1) Information über die Erhebung personenbezogener Daten und Kontaktdaten des Verantwortlichen

1.1 Wir freuen uns, dass Sie unsere Website besuchen und danken Ihnen für Ihr Interesse. Auf den folgenden Seiten informieren wir Sie über den Umgang mit Ihren personenbezogenen Daten bei Nutzung unserer Website. Personenbezogene Daten sind hierbei alle Daten, mit denen Sie persönlich identifiziert werden können.

1.2 Der Verantwortliche für die Datenverarbeitung auf dieser Website im Sinne der Allgemeinen Datenschutzverordnung (DSGVO) ist Helena Hornyak, Herzgasse, 47/14, 1100 Wien, Austria, Phone.: +436767905232, e-mail: helenahornyak@thevibeof.com. Der für die Verarbeitung personenbezogener Daten Verantwortliche ist die natürliche oder juristische Person, die allein oder gemeinsam mit anderen über die Zwecke und Mittel der Verarbeitung personenbezogener Daten entscheidet.

2) Datenerfassung beim Besuch unserer Website

2.1 Bei der rein informatorischen Nutzung unserer Website, d.h. wenn Sie sich nicht registrieren oder uns anderweitig Informationen zur Verfügung stellen, erheben wir nur Daten, die Ihr Browser an unseren Server übermittelt (sog. “Server-Logfiles”). Wenn Sie unsere Website besuchen, erheben wir die folgenden Daten, die technisch notwendig sind, damit wir Ihnen die Website anzeigen können:

• Unsere besuchte Website
• Datum und Uhrzeit zum Zeitpunkt des Zugriffs
• Menge der gesendeten Daten in Bytes
• Quelle/Verweis, von der Sie auf die Seite gekommen sind
• Verwendeter Browser
• Verwendetes Betriebssystem
• Verwendete IP-Adresse (falls zutreffend: in anonymisierter Form)

Die Datenverarbeitung erfolgt in Übereinstimmung mit Art. 6 (1) Punkt f GDPR auf der Grundlage unseres berechtigten Interesses an der Verbesserung der Stabilität und Funktionalität unserer Website. Die Daten werden nicht weitergegeben oder anderweitig verwendet. Wir behalten uns jedoch vor, die Server-Logdateien nachträglich zu überprüfen, wenn es konkrete Anhaltspunkte für eine rechtswidrige Nutzung gibt.

2.2 Diese Website verwendet aus Sicherheitsgründen und zum Schutz der Übertragung von personenbezogenen Daten und anderen vertraulichen Inhalten (z.B. Bestellungen oder Anfragen an den Controller) eine SSL- oder TLS-Verschlüsselung. Eine verschlüsselte Verbindung erkennen Sie an der Zeichenkette https:// und dem Schloss-Symbol in Ihrer Browserzeile.

3) Hosting

3.1 Wix

For the hosting of our website and the display of the page content, we use the system of the following provider: Wix HQ, 6350671, Nemal Tel Aviv St 40, Tel Aviv-Yafo, Israel

Data is also transferred to: Wix Inc., 500 Terry A. Francois Boulevard, San Francisco, California 94158, USA

All data collected on our website is processed on the provider’s servers. We have concluded an order processing agreement with the provider, ensuring the protection of our site visitors’ data and prohibiting unauthorised disclosure to third parties.

In case of data transfer to the provider’s location, an adequate level of data protection is guaranteed by an adequacy decision of the European Commission.

For data transfers to the USA, the provider participates in the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

3.2 Cloudflare

We use a content delivery network offered by the following provider: Cloudflare Inc., 101 Townsend St. San Francisco, CA 94107, USA

This service enables us to deliver large media files such as graphics, page content or scripts faster via a network of regionally distributed servers. The processing is carried out to protect our legitimate interest in improving the stability and functionality of our website pursuant to Art. 6 (1) point f GDPR. We have concluded an order processing agreement with the provider, ensuring the protection of our site visitors’ data and prohibiting unauthorised disclosure to third parties.

For data transfers to the USA, the provider participates in the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

4) Cookies

Um den Besuch unserer Website attraktiv zu gestalten und die Nutzung bestimmter Funktionen zu ermöglichen, verwenden wir Cookies, d.h. kleine Textdateien, die auf Ihrem Endgerät gespeichert werden. In einigen Fällen werden diese Cookies nach dem Schließen des Browsers automatisch wieder gelöscht (sog. “Session-Cookies”), in anderen Fällen verbleiben diese Cookies länger auf Ihrem Endgerät und ermöglichen die Speicherung von Seiteneinstellungen (sog. “persistente Cookies”). Im letzteren Fall können Sie die Dauer der Speicherung in der Übersicht der Cookie-Einstellungen Ihres Webbrowsers nachlesen.

Wenn personenbezogene Daten auch durch einzelne von uns gesetzte Cookies verarbeitet werden, erfolgt die Verarbeitung entweder gemäß Art. 6 (1) Punkt b GDPR für die Erfüllung des Vertrages, gemäß Art. 6 (1) Punkt a GDPR im Falle einer erteilten Einwilligung oder gemäß Art. 6 (1) Punkt f GDPR zur Wahrung unserer berechtigten Interessen an einer bestmöglichen Funktionalität der Website sowie einer kundenfreundlichen und effektiven Gestaltung des Seitenbesuchs.

Sie können Ihren Browser so einstellen, dass Sie über das Setzen von Cookies informiert werden und Sie können individuell über deren Annahme entscheiden oder die Annahme von Cookies für bestimmte Fälle oder generell ausschließen.

Bitte beachten Sie, dass die Funktionalität unserer Website eingeschränkt sein kann, wenn Cookies nicht akzeptiert werden.

5) Kontaktaufnahme

5.1 Calendly

For the provision of an online appointment booking function, we use the services of the following provider: Calendly, LLC, BB&T Tower, 271 17th St NW, Atlanta, GA 30363, USA

For the purpose of making an appointment, your first name, surname and e-mail address (and telephone number, if a telephone appointment is requested) are collected in accordance with Art. 6 (1) point b GDPR and transferred to the provider in accordance with Art. 6 (1) point f GDPR on the basis of our legitimate interest in effective customer management and efficient appointment management and stored there for the purpose of organising the appointments.

After the appointment has been held or after the agreed appointment period has expired, your data will be deleted by the provider.

We have concluded an order processing agreement with the provider, which ensures the protection of our website visitors’ data and prohibits unauthorised disclosure to third parties.

For data transfers to the USA, the provider participates in the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

5.2 Wenn Sie mit uns Kontakt aufnehmen (z.B. per Kontaktformular oder E-Mail), werden personenbezogene Daten erhoben. Welche Daten im Falle eines Kontaktformulars erhoben werden, können Sie dem jeweiligen Kontaktformular entnehmen. Diese Daten werden ausschließlich zum Zweck der Beantwortung Ihrer Anfrage oder der Kontaktaufnahme und der damit verbundenen technischen Administration gespeichert und verwendet.

Die Rechtsgrundlage für die Verarbeitung der Daten ist unser berechtigtes Interesse an der Beantwortung Ihrer Anfrage gemäß Art. 6 (1) Punkt f GDPR. Wenn Ihre Kontaktaufnahme auf den Abschluss eines Vertrages abzielt, ist die zusätzliche Rechtsgrundlage für die Verarbeitung Art. 6 (1) Punkt b GDPR. Ihre Daten werden nach abschließender Bearbeitung Ihrer Anfrage gelöscht; dies ist der Fall, wenn sich aus den Umständen entnehmen lässt, dass der betreffende Sachverhalt abschließend geklärt ist, sofern dem keine gesetzlichen Aufbewahrungspflichten entgegenstehen.

6) Datenverarbeitung bei Eröffnung eines Kundenkontos und zur Vertragsabwicklung

Gemäss Art. 6 (1) Punkt b GDPR werden weiterhin personenbezogene Daten in dem jeweils erforderlichen Umfang erhoben und verarbeitet, wenn Sie uns diese Daten bei der Eröffnung eines Kundenkontos zur Verfügung stellen. Die für die Eröffnung eines Kontos erforderlichen Daten finden Sie in der Eingabemaske des entsprechenden Formulars auf unserer Website. Die Löschung Ihres Kundenkontos ist jederzeit möglich und kann durch eine Nachricht an die oben genannte Adresse des Verantwortlichen erfolgen. Nach Löschung Ihres Kundenkontos werden Ihre Daten gelöscht, sofern alle darüber abgeschlossenen Verträge vollständig abgewickelt sind, keine gesetzlichen Aufbewahrungsfristen entgegenstehen und kein berechtigtes Interesse unsererseits an der weiteren Speicherung besteht.

7) Nutzung von Kundendaten zur Direktwerbung

Brevo

Our e-mail newsletters are sent via this provider: Sendinblue SAS, 55 Rue d’Amsterdam, 75008 Paris, France

On the basis of our legitimate interest in effective and user-friendly newsletter marketing, we pass on the data you provided when registering for the newsletter to this provider in accordance with Art. 6 (1) point f GDPR so that they can send the newsletter on our behalf.

Subject to your express consent pursuant to Art. 6 (1) point a GDPR, the provider also carries out a statistical analysis of the success of newsletter campaigns by means of web beacons or tracking pixels in the emails sent, which can measure opening rates and specific interactions with the newsletter content. In the process, end device information (e.g. time of page view, IP address, browser type and operating system) is also collected and analysed, but not combined with other data records.

You can revoke your consent to newsletter tracking at any time with effect for the future.

We have concluded an order processing agreement with the provider, which safeguards the data of our website visitors and prohibits a transfer to third parties.

8) Datenverarbeitung zur Bestellabwicklung

8.1 Soweit es für die Abwicklung des Vertrages zu Liefer- und Zahlungszwecken erforderlich ist, werden die von uns erhobenen personenbezogenen Daten an das beauftragte Transportunternehmen und das beauftragte Kreditinstitut nach Maßgabe des Art. 6 Abs. 1 lit. b GDPR weitergegeben.

Sofern wir Ihnen aufgrund eines entsprechenden Vertrages Updates für Waren mit digitalen Elementen oder für digitale Produkte schulden, verarbeiten wir die von Ihnen bei der Bestellung angegebenen Kontaktdaten (Name, Anschrift, E-Mail-Adresse), um Sie persönlich durch geeignete Kommunikationsmittel (z.B. per Post oder E-Mail) über anstehende Updates innerhalb der gesetzlich vorgeschriebenen Frist im Rahmen unserer gesetzlichen Informationspflicht gemäß Art. 6 Abs. 1 lit. c GDPR. Ihre Kontaktdaten werden ausschließlich zu dem Zweck verwendet, Sie über von uns geschuldete Aktualisierungen zu informieren und werden von uns zu diesem Zweck nur insoweit verarbeitet, als dies für die jeweilige Information erforderlich ist.

Um Ihre Bestellung zu bearbeiten, arbeiten wir auch mit dem/den folgenden Dienstleister(n) zusammen, der/die uns ganz oder teilweise bei der Ausführung der geschlossenen Verträge unterstützt/unterstützen. Bestimmte personenbezogene Daten werden gemäß den nachfolgenden Informationen an diese Dienstleister weitergegeben.

8.2 Nutzung von Zahlungsdienstleistern

– Apple Pay
If you choose the payment method “Apple Pay” of Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland, the payment processing is carried out via the “Apple Pay” function of your terminal device operated with iOS, watchOS or macOS by debiting a payment card deposited with “Apple Pay”. Apple Pay uses security features built into the hardware and software of your device to protect your transactions. In order to release a payment, it is therefore necessary to enter a code previously defined by you and to verify it using the “Face ID” or “Touch ID” function of your terminal.
For the purpose of payment processing, your information provided during the ordering process, along with information about your order, will be transmitted to Apple in encrypted form. Apple then encrypts this data again with a developer-specific key before the data is transmitted to the payment service provider of the payment card stored in Apple Pay for payment processing. The encryption ensures that only the website from which the purchase was made can access the payment information. After the payment is made, Apple sends your device account number and a transaction-specific dynamic security code to the originating website to confirm the payment.
If personal data is processed in the described transmissions, the processing is carried out exclusively for the purpose of payment processing in accordance with Art. 6 Para. 1 lit. b GDPR.
Apple retains anonymised transaction data, including the approximate amount of the purchase, the approximate date and time and whether the transaction was completed successfully. Anonymisation completely excludes any personal reference. Apple uses the anonymised data to improve Apple Pay and other Apple products and services.
When you use Apple Pay on iPhone or the Apple Watch to complete a purchase made through Safari on Mac, the Mac and the authorization device communicate through an encrypted channel on Apple’s servers. Apple does not process or store this information in any format that can identify you personally. You can disable the ability to use Apple Pay on your Mac in your iPhone preferences. Go to “Wallet & Apple Pay” and disable “Allow payments on Mac”.
For more information about Apple Pay privacy, please visit the following web address: https://support.apple.com/en-gb/HT203027
– giropay

Online payment methods from the following provider are available on this website: paydirekt GmbH, Stephanstr. 14-16, 60313 Frankfurt am Main, Germany

If you select a payment method of the provider for which you make an advance payment (e.g. credit card payment), your payment data provided during the ordering process (including name, address, bank and payment card information, currency and transaction number) as well as information about the content of your order will be passed on to the provider in accordance with Art. 6 (1) point b GDPR. In this case, your data will only be passed on for the purpose of processing payment with the provider and only to the extent necessary for this purpose.
– Klarna

Online payment methods from the following provider are available on this website: Klarna Bank AB, Sveavägen 46, 111 34 Stockholm, Sweden

If you select a payment method of the provider for which you make an advance payment (e.g. credit card payment), your payment data provided during the ordering process (including name, address, bank and payment card information, currency and transaction number) as well as information about the content of your order will be passed on to the provider in accordance with Art. 6 (1) point b GDPR. In this case, your data will only be passed on for the purpose of processing payment with the provider and only to the extent necessary for this purpose.

When selecting a payment method of the provider with which the provider makes advance payments (such as invoice purchase or instalment purchase or direct debit), you will also be asked to provide certain personal data (first name and surname, street, house number, postcode, city, date of birth, e-mail address, telephone number, if applicable data on alternative means of payment) during the ordering process.

In order to safeguard our legitimate interest in determining the solvency of our customers, this data is passed on to the provider by us for the purpose of a credit check in accordance with Art. 6 (1) point f GDPR. On the basis of the personal data provided by you as well as further data (such as shopping cart, invoice total, order history, payment history), the provider checks whether the payment option selected by you can be granted with regard to payment and/or bad debt risks.

In addition to internal provider criteria, identity and creditworthiness information from the following credit agencies may also be included in the decision-making process as part of the application review in accordance with Art. 6 (1) point f GDPR:

https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies

The credit report may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they have their basis in a scientifically recognised mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data.

You can object to this processing of your data at any time by sending a message to us or to the provider. However, the provider may still be entitled to process your personal data if this is necessary for the contractual processing of payments.
– Paypal

Online payment methods from the following provider are available on this website: PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg

If you select a payment method of the provider for which you make an advance payment, your payment data provided during the ordering process (including name, address, bank and payment card information, currency and transaction number) as well as information about the content of your order will be passed on to the provider in accordance with Art. 6 (1) point b GDPR. In this case, your data will only be passed on for the purpose of processing payment with the provider and only to the extent necessary for this purpose.

When selecting a payment method of the provider with which the provider makes advance payments, you will also be asked to provide certain personal data (first name and surname, street, house number, postcode, city, date of birth, e-mail address, telephone number, if applicable data on alternative means of payment) during the ordering process.

In order to safeguard our legitimate interest in determining the solvency of our customers, this data is passed on to the provider by us for the purpose of a credit check in accordance with Art. 6 (1) point f GDPR. On the basis of the personal data provided by you as well as further data (such as shopping cart, invoice total, order history, payment history), the provider checks whether the payment option selected by you can be granted with regard to payment and/or bad debt risks.

The credit report may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they have their basis in a scientifically recognised mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data.

You can object to this processing of your data at any time by sending a message to us or to the provider. However, the provider may still be entitled to process your personal data if this is necessary for the contractual processing of payments.
– Paypal Checkout

This website uses PayPal Checkout, an online payment system from PayPal, which consists of PayPal’s own payment methods and local payment methods from third-party providers.

When paying via PayPal, credit card via PayPal, direct debit via PayPal or – if offered – “Pay Later” via PayPal, we pass on your payment data to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”) as part of the payment processing. The transfer takes place in accordance with Art. 6 Para. 1 lit. b GDPR and only insofar as this is necessary for the payment processing.

For the payment methods credit card via PayPal, direct debit via PayPal or – if offered – “Pay later” via PayPal – PayPal reserves the right to conduct a credit check. For this purpose, your payment data may be passed on to credit agencies in accordance with Art. 6 Para. 1 lit. f GDPR on the basis of PayPal’s legitimate interest in determining your solvency. PayPal uses the result of the credit check in terms of the statistical probability of non-payment for the purpose of deciding on the provision of the respective payment method. The creditworthiness information may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they have their basis in a scientifically recognised mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for the contractual processing of payments.

If you select the PayPal payment method “purchase on account”, your payment data will first be transferred to PayPal in preparation for payment, whereupon PayPal will forward them to Ratepay GmbH, Franklinstraße 28-29, 10587 Berlin (“Ratepay”) in order to carry out the payment. The legal basis in each case is Art. 6 para. 1 lit. b GDPR. In this case, RatePay carries out an identity and creditworthiness check on its own behalf to determine solvency in accordance with the principle already mentioned above and passes on your payment data to credit agencies on the basis of the legitimate interest in determining solvency in accordance with Art. 6 Para. 1 lit. f GDPR. A list of the credit agencies that Ratepay may use can be found here: https://www.ratepay.com/legal-payment-creditagencies/

When using the payment method of a local third party provider, your payment data will first be forwarded to PayPal for the preparation of the payment in accordance with Art. 6 (1) lit. b GDPR. Depending on your selection of an available local payment method, PayPal will then transfer your payment data to the corresponding provider in order to carry out the payment in accordance with Art. 6 Para. 1 lit. b GDPR:

– Apple Pay (Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Irland)
– Google Pay (Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Irland)
– Klarna (Klarna Bank AB ((publ), Sveavägen 46, 11134 Stockholm, Sweden))
– iDeal (Currence Holding BV, Beethovenstraat 300 Amsterdam, Netherlands)
– bancontact (Bancontact Payconiq Company, Rue d’Arlon 82, 1040 Brussels, Belgium)
– blik (Polski Standard Płatności sp. z o.o., ul. Czerniakowska 87A, 00-718 Warsaw, Poland)
– eps (PSA Payment Services Austria GmbH, Handelskai 92, Gate 2
1200 Vienna, Austria)
– MyBank (PRETA S.A.S, 40 Rue de Courcelles, F-75008 Paris, France)
– Przelewy24 (PayPro SA, Kanclerska 15A, 60-326 Poznań, Poland).
For further information on data protection, please refer to PayPal’s privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full
– Instant Transfer via Klarna

Online payment methods from the following provider are available on this website: Klarna Bank AB (publ), Sveavägen 46, 11134 Stockholm, Sweden

If you select a payment method of the provider for which you make an advance payment (e.g. credit card payment), your payment data provided during the ordering process (including name, address, bank and payment card information, currency and transaction number) as well as information about the content of your order will be passed on to the provider in accordance with Art. 6 (1) point b GDPR. In this case, your data will only be passed on for the purpose of processing payment with the provider and only to the extent necessary for this purpose.
– Stripe

Online payment methods from the following provider are available on this website: Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland

If you select a payment method of the provider for which you make an advance payment (e.g. credit card payment), your payment data provided during the ordering process (including name, address, bank and payment card information, currency and transaction number) as well as information about the content of your order will be passed on to the provider in accordance with Art. 6 (1) point b GDPR. In this case, your data will only be passed on for the purpose of processing payment with the provider and only to the extent necessary for this purpose.
– Thrivecart

Online payment methods from the following provider are available on this website: WebActix Ltd, 6 Boulder Lane, Pyes Pa, Tauranga 3112, New Zealand

If you select a payment method of the provider for which you make an advance payment (such as credit card payment), the payment data you provide during the ordering process (including name, address, bank and payment card information, currency and transaction number) as well as information about the content of your order will be passed on to the provider in accordance with Art. 6 para. 1 lit. b GDPR. In this case, your data will only be passed on for the purpose of payment processing with the provider and only to the extent that it is necessary for this purpose.

In the case of data transfer to the provider’s location, an appropriate level of data protection is guaranteed by an adequacy decision of the European Commission.

8.3 Elektronische Kündigungsmöglichkeit für Dauerschuldverhältnisse mit Verbrauchern

Verbraucher, die auf dieser Website Verträge über kostenpflichtige Dauerschuldverhältnisse (z.B. Abonnementverträge) abgeschlossen haben, haben die Möglichkeit, diese Verträge über eine elektronische Schaltfläche unter Einhaltung der geltenden Kündigungsfristen zu kündigen. Das Betätigen der Schaltfläche führt zu einer Bestätigungsseite, auf der der Verbraucher nähere Angaben zur Kündigung machen, sich eindeutig identifizieren und anschließend seine Kündigung elektronisch erklären kann. Die Erhebung der personenbezogenen Daten und deren Übermittlung an uns erfolgt gemäß Art. 6 (1) Punkt b GDPR und nur in dem Umfang, der für die ordnungsgemäße Bearbeitung der Kündigung erforderlich ist. Gemäß Art. 6 (1) Punkt b GDPR werden die übermittelten personenbezogenen Daten auch verwendet, um den Erhalt der Kündigungserklärung und das Kündigungsdatum auf elektronischem Wege in Textform zu bestätigen. Die zusätzliche Rechtsgrundlage für diese Verarbeitung ist Art. 6 (1) Punkt c GDPR. Wir sind gesetzlich verpflichtet, bei Verbraucherverträgen, die im Wege des elektronischen Geschäftsverkehrs geschlossen wurden, eine elektronische Kündigungsmöglichkeit für zahlungspflichtige Dauerschuldverhältnisse anzubieten.

9) Webanalysedienste

9.1 Google (Universal) Analytics

This website uses Google (Universal) Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).

Google (Universal) Analytics uses “cookies”, which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of this website (including the abbreviated IP address) is usually transferred to a Google server and stored there and may also be transferred to the servers of Google LLC. in the USA.

This website uses Google (Universal) Analytics exclusively with the extension “_anonymizeIp()”, which ensures anonymization of the IP address by shortening it and excludes the possibility of direct personal reference. Through the extension, your IP address will be shortened by Google within member states of the European Union or in other signatory states of the Agreement on the European Economic Area before. Only in exceptional cases will the full IP address be transferred to a server of Google LLC. in the USA and shortened there.

On our behalf, Google will use this information to evaluate your use of the website, to compile reports on the website activities and to provide us with further services related to the use of the website and the Internet. The IP address transmitted by your browser within the framework of Google (Universal) Analytics is not combined with other Google data.

All the processing described above, in particular the setting of Google Analytics cookies for reading information on the terminal device used, is only carried out if you have given us your express consent in accordance with Art. 6 Para. 1 letter a GDPR. Without this consent, the use of Google Analytics during your visit to our website will not take place.

You can withdraw your consent at any time with effect for the future. To exercise your right of withdrawal of consent, please deactivate this service in the “Cookie-Consent-Tool” provided on the website.

We have concluded an order processing agreement with Google, which ensures the protection of our site visitors’ data and prohibits unauthorised disclosure to third parties.

For data transfers to the USA, the provider participates in the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

Further information about Google (Universal) Analytics can be found here: https://policies.google.com/privacy?hl=en&gl=en and https://business.safety.google/privacy/

Demographics
Via a special function called “Demographics”, Google Analytics also enables the compilation of statistics with statements about the age, gender and interests of site visitors based on an evaluation of interest-related advertising and with the use of third-party information. This allows the definition and differentiation of user groups of the website for the purpose of target-group-optimized marketing measures. However, data sets collected via “Demographics” cannot be assigned to a specific person.
Details on the processing operations initiated and on Google’s handling of data collected from websites can be found here: https://policies.google.com/technologies/partner-sites?hl=en

Google Signals
On this website, the “Google Signals” service can also be used as an extension of Google Analytics. With Google Signals, cross-device reports can be created by Google (so-called “cross-device tracking”). If you have activated “personalised ads” in your Google account settings and you have linked your internet-enabled devices to your Google account, Google can analyse user behaviour across devices and create database models based on this, provided you have given your consent to the use of Google Analytics in accordance with Art. 6 Para. 1 letter a GDPR (see above). The logins and device types of all page visitors who were logged into a Google account and performed a conversion are taken into account. The data shows, among other things, on which device you first clicked on an ad and on which device the associated conversion took place. Insofar as Google Signals is used, we do not receive any personal data from Google, but only statistics compiled on the basis of Google Signals. You have the option of deactivating the “personalised ads” function in the settings of your Google account and thus turning off the cross-device analysis. To do this, follow the instructions on this page: https://support.google.com/ads/answer/2662922?hl=de
Further information can be found here: https://support.google.com/analytics/answer/7532985?hl=de

UserIDs
As an extension of Google Analytics, the “UserIDs” function can also be used on this website. By assigning individual UserIDs, we can have Google create cross-device reports (so-called “cross-device tracking”). This means that your usage behaviour can also be analysed across devices if you have given your corresponding consent to the use of Google Analytics in accordance with Art. 6 Para. 1 letter a GDPR, if you have set up a personal account by registering on this website and are logged into your personal account on different end devices with your relevant login data. The data collected in this way shows, among other things, on which end device you clicked on an ad for the first time and on which end device the relevant conversion took place.

9.2 Google Analytics 4

This website uses Google Analytics 4, a service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”), which can be used to analyze the use of websites.

When using Google Analytics 4, so-called “cookies” are used as standard. Cookies are text files that are stored on your terminal device and enable an analysis of your use of a website. The information collected by cookies about your use of the website (including the IP address transmitted by your terminal device, shortened by the last digits, see below) is usually transmitted to a Google server and stored and processed there. This may also result in the transmission of information to the servers of Google LLC, a company based in the USA, where the information is further processed.

When using Google Analytics 4, the IP address transmitted by your terminal device when you use the website is always collected and processed by default and automatically only in an anonymized manner, so that a direct personal reference of the collected information is excluded. This automatic anonymization is carried out by shortening the IP address transmitted by your terminal device by Google within member states of the European Union (EU) or other contracting states of the Agreement on the European Economic Area (EEA) by the last digits.

On our behalf, Google uses this and other information to evaluate your use of the website, to compile reports (reports) on your website activities or your usage behavior and to provide us with other services related to your website usage and internet usage. In this context, the IP address transmitted and shortened by your terminal device within the scope of Google Analytics 4 will not be merged with other data from Google. The data collected in the context of the use of Google Analytics 4 will be retained for 2 months and then deleted.

Google Analytics 4 also enables the creation of statistics with statements about age, gender and interests of website users on the basis of an evaluation of interest-based advertising and with the involvement of third-party information via a special function, the so-called “demographic characteristics”. This makes it possible to determine and distinguish between groups of website users for the purpose of targeting marketing measures. However, data collected via the “demographic characteristics” cannot be assigned to a specific person and thus not to you personally. This data collected via the “demographic characteristics” function is retained for two months and then deleted.

All processing described above, in particular the setting of Google Analytics cookies for the storage and reading of information on the terminal device used by you for the use of the website, will only take place if you have given us your express consent for this in accordance with Art. 6 para. 1 letter a GDPR. Without your consent, Google Analytics 4 will not be used during your use of the website.

You can revoke your consent once given at any time with effect for the future. To exercise your revocation, please deactivate this service via the “Cookie Consent Tool” provided on the website.

Google Signals
On this website, the “Google Signals” service can also be used as an extension of Google Analytics 4. With Google Signals, cross-device reports can be created by Google (so-called “cross-device tracking”). If you have activated “personalised ads” in your Google account settings and you have linked your internet-enabled devices to your Google account, Google can analyse user behaviour across devices and create database models based on this, provided you have given your consent to the use of Google Analytics in accordance with Art. 6 para. 1 letter a GDPR (see above). The logins and device types of all page visitors who were logged into a Google account and performed a conversion are taken into account. The data shows, among other things, on which device you first clicked on an ad and on which device the associated conversion took place. Insofar as Google Signals is used, we do not receive any personal data from Google, but only statistics compiled on the basis of Google Signals. You have the option of deactivating the “personalised ads” function in the settings of your Google account and thus turning off the cross-device analysis. To do this, follow the instructions on this page: https://support.google.com/ads/answer/2662922?hl=de
Further information can be found here: https://support.google.com/analytics/answer/7532985?hl=de

User IDs
As an extension of Google Analytics 4, the “UserIDs” function can also be used on this website. By assigning individual UserIDs, we can have Google create cross-device reports (so-called “cross-device tracking”). This means that your usage behaviour can also be analysed across devices if you have given your corresponding consent to the use of Google Analytics in accordance with Art. 6 para. 1 letter a GDPR, if you have set up a personal account by registering on this website and are logged into your personal account on different end devices with your relevant login data. The data collected in this way shows, among other things, on which end device you clicked on an ad for the first time and on which end device the relevant conversion took place.

We have concluded a so-called data processing agreement with Google for our use of Google Analytics 4, by which Google is obliged to protect the data of our website users and not to pass it on to third parties.

For data transfers to the USA, the provider participates in the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

Further legal information on Google Analytics 4 can be found here: https://policies.google.com/privacy?hl=en and https://business.safety.google/privacy/

Details on the processing triggered by Google Analytics 4 and Google’s handling of data from websites can be found here: https://policies.google.com/technologies/partner-sites

10) Retargeting/ Remarketing/ Empfehlungswerbung

10.1 Meta Pixel

Within our online offering, we use the “Meta Pixel” service of the following provider: Meta Platforms Ireland Limited, 4 Grand Canal Quare, Dublin 2, Ireland (“Meta”)

If a user clicks on an advert placed by us on Facebook and/or Instagram, “Meta Pixel” is used to add a parameter to the URL of our linked page. This URL parameter is then entered into the user’s browser after redirection by a cookie that our linked page sets itself.

This makes it possible for Meta to determine the visitors to our online offering as a target group for the display of adverts. Accordingly, we use the service to display the Facebook and/or Instagram ads placed by us only to those users who have also shown an interest in our online offering or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited), which we transmit to Meta (so-called “custom audiences”).

On the other hand, the “Meta Pixel” can be used to track whether users have been redirected to our website after clicking on an advert and what actions they take there (so-called “conversion tracking”).

The data collected is anonymous to us and therefore does not allow us to draw any conclusions about the identity of users. However, the data is stored and processed by Meta so that a connection to the respective user profile is possible and Meta can use the data for its own advertising purposes.

All processing described above, in particular the setting of cookies for reading information on the terminal device used, will only be carried out if you have given us your express consent to do so in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future by deactivating this service in the “cookie consent tool” provided on the website.

We have concluded an order processing contract with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorised disclosure to third parties.

The information generated by Meta is usually transferred to a Meta server and stored there; in this context, it may also be transferred to servers of Meta Platforms Inc. in the USA.

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

10.2 Google Ads Remarketing

This website uses the online advertising program “Google Ads” and, within the scope of Google Ads, the conversion tracking of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). We use Google Ads to draw attention to our attractive offers on external websites with the help of advertising media (so-called Google Adwords). We can determine how successful the individual advertising measures are in relation to the data of the advertising campaigns. In this way, we pursue the concern of showing you advertising that is of interest to you, making our website more interesting for you and achieving a fair calculation of the advertising costs incurred

The conversion tracking cookie is set when a user clicks on an ad placed by Google. Cookies are small text files that are stored on your terminal device. These cookies usually lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of this website and the cookie has not yet expired, Google and we can recognize if the user has clicked on the ad and has been directed to this page. Each Google Ads customer receives a different cookie. Cookies therefore cannot be tracked across Google Ads customers’ websites. The information obtained using the conversion cookie is used to create conversion statistics for Google Ads customers who have chosen conversion tracking. Customers learn the total number of users who clicked on their ad and who were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users. The use of Google Ads may also result in the transmission of personal data to the servers of Google LLC. in the USA.

Details on the processing operations initiated by Google Ads conversion tracking and on Google’s handling of data collected from websites can be found here: https://policies.google.com/technologies/partner-sites?hl=en
All processing described above, in particular the setting of cookies for the reading of information on the end device used, will only be carried out if you have given us your express consent to do so in accordance with Art. 6 (1) point a GDPR. Without this consent, Google Conversion Tracking will not be used during your visit to the website.

You can permanently disable the setting of cookies by Google Ads Conversion Tracking for advertising preferences. You may download and install the browser plug-in available at the following link: https://support.google.com/ads/answer/7395996?
Please note that certain functions of this website may not be available or may be restricted if you have deactivated the use of cookies.

Further information about Google’s privacy policy can be found here: https://www.google.com/policies/technologies/ads/ and https://business.safety.google/privacy/

For data transfers to the USA, the provider participates in the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

11) Seitenfunktionalitäten

11.1 Vimeo

This website uses plugins to display and play videos from the following provider: Vimeo.com, Inc., 330 West 34th Street, 10th Floor, New York, NY 10001, USA

When you call up a page of our website that contains such a plugin, your browser establishes a direct connection to the provider’s servers to load the plugin. This involves certain information, including your IP address, being transmitted to the provider.

If the playback of embedded videos is started via the plugin, the provider also uses cookies to collect information about user behavior, to create playback statistics and to prevent abusive behavior.

If you are logged into a user account maintained by the provider during your visit to the site, your data will be directly assigned to your account when you click on a video. If you do not wish to have your data assigned to your account, you must log out before clicking on the play button.

All the above-mentioned processing, in particular the setting of cookies for reading out information on the end device used, only takes place if you have given us your express consent in accordance with Art. 6 (1) point a GDPR. You can revoke your consent at any time with effect for the future by deactivating this service via the “cookie consent tool” provided on the website.

For data transfers to the USA, the provider participates in the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

11.2 Google Web Fonts

This site uses so-called web fonts from the following provider to display fonts in a uniform manner: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data is also transferred to: Google LLC, USA

When you call up a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly and establishes a direct connection to the provider’s servers. In this process, certain browser information, including your IP address, is transmitted to the provider.

The processing of personal data while establishing the connection with the provider of the fonts is only carried out if you have given us your express consent to do so in accordance with Art. 6 (1) point a GDPR. You can revoke your consent at any time with effect for the future by deactivating this service via the “cookie consent tool” provided on the website. If your browser does not support web fonts, a standard font will be used by your computer.

For data transfers to the USA, the provider participates in the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

Further information on Google’s privacy standards can be found here: https://business.safety.google/privacy/

11.3 Zoom

We use this provider to conduct online meetings, video conferences and/or webinars: Zoom Video Communications Inc, 55 Almaden Blvd, Suite 600, San Jose, CA 95113, USA

The provider processes different data, whereby the scope of the processed data depends on the data you provide before or during the participation in an online meeting, video conference or webinar. Your data as a communication participant is processed and stored on servers of the provider. This may include, in particular, your registration data (name, e-mail address, telephone number (optional) and password) and session data (topic, participant IP address, device information, description (optional)). In addition, participants’ image and sound contributions as well as voice input in chats may be processed.

For the processing of personal data that is necessary for the performance of a contract with you (this also applies to processing operations that are necessary for the implementation of pre-contractual measures), Art. 6 (1) point b GDPR serves as the legal basis. If you have given us your consent to process your data, the processing is based on Art. 6 (1) point a GDPR. You can revoke your consent at any time with effect for the future.
In addition, the legal basis for data processing when conducting online meetings, video conferences or webinars is our legitimate interest pursuant to Art. 6 (1) point f GDPR in the effective conduct of the online meeting, webinar or video conference.

We have concluded an order processing agreement with the provider, which ensures the protection of our website visitors’ data and prohibits unauthorised disclosure to third parties.

For data transfers to the USA, the provider participates in the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

11.4 Google Forms

We use the services of the following provider to conduct surveys or for online forms: Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland

In addition to a transfer of data to the above-mentioned provider location, data may also be transferred to: Google LLC, USA

The provider enables us to design and analyse surveys and online forms. In addition to the personal data that you enter into the forms, information on your operating system, browser, date and time of your visit, referrer URL and your IP address is also collected, transferred to the provider and stored on the provider’s servers.

The information you enter in the forms is stored under password protection to ensure that third party access is excluded and that only we can analyse the data for the purpose specified in the form.

For the processing of personal data that is necessary for the performance of a contract with you (this also applies to processing operations that are necessary for the implementation of pre-contractual measures), Art. 6 (1) point b GDPR serves as the legal basis. If you have given us your consent for the processing of your data, the processing is based on Art. 6 (1) point a GDPR. Consent given can be revoked at any time with effect for the future.

We have concluded an order processing agreement with the provider, which ensures the protection of our website visitors’ data and prohibits unauthorised disclosure to third parties.

For data transfers to the USA, the provider participates in the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

Further information on Google’s privacy standards can be found here: https://business.safety.google/privacy/

12) Tools und Sonstiges

Diese Website verwendet ein sogenanntes “Cookie-Einwilligungstool”, um eine wirksame Zustimmung des Nutzers für Cookies und Cookie-basierte Anwendungen, die eine Zustimmung erfordern, zu erhalten. Das “Cookie-Einwilligungstool” wird den Nutzern beim Zugriff auf die Seite in Form einer interaktiven Benutzeroberfläche angezeigt, auf der die Einwilligung für bestimmte Cookies und/oder Cookie-basierte Anwendungen durch Ankreuzen des entsprechenden Kästchens erteilt werden kann.

Mit Hilfe des Tools werden alle Cookies/Dienste, die eine Zustimmung erfordern, nur geladen, wenn der jeweilige Nutzer die entsprechende Zustimmung durch Ankreuzen des entsprechenden Kästchens erteilt. Dadurch wird sichergestellt, dass solche Cookies nur dann auf dem jeweiligen Endgerät des Nutzers gesetzt werden, wenn die Zustimmung erteilt wurde.

Das Tool setzt technisch notwendige Cookies, um Ihre Cookie-Einstellungen zu speichern. Personenbezogene Nutzerdaten werden grundsätzlich nicht verarbeitet.
Wenn im Einzelfall personenbezogene Daten (wie z.B. die IP-Adresse) zum Zwecke der Speicherung, Zuordnung oder Protokollierung von Cookie-Einstellungen verarbeitet werden, geschieht dies gemäß Art. 6 (1) Punkt GDPR auf der Grundlage unseres berechtigten Interesses an einem rechtskonformen, nutzerspezifischen und nutzerfreundlichen Einwilligungsmanagement für Cookies und damit an einer rechtskonformen Gestaltung unserer Website.
Weitere Rechtsgrundlage für die Verarbeitung ist Art. 6 (1) Punkt c GDPR. Als Verantwortlicher unterliegen wir der gesetzlichen Verpflichtung, den Einsatz technisch nicht notwendiger Cookies von der jeweiligen Einwilligung der Nutzer abhängig zu machen.
Weitere Informationen zum Betreiber und den Einstellungsmöglichkeiten des Cookie-Einwilligungstools finden Sie direkt in der entsprechenden Benutzeroberfläche auf unserer Website.

13) Rechte des Betroffenen

13.1 Das geltende Datenschutzrecht gewährt Ihnen die folgenden umfassenden Betroffenenrechte (Auskunfts- und Interventionsrechte) gegenüber dem für die Datenverarbeitung Verantwortlichen in Bezug auf die Verarbeitung Ihrer personenbezogenen Daten:

• Recht auf Auskunft durch die betroffene Person gemäß Art. 15 GDPR;
• Recht auf Berichtigung gemäß Art. 16 GDPR;
• Recht auf Löschung (“Recht auf Vergessenwerden”) gemäß Art. 17 GDPR;
• Recht auf Einschränkung der Verarbeitung gemäß Art. 18 GDPR;
• Recht auf Information gemäß Art. 19 GDPR;
• Recht auf Datenübertragbarkeit gemäß Art. 20 GDPR;
• Recht auf Widerruf einer erteilten Einwilligung gemäß Art. 7 (3) GDPR;
• Recht auf Einreichung einer Beschwerde gemäß Art. 77 GDPR.

14) Dauer der Speicherung personenbezogener Daten

Die Dauer der Speicherung personenbezogener Daten richtet sich nach der jeweiligen Rechtsgrundlage, dem Zweck der Verarbeitung und – falls relevant – nach der jeweiligen gesetzlichen Aufbewahrungsfrist (z. B. handels- und steuerrechtliche Aufbewahrungsfristen).

Wenn personenbezogene Daten auf der Grundlage einer ausdrücklichen Einwilligung gemäß Art. 6 (1) Punkt a GDPR verarbeitet, werden diese Daten gespeichert, bis die betroffene Person ihre Einwilligung widerruft.

Wenn es gesetzliche Aufbewahrungsfristen für Daten gibt, die im Rahmen gesetzlicher oder ähnlicher Verpflichtungen auf der Grundlage von Art. 6 (1) Punkt b GDPR verarbeitet werden, werden diese Daten nach Ablauf der Aufbewahrungsfristen routinemäßig gelöscht, wenn sie für die Vertragserfüllung oder Vertragsanbahnung nicht mehr erforderlich sind und/oder wenn wir kein berechtigtes Interesse mehr an der weiteren Speicherung haben.

Bei der Verarbeitung personenbezogener Daten auf der Grundlage von Art. 6 (1) Punkt f GDPR, werden diese Daten gespeichert, bis die betroffene Person von ihrem Widerspruchsrecht gemäß Art. 21 (1) GDPR ausübt, es sei denn, wir können zwingende schutzwürdige Gründe für die Verarbeitung nachweisen, die die Interessen, Rechte und Freiheiten der betroffenen Person überwiegen, oder die Verarbeitung dient der Geltendmachung, Ausübung oder Verteidigung von Rechtsansprüchen.

Werden personenbezogene Daten zum Zwecke der Direktwerbung verarbeitet, so basiert die Verarbeitung auf Art. 6 (1) Punkt f GDPR verarbeitet, werden diese Daten gespeichert, bis die betroffene Person von ihrem Widerspruchsrecht gemäß Art. 21 (2) GDPR AUSÜBT.

Sofern in den in dieser Erklärung enthaltenen Informationen zu bestimmten Verarbeitungssituationen nichts anderes angegeben ist, werden gespeicherte personenbezogene Daten gelöscht, wenn sie für die Zwecke, für die sie erhoben oder anderweitig verarbeitet wurden, nicht mehr erforderlich sind.