Data protection
Privacy Policy
Unless otherwise stated below, the provision of your personal data is neither legally nor contractually required, nor is it necessary for entering into a contract. You are not obligated to provide the data. Failure to provide it will have no consequences. This applies only insofar as no other information is provided in the following processing operations.
"Personal data" means any information relating to an identified or identifiable natural person.
The processing is based on Art. 6 para. 1 lit. f GDPR due to our overriding legitimate interest in ensuring the smooth operation of our website and improving our services.
Your data may be transferred to and processed in third countries outside the EU, in particular Canada and the USA. The EU Commission has issued an adequacy decision for Canada. The EU Commission has also issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations comparable to the EU Commission's Standard Contractual Clauses.
contact
Responsible
Please contact us if you wish.The controller responsible for data processing is: Marc Neumann, Mühlenkamp 44, 22303 Hamburg Germany, 040-20908867, office@cosman-interior.de
Customer initiates contact via email
If you contact us proactively via email, we collect your personal data (name, email address, message text) only to the extent that you provide it. This data processing serves the purpose of processing and responding to your contact request.
If the contact is for the purpose of carrying out pre-contractual measures (e.g., providing advice on purchase interest, preparing an offer) or relates to a contract already concluded between you and us, this data processing is based on Art. 6 para. 1 lit. b GDPR.
If contact is made for other reasons, this data processing is based on Art. Article 6 paragraph 1 letter f GDPR based on our overriding legitimate interest in processing and responding to your request. In this case, you have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (f) of Article 6(1) of the GDPR.
We will only use your email address to process your request. Your data will then be deleted in accordance with statutory retention periods, unless you have consented to further processing and use.
Data collection and processing when using the contact form
When you use the contact form, we collect your personal data (name, email address, message text) only to the extent that you provide it. The data is processed for the purpose of contacting you.
If the contact is for the purpose of carrying out pre-contractual measures (e.g., providing advice on purchase interest, preparing an offer) or relates to a contract already concluded between you and us, this data processing is based on Art. 6 para. 1 lit. b GDPR.
If contact is made for other reasons, this data processing is based on Art. 6 para. 1 lit. f GDPR due to our overriding legitimate interest in processing and responding to your request. In this case, you have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (f) of Article 6(1) of the GDPR.
We will only use your email address to process your request. Your data will then be deleted in compliance with statutory retention periods, unless you have consented to further processing and use.
Customer account Orders
Customer account
When you open a customer account, we collect your personal data to the extent specified there. This data processing serves the purpose of improving your shopping experience and simplifying order processing. The processing is based on Article 6(1)(a) GDPR with your consent. You can withdraw your consent at any time by notifying us, without affecting the lawfulness of the processing carried out based on the consent before its withdrawal. Your customer account will then be deleted.
Your data may be transferred to third countries outside the EU, in particular to Canada and the USA, and processed there. For Canada, there is an adequacy decision of the EU Commission. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified according to the TADPF. This data transfer is based on contractual obligations that are comparable to those of the EU Commission's standard contractual clauses.
Reviews Advertising
Data collection when writing a comment or review
When you comment on or rate an article or post, we collect your personal data (name, email address, comment text) only to the extent that you provide it. This data is processed for the purpose of enabling and displaying comments and ratings.
For the purpose of verifying your rating/comment, we also collect the following data: Order number, Customer number, Invoice number, .
By submitting your comment/review, you consent to the processing of the data you have provided. Your data is processed on the basis of Article 6(1)(a) GDPR with your consent. You can withdraw your consent at any time by notifying us, without affecting the lawfulness of processing based on consent before its withdrawal. Your personal data will then be deleted.
When your comment/review is published, the name and email address you provided published.
Website logo for Google customer reviews
Our website incorporates the Google Customer Reviews website logo of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”).
The purpose of this integration is to display the number and results of our reviews received so far via Google and to promote participation in this program.
Google uses cookies to display the logo on our website and to show you personalized ads on Google. This may involve processing and transmitting your IP address to Google.
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and has therefore committed itself to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent pursuant to Section 25 Paragraph 1. S. 1 TTDSG in conjunction with Art. 6 para. 1 lit. a GDPR. Your personal data is processed with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until its withdrawal.
For more information on terms of service and privacy when using Google Customer Reviews, please see [link to Google Customer Reviews policy]. https://www.google.com/shopping/customerreviews/static/tos/de/1_01_tos.html as under https://policies.google.com/privacy?hl=de
We use the Google Customer Reviews rating tool from Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”) for our website.
After placing your order, we would like to ask you to rate and comment on your purchase. For this purpose, we will contact you via email using Google's survey opt-in module. The following information may be processed and transmitted to Google: order details (e.g., order ID, delivery country, estimated delivery date, GTIN of the ordered products) and your email address.
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and has therefore committed itself to complying with European data protection principles.
The processing of your data is based on Article 6(1)(a) GDPR with your consent, provided you have expressly agreed to the transfer of your data and to receiving the review request. You can withdraw your consent at any time with effect for the future, without affecting the lawfulness of the processing carried out on the basis of the consent until its withdrawal.
Use of the email address for sending newsletters
We use your email address, independently of contract processing, exclusively for our own advertising purposes to send you newsletters, provided you have expressly consented to this. This processing is based on Article 6 Paragraph 1 Letter a of the GDPR with your consent. You can revoke your consent at any time without affecting the lawfulness of the processing carried out based on the consent before its revocation. You can unsubscribe from the newsletter at any time by using the corresponding link in the newsletter or by notifying us. Your email address will then be removed from the mailing list.
Your data will be shared with an email marketing service provider as part of order processing. It will not be shared with any other third parties.
Using Brevo (formerly Sendinblue)
We use the service of Sendinblue GmbH (Köpenicker Straße 126, 10179 Berlin; “Brevo”) for sending newsletters as part of a data processing agreement.
We forward the information you provide during newsletter registration (email address, and optionally first and last name) to Brevo. This data processing serves the purpose of sending the newsletter and its statistical evaluation.
To evaluate newsletter campaigns, the email newsletters we send contain a 1x1 pixel graphic (tracking pixel) and/or a tracking link. This allows us to determine whether you have opened the newsletter and whether you have clicked on any embedded links. In this context, your personal data, such as your IP address, browser type and device, and the time you opened the newsletter, may also be collected. Usage profiles can be created from this data under a pseudonym. The collected data will not be used to personally identify you. The collected data will only be used for statistical analysis to improve newsletter campaigns.
Your personal data is processed on the basis of Art. 6 para. 1 lit. f GDPR due to our overriding legitimate interest in a targeted, effective and user-friendly newsletter system. You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you.
Further information and Brevo's privacy policy can be found at: https://www.brevo.com/de/legal/privacypolicy/.
Use of mobile phone number for sending SMS advertising
We use your mobile phone number, independently of the contract processing, exclusively for our own advertising purposes to send SMS advertising, provided you have expressly agreed to this.
The processing of your data is based on Article 6(1)(a) GDPR with your consent. You can withdraw your consent at any time by notifying us, without affecting the lawfulness of the processing carried out based on your consent before its withdrawal. Your mobile phone number will then be removed from the mailing list.
Shipping service provider, inventory management
Sharing of the email address with shipping companies to inform about the shipping status
We will share your email address with the shipping company as part of the order processing, provided you have expressly consented to this during the ordering process. This sharing is for the purpose of informing you about the shipping status via email. This processing is based on Article 6(1)(a) of the GDPR with your consent. You can withdraw your consent at any time by notifying us or the shipping company, without affecting the lawfulness of processing based on consent before its withdrawal.
Use of an external merchandise management system
We use an enterprise resource planning (ERP) system for contract processing as part of order processing. For this purpose, your personal data collected during the ordering process will be transferred to
deltra Business Software GmbH & Co. KG, Gildestraße 9, D-32760 Detmold
transmitted.
The processing of your personal data serves the purpose of fulfilling the contract concluded with you and is based on Art. 6 para. 1 lit. b GDPR.
Payment service provider
Using PayPal
We use the PayPal payment service from PayPal (Europe) on our website. S.à.rl et Cie, S.CA (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal"). The data processing serves the purpose of enabling you to offer payment via the payment service. By selecting and using PayPal as your payment method, the data required for payment processing will be transmitted to PayPal in order to fulfill the contract with you using the chosen payment method. This processing is based on Article 6 Paragraph 1 Letter b GDPR.
All PayPal transactions are subject to the PayPal Privacy Statement. You can find it at https://www.paypal.com/de/webapps/mpp/ua/privacy-full
Using PayPal Express
We use the PayPal Express payment service from PayPal (Europe) on our website. S.à.rl et Cie, S.CA (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal"). The data processing serves the purpose of offering you payment via the PayPal Express payment service. To integrate this payment service, it is necessary for PayPal to collect, store, and analyze data (e.g., IP address, device type, operating system, browser type, location of your device) when you access the website. Cookies may also be used for this purpose. The cookies enable the recognition of your browser.
Your personal data is processed on the basis of Art. 6 para. 1 lit. f GDPR due to our overriding legitimate interest in offering a customer-oriented range of payment methods. You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you.
By selecting and using PayPal Express, the data required for payment processing will be transmitted to PayPal in order to fulfill the contract with you using the chosen payment method. This processing is based on Article 6(1)(b) GDPR. Further information on data processing when using the PayPal Express payment service can be found in the corresponding privacy policy at [link to privacy policy]. www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE#Updated_PS.
Using PayPal Checkout
We use the PayPal Check-Out payment service from PayPal (Europe) on our website. S.à.rl et Cie, S.CA (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal"). The data processing serves the purpose of enabling you to pay via the payment service. By selecting and using payment via PayPal, credit card via PayPal, direct debit via PayPal, or "Pay Later" via PayPal, the data required for payment processing is transmitted to PayPal in order to fulfill the contract with you using the chosen payment method. This processing is based on Article 6 Paragraph 1 Letter b GDPR.
Cookies may be stored that enable your browser to be recognized. The resulting data processing is based on Article 6 Paragraph 1 Letter f GDPR, due to our overriding legitimate interest in offering a customer-oriented range of payment methods. You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you.
Credit card via PayPal, direct debit via PayPal & "Pay later" via PayPal
For certain payment methods, such as credit card via PayPal, direct debit via PayPal, or "Pay Later" via PayPal, PayPal reserves the right to obtain a credit report based on mathematical-statistical methods using credit reference agencies. For this purpose, PayPal transmits the personal data required for a credit check to a credit reference agency and uses the information received about the statistical probability of payment default to make a balanced decision regarding the establishment, execution, or termination of the contractual relationship. The credit report may include probability values (score values) that are calculated using scientifically recognized mathematical-statistical methods and whose calculation incorporates, among other things, address data. Your legitimate interests will be respected in accordance with legal regulations. The data processing serves the purpose of credit assessment for the initiation of a contract. This processing is based on Article 6(1)(f) GDPR, due to our overriding legitimate interest in protecting against payment defaults when PayPal provides advance payment.
You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you which is based on point (f) of Article 6(1) of the GDPR, by notifying PayPal. Providing this data is necessary for concluding the contract with your chosen payment method. Failure to provide this data will result in the contract not being able to be concluded with your selected payment method.
Third-party providers
When paying via a third-party payment method, the data required for payment processing is transmitted to PayPal. This processing is based on Article 6(1)(b) GDPR. To process this payment method, PayPal may then forward the data to the respective provider. This processing is also based on Article 6(1)(b) GDPR. Local third-party providers may include, for example:
- Immediately (SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany)
- giropay (Paydirekt GmbH, Stephanstr. 14-16, 60313 Frankfurt am Main)
Purchase on account via PayPal
When paying via invoice, the data required for payment processing is initially transmitted to PayPal. To process this payment method, PayPal then transmits the data to Ratepay GmbH (Franklinstrasse 28-29, 10587 Berlin; "Ratepay") in order to fulfill the contract with you using the selected payment method. This processing is based on Article 6 Paragraph 1 Letter b GDPR. Ratepay may conduct a credit check using mathematical-statistical methods (probability or score values) with credit agencies, following the procedure described above. The data processing serves the purpose of credit assessment for initiating a contract. This processing is based on Article 6 Paragraph 1 Letter f GDPR, due to our overriding legitimate interest in protecting against payment defaults when Ratepay provides services in advance. Further information on data protection and which credit agencies Ratpay uses can be found at https://www.ratepay.com/legal-payment-dataprivacy/ and https://www.ratepay.com/legal-payment-creditagencies/.
Further information on data processing when using PayPal can be found in the corresponding privacy policy at https://www.paypal.com/de/webapps/mpp/ua/privacy-full.
Cookies
Our website uses cookies. Cookies are small text files that are stored in or by the internet browser on a user's computer system. When a user visits a website, a cookie can be stored on the user's operating system. This cookie contains a characteristic string that enables the browser to be uniquely identified when the website is visited again.
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9-2a946a29ae09
Using Consent Manager
We use the consent management tool Consentmanager from Consentmanager AB (Håltegelvägen 1b, 72348 Västerås, Sweden; "Consentmanager") on our website.
The tool allows you to grant consent to data processing via the website, in particular the setting of cookies, and to exercise your right to withdraw consent already given.
The data processing serves the purpose of obtaining and documenting necessary consents to data processing and thus complying with legal obligations.
Cookies may be used for this purpose. The following information, among other things, may be collected and transmitted to Consentmanager: date and time of the page visit, information about the browser and device you are using, anonymized IP address, and opt-in and opt-out data. This data will not be shared with any other third parties.
The data processing is carried out to fulfill a legal obligation on the basis of Art. 6 para. 1 lit. c GDPR.
Further information on data protection at Consentmanager can be found at: https://www.consentmanager.net/privacy.php
Use of the Cookie Consent Manager CCM19
We use the Cookie Consent Manager CCM19 from Papoo Software & Media GmbH (Auguststr. 4, 53229 Bonn; "CCM19") on our website.
The plug-in allows you to grant consent to data processing via the website, in particular the setting of cookies, and to exercise your right to withdraw previously granted consent. The data processing serves the purpose of obtaining and documenting necessary consents to data processing and thus complying with legal obligations.
Cookies are used for this purpose. Among other things, the following information may be collected, stored, and possibly... The following data will be transmitted to CCM19: randomly assigned ID, consent status, date and time of consent/rejection. The data will be stored for one year and one month and then deleted. This data will not be shared with any other third parties.
The data processing is carried out to fulfill a legal obligation on the basis of Art. 6 para. 1 lit. c GDPR.
Further information on data protection at CCM19 can be found at: https://www.ccm19.de/datenschutzerklaerung.html.
Use of Complianz GDPR cookie consent
We use the Complianz GDPR Cookie Consent plugin from Complianz BV (Atoomweg 6B 9743 AK Groningen, Netherlands; "Complianz") on our website.
The plug-in allows you to grant consent to data processing via the website, in particular the setting of cookies, and to exercise your right to withdraw consent already granted. The purpose of data processing is to obtain and document necessary consents for data processing and thus comply with legal obligations. Cookies may be used for this purpose. The following information, among other things, may be collected and transmitted to Complianz: a uniquely identifiable ID and consent status. This data will not be shared with any other third parties.
The data processing is carried out to fulfill a legal obligation on the basis of Art. 6 para. 1 lit. c GDPR.
Further information on data protection at Complianz can be found at: https://complianz.io/legal/privacy-statement/?cmplz_region_redirect=true®ion=eu
Analysis Communication
Use of Google Analytics 4
We use the web analytics service Google Analytics from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”) on our website.
The data processing serves the purpose of analyzing this website and its visitors, as well as for marketing and advertising purposes. To this end, Google, on behalf of the operator of this website, will use the information obtained to evaluate your use of the website, to compile reports on website activity, and to provide other services related to website activity and internet usage to the website operator.
The following information may be collected, among other things: IP address, date and time of the page request, click path, information about the browser and device you are using, pages visited, referrer URL (website from which you accessed our website), location data, and purchase activity. Your data may be linked by Google with other data, such as your search history, your personal accounts, your usage data from other devices, and any other data Google has about you.
Google will shorten the IP address beforehand within member states of the European Union or in other contracting states of the Agreement on the European Economic Area.
Google uses technologies such as cookies, web storage in the browser and tracking pixels, which enable an analysis of your use of the website. The use of cookies or similar technologies is based on your consent pursuant to Section 25 Paragraph 1. S. 1 TTDSG in conjunction with Art. 6 Para. 1 lit. a GDPR.
Your personal data is processed with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until its withdrawal.
The information generated about your use of this website is generally transmitted to and stored on a Google server in the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and has thus committed to complying with European data protection principles. Both Google and US government authorities have access to your data.
Further information on terms of use and data protection can be found at https://policies.google.com/technologies/partner-sites and under https://policies.google.com/privacy?hl=de&gl=de.
Using Shopify statistics
We use the statistics and analytics functions of Shopify International Ltd. (Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland; "Shopify") within the framework of order processing. Shopify is a service provided by Shopify Inc. (151 O'Connor Street, Ground Floor, Ottawa, Ontario, K2P 2L8, Canada) affiliated company.
The data processing serves the purpose of analyzing this website and its visitors. For this purpose, data is stored for marketing and optimization purposes and made available in reports, analyses, and statistics. This includes, among other things, the following device information: information about the web browser, the IP address, the time zone, and some of the cookies installed on your device. When you navigate the website, information about the web pages or products you visit, the referrer URL (the website from which you accessed our website), and information about how you interact with the website are also collected. Technologies such as cookies, web beacons, tags, and pixels (electronic files used to collect information about how you navigate the website) are used for this purpose.
Your data may be transferred to and processed in third countries outside the EU, in particular Canada and the USA. The EU Commission has issued an adequacy decision for Canada. The EU Commission has also issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations comparable to the EU Commission's Standard Contractual Clauses.
The use of cookies or similar technologies is based on your consent pursuant to Section 25 Paragraph 1. S. 1 TTDSG in conjunction with Art. 6 para. 1 lit. a GDPR. Your personal data is processed with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until its withdrawal.
You can find more information about data protection at Shopify here. https://www.shopify.com/de/legal/datenschutz, Information on the data processing agreement can be found at https://www.shopify.com/de/legal/dpa as well as information about the cookies used under https://www.shopify.com/de/legal/cookies.
We use the Shopify Inbox live chat system on our website. of Shopify International Ltd. (Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland; "Shopify") within the framework of order processing. Shopify is a service provided by Shopify Inc. (151 O'Connor Street, Ground Floor, Ottawa, Ontario, K2P 2L8, Canada) affiliated company.
The data processing serves the purpose of direct and efficient communication between you and us as the provider. Data is stored and processed for the operation of the system and for the purpose of optimizing the service.
Cookies may be used to operate the live chat system, enabling the browser to be recognized. The following information may be collected and processed: IP address and personal data provided by you when using the chat system.
Your data may be transferred to and processed in third countries outside the EU, in particular Canada and the USA. The EU Commission has issued an adequacy decision for Canada. The EU Commission has also issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations comparable to the EU Commission's Standard Contractual Clauses.
The use of cookies or similar technologies is based on your consent pursuant to Section 25 Paragraph 1. S. 1 TTDSG in conjunction with Art. 6 para. 1 lit. a GDPR. Your personal data is processed with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
For more information about data protection at Shopify, please see [link to privacy policy]. https://www.shopify.com/de/legal/datenschutz and https://www.shopify.com/de/legal/dpa.
Plugins and Miscellaneous
We use the Google Tag Manager from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
This application manages JavaScript and HTML tags used to implement tracking and analytics tools. The data processing serves the purpose of tailoring and optimizing our website to user needs.
The Google Tag Manager itself does not store cookies, nor does it process personal data. However, it enables the triggering of other tags that can collect and process personal data.
You can find more information about terms of use and data protection here. here.
Use of social plug-ins
We use social network plugins on our website. The integration of social plugins and the associated data processing serve the purpose of optimizing advertising for our products.
When social plugins are integrated, a connection is established between your computer and the servers of the social network provider. The plugin is then displayed on the page by sending a message to your browser, provided you have explicitly consented to this. In this process, both your IP address and information about which of our pages you have visited are transmitted to the provider's servers. This applies regardless of whether you are registered with or logged into the social network. Data is transmitted even for users who are not registered or logged in. If you are simultaneously logged into one or more of your social network accounts, the information collected can also be associated with your corresponding profiles. When using the plug-in functions (e.g., by clicking the button), this information will also be associated with your user account. You can prevent this association by logging out of your social media accounts before visiting our website and before activating the buttons.
The use of cookies or similar technologies is based on your consent pursuant to Section 25 Paragraph 1. S. 1 TTDSG in conjunction with Art. 6 para. 1 lit. a GDPR. Your personal data is processed with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until its withdrawal.
The social networks listed below are integrated into our website via social plugins. Further information on the scope and purpose of data collection and use, as well as your related rights and options for protecting your privacy, can be found in the linked privacy policies of the providers.
https://www.addthis.com/privacy/privacy-policy
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). AddThis is not TADPF certified. Data transfers are based, among other things, on standard contractual clauses as suitable safeguards for the protection of personal data, which can be viewed at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de.
Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)
Meta Platforms Ireland and we are jointly responsible for the collection of your data and its transfer to Facebook when you use this service. This is based on an agreement between us and Meta Platforms Ireland regarding the joint processing of personal data, which defines the respective responsibilities. The agreement can be found at https://www.facebook.com/legal/controller_addendum accessible. We are then particularly responsible for fulfilling the information obligations pursuant to Articles 13 and 14 of the GDPR, for complying with the security requirements of Article 32 of the GDPR with regard to the correct technical implementation and configuration of the service, and for complying with the obligations under Articles 13 and 14 of the GDPR. Articles 33 and 34 of the GDPR apply, insofar as a personal data breach affects our obligations under the joint processing agreement. Meta Platforms Ireland is responsible for enabling data subject rights under Articles 15-20 of the GDPR, complying with the security requirements of Article 32 of the GDPR with regard to the security of the service, and fulfilling the obligations under Articles 33 and 34 of the GDPR, insofar as a personal data breach affects Meta Platforms Ireland's obligations under the joint processing agreement.
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). has certified itself according to the TADPF and has therefore committed itself to complying with European data protection principles.
For more information about how Facebook collects and uses data, your related rights and options for protecting your privacy, please see Facebook's privacy policy at https://www.facebook.com/about/privacy/.
https://help.instagram.com/155833707900388
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). has certified itself according to the TADPF and has therefore committed itself to complying with European data protection principles.
LinkedIn from LinkedIn Corporation (2029 Stierlin Court, Mountain View, CA 94043, USA)
https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). LinkedIn is not certified under the TADPF.
Pinterest from Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA)
https://policy.pinterest.com/de/privacy-policy
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not TADPF certified.
https://twitter.com/personalization
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). X is not certified under the TADPF.
https://www.xing.com/privacy
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Xing is not certified under the TADPF. Data transfers are based, among other things, on standard contractual clauses as suitable safeguards for the protection of personal data, which can be viewed at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de.
SoundCloud Global Limited & Co. KG (Rheinsberger Str. 76/77, 10115 Berlin, Germany)
https://soundcloud.com/pages/privacy
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). SoundCloud is not TADPF certified. Data transfers are based, among other things, on standard contractual clauses as suitable safeguards for the protection of personal data, which can be viewed at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de.
Using social plug-ins via "Shariff"
We use social network plugins on our website. To ensure you retain control over your data, we use the privacy-friendly "Shariff" buttons.
No links to the servers of the social networks will be established and consequently no data will be transmitted without your explicit consent.
"Shariff" is a development by the specialists at the computer magazine c't. It enables greater privacy online and replaces the usual "Share" buttons of social networks. More information about the Shariff project can be found here. https://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html.
When you click the buttons, a pop-up window will appear where you can log in to the respective provider with your credentials. A direct connection to the social networks will only be established after you have actively logged in.
By logging in, you consent to the transfer of your data to the respective social media provider. This includes, among other things, the transmission of your IP address and information about which of our pages you have visited. If you are simultaneously logged into one or more of your social network accounts, the collected information will also be associated with your corresponding profiles. You can only prevent this association by logging out of your social media accounts before visiting our website and before activating the buttons. The social networks listed below are integrated using the "Shariff" function.
Further information on the scope and purpose of the collection and use of data, as well as your related rights and options for protecting your privacy, can be found in the linked privacy policies of the providers.
AddThis from Oracle America, Inc. (500 Oracle Parkway, Redwood Shores, CA 94065, USA) https://www.addthis.com/privacy/privacy-policy
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). AddThis is not TADPF certified. Data transfers may occur, among other reasons, based on standard contractual clauses as suitable safeguards for the protection of personal data, available at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de.
Facebook of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland):
https://www.facebook.com/policy.php
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). has certified itself according to the TADPF and has therefore committed itself to complying with European data protection principles.
Instagram of Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland) https://help.instagram.com/155833707900388.
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and has therefore committed itself to complying with European data protection principles.
LinkedIn from LinkedIn Corporation (2029 Stierlin Court, Mountain View, CA 94043, USA)
https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). LinkedIn is not certified under the TADPF.
Pinterest from Pinterest Inc. (635 High Street, Palo Alto, CA, 94301, USA)
https://policy.pinterest.com/de/privacy-policy
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Pinterest is not TADPF certified.
https://twitter.com/personalization
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). X is not certified under the TADPF.
Xing of XING SE (Dammtorstraße 30, 20354 Hamburg):
https://www.xing.com/privacy
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Xing is not certified under the TADPF. Data transfers are based, among other things, on standard contractual clauses as suitable safeguards for the protection of personal data, which can be viewed at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de.
Using Google Maps
We use the Google Maps embedding function on our website, provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland, "Google").
This function enables the visual display of geographical information and interactive maps. When pages containing embedded Google Maps are accessed, Google also collects, processes, and uses data from website visitors.
Your data may also be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and has therefore committed itself to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent pursuant to Section 25 Paragraph 1. S. 1 TTDSG in conjunction with Art. 6 Para. 1 lit. The processing of your personal data is based on your consent pursuant to Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until its withdrawal.
Further information on the collection and use of data by Google can be found in Google's privacy policy at https://www.google.com/privacypolicy.html. There, in the Privacy Center, you also have the option to change your settings so that you can manage and protect your data processed by Google.
Using YouTube
We use the YouTube video embedding function on our website, provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “YouTube”). YouTube is a company affiliated with Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”).
This feature displays videos hosted on YouTube within an iFrame on the website. The "Enhanced Privacy Mode" option is enabled. This means that YouTube does not store any information about website visitors. Information is only transmitted to and stored by YouTube when you actually watch a video. Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). has certified itself according to the TADPF and has therefore committed itself to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent pursuant to Section 25 Paragraph 1. S. 1 TTDSG in conjunction with Art. 6 para. 1 lit. a GDPR. Your personal data is processed with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until its withdrawal.
For more information about how YouTube and Google collect and use data, your related rights and options for protecting your privacy, please see YouTube's privacy policy at [link to YouTube's privacy policy]. https://www.youtube.com/t/privacy.
Using Vimeo
We use plugins from Vimeo Inc. (555 West 18th Street New York, New York 10011, USA; “Vimeo”) on our website to embed videos from the “Vimeo” portal.
When you access pages on our website that contain such a plug-in, a connection is established to Vimeo's servers and the plug-in is displayed on the page by sending a message to your browser. This will transmit both your IP address and information about which of our pages you have visited to Vimeo's servers.
If you are logged into Vimeo, Vimeo will associate this information with your personal user account. When using the plug-in functions (e.g., by starting a video by clicking the corresponding button), this information will also be associated with your Vimeo account.
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Vimeo is not TADPF certified. Data transfers are based, among other things, on standard contractual clauses as suitable safeguards for the protection of personal data, which can be viewed at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de.
The use of cookies or similar technologies is based on your consent pursuant to Section 25 Paragraph 1 of the GDPR. 1 S. 1 TTDSG in conjunction with Art. 6 para. 1 lit. a GDPR. Your personal data is processed with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until its withdrawal.
For more information on the purpose and scope of the data collection, as well as on the further use and processing of the data by Vimeo, and on your related rights and options for protecting your privacy, please see Vimeo's privacy policy: https://vimeo.com/privacy
Use of Google Fonts
We use Google Fonts from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”) on our website.
The data processing serves the purpose of ensuring the uniform display of fonts on our website. To load the fonts, a connection to Google's servers is established when the page is accessed. Cookies may be used in this process. Your IP address and information about the browser you are using are processed and transmitted to Google. This data is not linked to your Google account.
Your data may be transferred to the USA. The EU Commission has issued an adequacy decision for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and has therefore committed itself to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent pursuant to Section 25 Paragraph 1. S. 1 TTDSG in conjunction with Art. 6 para. 1 lit. a GDPR. Your personal data is processed with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until its withdrawal.
Further information on data processing and data protection can be found at https://www.google.de/intl/de/policies/ as under https://developers.google.com/fonts/faq.
Data subject rights and storage period
Storage duration
After complete contract fulfillment, the data will initially be stored for the duration of the warranty period, then taking into account legal, in particular tax and commercial law retention periods, and then deleted after the expiry of the period, unless you have consented to further processing and use.
Rights of the data subject
Provided the legal requirements are met, you have the following rights under Art. Articles 15 to 20 of the GDPR address: the right to information, to rectification, to erasure, to restriction of processing, and to data portability.
Furthermore, pursuant to Article 21 Paragraph 1 GDPR, you have the right to object to processing based on Article 6 Paragraph 1 f GDPR, as well as to processing for direct marketing purposes.
Right to lodge a complaint with the supervisory authority
According to Article 77 of the GDPR, you have the right to lodge a complaint with the supervisory authority if you believe that the processing of your personal data is unlawful.
Right to object
If the processing of personal data listed here is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR, you have the right to object to this processing at any time with effect for the future on grounds relating to your particular situation.
After an objection has been lodged, the processing of the data in question will cease, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of establishing, exercising or defending legal claims.
Last updated: November 29, 2023