The responsible body within the context of the data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:
Joy Media AG
6052 Hergiswil NW
In cooperation with our hosting providers, we make every effort to protect the databases as well as possible from unauthorised access, loss, misuse or manipulation. We would point out that data transfer via the internet (e.g., communication by email) may have security vulnerabilities. It is not possible to fully protect data against unauthorised third party access.
By using this website, you consent to the collection, processing and use of data as described below. This website can generally be visited without registration. In the process, data such as pages opened or the name of the file opened, date and time is saved on the server for statistical purposes without this data being directly related to your person. Personal data, in particular name, address or email address, is collected on a voluntary basis as far as possible. The data will not be forwarded to third parties without your consent.
Processing of personal data
Personal data is any information relating to an identified or identifiable natural person. A data subject is a person about whom personal data is processed. Processing includes any handling of personal data, regardless of the means and procedures used, in particular the retention, disclosure, acquisition, deletion, storage, modification, destruction and use of personal data. We process personal data in accordance with Swiss data protection law. Furthermore, we process personal data in accordance with the following legal bases in connection with Art. 6 Para. 1 of the GDPR – insofar as and to the extent that the EU GDPR is applicable.
- (a) Processing of personal data with the consent of the data subject.
- (b) Processing of personal data to fulfil a contract with the data subject and for the implementation of corresponding pre-contractual measures.
- (c) Processing of personal data to fulfil a legal obligation to which we are subject under any applicable law ofthe EU or under any applicable law of a country in which the GDPR applies in whole or in part.
- (d) Processing of personal data in order to protect the vital interests of the data subject or of anothernatural person.
- (e) Processing of personal data in order to protect the legitimate interests of ourselves or third parties,provided that the fundamental freedoms and rights and interests of the data subject do not prevail.Legitimate interests are in particular our business interest in being able to make our website available,information security, the enforcement of our own legal claims and compliance with Swiss law.
We process personal data for the period of time required by the respective purpose or purposes. In the case of longer-term retention obligations due to legal and other obligations we are subject to, we restrict processing accordingly.
This website uses SSL/TLS encryption for security reasons and in order to ensure that confidential information, such as enquiries you send to us as the owner of this website, is protected while it is being transmitted. When a connection is encrypted, the ‘http://’ in the address bar in your browser will change to ‘https://’ and a padlock symbol will appear next to it. When SSL or TLS encryption is active, third parties will not be able to read the data you send to us.
Security of data transfer (without SSL)
Please note that data transmitted via an open network such as the internet or an email service without SSL encryption can be viewed by anyone. When a connection is not encrypted, the address bar of your browser will show ‘http://’ and there will be no padlock symbol next to it. Information transmitted via the internet and contents received online may be transmitted via third-party networks. We cannot guarantee the confidentiality of communications or materials transmitted over such open or third-party networks.
If you disclose personal information via an open or third-party network, you should be aware that your information may be lost or potentially accessed by third parties and consequently the information may be collected and used without your consent. While in many cases the individual data packages are transmitted in encrypted form, the names of the sender and recipient are not. Even if the sender and recipient reside in the same country, the data transmission via such networks often also takes place without controls via third countries, i.e. also via countries that do not offer the same level of data protection as your country of domicile. We assume no responsibility for the security of your data during transmission via the internet and disclaim any liability for direct or indirect losses. We ask you to use other means of communication should you consider this necessary or reasonable for security reasons. Despite extension technical and organisational security precautions, it is possible that data may be lost or intercepted and/or manipulated by unauthorised persons. As far as possible, we take suitable technical and organisational security measures to prevent this from happening within our system. However, your computer is outside the security area under our control. It is your responsibility as a user to find out about the necessary security precautions and to take appropriate measures in this regard. As the website operator, we are in no way liable for any damage that you may suffer as a result of data loss or manipulation.
Data that you enter on online forms may be passed on to authorised third parties for the purpose of order processing and may be viewed and possibly processed by them.
The provider of this website automatically collects and saves information in what are known as server log files, which your browser transmits to us automatically. This includes:
- Browser type and browser version
- Operating system used
- Referrer URL
- Host name of accessing computer
- Time of server request
This data cannot be assigned to specific persons This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of concrete evidence of illegal use.
Services from third parties
This website may use Google Maps for embedding maps, Google Invisible reCAPTCHA for protection against bots and spam as well as YouTube for embedding videos.
Google has undertaken to ensure adequate data protection in accordance with the US-European and the US-Swiss Privacy Shield.
When you send us enquiries using the contact form, we will save the details you provide in the contact form – including the contact details you provide therein – in order to allow us to process your enquiry and contact you if we have any further questions. We will not pass this data on without your consent.
If you would like to receive the newsletter offered on this website, we require a valid email address as well as information that allows us to verify that you are the owner of the specified email address and that you agree to receive this newsletter. No additional data is collected. We only use this data to send the requested information and do not pass it on to third parties. You may revoke consent to the storage of your data and email address as well as their use for sending the newsletter at any time, for example by using the ‘Unsubscribe’ link in the newsletter.
Rights of data subjects
Right to confirmation
Every data subject has the right to request confirmation from us as to whether personal data relating to the data subject will be processed. If you wish to exercise this right to confirmation, you can contact the data protection officer at any time.
Right to information
Any data subject affected by the processing of personal data has the right to receive information free of charge from the operator of this website about the personal data stored about them and a copy of this information at any time. Furthermore, information on the following can be provided, if applicable:
- the purposes of processing
- the categories of personal data being processed
- the recipients to whom the personal data has been or is still being disclosed
- if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration
- the existence of a right to rectification or erasure of personal data concerning the data subject or to restriction of processing by the controller or of a right to oppose such processing
- the existence of a right of appeal to a supervisory authority
Furthermore, the data subject has the right to be informed whether personal data has been transmitted to a third country or to an international organisation. If this is the case, the data subject also has the right to obtain information about the appropriate safeguards in connection with the transmission.
If you wish to exercise this right to information, you can contact our data protection officer at any time.
Right to rectification
Any data subject affected by the processing of personal data has the right to request the immediate rectification of any incorrect personal data that relates to them. Furthermore, the data subject has the right to request the completion of incomplete personal data, including through a supplementary declaration, taking into account the purposes of the processing. If you wish to exercise this right to rectification, you can contact our data protection officer at any time.
Right to erasure (right to be forgotten)
Any data subject affected by the processing of personal data has the right to request from the controller of the website that personal data regarding the data subject be erased without delay if one of the reasons stipulated below applies and in as far as the processing is not necessary:
- The personal data has been collected or otherwise processed for purposes for which it is no longer necessary
- The data subject withdraws their consent on which the processing was based, and there is no longer a legal basis for it to be processed
- The data subject objects to the processing on grounds relating to their particular situation and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing in the case of direct marketing and related profiling
- The personal data has been processed unlawfully
- The erasure of the personal data is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.
- The person data has been collected in relation to information society services offered directly to a child
If one of the above reasons applies and you wish to arrange for the erasure of personal data stored by the operator of this website, you can contact our data protection officer at any time. The data protection officer of this website will arrange for the erasure request to be complied with immediately.
Right to the restriction of processing
Any data subject affected by the processing of personal data has the right to request that the controller of this website immediately restricts processing if the one of the following conditions is met:
- The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data
- The processing is unlawful, the data subject objects to the erasure of the personal data and requests the restriction of the use of personal data instead
- The controller no longer needs the personal data for the purpose of processing, but the data subject needs it to assert, exercise or defend legal claims.
- The data subject has objected to the processing on grounds relating to their particular situation and it is not yet clear whether the legitimate grounds of the controller override those of the data subject
If one of the above conditions is met and you wish to request the restriction of personal data stored by the operator of this website, you can contact our data protection officer at any time. The data protection officer for this website will arrange for restriction of processing.
Right to data portability
Any data subject affected by the processing of personal data has the right to obtain personal data relating to the data subject in a structured, commonly used and machine-readable format. They also have the right to have this data transferred to another controller if the legal requirements are met.
Furthermore, the data subject has the right to have personal data transferred directly from one data controller to another, provided this is technically feasible and does not impede the rights and freedoms of other persons.
To assert the right to data portability, you can contact the data protection officer appointed by the operator of this website at any time.
Right to object
Any data subject affected by the processing of personal data has the right to lodge an objection to the processing of personal data relating to them for reasons relating to their particular situation.
In the event of an objection, the operator of this website will no longer process the personal data unless we can demonstrate compelling and legitimate reasons for such processing that outweigh the interests, rights and freedoms of the data subject, or where processing serves the assertion, exercise or defence of legal claims.
To exercise your right to object, you can contact the data protection officer of this website directly.
Right to revoke consent under data protection law
Any data subject affected by the processing of personal data has the right to revoke their given consent to the processing of personal data at any time. If you wish to exercise this right to revoke consent, you can contact our data protection officer at any time.
We hereby object to the use of the contact information published as part of our obligation under German law to provide a ‘Legal Notice’ (legal information for our company) to deliver any advertising or information materials that we have not expressly requested. The owners of the webpages expressly reserve the right to take legal action in response to the receipt of any unsolicited advertising information, e.g. in the form of spam emails.
For the provision of chargeable services, we request additional data, such as payment details, in order to be able to execute your order. We store this data in our systems until the statutory retention periods have expired.
This website uses Google conversion tracking. If you have accessed our website via an ad placed by Google, Google Ads will set a cookie on your computer. The conversion-tracking cookie is placed when a user clicks on an ad placed by Google. These cookies expire after 30 days and are not used for personal identification. Should the user visit certain pages of the website before the cookie has expired, we and Google will be able to tell that the user has clicked on the ad and proceeded to the page in question. Every Google Ads customer receives a different cookie. This means that cookies cannot be tracked via the websites of Ads customers. Information collected by means of conversion cookies helps create conversion statistics for Ads customers who use the conversion-tracking service. Customers learn how many users in total have clicked on their ad and been taken to a web page equipped with a conversion-tracking tag. However, they receive no information enabling the user to be personally identified.
If you do not wish to participate in the tracking, you can refuse the setting of a cookie required for this – for example, by means of a browser setting that generally deactivates the automatic setting of cookies or by setting your browser in such a way that cookies from the domain ‘googleleadservices.com’ are blocked.
Please note that you may not delete these opt-out cookies as long as you do not wish any measurement data to be recorded. If you have deleted all your cookies in the browser, you must set the respective opt-out cookie again.
Use of Google Remarketing
Use of Google reCAPTCHA
This website uses the reCAPTCHA service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland ‘Google’). The purpose of the query is to distinguish whether the input has been made by a human or by automated, machine processing. The query includes sending the IP address and any other data needed by Google for the reCAPTCHA service to Google. Your input is transmitted to Google for this purpose and processed further. Your IP address will, however, first be shortened by Google within Member States of the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the US and shortened there. Google will use this information on behalf of the operator of this website to analyse your use of this service. Google will not associate the IP address transmitted by your browser as part of reCAPTCHA with any other data held by Google. Your data may be transmitted to the US in this context. An adequacy decision of the European Commission, the ‘Privacy Shield’ is in place for data transfer to the US. Google participates in the ‘Privacy Shield’ and has agreed to the requirements. By clicking on the query, you consent to the processing of your data. Processing is based on Art. 6 (1) (a) of the GDPR with your consent. You can revoke your consent at any time without this affecting the legality of the processing carried out on the basis of your consent prior to revocation.
This website uses Google Analytics, a web analytics service provided by Google Ireland Limited. If the data processing controller on this website is located outside the European Economic Area or Switzerland, the Google Analytics data processing is carried out by Google LLC. Google LLC and Google Ireland Limited are termed ‘Google’ below.
We gather statistics to improve our services and to make our website more attractive for you as the user. Additionally, the website uses Google Analytics for universal analytics of website traffic, which is performed via a user ID. If you have a Google user account, you can disable universal analytics on your use of the website in your account under ‘My data’, ‘Personal data’.
The legal basis for the use of Google Analytics is Art. 6 Para. 1 sentence 1 (f) of the GDPR. Google will not associate the IP address transferred by your browser as part of Google Analytics with any other data held by Google. We would like to point out that, on this website, Google Analytics has been extended by the code ‘_anonymizeIp();’ in order to ensure an anonymised collection of IP addresses. This means that only shortened IP addresses are processed further so as to prevent them from being linked to a specific user. Insofar as data can be attributed to you as an individual, processing will immediately be suspended and the personal data shall be deleted immediately.
Only in exceptional cases will the full IP address be transmitted to a Google server in the US and shortened there. Google will use this information on behalf of the operator of this website to analyse your use of the website, compile reports on website activities and to render additional services associated with website use and internet use for the website operator. For exceptional cases where your personal data is transmitted to the USA, Google has agreed to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
Alternatively, you can prevent the use of Google Analytics by clicking on the following link: Deactivate Google Analytics. This saves what is known as an opt-out cookie to your data carrier, which prevents the processing of personal data by Google Analytics. Please note that if you delete all the cookies on your terminal device, these opt-out cookies will also be deleted, i.e. you must set the opt-out cookies again if you wish to continue to prevent this form of data collection. The opt-out cookies are set per browser and computer/terminal device and must therefore be activated separately for each browser, computer or other terminal device.
Due to the marketing tools used, your browser automatically establishes a direct connection with Google’s server. Through the integration of Google Ads, Google receives the information that you have accessed the corresponding part of our website or clicked on one of our advertisements. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, it is possible that Google will obtain and store your IP address.
You can prevent participation in this tracking process in various ways:
- by adjusting your browser software settings accordingly, in particular, suppressing third-party cookies will result in you not receiving ads from third-party providers;
- by disabling conversion-tracking cookies by setting your browser to block cookies from the domain ‘www.googleadservices.com’, https://adssettings.google.com, whereby this setting will be deleted when you delete your cookies;
- by disabling interest-based ads from the providers that are part of the self-regulatory campaign ‘About Ads’, via the link https://www.aboutads.info/choices, whereby this setting is deleted when you delete your cookies;
- by permanently disabling them in your browser Firefox, Internet Explorer or Google Chrome using the link https://www.google.com/settings/ads/plugin. We would like to point out that, in this case, you may not be able to use all functions of this service to their full extent.
The legal basis for processing your data is a balancing of interests, according to which the processing of your personal data described above is not opposed by any overriding interests on your part (Art. 6 Para. 1 sentence 1 (f) of the GDPR). You can find additional information on Google Ads from Google at https://ads.google.com/intl/en_EN/home/, as well as data protection at Google in general at: https://www.google.com/intl/en/policies/privacy. Alternatively, you can visit the website of the Network Advertising Initiative (NAI) at https://www.networkadvertising.org.
Google Tag Manager
Google Tag Manager is a solution we can use to manage website tags via an interface and thus integrate platforms such as Google Analytics and other Google marketing services into our online service. The tag manager itself, which implements the tags, does not process any personal data of the users. With regard to the processing of users’ personal data, please refer to the following information on Google services. Usage guidelines: https://www.google.com/tagmanager/use-policy.html.
Certain usage data is linked to your person (e.g. after entry into a registration form) and stored in our CRM. This enables us to send you information and offers tailored to your interests.
In the process, your personal data may also be forwarded to HubSpot servers in the United States (USA). The appropriate level of protection is established by the fact that HubSpot Inc. participates in the EU-US Privacy Shield Agreement and is certified for its compliance. We use HubSpots to provide you with information and services tailored to your needs. Accordingly, we have a legitimate interest in this processing as per Art. 6, Para. 1(f) of the GDPR. The legal basis for the processing of personal data by us in connection with the use of HubSpot is Art. 6 Para. 1(f) of the GDPR. In the context of using HubSpot, we store your personal data for as long as is necessary to provide you with information and offers tailored to your needs.
The provision of personal data collected via HubSpot is not required by law or contract or necessary for the conclusion of a contract. If you do not provide us with this data, we will not be able to provide you with information and services tailored to your needs.
HubSpot is certified under the terms of the ‘EU-U.S. Privacy Shield Frameworks’ and is subject to TRUSTe’s Privacy Seal as well as the ‘U.S.-Swiss Safe Harbor’ framework.
- More information about HubSpot’s data protection regulations
- More information from HubSpot with regard to EU data protection regulations
- More information from HubSpot regarding cookies set in a visitor’s browser
- More information about the cookies set on HubSpot websites
This website uses the service of Hotjar to improve visitors’ user experience. Hotjar Ltd. Hotjar Ltd. is a European company based in Malta (Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe). Mouse clicks as well as mouse and scroll movements can be recorded. Keystrokes performed on this website can also be recorded. Personalised information is not recorded. Hotjar uses a tracking code to collect and transmit your data. As soon as you visit our website, the Hotjar tracking code automatically collects data based on your activity and stores it on the Hotjar servers (located in Ireland). In addition, the cookies placed on your computer or terminal device by the website also collect data. For more information on how Hotjar works, visit this page: https://www.hotjar.com/privacy.
If you wish to object to the collection of data by Hotjar (opt-out), please click here: https://www.hotjar.com/opt-out.
Furthermore, we use the ‘Google Firebase’ service to analyse and categorise user groups and to display push notifications.
If you have disabled measurements via Google Analytics (see above), measurement via Universal Analytics and Firebase is also disabled, but only on this device and not on other devices that you may use. You can disable push notifications in the settings of the app via the item ‘Notifications’ as well as via the system settings of your device.
The app uses the Bugsnag service from Bugsnag Inc. 939 Harrison St, San Francisco, CA 94107, USA (‘Bugsnag’). This service enables us to quickly identify errors in the app that have led to a malfunction or crash and thereby improve our service. If an error occurs, the calling IP address (in anonymised form), data on your settings and details of the page of the app on which the error occurred and the data incorporated there are transmitted to Bugsnag in order to evaluate the error. You can find additional information about data protection at Bugsnag at: https://docs.bugsnag.com/legal/privacy-policy.
We use AppsFlyer, an analysis service provided by AppsFlyer Ltd. The information generated by AppsFlyer about the use of the Snoggle app is generally transmitted to a server outside Germany and stored there. We have activated IP anonymisation in the code of the Snoggle app so that the IP address of the users is shortened before it is saved by AppsFlyer Ltd. On our behalf, Google and AppsFlyer Ltd. will use the anonymous information to evaluate the use of the Snoggle app and to compile reports for us on your activities in the Snoggle app. You can further restrict the way Google Analytics and AppsFlyer work in the privacy settings of your device. You can also send an email to [email protected] if you do not want to allow AppsFlyer.
This website uses functions of Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. When you access our pages with Facebook plug-ins, a connection is established between your browser and the Facebook servers. In the process, data is already transmitted to Facebook. If you have a Facebook account, this data can be linked to it. If you do not wish the data to be associated with your Facebook account, please log out of Facebook before visiting our site. Interactions, in particular the use of a comment function or the clicking of a ‘Like’ or ‘Share’ button, are also forwarded to Facebook. You can find out more at: https://facebook.com/about/privacy.
This website uses functions of Twitter, Inc., 1355 Market St, Suite 900, San Francisco, CA 94103, USA. When you access our pages with Twitter plug-ins, a connection is established between your browser and the Twitter servers. In the process, data is already transmitted to Twitter. If you have a Twitter account, this data can be linked to it. If you do not wish the data to be associated with your Twitter account, please log out of Twitter before visiting our site. Interactions, in particular the clicking of a ‘Retweet’ button, are also forwarded to Twitter. You can find out more at: https://twitter.com/privacy.
For example, information on the operating system, the browser, the website you previously visited (referrer URL), which websites the user has accessed, which offers the user has clicked on, and the date and time of your visit to our website are recorded.
The information generated by the cookie about your use of this internet page is transmitted pseudonymised to a LinkedIn server in the US and stored there. LinkedIn therefore does not store the name or email address of the respective user. Rather, the above-mentioned data is only assigned to the person for whom the cookie was generated. This does not apply if the user has allowed LinkedIn to process without pseudonymisation or has a LinkedIn account.
Our website uses social plug-ins from the Pinterest social network, which is operated by Pinterest Inc., 808 Brannan Street San Francisco, CA 94103-490, USA (‘Pinterest’). When you visit a page that contains such a plug-in, your browser makes a direct connection to the Pinterest servers. The plug-in transmits this protocol data to the Pinterest server in the US. This protocol data may include your IP address, the address of the websites visited that also contain Pinterest functions, your browser type and settings, the date and time of the request, your use of the Pinterest options as well as cookies.
Additional information about the purpose, scope and additional processing and use of your data by Pinterest, as well as information about your rights in this regard and how you can protect your privacy, can be found on Pinterest’s privacy pages: https://about.pinterest.com/privacy-policy
Plug-ins of the social network SoundCloud (SoundCloud Limited, Berners House, 47-48 Berners Street, London W1T 3NF, Great Britain) may be integrated on this website. You can recognise the SoundCloud plug-ins by the SoundCloud logo on the pages concerned.
This website uses buttons of the service Tumblr. The provider is Tumblr, Inc., 35 East 21st St, 10th Floor, New York, NY, 10010, USA. These functions allow you to share a post or a page on Tumblr or to follow the operator on Tumblr. When you access one of our websites via the Tumblr button, your browser establishes a direct connection to the Tumblr servers. We have no influence on the amount of data that Tumblr collects and transmits with the plug-in. At present, the user’s IP address as well as the URL of the respective website are transmitted.
Use of Snapchat pixel
If you agree, we use ‘conversion pixels’ of the social network Snapchat, which is operated by Snap Inc., 63 Market Street, Venice, CA 90291, USA (‘Snapchat’).
The Snapchat ‘conversion pixel’ is used for the purpose of analysing, optimising and economically operating our online service, our advertising presence and our marketing measures through advertisements on Snapchat (known as ‘Snapchat ads’).
The use of the Snapchat ‘conversion pixel’ is intended to ensure, on the one hand, that our Snapchat ads correspond to the potential interest of users and are not annoying. The pixel enables us to determine the visitors to our website as the target group for our Snapchat ads. The use of the Snapchat ‘conversion pixel’ is carried out with the purpose of displaying the Snapchat ads placed by us only to those Snapchat users who have also shown an interest in our online service or who, based on their user behaviour, meet certain criteria (e.g. interest in certain subjects or products determined on the basis of websites visited) that we specify to Snapchat (known as ‘custom audiences’).
On the other hand, we use the Snapchat ‘conversion pixel’ for statistical and market research purposes. For this purpose, the Snapchat ‘conversion pixel’ allows us to track whether users have been redirected to our website after clicking on Snapchat ads and have made a transaction there (known as ‘conversion’). The legal basis for the processing of personal data using cookies in connection with the use of the Snapchat ‘conversion pixel’ for analysis purposes is Art. 6 Para. 1(a) of the GDPR if you have given your consent in this regard. In addition, we have a legitimate interest in data processing as per Art. 6, Para. 1(f) of the GDPR, as we are interested in optimising our online service, our advertising presence and our marketing measures on Snapchat.
Snapchat is bound by standard contractual clauses with us and thereby provides a guarantee of compliance with European data protection law.
External payment service providers
This website uses external payment service providers. Their platforms allow both users and us to make payment transactions. For example through
- American Express
- Bexio AG
- Payrexx AG
- Apple Pay
In the context of fulfilling contracts, we use payment service providers on the basis of the Swiss Data Protection Ordinance and, where necessary, Art. 6 Para. 1(b) of the EU-GDPR. Furthermore, we use external payment service providers on the basis of our legitimate interests in accordance with the Swiss Data Protection Ordinance and, where necessary, Art. 6 Para. 1(f) of the EU-GDPR in order to offer our users effective and secure payment options.
The data processed by the payment service providers includes inventory data such as the name and address; bank data, such as account numbers or credit card numbers; passwords; TANs and checksums, as well as the contract, totals and recipient-related information. The information is required to carry out the transactions. However, the data entered is only processed by the payment service providers and stored with them. We as the operator do not receive any information about the (bank) account or credit card, but only information to confirm (accept) or reject the payment. Under certain circumstances, the data may be transmitted by the payment service providers to credit agencies. The purpose of this transmission is to check identity and creditworthiness. Please refer to the terms and conditions and data protection information from the payment service providers.
The terms and conditions and data protection information of the respective payment service providers apply to the payment transactions and can be accessed within the respective website or transaction applications. We also refer to these for further information and the assertion of revocation, information and other data subject rights.
We process our customers’ data in accordance with the data protection regulations of the Confederation (Data Protection Act, DPA) and the EU-GDPR within the scope of our contractual services.
In doing so, we process inventory data (e.g. customer master data, such as names and addresses), contact data (e.g. email, phone numbers), content data (e.g. text entries), contract data (e.g. subject of the contract, term), payment data (e.g. bank details, payment history), usage data and meta data (e.g. in the context of evaluation and measuring the success of marketing measures). The data subjects include our customers, interested parties as well as their customers, users, website visitors or employees as well as third parties. The purpose of the processing is the provision of contractual services, billing and our customer service. The legal basis for the processing results from Art. 6 Para. 1(b) of the GDPR (contractual services), Art. 6 Para. 1(f) of the GDPR (analysis, statistics, optimisation, security measures). We process data that is necessary for the justification and fulfilment of contractual services and point out the necessity of their provision. Disclosure to external parties only takes place if it is necessary in the context of an order. When processing the data provided to us within the scope of an order, we act in accordance with the client’s instructions as well as the legal requirements of order processing pursuant to Art. 28 of the GDPR and do not process the data for any other purposes than those specified in the order.
We delete the data after the legal warranty and comparable obligations have expired. The necessity of retaining the data is reviewed at irregular intervals. In the case of legal archiving obligations, the deletion takes place after their expiry. In the case of data disclosed to us by the client within the scope of an order, we delete the data in accordance with the specification of the order, in principle after the end of the order.
We process the data of our contractual partners and interested parties as well as other clients, customers or contractual partners (referred to collectively as ‘Contractual Partners’) in accordance with the data protection regulations of the Confederation (Data Protection Act, DPA) and the EU-GDPR pursuant to Art. 6 Para. 1(b) of the GDPR in order to provide them with our contractual or pre-contractual services. The data processed in this contact, the type, the scope, the purpose and the necessity of its processing, are determined by the underlying contractual relationship.
The data processed includes the master data of our contractual partners (e.g. names and addresses), contact data (e.g. email addresses and phone numbers) as well as contract data (e.g. services used, contents of the contract, contractual communication, names of contact persons) and payment data (e.g. bank details, payment history). As a matter of principle, we do not process special categories of personal data unless these are components of commissioned or contractual processing.
We process data that is necessary for the justification and fulfilment of contractual services and point out the necessity of its provision, unless this is evident to the contractual partner. Disclosure to external persons or companies only takes place if it is necessary in the context of a contract. When processing the data provided to us within the scope of an order, we act in accordance with the client’s instructions as well as the legal requirements. Within the context of use of our online services, we may store the IP address and the time of the respective user action. This storage is based on our legitimate interests as well as the interests of users in protection against misuse and other unauthorised use. As a matter of principle, this data is not forwarded to third parties unless it is necessary for the pursuit of our claims pursuant to Art. 6 Para. 1(f) of the GDPR or there is a legal obligation to do so pursuant to Art. 6 Para. 1(c) of the GDPR.
The data is deleted when it is not longer required for the fulfilment of contractual or legal duties of care, as well as for dealing with any warranty and comparable obligations, whereby the necessity of retaining the data is reviewed at irregular intervals. In all other respects, the statutory retention obligations apply.
Note on data transfer to the US
Among other things, tools from companies based in the US are integrated on our website. If these tools are active, your personal data may be transferred to the US servers of the respective companies. Please note that the US is not a safe third country in the sense of EU data protection law. US companies are obliged to hand over personal data to security authorities without you as a data subject being able to take legal action against this. For this reason, it cannot be ruled out that US authorities (e.g. intelligence services) process, evaluate and permanently store your data located on US servers for monitoring purposes. We have no influence on these processing activities.
The copyright and all other rights to the contents, images, photos or other files on the website belong exclusively to the operator of this website or the specifically named rights holders. The written consent of the copyright holder must be obtained in advance for the reproduction of all files. Anyone who commits a copyright infringement without the consent of the respective copyright holder may be liable to prosecution and possibly to damages.
All information on our website has been carefully checked. We make every effort to ensure that the information we provide is up to date, accurate and complete. Nevertheless, the occurrence of errors cannot be completely ruled out, which means that we cannot guarantee that the information is complete, correct and up to date, including journalistic and editorial information. Liability claims based on damage of a material or non-material nature resulting from the use of the information provided, are excluded except in cases of wilful or gross negligence.
The publisher may change or delete texts at their own discretion and without notice and is not obliged to update the contents of this website. The use of or access to this website is at the visitor’s own risk. The publisher, its clients or partners are not responsible for damage such as direct, indirect, incidental, pre-defined or consequential damage allegedly caused by visiting this website and consequently assume no liability for such damage.
The publisher also accepts no responsibility or liability for the content and availability of third-party websites that can be accessed by external links on this website. The operators of the linked third-party sites bear sole responsibility for their respective contents. The publisher thus expressly distances itself from all third-party content that may be relevant under criminal or liability law or that may offend common decency.
Questions to the data protection officer
If you have any questions about data protection, please send us an email at [email protected]. The person responsible in our organisation will then get back to you.