected data is stored together with this user ID. This makes it possible to evaluate pseudonymous user profiles.

Identifiers such as cookies are used to measure your interactions on our website. Interactions are all types of actions that you perform on our website. If you also use other Google systems (such as a Google account), data generated via Google Analytics may be linked to third-party cookies. Google does not pass on any Google Analytics data unless we as the website operator authorize this. Exceptions may be made if required by law. The cookies used by Google Analytics can be found in the detailed information of our cookie management tool CookieHub, which you can access there under "Cookie statements".

Our website uses Google Analytics exclusively with the extension "anonymizeIp()". This means that your IP address is not stored in full and is truncated by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area before being transmitted to the USA. The visitor to the website cannot be identified. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. The following is an overview of the most important data collected by Google Analytics:

  • Heatmaps: Google creates so-called heatmaps. Heatmaps allow you to see exactly those areas that you click on. This gives us information about where you are "on the move" on our site.
  • Session duration: Google defines session duration as the time you spend on our site without leaving. If you have been inactive for 20 minutes, the session ends automatically.
  • Bounce rate: A bounce rate is when you view only one page on our website and then leave our website again.
  • Account creation: When you create an account or place an order on our website, Google Analytics collects this data.
  • Location: The IP address can be used to determine the country and your approximate location. This process is also called IP location determination.
  • Technical information: Technical information may include your browser type, Internet service provider, or screen resolution.
  • Source of origin: Google Analytics or us, of course, also interested in which website or which advertising you came to our site.

The list is not exhaustive and serves only as a general guide to data storage by Google Analytics. For more information about the processing of data by Google, please read Google's privacy policy: https://policies.google.com/privacy?hl=de 

Legal basis and purpose of data processing

We use Google Analytics to evaluate the use of our website and services, to compile reports on the activities on our website and services and to provide us with other services related to the use of our website and services and internet usage. We also use Google Analytics to analyze data from AdWords and the double-click cookie for statistical purposes. Since we as website and service operators have a great interest in this analysis of user behavior in order to optimize both our website and our offers and advertising placed there, we ask you to give your consent to the use of Google Analytics and the storage of Google Analytics cookies on the basis of § 25 para. 2 TDDDG.

The information generated by the cookie about your use of our website or our services is usually transmitted to a Google server in the USA and stored there. However, if IP anonymization is activated, your IP address will be shortened by Google beforehand within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Nevertheless, in exceptional cases the full IP address may be transmitted to a Google server in the USA and shortened there. By consenting to the activation of the cookies used by Google Analytics, you also consent to your data being processed in the USA in accordance with Art. 49 para. 1 sentence 1 lit. a GDPR, unless the data transfer is secured on the basis of EU standard contractual clauses. The USA is regarded by the European Court of Justice as a country with an inadequate level of data protection according to EU standards. In particular, there is a risk that your data may be processed by US authorities for control and monitoring purposes, possibly without the possibility of legal recourse. If you click on the "Reject all" button or make a limited selection without cookies from Google, the described transmission to Google will not take place. You can revoke your consent at any time with effect for the future.

Google will use this information for the purpose of evaluating your use of the website or services, compiling reports on website activity for us and providing other services relating to website activity and internet usage. Google also states that it may transfer this information to third parties on its own responsibility if this is required by law or if third parties process this data on behalf of Google. Google has contractually guaranteed that it will never associate your IP address with other Google data. In order to safeguard this and the data processing carried out for us, we have concluded a contract with Google for the processing of data on our behalf. 

Duration of storage / possibility of objection and removal

Cookies are stored on the user's computer and transmitted from it to our site. Therefore, you as a user also have full control over the use of cookies. By changing the settings in your Internet browser, you can disable or restrict the transmission of cookies. Cookies that have already been stored can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website in full.

By installing the browser add-on to deactivate Google Analytics(http://tools.google.com/dlpage/gaoptout?hl=de), you can object to the use of your data and collection by Google Analytics. By doing so, you inform Google Analytics that no information about the website visit should be transmitted to Google Analytics. 

Furthermore, you can install an opt-out cookie on your device via this link https://developers.google.com/analytics/devguides/collection/gajs/?hl=de#disable, especially for browsers on mobile devices, to prevent the future collection of data by Google Analytics on our website. Please note that if you delete the cookies on your device, you must also reinstall the opt-out cookie.

Alternatively, you can also set your cookie preferences via the Cookie Consent Tool Cookie Hub integrated by us.

2. google tag manager

Description of data processing

Google Tag Manager is a solution provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: "Google"), which allows marketers to manage so-called website tags via an interface. The Google Tag Manager itself (which implements the tags) is a domain without cookies and does not collect any personal data. The Google Tag Manager helps with the integration and ensures the triggering of other tags, code snippets, tracking code and conversion pixels on a website, which in turn may collect data. Google Tag Manager does not access this data. Google Tag Manager offers us an easy-to-use user interface that does not require any in-depth programming knowledge or modifications to the website's source code. 

We only use Google Tag Manager to display Google Ads (formally Google AdWords) for the purposes of our search engine marketing activities.

For more information on Google Tag Manager, see: https://www.google.com/intl/de/tagmanager/use-policy.html.

3. Google Ads (formally Google AdWords) & Google Ads conversion tracking

Description of data processing

We use Google Ads, a service of Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, offered in Europe by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland, to integrate advertisements within our online offering and to draw attention to our attractive offers with the help of advertising material on external websites. 

This allows us to determine how successful individual advertising measures are. These advertising materials are delivered by Google via so-called "AdServers". Google AdWords uses cookies for this purpose (see the general explanations above). By setting the cookie, it is possible to analyze the use of our websites. Each time one of the individual pages of the website operated by us and on which a Google Ads component has been integrated is accessed, the Internet browser on the information technology system of the data subject is automatically prompted by the respective Google Ads component to transmit data to Google for the purpose of online advertising and billing of commissions. As part of this technical process, Google obtains knowledge of personal data, again the IP address of the data subject, which Google uses, among other things, to trace the origin of visitors and clicks and subsequently to enable commission settlements. The following information is usually stored as analysis values for the cookie used: unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions), opt-out information (marking that the user no longer wishes to be addressed). These cookies enable Google to recognize your web browser. If you do not agree to the storage of cookies on your computer, please follow the general instructions for this or at the end of this explanation.

Google Ads also uses so-called web beacons (invisible graphics). These web beacons can be used to analyze information such as visitor traffic on the pages of this website.

 

The information generated by cookies and web beacons about the use of our website, including your IP address and the delivery of advertising formats, is transferred to a Google server in the USA and stored there. This information may be passed on by Google to Google's contractual partners (see https://support.google.com/admanage r/answer/94149?visit_id=637060482444635472-69980806&rd=1). In detail, we have no influence on the data collected by Google, nor are we aware of the full extent of the data collection and the storage period. However, to the best of our knowledge, Google will not merge your IP address with other data stored by you. However, if you are logged into a Google account, your data can be assigned directly. If you do not want this assignment to your Google profile, please log out before using our website.

Further information on data protection at Google Ads can be found at https://policies.google.com/privacy?hl=de,andhttps://policies.google.com/technologies/ads?hl=de

Legal basis and purpose of data processing

The storage of Google Ads cookies and web beacons is based on Art. 6 para. 1 lit. a GDPR. We also use Google Ads on the basis of our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR. As a website operator, we have a legitimate interest in analyzing the reach of our offer, as well as in placing relevant and interesting ads, improving campaign performance reports and achieving a fair calculation of advertising costs.

We have also concluded a contract with Google for commissioned data processing.

Possibility of objection and removal

You can prevent the installation of cookies from Google Ads in various ways: a) by setting your browser software accordingly; in particular, suppressing third-party cookies will prevent you from receiving ads from third-party providers; b) by deactivating interest-based ads on Google via the link www.google.de/ads/preferences, whereby this setting will be deleted if you delete your cookies; c) by deactivating the interest-based ads of the providers that are part of the "About Ads" self-regulation campaign via the link www.aboutads.info/choices, whereby this setting will be deleted if you delete your cookies; d) by permanently deactivating them in your Firefox, Internet Explorer or Google Chrome browsers under the link www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to use all functions of our online offer to their full extent.

Alternatively, you can also set your cookie preferences using the cookie management tool CookieHub that we have integrated.

3. meta pixel (formally "Facebook pixel" or "Instagram pixel")

Description of data processing

Our websites use the visitor action pixel ("meta pixel") from Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Meta") to measure conversions. The Meta pixel is a code on our websites that analyzes the actions that users perform there.

In this way, the behavior of site visitors can be tracked after they have been redirected to the provider's website by clicking on a meta ad. This allows the effectiveness of meta ads on Facebook or Instagram to be evaluated for statistical and market research purposes (so-called "conversion") and future advertising measures to be optimized, for example to determine the visitors to our online offer as a target group for the display of ads (so-called"meta ads"). In particular, we can subsequently determine that the meta ads placed by us are only displayed to meta users who have also shown an interest in our online offering or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited) that we transmit to Meta (so-called "custom audiences").

The data collected is anonymous to us as the operator of this website; we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Meta so that a connection to the respective user profile is possible and Meta can use the data for its own advertising purposes in accordance with the Meta Data Usage Policy(https://www.com/privacy/policy?section_id=18-LegalBasisInformationConsent). This enables Meta to place advertisements on Meta pages and outside Meta. This use of the data cannot be influenced by us as the website operator. 

You can find further information on protecting your privacy in Meta's data protection information https://www.Meta.com/about/privacy/

Legal basis and purpose of data processing

Since we as website and service operators have a great interest in this analysis of user behavior in order to optimize our website and services as well as our offers placed there and our advertising, we ask you to give your consent to the use of Meta Ad and the storage of the cookies required for this on the basis of Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TDDDG. We also use Meta Custom Audience on the basis of our legitimate interests in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR. GDPR, as well as our interest in targeting our users who have already shown an interest in our website or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited) with advertising. Studies show that such user-related advertising is more interesting for users than advertising without a personal reference.

Duration of storage / possibility of objection and removal

You can deactivate the remarketing function "Custom Audiences" at https://www.Meta.com/ads/preferences/?entry_product=ad_settings_screen. To do this, you must be logged in to Meta. Further information can be found at https://www.facebook.com/settings?tab=ads.

If you do not have a Meta account, you can deactivate usage-based advertising from Meta on the website of the European Interactive Digital Advertising Alliance: http://www.youronlinechoices.com/de/praferenzmanagement 

Alternatively, you can also set your cookie preferences via the cookie management system CookieHub that we have integrated.

5th LinkedIn Insight Tag

Description of data processing

In connection with the operation of our LinkedIn presence, LinkedIn offers the "Insights" function (also referred to by LinkedIn as "Page Insights"). LinkedIn uses the "LinkedIn Insight Tag" conversion tool for this purpose, which stores a cookie on your web browser that can collect the following data IP address, device and browser characteristics and page events (e.g. page views). We have no access to or insight into this data. According to LinkedIn, this data is encrypted, anonymized within seven days and deleted within 90 days. 

LinkedIn only provides us with statistical data on the use of our LinkedIn presence via Page Insights, which is anonymous to us, i.e. the personal data of individual users cannot be viewed by us. You can find out which data LinkedIn uses to analyze usage in connection with LinkedIn Insights and further details on LinkedIn's data processing in connection with the function at

With regard to Insights data, we are jointly responsible for data processing with LinkedIn and have concluded an agreement on the joint processing of personal data with LinkedIn within the meaning of Art. 26 GDPR ("Page Insights Joint Controller Addendum" available at https://legal.linkedin.com/pages-joint-controller-addendum). For example, we have agreed therein that

  • we are jointly responsible with LinkedIn for the processing of Insights data;
  • the Irish Data Protection Commission(https://www.dataprotection.ie) is the authority responsible for the supervision of processing under joint responsibility;
  • LinkedIn is responsible for fulfilling the rights of data subjects under Articles 15-20 of the GDPR with regard to personal data stored by LinkedIn after joint processing. Therefore, we have an obligation to notify LinkedIn if we receive data protection requests regarding Page Insights. Please note that we forward requests regarding Page Insights to LinkedIn. Please also note the information on your rights as a data subject in section A. 

Legal basis and purpose of data processing

Since we, as website and service operators, have a great interest in this analysis of user behavior in order to optimize our websites and the offers placed there and our advertising, we ask you to give your consent to the use of the LinkedIn Insight tag and the storage of the cookies required for this on the basis of Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TDDDG. We also use the LinkedIn Insights data on the basis of our legitimate interests in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR. GDPR, as well as our interest in targeting our users who have already shown an interest in our website or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited) with advertising. Studies show that such user-related advertising is more interesting for users than advertising without a personal reference.

Duration of storage / possibility of objection and removal

LinkedIn members can control the use of their personal data for advertising purposes in their account settings. To deactivate the Insight tag ("opt-out"), click here

For more information on how LinkedIn processes personal data, including the legal basis on which LinkedIn relies and the options for exercising data subjects' rights vis-à-vis LinkedIn, please refer to LinkedIn's data policy at https://www.linkedin.com/legal/privacy-policy

Alternatively, you can also set your cookie preferences via the cookie management system CookieHub that we have integrated.

IV. Further notes on procedures, plugins and tools used to design the website

1. SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

2. make.com

Description of data processing

To integrate different databases and web tools, we use make, a service provided by Celonis SE, Theresienstr. 6 80333 Munich, Germany. make is an interface on which various cloud-based software applications can be linked. Data that is required or processed in such linked applications is automatically transferred by the links. The aim here is to allow digital processes to run independently, especially standardized, recurring processes. This creates an automated data flow and efficient processes.

Further information on data protection at Celonis can be found at https://www.make.com/en/privacy-notice and https://www.celonis.com/de/privacy-notice/ 

Legal basis and purpose of data processing

The use of make.com is based on Art. 6 para. 1 lit. f GDPR. We have an interest in the efficient automation of processes, the merging of various services and the associated import and export of personal and contact data.

3. language versions of the websites (translations with Weglot) 

Description of data processing

On our website we use the translation service Weglot of Weglot SAS, 138, rue Pierre Joigneaux in Bois-Colombes 92270 France. Weglot is loaded when the website is called up and enables the language of the website to be set via corresponding language icons. As soon as a visitor calls up the translated version of the website, they receive the result in their native language in a flash. By integrating the Weglot translation service, a connection is established between your browser and the Weglot servers when you visit our website and your IP address and device information are transmitted to Weglot. A Weglot reverse proxy sends the content of the website to the Weglot API to retrieve the translation. The Weglot reverse proxy sends the response back to the user's browser. Weglot also uses cookies and local storage. The transmitted or further processed data is necessary for the functionality of Weglot.  

The data processed in the context of the use of Weglot is processed by Weglot as a processor on the basis of an order processing agreement in accordance with Art. 28 GDPR in the European Union. 

Information on how Weglot handles personal data can be found at https://www.weglot.com/privacy.

Legal basis and purpose of data processing

The legal basis for the data processing carried out in connection with Weglot is our legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR and the necessity pursuant to Section 25 para. 2 no. 2 TDDDG of making our website available in several languages, including a corresponding selection option for website visitors, unless we request further consent pursuant to Art. 7 GDPR, Section 25 TDDDG.

Possibility of objection and removal

The use of the Weglot service is absolutely necessary in order to make the website available in different language versions. 

If you want your personal data to be deleted, you can exercise your right of objection and removal as described in the general information under Part A

4. adobe fonts

‍Ourwebsite uses web fonts from Adobe for the uniform display of certain fonts. The provider is Adobe Systems Incorporated, 345 Park Avenue, San Jose, CA 95110-2704, USA (Adobe). When you access our pages, your browser loads the required fonts directly from Adobe in order to display them correctly on your device. In doing so, your browser establishes a connection to Adobe's servers in the USA. Your IP address is transmitted to Adobe so that the font can be delivered correctly, but according to Adobe, it is not stored. According to Adobe, no cookies are stored when the fonts are provided and the information collected by the website that uses Adobe Fonts is used exclusively to provide the "Adobe Fonts" service. Adobe is a participant in the EU-U.S. Data Privacy Framework(https://www.dataprivacyframework.gov/list), which guarantees the security of the processing of personal data originating from the EU. 

The use of Adobe Fonts is in the interest of a uniform and appealing presentation of our website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

For more information about Adobe Fonts, visit:
https://www.adobe.com/de/privacy/policies/adobe-fonts.html

Adobe's privacy policy can be found at:
https://www.adobe.com/de/privacy/policy.html

5. integration of YouTube content

Description of data processing

From time to time, we use content and service offers from the video platform YouTube to integrate video content on our website using a plugin or to link to videos from our YouTube channel on our website. YouTube is a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States, offered in Europe by Google Ireland Limited Gordon House, Barrow Street, Dublin 4 Ireland (hereinafter: "Google"). 

We may process data entered by you on our YouTube channel (in particular user name and content published by you under your account) if we respond to your posts or messages via our YouTube channel.

Otherwise, we only receive certain non-personal information from Google about post activity, such as the number of profile or media clicks and the viewing time for a specific video. This data can be viewed via our YouTube account. Furthermore, Google is responsible for its own data processing; we have no way of preventing or stopping the use of analysis tools and similar by Google in YouTube.

If you want to play the embedded videos using this plugin (by clicking the play button), your IP address will be sent to YouTube, as YouTube cannot send the video content to your browser without the IP address. The IP address is therefore required for the display. The YouTube server is also informed which subpage of our website you have visited. If you are logged into your YouTube account as a YouTube member, you also enable YouTube to assign your usage behavior directly to your personal profile when you play our videos. Further information on data processing by Google when using YouTube can be found in the applicable YouTube privacy policy: https://policies.google.com/privacy?hl=de&gl=de

Legal basis and purpose of data processing

YouTube is used on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR to make video content available on our website or to link to it and to process inquiries or comments.

Duration of storage / possibility of objection and removal

To prevent assignment to your user account, log out of your YouTube profile before playing our video content. You must find out about ways to restrict the processing of your data by Google via Google or in your YouTube user account. For example, you can do this in the general settings of your Google account and under "Privacy and security". In addition, you can restrict Google's access to contact and calendar data, photos, location data, etc. in the settings on mobile devices (smartphones, tablet computers). However, this depends on the operating system used.

V. Links to websites of other providers

‍Ourwebsite may contain links to other websites. We have no influence whatsoever on the content and design of the offers of other providers. The statements in this data protection notice therefore do not apply to external providers whose offers or content we merely link to.

If you are forwarded to other pages via links from our pages, please inform yourself there about the respective handling of your data.

VI. online presence on social networks and platforms

Description of data processing

We maintain further online presences within social networks or industry networks (such as Facebook, Xing or LinkedIn) (hereinafter also referred to as "SN") and platforms (e.g. YouTube) and link to them from our website. Clicking on the respective buttons (recognizable by the respective logos of the social networks or platforms) will take you to the respective online presence of the SN. The purpose of these online presences is to communicate with the customers, interested parties and users active there and to inform them about our services. 

When calling up the respective networks and platforms, the terms and conditions and data processing policies of their respective operators apply. 

Since the use of SN takes place outside of our website or services, we have no influence on this, unless otherwise stated below. However, we would like to point out that when using the above-mentioned platforms and networks to which we link, data may also be processed in the USA by these SN companies and may also be processed by the respective operators for market research and advertising purposes, including the creation of user profiles. If you are logged in to the respective networks and platforms, they may also store cookies on your device that track your use of our platform or services and other information about your usage behavior. 

Unless otherwise stated in our privacy policy, we only process users' data when they communicate with us within the social networks and platforms, e.g. write comments or send us messages. 

In order to make it easier for you to obtain information about the respective data processing and the objection options of the respective operators, we refer below to the data protection declarations and information of the operators of the respective networks.

Legal basis and purpose of data processing

‍Weonly process your personal data in the context of direct contact with us via the respective SN or interaction with our presence there or its content. Unless otherwise stated in our privacy policy, we process users' data on the basis of our legitimate interests in accordance with Art. 6 para. 1 lit. f GDPR for the effective information of users and communication only if they communicate with us within the social networks and platforms (e.g. when users write posts on our online presences or send us messages). If your contact is aimed at concluding a contract, the additional legal basis for the processing is Art. 6 para. 1 sentence 1 lit. b GDPR. 

Insofar as personal data is processed in connection with our appearance on an SN in addition and the respective SN alone decides on the purposes and means of the processing, the respective SN is otherwise the sole controller of the processing. Please carefully check which personal data you communicate with us via a SN appearance. If you would like to avoid that SN processes personal data you provide to us, please contact us by other means.

Duration of storage / possibility of objection and removal

If you are a member of one of the SNs on which we maintain online presences and do not want the SN to collect data about you via our offer and link it to your data at the SN, you must log out of your SN before visiting our offer. For a detailed description of the respective processing, information on the duration of the storage of data by the respective SN and the opt-out options, please refer to the information of the providers linked below. 

In the case of requests for information and the assertion of user rights, we would also like to point out that these can be asserted most effectively with the providers. Only the providers have access to the users' data and can take appropriate measures and provide information directly. If you still need help, you can contact us.

Facebook

We maintain a Facebook company page ("Fan Page") on the SN of Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland). 


Facebook Ireland is jointly responsible with us for the collection of data from visitors to our fan page, which is why we have concluded an agreement on the joint processing of personal data with Facebook within the meaning of Art. 26 GDPR, as well as additional data processing conditions:

Facebook Inc., Menlo Park, California, USA (hereinafter: Facebook Inc.) also collects and uses so-called Page Insights for analysis purposes. Page Insights is the aggregation of data that enables both us and Facebook Inc. to learn how our users interact with our site. Page Insights may be based on personal data collected in connection with our users' visits to or interactions with our site. For this purpose, we have entered into a Controller Addendum with Facebook ("Controller Addendum", see above), which governs in particular which security measures Facebook takes in the context of Page Insights and how Facebook responds to user requests. The purposes for which the collection and transmission of the personal data constituting the joint processing takes place are set out in detail from the above Controller Addendum referring Terms of Use.

The data collected when you visit our "fan page" otherwise includes information about the types of content that users view or interact with, or the actions they take (see under "Things you and others do and provide" in the Facebook Data Policy: https://www.facebook.com/policy), as well as information about the devices used by users (e.g. IP addresses, operating system, browser type, language settings, cookie data described in detail under "Device information" in the Facebook Data Policy: https://www.facebook.com/policy).

However, by maintaining the Facebook company page, we share responsibility for Page Insights and have agreed with Facebook Ireland that Facebook Ireland is responsible for fulfilling the rights of data subjects in accordance with Articles 15-20 of the GDPR with regard to the personal data stored by Facebook Ireland following joint processing. Therefore, we have an obligation to notify Facebook if we receive data protection requests regarding Page Insights. Please note that we forward requests regarding Page Insights to Facebook Ireland. In addition, please refer to the information on your rights as a data subject in Section A. For more information on how Facebook Ireland processes personal data, including the legal basis on which Facebook Ireland relies and the options for exercising data subjects' rights vis-à-vis Facebook Ireland, please refer to Facebook Ireland's Data Policy athttps://www.facebook.com/about/privacy

The evaluation of the data collected via Page Insights is used to improve our websites and for advertising purposes. We maintain our Facebook fan page for the purpose of communication and simple channeling of contact requests from Facebook users. The collection of this data and its further processing is in our legitimate interest and in the legitimate interest of Facebook Inc. in accordance with Art. 6 para. 1 lit.f GDPR.

We would like to point out that we cannot switch the page insights technology on and off. We must therefore forward corresponding requests to Facebook Ireland for the most part, insofar as we have not collected data ourselves. If you do not want Facebook Inc. to collect your data, we ask that you do not use our Facebook company page and/or set your browser to prevent cookies from being set and/or log out of Facebook while using our page. 

Privacy policy:

https://www.facebook.com/about/privacy/, https://www.facebook.com/legal/terms/information_about_page_insights_data

Possibility of objection:

https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com

Instagram

On our website, we link to our presence on Instagram via a button. Instagram is an audiovisual platform that allows users to share photos and videos and also to redistribute such data on other social networks. 

The provider of Instagram in Europe is Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter: "Meta Platforms Ireland"), a subsidiary of Meta Platforms, Inc, 1 Hacker Way, Menlo Park, CA 94025, USA (hereinafter: "Meta Platforms USA"). 

If you click on the button provided for the link, you will be automatically redirected to our Instagram website. The use of the interactive functions provided by Instagram on the basis of Instagram's terms of use (e.g. commenting or rating) is the responsibility of the user. When you visit our Instagram page, Instagram collects, among other things, your IP address and other information that is stored on your PC in the form of cookies. Since Instagram stores information about the end devices of its users (for example as part of the "login notification" function) as part of the creation of a user account, Instagram may be able to assign IP addresses to individual users. If you are currently logged in to Instagram with an existing Instagram user account, a cookie with your Instagram ID is stored on your device. This enables Instagram to track that you have visited this page and how you have used it. This also applies to all other Instagram pages. Instagram plugins integrated into websites also enable Instagram to record your visits to these websites and assign them to your Instagram profile. Instagram can use this data to offer you customized content or advertising. Meta Platforms Ireland is solely responsible for this data processing. Meta Platforms Ireland does not conclusively and clearly state how Meta Platforms Ireland uses the data from visits to Instagram pages for its own purposes, to what extent activities are assigned to individual users, how long Meta Platforms Ireland stores this data and whether data from a visit to our Instagram website is passed on to third parties, and we are not aware of this. We have no influence on the data processing operations carried out by Instagram under its own responsibility.

However, in addition to Meta Platforms Ireland, we are also jointly responsible for the collection of data from visitors to our Instagram website, insofar as this involves the collection of "Page Insights" data. This is anonymized data that enables the operator to view statistical evaluations of the use of the fan page. For the owner of an Instagram website, this function is an integral part of the user agreement with Meta Platforms Ireland. This means that we cannot unilaterally decide whether the Page Insights are collected or not. Further information on the "Page Insights" function and the use of cookies as well as the setting options can be found at 

https://www.facebook.com/legal/terms/information_about_page_insights_data 

https://www.facebook.com/policies/cookies 

We have therefore concluded an agreement on the joint processing of personal data with Meta Platforms Ireland within the meaning of Art. 26 GDPR, as well as additional data processing conditions:

"Controller Addendum ": https://www.facebook.com/legal/controller_addendum

"Data processing conditions ": https://www.facebook.com/legal/terms/dataprocessing/update

We are only responsible for providing the data subjects with at least the above and following information on joint responsibility with Meta Platforms Ireland. The information from Meta Platforms Ireland required under Article 13(1)(a) and (b) GDPR can be found in Instagram's Data Policy at https://www.instagram.com/legal/privacy/.

We have agreed with Meta Platforms Ireland that Meta Platforms Ireland is responsible for fulfilling the rights of data subjects under Articles 15-20 of the GDPR with regard to the personal data stored by Meta Platforms Ireland following joint processing. Therefore, we have an obligation to notify Meta Platforms Ireland if we receive data protection requests regarding Page Insights. Please note that we forward requests regarding Page Insights to Meta Platforms Ireland. Please also note the information on your rights as a data subject in section A. 

As the operator of the Instagram site, we may receive statistical information about the use of our Instagram site as part of our contractual agreements with Meta Platforms Ireland on the basis of our legitimate interests (Art. 6 para. 1 lit. f GDPR). 

If you do not want information to be transmitted to Meta Platforms Ireland, the transmission can be partially prevented by logging out of your Instagram user account or deactivating the "stay logged in" function, deleting the cookies on your device and closing and restarting your browser. In this way, information that can be used to directly identify you will be deleted. This allows you to use our Instagram website without revealing your Instagram ID. If you access interactive functions on the website (like, comment, post and others), an Instagram login screen will appear. Once you have logged in, Meta Platforms Ireland will once again recognize you as a specific user. Please note that the Page Insights function can also be used to collect personal data from people who do not have a Facebook or Instagram profile.

According to Meta Platforms Ireland, the IP address collected from you is anonymized (for "German" IP addresses) and deleted after 90 days.

Data protection notice/option to object: 

In Instagram's privacy policy and the help section, you will find further information on how to contact Meta Platforms Ireland and on the options for objecting to or setting options for advertisements:

https://help.instagram.com/155833707900388

https://www.instagram.com/about/legal/privacy/.

LinkedIn

LinkedIn is a service of LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA, operated in Europe by LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland. LinkedIn is an Internet-based social network that enables users to connect with existing business contacts and make new business contacts. Over 400 million registered people use LinkedIn in more than 200 countries. This makes LinkedIn currently the largest platform for business contacts and one of the most visited websites in the world.

Each time you visit our website, which is equipped with a LinkedIn component (LinkedIn plug-in), this component causes the browser used by the data subject to download a corresponding representation of the LinkedIn component. Further information about the LinkedIn plug-ins may be accessed under https://developer.linkedin.com/plugins. As part of this technical process, LinkedIn receives information about which specific subpage of our website is visited by the data subject.

If the data subject is logged in to LinkedIn at the same time, LinkedIn recognizes which specific subpage of our website the data subject is visiting each time the data subject accesses our website and for the entire duration of the respective stay on our website. This information is collected by the LinkedIn component and assigned by LinkedIn to the respective LinkedIn account of the data subject. If the data subject clicks on one of the LinkedIn buttons integrated on our website, LinkedIn assigns this information to the personal LinkedIn user account of the data subject and stores this personal data.

LinkedIn always receives information via the LinkedIn component that the data subject has visited our website if the data subject is logged in to LinkedIn at the same time as accessing our website; this takes place regardless of whether the data subject clicks on the LinkedIn component or not. If the data subject does not want this information to be transmitted to LinkedIn, they can prevent the transmission by logging out of their LinkedIn account before accessing our website.

LinkedIn offers the option to unsubscribe from email messages, SMS messages and targeted ads and to manage ad settings at https://www.linkedin.com/psettings/guest-controlsdie. LinkedIn also uses partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame, which may set cookies. Such cookies can be rejected at https://www.linkedin.com/legal/cookie-policy. The applicable data protection provisions of LinkedIn may be retrieved under https://www.linkedin.com/legal/privacy-policy LinkedIn's cookie policy is available at https://www.linkedin.com/legal/cookie-policy.

Privacy Policy https://www.linkedin.com/legal/privacy-policy

Possibility of objection:

https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out 

Xing

The operating company of Xing is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany ("XING")

Xing is an Internet-based social network that enables users to connect with existing business contacts and make new business contacts. Individual users can create a personal profile for themselves on Xing. Companies can, for example, create company profiles or publish job offers on Xing.

Each time one of the individual pages of this website is accessed, which is operated by the controller and on which a Xing component (Xing plug-in) has been integrated, the Internet browser on the information technology system of the data subject is automatically prompted by the respective Xing component to download a representation of the corresponding Xing component from Xing. Further information about the Xing plug-ins may be accessed under https://dev.xing.com/plugins. As part of this technical process, Xing receives information about which specific subpage of our website is visited by the data subject.

If the data subject is logged in at the same time on Xing, Xing recognizes with each call-up to our website by the data subject and for the entire duration of their stay on our Internet site, which specific sub-page of our Internet page was visited by the data subject. This information is collected by the Xing component and assigned by Xing to the respective Xing account of the data subject. If the data subject clicks on one of the Xing buttons integrated on our website, for example the "Share" button, Xing assigns this information to the personal Xing user account of the data subject and stores this personal data.

Xing always receives information via the Xing component that the person concerned has visited our website if the person concerned is logged in to Xing at the same time as accessing our website; this takes place regardless of whether the person concerned clicks on the Xing component or not. If such a transmission of this information to Xing is not desirable for the data subject, the delivery may be prevented if the data subject logs off from their Xing account before a call-up to our website is made.

The data protection provisions published by Xing, which can be accessed at https://www.xing.com/privacy, provide information about the collection, processing and use of personal data by Xing. Xing has also published data protection information for the XING share button at https://www.xing.com/app/share?op=data_protection.

Privacy policy / possibility of objection:

https://privacy.xing.com/de/datenschutzerklaerung  

VII Active use of our website

1. contact form and e-mail contact

Description of data processing

A contact form is available on our website, which can be used for electronic contact. If a user takes advantage of this option, the data entered in the input mask will be transmitted to us and stored. 

  • Company/municipality (mandatory)
  • First name (mandatory)
  • Last name (mandatory)
  • E-mail (mandatory)
  • Telephone (optional)
  • Message (optional)

At the time of sending your message via one of our contact forms, the following data is also stored:

  • the IP address of the user
  • Date and time of registration

If contact is made via an e-mail address provided by us, the user's personal data transmitted with the e-mail will be stored. 

We use HubSpot Forms on our website, a service of our CRM system HubSpot, to integrate contact forms and process the data entered there. (see part C, section II). HubSpot Forms offers functionalities for SEO, content creation, lead management, email marketing and evaluations. The user data entered in the forms is stored in our customer relationship management system provided by HubSpot.

We use Google email services, which are offered via Google Workspace by Google Cloud EMEA Limited, 70 Sir John Rogerson's Quay, Dublin 2, Ireland (hereinafter: "Google"). In addition to our CRM software as our central software for managing and processing inquiries, emails are therefore also stored on Google servers. We have selected the "Europe" region as the server location and have concluded an order processing agreement with Google. Any further transfer of these emails to third countries, in particular to the USA, does not take place, which Google also contractually guarantees. 

To channel and sort incoming requests, we use an interface to so-called AI-based services that are designed to understand and generate natural language and associated input, analyze information and make predictions. We use the ChatGPT language model from the provider OpenAI Ireland Ltd, 1st Floor, The Liffey Trust Centre, 117-126 Sheriff Street Upper, Dublin 1, D01 YC43, Ireland. We have agreed with OpenAI that the use of our data for the training of models or the sharing of data with OpenAI is excluded. OpenAI's privacy policy can be viewed at https://openai.com/de/policies/eu-privacy-policy. We have concluded a data processing agreement with OpenAI ("Data Processing Addendum", see https://openai.com/policies/data-processing-addendum). As data is transferred to the USA when the OpenAI API is used, the Data Processing Addendum stipulates that the EU standard contractual clauses apply in order to ensure an adequate level of data protection for the data even when it is transferred to a third country.

We use the software solution Airparser, Sepapaja tn 6, Tallinn 11415, Estonia, to read attachments with pdf or word files. Airparser uses AI technology to recognize and extract structured data. We have concluded an agreement with Airparser for order processing in accordance with Art. 28 GDPR, whereby Airparser is contractually obliged to comply with the applicable data protection regulations (see https://airparser.com/dpa/). You can view Airparser's data protection information at https://airparser.com/gdpr/

Legal basis and purpose of data processing

The legal basis for the processing of data transmitted in the course of sending a contact form request or an email is Art. 6 para. 1 lit. f GDPR. If the contact form request or the e-mail contact is aimed at concluding a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.

The processing of personal data from the input mask serves us to process inquiries and to contact you. If you contact us by email, this also constitutes the necessary legitimate interest in processing the data. If you leave a cell phone number, we will use the number you provide for this purpose.

The use of AI-based services is based on our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR.

User data may also be stored in our customer relationship management system (CRM software) HubSpot or a comparable request organization on the basis of our legitimate interests.

The other personal data processed during the submission process is used to prevent misuse of the contact form and to ensure the security of our information technology systems.

Duration of storage / possibility of objection and removal

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For the personal data from the input screen of the contact form and those sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified and no legal requirements necessitate longer storage.

If the user contacts us by email, they can object to the storage of their personal data at any time. In such a case, the conversation cannot be continued unless we can base this on another data protection law basis or have an overriding interest in further data processing.

All personal data stored in the course of contacting us will be deleted in this case, unless a longer storage is required by law.

3. use of the Peter Park Portal (B2B dashboard)

Description of data processing

After completing a registration process, we offer customers the opportunity to submit support requests to us via our portal using a designated login area, or to request support services, as well as to increase access to customer-specific information.

The portal can be accessed via our website. We provide the necessary password to the respective users as part of the business transaction. The access data required for the login will be stored by us when a corresponding user account is created. The following personal data is provided by the user for this purpose or as part of the registration process:

  • Company
  • Salutation
  • First name
  • Last name
  • E-mail address
  • Mobile number

We use the mobile phone number exclusively for activating a two-factor authentication. The access data required for login (email address and password) are stored by us when a corresponding user account is created. In order to complete the registration process, the user receives an activation link to the email address provided by him, which he must then click. Alternatively, the user can copy the link and call it up via the address bar of his web browser.

For technical reasons, a limited amount of data (so-called connection data) is collected each time the portal is accessed. This data is technically necessary to establish and maintain a connection between the user's device and our servers. Furthermore, this data is required to maintain the session after a login and to prevent unauthorized access to this session.


As part of each registration process and the use of the customer portal or the portal, we or the hosting service provider we use store the IP address and the time of the respective user action (timestamp), Internet service provider, web browser and operating system used or the respective version information, language settings, referrer URL and the name of the website accessed.

When accessing the portal and logging into the portal, cookies are set that are required to verify user authorization, maintain the session and protect the session. We use the customer identity management service Auth0 from the provider Auth0 LLC, First Street, Floor 6 San Francisco, CA 94105, USA for the login process. To use the portal, you must allow these cookies in your web browser. Auth0 also processes personal data collected in the USA. Auth0 is a participant in the EU-U.S. Data Privacy Framework(https://www.dataprivacyframework.gov/list), which guarantees the security of the processing of personal data originating from the EU. 

If a solution to a problem reported via the portal or an answer to a question is only possible with the involvement of other partners or service providers, we will pass on the information associated with the query/incident to them.

Legal basis and purpose of data processing

‍Thelegal basis for the processing of data processed in the course of registration and use of the portal as well as inquiries made or downloads used is Art. 6 para. 1 lit. b GDPR due to the intended conclusion and execution of a contract. In addition, Art. 6 para. 1 lit. f GDPR is relevant, as the processing of personal data in connection with our portal serves to enable an effective way of contacting and communicating with our respective sales and support teams, as well as the administration, processing and resolution of incoming requests and the secure connection between the users' end devices and our servers. The processed information is also required to provide the service in accordance with Section 25 (2) No. 2 TDDDG.

Duration of storage / possibility of objection and removal 

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For the personal data from the registration input screen, this is usually the case when the respective usage process has ended. All personal data stored in the course of making contact will be deleted at the latest if no legal requirements necessitate longer storage (e.g. statutory warranty periods in connection with support requests).

4. applications to Peter Park 

Description of data processing

‍Onour website, under the heading "Careers", we inform you from time to time about vacancies at Peter Park and, if applicable, about the possibility of completing internships or apprenticeships with us, or working for us as part of a dual study program or as a working student.

If you send us your application as a result or as part of an unsolicited application, we regularly process personal master data and contact data such as: First name and surname, address, e-mail address, telephone number, date of birth.

In addition, we process the data that you send us with your application documents (resume, photographs, references, etc.). Which of the data provided to us is processed in detail depends largely on the position to be filled. At the very least, we require data regarding your previous educational/professional background, your qualifications, your skills and personal details in order to be able to assess whether your application is suitable for the vacant position. In this context, the processing of your data is generally mandatory for the preparation and completion of the application process. If you do not provide us with any or sufficient data, this may result in us not being able to consider you as an applicant when filling a position, having to reject you as an applicant or no longer being able to carry out the application process.

‍Wedo not require any information from you that is not usable under the General Equal Treatment Act under German law or any other national or international equal treatment law. Please also do not forward any confidential information or trade secrets of your former or current employer to us.

We provide your data to those employees or organizational units that need it to fulfill our contractual and legal obligations or to process or pursue our legitimate interests, significantly the HR department and the management level of the department within which the position is to be filled.

In accordance with § 164 Para. 1 S. 4 SGB IX, we are obliged to inform the responsible representative body for severely disabled employees of every application received from people with a severe disability and to provide the relevant data on the applicant.

Legal basis and purpose of data processing / data recipients

Personal data is processed primarily for the purpose of personnel selection to fill vacancies for the initiation of an employment contract (Art. 6 para. 1 lit. b GDPR, or Art. 88 GDPR in conjunction with § 26 BDSG).

Based on a balancing of interests, data processing may take place beyond the actual initiation of an employment contract in order to safeguard our legitimate interests in the selection of personnel and assessment of whether an applicant and the position to be filled are a good match (Art. 6 para. 1 lit. f GDPR). This is permissible unless your interests or fundamental rights and freedoms, which require the protection of personal data, prevail. Data processing for the protection of legitimate interests is carried out, for example, when using job exchanges, recruitment agencies, service providers for the implementation of recruiting procedures, CVs, certificates and other data transmitted by you to us, which may contain particularly sensitive information about mental and physical health, racial or ethnic origin, political opinions, religious or philosophical beliefs, membership of a trade union or political party or sex life. If you voluntarily provide us with such special personal data (see Art. 9 para. 1 GDPR), we will

Duration of storage / possibility of objection and removal

Severely disabled applicants have the right under Section 164 (1) sentence 8 of the German Social Code IX to refuse the involvement of the relevant representative body for severely disabled persons and thus prevent the body from being notified. Please inform us as part of the application if you reject the involvement of the responsible representative for severely disabled persons.

If you are rejected after the application process has ended, or if you withdraw your application beforehand, we will store your data for a period of 6 months from this point in time in order to be able to meet any obligations to provide evidence under the General Equal Treatment Act (AGG) and to defend ourselves against any legal claims.

In the event of a successful application, we store the applicant data provided in the personnel file for the purpose and for the duration of the employment relationship.

C. Contractual relationships with customers and business partners

I. Am I obliged to provide data?

If you contact us with questions about our services, enter into contractual negotiations with us, accept one of our offers or enter into other contractual agreements with us, we will process the personal data you provide in this context. Which data is processed in detail depends largely on the relevant objects of purchase or the services that you purchase from us or that you request. In this context, the processing of your data is generally absolutely necessary for the preparation, conclusion and execution of the contract. If you do not provide us with this data, we may have to refuse to conclude a contract or execute the order or may no longer be able to perform an existing contract. 

Insofar as we use data in the context of contract initiation or fulfillment with a business customer, business or cooperation partner, our interest in handling your data lies in enabling and maintaining the exchange with the business customer or the respective business or cooperation partner, typically in the context of a contractual or other relationship. If you act as a contact person - typically in your function as an employee at these companies - you generally have no overriding conflicting interest, insofar as this interaction with us is part of your area of responsibility, so that a right of objection is regularly ruled out.

However, you are not obliged to give your consent to data processing with regard to data that is not relevant for the performance of the contract or that is not required by law.

II CRM system ("HubSpot")

Description of data processing

We use functionalities of the customer relations management (CRM) system HubSpot. HubSpot is a software solution of HubSpot Inc. 25 First Street, 2nd Floor, Cambridge, MA 02141 USA, which is offered in Europe by HubSpot Ireland Limited, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland. Hubspot is an integrated software solution that we use to cover various aspects of our online marketing. These include, among others: Email marketing, social media publishing & reporting, reporting, contact management (e.g. user segmentation & CRM), landing pages and contact forms.

We use HubSpot to control and implement inbound marketing in connection with various functionalities of our online presence. The stored information is saved on HubSpot servers. The processed data can be used by us to gain detailed insights into how our online presences are used and how they are used, to contact visitors to our website and to determine which of our company's services are of interest to them. 

HubSpot uses so-called "web beacons" (invisible graphics or code) and cookies that are embedded in websites or emails and stored on users' end devices. The IP address, geographical location, type of browser, duration of the visit and the pages accessed are recorded.

Furthermore, HubSpot collects the data entered by the user when he or she (a) subscribes to our newsletter or fills out one of our contact forms.

For more information about HubSpot's privacy practices, please visit https://legal.hubspot.com/de/privacy-policy.

Legal basis and purpose of data processing

The storage of HubSpot cookies and web beacons is based on Art. 6 para. 1 lit. a GDPR. We also use the information collected via HubSpot on the basis of our legitimate interests in the optimization of our marketing and analysis of the use of our online presence as well as its continuous optimization and user-friendly design and in order to be able to inform our users in a more targeted manner (Art. 6 para. 1 lit.f GDPR).

Possibility of objection and removal

The user can prevent the storage of cookies by deactivating the storage of cookies in their browser settings. If the user wants the other personal data to be deleted, he or she can exercise his or her right of objection and removal as described in the general information under A. 

Alternatively, you can also set your cookie preferences using the cookie management tool CookieHub that we have integrated.

III Communication

In principle, we collect the necessary data from you ourselves in personal contact. However, you can of course also contact us by telephone, fax, mail or alternatively via our provided e-mail address (see imprint) or e-mail addresses of our employees made known to you. In the latter case, the personal data transmitted with the e-mail will be stored. Please note that communication by e-mail is not encrypted for technical reasons.

Your data will be used to process the conversation and follow-up on the respective inquiry or meeting content. Your data will be processed on the basis of Art. 6 para. 1 lit. b GDPR if the communication is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. 

In all other cases, the processing is based on our legitimate interests (Art. 6 para. 1 lit. f GDPR) in the effective processing of the inquiries addressed to us. 

In this context, the data will not be passed on to third parties unless it is necessary to pursue our claims or legitimate interests (Art. 6 para. 1 lit.f GDPR) or there is a legal obligation to do so (Art. 6 para. 1 lit.c GDPR). 

IV. Data processing in the context of sales

The processing of personal data is carried out on the basis of Art. 6 para. 1 lit.b GDPR for the provision of the service with which you commission us, in particular for the execution of our contracts or pre-contractual measures, as well as all measures associated with the operation and administration of Peter Park necessary activities. 

The resulting purposes of data processing are primarily based on the specific activities and individual services agreed with you and may include, among other things, consulting activities or activities in the context of managing sales processes (e.g. compilation of documents, sending of Peter Park product or event information, the provision of services through Peter Park) or the support of sales negotiations and contract conclusions.

Further details on the scope, purpose of data processing and recipients of your data can be found in the respective contract documents and associated terms and conditions.

Insofar as necessary in the context of our operational processes, we process your data in connection with our services beyond the actual fulfillment of the contract to protect our legitimate interests (Art. 6 para. 1 lit.f GDPR). 

We may be subject to specific legal obligations in connection with the offering or provision of our services, such as requirements under tax legislation. The purposes of processing your data may therefore include, among others, the fulfillment of tax control and reporting obligations, customs or export regulations, and the assessment and management of risks. The data processing necessary for this is based on Art. 6 (1) lit. c DSGVO.

V. Newsletter

Description of data processing

We would like to inform our business customers and interested parties at regular intervals with promotional messages about our services and other products, services, webinars, innovations or news at Peter Park by e-mail or other electronic notifications (hereinafter referred to as "newsletter"). We need your e-mail address for this purpose. In the respective newsletter registration forms, further information may be requested in order to send you personalized content tailored to your interests. 

You can subscribe to our newsletters by using the corresponding function of a registration form to subscribe to our newsletter or during a registration process by ticking a box (so-called opt-in). For this purpose, we provide various options for registering for our (possibly topic-specific) newsletters on our websites or in the context of registration or order interfaces. The details of the respective contents of the newsletters are specifically described in the respective registration form. This description is decisive for your consent. 

Following your registration, we will send you an e-mail asking you to confirm your newsletter subscription again (so-called double opt-in procedure). This confirmation is necessary to rule out the possibility that someone else has misused your e-mail address to subscribe to our newsletter under a different address. Your e-mail address will only be activated for sending the newsletter once the hyperlink in the e-mail has been activated.

We use the MailChimp service of the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA (hereinafter "MailChimp") for the administration of registrations and the sending of emails in connection with our newsletter, which enables us to automate the registration process and the email dispatch required for this in a simple and user-friendly manner. As MailChimp's IT system is located in the USA, the registration data from the input forms is transferred to the USA and processed there. To ensure appropriate handling of the data transmitted by us, we have concluded an agreement with MailChimp on order processing in accordance with Art. 28 GDPR, including the EU standard contractual clauses on data transfer to third countries. Further information on the handling of personal data by MailChimp can be found at: https://mailchimp.com/legal/privacy/.

In addition to your e-mail address and name, the IP address and the registration date ("timestamp") are stored for verification purposes.

Legal basis and purpose of data processing / data recipients

The legal basis for sending newsletters is the consent given by you as the recipient in accordance with (Art. 6 para. 1 lit. a GDPR, Art. 7 GDPR in conjunction with. § Section 7 para. 2 no. 3 UWG ("Act against Unfair Competition"), or if consent is not required for existing customers in accordance with Section 7 para. 3 UWG, on the basis of our legitimate interest in direct marketing measures in accordance with Art. 6 para. 1 lit. f GDPR in conjunction with Section 7 para. 3 UWG. § Section 7 (3) UWG. 

The logging in the registration process is based on our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR in a secure and targeted newsletter system that meets both our business sales interests and the ideas and needs of the recipients, as well as in the verifiability of the consents given. 

Duration of storage / possibility of objection and removal

You can object to the sending of the newsletter at any time or revoke your consent to receive the newsletter in whole or in part. You will find an unsubscribe link at the end of each newsletter. You can also contact us directly using the contact details provided at the beginning of this document.

Unsubscribing from the newsletter does not affect business communication. If this is necessary for the purpose of processing the contract, your data will remain stored by us. Furthermore, we reserve the right to store the necessary evidence until the expiry of the statutory limitation periods in order to prove that the newsletter has been sent in compliance with the law.

VI Transmission of data 

Depending on the scope of the service, your data or documents may be passed on to public bodies or private service providers or persons with whom we regularly work (see Part A Section V), both in the inquiry or offer phase and in the contract implementation phase. 

D. Other

Due to the further development of our website, our services or our other offers as well as due to changed legal or official requirements, it may become necessary to change this data protection declaration. You can access the current data protection declaration at any time on our website and print it out if required.