Privacy Policy
This Privacy Policy explains the nature, scope, and purpose of the processing of personal data (hereinafter referred to as „Data“) in connection with the provision of our services, as well as within our online platform and its associated websites, features, and content, as well as external online presences, such as our social media profiles (hereinafter collectively referred to as the „online offering“). With regard to the terms used, such as „processing“ or „controller,“ we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR).
Data Controller
Thomas Kötzing, KoetzingIT.de
2 Pfarrer-Reis Street
91077 Hetzles, Germany
Legal notice: see the link below
Types of data processed
– Master data (e.g., personal master data, names, or addresses).
– Contact information (e.g., email address, phone numbers).
– Content data (e.g., text entries, photographs, videos).
– Usage data (e.g., websites visited, content interests, access times).
– Meta/communication data (e.g., device information, IP addresses).
Categories of data subjects
Visitors and users of the online service (hereinafter, we will collectively refer to these individuals as „users“).
Purpose of the processing
– To provide the online service, its features, and its content.
– Responding to contact requests and communicating with users.
– Safety measures.
– Reach measurement/marketing
Terminology Used
„Personal data“ means any information relating to an identified or identifiable natural person (hereinafter referred to as the „data subject“); a natural person is considered identifiable if they can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g., a cookie) or one or more specific characteristics that reflect the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
„Processing“ means any operation or set of operations performed on personal data, whether or not by automated means. The term is broad and covers virtually any interaction with data.
„Pseudonymization“ means the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures that ensure the personal data is not attributed to an identified or identifiable natural person.
„Profiling“ means any form of automated processing of personal data consisting of the use of such personal data to evaluate certain personal aspects relating to a natural person, in particular to evaluate aspects concerning work performance, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements of that natural person.
The term „controller“ refers to the natural or legal person, public authority, agency, or other body that, alone or jointly with others, determines the purposes and means of the processing of personal data.
„Processor“ means a natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller.
Relevant legal basis
In accordance with Article 13 of the GDPR, we are providing you with the legal basis for our data processing activities. For users within the scope of the General Data Protection Regulation (GDPR), i.e., the EU and the EEA, the following applies unless the legal basis is specified in the privacy policy:
The legal basis for obtaining consent is Article 6(1)(a) and Article 7 of the GDPR;
The legal basis for processing data to provide our services, carry out contractual obligations, and respond to inquiries is Article 6(1)(b) of the GDPR;
The legal basis for processing to fulfill our legal obligations is Article 6(1)(c) of the GDPR;
In cases where the processing of personal data is necessary to protect the vital interests of the data subject or another natural person, Article 6(1)(d) of the GDPR serves as the legal basis.
The legal basis for the processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller is Article 6(1)(e) of the GDPR.
The legal basis for processing to protect our legitimate interests is Article 6(1)(f) of the GDPR.
The processing of data for purposes other than those for which it was collected is governed by the provisions of Article 6(4) of the GDPR.
The processing of special categories of data (as defined in Article 9(1) of the GDPR) is governed by the provisions of Article 9(2) of the GDPR.
Safety measures
We implement appropriate technical and organizational measures in accordance with legal requirements, taking into account the state of the art, the costs of implementation, and the nature, scope, circumstances, and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, to ensure a level of security appropriate to the risk.
These measures include, in particular, ensuring the confidentiality, integrity, and availability of data by controlling physical access to the data, as well as access to, input of, and disclosure of the data, ensuring its availability, and maintaining its separation. Furthermore, we have established procedures that ensure the exercise of data subjects’ rights, the deletion of data, and a response to data breaches. Furthermore, we take the protection of personal data into account as early as the development and selection of hardware, software, and procedures, in accordance with the principle of data protection by design and by default.
Cooperation with data processors, joint controllers, and third parties
If, in the course of our data processing, we disclose data to other individuals or entities (processors, joint controllers, or third parties), transfer it to them, or otherwise grant them access to the data, we do so only on the basis of a legal authorization (e.g., if the transfer of data to third parties, such as payment service providers, is necessary for the performance of a contract), users have consented, a legal obligation requires it, or based on our legitimate interests (e.g., when using agents, web hosts, etc.).
If we disclose, transfer, or otherwise grant access to data to other companies within our group, we do so primarily for administrative purposes as a legitimate interest and, in addition, on a basis that complies with legal requirements.
Transfers to third countries
If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA), or the Swiss Confederation), or if this occurs in connection with the use of third-party services or the disclosure, or transfer of data to other individuals or companies, this occurs only if it is necessary to fulfill our (pre)contractual obligations, based on your consent, due to a legal obligation, or based on our legitimate interests. Subject to statutory or contractual permissions, we process or have data processed in a third country only if the legal requirements are met. This means that processing takes place, for example, on the basis of special safeguards, such as the officially recognized determination of a level of data protection equivalent to that of the EU (e.g., for the U.S. through the „Privacy Shield“) or compliance with officially recognized special contractual obligations.
Rights of data subjects
You have the right to request confirmation as to whether your personal data is being processed, as well as access to that data, further information, and a copy of the data in accordance with legal requirements.
In accordance with legal requirements, you have the right to request that the data concerning you be completed or that any inaccurate data concerning you be corrected.
In accordance with legal requirements, you have the right to request that the relevant data be deleted immediately or, alternatively, to request that the processing of the data be restricted in accordance with legal requirements.
You have the right to request that we provide you with the personal data you have provided to us in accordance with legal requirements, and to request that we transfer this data to other data controllers.
You also have the right, in accordance with legal requirements, to file a complaint with the competent supervisory authority.
Right of Withdrawal
You have the right to withdraw your consent at any time, effective for the future.
Right to object
You may object at any time to the future processing of your personal data in accordance with legal requirements. In particular, you may object to the processing of your data for direct marketing purposes.
Cookies and the Right to Object to Direct Marketing
„Cookies“ are small files that are stored on users„ computers. Various types of information can be stored in cookies. A cookie is primarily used to store information about a user (or the device on which the cookie is stored) during or after their visit to a website. Temporary cookies, also known as “session cookies„ or “transient cookies,„ are cookies that are deleted after a user leaves an online service and closes their browser. Such a cookie can, for example, store the contents of a shopping cart in an online store or a login status. Cookies that remain stored even after the browser is closed are referred to as “permanent„ or “persistent.„ For example, the login status can be stored so that users can access it again after several days. Similarly, such a cookie may store the user’s interests, which are used for audience measurement or marketing purposes. “Third-party cookies„ are cookies provided by providers other than the controller operating the online service (otherwise, if only the controller’s cookies are used, they are referred to as “first-party cookies”).
We may use both temporary and permanent cookies, and we provide further information about this in our Privacy Policy.
If users do not wish to have cookies stored on their computers, they are asked to disable the corresponding option in their browser settings. Stored cookies can be deleted in the browser settings. Disabling cookies may result in limited functionality of this website.
A general objection to the use of cookies for online marketing purposes can be submitted for a wide range of services, particularly in the case of tracking, via the U.S. website http://www.aboutads.info/choices/ or the EU website http://www.youronlinechoices.com/ explained. Furthermore, you can prevent cookies from being stored by disabling them in your browser settings. Please note that this may prevent you from using all features of this website.
Deletion of Data
The data we process will be deleted or its processing restricted in accordance with legal requirements. Unless expressly stated in this Privacy Policy, the data stored by us will be deleted as soon as it is no longer necessary for its intended purpose and there are no legal retention obligations preventing its deletion.
Unless the data is deleted because it is required for other legally permissible purposes, its processing will be restricted. This means that the data will be blocked and will not be processed for any other purposes. This applies, for example, to data that must be retained for commercial or tax law reasons.
Changes and Updates to the Privacy Policy
We ask that you review the content of our Privacy Policy on a regular basis. We will update the Privacy Policy as soon as changes to our data processing practices make it necessary. We will notify you as soon as the changes require action on your part (e.g., consent) or any other individual notification.
Registration function
Users can create a user account. During the registration process, users are informed of the required mandatory information, which is processed on the basis of Article 6(1)(b) of the GDPR for the purpose of providing the user account. The data processed includes, in particular, login information (name, password, and an email address). The data entered during registration is used for the purposes of using the user account and its intended function.
Users may be notified via email about information relevant to their user account, such as technical changes. If users have canceled their user account, their data related to that account will be deleted, subject to any legal retention requirements. It is the users’ responsibility to back up their data prior to the termination of the contract. We are entitled to irrevocably delete all user data stored during the term of the contract.
When you use our registration and login functions, as well as your user account, we store your IP address and the time of the respective user action. This data is stored based on our legitimate interests, as well as the user’s interest in protection against misuse and other unauthorized use. This data is generally not disclosed to third parties, unless it is necessary to pursue our claims or there is a legal obligation to do so pursuant to Art. 6(1)(c) of the GDPR. IP addresses are anonymized or deleted after 7 days at the latest.
DISQUS comment feature
Based on our legitimate interest in efficient, secure, and user-friendly comment management pursuant to Article 6(1)(f) of the GDPR, we use the DISQUS comment service, provided by DISQUS, Inc., 301 Howard St, Floor 3, San Francisco, California 94105, USA. DISQUS is certified under the Privacy Shield Framework and thereby guarantees compliance with European data protection law: https://www.privacyshield.gov/participant?id=a2zt0000000TRkEAAW&status=Active.
To use the DISQUS comment feature, users can log in using their own DISQUS user account or an existing social media account (e.g., OpenID, Facebook, Twitter, or Google). In this process, DISQUS retrieves the user’s login credentials from the respective platforms. It is also possible to use the DISQUS comment feature as a guest, without creating or using a user account with DISQUS or any of the specified social media providers.
We simply embed DISQUS and its features into our website, which allows us to moderate user comments. However, users enter into a direct contractual relationship with DISQUS, under which DISQUS processes user comments and serves as the point of contact for any requests to delete user data. Please refer to the DISQUS Privacy Policy: https://help.disqus.com/terms-and-policies/disqus-privacy-policy and also inform users that they can assume DISQUS stores not only the content of their comments but also their IP address and the time the comment was posted, as well as cookies on users’ computers, which may be used to display advertisements. However, users may object to the processing of their data for the purpose of displaying advertisements: https://disqus.com/data-sharing-settings.
Comments and posts
When users leave comments or other posts, their IP addresses may be stored for 7 days based on our legitimate interests under Article 6(1)(f) of the GDPR. This is done for our protection in case someone posts illegal content in comments or posts (insults, prohibited political propaganda, etc.). In such cases, we could be held liable for the comment or post and are therefore interested in the author’s identity.
Furthermore, we reserve the right to process user data for the purpose of spam detection based on our legitimate interests pursuant to Article 6(1)(f) of the GDPR.
On the same legal basis, we reserve the right to store users’ IP addresses for the duration of surveys and to use cookies to prevent multiple votes.
We will permanently store the personal information provided in comments and posts, including any contact and website information, as well as the content of such posts, until the user objects.
Comment Subscriptions
Users may subscribe to follow-up comments with their consent in accordance with Article 6(1)(a) of the GDPR. Users will receive a confirmation email to verify that they are the owners of the email address provided. Users may unsubscribe from active comment subscriptions at any time. The confirmation email will contain information regarding the options for revoking consent. For the purpose of verifying user consent, we store the time of registration along with the user’s IP address and delete this information when users unsubscribe.
You may unsubscribe from our newsletter at any time, i.e., withdraw your consent. We may store unsubscribed email addresses for up to three years based on our legitimate interests before deleting them, in order to be able to prove that consent was previously given. The processing of this data is limited to the purpose of potentially defending against claims. An individual request for deletion is possible at any time, provided that the prior existence of consent is confirmed at the same time.
Retrieving profile pictures from Gravatar
We use the Gravatar service provided by Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, USA, on our website and, in particular, on our blog.
Gravatar is a service where users can sign up and store profile pictures and their email addresses. When users post or comment on other websites (especially blogs) using that email address, their profile pictures can be displayed next to their posts or comments. To do this, the email address provided by the user is transmitted to Gravatar in encrypted form to check whether a profile is stored for that address. This is the sole purpose of transmitting the email address; it is not used for any other purpose and is deleted afterward.
We use Gravatar based on our legitimate interests as defined in Article 6(1)(f) of the GDPR, as Gravatar allows us to offer post and comment authors the option to personalize their posts with a profile picture.
When images are displayed, Gravatar obtains the user’s IP address, as this is necessary for communication between a browser and an online service. For more information on how Gravatar collects and uses data, please refer to Automattic’s privacy policy: https://automattic.com/privacy/.
If users do not want a profile picture linked to their email address on Gravatar to appear in the comments, they should use an email address that is not registered with Gravatar when commenting. We also note that it is possible to use an anonymous email address or no email address at all if users do not wish to have their email address sent to Gravatar. Users can completely prevent the transfer of data by not using our comment system.
Newsletter
The following information explains the content of our newsletter, as well as our subscription, distribution, and statistical analysis procedures, and your rights to object. By subscribing to our newsletter, you agree to receive it and to the procedures described herein.
Newsletter Content: We send newsletters, emails, and other electronic communications containing promotional information (hereinafter „newsletters“) only with the recipient’s consent or when permitted by law. If the content of the newsletter is specifically described during the subscription process, it is decisive for the user’s consent. In addition, our newsletters contain information about our services and our company.
Double opt-in and logging: Subscription to our newsletter is handled via a double opt-in process. This means that after signing up, you will receive an email asking you to confirm your subscription. This confirmation is necessary to ensure that no one can sign up using someone else’s email address. Newsletter subscriptions are logged to provide proof of the subscription process in accordance with legal requirements. This includes storing the time of subscription and confirmation, as well as the IP address. Changes to your data stored with the mailing service provider are also logged.
Subscription information: To subscribe to the newsletter, simply enter your email address. Optionally, you may also provide your name so that we can address you personally in the newsletter.
The distribution of the newsletter and the associated performance measurement are based on the recipients’ consent pursuant to Art. 6(1)(a), Art. 7 GDPR in conjunction with § 7(2)(3) UWG; or, if consent is not required, on the basis of our legitimate interests in direct marketing pursuant to Art. 6(1)(f) GDPR in conjunction with Section 7(3) UWG.
The registration process is logged based on our legitimate interests pursuant to Article 6(1)(f) of the GDPR. Our interest lies in the use of a user-friendly and secure newsletter system that serves both our business interests and meets user expectations, and also allows us to document consent.
Unsubscribe/Withdrawal – You can unsubscribe from our newsletter at any time, i.e., withdraw your consent. A link to unsubscribe from the newsletter can be found at the bottom of every newsletter. We may store unsubscribed email addresses for up to three years based on our legitimate interests before deleting them, in order to be able to prove that consent was previously given. The processing of this data is limited to the purpose of potentially defending against claims. An individual request for deletion is possible at any time, provided that the prior existence of consent is confirmed at the same time.
Newsletter – Mailchimp
The newsletter is sent via the mailing service provider „MailChimp,“ a newsletter distribution platform operated by the U.S. company Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. You can view the mailing service provider’s privacy policy here: https://mailchimp.com/legal/privacy/. The Rocket Science Group LLC, doing business as MailChimp, is certified under the Privacy Shield Framework and thereby guarantees compliance with European data protection standards (https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&status=Active). The shipping service provider is engaged on the basis of our legitimate interests pursuant to Article 6(1)(f) of the GDPR and a data processing agreement pursuant to Article 28(3), first sentence, of the GDPR.
The mailing service provider may use recipients' data in pseudonymous form—that is, without linking it to a specific user—to optimize or improve its own services, such as for technical optimization of the mailing process and the presentation of the newsletter, or for statistical purposes. However, the mailing service provider does not use the data of our newsletter recipients to contact them directly or to pass the data on to third parties.
Newsletter – Measuring Success
The newsletters contain a so-called „web beacon,“ which is a pixel-sized file that is retrieved from our server—or, if we use a mailing service provider, from their server—when the newsletter is opened. As part of this retrieval, technical information—such as details about your browser and system—as well as your IP address and the time of retrieval are collected.
This information is used to improve our services technically based on technical data, or to analyze target groups and their reading behavior based on their location (which can be determined using their IP address) or the times they access the site. The statistical surveys also include determining whether the newsletters are opened, when they are opened, and which links are clicked. For technical reasons, this information can be traced back to individual newsletter recipients. However, it is neither our intention, nor—if used—that of the mailing service provider, to monitor individual users. Rather, the analyses serve to help us identify our users’ reading habits and adapt our content accordingly, or to send different content based on our users’ interests.
Unfortunately, it is not possible to cancel the performance tracking separately; in this case, the entire newsletter subscription must be canceled.
Web Hosting and Email Services
The hosting services we use are intended to provide the following services: infrastructure and platform services, computing capacity, storage space, and database services, email delivery, security services, and technical maintenance services, which we utilize for the purpose of operating this online service.
In this context, we—or our hosting provider—process inventory data, contact data, content data, contract data, usage data, meta and communication data from customers, prospective customers, and visitors to this online offering based on our legitimate interests in the efficient and secure provision of this online offering pursuant to Art. 6(1)(f) GDPR in conjunction with Art. 28 GDPR (conclusion of a data processing agreement).
Collection of access data and log files
We, or rather our hosting provider, collect data regarding every access to the server on which this service is located (so-called server log files) based on our legitimate interests within the meaning of Article 6(1)(f) of the GDPR. The access data includes the name of the retrieved webpage, the file, the date and time of retrieval, the amount of data transferred, a notification of successful retrieval, the browser type and version, the user’s operating system, the referrer URL (the previously visited page), IP address, and the requesting provider.
For security reasons (e.g., to investigate cases of misuse or fraud), log file information is stored for a maximum of 7 days and then deleted. Data that must be retained for evidentiary purposes is exempt from deletion until the respective incident has been fully resolved.
Google Analytics
We use Google Analytics, a web analytics service provided by Google LLC („Google“), based on our legitimate interests (i.e., our interest in analyzing, optimizing, and ensuring the economic operation of our online offering within the meaning of Article 6(1)(f) of the GDPR). Google uses cookies. The information generated by the cookie regarding users’ use of the online service is generally transmitted to a Google server in the United States and stored there.
Google is certified under the Privacy Shield Framework and thereby guarantees compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
Google will use this information on our behalf to evaluate how users use our website, to compile reports on activity within the website, and to provide us with other services related to the use of the website and internet usage. In doing so, pseudonymous user profiles may be created from the processed data.
We use Google Analytics only with IP anonymization enabled. This means that Google truncates users’ IP addresses within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the United States and truncated there.
The IP address transmitted by the user’s browser is not combined with any other data held by Google. Users can prevent the storage of cookies by adjusting their browser settings accordingly; users can also prevent Google from collecting the data generated by the cookie and related to their use of the online service, as well as from processing this data, by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
For more information about Google's use of data, as well as options for adjusting settings and opting out, please refer to Google's Privacy Policy (https://policies.google.com/technologies/ads) as well as in the settings for the display of ads by Google (https://adssettings.google.com/authenticated).
Users' personal data is deleted or anonymized after 14 months.
Google Universal Analytics
We use Google Analytics in the form of „Universal Analytics“Universal Analytics„ refers to a Google Analytics method in which user analysis is based on a pseudonymous user ID, thereby creating a pseudonymous user profile that combines information from the use of various devices (so-called “cross-device tracking„).
Social media presence
We maintain a presence on social media networks and platforms to communicate with customers, prospective customers, and users who are active there and to inform them about our services.
Please note that this may involve the processing of user data outside the European Union. This may pose risks to users, as it could, for example, make it more difficult to enforce their rights. With regard to U.S. providers certified under the Privacy Shield, we would like to point out that they thereby commit to complying with EU data protection standards.
In addition, user data is generally processed for market research and advertising purposes. For example, user profiles can be created based on users’ behavior and the resulting interests. These user profiles can in turn be used, for example, to display advertisements within and outside the platforms that are presumed to correspond to users’ interests. For these purposes, cookies are generally stored on users’ computers, in which users’ usage behavior and interests are recorded. Furthermore, data may also be stored in the usage profiles regardless of the devices used by users (particularly if users are members of the respective platforms and are logged in to them).
The processing of users’ personal data is based on our legitimate interests in effectively informing users and communicating with them, in accordance with Article 6(1)(f) of the GDPR. If users are asked by the respective providers to consent to data processing (i.e., to give their consent, e.g., by checking a box or clicking a button), the legal basis for the processing is Art. 6(1)(a) and Art. 7 of the GDPR.
For a detailed description of the specific processing activities and the options for opting out, please refer to the information provided by the providers via the links below.
We would also like to point out that requests for information and the exercise of user rights are most effectively addressed directly with the service providers. Only the providers have access to the users’ data and can take appropriate action and provide information directly. If you still need assistance, please feel free to contact us.
– Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) – Privacy Policy: https://www.facebook.com/about/privacy/, Opt-out: https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active.
– Google/YouTube (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) – Privacy Policy: https://policies.google.com/privacy, Opt-out: https://adssettings.google.com/authenticated, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.
– Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA) – Privacy Policy / Opt-Out: http://instagram.com/about/legal/privacy/.
– Twitter (Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA) – Privacy Policy: https://twitter.com/de/privacy, Opt-out: https://twitter.com/personalization, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active.
– Pinterest (Pinterest Inc., 635 High Street, Palo Alto, CA 94301, USA) – Privacy Policy / Opt-Out: https://about.pinterest.com/de/privacy-policy.
– LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland) – Privacy Policy https://www.linkedin.com/legal/privacy-policy , Opt-out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active.
– Xing (XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany) – Privacy Policy / Opt-Out: https://privacy.xing.com/de/datenschutzerklaerung.
– Wakalet (Wakelet Limited, 76 Quay Street, Manchester, M3 4PR, United Kingdom) – Privacy Policy / Opt-Out: https://wakelet.com/privacy.html.
– SoundCloud (SoundCloud Limited, Rheinsberger Str. 76/77, 10115 Berlin, Germany) – Privacy Policy / Opt-Out: https://soundcloud.com/pages/privacy.
Integration of third-party services and content
Within our online offering, we use third-party content and service providers based on our legitimate interests (i.e., our interest in the analysis, optimization, and economic operation of our online offering within the meaning of Article 6(1)(f) of the GDPR) to integrate content or services from third-party providers in order to incorporate their content and services, such as videos or fonts (hereinafter collectively referred to as “Content”).
This always requires that the third-party providers of this content collect users„ IP addresses, as they would be unable to send the content to users“ browsers without them. The IP address is therefore necessary for the display of this content. We strive to use only content whose respective providers use the IP address solely for the purpose of delivering the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as „web beacons“) for statistical or marketing purposes. Pixel tags allow information such as visitor traffic on the pages of this website to be analyzed. The pseudonymous information may also be stored in cookies on the user’s device and may include, among other things, technical information about the browser and operating system, referring websites, visit duration, and other details regarding the use of our online service, as well as be linked to such information from other sources.
Google reCAPTCHA
We use a bot detection feature, such as „reCAPTCHA,“ provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, for entries in online forms. Privacy Policy: https://www.google.com/policies/privacy/, Opt-out: https://adssettings.google.com/authenticated.
Use of Facebook Social Plugins
We use, on the basis of our legitimate interests (i.e., our interest in the analysis, optimization, and economic operation of our online offering within the meaning of Article 6(1)(f) of the GDPR), social plugins („plugins“) from the social network facebook.com, which is operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland („Facebook“).
This may include, for example, content such as images, videos, or text, as well as buttons that allow users to share content from this website on Facebook. The list and appearance of Facebook social plugins can be viewed here: https://developers.facebook.com/docs/plugins/.
Facebook is certified under the Privacy Shield Framework and thereby guarantees compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).
When a user accesses a feature of this website that contains such a plugin, their device establishes a direct connection to Facebook’s servers. The content of the plugin is transmitted directly from Facebook to the user’s device and integrated into the online service. In the process, user profiles may be created based on the processed data. We therefore have no influence over the scope of the data that Facebook collects using this plugin and are informing users accordingly based on our current knowledge.
When the plugins are integrated, Facebook receives information that a user has accessed the corresponding page of the website. If the user is logged into Facebook, Facebook can associate the visit with their Facebook account. When users interact with the plugins—for example, by clicking the “Like” button or posting a comment—the corresponding information is transmitted directly from your device to Facebook and stored there. Even if a user is not a member of Facebook, there is still a possibility that Facebook may obtain and store their IP address. According to Facebook, only an anonymized IP address is stored in Germany.
Users can find information regarding the purpose and scope of data collection, as well as the further processing and use of data by Facebook, along with their rights and privacy settings, in Facebook’s Privacy Policy: https://www.facebook.com/about/privacy/.
If a user is a Facebook member and does not want Facebook to collect data about them through this website and link it to their Facebook account information, they must log out of Facebook and clear their cookies before using our website. Additional settings and objections to the use of data for advertising purposes are available within the Facebook profile settings: https://www.facebook.com/settings?tab=ads or via the U.S. website http://www.aboutads.info/choices/ or the EU website http://www.youronlinechoices.com/. The settings are platform-independent, meaning they apply to all devices, such as desktop computers and mobile devices.
Our website may incorporate features and content from Twitter, a service provided by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. This may include, for example, content such as images, videos, or text, as well as buttons that allow users to share content from this website on Twitter.
If users are members of the Twitter platform, Twitter may associate their access to the aforementioned content and features with their Twitter profiles. Twitter is certified under the Privacy Shield Framework and thereby guarantees compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active). Privacy Policy: https://twitter.com/de/privacy, Opt-out: https://twitter.com/personalization.
X
Our website may incorporate features and content from the Xing service, provided by XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. This may include, for example, content such as images, videos, or text, as well as buttons that allow users to share content from this online offering within Xing. If users are members of the Xing platform, Xing may associate the access to the aforementioned content and features with the users’ profiles on that platform. Xing Privacy Policy: https://privacy.xing.com/de/datenschutzerklaerung.
Our website may incorporate features and content from the LinkedIn service, provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. This may include, for example, content such as images, videos, or text, as well as buttons that allow users to share content from this website on LinkedIn. If users are members of the LinkedIn platform, LinkedIn may associate the access to the aforementioned content and features with the users’ profiles on that platform. LinkedIn Privacy Policy: https://www.linkedin.com/legal/privacy-policy.. LinkedIn is certified under the Privacy Shield Framework and thereby guarantees compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active). Privacy Policy: https://www.linkedin.com/legal/privacy-policy, Opt-out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.