Festivi: 9:00-20:00
Tutti possono saltare!
We have prepared this privacy policy (version 20/08/2021-111815869) to explain to you, in accordance with the requirements of the General Data Protection Regulation (EU) 2016/679 and applicable national laws, which personal data (data for short) we as the controller – and the processors commissioned by us (e.g. providers) – process, will process in the future and what lawful options you have. The terms used are to be understood as gender-neutral.
In short: We provide you with comprehensive information about the data we process about you.
Data protection declarations usually sound very technical and use legal jargon. This privacy policy, on the other hand, is intended to describe the most important things to you as simply and transparently as possible. Where it is conducive to transparency, technical terms are explained in a reader-friendly way, links to further information are provided and graphics are used. We thus inform you in clear and simple language that we only process personal data as part of our business activities if there is a corresponding legal basis. This is certainly not possible by providing explanations that are as concise, unclear and legal-technical as possible, as is often standard on the Internet when it comes to data protection. I hope you find the following explanations interesting and informative, and perhaps there is one or two pieces of information that you did not yet know.
If you still have any questions, we would ask you to contact the responsible body named below or in the legal notice, to follow the links provided and to look at further information on third-party websites. Our contact details can of course also be found in the legal notice.
This privacy policy applies to all personal data processed by us in the company and to all personal data processed by companies commissioned by us (processors). By personal data, we mean information within the meaning of Art. 4 No. 1 GDPR, such as a person’s name, email address and postal address. The processing of personal data ensures that we can offer and invoice our services and products, whether online or offline. The scope of this privacy policy includes
In short, the privacy policy applies to all areas in which personal data is processed in the company in a structured manner via the channels mentioned. If we enter into legal relationships with you outside of these channels, we will inform you separately if necessary.
In the following privacy policy, we provide you with transparent information on the legal principles and regulations, i.e. the legal bases of the General Data Protection Regulation, which enable us to process personal data.
As far as EU law is concerned, we refer to REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016. You can of course read this EU General Data Protection Regulation online at EUR-Lex, the gateway to EU law, at https://eur-lex.europa.eu/legal-content/DE/TXT/?uri=celex%3A32016R0679.
We only process your data if at least one of the following conditions applies:
Other conditions such as the fulfilment of recording in the public interest and the exercise of official authority as well as the protection of vital interests do not generally arise for us. If such a legal basis is relevant, it will be indicated at the appropriate point.
In addition to the EU regulation, national laws also apply:
If other regional or national laws apply, we will inform you of this in the following sections.
It is a general criterion for us that we only store personal data for as long as is absolutely necessary for the provision of our services and products. This means that we delete personal data as soon as the reason for the data processing no longer exists. In some cases, we are legally obliged to store certain data even after the original purpose has ceased to exist, for example for accounting purposes.
If you wish your data to be deleted or revoke your consent to data processing, the data will be deleted as quickly as possible, provided there is no obligation to store it.
We will inform you below about the specific duration of the respective data processing if we have further information on this.
According to Article 13 GDPR, you have the following rights to ensure fair and transparent processing of data:
In short: You have rights – do not hesitate to contact the responsible office listed above!
If you believe that the processing of your data violates data protection law or that your data protection rights have been violated in any other way, you can lodge a complaint with the supervisory authority. For Austria, this is the data protection authority, whose website can be found at https://www.dsb.gv.at/. In Germany, there is a data protection officer for each federal state. For more information, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI). The following local data protection authority is responsible for our company:
Head: Mag. Dr. Andrea Jelinek
Adress: Barichgasse 40-42, 1030 Vienna
Phone No.: +43 1 52 152-0
EMail: dsb@dsb.gv.at
Website: https://www.dsb.gv.at/
Communication summary Affected parties: Everyone who communicates with us by telephone, e-mail or online form Data processed: e.g. telephone number, name, e-mail address, form data entered. You can find more details on this in the respective contact type used Purpose: Handling communication with customers, business partners, etc. Storage duration: Duration of the business case and the statutory provisions Legal basis: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. b GDPR (contract), Art. 6 para. 1 lit. f GDPR (legitimate interests) |
When you contact us and communicate by telephone, e-mail or online form, personal data may be processed.
The data will be processed for the purpose of handling and processing your enquiry and the associated business transaction. The data will be stored for as long as required by law.
All those who seek contact with us via the communication channels provided by us are affected by the aforementioned processes.
When you call us, the call data is stored pseudonymised on the respective end device and with the telecommunications provider used. In addition, data such as your name and telephone number may subsequently be sent by e-mail and stored for the purpose of responding to your enquiry. The data is deleted as soon as the business transaction has been completed and legal requirements permit.
If you communicate with us by email, data may be stored on the respective end device (computer, laptop, smartphone, etc.) and data may be stored on the email server. The data will be deleted as soon as the business transaction has been completed and legal requirements permit.
If you communicate with us using an online form, data is stored on our web server and may be forwarded to one of our e-mail addresses. The data will be deleted as soon as the business transaction has been completed and legal requirements permit.
The processing of the data is based on the following legal bases:
Cookies summary Affected parties: Visitors to the website Purpose: depending on the cookie. You can find more details on this below or from the manufacturer of the software that sets the cookie. Processed data: Depends on the cookie used. You can find more details on this below or from the manufacturer of the software that sets the cookie. Storage duration: depending on the cookie, can vary from hours to years Legal basis: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit.f GDPR (legitimate interests) |
Our website uses HTTP cookies to store user-specific data.
Below we explain what cookies are and why they are used so that you can better understand the following privacy policy.
Whenever you surf the internet, you use a browser. Well-known browsers include Chrome, Safari, Firefox, Internet Explorer and Microsoft Edge. Most websites store small text files in your browser. These files are called cookies.
One thing cannot be denied: Cookies are really useful little helpers. Almost all websites use cookies. More precisely, they are HTTP cookies, as there are also other cookies for other areas of application. HTTP cookies are small files that are stored on your computer by our website. These cookie files are automatically stored in the cookie folder, the “brain” of your browser, so to speak. A cookie consists of a name and a value. When defining a cookie, one or more attributes must also be specified.
Cookies store certain user data about you, such as language or personal page settings. When you visit our site again, your browser transmits the “user-related” information back to our site. Thanks to cookies, our website knows who you are and offers you the settings you are used to. In some browsers, each cookie has its own file; in others, such as Firefox, all cookies are stored in a single file.
The following graphic shows a possible interaction between a web browser such as Chrome and the web server. The web browser requests a website and receives a cookie back from the server, which the browser uses again as soon as another page is requested.
There are both first-party cookies and third-party cookies. First-party cookies are created directly by our website, third-party cookies are created by partner websites (e.g. Google Analytics). Each cookie must be evaluated individually, as each cookie stores different data. The expiry time of a cookie also varies from a few minutes to a few years. Cookies are not software programmes and do not contain viruses, Trojans or other “malware”. Cookies also cannot access information on your PC.
Cookie data can look like this, for example:
Name: _ga
Wert: GA1.2.1326744211.152111815869-9
Purpose: To differentiate between website visitors
Expiry date: after 2 years
A browser should be able to support these minimum sizes:
The question of which cookies we use in particular depends on the services used and is clarified in the following sections of the privacy policy. At this point, we would like to briefly explain the different types of HTTP cookies.
There are 4 types of cookies:
Essential cookies
These cookies are necessary to ensure basic website functions. For example, these cookies are needed when a user places a product in the shopping basket, then continues surfing on other pages and later goes to the checkout. These cookies ensure that the shopping basket is not deleted even if the user closes their browser window.
Purposeful cookies
These cookies collect information about user behaviour and whether the user receives any error messages. These cookies are also used to measure the loading time and the behaviour of the website with different browsers.
Targeted cookies
These cookies ensure better user-friendliness. For example, entered locations, font sizes or form data are saved.
Advertising cookies
These cookies are also called targeting cookies. They are used to deliver customised advertising to the user. This can be very practical, but also very annoying.
When you visit a website for the first time, you are usually asked which of these types of cookie you would like to allow. And of course, this decision is also stored in a cookie.
If you would like to know more about cookies and are not afraid of technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments of the Internet Engineering Task Force (IETF) called “HTTP State Management Mechanism”.
The purpose ultimately depends on the cookie in question. You can find more details on this below or from the manufacturer of the software that sets the cookie.
Cookies are little helpers for many different tasks. Unfortunately, it is not possible to generalise which data is stored in cookies, but we will inform you about the processed or stored data in the following privacy policy.
The storage period depends on the cookie in question and is specified below. Some cookies are deleted after less than an hour, others can remain stored on a computer for several years.
You can also influence the storage period yourself. You can delete all cookies manually at any time via your browser (see also “Right to object” below). Furthermore, cookies that are based on consent will be deleted at the latest after you withdraw your consent, whereby the legality of the storage until then remains unaffected.
You decide how and whether you want to use cookies. Regardless of which service or website the cookies originate from, you always have the option of deleting, deactivating or only partially allowing cookies. For example, you can block third-party cookies but allow all other cookies.
If you want to find out which cookies have been stored in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:
Chrome: Delete, activate and manage cookies in Chrome
Safari: Managing cookies and website data with Safari
Firefox: Delete cookies to remove data that websites have stored on your computer
Internet Explorer: Deleting and Managing Cookies
Microsoft Edge: Deleting and Managing Cookies
If you don’t want any cookies at all, you can set up your browser to always notify you when a cookie is supposed to be set. This way, you can decide for each individual cookie whether to allow it or not. The procedure varies depending on the browser. It’s best to search for instructions on Google using the search term “delete cookies Chrome” or “disable cookies Chrome” if you’re using Chrome.
Since 2009, there have been the so-called “Cookie Directives.” It is stipulated therein that storing cookies requires consent (Article 6 (1) lit. a GDPR) from you. However, within the EU countries, there are still very different reactions to these directives. In Austria, however, this directive was implemented in § 96 (3) of the Telecommunications Act (TKG). In Germany, the cookie directives were not implemented as national law. Instead, this directive was largely implemented in § 15 (3) of the Telemedia Act (TMG).
For strictly necessary cookies, even if no consent is given, there are legitimate interests (Article 6 (1) lit. f GDPR), which are mostly of an economic nature. We aim to provide website visitors with a pleasant user experience, and certain cookies are often strictly necessary for that purpose.
To the extent that non-essential cookies are used, this is only done with your consent. The legal basis in this respect is Article 6 (1) lit. a GDPR.
In the following sections, you will be provided with more detailed information about the use of cookies if the deployed software uses cookies.
Web Hosting Summary Affected: Website visitors Purpose: professional hosting of the website and ensuring its operation Processed data: IP address, time of website visit, browser used, and other data. More details can be found below or with the respective web hosting provider. Storage period: depends on the respective provider, but usually 2 weeks Legal basis: Article 6 (1) lit.f GDPR (Legitimate interests) |
When you visit websites nowadays, certain information – including personal data – is automatically created and stored, including on this website. This data should be processed as sparingly as possible and only with justification. By website, we mean the entirety of all web pages on a domain, i.e., everything from the homepage to the very last subpage (like this one). By domain, we mean, for example, example.com or sampleexample.com.
When you want to view a website on a screen, you use a program called a web browser. You probably know some web browsers by name: Google Chrome, Microsoft Edge, Mozilla Firefox, and Apple Safari.
This web browser must connect to another computer where the code of the website is stored: the web server. Operating a web server is a complicated and resource-intensive task, which is why it is usually handled by professional providers, the hosts. They offer web hosting and thus ensure reliable and error-free storage of website data.
When the browser on your computer (desktop, laptop, smartphone) connects and during the data transmission to and from the web server, personal data may be processed. On the one hand, your computer stores data, and on the other hand, the web server must also store data for a certain period to ensure proper operation.
For illustration:
The purposes of data processing are:
Even while you are visiting our website right now, our web server, which is the computer where this website is stored, usually automatically stores data such as
Generally, the above-mentioned data is stored for two weeks and then automatically deleted. We do not share this data, but we cannot rule out that this data may be accessed by authorities in the event of unlawful behavior.
In short: Your visit is logged by our provider (the company that runs our website on dedicated computers (servers)), but we do not share your data without consent!
The legality of processing personal data in the context of web hosting arises from Article 6 (1) lit. f GDPR (Protection of legitimate interests), because the use of professional hosting with a provider is necessary to present the company securely and user-friendly on the internet and to potentially pursue attacks and claims arising therefrom.
Sendinblue Privacy Policy Summary Data Subjects: Newsletter Subscribers Purpose: Direct advertising via email, notification of system-relevant events Processed Data: Data entered during registration, at least the email address. Storage Period: Duration of the subscription Legal Basis: Art. 6 (1) lit. a GDPR (consent), Art. 6 (1) lit. f GDPR (legitimate interests) |
You can sign up for our newsletter for free on our website. To make this possible, we use the email delivery service Sendinblue for our newsletter. This is a service provided by the German company Sendinblue GmbH, Köpenicker Str. 126, 10179 Berlin.
We are naturally delighted when you sign up for our newsletter. This way, we can always inform you directly and up-to-date about what’s happening in our company. However, you should know that during the newsletter registration process, all data you enter (such as your email address or your first and last name) are stored and managed on our server and at Sendinblue. These are also personal data. For example, your IP address is also stored along with the time and date of registration. During the registration process, you also consent to us sending you the newsletter, and this privacy policy is also referenced.
The newsletter service also provides us with helpful analysis options. This means that when we send a newsletter, for example, we find out whether and when you opened the newsletter. The software also detects and records whether and on which link you clicked in the newsletter. This information is extremely helpful in adapting and optimizing our service to your needs and concerns. After all, we naturally want to provide you with the best possible service. In addition to the data already mentioned above, data about your user behavior is also stored.
You can revoke your consent to this data processing at any time. For example, by clicking directly on the unsubscribe link in the newsletter. After unsubscribing, the personal data will be deleted from our server and from the Sendinblue servers, which are located in Germany. You have the right to free information about your stored data and, if necessary, the right to deletion, blocking, or correction.
You have the opportunity to cancel your newsletter subscription at any time. To do this, you simply need to revoke your consent to newsletter registration. This usually only takes a few seconds or one or two clicks. Most of the time, you will find a link directly at the end of each email to cancel the newsletter subscription. If the link is really not found in the newsletter, please contact us by email, and we will cancel your newsletter subscription immediately.
The sending of our newsletter by Sendinblue is based on your consent (Article 6 (1) lit. a GDPR). This means that we may only send you a newsletter if you have actively registered for it beforehand. If consent is not required, the newsletter will be sent based on the legitimate interest in direct marketing (Article 6 (1) lit. f), provided this is legally permitted. We record your registration process so that we can always prove that it complies with our laws.
If you want more information about data processing, we recommend reading the company’s privacy policy at https://de.sendinblue.com/legal/privacypolicy/ and also the following information page at https://de.sendinblue.com/informationen-newsletter-empfaenger/.
We use the Facebook Pixel from Facebook on our website. For this purpose, we have implemented a code on our website. The Facebook Pixel is a piece of JavaScript code that loads a collection of functions with which Facebook can track your user actions if you have come to our website via Facebook ads. For example, if you purchase a product on our website, the Facebook Pixel is triggered and stores your actions on our website in one or more cookies. These cookies allow Facebook to match your user data (customer data such as IP address, user ID) with the data from your Facebook account. Then Facebook deletes this data again. The data collected is anonymous and not visible to us and is only usable within the framework of advertising placements. If you are a Facebook user and logged in, your visit to our website will automatically be assigned to your Facebook user account.
We want to show our services or products only to those people who are genuinely interested in them. With the help of Facebook Pixel, our advertising measures can be better tailored to your wishes and interests. For example, Facebook users (if they have allowed personalized advertising) see appropriate ads. Furthermore, Facebook uses the data collected for analysis purposes and its own advertising.
Below, we show you those cookies that were set by embedding Facebook Pixel on a test page. Please note that these are only example cookies. Depending on the interaction on our website, different cookies are set.
Name: _fbp
Value: fb.1.1568287647279.257405483-6111815869-7
Purpose: This cookie is used by Facebook to display advertising products.
Expiration Date: after 3 months
Name: fr
Value: 0aPf312HOS5Pboo2r..Bdeiuf…1.0.Bdeiuf.
Purpose: This cookie is used so that Facebook Pixel works properly.
Expiration Date: after 3 months
Name: comment_author_50ae8267e2bdf1253ec1a5769f48e062111815869-3
Value: Author’s name
Purpose: This cookie stores the text and name of a user who leaves a comment, for example.
Expiration Date: after 12 months
Name: comment_author_url_50ae8267e2bdf1253ec1a5769f48e062
Value: https%3A%2F%2Fwww.testseite…%2F (Author’s URL)
Purpose: This cookie stores the URL of the website that the user enters in a text field on our website.
Expiration Date: after 12 months
Name: comment_author_email_50ae8267e2bdf1253ec1a5769f48e062
Value: Author’s email address
Purpose: This cookie stores the user’s email address if they have provided it on the website.
Expiration Date: after 12 months
Note: The cookies mentioned above relate to individual user behavior. Changes at Facebook are never excluded, especially when using cookies.
If you are logged in to Facebook, you can change your ad settings at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. If you are not a Facebook user, you can generally manage your usage-based online advertising at http://www.youronlinechoices.com/de/praferenzmanagement/. There you have the option to deactivate or activate providers.
We would like to point out that, according to the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. Data processing is primarily carriedout by Facebook Pixel. This may result in data not being processed and stored anonymously. Furthermore, US authorities may have access to individual data. It may also happen that this data is linked with data from other Facebook services where you have a user account.
If you want to learn more about Facebook’s privacy, we recommend reading the company’s own data policies at https://www.facebook.com/policy.php.
As part of the Facebook Pixel function, we have also activated Automatic Advanced Matching. This feature of the Pixel allows us to send hashed emails, names, gender, city, state, postal code, birthdate, or phone number as additional information to Facebook if you have provided us with this data. This activation allows us to tailor advertising campaigns on Facebook even more precisely to people who are interested in our services or products.
Google Analytics Privacy Policy Summary Data Subjects: Website Visitors Purpose: Evaluation of visitor information to optimize the website offering. Processed Data: Access statistics containing data such as access locations, device data, access duration and time, navigation behavior, click behavior, and IP addresses. More details can be found below in this privacy policy. Storage Period: Depending on the properties used Legal Basis: Art. 6 (1) lit. a GDPR (Consent), Art. 6 (1) lit. f GDPR (Legitimate Interests) |
We use the analytics tracking tool Google Analytics (GA) from the American company Google Inc. on our website. For the European region, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. Google Analytics collects data about your actions on our website. For example, when you click on a link, this action is stored in a cookie and sent to Google Analytics. With the reports we receive from Google Analytics, we can better tailor our website and service to your needs. Below, we will go into more detail about the tracking tool and inform you especially about what data is stored and how you can prevent this.
Google Analytics is a tracking tool used for the traffic analysis of our website. To make Google Analytics work, a tracking code is embedded in the code of our website. When you visit our website, this code records various actions you perform on our website. Once you leave our website, this data is sent to and stored on the Google Analytics servers.
Google processes the data, and we receive reports about your user behavior. These reports may include, among other things:
Our goal with this website is clear: We want to provide you with the best possible service. The statistics and data from Google Analytics help us achieve this goal.
The statistically evaluated data gives us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimize our site so that it is more easily found by interested people on Google. On the other hand, the data helps us better understand you as a visitor. Thus, we know very precisely what we need to improve on our website to provide you with the best possible service. The data also serves us to carry out our advertising and marketing measures more individually and cost-effectively. After all, it only makes sense to show our products and services to people who are interested in them.
Google Analytics creates a random, unique ID associated with your browser cookie using a tracking code. This allows Google Analytics to recognize you as a new user. The next time you visit our site, you will be recognized as a “returning” user. All collected data is stored together with this user ID, making it possible to evaluate pseudonymous user profiles.
To analyze our website with Google Analytics, a property ID must be inserted into the tracking code. The data is then stored in the corresponding property. For each newly created property, Google Analytics 4 Property is standard by default. Alternatively, you can also create the Universal Analytics Property. Depending on the property used, data is stored for different lengths of time.
Your interactions on our website are measured through identifiers such as cookies and app instance IDs. Interactions are any actions you take on our website. If you also use other Google systems (such as a Google account), data generated by Google Analytics may be linked to third-party cookies. Google does not share Google Analytics data unless we as website operators approve it. Exceptions may occur if it is legally required.
The following cookies are used by Google Analytics:
Name: _ga
Value: 2.1326744211.152111815869-5
Purpose: By default, analytics.js uses the _ga cookie to store the User ID. It is generally used to differentiate between website visitors.
Expiration date: after 2 years
Name: _gid
Value: 2.1687193234.152111815869-1
Purpose: This cookie is also used to distinguish website visitors.
Expiration date: after 24 hours
Name: _gat_gtag_UA_<property-id>
Value: 1
Purpose: Used to lower the request rate. If Google Analytics is provided via Google Tag Manager, this cookie is named _dc_gtm_ <property-id>.
Expiration date: after 1 minute
Name: AMP_TOKEN
Value: no information
Purpose: The cookie has a token with which a user ID can be obtained from the AMP client ID service. Other possible values indicate a logout, a request, or an error.
Expiration date: after 30 seconds to up to one year
Name: __utma
Value: 1564498958.1564498958.1564498958.1
Purpose: With this cookie, your behavior on the website can be tracked and performance measured. The cookie is updated every time information is sent to Google Analytics.
Expiration date: after 2 years
Name: __utmt
Value: 1
Purpose: This cookie is used like _gat_gtag_UA_<property-id> to throttle the request rate.
Expiration date: after 10 minutes
Name: __utmb
Value: 3.10.1564498958
Purpose: This cookie is used to determine new sessions. It is updated every time new data or information is sent to Google Analytics.
Expiration date: after 30 minutes
Name: __utmc
Value: 167421564
Purpose: This cookie is used to establish new sessions for returning visitors. It is a session cookie and is only stored until you close the browser.
Expiration date: After closing the browser
Name: __utmz
Value: m|utmccn=(referral)|utmcmd=referral|utmcct=/
Purpose: The cookie is used to identify the source of visitor traffic to our website. That is, the cookie stores where you came to our website from. This could have been another site or an advertising campaign.
Expiration date: after 6 months
Name: __utmv
Value: no information
Purpose: The cookie is used to store custom user data. It is always updated when information is sent to Google Analytics.
Expirationdate: after 2 years
Note: This list cannot claim to be complete, as Google may change their choice of cookies from time to time.
Here we provide you with an overview of the most important data collected by Google Analytics:
Heatmaps: Google creates so-called heatmaps. Heatmaps show exactly which areas you click on. This gives us information about where you are “on the move” on our site.
Session duration: Google refers to the time you spend on our site without leaving the site as session duration. If you have been inactive for 20 minutes, the session ends automatically.
Bounce rate: A bounce occurs when you view only one page on our website and then leave our website again.
Account creation: If you create an account or place an order on our website, Google Analytics collects this data.
IP address: The IP address is displayed in truncated form only, so that no unique assignment is possible.
Location: The IP address can be used to determine the country and your approximate location. This process is also called IP geolocation.
Technical information: Technical information includes, among other things, your browser type, your Internet service provider, or your screen resolution.
Source: Google Analytics or us, of course, is also interested in which website or advertisement you came to our site from.
Other data includes contact information, any ratings, playing media (e.g., if you play a video on our site), sharing content via social media, or adding to your favorites. This list is not exhaustive and serves only as a general orientation of data storage by Google Analytics.
Google has servers distributed worldwide. Most servers are located in America, and consequently, your data is mostly stored on American servers. You can read exactly where Google data centers are located here: https://www.google.com/about/datacenters/inside/locations/?hl=de
Your data is distributed across various physical media. This has the advantage that the data is more quickly accessible and better protected against manipulation. In each Google data center, there are appropriate emergency programs for your data. For example, if the hardware at Google fails or natural disasters disrupt servers, the risk of service interruption at Google remains low.
The retention period of the data depends on the properties used. When using the newer Google Analytics 4 properties, the retention period of your user data is fixed at 14 months. For other so-called event data, we have the option to choose a retention period of 2 months or 14 months.
For Universal Analytics properties, a retention period of 26 months is standardized in Google Analytics for your user data. Then your user data will be deleted. However, we have the option to choose the retention period of user data ourselves. We have five options available for this:
In addition, there is also the option that data will only be deleted if you do not visit our website within the time period chosen by us. In this case, the retention period is reset every time you visit our website again within the specified period.
Once the specified period has expired, the data will be deleted once a month. This retention period applies to your data associated with cookies, user identification, and advertising IDs (e.g., cookies from the DoubleClick domain). Report results are based on aggregated data and are stored independently of user data. Aggregated data is a merger of individual data into a larger unit.
According to the data protection law of the European Union, you have the right to access, update, delete, or restrict your data. By using the browser add-on to disable Google Analytics JavaScript (ga.js, analytics.js, dc.js), you prevent Google Analytics from using your data. You can download and install the browser add-on at https://tools.google.com/dlpage/gaoptout?hl=de. Please note that this add-on only disables data collection by Google Analytics.
If you want to disable, delete, or manage cookies in general (regardless of Google Analytics), each browser has its own instructions:
Chrome: Clear, enable, and manage cookies in Chrome
Safari: Manage cookies and website data with Safari
Firefox: Clear cookies to remove data that websites have placed on your computer
Internet Explorer: Delete and manage cookies
Microsoft Edge: Delete and manage cookies
The use of Google Analytics requires your consent, which we obtained through our cookie popup. According to Art. 6 Para. 1 lit. a GDPR (Consent), this consent is the legal basis for the processing of personal data, as may occur during collection by web analytics tools.
In addition to consent, we have a legitimate interest in analyzing the behavior of website visitors to improve our offering technically and economically. With the help of Google Analytics, we can identify website errors, detect attacks, and improve profitability. The legal basis for this is Art. 6 Para. 1 lit. f GDPR (Legitimate Interests). However, we only use Google Analytics to the extent that you have given consent.
Google processes data, among other places, in the USA. We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This can entail various risks for the legality and security of data processing.
As the basis for data processing with recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially in the USA) or data transfersto such countries, Google uses standard contractual clauses approved by the EU Commission (= Art. 46. Para. 2 and 3 GDPR). These clauses obligate Google to comply with EU data protection standards when processing relevant data outside the EU. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the clauses, among other places, here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.
We hope we have provided you with the most important information about data processing by Google Analytics. If you want to learn more about the tracking service, we recommend these two links: http://www.google.com/analytics/terms/de.html and https://support.google.com/analytics/answer/6004245?hl=de.
We have implemented IP address anonymization for Google Analytics on this website. This feature was developed by Google to allow this website to comply with applicable privacy laws and recommendations of local data protection authorities when they prohibit storage of the full IP address. The anonymization or masking of the IP occurs as soon as the IP addresses arrive in the Google Analytics data collection network and before any storage or processing of the data occurs.
For more information about IP anonymization, visit https://support.google.com/analytics/answer/2763052?hl=de.
We have enabled advertising reporting features in Google Analytics. The reports on demographics and interests contain information about age, gender, and interests. This allows us to gain a better understanding of our users – without being able to identify individual persons based on this data. Learn more about advertising features at https://support.google.com/analytics/answer/3450482?hl=de_AT&utm_id=ad.
You can opt out of the use of your Google account activities and information under “Ad Settings” at https://adssettings.google.com/authenticated.
Email Marketing Summary Affected Parties: Newsletter Subscribers Purpose: Direct advertising by email, notification of system-relevant events Processed Data: Entered data during registration, but at least the email address. More details can be found with the respective email marketing tool used. Storage Duration: Duration of subscription Legal Basis: Art. 6 Para. 1 lit. a GDPR (Consent), Art. 6 Para. 1 lit. f GDPR (Legitimate Interests) |
To keep you informed, we also utilize the opportunity of email marketing. If you have agreed to receive our emails or newsletters, your data will also be processed and stored. Email marketing is a subset of online marketing. It involves sending news or general information about a company, products, or services via email to a specific group of people interested in them.
To participate in our email marketing (usually via newsletters), you typically just need to sign up with your email address. You fill out an online form and submit it. Sometimes, we may ask for your salutation and name to address you personally.
Generally, newsletter sign-ups use the “double opt-in” process. After signing up for our newsletter on our website, you receive an email to confirm your newsletter subscription. This ensures that the email address belongs to you and that no one has signed up with a foreign email address. We or a notification tool we use logs each individual registration. This is necessary so that we can prove the legally correct registration process. Typically, the time of registration, the time of registration confirmation, and your IP address are stored. Additionally, changes to your stored data are also logged.
We naturally want to stay in touch with you and always present you with the most important news about our company. To achieve this, we use email marketing – often simply referred to as “newsletters” – as an essential part of our online marketing. If you agree or if it is legally permitted, we send you newsletters, system emails, or other notifications via email. When we use the term “newsletter” in the following text, we mainly mean regularly sent emails. We aim not to bother you with our newsletters. Therefore, we always strive to provide relevant and interesting content. This way, you can learn more about our company, our services, or products. Since we are constantly improving our offers, you will also be informed about news or special, lucrative promotions through our newsletter. If we engage a service provider that offers a professional mailing tool for our email marketing, we do so to provide you with fast and secure newsletters. The purpose of our email marketing is generally to inform you about new offers and to further our business goals.
If you become a subscriber to our newsletter through our website, you confirm membership in an email list via email. In addition to IP address and email address, your salutation, name, address, and phone number may also be stored. However, only if you agree to this data storage. The data marked as such is necessary for you to participate in the offered service. The information is voluntary, but not providing it means you cannot use the service. Additionally, information about your device or your preferred content on our website may also be stored. More about data storage when you visit a website can be found in the “Automatic Data Storage” section. We record your consent so that we can always prove that it complies with our laws.
If you unsubscribe your email address from our email/newsletter distribution list, we may store your address for up to three years based on our legitimate interests, so that we can still prove your past consent. We may only process this data if we need to defend against any claims.
However, if you confirm that you have given consent to subscribe to the newsletter, you can request individual deletion at any time. If you permanently objectto consent, we reserve the right to store your email address in a blocklist. As long as you voluntarily subscribe to our newsletter, we will of course also keep your email address.
You have the opportunity to cancel your newsletter subscription at any time. To do this, you simply need to revoke your consent to subscribe to the newsletter. This usually takes only a few seconds or one or two clicks. In most cases, you will find a link to unsubscribe from the newsletter directly at the end of each email. If you cannot find the link in the newsletter, please contact us by email, and we will immediately cancel your newsletter subscription.
The sending of our newsletter is based on your consent (Article 6(1)(a) GDPR). That means we can only send you a newsletter if you have actively signed up for it. If you become our customer and have not objected to the use of your email address for direct advertising, we may also send you advertising messages based on Section 7(3) UWG.
Information on specific email marketing services and how they process personal data can be found – if available – in the following sections.
Google Ads (Google AdWords) Conversion Tracking Privacy Policy Summary Affected Parties: Website Visitors Purpose: Economic success and optimization of our service performance. Processed Data: Access statistics, data such as locations of access, device data, access duration and time, navigation behavior, click behavior, and IP addresses. Also, personal data such as name or email address may be processed. Storage Duration: Conversion cookies typically expire after 30 days and do not transmit personal data Legal Basis: Art. 6 Para. 1 lit. a GDPR (Consent), Art. 6 Para. 1 lit.f GDPR (Legitimate Interests) |
We use Google Ads (formerly Google AdWords) as an online marketing measure to promote our products and services. In this way, we aim to attract more people to the high quality of our offerings on the internet. As part of our advertising efforts through Google Ads, we use the conversion tracking provided by Google Inc. However, in Europe, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. With the help of this free tracking tool, we can better tailor our advertising offerings to your interests and needs. In the following article, we want to explain in more detail why we use conversion tracking, what data is stored, and how you can prevent this data storage.
Google Ads (formerly Google AdWords) is Google Inc.’s in-house online advertising system. We are confident in the quality of our offering and want as many people as possible to visit our website. In the online world, Google Ads provides the best platform for this purpose. Of course, we also want to have an accurate overview of the cost-benefit ratio of our advertising campaigns. Therefore, we use Google Ads’ conversion tracking tool.
But what is a conversion, exactly? A conversion occurs when you, as a merely interested website visitor, become an active visitor. This happens whenever you click on our ad and then perform another action, such as visiting our website. With Google’s conversion tracking tool, we capture what happens after a user clicks on our Google Ads ad. For example, we can see if products are purchased, services are used, or if users have signed up for our newsletter.
We use Google Ads to also draw attention to our offering on other websites. The goal is to ensure that our advertising campaigns truly reach only those people who are interested in our offerings. With the conversion tracking tool, we see which keywords, ads, ad groups, and campaigns lead to desired customer actions. We see how many customers interact with our ads on a device and then perform a conversion. Through this data, we can calculate our cost-benefit ratio, measure the success of individual advertising measures, and consequently optimize our online marketing efforts. Furthermore, with the data obtained, we can make our website more interesting for you and tailor our advertising offerings even more individually to your needs.
We have integrated a conversion tracking tag or code snippet on our website to better analyze certain user actions. When you click on one of our Google Ads ads, the cookie “Conversion” is stored on your computer (usually in your browser) or mobile device from a Google domain. Cookies are small text files that store information on your computer.
Here are the data of the most important cookies for Google Ads conversion tracking:
Name: Conversion
Value: EhMI_aySuoyv4gIVled3Ch0llweVGAEgt-mr6aXd7dYlSAGQ111815869-3
Purpose: This cookie stores every conversion you make on our site after coming to us via a Google ad.
Expiration Date: after 3 months
Name: _gac
Value: 1.1558695989.EAIaIQobChMIiOmEgYO04gIVj5AYCh2CBAPrEAAYASAAEgIYQfD_BwE
Purpose: This is a classic Google Analytics cookie used to track various actions on our website.
Expiration Date: after 3 months
Note: The _gac cookie appears to be used only in connection with Google Analytics. The above list is not exhaustive, as Google uses various other cookies for analytical evaluation.
Once you complete an action on our website, Google recognizes the cookie and stores your action as a conversion. As long as you are browsing our website and the cookie has not expired, we and Google recognize that you came to us via our Google Ads ad. The cookie is read and sent back to Google Ads with the conversion data. It is also possible that other cookies are used to measure conversions. Google Ads’ conversion tracking can be further refined and improved with the help of Google Analytics. For ads displayed by Google in various places on the web, cookies with the name “__gads” or “_gac” may be set under our domain. Since September 2017, various campaign information has been stored by analytics.js with the _gac cookie. The cookie stores this data as soon as you visit one of our pages for which automatic tag identification by Google Ads has been set up. Unlike cookies set for Google domains, Google can only read these conversion cookies when you are on our website. We do not collect or receive any personal data. We receive a report with statistical evaluations from Google. For example, we learn the total number of users who clicked on our ad and we see which advertising measures were successful.
At this point, we would like to point out that we have no influence on how Google further uses the data collected. According to Google, the data is encrypted and stored on secure servers. In most cases, conversion cookies expire after 30 days and do not transmit personal data. The cookies named “Conversion” and “_gac” (which is used in conjunction with Google Analytics) have an expiration date of 3 months.
You have the option to not participate in Google Ads conversion tracking. If you deactivate the Google Conversion Tracking cookie through your browser, you block conversion tracking. In this case, you will not be included in the statistics of the tracking tool. You can change the cookie settings in your browser at any time. This works slightly differently in every browser. Here are instructions on how to manage cookies in your browser:
Chrome: Delete, enable, and manage cookies in Chrome
Safari: Manage cookies and website data with Safari
Firefox: Delete cookies to remove data that websites have stored on your computer
Internet Explorer: Delete and manage cookies
Microsoft Edge: Delete and manage cookies
If you generally do not want cookies, you can set up your browser to always inform you when a cookie is to be set. This way, you can decide for each individual cookie whether to allow it or not. By downloading and installing this browser plug-in at https://support.google.com/ads/answer/7395996, all “advertising cookies” are also deactivated. Please note that by deactivating these cookies, you do not prevent the display of advertisements, but only personalized advertising.
If you have consented to the use of Google Ads conversion tracking, the legal basis for the relevant data processing is this consent. According to Art. 6 Para. 1 lit. a GDPR (Consent), this consent is the legal basis for the processing of personal data, as may occur during the collection by Google Ads conversion tracking.
From our side, there is also a legitimate interest in using Google Ads conversion tracking to optimize our online service and marketing measures. The corresponding legal basis for this is Art. 6 Para. 1 lit. f GDPR (Legitimate Interests). However, we only use Google Ads conversion tracking if you have given consent.
Google processes data, among other things, in the USA. We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This can entail various risks for the legality and security of data processing.
As a basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially in the USA) or for data transfers to such countries, Google uses standard contractual clauses approved by the EU Commission (= Art. 46. Para. 2 and 3 GDPR). These clauses oblige Google to comply with EU data protection standards for the processing of relevant data even outside the EU. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the clauses, among other things, here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_de.
If you would like to learn more about data protection at Google, we recommend Google’s general privacy policy: https://policies.google.com/privacy?hl=de.
Content Delivery Networks Privacy Policy Summary Affected Parties: Website Visitors Purpose: Optimization of our service performance (to load the website faster) Processed Data: Data such as your IP address More details on this can be found below and in the individual privacy policies. Storage Duration: Data is usually stored until it is no longer needed to fulfill the service Legal Basis: Art. 6 Para. 1 lit. a GDPR (Consent), Art. 6 Para. 1 lit. f GDPR (Legitimate Interests) |
We use a service called Content Delivery Network (CDN) on our website. Such a network is often simply called CDN. A CDN helps us to load our website quickly and smoothly, regardless of your location. In doing so, personal data about you is stored, managed, and processed on the servers of the CDN provider. Below, we provide general information about the service and its data processing. Detailed information on how your data is handled can be found in the respective privacy policy of the provider.
Each Content Delivery Network (CDN) is a network of regionally distributed servers, all connected to each other via the internet. This network allows contentfrom websites (especially very large files) to be delivered quickly and smoothly, even during peak loads. The CDN creates a copy of our website on its servers. Since these servers are distributed worldwide, the website can be delivered quickly. As a result, data transmission to your browser is significantly shortened by the CDN.
A fast-loading website is part of our service. We know how annoying it is when a website loads at a snail’s pace. Often, one loses patience and leaves before the website is fully loaded. Of course, we want to avoid that. Therefore, a fast-loading website is quite naturally part of our website offering. With a Content Delivery Network, our website is loaded much faster in your browser. The use of the CDN is particularly helpful when you are abroad because the website is delivered from a server near you.
When you request a website or the content of a website and it is cached in a CDN, the CDN forwards the request to the nearest server to you, and that server delivers the content. Content Delivery Networks are structured in a way that JavaScript libraries can be downloaded and hosted on npm and Github servers. Alternatively, most CDNs can also load WordPress plugins if they are hosted on WordPress.org. Your browser may send personal data to the Content Delivery Network we use. This includes data such as IP address, browser type, browser version, which website is being loaded, or the time and date of the page visit. These data are collected and stored by the CDN. Whether cookies are used for data storage depends on the network used. Please refer to the privacy policies of the respective service for more information.
If you want to completely prevent this data transmission, you can install a JavaScript blocker (see, for example, https://noscript.net/) on your PC. Of course, this may affect the usual service of our website (such as fast loading speed).
If you have consented to the use of a Content Delivery Network, the legal basis for the relevant data processing is this consent. According to Art. 6 Para. 1 lit. a GDPR (Consent), this consent is the legal basis for the processing of personal data, as may occur during the collection by a Content Delivery Network.
From our side, there is also a legitimate interest in using a Content Delivery Network to optimize and secure our online service. The corresponding legal basis for this is Art. 6 Para. 1 lit. f GDPR (Legitimate Interests). However, we only use the tool if you have given consent.
Information on specific Content Delivery Networks is provided – if available – in the following sections.
BootstrapCDN Privacy Policy Summary Affected Parties: Website Visitors Purpose: Optimization of our service performance (to load the website faster) Processed Data: Data such as your IP address, browser type, browser version, which website is loaded, or the time and date of the page visit More details on this can be found below in this privacy policy. Storage Duration: Data is usually stored until it is no longer needed to fulfill the service Legal Basis: Art. 6 Para. 1 lit. a GDPR (Consent), Art. 6 Para. 1 lit. f GDPR (Legitimate Interests) |
To deliver all of our individual web pages (subpages of our website) quickly and securely on all devices, we use the Content Delivery Network (CDN) BootstrapCDN, an open-source service provided by jsdelivr.com of the Polish software company ProspectOne, Królewska 65A/1, 30-081, Kraków, Poland. A Content Delivery Network (CDN) is a network of regionally distributed servers connected to each other via the internet. This network enables content, especially very large files, to be delivered quickly even during peak loads.
Naturally, we want to provide you with comprehensive and well-functioning service on our website. This includes a fast website. With jsdelivr.com CDN, our website can be loaded much faster for you. The use of jsdelivr.com CDN is particularly helpful for users abroad, as the site can be delivered from a server nearby.
BootstrapCDN works by delivering JavaScript libraries to your browser. When your browser downloads a file from BootstrapCDN, your IP address is transmitted during the connection to the Bootstrap CDN server. Personal data can therefore also be sent and stored. BootstrapCDN can collect and store user data such as IP address, browser type, browser version, which website is loaded, or the time and date of the page visit. In the BootstrapCDN or jsdelivr.com privacy policy, it is explicitly stated that the company does not use cookies or other tracking services.
BootstrapCDN has servers distributed in various countries, and your data may also be stored outside the European Economic Area. BootstrapCDN retains personal data processed on our behalf for as long as necessary to provide the services offered, as required to fulfill legal obligations, resolve disputes, and enforce agreements.
You always have the right to access, correct, and delete your personal data. If you have any questions, you can also contact the responsible party at BootstrapCDN.
If you want to prevent this data transfer, you can install a JavaScript blocker (see, for example, https://noscript.net/) or disable the execution of JavaScript codes in your browser. Please note, however, that this may affect the usual service of the website (such as fast loading speed).
If you have consented to the use of BootstrapCDN, the legal basis for the relevant data processing is this consent. This consent is the legal basis for the processing of personal data, as may occur during the collection by BootstrapCDN, according to Art. 6 Para. 1 lit. a GDPR (Consent).
From our side, there is also a legitimate interest in using BootstrapCDN to optimize and secure our online service. The corresponding legal basis for this is Art. 6 Para. 1 lit. f GDPR (Legitimate Interests). However, we only use BootstrapCDN if you have given consent.
We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. Data processing is essentially carried out by BootstrapCDN. This may result in data being processed and stored in a non-anonymized manner. Furthermore, US authorities may potentially access individual data. It may also happen that this data is linked with data from other BootstrapCDN services for which you have a user account.
More information on data protection at BootstrapCDN can be found at https://www.jsdelivr.com/terms/privacy-policy-jsdelivr-net.
jQuery CDN Privacy Policy Summary Affected Parties: Website Visitors Purpose: Optimization of our service performance (to load the website faster) Processed Data: Data such as your IP address More details on this can be found below in this privacy policy. Storage Duration: Data is usually stored until it is no longer needed to fulfill the service Legal Basis: Art. 6 Para. 1 lit. a GDPR (Consent), Art. 6 Para. 1 lit. f GDPR (Legitimate Interests) |
To quickly and seamlessly deliver our website or all of our individual subpages (web pages) to you on different devices, we use services from jQuery CDN of the company jQuery Foundation. jQuery is distributed via the Content Delivery Network (CDN) of the American software company StackPath (LCC 2012 McKinney Ave. Suite 1100, Dallas, TX 75201, USA). This service stores, manages, and processes personal data from you. In this privacy policy, we will provide more information on which data of yours is processed through the use of jQuery CDN.
A Content Delivery Network (CDN) is a network of regionally distributed servers connected to each other via the internet. This network enables content, especially very large files, to be delivered quickly even during peak loads. jQuery creates a copy of our website on its servers. Thus, our website can be delivered as quickly as possible. This means that data transmission to your browser is shortened by a CDN.
Selbstverständlich wollen wir Ihnen mit unserer Website einen umfassenden und gut funktionierenden Service bieten. Dazu zählt auch eine schnelle Website. Mit jQuery kann unsere Website bei Ihnen viel schneller geladen werden. Besonders hilfreich wird der Einsatz von jQuery für User aus dem Ausland, da hier die Seite von einem Server in der Nähe ausgeliefert werden kann.
jQuery utilizes JavaScript libraries to deliver our website content quickly. To achieve this, a CDN server loads the necessary files. Once a connection to the CDN server is established, your IP address is collected and stored. This only occurs if these data are not already stored in your browser from a previous website visit.
In StackPath’s privacy policy, it is explicitly mentioned that StackPath uses aggregated and anonymized data from various services (including jQuery) to enhance security and for its own services. However, these data cannot identify you as an individual.
jQuery or StackPath has servers distributed across different countries, so your data may be stored in both America and the European Economic Area. StackPath retains personal data processed on our behalf for as long as necessary to provide the services offered, fulfill legal obligations, resolve disputes, and enforce agreements.
You always have the right to access, correct, and delete your personal data. If you have any questions, you can also contact the responsible party at jQuery.
If you do not want data transmission to occur, you can also install JavaScript blockers such as noscript.net. However, please note that this may affect the website’s usual functions, such as loading speed.
If you have consented to the use of jQuery CDN, the legal basis for the corresponding data processing is this consent. According to Art. 6 para. 1 lit. a GDPR (Consent), this consent is the legal basis for the processing of personal data that may occur when collected by jQuery CDN.
From our side, there is also a legitimate interest in using jQuery CDN to optimize and secure our online service. The corresponding legal basis for this is Art. 6 para. 1 lit. f GDPR (Legitimate interests). However, we only use the tool to the extent that you have given consent.
We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. Data processing is mainly done by jQuery CDN, which may result in data being processed and stored without anonymization. Furthermore, US government authorities may access individual data. It may also happen that these data are linked with data from other services of jQuery CDN, where you have a user account.
For more information on privacy at StackPath, please visit https://www.stackpath.com/legal/privacy-statement/, and for jQuery, please visit https://openjsf.org/wp-content/uploads/sites/84/2019/11/OpenJS-Foundation-Privacy-Policy-2019-11-15.pdf.
jsdelivr.com-CDN Privacy Policy Summary Data subjects: Visitors to the website Purpose: Optimization of our service performance (to load the website faster) Processed data: Data such as your IP address, browser type, browser version, which webpage is loaded, or the time and date of the visit For more details, see below in this privacy policy. Storage duration: Most data are stored until they are no longer needed to fulfill the service Legal basis: Art. 6 para. 1 lit. a GDPR (Consent), Art. 6 para. 1 lit. f GDPR (Legitimate interests) |
To quickly and flawlessly deliver our individual web pages to you on all different devices, we use the open-source services of jsdelivr.com provided by the Polish software company ProspectOne, Królewska 65A/1, 30-081, Kraków, Poland. This is a Content Delivery Network (CDN), a network of regionally distributed servers connected via the internet. This allows content, especially largefiles, to be delivered quickly and efficiently even during peak loads.
Of course, we want to provide you with comprehensive and well-functioning service on our website. This includes a fast website. With jsdelivr.com-CDN, our website can load much faster for you. The use of jsdelivr.com-CDN is particularly helpful for users from abroad, as the page can be delivered from a nearby server.
jsDelivr is designed to download JavaScript libraries hosted on npm and GitHub servers. However, WordPress plugins hosted on WordPress.org can also be loaded. To provide this service, your browser may send personal data to jsdelivr.com. Therefore, jsDelivr may collect and store user data such as IP address, browser type, browser version, which webpage is loaded, or the time and date of the visit. In the privacy policy of jsdelivr.com, it is explicitly stated that the company does not use cookies or other tracking services.
jsDelivr has servers distributed across different countries, and your data may also be stored outside the European Economic Area. jsDelivr retains personal data processed on our behalf for as long as necessary to provide the services offered, fulfill legal obligations, resolve disputes, and enforce agreements.
You always have the right to access, correct, and delete your personal data. If you have any questions, you can also contact the responsible party at jsdelivr.com-CDN.
If you wish to prevent this data transmission, you can install a JavaScript blocker (see, for example, https://noscript.net/). Please note, however, that this may affect the website’s usual service (such as fast loading speed).
If you have consented to the use of jsdelivr.com-CDN, the legal basis for the corresponding data processing is this consent. According to Art. 6 para. 1 lit. a GDPR (Consent), this consent is the legal basis for the processing of personal data that may occur when collected by jsdelivr.com-CDN.
From our side, there is also a legitimate interest in using jsdelivr.com-CDN to optimize and secure our online service. The corresponding legal basis for this is Art. 6 para. 1 lit. f GDPR (Legitimate interests). However, we only use the tool to the extent that you have given consent.
For more information on data processing by the software service jsDelivr, please refer to the company’s privacy policy at https://www.jsdelivr.com/privacy-policy-jsdelivr-net.
Payment Providers Privacy Policy Summary Data subjects: Visitors to the website Purpose: Facilitation and optimization of the payment process on our website Processed data: Data such as name, address, bank details (account number, credit card number, passwords, TANs, etc.), IP address, and contract data For more details, see the respective payment provider tool used. Storage duration: Depends on the payment provider used Legal basis: Art. 6 para. 1 lit. b GDPR (Performance of a contract) |
We use online payment systems on our website that allow us and you to have a secure and smooth payment process. In doing so, personal data may be sent to, stored, and processed by the respective payment provider. Payment providers are online payment systems that allow you to place an order via online banking. The payment processing is carried out by the payment provider you choose. We subsequently receive information about the payment made. Any user with an active online banking account with a PIN and TAN can use this method. There are hardly any banks that do not offer or accept such payment methods.
We naturally want to provide the best possible service with our website and integrated online shop, so that you feel comfortable on our site and use our offers. We understand that your time is valuable and that payment processing, in particular, must work quickly and smoothly. For these reasons, we offer you various payment providers. You can choose your preferred payment provider and pay in the usual way.
Which data is processed exactly depends, of course, on the respective payment provider. However, in general, data such as name, address, bank details (account number, credit card number, passwords, TANs, etc.) are stored. These are necessary data to be able to carry out a transaction at all. In addition, contract data and user data, such as when you visit our website, which content you are interested in, or which subpages you click on, may also be stored. Your IP address and information about your computer are also stored by most payment providers.
The data is usually stored and processed on the servers of the payment providers. We as website operators do not receive this data. We are only informed whether the payment was successful or not. For identity and credit checks, it may happen that payment providers forward data to the appropriate authority. For all payment transactions, the business and data protection guidelines of the respective provider always apply. Therefore, please also take a look at the general terms and conditions and the privacy policy of the payment provider. You also have the right to have data deleted or corrected at any time. Please contact the respective service provider regarding your rights (right of withdrawal, right to information, and right to be affected).
We will inform you about the duration of data processing further down if we have more information about it. In general, we only process personal data for as long as it is absolutely necessary to provide our services and products. If, for example, it is legally required, as in the case of accounting, this storage period can also be exceeded. We keep booking receipts (invoices, contracts, bank statements, etc.) belonging to a contract for 10 years (§ 147 AO) and other relevant business documents for 6 years (§ 247 HGB) after they arise.
You always have the right to information, correction, and deletion of your personal data. If you have any questions, you can also contact the responsible person of the payment provider at any time. You can find contact details either in our specific privacy policy or on the website of the respective payment provider.
You can delete, disable, or manage cookies that payment providers use for their functions in your browser. Depending on which browser you use, this works in different ways. Please note, however, that this may cause the payment process to no longer function.
So, we offer, in addition to conventional banking/credit institutions, other payment service providers for the processing of contractual or legal relationships (Art. 6 para. 1 lit. b GDPR). In the privacy policies of the individual payment providers (such as Amazon Payments, Apple Pay, or Discover), you will be provided with a detailed overview of data processing and data storage. In addition, you can always contact the responsible parties with questions about data protection-related issues.
You can find information about specific payment providers – if available – in the following sections.
Social Media Privacy Policy Summary Affected: Website visitors Purpose: Presentation and optimization of our service, contact with visitors, interested parties, etc., advertising Processed data: Data such as telephone numbers, email addresses, contact details, user behavior data, information about your device, and your IP address. For more details, see the respective social media tool. Storage period: dependent on the social media platforms used Legal bases: Art. 6 para. 1 lit. a GDPR (Consent), Art. 6 para. 1 lit. f GDPR (Legitimate interests) |
In addition to our website, we are also active on various social media platforms. Data from users may be processed so that we can address users interested in us through social networks. In addition, elements of a social media platform may be directly embedded in our website. This is the case, for example, when you click on a so-called social button on our website and are redirected directly to our social media presence. Social media refers to websites and apps where registered members produce content, exchange content openly or in specific groups, and can connect with other members.
For years, social media platforms have been the place where people communicate and connect online. With our social media presence, we can introduce our products and services to interested parties. The social media elements integrated into our website help you quickly and easily switch to our social media content.
The data stored and processed through your use of a social media channel primarily serves the purpose of conducting web analytics. The aim of these analyses is to be able to develop more precise and personalized marketing and advertising strategies. Depending on your behavior on a social media platform, suitable conclusions can be drawn about your interests with the help of the evaluated data, and so-called user profiles can be created. This allows platforms to present you with tailored advertisements. Usually, cookies are set in your browser for this purpose, which store data about your usage behavior.
We generally assume that we remain responsible for data protection even when using services of a social media platform. However, the European Court of Justice has ruled that in certain cases, the operator of the social media platform may be jointly responsible with us within the meaning of Article 26 GDPR. If this is the case, we will point this out separately and work on the basis of an agreement in this regard. The essential aspects of the agreement are then reproduced below for the relevant platform.
Please note that when using social media platforms or our integrated elements, data about you may also be processed outside the European Union, as many social media channels, such as Facebook or Twitter, are American companies. As a result, you may no longer be able to easily enforce or assert your rights regarding your personal data.
Which data is exactly stored and processed depends on the respective provider of the social media platform. However, it usually involves data such as telephone numbers, email addresses, data entered into a contact form, user data such as which buttons you click, whom you like, or follow, when you visited which pages, information about your device, and your IP address. Most of this data is stored in cookies. Especially if you have a profile on the visited social media channel and are logged in, data can be linked to your profile.
All data collected through a social media platform is also stored on the providers’ servers. Therefore, only the providers have access to the data and can provide you with the appropriate information or make changes.
If you want to know exactly which data is stored and processed by the social media providers and how you can object to data processing, you should carefully read the respective company’s privacy policy. Also, if you have questions about data storage and processing or want to assert corresponding rights, we recommend that you contact the provider directly.
We will inform you about the duration of data processing further down if we have more information about it. For example, the social media platform Facebook stores data until it is no longer needed for its own purposes. Customer data that is compared with the company’s own user data is deleted within two days. In general, we only process personal data for as long as it is absolutely necessary to provide our services and products. If, as in the case of accounting, it is legally required, this storage period can also be exceeded.
You also have the right and the option to revoke your consent to the use of cookies or third parties such as embedded social media elements at any time. This can be done either through our cookie management tool or through other opt-out functions. For example, you can also prevent the collection of data through cookies by managing, disabling, or deleting cookies in your browser.
Since cookies can be used in social media tools, we also recommend our general privacy policy on cookies. To find out exactly which data is stored and processed about you, you should read the privacy policies of the respective tools.
If you have consented to data processing and storage by embedded social media elements, this consent is the legal basis for data processing (Art. 6 para. 1 lit. a GDPR). In principle, your data is also stored and processed on the basis of our legitimate interests (Art. 6 para. 1 lit. f GDPR) in fast and good communication with you or other customers and business partners. However, we only use the tools to the extent that you have given consent. Most social media platforms also use cookies in your browser to store data. Therefore, we recommend that you read our privacy text on cookies carefully and view the privacy policy or cookie policies of the respective service provider.
Information about specific social media platforms can be found – if available – in the following sections.
Google Maps Privacy Policy Summary Affected: Website visitors Purpose: Optimization of our service Processed data: Data such as entered search terms, your IP address, and also the latitude and longitude coordinates. For more details, see this privacy policy further down. Storage period: dependent on the stored data Legal bases: Art. 6 para. 1 lit. a GDPR (Consent), Art. 6 para. 1 lit. f GDPR (Legitimate interests) |
We use Google Maps from Google Inc. on our website. For the European region, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. With Google Maps, we can better show you locations and tailor our service to your needs. By using Google Maps, data is transferred to Google and stored on Google’s servers. Here we want to go into more detail about what Google Maps is, why we use this Google service, what data is stored, and how you can prevent this.
Google Maps is an internet mapping service provided by Google. With Google Maps, you can search for precise locations of cities, sights, accommodations, or businesses online via a PC, tablet, or app. If companies are represented on Google My Business, additional information about the company is displayed in addition to the location. Map sections of a location can be embedded in a website using HTML code to display directions. Google Maps displays the Earth’s surface as a road map or as an aerial or satellite image. Thanks to the Street View images and the high-quality satellite images, very accurate representations are possible.
All our efforts on this page aim to provide you with a useful and meaningful time on our website. By integrating Google Maps, we can provide you with the most important information about various locations. You can see at a glance where our company is located. The directions always show you the best or fastest way to us. You can retrieve the directions for routes by car, public transport, on foot, or by bicycle. For us, providing Google Maps is part of our customer service.
In order for Google Maps to offer its service completely, the company must record and store data from you. This includes, among other things, the entered search terms, your IP address, and also the latitude and longitude coordinates. If you use the route planner function, the entered start address is also stored. However, this data storage takes place on the Google Maps websites. We can only inform you about this but cannot influence it. Since we have integrated Google Maps into our website, Google sets at least one cookie (name: NID) in your browser. This cookie stores data about your user behavior. Google primarily uses this data to optimize its own services and to provide individual, personalized advertising for you.
The following cookie is set in your browser due to the integration of Google Maps:
Name: NID
Value: 188=h26c1Ktha7fCQTx8rXgLyATyITJ111815869-5
Purpose: NID is used by Google to tailor advertisements to your Google search. With the help of the cookie, Google remembers your most frequently entered search queries or your previous interaction with advertisements. This way, you always get tailored ads. The cookie contains a unique ID that Google uses to collect your personal settings for advertising purposes.
Expiry date: after 6 months
Note: We cannot guarantee the completeness of the information on the stored data. Changes are always possible, especially when using cookies. In order to identify the NID cookie, a separate test page was created where only Google Maps was integrated.
Google’s servers are located in data centers around the world. However, most servers are located in America. For this reason, your data is also increasingly stored in the USA. You can read exactly where the Google data centers are located here: https://www.google.com/about/datacenters/inside/locations/?hl=en
Google distributes the data across various disks. This makes the data faster to access and better protected against any attempts at manipulation. Each data center also has special emergency programs. For example, if there are problems with Google’s hardware or a natural disaster disables the servers, the data remains fairly safe.
Google stores some data for a specified period. For other data, Google only offers the option to delete it manually. Furthermore, the company also anonymizes information (such as advertising data) in server logs by deleting part of the IP address and cookie information after 9 or 18 months.
With the automatic deletion function introduced in 2019 for location and activity data, information for location determination and web/app activity is stored for either 3 or 18 months, depending on your decision, and then deleted. Additionally, you can also manually delete this data from your history via your Google account at any time. If you want to completely prevent location tracking, you need to pause the “Web & App Activity” section in your Google account. Click “Data & Personalization” and then the “Activity Settings” option. Here you can turn activities on or off.
You can also disable, delete, or manage individual cookies in your browser. Depending on which browser you use, this works slightly differently. The following instructions show you how to manage cookies in your browser:
Chrome: Clear, enable, and manage cookies in Chrome
Safari: Manage cookies and website data with Safari
Firefox: Delete cookies to remove data that websites have stored on your computer
Internet Explorer: Delete and manage cookies
Microsoft Edge: Delete and manage cookies
If you don’t want to accept any cookies at all, you can configure your browser to notify you whenever a cookie is set. This way, you can decide whether to allow each individual cookie.
Please note that when using this tool, your data may also be stored and processed outside the EU. According to current European data protection law, most third countries (including the USA) are considered unsafe. Data may not be transferred, stored, and processed in unsafe third countries unless appropriate guarantees (such as EU standard contractual clauses) exist between us and the non-European service provider.
If you have consented to the use of Google Maps, the legal basis for the corresponding data processing is this consent. According to Art. 6 para. 1 lit. a GDPR (Consent), this consent forms the legal basis for the processing of personal data, as may occur during data collection by Google Maps.
From our side, there is also a legitimate interest in using Google Maps to optimize our online service. The corresponding legal basis for this is Art. 6 para. 1 lit. f GDPR (Legitimate interests). However, we only use Google Maps to the extent that you have given consent.
Google processes data, among other places, in the USA. We would like to point out that, according to the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This can entail various risks for the legality and security of data processing.
As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially in the USA) or for data transfers to such countries, Google uses EU Commission-approved standard contractual clauses (= Art. 46 para. 2 and 3 GDPR). These clauses oblige Google to comply with EU data protection standards in processing relevant data outside the EU. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the clauses, among other places, here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_en.
If you want to learn more about Google’s data processing, we recommend that you consult the company’s own privacy policy at https://policies.google.com/privacy?hl=en.
On our website, we use Google Fonts provided by Google Inc. For the European region, the responsible company is Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland). We have locally integrated the Google fonts, i.e., on our web server – not on Google’s servers. This means there is no connection to Google servers and thus no data transmission or storage.
Google Fonts, formerly known as Google Web Fonts, is an interactive directory with over 800 fonts that Google provides for free. With Google Fonts, you can use fonts without uploading them to your own server. However, to prevent any information transfer to Google servers, we have downloaded the fonts to our server. This way, we act in compliance with data protection regulations and do not send any data to Google Fonts.
Summary of Google Fonts Privacy Policy Affected parties: Website visitors Purpose: Optimization of our service Processed data: Data such as IP address and CSS and font requests For more details, please see below in this privacy policy. Storage period: Font files are stored at Google for one year Legal basis: Art. 6 para. 1 lit. a GDPR (Consent), Art. 6 para. 1 lit. f GDPR (Legitimate interests) |
On our website, we use Google Fonts, also known as “Google fonts” from Google Inc. For the European region, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services.
Using Google Fonts does not require you to log in or set a password. Furthermore, no cookies are stored in your browser. The files (CSS, fonts) are requested via the Google domains fonts.googleapis.com and fonts.gstatic.com. According to Google, the requests for CSS and fonts are completely separate from all other Google services. If you have a Google account, you don’t need to worry about your Google account data being transmitted to Google while using Google Fonts. Google captures the usage of CSS (Cascading Style Sheets) and the fonts used, securely storing this data. We will take a closer look at how data storage works in detail.
Google Fonts (formerly Google Web Fonts) is a directory with over 800 fonts that Google provides to its users for free.
Many of these fonts are published under the SIL Open Font License, while others have been published under the Apache License. Both are free software licenses.
With Google Fonts, we can use fonts on our own website without having to upload them to our own server. Google Fonts is an important component for maintaining the quality of our website. All Google fonts are automatically optimized for the web, saving data volume, which is a great advantage, especially for use on mobile devices. When you visit our site, the low file size ensures fast loading times. Furthermore, Google Fonts are secure web fonts. Different rendering systems in various browsers, operating systems, and mobile devices can cause errors. Such errors can distort texts or entire websites visually. Thanks to the fast Content Delivery Network (CDN), there are no cross-platform issues with Google Fonts. Google Fonts supports all major browsers (Google Chrome, Mozilla Firefox, Apple Safari, Opera) and works reliably on most modern mobile operating systems, including Android 2.2+ and iOS 4.2+ (iPhone, iPad, iPod). So we use Google Fonts to present our entire online service as beautifully and consistently as possible.
When you visit our website, the fonts are loaded via a Google server. This external call transmits data to Google servers. Google also recognizes that you or your IP address have visited our website. The Google Fonts API was developed to reduce the use, storage, and collection of end-user data to what is necessary for the proper provision of fonts. API stands for “Application Programming Interface” and serves, among other things, as a data transmitter in the software field.
Google Fonts securely stores CSS and font requests at Google, thus being protected. Google can determine how well each font is received through the collected usage numbers. Google publishes the results on internal analysis pages, such as Google Analytics. Google also uses data from its own web crawler to determine which websites use Google fonts. This data is published in Google Fonts’ BigQuery database. Entrepreneurs and developers use Google’s BigQuery web service to analyze and move large amounts of data.
However, it should be noted that with each Google Font request, information such as language settings, IP address, browser version, browser screen resolution, and browser name are automatically transmitted to Google servers. Whether this data is also stored is not clearly determinable or is not clearly communicated by Google.
Google stores requests for CSS assets on its servers for one day, primarily located outside the EU. This enables us to use Google Stylesheets to use the fonts. A stylesheet is a template that allows you to easily and quickly change the design or fontof a website.
The font files are stored by Google for one year. Google aims to improve the loading time of websites in general. When millions of websites refer to the same fonts, they are cached after the first visit and immediately appear on all other subsequently visited websites. Sometimes Google updates font files to reduce file size, increase language coverage, and improve design.
The data that Google stores for one day or one year cannot be deleted easily. The data is automatically transmitted to Google when the page is accessed. To delete this data prematurely, you must contact Google support at https://support.google.com/?hl=en&tid=111815869. In this case, you can only prevent data storage by not visiting our site.
Unlike other web fonts, Google allows us unrestricted access to all fonts. So we can access an unlimited number of fonts and get the best for our website. More about Google Fonts and other questions can be found at https://developers.google.com/fonts/faq?tid=111815869. While Google does address privacy-related matters, detailed information about data storage is not included. It is relatively difficult to get precise information from Google about stored data.
If you have consented to the use of Google Fonts, the legal basis for the corresponding data processing is this consent. According to Art. 6 para. 1 lit. a GDPR (Consent), this consent forms the legal basis for the processing of personal data, as may occur during data collection by Google Fonts.
From our side, there is also a legitimate interest in using Google Fonts to optimize our online service. The corresponding legal basis for this is Art. 6 para. 1 lit. f GDPR (Legitimate interests). However, we only use Google Fonts to the extent that you have given consent.
Google processes data, among other places, in the USA. We would like to point out that, according to the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This can entail various risks for the legality and security of data processing.
As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, especially in the USA) or for data transfers to such countries, Google uses EU Commission-approved standard contractual clauses (= Art. 46 para. 2 and 3 GDPR). These clauses oblige Google to comply with EU data protection standards in processing relevant data outside the EU. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the clauses, among other places, here: https://ec.europa.eu/germany/news/20210604-datentransfers-eu_en.
You can also read about what data Google generally collects and for what purposes on https://www.google.com/intl/en/policies/privacy/.
Font Awesome Privacy Policy Summary Affected parties: Website visitors Purpose: Optimization of our service Processed data: Data such as IP address and which icon files are loaded More details can be found below in this privacy policy. Storage period: Files in identifiable form are stored for a few weeks Legal basis: Art. 6 para. 1 lit. a GDPR (Consent), Art. 6 para. 1 lit. f GDPR (Legitimate interests) |
We use Font Awesome on our website from the American company Fonticons (307 S. Main St., Suite 202, Bentonville, AR 72712, USA). When you visit one of our web pages, the Font Awesome web font (specifically icons) is loaded via the Font Awesome Content Delivery Network (CDN). This ensures that the text or fonts and icons are displayed appropriately on every device. In this privacy policy, we provide further details on the data storage and processing by this service.
Icons play an increasingly important role for websites. Font Awesome is a web font designed specifically for web designers and developers. With Font Awesome, icons can be scaled and colored as desired using the stylesheet language CSS. They replace old image icons. The Font Awesome CDN is the easiest way to load icons or fonts onto your website. We only had to include a small line of code in our website for this purpose.
Font Awesome allows content on our website to be better presented. This makes it easier for you to navigate our website and understand the content more easily. With the icons, sometimes entire words can be replaced, saving space. This is particularly useful when we optimize content specifically for smartphones. These icons are inserted as HTML code instead of images. This allows us to edit the icons with CSS however we want. At the same time, we also improve our loading speed with Font Awesome because they are only HTML elements and not icon images. All these advantages help us make the website even clearer, fresher, and faster for you.
The Font Awesome Content Delivery Network (CDN) is used to load icons and symbols. CDNs are networks of servers distributed worldwide that allow files to be quickly loaded from nearby locations. As soon as you visit one of our pages, the corresponding icons from Font Awesome are provided.
In order to load the web fonts, your browser must establish a connection to the servers of the company Fonticons, Inc. Your IP address is recognized during this process. Font Awesome also collects data on which icon files are downloaded when. Furthermore, technical data such as your browser version, screen resolution, or the time of the page call are transmitted.
These data are collected and stored for the following reasons:
If your browser does not allow web fonts, the default font of your PC will be used automatically. As far as we know, no cookies are set at the moment. We are in contact with the data protection department of Font Awesome and will inform you as soon as we have more information.
Font Awesome stores data on the use of the content delivery network on servers also in the United States of America. However, the CDN servers are located worldwide and store user data where they are located. Data in identifiable form is usually stored for only a few weeks. Aggregated statistics on the use of the CDNs can also be stored for longer periods. Personal data is not included here.
As far as we know, Font Awesome does not store personal data about the content delivery networks. If you do not want data about the icons used to be stored, unfortunately, you cannot visit our website. If your browser does not allow web fonts, no data will be transferred or stored. In this case, the default font of your computer will simply be used.
If you have consented to the use of Font Awesome, the legal basis for the corresponding data processing is this consent. This consent constitutes the legal basis for the processing of personal data, as may occur during data collection by Font Awesome, according to Art. 6 para. 1 lit. a GDPR (Consent).
From our side, there is also a legitimate interest in using Font Awesome to optimize our online service. The corresponding legal basis for this is Art. 6 para. 1 lit. f GDPR (Legitimate interests). However, we only use Font Awesome to the extent that you have given consent.
We would like to point out that, according to the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. Data processing is mainly carried outby Font Awesome. This may result in data being processed and stored non-anonymously. Furthermore, US authorities may access individual data. It may also happen that this data is linked with data from other services of Font Awesome where you have a user account.
If you want to learn more about Font Awesome and their handling of data, we recommend the privacy policy at https://fontawesome.com/privacy and the help page at https://fontawesome.com/help.
All texts are protected by copyright.
Source: Created with the Data Protection Generator by AdSimple
Wilhelm-Spazier-Straße 1, 5020 Salzburg