Privacy policy

The person responsible for data processing is:

Coffeechecker GmbH

School Street 4

4484 Kronstorf

Email: office@coffeechecker.at

Phone: +436704076308

Thank you for your interest in our website. Protecting your privacy is very important to us. Below we inform you in detail about the handling of your data.

1. access data and hosting

You can visit our websites without providing any personal information. Each time a website is called up, the web server only automatically saves a so-called server log file, which contains, for example, the name of the requested file, your IP address, the date and time of the call-up, the amount of data transferred and the requesting provider (access data) and documents the call-up. This access data is evaluated solely for the purpose of ensuring trouble-free operation of the site and improving our offering. This serves to protect our legitimate interests in the correct presentation of our offer, which outweigh our interests in accordance with Art. 6 Para. 1 p. 1 lit. f GDPR. All access data is deleted no later than fourteen days after the end of your visit to the site. All access data is only processed for as long as is necessary to achieve the above-mentioned processing purposes.

Hosting

The services for hosting and displaying the website are partly provided by our service providers as part of processing on our behalf. Unless otherwise explained in this privacy policy, all access data and all data collected in forms provided for this purpose on this website are processed on its servers. If you have any questions about our service providers and the basis of our relationship with them, please use the contact method described in this Privacy Policy.

2. data processing for contract processing and for contacting us

2.1 Data processing for contract execution

For the purpose of contract processing (including inquiries about and processing of any existing claims arising from the warranty, the right to disrupt performance and the right of withdrawal as well as any statutory updating obligations) in accordance with Art. 6 para. 1 p. 1 lit. b DSGVO, we collect personal data if you voluntarily provide it to us as part of your order. Mandatory fields are marked as such, because in these cases we need the data to process the contract and without their information we can not send the order. Which data is collected can be seen from the respective input forms.

For more information on the processing of your data, in particular on the transfer to our service providers for the purpose of order, payment and shipping processing, please refer to the following sections of this privacy policy. After complete processing of the contract, your data will be restricted for further processing and after expiry of the retention periods under tax and commercial law in accordance with Art. 6 para. 1 p. 1 lit. c DSGVO, unless you expressly consent to further use of your data pursuant to Art. 6 para. 1 p. 1 lit. a DSGVO or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.

2.2 Customer account

Insofar as you have given your consent to this in accordance with Art. 6 para. 1 p. 1 lit. a DSGVO by deciding to open a customer account, we will use your data for the purpose of opening a customer account as well as for storing your data for further future orders on our website. The deletion of your customer account is possible at any time and can be done either by sending a message to the contact option described in this privacy policy or via a function provided for this purpose in the customer account. After deletion of your customer account, your data will be deleted unless you expressly consent to further use of your data pursuant to Art. 6 para. 1 p. 1 lit. a DSGVO or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.

Contact us

In the context of customer communication, we collect data in order to process your inquiries in accordance with Art. 6 para. 1 p. 1 lit. b GDPR, if you voluntarily provide us with personal data when contacting us (e.g. via contact form, live chat tool or e-mail). Mandatory fields are marked as such, as we require the data in these cases to process your contact. Which data is collected can be seen from the respective input forms. After complete processing of your request, your data will be deleted, unless you expressly consent to further use of your data pursuant to Art. 6 para. 1 p. 1 lit. a DSGVO or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.

3. data processing for the purpose of shipment handling

For the fulfillment of the contract according to Art. 6 para. 1 p. 1 lit. b DSGVO, we pass on your data to the shipping service provider commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods. If you have any questions about our service providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.

Data transfer to shipping service providers for the purpose of shipping notification

If you have given us your express consent to do so during or after your order, we will disclose your personal data on the basis of this consent in accordance with Art. 6 Para. 1 p. 1 lit. a GDPR to the selected shipping service provider so that they can contact you before delivery for the purpose of delivery notification or coordination.
You can revoke your consent at any time by sending a message to the contact option described in this privacy policy. After revocation, we delete your data provided for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration. If you have any questions about our service providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.

4. data processing for payment processing

When processing payments in our online store, we work with these partners: technical service providers, credit institutions, payment service providers.

4.1 Data processing for transaction processing

Depending on the selected payment method, we pass on the data necessary for processing the payment transaction to our technical service providers or to the commissioned credit institutions or to the selected payment service provider, insofar as this is necessary for processing the payment. This serves the fulfillment of the contract according to Art. 6 para. 1 p. 1 lit. b GDPR. In some cases, the payment service providers collect the data required to process the payment themselves, e.g. on their own website or via a technical integration in the ordering process. In this respect, the privacy policy of the respective payment service provider shall apply.

Depending on the selected payment method, data may be transferred to third countries outside the EU/EEA for which the European Commission has determined an adequate level of data protection by decision. Insofar as data is transferred to third countries outside the EU/EEA for which the European Commission has not issued a decision on an adequate level of data protection, the cooperation is based on standard data protection clauses of the European Commission.

If you have any questions about our payment processing partners or the basis of our cooperation with them, please contact us using the contact details provided in this privacy policy.

4.2 Data processing for the purpose of fraud prevention and optimization of our payment processes

If necessary, we provide the aforementioned service providers with further data, which they use together with the data necessary for processing the payment for the purpose of fraud prevention and the optimization of our payment processes (e.g. invoicing, processing of disputed payments, accounting support). This serves according to Art. 6 para. 1 p. 1 lit. f DSGVO to protect our legitimate interests in our protection against fraud or in efficient payment management, which outweigh our interests in the context of a balancing of interests.

4.3 Involvement of debt collection service providers

We pass on your data to a commissioned collection service provider KSV1870 Forderungsmanagement GmbH, Wagenseilgasse 7, 1120 Vienna, Austria, insofar as our payment claim has not been settled despite a previous reminder. In this case, the debt is collected directly by the collection service provider. This serves the fulfillment of the contract according to Art. 6 para. 1 p. 1 lit. b DSGVO and the protection of our legitimate interests in an effective assertion or enforcement of our payment claim pursuant to Art. 6 Para. 1 p. 1 lit. f GDPR.

5. advertising by e-mail

5.1 Email newsletter with registration and newsletter tracking

If you register for our newsletter, we will use the data required for this purpose or separately provided by you to send you our e-mail newsletter on a regular basis based on your consent pursuant to Art. 6 para. 1 p. 1 lit. a GDPR to be sent. Unsubscribing from the newsletter is possible at any time and can be done either by sending a message to the contact option described below or via a link provided for this purpose in the newsletter. After unsubscribing, we will delete your e-mail address from the list of recipients, unless you expressly consent to further use of your data pursuant to Art. 6 para. 1 p. 1 lit. a DSGVO or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.

We would like to point out that we evaluate your user behavior when sending the newsletter. For this purpose, we also analyze your interaction with our newsletter by measuring, storing and evaluating opening rates and click-through rates for the purpose of designing future newsletter campaigns (“newsletter tracking”).

For this evaluation, the emails sent contain single-pixel technologies (e.g., so-called web beacons, tracking pixels) that are stored on our website. For the evaluations, we link the following “newsletter data” in particular

• the page from which the page was requested (so-called referrer URL),
• the date and time of the call,
• the description of the type of the used web browser,
• the IP address of the requesting computer,
• the e-mail address,
• the date and time of registration and confirmation

and the single-pixel technologies with your e-mail address or IP address and, if applicable, an individual ID. Links contained in the newsletter may also contain this ID.

If you do not wish to receive newsletter tracking, it is possible to unsubscribe from the newsletter at any time – as described above.

The information is stored as long as you have subscribed to the newsletter.

5.2 Newsletter dispatch

The newsletter and the newsletter tracking described above may also be sent by our service providers as part of processing on our behalf. If you have any questions about our service providers and the basis of our relationship with them, please use the contact method described in this Privacy Policy.

6. cookies and other technologies

6.1 General information

In order to make visiting our website attractive and to enable the use of certain functions, we use technologies on various pages, including so-called cookies. Cookies are small text files that are automatically stored on your terminal device. Some of the cookies we use are deleted at the end of the browser session, i.e. after you close your browser (so-called session cookies). Other cookies remain on your terminal device and enable us to recognize your browser on your next visit (persistent cookies). The duration of storage can be found in the overview in the cookie settings of your web browser.

Endpoint privacy protection

When using our online offer, we use absolutely necessary technologies in order to be able to provide the expressly requested digital service. The storage of information in your terminal device or access to information that is already stored in your terminal device does not require consent in this respect.

For functions that are not absolutely necessary, the storage of information in your terminal device or access to information that is already stored in your terminal device requires your consent. Please note that if you do not give your consent, parts of the website may not be available for unrestricted use. Any consent you may have given will remain in effect until you adjust or reset the respective settings in your terminal device.

Any downstream data processing through cookies and other technologies

We use technologies that are absolutely necessary for the use of certain functions of our website. These technologies collect and process the IP address, time of visit, device and browser information as well as information about your use of our website. Within the framework of a balancing of interests, this serves overriding legitimate interests in an optimized presentation of our offer in accordance with Art. 6 Para. 1 p. 1 lit. f GDPR.

In addition, we use technology to comply with legal obligations to which we are subject (e.g., to be able to demonstrate consent to the processing of your personal data) and for web analytics and online marketing. Further information on this, including the respective legal basis for data processing, can be found in the following sections of this privacy policy.

Cookie settings

You can find the cookie settings for your browser under the following links Microsoft Edge™ / Safari™ / Chrome™ / Firefox™ / Opera™

Insofar as you consent to the use of the technologies pursuant to Art. 6 para. 1 p. 1 lit. a GDPR, you can revoke your consent at any time by sending a message to the contact option described in the privacy policy. Alternatively, you can also visit the following link: https://coffeechecker.com/cookie-einstellungen. If you do not accept cookies, the functionality of our website may be restricted.

6.2 Consent Manager Platform (CMP)

On our website, we use a consent management service (“Consent Manager Platform (CMP)”) to inform you about the cookies and the other technologies we use on our website, and to obtain, manage and document your consent, if any, to the processing of your personal data by these technologies. This is in accordance with Art. 6 para. 1 p. 1 lit. c DSGVO for the fulfillment of our legal obligation pursuant to Art. 7 para. 1 DSGVO necessary to be able to prove your consent to the processing of your personal data, to which we are subject. The Consent Manager Platform (CMP) used is a service provided by devowl.io GmbH, Tannet 12, 94539 Grafling, Germany, which processes your data on our behalf.

After you have submitted your cookie declaration on our website, the web server stores the following data: IP address, device information, browser information, set language, accessed website or its URL, date and time of your declaration of consent as well as information about your consent behavior.

In addition, the following technologies are used that contains/contain information about your consent behavior: Cookies

Your data will be deleted after one year, unless you expressly consent to further use of your data pursuant to Art. 6 para. 1 p. 1 lit. a GDPR or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.

6.3 Information on third country transfer (data transfer to third countries)

We use technologies from service providers on our website whose headquarters and/or server locations may be in third countries, outside the EU or EEA. If there is no adequacy decision by the EU Commission for this country, an adequate level of data protection must be ensured by means of other suitable guarantees.

Suitable guarantees in the form of contractually agreed standard contractual clauses of the EU Commission or binding corporate rules are generally possible, but require a prior review by the contracting parties as to whether an adequate level of protection can be guaranteed. According to the case law of the ECJ, it may be necessary to take additional protective measures.

We have generally agreed the standard data protection clauses issued by the EU Commission with the technology providers we use who process personal data in a third country. Where possible, we also agree additional safeguards to ensure that adequate data protection is guaranteed in third countries without an adequacy decision.

Irrespective of this, it is possible that, despite all contractual and technical measures, the level of data protection in the third country does not correspond to that of the EU. For these cases, we ask you, if necessary, in the context of the cookie consent, for your consent pursuant to Art. 49 para. 1 lit. a GDPR for the transfer of your personal data to a third country.
In particular, there is a risk that local authorities in the third country may not have sufficiently limited access rights to your personal data from a European data protection perspective, that we as the data exporter or you as the data subject may not be aware of this and/or that you may not have sufficient legal remedies to prevent this and/or to take action against such access.

In particular, the following countries are currently among the third countries without an adequacy decision by the EU Commission (sample enumeration):

• China
• Russia
• Taiwan

You can find out which third countries we transfer data to in the data protection notices for the tool used and/or the consent management/consent manager platform (CMP) service we use.

7. use of cookies and other technologies

We use the following cookies and other third-party technologies on our website. Unless otherwise stated for the individual technologies, this is done on the basis of your consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR. After the end of the purpose and the end of the use of the respective technology by us, the data collected in this context will be deleted. You can revoke your consent at any time with effect for the future. For more information about your revocation options, see the section “Cookies and other technologies”. For more information, including the basis of our collaboration with each vendor, see the individual technologies. If you have any questions about the Providers and the basis of our relationship with them, please use the contact method described in this Privacy Policy.

7.1 Use of Google services

We use the following technologies of Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). The information automatically collected by Google technologies about your use of our website is generally transmitted to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA and stored there. Unless otherwise stated for the individual technologies, data processing is carried out on the basis of an agreement concluded for the respective technology between jointly responsible parties in accordance with Art. 26 GDPR. Further information about data processing by Google can be found in Google’s privacy policy.

Our service providers are located and/or use servers in countries outside the EU and the EEA for which the European Commission has determined by decision that the level of data protection is adequate.

Our service providers are located and/or use servers in countries outside the EU and the EEA. For these countries, there is no adequacy decision of the European Commission. Our cooperation with them is based on standard data protection clauses of the European Commission.

Google Analytics

For the purpose of website analysis, Google Analytics automatically collects and stores data (IP address, time of visit, device and browser information as well as information on your use of our website), from which user profiles are created using pseudonyms. Cookies can be used for this purpose. If you visit our website from the EU, your IP address will be stored on a server located in the EU to derive location data and then immediately deleted before the traffic is forwarded to other Google servers for processing. Data processing is carried out on the basis of an agreement on order processing by Google.

Google Fonts

For the uniform presentation of the content on our website, data (IP address, time of visit, device and browser information) is collected by the script code “Google Fonts”, transmitted to Google and then processed by Google. We have no influence on this subsequent data processing.

Google Tag Manager

Google Tag Manager allows us to manage various codes and services on our website. When implementing the individual tags, Google may also process personal data (e.g. IP address, online identifiers (including cookies)). Data processing is carried out on the basis of an agreement on order processing by Google.

By using the Google Tag Manager, various services/technologies can be integrated.
If you do not wish to use individual tracking services and have therefore deactivated them, the deactivation remains in place for all affected tracking tags that are integrated by the Google Tag Manager.

YouTube video plugin

To integrate third-party content, data (IP address, time of visit, device and browser information) is collected via the YouTube video plugin in the extended data protection mode used by us, transmitted to Google and then processed by Google only when you play a video.

7.2 Use of Microsoft services

We use the technologies described below from Microsoft Ireland Operations Ltd, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, D18 P521, Ireland (“Microsoft”). Data processing is carried out on the basis of an agreement between jointly responsible parties in accordance with Art. 26 GDPR. The information automatically collected by Microsoft technologies about your use of our website is usually transferred to a server of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA and stored there. Further information about data processing by Microsoft can be found in Microsoft’s privacy policy.

Our service providers are located and/or use servers in countries outside the EU and the EEA for which the European Commission has determined by decision that the level of data protection is adequate.

Our service providers are located and/or use servers in countries outside the EU and the EEA. For these countries, there is no adequacy decision of the European Commission. Our cooperation with them is based on standard data protection clauses of the European Commission.

For website analysis and event tracking, we use Microsoft Advertising Universal Event Tracking (UET) to measure your subsequent usage behavior if you have reached our website via a Microsoft Advertising advertisement. For this purpose, cookies may be used and data (IP address, time of visit, device and browser information as well as information on your use of our website based on events specified by us, such as visiting a website or subscribing to a newsletter) may be collected, from which user profiles are created using pseudonyms. If your Internet-enabled devices are linked to your Microsoft account and you have not deactivated the “Interest-based advertising” setting in your Microsoft account, Microsoft can create reports on usage behavior (in particular the cross-device user numbers), even if you change your end device, so-called “cross-device tracking”. We do not process personal data in this respect; we only receive statistics generated on the basis of Microsoft UET.

7.3 Use of meta services

Use of Meta Pixel

We use the Meta Pixel as part of the technologies of Meta Platforms Ireland Ltd, Block J, Serpentine Avenue, Dublin 4, Ireland (“Facebook (by Meta)” or “Meta Platforms Ireland”) described below. Meta Pixel automatically collects and stores data (IP address, time of visit, device and browser information as well as information about your use of our website based on events specified by us, such as visiting a website or subscribing to a newsletter), from which usage profiles are created using pseudonyms. For this purpose, a cookie is automatically set by the Meta Pixel when you visit our website, which automatically enables your browser to be recognized by means of a pseudonymous cookie ID when you visit other websites. Meta Platforms Ireland will merge this information with other data from your Facebook account and use it to compile reports on website activity and to provide other services related to website activity, in particular personalized and group-based advertising.
The information automatically collected by the technologies of Meta Platforms Ireland about your use of our website is usually transferred to a server of Meta Platforms, Inc., 1601 Willow Road, Menlo Park, California 94025, USA and stored there. Further information about data processing by Meta Platforms Ireland can be found in Meta Platforms Ireland’s privacy policy.

Our service providers are located and/or use servers in the following countries for which the European Commission has determined an adequate level of data protection by decision Brazil, USA, Canada, Japan, South Korea, New Zealand, United Kingdom, Argentina.

The adequacy decision for the USA applies as the basis for third country transfers, provided that the respective service provider is certified. Certification is available.

Our service providers are located and/or use servers in these countries: Australia, Hong Kong, India, Indonesia, Malaysia, Singapore, Thailand, Taiwan, Mexico. For these countries, there is no adequacy decision of the European Commission. Our cooperation with them is based on these guarantees: standard data protection clauses of the European Commission.

Meta Ads Manager

We use Meta Ads Manager to advertise this website on Facebook (by Meta) and on other platforms. We determine the parameters of the particular advertising campaign. Meta Platforms Ireland is responsible for the exact implementation, in particular the decision on the placement of the ads with individual users. Unless otherwise specified for the individual technologies, the data processing is based on an agreement between jointly responsible parties pursuant to Art. 26 DSGVO. The joint responsibility is limited to the collection of the data and its transmission to Meta Platforms Ireland. Subsequent data processing by Meta Platforms Ireland is not covered by this.

8. integration of the Trusted Shops trustbadge/ other widgets

Provided that you have given your consent to this in accordance with. Art. 6 par. 1 p. 1 lit. a DSGVO, Trusted Shops widgets are integrated on this website to display Trusted Shops services (e.g. seal of approval, collected ratings) after an order.

The Trustbadge and the services advertised with it are an offer from Trusted Shops SE, Subbelrather Str. 15C, 50823 Cologne (“Trusted Shops”), with whom we are jointly responsible under data protection law in accordance with Art. 26 GDPR. Within the framework of this data protection notice, we inform you in the following about the essential contractual contents according to Art. 26 para. 2 GDPR.

Within the scope of the joint responsibility existing between us and Trusted Shops SE, please contact Trusted Shops for data protection issues and to assert your rights using the contact options provided in the data protection information. Regardless, however, you can always contact the responsible party of your choice. Your request will then be forwarded to the further responsible party for response, if necessary.

Data processing when integrating the trust badge/other widgets

The trust badge is provided by a US-based CDN (content delivery network) provider. An adequate level of data protection is ensured in each case by an adequacy decision of the EU Commission, which is available for the USA here. Service providers used from the U.S. are generally certified under the EU-U.S. Data Privacy Framework (DPF). For more information, click here. Where service providers used are not certified under the DPF, standard contractual clauses have been concluded as a suitable guarantee.

When the Trustbadge is called up, the web server automatically saves a so-called server log file, which also contains your IP address, the date and time of the call, the amount of data transferred and the requesting provider (access data) and documents the call. The IP address is anonymized immediately after collection, so that the stored data cannot be assigned to your person. The anonymized data is used in particular for statistical purposes and error analysis.

Data processing after order completion

If you have given your consent, the Trustbadge accesses the order information stored in your end device (order total, order number, product purchased if applicable) and e-mail address after the order has been completed and your e-mail address is hashed using a cryptological one-way function. The hash value is then combined with the order information according to. Art. 6 par. 1 p. 1 lit. a DSGVO is transmitted to Trusted Shops.
This is to verify that you are already registered for Trusted Shops services. If this is the case, further processing will be carried out in accordance with the contractual agreement between you and Trusted Shops. If you are not yet registered for the Services or do not give your consent to automatic recognition via the trust badge, you will subsequently be given the opportunity to register manually for the use of the Services or to conclude the protection within the scope of your possibly already existing user contract.

For this purpose, the Trustbadge accesses the following information stored in the terminal device you use after you complete your order: Order total, order number and email address. This is necessary so that we can offer you buyer protection. Data is only transmitted to Trusted Shops when you actively decide to take out buyer protection by clicking on the correspondingly designated button in the so-called trust card. If you decide to use the services, the further processing is based on the contractual agreement with Trusted Shops according to. Art. 6 par. 1 lit. b DSGVO in order to be able to complete your registration for Buyer Protection and secure the order, as well as to be able to subsequently send you rating invitations by e-mail, if applicable.

Trusted Shops uses service providers in the areas of hosting, monitoring and logging. The legal basis is Art. 6 para. 1 lit. f DSGVO for the purpose of ensuring trouble-free operation. Processing may take place in third countries (USA, UK and Israel). An adequate level of data protection is ensured in each case by an adequacy decision of the EU Commission, which can be accessed here for the USA, here for the UK and here for Israel. Service providers used from the U.S. are generally certified under the EU-U.S. Data Privacy Framework (DPF). For more information, click here. Where service providers used are not certified under the DPF, standard contractual clauses have been concluded as a suitable guarantee.

9. social media

Social buttons from Facebook (by Meta), X (formerly: Twitter), Instagram (by Meta)

Social buttons from social networks are used on our website. These are merely integrated into the page as HTML links, so that no connection is yet established with the servers of the respective provider when our website is called up. If you click on one of the buttons, the website of the respective social network opens in a new window of your browser There you can, for example, click the Like or Share button.

Our online presence on Facebook (by Meta), Instagram (by Meta), YouTube, LinkedIn

Insofar as you have given your consent to this in accordance with Art. 6 para. 1 p. 1 lit. a DSGVO to the respective social media operator, your data will be automatically collected and stored for market research and advertising purposes when you visit our online presences on the social media mentioned above, from which usage profiles are created using pseudonyms. These may be used, for example, to serve advertisements within and outside the platforms that are presumed to match your interests. Cookies are generally used for this purpose. For detailed information on the processing and use of data by the respective social media operator, as well as a contact option and your rights and settings options in this regard to protect your privacy, please refer to the privacy notices of the providers linked below. If you still need help in this regard, you can contact us.

Facebook (by Meta) is a service provided by Meta Platforms Ireland Ltd, Block J, Serpentine Avenue, Dublin 4, Ireland (“Meta Platforms Ireland”). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Facebook (by Meta) is usually transferred to a server of Meta Platforms, Inc, 1601 Willow Road, Menlo Park, California 94025, USA and stored there. Data processing in the context of a visit to a Facebook (by Meta) fan page is based on an agreement between jointly responsible parties in accordance with Art. 26 GDPR. Further information (information on Insights data) can be found here.

Our service providers are located and/or use servers in the following countries for which the European Commission has determined an adequate level of data protection by decision: Brazil, USA, Canada, Japan, South Korea, New Zealand, United Kingdom, Argentina.

The adequacy decision for the USA applies as the basis for third country transfers, provided that the respective service provider is certified. Certification is available.

Our service providers are located and/or use servers in these countries: Australia, Hong Kong, India, Indonesia, Malaysia, Singapore, Thailand, Taiwan, Mexico.
For these countries, there is no adequacy decision of the European Commission. Our cooperation with them is based on these guarantees: standard data protection clauses of the European Commission.

Instagram (by Meta) is a service provided by Meta Platforms Ireland Ltd, Block J, Serpentine Avenue, Dublin 4, Ireland (“Meta Platforms Ireland”). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Instagram is usually transferred to a server of Meta Platforms, Inc, 1601 Willow Road, Menlo Park, CA 94025, USA and stored there. Data processing in the context of a visit to an Instagram (by Meta) fan page is based on an agreement between jointly responsible parties in accordance with Art. 26 GDPR. Further information (information on Insights data) can be found here.

Our service providers are located and/or use servers in the following countries for which the European Commission has determined an adequate level of data protection by decision: Brazil, USA, Canada, Japan, South Korea, New Zealand, United Kingdom, Argentina.

The adequacy decision for the USA applies as the basis for third country transfers, provided that the respective service provider is certified. Certification is available.

Our service providers are located and/or use servers in these countries: Australia, Hong Kong, India, Indonesia, Malaysia, Singapore, Thailand, Taiwan, Mexico.
For these countries, there is no adequacy decision of the European Commission. Our cooperation with you is based on these guarantees: standard data protection clauses of the European Commission.

YouTube is a service provided by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). The information automatically collected by Google about your use of our online presence on YouTube is generally transmitted to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA and stored there.

Our service providers are located and/or use servers in countries outside the EU and the EEA for which the European Commission has determined by decision that the level of data protection is adequate.

Our service providers are located and/or use servers in countries outside the EU and the EEA. For these countries, there is no adequacy decision of the European Commission. Our cooperation with them is based on standard data protection clauses of the European Commission.

LinkedIn is a service of LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”). The information automatically collected by LinkedIn about your use of our online presence on LinkedIn is generally transmitted to a server of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA and stored there.

Our service providers are located and/or use servers in the following countries for which the European Commission has established by decision an adequate level of data protection: USA.

The adequacy decision for the USA applies as the basis for third country transfers, provided that the respective service provider is certified. Certification is available.

10. contact options and your rights

10.1 Your rights

As a data subject, you have the following rights:

• in accordance with Art. 15 DSGVO the right to request information about your personal data processed by us to the extent specified therein;
• in accordance with Art. 16 DSGVO the right to demand the correction of incorrect or completion of your personal data stored by us without delay;
• in accordance with Art. 17 DSGVO the right to request the deletion of your personal data stored by us, unless the further processing
  • to exercise the right to freedom of expression and information;
  • to fulfill a legal obligation;
  • for reasons of public interest or
  • is necessary for the assertion, exercise or defense of legal claims;
• in accordance with Art. 18 DSGVO the right to request the restriction of the processing of your personal data, insofar as
  • the accuracy of the data is disputed by you;
  • the processing is unlawful, but you object to its erasure;
  • we no longer need the data, but you need them to assert, exercise or defend legal claims, or
  • you have objected to the processing pursuant to Art. 21 DSGVO;
• in accordance with Art. 20 DSGVO, the right to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller;
• the right to complain to a supervisory authority pursuant to Art. 77 DSGVO. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters for this purpose.

10.2 Contact options

If you have any questions regarding the collection, processing or use of your personal data, for information, correction, restriction or deletion of data, as well as revocation of consent given or objection to a particular use of data, please contact us directly using the contact details in our imprint.