数据保护

Data protection information for the use of our website

We appreciate your visit to our website. Below, we would like to inform you about how your data is handled in accordance with Article 13 of the General Data Protection Regulation (GDPR).

Controller

The controller responsible for the data processing described below is the entity named in the imprint.

Usage Data
When you visit our website, temporary usage data is evaluated on our web server for statistical purposes to improve the quality of our website. This data set includes:
- the date and time of the request,
- the amount of data transferred,
- the access status (content delivered, content not found),
- a description of the web browser and operating system used,
- the referrer link indicating the page from which you accessed ours,
- the IP address of the requesting computer, which is shortened so that it can no longer be linked to a specific person.
The aforementioned protocol is evaluated only in anonymized form.

Storage of IP Address
We do not store IP addresses beyond the aforementioned anonymized usage data.

Data Security
To protect your data from unintended access as comprehensively as possible, we implement technical and organizational measures. We use encryption technology on our website. Your data is transmitted between your computer and our server via TLS encryption. You can usually recognize this by the closed lock symbol in your browser’s status bar and the address line beginning with https://.

Google Analytics
We also use the web analytics tool “Google Analytics.” Google Analytics creates usage profiles based on pseudonyms. Permanent cookies are stored on your device and read by us. This allows us to recognize and count returning visitors.

Google Ireland Limited and Google LLC (USA) support us in using Google Analytics. Data processing may therefore also occur outside the EU or EEA. Google LLC is certified under the EU-U.S. Data Privacy Framework (DPF), which ensures an adequate level of data protection for transfers to the USA. Nevertheless, we point out that there remains a residual risk that U.S. authorities may access personal data under certain circumstances. Please consider this when deciding whether to consent to the use of Google Analytics.

Data processing is based on your consent pursuant to Art. 6(1)(a) GDPR, provided you have given your consent via our banner. You may withdraw your consent at any time by clicking the “Privacy Settings” link at the bottom of our website.

Embedded Videos
We embed videos on our website that are not stored on our servers. Accessing our pages with embedded videos results in content being loaded from third-party providers. This means the third-party provider receives information that you have accessed our site, along with the technically necessary usage data. We have no influence over further data processing by the third-party provider. Data processing may also occur outside the EU or EEA. Vimeo LLC is certified under the EU-U.S. Data Privacy Framework, ensuring an adequate level of data protection under the GDPR. However, it cannot be completely ruled out that U.S. authorities may access data for security or surveillance purposes. Please consider this when deciding whether to view videos on our website.

Data processing is based on your consent pursuant to Art. 6(1)(a) GDPR, provided you have given your consent via our banner. You may withdraw your consent at any time by clicking the “Privacy Settings” link at the bottom of our website.

Direct Marketing
If we receive your email address in connection with the sale of a product or service, we may use it for direct marketing of our own similar products or services, unless you have objected to this processing.

This use is based on Art. 6(1)(f) GDPR and our legitimate interest in promoting the sale of our products.

Other Data Processors
We share your data with service providers in accordance with Art. 28 GDPR who support us in operating our website and related processes. These include, for example, hosting providers. Our service providers are strictly bound by our instructions and contractually obligated accordingly.

Below is a list of processors we work with, unless already mentioned above. If data is transferred outside the EU or EEA, we provide information about the level of data protection.

Your Rights as a Data Subject
Under the GDPR, you have the following rights regarding your personal data:

• Right of Access (Art. 15 GDPR): You have the right to request confirmation of whether your personal data is being processed and, if so, access to that data and the information listed in Art. 15 GDPR.
• Right to Rectification (Art. 16 GDPR): You have the right to request the correction of inaccurate personal data and the completion of incomplete data.
• Right to Erasure (Art. 17 GDPR): You have the right to request the deletion of your personal data under the conditions listed in Art. 17 GDPR.
• Right to Restriction of Processing (Art. 18 GDPR): You have the right to request the restriction of processing under the conditions listed in Art. 18 GDPR.
• Right to Data Portability (Art. 20 GDPR): In certain cases, you have the right to receive your personal data in a structured, commonly used, and machine-readable format or to request its transfer to another controller.
• Right to Withdraw Consent (Art. 7 GDPR): If data processing is based on your consent, you may withdraw your consent at any time. The withdrawal applies only to future processing.
• Right to Object (Art. 21 GDPR): If data is processed based on Art. 6(1)(f) GDPR (legitimate interests), you may object to the processing at any time for reasons arising from your particular situation.

We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims.

• Right to Lodge a Complaint with a Supervisory Authority (Art. 77 GDPR): You have the right to lodge a complaint with a supervisory authority if you believe that the processing of your data violates data protection laws. You may contact the authority in your place of residence, workplace, or the location of the alleged violation.