Privacy Policy

Preamble

With the following privacy policy, we would like to inform you about the types of your personal data (hereinafter also referred to as "data") that we process, for what purposes, and to what extent. The privacy policy applies to all processing of personal data carried out by us, both within the scope of providing our services and especially on our websites, in mobile applications, and within external online presences, such as our social media profiles (hereinafter collectively referred to as "online offer"). The terms used are not gender-specific.

As of: October 12, 2024

Table of Contents

Responsible Party

Yukari Takagi / Yukaringermany, Owner Yukari Takagi
c/o IP-Management #43185
Ludwig-Erhard-Str. 18
20459 Hamburg, Germany
Email Address:
support@yukaringermany.com

Overview of Processing

The following overview summarizes the types of data processed and the purposes of their processing and refers to the data subjects.

Types of Data Processed

  • Inventory data.
  • Payment data.
  • Contact data.
  • Content data.
  • Contract data.
  • Usage data.
  • Meta, communication, and procedural data.
  • Log data.

Categories of Data Subjects

  • Recipients of services and clients.
  • Interested parties.
  • Communication partners.
  • Users.
  • Business and contractual partners.
  • Education and course participants.
  • Customers.

Purposes of Processing

  • Provision of contractual services and fulfillment of contractual obligations.
  • Communication.
  • Security measures.
  • Direct marketing.
  • Reach measurement.
  • Office and organizational procedures.
  • Affiliate tracking.
  • Organizational and administrative procedures.
  • Feedback.
  • Marketing.
  • Profiles with user-related information.
  • Provision of our online offer and user-friendliness.
  • Information technology infrastructure.
  • Public relations.
  • Sales promotion.
  • Business processes and economic procedures.

Relevant Legal Bases

Relevant legal bases under the GDPR: The following provides an overview of the legal bases of the GDPR on which we process personal data. Please note that in addition to the provisions of the GDPR, national data protection regulations may apply in your or our country of residence or establishment. If more specific legal bases are applicable in individual cases, we will inform you of these in the privacy policy.

  • Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR) - The data subject has given their consent to the processing of their personal data for one or more specific purposes.
  • Contract performance and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR) - The processing is necessary for the performance of a contract to which the data subject is a party or to take steps at the request of the data subject prior to entering into a contract.
  • Legal obligation (Art. 6 para. 1 sentence 1 lit. c) GDPR) - The processing is necessary for compliance with a legal obligation to which the controller is subject.
  • Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR) - The processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, provided that such interests are not overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.

National data protection regulations in Germany: In addition to the data protection regulations of the GDPR, national data protection regulations apply in Germany. This includes, in particular, the Federal Data Protection Act (Bundesdatenschutzgesetz – BDSG). The BDSG contains specific regulations on the right to information, the right to deletion, the right to object, the processing of special categories of personal data, processing for other purposes, and transmission as well as automated decision-making in individual cases including profiling. Furthermore, the data protection laws of the individual federal states may apply.

Note on the applicability of the GDPR and Swiss DSG: These data protection notices serve both to provide information under the Swiss DSG and the General Data Protection Regulation (GDPR). Therefore, please note that due to the broader territorial application and comprehensibility, the terms of the GDPR are used. In particular, instead of the terms "processing" of "personal data", "overriding interest", and "particularly sensitive personal data" used in the Swiss DSG, the terms "processing" of "personal data" as well as "legitimate interest" and "special categories of data" used in the GDPR are used. However, the legal meaning of the terms remains determined by the Swiss DSG within the scope of its applicability.

Security Measures

We take appropriate technical and organizational measures to ensure a level of security appropriate to the risk, taking into account the state of the art, implementation costs, and the nature, scope, context, and purposes of processing as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons. These measures include, in particular, securing the confidentiality, integrity, and availability of data by controlling physical and electronic access to the data as well as access, input, transmission, ensuring availability, and separation of the data. Furthermore, we have established procedures to ensure the exercise of data subject rights, the deletion of data, and responses to data threats. Additionally, we consider the protection of personal data already during the development or selection of hardware, software, and procedures according to the principle of data protection through technology design and data protection-friendly default settings. TLS encryption (https): To protect your data transmitted via our online offer, we use TLS encryption. You can recognize such encrypted connections by the prefix https:// in the address bar of your browser.

International Data Transfers

If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)) or if the processing takes place in the context of the use of third-party services or the disclosure or transmission of data to other persons, entities, or companies, this is done only in accordance with the legal requirements. Subject to express consent or contractually or legally required transmission, we process or allow the data to be processed only in third countries with a recognized level of data protection, contractual obligation through so-called standard protection clauses of the EU Commission, in the presence of certifications, or binding internal data protection regulations (Art. 44 to 49 GDPR, information page of the EU Commission:
https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_en).

Data Deletion

The data processed by us will be deleted in accordance with the legal requirements as soon as their permitted consents for processing are revoked or other permissions cease to apply (e.g., if the purpose of processing this data no longer applies or they are not necessary for the purpose). If the data is not deleted because it is required for other and legally permissible purposes, its processing will be restricted to these purposes. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax reasons or whose storage is necessary for the assertion, exercise, or defense of legal claims or to protect the rights of another natural or legal person. Our privacy notices may also contain further information on the retention and deletion of data, which take precedence for the respective processing operations.

Rights of Data Subjects

As a data subject, you have various rights under the GDPR, which are particularly derived from Art. 15 to 21 GDPR:

  • Right to object: You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is based on Art. 6 para. 1 lit. e or f GDPR; this also applies to profiling based on these provisions. If personal data concerning you is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing; this also applies to profiling to the extent that it is related to such direct marketing.
  • Right to withdraw consent: You have the right to withdraw consent at any time.
  • Right of access: You have the right to obtain confirmation as to whether or not personal data concerning you is being processed and, where that is the case, access to the personal data and further information and a copy of the data in accordance with the legal requirements.
  • Right to rectification: You have the right to obtain the rectification of inaccurate personal data concerning you or to have incomplete personal data completed, in accordance with the legal requirements.
  • Right to erasure and restriction of processing: You have the right to obtain the erasure of personal data concerning you without undue delay, or alternatively, to obtain restriction of processing of the data in accordance with the legal requirements.
  • Right to data portability: You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used, and machine-readable format, and to transmit those data to another controller, in accordance with the legal requirements.
  • Right to lodge a complaint with a supervisory authority: You have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the GDPR, without prejudice to any other administrative or judicial remedy.

Business Services

We process data of our contractual and business partners, such as customers and interested parties (collectively referred to as "contractual partners"), within the framework of contractual and comparable legal relationships as well as related measures and in terms of communication with the contractual partners (or pre-contractually), for example, to respond to inquiries. We use this data to fulfill our contractual obligations. This includes, in particular, the obligations to provide the agreed services, any update obligations, and remedy in case of warranty and other performance disruptions. Furthermore, we use the data to safeguard our rights and for the purposes of the administrative tasks associated with these obligations as well as corporate organization. Additionally, we process the data based on our legitimate interests in proper and economic business management as well as security measures to protect our contractual partners and our business operations from misuse, threats to their data, secrets, information, and rights (e.g., involving telecommunications, transport, and other auxiliary services as well as subcontractors, banks, tax and legal advisors, payment service providers, or tax authorities). Within the framework of applicable law, we only disclose the data of contractual partners to third parties to the extent necessary for the aforementioned purposes or to fulfill legal obligations. Contractual partners are informed about further forms of processing, such as for marketing purposes, within this privacy policy. We inform the contractual partners about which data is required for the aforementioned purposes before or during data collection, e.g., in online forms, through special markings (e.g., colors) or symbols (e.g., asterisks or similar), or personally. We delete the data after the expiration of legal warranty and comparable obligations, i.e., generally after four years, unless the data is stored in a customer account, e.g., as long as it must be retained for legal reasons (e.g., for tax purposes, usually ten years). Data disclosed to us by the contractual partner within the framework of an order is deleted according to the specifications and generally after the end of the order.

  • Types of Data Processed: Inventory data (e.g., full name, residential address, contact information, customer number, etc.); Payment data (e.g., bank details, invoices, payment history); Contact data (e.g., postal and email addresses or phone numbers). Contract data (e.g., contract subject, duration, customer category).
  • Data Subjects: Recipients of services and clients; Interested parties; Business and contractual partners. Education and course participants.
  • Purposes of Processing: Provision of contractual services and fulfillment of contractual obligations; Communication; Office and organizational procedures; Organizational and administrative procedures. Business processes and economic procedures.
  • Retention and Deletion: Deletion according to the information in the section "General Information on Data Storage and Deletion".
  • Legal Bases: Contract performance and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR); Legal obligation (Art. 6 para. 1 sentence 1 lit. c) GDPR). Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Further notes on processing processes, procedures, and services:

  • Educational and Training Services: We process the data of participants in our educational and training offers (collectively referred to as "trainees") to provide our training services to them. The data processed here, the type, scope, purpose, and necessity of their processing are determined by the underlying contractual and training relationship. The forms of processing also include performance evaluation and the evaluation of our services as well as those of the instructors. In the course of our activities, we may also process special categories of data, in particular information on the health of the trainees as well as data from which ethnic origin, political opinions, religious or philosophical beliefs emerge. For this purpose, we obtain the explicit consent of the trainees if necessary and otherwise process the special categories of data only if it is necessary for the provision of the training services, for purposes of health care, social protection, or the protection of vital interests of the trainees; Legal Bases: Contract performance and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR).

Business Processes and Procedures

Personal data of recipients of services and clients – including customers, interested parties, or in specific cases, patients, clients, or contractual partners – are processed within the framework of contractual and comparable legal relationships and pre-contractual measures, such as the initiation of business relationships. This data processing supports and facilitates economic processes in areas such as customer management, sales, payment transactions, accounting, and project management. The collected data serves to fulfill contractual obligations and to efficiently design operational processes. This includes the handling of business transactions, the management of customer relationships, the optimization of sales strategies, and the assurance of internal accounting and financial processes. Additionally, the data supports the safeguarding of the rights of the controller and promotes administrative tasks as well as the organization of the company.

  • Data Subjects: Recipients of services and clients; Interested parties; Communication partners; Business and contractual partners. Customers.
  • Purposes of Processing: Provision of contractual services and fulfillment of contractual obligations; Office and organizational procedures; Business processes and economic procedures; Security measures. Provision of our online offer and user-friendliness.
  • Retention and Deletion: Deletion according to the information in the section "General Information on Data Storage and Deletion".
  • Legal Bases: Contract performance and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR). Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Further notes on processing processes, procedures, and services:

  • Customer Account: Customers can create an account within our online offer (e.g., customer or user account, hereinafter "customer account"). If the registration of a customer account is required, customers are also informed about this as well as the information required for registration. The customer accounts are not public and cannot be indexed by search engines. During registration as well as subsequent logins and uses of the customer account, we store the IP addresses of the customers along with the access times to be able to prove the registration and to prevent any misuse of the customer account. If the customer account is terminated, the data of the customer account will be deleted after the termination date, provided that they are not required for other purposes than the provision in the customer account or must be retained for legal reasons (e.g., internal storage of customer data, order processes, or invoices). It is the responsibility of the customers to secure their data upon termination of the customer account; Legal Bases: Contract performance and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Payment Procedures

In the context of contractual and other legal relationships, due to legal obligations or otherwise based on our legitimate interests, we offer the affected persons efficient and secure payment options and use other service providers in addition to banks and credit institutions (collectively "payment service providers"). The data processed by the payment service providers includes inventory data, such as the name and address, bank data, such as account numbers or credit card numbers, passwords, TANs, and checksums, as well as contract, sum, and recipient-related information. The information is required to carry out the transactions. However, the entered data is only processed by the payment service providers and stored by them. This means that we do not receive any account or credit card-related information, but only information with confirmation or negative information of the payment. Under certain circumstances, the data may be transmitted by the payment service providers to credit agencies. This transmission is intended to verify identity and creditworthiness. For this purpose, we refer to the terms and conditions and the privacy policies of the payment service providers. For the payment transactions, the terms and conditions and the privacy policies of the respective payment service providers, which are available within the respective websites or transaction applications, apply. We also refer to these for further information and the assertion of revocation, information, and other data subject rights.

  • Types of Data Processed: Inventory data (e.g., full name, residential address, contact information, customer number, etc.); Payment data (e.g., bank details, invoices, payment history); Contract data (e.g., contract subject, duration, customer category); Usage data (e.g., visited websites, interest in content, access times). Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent history).
  • Data Subjects: Customers; Interested parties; Business and contractual partners.
  • Purposes of Processing: Provision of contractual services and fulfillment of contractual obligations.
  • Legal Bases: Contract performance and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR); Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Provision of the Online Offer and Web Hosting

We process the data of users to be able to provide them with our online services. For this purpose, we process the IP address of the user, which is necessary to transmit the contents and functions of our online services to the user's browser or device.

  • Types of Data Processed: Usage data (e.g., visited websites, interest in content, access times); Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent history); Log data (e.g., log files regarding logins or data retrieval or access times). Content data (e.g., text entries, photographs, videos).
  • Data Subjects: Users (e.g., website visitors, users of online services).
  • Purposes of Processing: Provision of our online offer and user-friendliness; Information technology infrastructure (operation and provision of information systems and technical devices (computers, servers, etc.)). Security measures.
  • Retention and Deletion: Deletion according to the information in the section "General Information on Data Storage and Deletion".
  • Legal Bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Further notes on processing processes, procedures, and services:

  • Provision of Online Offer on Rented Storage Space: For the provision of our online offer, we use storage space, computing capacity, and software that we rent or otherwise obtain from a corresponding server provider (also called "web hoster"); Legal Bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
  • Collection of Access Data and Log Files: Access to our online offer is logged in the form of so-called "server log files". The server log files may include the address and name of the retrieved web pages and files, date and time of retrieval, transmitted data volumes, message about successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page) and usually IP addresses and the requesting provider. The server log files can be used for security purposes, e.g., to avoid server overload (especially in the case of abusive attacks, so-called DDoS attacks), and to ensure the stability of the servers; Legal Bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). Deletion of Data: Log file information is stored for a maximum of 30 days and then deleted or anonymized. Data that needs to be retained for evidence purposes is excluded from deletion until the respective incident is finally clarified.
  • Email Sending and Hosting: The web hosting services we use also include the sending, receiving, and storing of emails. For these purposes, the addresses of the recipients and senders as well as other information regarding the email dispatch (e.g., the involved providers) and the contents of the respective emails are processed. The aforementioned data may also be processed for SPAM detection purposes. Please note that emails on the internet are generally not sent encrypted. Emails are usually encrypted during transport, but (unless an end-to-end encryption method is used) not on the servers from which they are sent and received. Therefore, we cannot take responsibility for the transmission path of the emails between the sender and the reception on our server; Legal Bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
  • Content Delivery Network: We use a "Content Delivery Network" (CDN). A CDN is a service that helps to deliver content from an online offer, especially large media files, such as graphics or program scripts, faster and more securely with the help of regionally distributed and internet-connected servers; Legal Bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
  • netcup: Services in the field of providing information technology infrastructure and related services (e.g., storage space and/or computing capacities); Service Provider: netcup GmbH, Daimlerstraße 25, D-76185 Karlsruhe, Germany; Legal Bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://www.netcup.de/; Privacy Policy: https://www.netcup.de/kontakt/datenschutzerklaerung.php. Data Processing Agreement: https://helpcenter.netcup.com/de/wiki/general/avv/.

Contact and Inquiry Management

When contacting us (e.g., via contact form, email, phone, or social media) and within the scope of existing user and business relationships, the information of the inquiring persons is processed to the extent necessary to respond to the contact inquiries and any requested measures.

  • Types of Data Processed: Inventory data (e.g., names, addresses); Contact data (e.g., email, phone numbers); Content data (e.g., text entries, photographs, videos); Usage data (e.g., visited websites, interest in content, access times); Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent history).
  • Data Subjects: Communication partners.
  • Purposes of Processing: Contact inquiries and communication; Management and response to inquiries.
  • Legal Bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Promotional Communication via Email, Mail, Fax, or Phone

We process personal data in the context of promotional communication based on the consent of the communication partners or legal permissions. The communication partners have the right to revoke granted consents at any time or to object to promotional communication at any time.

  • Types of Data Processed: Inventory data (e.g., names, addresses); Contact data (e.g., email, phone numbers); Usage data (e.g., visited websites, interest in content, access times); Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent history).
  • Data Subjects: Communication partners.
  • Purposes of Processing: Direct marketing (e.g., via email or postal mail).
  • Legal Bases: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR); Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Web Analysis, Monitoring, and Optimization

Web analysis (also referred to as "reach measurement") serves to evaluate the visitor flows of our online offer and can include behavior, interests, or demographic information about visitors, such as age or gender, as pseudonymous values. With the help of reach analysis, we can, for example, recognize at what time our online offer or its functions or content are most frequently used or invite reuse. Likewise, we can identify which areas need optimization.

In addition to web analysis, we can also use testing procedures to test and optimize different versions of our online offer or its components.

For these purposes, so-called user profiles can be created and stored in a file (so-called "cookie") or similar procedures. This information can include, for example, content, visited web pages, used online networks, but also communication partners and technical information, such as the browser used, the computer system used, and information about usage times. If users have consented to the collection of their location data, this can also be processed.

The IP addresses of the users are also stored. However, we use an IP masking procedure (i.e., pseudonymization by shortening the IP address) to protect the users. Generally, no clear data of the users (such as email addresses or names) are stored within the framework of web analysis, A/B testing, and optimization, but pseudonyms. This means that we and the software providers used do not know the actual identity of the users, but only the information stored in their profiles for the respective procedures.

  • Types of Data Processed: Usage data (e.g., visited websites, interest in content, access times); Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent history).
  • Data Subjects: Users (e.g., website visitors, users of online services).
  • Purposes of Processing: Reach measurement (e.g., access statistics, recognition of returning visitors); Tracking (e.g., interest/behavior-based profiling, use of cookies); Visitor action evaluation, profiling (creating user profiles); A/B tests; Feedback (e.g., collecting feedback via online form); Marketing.
  • Legal Bases: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR); Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Affiliate Programs and Affiliate Links

We integrate so-called affiliate links or other references (e.g., search masks, widgets, or discount codes) into our online offer. If users follow the affiliate links or subsequently take advantage of the offers, we may receive a commission or other benefits from these third-party providers.

To be able to track whether users have taken advantage of the offers of an affiliate link used by us, it is necessary for the respective third-party providers to know that users have followed an affiliate link used within our online offer. The assignment of the affiliate links to the respective business transactions or offers is solely for the purpose of commission settlement and is canceled as soon as it is no longer required for the purpose.

For the aforementioned purposes, the affiliate links can be supplemented with certain values that are part of the link or otherwise, e.g., stored in a cookie. These values can include, in particular, the originating website (referrer), the time, an online identifier of the operators of the website on which the affiliate link was located, an online identifier of the respective offer, the online identifier of the user, as well as tracking-specific values, such as advertising media ID, partner ID, and categorizations.

  • Types of Data Processed: Usage data (e.g., visited websites, interest in content, access times); Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent history).
  • Data Subjects: Users (e.g., website visitors, users of online services).
  • Purposes of Processing: Affiliate tracking.
  • Legal Bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Presences in Social Networks (Social Media)

We maintain online presences within social networks and process user data in this context to communicate with users active there or to offer information about us. We point out that user data may be processed outside the European Union. This can result in risks for the users because, for example, the enforcement of the users' rights could be made more difficult. Furthermore, user data within social networks is generally processed for market research and advertising purposes. For example, usage profiles can be created based on user behavior and the resulting interests of the users. The latter may, in turn, be used to place advertisements inside and outside the networks that presumably correspond to the interests of the users. Therefore, cookies are generally stored on the users' computers, in which the usage behavior and interests of the users are stored. Additionally, data can also be stored in the usage profiles independently of the devices used by the users (especially if they are members of the respective platforms and are logged in to them). For a detailed presentation of the respective processing forms and the opt-out options, we refer to the privacy policies and information of the operators of the respective networks. Also, in the case of information requests and the assertion of data subject rights, we point out that these can be most effectively asserted with the providers. Only the latter have access to the user data and can take appropriate measures and provide information directly. Should you still need assistance, you can contact us.

  • Types of Data Processed: Contact data (e.g., postal and email addresses or phone numbers); Content data (e.g., textual or visual messages and posts as well as the information related to them, such as authorship details or creation time). Usage data (e.g., page views and duration of stay, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and functions).
  • Data Subjects: Users (e.g., website visitors, users of online services).
  • Purposes of Processing: Communication; Feedback (e.g., collecting feedback via online form). Public relations.
  • Retention and Deletion: Deletion according to the information in the section "General Information on Data Storage and Deletion".
  • Legal Bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Further notes on processing processes, procedures, and services:

  • Instagram: Social network, enables sharing of photos and videos, commenting and favoriting posts, sending messages, subscribing to profiles and pages; Service Provider: Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland; Legal Bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://www.instagram.com; Privacy Policy: https://privacycenter.instagram.com/policy/. Basis for Third Country Transfers: Data Privacy Framework (DPF).
  • YouTube: Social network and video platform; Service Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Legal Bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Privacy Policy: https://policies.google.com/privacy; Basis for Third Country Transfers: Data Privacy Framework (DPF). Opt-Out Option: https://myadcenter.google.com/personalizationoff.

Plug-ins and Embedded Functions and Content

We integrate functional and content elements into our online offer that are obtained from the servers of their respective providers (hereinafter referred to as "third-party providers"). These may include, for example, graphics, videos, or maps (hereinafter uniformly referred to as "content"). The integration always requires that the third-party providers of this content process the IP address of the users, as they could not send the content to their browser without the IP address. The IP address is therefore necessary for the presentation of this content or functions. We strive to use only such content whose respective providers use the IP address solely for the delivery of the content. Third-party providers may also use so-called pixel tags (invisible graphics, also referred to as "web beacons") for statistical or marketing purposes. Through the "pixel tags", information such as visitor traffic on the pages of this website can be evaluated. The pseudonymous information may also be stored in cookies on the user's device and may include technical information about the browser and operating system, referring websites, visit time, and other information about the use of our online offer, as well as being linked to such information from other sources. Notes on Legal Bases: If we ask users for their consent to the use of third-party providers, the legal basis for data processing is consent. Otherwise, user data is processed based on our legitimate interests (i.e., interest in efficient, economical, and recipient-friendly services). In this context, we also refer you to the information on the use of cookies in this privacy policy.

  • Types of Data Processed: Usage data (e.g., page views and duration of stay, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and functions); Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, involved persons); Inventory data (e.g., full name, residential address, contact information, customer number, etc.); Contact data (e.g., postal and email addresses or phone numbers). Content data (e.g., textual or visual messages and posts as well as the information related to them, such as authorship details or creation time).
  • Data Subjects: Users (e.g., website visitors, users of online services).
  • Purposes of Processing: Provision of our online offer and user-friendliness.
  • Retention and Deletion: Deletion according to the information in the section "General Information on Data Storage and Deletion". Storage of cookies for up to 2 years (Unless otherwise specified, cookies and similar storage methods can be stored on users' devices for a period of up to two years).
  • Legal Bases: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR). Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Further notes on processing processes, procedures, and services:

  • Google Fonts (retrieval from Google server): Retrieval of fonts (and symbols) for the purpose of a technically secure, maintenance-free, and efficient use of fonts and symbols with regard to up-to-dateness and loading times, their uniform presentation, and consideration of possible licensing restrictions. The provider of the fonts is informed of the user's IP address so that the fonts can be made available in the user's browser. In addition, technical data (language settings, screen resolution, operating system, used hardware) is transmitted, which is necessary for the provision of the fonts depending on the devices used and the technical environment. This data may be processed on a server of the font provider in the USA - When visiting our online offer, the users' browsers send their browser HTTP requests to the Google Fonts Web API (i.e., a software interface for retrieving the fonts). The Google Fonts Web API provides users with the Cascading Style Sheets (CSS) of Google Fonts and then the fonts specified in the CSS. These HTTP requests include (1) the IP address used by the respective user to access the internet, (2) the requested URL on the Google server, and (3) the HTTP headers, including the user agent, which describes the browser and operating system versions of the website visitors, as well as the referrer URL (i.e., the website on which the Google font is to be displayed). IP addresses are neither logged nor stored on Google servers, and they are not analyzed. The Google Fonts Web API logs details of the HTTP requests (requested URL, user agent, and referrer URL). Access to this data is restricted and strictly controlled. The requested URL identifies the font families for which the user wants to load fonts. This data is logged so that Google can determine how often a particular font family is requested. The user agent must adapt the font generated for the respective browser type in the Google Fonts Web API. The user agent is primarily logged for debugging purposes and used to generate aggregated usage statistics to measure the popularity of font families. These aggregated usage statistics are published on the "Analytics" page of Google Fonts. Finally, the referrer URL is logged so that the data can be used for production maintenance and an aggregated report on the top integrations based on the number of font requests can be generated. According to Google, none of the information collected by Google Fonts is used to create profiles of end users or to display targeted ads; Service Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Legal Bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://fonts.google.com/; Privacy Policy: https://policies.google.com/privacy; Basis for Third Country Transfers: Data Privacy Framework (DPF). Further Information: https://developers.google.com/fonts/faq/privacy?hl=en.
  • YouTube Videos: Video content; Service Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Legal Bases: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR); Website: https://www.youtube.com; Privacy Policy: https://policies.google.com/privacy; Basis for Third Country Transfers: Data Privacy Framework (DPF). Opt-Out Option: Opt-Out Plugin: https://tools.google.com/dlpage/gaoptout?hl=en, Settings for the display of advertisements: https://myadcenter.google.com/personalizationoff.

Changes and Updates

We ask you to regularly inform yourself about the content of our privacy policy. We adapt the privacy policy as soon as the changes in the data processing carried out by us make this necessary. We will inform you as soon as the changes require your cooperation (e.g., consent) or other individual notification. If we provide addresses and contact information of companies and organizations in this privacy policy, please note that the addresses may change over time and we ask you to check the information before contacting us.

Created with the free privacy generator.de by Dr. Thomas Schwenke