Privacy Policy

We have written this privacy policy (version 07.09.2021-111825374) in order to explain to you, in accordance with the provisions of the General Data Protection Regulation (EU) 2016/679 and applicable national laws, which personal data (data for short) we as the controller – and the processors commissioned by us (e.g. providers) – process, will process in the future and what legal options you have. The terms used are to be considered as gender-neutral.
In short: We provide you with comprehensive information about any personal data we process about you.

Privacy policies usually sound very technical and use legal terminology. However, this privacy policy is intended to describe the most important things to you as simply and transparently as possible. So long as it aids transparency, technical terms are explained in a reader-friendly manner, links to further information are provided and graphics are used. We are thus informing in clear and simple language that we only process personal data in the context of our business activities if there is a legal basis for it. This is certainly not possible with brief, unclear and legal-technical statements, as is often standard on the Internet when it comes to data protection. I hope you find the following explanations interesting and informative. Maybe you will also find some information that you have not been familiar with.
If you still have questions, we would like to ask you to contact the responsible body named below or in the imprint, to follow the existing links and to look at further information on third-party sites. You can of course also find our contact details in the imprint.

Scope

This privacy policy applies to all personal data processed by our company and to all personal data processed by companies commissioned by us (processors). With the term personal data, we refer to information within the meaning of Article 4 No. 1 GDPR, such as the name, email address and postal address of a person. The processing of personal data ensures that we can offer and invoice our services and products, be it online or offline. The scope of this privacy policy includes:

all online presences (websites, online shops) that we operate
Social media presences and email communication
mobile apps for smartphones and other devices

In short: This privacy policy applies to all areas in which personal data is processed in a structured manner by the company via the channels mentioned. Should we enter into legal relations with you outside of these channels, we will inform you separately if necessary.

Legal bases

In the following privacy policy, we provide you with transparent information on the legal principles and regulations, i.e. the legal bases of the General Data Protection Regulation, which enable us to process personal data.
Whenever EU law is concerned, we refer to REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of April 27, 2016. You can of course access the General Data Protection Regulation of the EU online at EUR-Lex, the gateway to EU law, at https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=celex%3A32016R0679.

We only process your data if at least one of the following conditions applies:

Consent (Article 6 Paragraph 1 lit. a GDPR): You have given us your consent to process data for a specific purpose. An example would be the storage of data you entered into a contact form.
Contract (Article 6 Paragraph 1 lit. b GDPR): We process your data in order to fulfill a contract or pre-contractual obligations with you. For example, if we conclude a sales contract with you, we need personal information in advance.
Legal obligation (Article 6 Paragraph 1 lit. c GDPR): If we are subject to a legal obligation, we will process your data. For example, we are legally required to keep invoices for our bookkeeping. These usually contain personal data.
Legitimate interests (Article 6 Paragraph 1 lit. f GDPR): In the case of legitimate interests that do not restrict your basic rights, we reserve the right to process personal data. For example, we have to process certain data in order to be able to operate our website securely and economically. Therefore, the processing is a legitimate interest.

Other conditions such as making recordings in the interest of the public, the exercise of official authority as well as the protection of vital interests do not usually occur with us. Should such a legal basis be relevant, it will be disclosed in the appropriate place.

In addition to the EU regulation, national laws also apply:

In Austria this is the Austrian Data Protection Act (Datenschutzgesetz), in short DSG.
In Germany this is the Federal Data Protection Act (Bundesdatenschutzgesetz), in short BDSG.

Should other regional or national laws apply, we will inform you about them in the following sections.

Contact details of the data protection controller

If you have any questions about data protection, you will find the contact details of the responsible person or controller below:
Verein Radkettos
Edlbacherstraße 11/12
4020 Linz
Oberösterreich
Österreich

Authorised to represent: Tobias Willnecker
Email: This email address is being protected from spambots. You need JavaScript enabled to view it.
Phone:
Company details: https://radkettos.com/index.php/kontakt

Storage Period

It is a general criterion for us to store personal data only for as long as is absolutely necessary for the provision of our services and products. This means that we delete personal data as soon as any reason for the data processing no longer exists. In some cases, we are legally obliged to keep certain data stored even after the original purpose no longer exists, such as for accounting purposes.

If you want your data to be deleted or if you want to revoke your consent to data processing, the data will be deleted as soon as possible, provided there is no obligation to continue its storage.

We will inform you below about the specific duration of the respective data processing, provided we have further information.

Rights in accordance with the General Data Protection Regulation

You are granted the following rights in accordance with the provisions of the GDPR (General Data Protection Regulation) and the Austrian Data Protection Act (DSG):

right to rectification (article 16 GDPR)
right to erasure (“right to be forgotten“) (article 17 GDPR)
right to restrict processing (article 18 GDPR)
righ to notification – notification obligation regarding rectification or erasure of personal data or restriction of processing (article 19 GDPR)
right to data portability (article 20 GDPR)
Right to object (article 21 GDPR)
right not to be subject to a decision based solely on automated processing – including profiling – (article 22 GDPR)

If you think that the processing of your data violates the data protection law, or that your data protection rights have been infringed in any other way, you can lodge a complaint with your respective regulatory authority. For Austria this is the data protection authority, whose website you can access at https://www.data-protection-authority.gv.at/.

Austria Data protection authority

Manager: Mag. Dr. Andrea Jelinek
Address: Barichgasse 40-42, 1030 Wien
Phone number.: +43 1 52 152-0
E-mail address: This email address is being protected from spambots. You need JavaScript enabled to view it.
Website: https://www.dsb.gv.at/

Security of data processing operations

In order to protect personal data, we have implemented both technical and organisational measures. We encrypt or pseudonymise personal data wherever this is possible. Thus, we make it as difficult as we can for third parties to extract personal information from our data.

Article 25 of the GDPR refers to “data protection by technical design and by data protection-friendly default” which means that both software (e.g. forms) and hardware (e.g. access to server rooms) appropriate safeguards and security measures shall always be placed. If applicable, we will outline the specific measures below.

TLS encryption with https

The terms TLS, encryption and https sound very technical, which they are indeed. We use HTTPS (Hypertext Transfer Protocol Secure) to securely transfer data on the Internet.
This means that the entire transmission of all data from your browser to our web server is secured – nobody can “listen in”.

We have thus introduced an additional layer of security and meet privacy requirements through technology design Article 25 Section 1 GDPR). With the use of TLS (Transport Layer Security), which is an encryption protocol for safe data transfer on the internet, we can ensure the protection of confidential information.
You can recognise the use of this safeguarding tool by the little lock-symbol , which is situated in your browser’s top left corner in the left of the internet address (e.g. examplepage.uk), as well as by the display of the letters https (instead of http) as a part of our web address.
If you want to know more about encryption, we recommend you to do a Google search for “Hypertext Transfer Protocol Secure wiki” to find good links to further information.

Communications

Communications Overview
👥 Affected parties: Anyone who communicates with us via phone, email or online form
📓 Processed data: e. g. telephone number, name, email address or data entered in forms. You can find more details on this under the respective form of contact
🤝 Purpose: handling communication with customers, business partners, etc.
📅 Storage duration: for the duration of the business case and the legal requirements
⚖️ Legal basis: Article 6 (1) (a) GDPR (consent), Article 6 (1) (b) GDPR (contract), Article 6 (1) (f) GDPR (legitimate interests)

If you contact us and communicate with us via phone, email or online form, your personal data may be processed.

The data will be processed for handling and processing your request and for the related business transaction. The data is stored for this period of time or for as long as is legally required.

Affected persons

The above-mentioned processes affect all those who seek contact with us via the communication channels we provide.

Telephone

When you call us, the call data is stored in a pseudonymised form on the respective terminal device, as well as by the telecommunications provider that is being used. In addition, data such as your name and telephone number may be sent via email and stored for answering your inquiries. The data will be erased as soon as the business case has ended and the legal requirements allow for its erasure.

Email

If you communicate with us via email, your data is stored on the respective terminal device (computer, laptop, smartphone, …) as well as on the email server. The data will be deleted as soon as the business case has ended and the legal requirements allow for its erasure.

Online forms

If you communicate with us using an online form, your data is stored on our web server and, if necessary, forwarded to our email address. The data will be erased as soon as the business case has ended and the legal requirements allow for its erasure.

Legal bases

Data processing is based on the following legal bases:

Art. 6 para. 1 lit. a GDPR (consent): You give us your consent to store your data and to continue to use it for the purposes of the business case;
Art. 6 para. 1 lit. b GDPR (contract): For the performance of a contract with you or a processor such as a telephone provider, or if we have to process the data for pre-contractual activities, such as preparing an offer;
Art. 6 para. 1 lit. f GDPR (legitimate interests): We want to conduct our customer inquiries and business communication in a professional manner. Thus, certain technical facilities such email programs, Exchange servers and mobile network operators are necessary to efficiently operate our communications.

Cookies

Cookies Overview
👥 Affected parties: visitors to the website
🤝 Purpose: depending on the respective cookie. You can find out more details below or from the software manufacturer that sets the cookie.
📓 Processed data: Depending on the cookie used. More details can be found below or from the manufacturer of the software that sets the cookie.
📅 Storage duration: can vary from hours to years, depending on the respective cookie
⚖️ Legal basis: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What are cookies?

Our website uses HTTP-cookies to store user-specific data.
In the following we explain what cookies are and why they are used, so that you can better understand the following privacy policy.

Whenever you surf the Internet, you are using a browser. Common browsers are for example, Chrome, Safari, Firefox, Internet Explorer and Microsoft Edge. Most websites store small text-files in your browser. These files are called cookies.

It is important to note that cookies are very useful little helpers. Almost every website uses cookies. More precisely, these are HTTP cookies, as there are also other cookies for other uses. HTTP cookies are small files that our website stores on your computer. These cookie files are automatically placed into the cookie-folder, which is the “brain” of your browser. A cookie consists of a name and a value. Moreover, to define a cookie, one or multiple attributes must be specified.

Cookies store certain user data about you, such as language or personal page settings. When you re-open our website to visit again, your browser submits these “user-related” information back to our site. Thanks to cookies, our website knows who you are and offers you the settings you are familiar to. In some browsers, each cookie has its own file, while in others, such as Firefox, all cookies are stored in one single file.

The following graphic shows a possible interaction between a web browser such as Chrome and the web server. The web browser requests a website and receives a cookie back from the server. The browser then uses this again as soon as another page is requested.

HTTP cookie interaction between browser and web server

There are both first-party cookies and third-party cookies. First-party cookies are created directly by our site, while third-party cookies are created by partner-websites (e.g. Google Analytics). Each cookie must be evaluated individually, as each cookie stores different data. The expiry time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, trojans or other malware. Cookies also cannot access your PC’s information.

This is an example of how cookie-files can look:

Name: _ga
Value: GA1.2.1326744211.152111825374-9
Purpose: Differentiation between website visitors
Expiry date: after 2 years

A browser should support these minimum sizes:

At least 4096 bytes per cookie
At least 50 cookies per domain
At least 3000 cookies in total

Which types of cookies are there?

The exact cookies that we use, depend on the used services, which will be outlined in the following sections of this privacy policy. Firstly, we will briefly focus on the different types of HTTP-cookies.

There are 4 different types of cookies:

Essential cookies
These cookies are necessary to ensure the basic functions of a website. They are needed when a user for example puts a product into their shopping cart, then continues surfing on different websites and comes back later in order to proceed to the checkout. These cookies ensure the shopping cart does not get deleted, even if the user closes their browser window.

Purposive cookies
These cookies collect information about user behaviour and whether the user receives any error messages. Furthermore, these cookies record the website’s loading time as well as its behaviour in different browsers.

Target-orientated cookies
These cookies ensure better user-friendliness. Thus, information such as previously entered locations, fonts sizes or data in forms stay stored.

Advertising cookies
These cookies are also known as targeting cookies. They serve the purpose of delivering customised advertisements to the user. This can be very practical, but also rather annoying.

Upon your first visit to a website you are usually asked which of these cookie-types you want to accept. Furthermore, this decision will of course also be stored in a cookie.

If you want to learn more about cookies and do not mind technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments of the Internet Engineering Task Force (IETF) called “HTTP State Management Mechanism”.

Purpose of processing via cookies

The purpose ultimately depends on the respective cookie. You can find out more details below or from the software manufacturer that sets the cookie.

Which data are processed?

Cookies are little helpers for a wide variety of tasks. Unfortunately, it is not possible to tell which data is generally stored in cookies, but in the privacy policy below we will inform you on what data is processed or stored.

Storage period of cookies

The storage period depends on the respective cookie and is further specified below. Some cookies are erased after less than an hour, while others can remain on a computer for several years.

You can also influence the storage duration yourself. You can manually erase all cookies at any time in your browser (also see “Right of objection” below). Furthermore, the latest instance cookies based on consent will be erased is after you withdraw your consent. The legality of storage will remain unaffected until then.

Right of objection – how can I erase cookies?

You can decide for yourself how and whether you want to use cookies. Regardless of which service or website the cookies originate from, you always have the option of erasing, deactivating or only partially accepting cookies. You can for example block third-party cookies but allow all other cookies.

If you want to find out which cookies have been stored in your browser, or if you want to change or erase cookie settings, you can find this option in your browser settings:

Chrome: Clear, enable and manage cookies in Chrome

Safari: Manage cookies and website data in Safari

Firefox: Clear cookies and site data in Firefox

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete cookies in Microsoft Edge

If you generally do not want cookies, you can set up your browser in a way to notify you whenever a cookie is about to be set. This gives you the opportunity to manually decide to either permit or deny the placement of every single cookie. This procedure varies depending on the browser. Therefore, it might be best for you to search for the instructions in Google. If you are using Chrome, you could for example put the search term “delete cookies Chrome” or “deactivate cookies Chrome” into Google.

Legal basis

The so-called “cookie directive” has existed since 2009. It states that the storage of cookies requires your consent (Article 6 Paragraph 1 lit. a GDPR). Within countries of the EU, however, the reactions to these guidelines still vary greatly. In Austria, however, this directive was implemented in Section 96 (3) of the Telecommunications Act (TKG). In Germany, the cookie guidelines have not been implemented as national law. Instead, this guideline was largely implemented in Section 15 (3) of the Telemedia Act (TMG).

For absolutely necessary cookies, even if no consent has been given, there are legitimate interests (Article 6 (1) (f) GDPR), which in most cases are of an economic nature. We want to offer our visitors a pleasant user experience on our website. For this, certain cookies often are absolutely necessary.

This is exclusively done with your consent, unless absolutely necessary cookies are used. The legal basis for this is Article 6 (1) (a) of the GDPR.

In the following sections you will find more detail on the use of cookies, provided the used software does use cookies.

Web hosting

Web hosting Overview
👥 Affected parties: visitors to the website
🤝 Purpose: professional hosting of the website and security of operations
📓 Processed data: IP address, time of website visit, browser used and other data. You can find more details on this below or at the respective web hosting provider.
📅 Storage period: dependent on the respective provider, but usually 2 weeks
⚖️ Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interests)

What is web hosting?

Every time you visit a website nowadays, certain information – including personal data – is automatically created and stored, including on this website. This data should be processed as sparingly as possible, and only with good reason. By website, we mean the entirety of all websites on your domain, i.e. everything from the homepage to the very last subpage (like this one here). By domain we mean example.uk or examplepage.com.

When you want to view a website on a screen, you use a program called a web browser. You probably know the names of some web browsers: Google Chrome, Microsoft Edge, Mozilla Firefox, and Apple Safari.

The web browser has to connect to another computer which stores the website’s code: the web server. Operating a web server is complicated and time-consuming, which is why this is usually done by professional providers. They offer web hosting and thus ensure the reliable and flawless storage of website data.

Whenever the browser on your computer establishes a connection (desktop, laptop, smartphone) and whenever data is being transferred to and from the web server, personal data may be processed. After all, your computer stores data, and the web server also has to retain the data for a period of time in order to ensure it can operate properly.

Illustration:

Browser and web server

Why do we process personal data?

The purposes of data processing are:

Professional hosting of the website and operational security
To maintain the operational as well as IT security
Anonymous evaluation of access patterns to improve our offer, and if necessary, for prosecution or the pursuit of claims.li>

Which data are processed?

Even while you are visiting our website, our web server, that is the computer on which this website is saved, usually automatically saves data such as

the full address (URL) of the accessed website (e. g. https://www.examplepage.uk/examplesubpage.html?tid=111825374)
browser and browser version (e.g. Chrome 87)
the operating system used (e.g. Windows 10)
the address (URL) of the previously visited page (referrer URL) (e. g. https://www.examplepage.uk/icamefromhere.html/)
the host name and the IP address of the device from the website is being accessed from (e.g. COMPUTERNAME and 194.23.43.121)
date and time
in so-called web server log files

How long is the data stored?

Generally, the data mentioned above are stored for two weeks and are then automatically deleted. We do not pass these data on to others, but we cannot rule out the possibility that this data may be viewed by the authorities in the event of illegal conduct.

In short: Your visit is logged by our provider (company that runs our website on special computers (servers)), but we do not pass on your data without your consent!

Legal basis

The lawfulness of processing personal data in the context of web hosting is justified in Art. 6 para. 1 lit. f GDPR (safeguarding of legitimate interests), as the use of professional hosting with a provider is necessary to present the company in a safe and user-friendly manner on the internet, as well as to have the ability to track any attacks and claims, if necessary.

Email-Marketing

Email Marketing Overview
👥 Affected parties: newsletter subscribers
🤝 Purpose: direct marketing via email, notification of events that are relevant to the system
📓 Processed data: data entered during registration, but at least the email address. You can find more details on this in the respective email marketing tool used.
📅 Storage duration: for the duration of the subscription
⚖️ Legal bases: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What is Email-Marketing?

We use email marketing to keep you up to date. If you have agreed to receive our emails or newsletters, your data will be processed and stored. Email marketing is a part of online marketing. In this type of marketing, news or general information about a company, product or service are emailed to a specific group of people who are interested in it.

If you want to participate in our email marketing (usually via newsletter), you usually just have to register with your email address. To do this, you have to fill in and submit an online form. However, we may also ask you for your title and name, so we can address you personally in our emails.

The registration for newsletters generally works with the help of the so-called “double opt-in procedure”. After you have registered for our newsletter on our website, you will receive an email, via which you can confirm the newsletter registration. This ensures that you own the email address you signed up with, and prevents anyone to register with a third-party email address. We or a notification tool we use, will log every single registration. This is necessary so we can ensure and prove, that registration processes are done legally and correctly. In general, the time of registration and registration confirmation are stored, as well as your IP address. Moreover, any change you make to your data that we have on file is also logged.

Why do we use Email-Marketing?

Of course, we want to stay in contact with you and keep you in the loop of the most important news about our company. For this, we use email marketing – often just referred to as “newsletters” – as an essential part of our online marketing. If you agree to this or if it is permitted by law, we will send you newsletters, system emails or other notifications via email. Whenever the term “newsletter” is used in the following text, it mainly refers to emails that are sent regularly. We of course don’t want to bother you with our newsletter in any way. Thus, we genuinely strive to offer only relevant and interesting content. In our emails you can e.g. find out more about our company and our services or products. Since we are continuously improving our offer, our newsletter will always give you the latest news, or special, lucrative promotions. Should we commission a service provider for our email marketing, who offers a professional mailing tool, we do this in order to offer you fast and secure newsletters. The purpose of our email marketing is to inform you about new offers and also to get closer to our business goals.

Which data are processed?

If you subscribe to our newsletter via our website, you then have to confirm your membership in our email list via an email that we will send to you. In addition to your IP and email address, your name, address and telephone number may also be stored. However, this will only be done if you agree to this data retention. Any data marked as such are necessary so you can participate in the offered service. Giving this information is voluntary, but failure to provide it will prevent you from using this service. Moreover, information about your device or the type of content you prefer on our website may also be stored. In the section “Automatic data storage” you can find out more about how your data is stored when you visit a website. We record your informed consent, so we can always prove that it complies with our laws.

Duration of data processing

If you unsubscribe from our e-mail/newsletter distribution list, we may store your address for up to three years on the basis of our legitimate interests, so we can keep proof your consent at the time. We are only allowed to process this data if we have to defend ourselves against any claims.

However, if you confirm that you have given us your consent to subscribe to the newsletter, you can submit an individual request for erasure at any time. Furthermore, if you permanently object to your consent, we reserve the right to store your email address in a blacklist. But as long as you have voluntarily subscribed to our newsletter, we will of course keep your email address on file.

Withdrawal – how can I cancel my subscription?

You have the option to cancel your newsletter subscription at any time. All you have to do is revoke your consent to the newsletter subscription. This usually only takes a few seconds or a few clicks. Most of the time you will find a link at the end of every email, via which you will be able to cancel the subscription. Should you not be able to find the link in the newsletter, you can contact us by email and we will immediately cancel your newsletter subscription for you.

Legal basis

Our newsletter is sent on the basis of your consent (Article 6 (1) (a) GDPR). This means that we are only allowed to send you a newsletter if you have actively registered for it beforehand. Moreover, we may also send you advertising messages on the basis of Section 7 (3) UWG (Unfair Competition Act), provided you have become our customer and have not objected to the use of your email address for direct mail.

If available – you can find information on special email marketing services and how they process personal data, in the following sections.

Payment providers

Payment Providers Privacy Policy Overview
👥 Affected parties: visitors to the website
🤝 Purpose: To enable and optimise the payment process on our website
📓 Processed data: data such as name, address, bank details (account number, credit card number, passwords, TANs, etc.), IP address and contract data
You can find more details on this directly from the payment provider tool that is being used.
📅 Storage period: depending on the payment provider that is being used
⚖️ Legal basis: Art. 6 paragraph 1 lit. b GDPR (performance of a contract)

What is a payment provider?

On our website we use online payment systems, which enable us as well as you to have a secure and smooth payment process available. Among other things, personal data may also be sent to the respective payment provider, where it may also be stored and processed. Payment providers are online payment systems that enable you to place an order via online banking. The payment processing is carried out by the payment provider of your choice. We will then receive information about the payment. This method can be used by any user who has an active online banking account with a PIN and TAN. There are hardly any banks that do not offer or accept such payment methods.

Why do we use payment providers on our website?

With both our website and our embedded online shop, we of course want to offer you the best possible service, so you can feel comfortable on our site and take advantage of our offers. We know that your time is valuable and that payment processing in particular has to work quickly and smoothly. Thus, we offer various payment providers. You can choose your preferred payment provider and pay in the usual way.

Which data are processed?

What exact data that is processed of course depends on the respective payment provider. However, generally data such as name, address, bank details (account number, credit card number, passwords, TANs, etc.) do get stored. This data is necessary for carrying out any transactions. In addition, any contract data and user data, such as when you have visited our website, what content you are interested in or which sub-pages you have clicked, may also be stored. Most payment providers also store your IP address and information about the computer you are using.

Your data is usually stored and processed on the payment providers’ servers. We, so the website operator, do not receive this data. We only get information on whether the payment has gone through or not. For identity and credit checks, it may happen for payment providers to forward data to the appropriate body. The business and privacy policy principles of the respective provider always apply to all payment transactions. Therefore, please always take a look at the general terms and conditions and the privacy policy of the payment provider. You e.g. also have the right to have data erased or rectified at any time. Please contact the respective service provider regarding your rights (right to withdraw, right of access and individual rights).

Duration of data processing

Provided we have further information on this, we will inform you below about the duration of the processing of your data. In general, we only process personal data for as long as is absolutely necessary for providing our services and products. This storage period may be exceeded however, if it is required by law, for example for accounting purposes. We keep any accounting documents of contracts (invoices, contract documents, account statements, etc.) for 10 years (Section 147 AO) and other relevant business documents for 6 years (Section 247 HGB).

Right to object

You always have the right to information, rectification and erasure of your personal data. If you have any questions, you can always contact the person that is responsible for the respective payment provider. You can find contact details for them either in our respective privacy policy or on the relevant payment provider’s website.

You can erase, deactivate or manage cookies in your browser, that payment providers use for their functions. How this works differs a little depending on which browser you are using. Please note, however, that the payment process may then no longer work.

Legal basis

For the processing of contractual or legal relationships (Art. 6 para. 1 lit. b GDPR), we offer other payment service providers in addition to the conventional banking/credit institutions. In the privacy policy of the individual payment providers (such as Amazon Payments, Apple Pay or Discover) you will find a detailed overview of data processing and data storage. In addition, you can always contact the responsible parties should you have any questions about data protection issues.

Provided it is available, you can find information on the special payment providers in the following sections.

PayPal Privacy Policy

On our website we use the online payment service PayPal. The provider of this service is the American company PayPal Inc. The responsible entity for the European region is the company PayPal Europe (S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg).

PayPal also processes data in the USA, among other countries. We would like to note, that according to the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This can be associated with various risks to the legality and security of data processing.

PayPal uses standard contractual clauses approved by the EU Commission as basis for data processing by recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway and especially in the USA) or data transfer there (= Art. 46, paragraphs 2 and 3 of the GDPR). These clauses oblige PayPal to comply with the EU‘s level of data protection when processing relevant data outside the EU. These clauses are based on an implementing order by the EU Commission. You can find the order and the clauses here: https://ec.europa.eu/commission/presscorner/detail/en/ip_21_2847

You can find out more about the data processed by using PayPal in the Privacy Policy at https://https://www.paypal.com/webapps/mpp/ua/privacy-full.

SoundCloud Privacy Policy

SoundCloud Privacy Policy Overview
👥 Affected parties: website visitors
🤝 Purpose: optimising our service
📓 Processed data: Data such as contact details, data on user behaviour, information about your device and IP address may be stored.
You can find more details on this in the privacy policy below.
📅 Storage period: data are generally stored for as long as is necessary for the service’s purposes
⚖️ Legal basis: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What is SoundCloud?

On our website we use functions (widgets) of the social media network SoundCloud, by the company SoundCloud Limited, Rheinsberger Strasse 76/77, 10115 Berlin, Germany. You can recognise the widgets by the familiar orange logo. By using functions such as playing music, data is transmitted to SoundCloud, where it is stored and evaluated.
In this data protection declaration, we will show you what data this is, why we use SoundCloud and how you can manage your data or prevent data transmission.

The social media network SoundCloud is an online music platform that is a space for exchanging and distributing of audio files. Musicians or podcasters offer their audio files for download on SoundCloud. Moreover, you can also integrate audio files into other websites with SoundCloud – which is exactly what we did. A typical feature of SoundCloud are the graphical displays of the audio files as waves, as well as the comment bar. Registered users can listen to and comment music or podcasts anytime.

Why do we use SoundCloud on our website?

It is our goal is to provide you the best possible service on our website. By this we do not just mean our products or services. A holistic customer service also includes the level of comfort you feel when surfing our website, as well as how helpful you find our online offer. Thanks to the embedding of SoundCloud’s playback function, we can deliver acoustic content directly to you – free of charge. You do not have to click any link to listen to an audio file, as you can start listening to it via our website right away.

What data is stored on SoundCloud?

As soon as you visit one of our websites that has an integrated widget (a like button, a share button or a playback function), your browser connects to one of SoundCloud’s servers. That way, data can be transferred from you to SoundCloud, where it may be managed and stored. For example, SoundCloud can identify your IP address and find out, what page (in this case ours) you visited and when. If you have a SoundCloud account and are logged in while surfing our website, the collected data will be assigned directly to your account. The only way to prevent this is to log out of SoundCloud while you are on our website. In addition to the information mentioned above, cookies also store data on your user behaviour. Whenever you e.g. click a button, play or pause music, this information is stored by cookies. The widget (SoundCloud) is therefore able to recognise you and sometimes it is also used to provide you with customised content. SoundCloud does not only use its own cookies, but also third-party cookies such as by Facebook or Google Analytics. The company utilises these cookies to get more information about your behaviour on external websites as well as on its own platform. As the website operators, we do not receive any information about your user behaviour from SoundCloud’s cookies. The data transfer and therefore also the information about your technical devices and your website behaviour, takes place only between you and SoundCloud.

Below we show you a list of cookies that are set when visiting a website that has SoundCloud functions implemented to it. This list is only an example of potential cookies and we do not claim for it to be exhaustive. The listing shows cookies that may be set if a user does not have a SoundCloud account:

Name: sc_anonymous_id
Value: 208165-986996-398971-423805111825374-0
Purpose: This cookie is the reason it is possible to integrate files or other content into websites. Moreover, it stores a user ID.
Expiry date: after 10 years

Note: The sc_anonymous_id cookie is set immediately if you visit one of our websites with a Soundcloud function. This also happens before you interact with the function.

Name: __qca
Value: P0-1223379886-1579605792812111825374-7
Purpose:This cookie is a third-party cookie from Quantcast. It collects data such as how often you visit the site or how long you stay on the site. The collected information is then transmitted to SoundCloud.
Expiry date: after one year

Name: Sclocale
Value: en
Purpose:The cookie stores your pre-set language settings.
Expiry date: after one year

Name: _soundcloud_session
Value: /
Purpose:We were unable to find any specific information about this cookie.
Expiry date: after end of session

Name: _session_auth_key
Value: /
Purpose:With the help of this cookie, session information (i.e. user behaviour) can be saved and client requests can be authenticated.
Expiry date: after 10 years

Furthermore, SoundCloud use further third-party cookies such as _fbp, _ga, gid from Facebook and Google Analytics. SoundCloud use the information stored in the cookies to improve their own services and to display customised advertising.

How long and where is the data stored?

The collected data generally remains stored with SoundCloud for as long as the respective user account exists, or for as long as SoundCloud need it to achieve their business goals. How long exactly it is saved depends on the context and legal obligations. Even if you do not have an account and your personal data have been stored, you have the right to request the deletion of your data.

How can I delete my data or prevent data retention?

If you have a SoundCloud account, you can go to “Settings” to manage data processing or to delete your account entirely. However, you can also manage, delete or deactivate cookies in your browser. The approach to this depends on the browser you are using. If you decide to delete or deactivate cookies, please consider that afterwards not all functions may be fully available anymore. The following instructions will show you how you can manage, delete or deactivate cookies in your browser.

Chrome: Clear, enable and manage cookies in Chrome

Safari: Manage cookies and website data in Safari

https://support.mozilla.org/en-US/kb/clear-cookies-and-site-data-firefox?tid=111825374" target="_blank" rel="noopener" class="adsimple-111825374"> Firefox: Clear cookies and site data in Firefox

https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies?tid=111825374" target="_blank" rel="noopener" class="adsimple-111825374"> Internet Explorer: Delete and manage cookies

https://support.microsoft.com/en-gb/help/4027947/microsoft-edge-delete-cookies?tid=111825374" target="_blank" rel="noopener" class="adsimple-111825374"> Microsoft Edge: Delete cookies in Microsoft Edge

Legal basis

If you have consented to the processing and storage of your data by integrated SoundCloud elements, this consent is the legal basis for data processing (Art. 6 para. 1 lit. a GDPR) . In principle, your data is also stored and processed on the basis of our legitimate interest (Art. 6 para. 1 lit. f GDPR) to maintain fast and good communication with you or other customers and business partners. We only use the integrated SoundCloud elements if you have given your consent. SoundCloud also sets cookies in your browser to store data. We therefore recommend you to read our privacy policy on cookies carefully and to take a look at the privacy policy or the cookie policy of the respective service provider.

We hope we were able to give you a good overview of SoundCloud’s data traffic. If you would like to learn more on data protection guidelines and on how SoundCloud generally handle data, we recommend the company’s privacy policy at https://soundcloud.com/pages/privacy.

Vimeo Privacy Policy

Vimeo Privacy Policy Overview
👥 Affected parties: website visitors
🤝 Purpose: optimising our service
📓 Processed data: Data such as contact details, data on user behaviour, information about your device and IP address may be stored.
You can find more details on this in privacy policy below.
📅 Storage period: data are generally stored for as long as is necessary for the purpose of the service
⚖️ Legal basis: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What is Vimeo?

On our website, we use videos of the company Vimeo. This video portal is operated by Vimeo LLC, 555 West 18th Street, New York, New York 10011, USA. With the help of a plug-in, we can display interesting video material directly on our website. Consequently, some of your data may be transmitted to Vimeo. In this privacy policy we want to explain to you what data this is, why we use Vimeo and how you can manage your data or prevent data transmission.

Vimeo is a video platform that was founded in 2004 and introduced video streaming in HD quality in 2007. Since 2015 it has been possible to stream in 4k Ultra HD. The use of the portal is free of charge, but it also contains certain paid content. Compared to the market leader YouTube, Vimeo attaches great importance to valuable content in good quality. On the one hand, the portal offers a lot of artistic content such as music videos and short films. On the other hand, it also offers useful documentaries on a broad spectrum of topics.

Why do we use Vimeo on our website?

The aim of our website is to provide you the best possible content, in the easiest and most accessible way we can. We will only be satisfied with our service, once we have reached that goal. The video service Vimeo supports us in achieving this goal. Vimeo gives us the opportunity to present high quality content to you directly on our website. Instead of us merely giving you a link to an interesting video, you can watch the video here with us. This extends our service and makes it easier for you to access interesting content. Therefore, in addition to our texts and images, we can also offer video content.

What data is stored on Vimeo?

When you open a site on our website that has a Vimeo video embedded to it, your browser will connect to Vimeo’s servers, and a data transmission will take place. The data are then collected, stored and processed on Vimeo’s servers. Regardless of whether you have a Vimeo account or not, Vimeo collects data about you. This includes your IP address, technical information about your browser type, your operating system or very basic device information. Furthermore, Vimeo store information on what website you use their service on and which actions (web activities) you carry out on our website. These web activities include e.g. session duration, bounce rate or which button you clicked on our site that contains a Vimeo function. Vimeo can track and store these actions using cookies and similar technologies.

If you are logged in as a registered member of Vimeo, more data may be collected, since a bigger number of cookies may already have been set in your browser. Furthermore, your actions on our website are directly linked to your Vimeo account. To prevent this, you must log out of Vimeo while “surfing” our website.

Below we will show you an array of cookies Vimeo sets when you are on a website containing an integrated Vimeo function. This list is not exhaustive and assumes that you do not have a Vimeo account.

Name: player
Value: “”
Purpose: This cookie saves your settings before you play an embedded Vimeo video. This will ensure you to receive your preferred settings again next time you watch a Vimeo video.
Expiry date: after one year

Name: vuid
Value: pl1046149876.614422590111825374-4
Purpose: This cookie collects information about your actions on websites that have a Vimeo video embedded to them.
Expiry date: after 2 years

Note: These two cookies are set every time as soon as you are on a website that has a Vimeo video embedded to it. If you watch the video and click a button such as “share” or “like”, additional cookies will be set. These can also be third-party cookies such as _ga or _gat_UA-76641-8 from Google Analytics or _fbp from Facebook. The exact cookies that are set depends on your interaction with the video.

The following list will show a selection of cookies that could be placed when you interact with a Vimeo video:

Name: _abexps
Value: %5B%5D
Purpose: This Vimeo cookie helps Vimeo to remember your settings. For example, this can be a pre-set language, a region or a username. The cookie generally stores data on how you use Vimeo.
Expiry date: after one year

Name: continuous_play_v3
Value: 1
Purpose: This cookie is a first-party cookie from Vimeo. The cookie collects information on how you use Vimeo’s service. For example, the cookie stores details on when you pause a video and resume it.
Expiry date: after one year

Name: _ga
Value: GA1.2.1522249635.1578401280111825374-7
Purpose: This cookie is a third-party cookie from Google. By default, analytics.js uses the _ga cookie to store the user ID. Thus, it serves to differentiate between website visitors.
Expiry date: after 2 years

Name: _gcl_au
Value: 1.1.770887836.1578401279111825374-3
Purpose: This third-party cookie from Google AdSense is used to improve the efficiency of ads on websites.
Expiry date: after 3 months

Name: _fbp
Value: fb.1.1578401280585.310434968
Purpose:This is a Facebook cookie. It is used to display adverts or advertising products from Facebook or other advertisers.
Expiry date: after 3 months

Vimeo use this data to improve their own service, to communicate with you and to implement their own targeted advertising measures. On their website they emphasise that only first-party cookies (i.e. cookies from Vimeo itself) are used for embedded videos, provided you do not interact with the video.

How long and where is the data stored?

Vimeo is headquartered in White Plains, New York (USA). However, their services are offered worldwide. For this, the company uses computer systems, databases and servers in the United States and other countries. Thus, your data may also be stored and processed on servers in America. Vimeo stores the data until the company no longer has an economical reason for keeping it. Then the data will be deleted or anonymised. Vimeo correspond to the EU-U.S. Privacy Shield Framework and are therefore allowed to collect and use information from users within the EU, and to transfer this data to the USA.

How can I erase my data or prevent data retention?

You always have the option to manage cookies in your browser. If you do not want Vimeo to set cookies and collect information about you for example, you can delete or deactivate cookies in your browser settings at any time. These settings vary a little depending on the browser. Please note that after deactivating/deleting cookies, various functions may no longer be fully available. The following instructions show how you can manage or delete cookies in your browser.

Chrome: Clear, enable and manage cookies in Chrome

Safari: Manage cookies and website data in Safari

https://support.mozilla.org/en-US/kb/clear-cookies-and-site-data-firefox?tid=111825374" target="_blank" rel="noopener" class="adsimple-111825374"> Firefox: Clear cookies and site data in Firefox

If you are a registered Vimeo member, you can also manage cookies in Vimeo’s settings.

Legal basis

If you have consented to the processing and storage of your data by integrated Vimeo elements, this consent is the legal basis for data processing (Art. 6 para. 1 lit. a GDPR) . Generally, your data is also stored and processed on the basis of our legitimate interest (Art. 6 para. 1 lit. f GDPR) to maintain fast and good communication with you or other customers and business partners. Nevertheless, we only use integrated Vimeo elements if you have given your consent. Vimeo also sets cookies in your browser to store data. We therefore recommend you to read our privacy policy on cookies carefully and to take a look at the privacy policy or the cookie policy of the respective service provider.

Vimeo also processes data in the USA, among other countries. We would like to note, that according to the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This can be associated with various risks to the legality and security of data processing.

Vimeo uses standard contractual clauses approved by the EU Commission as basis for data processing by recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, and especially in the USA) or data transfer there (= Art. 46, paragraphs 2 and 3 of the GDPR). These clauses oblige Vimeo to comply with the EU‘s level of data protection when processing relevant data outside the EU. These clauses are based on an implementing order by the EU Commission. You can find the order and the clauses here: https://ec.europa.eu/commission/presscorner/detail/en/ip_21_2847

You can find out more about the use of cookies at Vimeo at https://vimeo.com/cookie_policy. Furthermore, you can find more information on privacy at Vimeo at https://vimeo.com/privacy.

YouTube Privacy Policy

YouTube Privacy Policy Overview
👥 Affected parties: website visitors
🤝 Purpose: optimising our service
📓 Processed data: Data such as contact details, data on user behaviour, information about your device and IP address may be stored.
You can find more details on this in the privacy policy below.
📅 Storage period: data are generally stored for as long as is necessary for the purpose of the service
⚖️ Legal bases: Art. 6 para. 1 lit. a GDPR (consent), Art. 6 para. 1 lit. f GDPR (legitimate interests)

What is YouTube?

We have integrated YouTube videos to our website. Therefore, we can show you interesting videos directly on our site. YouTube is a video portal, which has been a subsidiary company of Google LLC since 2006. The video portal is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit a page on our website that contains an embedded YouTube video, your browser automatically connects to the servers of YouTube or Google. Thereby, certain data are transferred (depending on the settings). Google is responsible for YouTube’s data processing and therefore Google’s data protection applies.

In the following we will explain in more detail which data is processed, why we have integrated YouTube videos and how you can manage or clear your data.

On YouTube, users can watch, rate, comment or upload videos for free. Over the past few years, YouTube has become one of the most important social media channels worldwide. For us to be able to display videos on our website, YouTube provides a code snippet that we have integrated to our website.

Why do we use YouTube videos on our website?

YouTube is the video platform with the most visitors and best content. We strive to offer you the best possible user experience on our website, which of course includes interesting videos. With the help of our embedded videos, we can provide you other helpful content in addition to our texts and images. Additionally, embedded videos make it easier for our website to be found on the Google search engine. Moreover, if we place ads via Google Ads, Google only shows these ads to people who are interested in our offers, thanks to the collected data.

What data is stored by YouTube?

As soon as you visit one of our pages with an integrated YouTube, YouTube places at least one cookie that stores your IP address and our URL. If you are logged into your YouTube account, by using cookies YouTube can usually associate your interactions on our website with your profile. This includes data such as session duration, bounce rate, approximate location, technical information such as browser type, screen resolution or your Internet provider. Additional data can include contact details, potential ratings, shared content via social media or YouTube videos you added to your favourites.

If you are not logged in to a Google or YouTube account, Google stores data with a unique identifier linked to your device, browser or app. Thereby, e.g. your preferred language setting is maintained. However, many interaction data cannot be saved since less cookies are set.

In the following list we show you cookies that were placed in the browser during a test. On the one hand, we show cookies that were set without being logged into a YouTube account. On the other hand, we show you what cookies were placed while being logged in. We do not claim for this list to be exhaustive, as user data always depend on how you interact with YouTube.

Name: YSC
Value: b9-CV6ojI5Y111825374-1
Purpose: This cookie registers a unique ID to store statistics of the video that was viewed.
Expiry date: after end of session

Name: PREF
Value: f1=50000000
Purpose: This cookie also registers your unique ID. Google receives statistics via PREF on how you use YouTube videos on our website.
Expiry date: after 8 months

Name: GPS
Value: 1
Purpose: This cookie registers your unique ID on mobile devices to track GPS locations.
Expiry date: after 30 minutes

Name: VISITOR_INFO1_LIVE
Value: 95Chz8bagyU
Purpose: This cookie tries to estimate the user’s internet bandwith on our sites (that have built-in YouTube videos).
Expiry date: after 8 months

Further cookies that are placed when you are logged into your YouTube account:

Name: APISID
Value: zILlvClZSkqGsSwI/AU1aZI6HY7111825374-
Purpose: This cookie is used to create a profile on your interests. This data is then used for personalised advertisements.
Expiry date: after 2 years

Name: CONSENT
Value: YES+AT.de+20150628-20-0
Purpose: The cookie stores the status of a user’s consent to the use of various Google services. CONSENT also provides safety measures to protect users from unauthorised attacks.
Expiry date: after 19 years

Name: HSID
Value: AcRwpgUik9Dveht0I
Purpose: This cookie is used to create a profile on your interests. This data helps to display customised ads.
Expiry date: after 2 years

Name: LOGIN_INFO
Value: AFmmF2swRQIhALl6aL…
Purpose: This cookie stores information on your login data.
Expiry date: after 2 years

Name: SAPISID
Value: 7oaPxoG-pZsJuuF5/AnUdDUIsJ9iJz2vdM
Purpose: This cookie identifies your browser and device. It is used to create a profile on your interests.
Expiry date: after 2 years

Name: SID
Value: oQfNKjAsI111825374-
Purpose: This cookie stores your Google Account ID and your last login time, in a digitally signed and encrypted form.
Expiry date: after 2 years

Name: SIDCC
Value: AN0-TYuqub2JOcDTyL
Purpose: This cookie stores information on how you use the website and on what advertisements you may have seen before visiting our website.
Expiry date: after 3 months

How long and where is the data stored?

The data YouTube receive and process on you are stored on Google’s servers. Most of these servers are in America. At https://www.google.com/about/datacenters/inside/locations/?hl=en you can see where Google’s data centres are located. Your data is distributed across the servers. Therefore, the data can be retrieved quicker and is better protected against manipulation.

Google stores collected data for different periods of time. You can delete some data anytime, while other data are automatically deleted after a certain time, and still other data are stored by Google for a long time. Some data (such as elements on “My activity”, photos, documents or products) that are saved in your Google account are stored until you delete them. Moreover, you can delete some data associated with your device, browser, or app, even if you are not signed into a Google Account.

How can I erase my data or prevent data retention?

Generally, you can delete data manually in your Google account. Furthermore, in 2019 an automatic deletion of location and activity data was introduced. Depending on what you decide on, it deletes stored information either after 3 or 18 months.

Regardless of whether you have a Google account or not, you can set your browser to delete or deactivate cookies placed by Google. These settings vary depending on the browser you use. The following instructions will show how to manage cookies in your browser:

Chrome: Clear, enable and manage cookies in Chrome

Safari: Manage cookies and website data in Safari

https://support.mozilla.org/en-US/kb/clear-cookies-and-site-data-firefox?tid=111825374" target="_blank" rel="noopener" class="adsimple-111825374"> Firefox: Clear cookies and site data in Firefox

If you generally do not want to allow any cookies, you can set your browser to always notify you when a cookie is about to be set. This will enable you to decide to either allow or permit each individual cookie.

Legal basis

If you have consented processing and storage of your data by integrated YouTube elements, this consent is the legal basis for data processing (Art. 6 para. 1 lit. a GDPR). Generally, your data is also stored and processed on the basis of our legitimate interest (Art. 6 para. 1 lit. f GDPR) to maintain fast and good communication with you or other customers and business partners. Nevertheless, we only use integrated YouTube elements if you have given your consent. YouTube also sets cookies in your browser to store data. We therefore recommend you to read our privacy policy on cookies carefully and to take a look at the privacy policy or the cookie policy of the respective service provider.

YouTube also processes data in the USA, among other countries. We would like to note, that according to the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This can be associated with various risks to the legality and security of the data processing.

YouTube uses standard contractual clauses approved by the EU Commission (= Art. 46, paragraphs 2 and 3 of the GDPR) as basis for data processing by recipients based in third countries (which are outside the European Union, Iceland, Liechtenstein and Norway) or for data transfer there. These clauses oblige YouTube to comply with the EU‘s level of data protection when processing relevant data outside the EU. These clauses are based on an implementing order by the EU Commission. You can find the order and the clauses here: https://ec.europa.eu/commission/presscorner/detail/en/ip_21_2847

Since YouTube is a subsidiary company of Google, Google’s privacy statement applies to both. If you want to learn more about how your data is handled, we recommend the privacy policy at https://policies.google.com/privacy?hl=en.

YouTube Subscribe Button Privacy Policy

We have integrated the YouTube subscribe button to our website, which you can recognise by the classic YouTube logo. The logo shows the words “Subscribe” or “YouTube” in white letters against a red background, with a white “Play” symbol on the left. The button may also be displayed in a different design.

Our YouTube channel consistently offers you funny, interesting or exciting videos. With the built-in “Subscribe” button you can subscribe to our channel directly via our website and do not need to go to YouTube’s website for it. With this feature, we want to make it as easy as possible for you to access our comprehensive content. Please note that YouTube may save and process your data.

If you see a built-in subscription button on our page, YouTube sets at least one cookie, according to Google. This cookie stores your IP address and our URL. It also allows YouTube to receive information about your browser, your approximate location and your default language. In our test the following four cookies were placed, without us being logged into YouTube:

Name: YSC
Value: b9-CV6ojI5111825374Y
Purpose: This cookie registers a unique ID, which stores statistics of the viewed video.
Expiry date: after end of session

Name: PREF
Value: f1=50000000
Purpose:This cookie also registers your unique ID. Google uses PREF to get statistics on how you interact with YouTube videos on our website.
Expiry date: after 8 months

Name: GPS
Value: 1
Purpose:This cookie registers your unique ID on mobile devices to track your GPS location.
Expiry date: after 30 minutes

Name: VISITOR_INFO1_LIVE
Value: 11182537495Chz8bagyU
Purpose: This cookie tries to estimate the user’s internet bandwith on our website (that contain built-in YouTube video).
Expiry date: after 8 months

Note: These cookies were set after a test, thus we do not claim for the list to be exhaustive.

If you are logged into your YouTube account, YouTube may store many of the actions and interactions you make on our website via cookies, to then assign them to your YouTube account. This gives YouTube information on e.g. how long you have been browsing our website, which browser type you use, which screen resolution you prefer or what actions you take.

On the one hand, YouTube uses this data to improve its own services and offers, and on the other hand to provide analyses and statistics for advertisers (who use Google Ads).

OpenStreetMap Privacy Policy

We have included map sections of the online map tool “OpenStreetMap” to our website. It is a so-called open source mapping, which we can access via an API (interface). This feature is offered by OpenStreetMap Foundation, St John’s Innovation Center, Cowley Road, Cambridge, CB4 0WS, United Kingdom. By using this map function, your IP address will be forwarded to OpenStreetMap. In this privacy policy we will explain why we use the functions of the OpenStreetMap tool, where which data is stored and how you can prevent data storage.

What is OpenStreetMap?

The OpenStreetMap project was launched in 2004. Its aim is to create a free world map. Users all around the world have been collecting data about buildings, forests, rivers and roads. Therefore, an extensive digital world map has been created by users over the years. Of course, the map is not complete, but it contains a lot of data for most regions.

Why do we use OpenStreetMap on our website?

The primary intention of your website is to be helpful to you. We think this can only be the case when information can be found quickly and easily. On the one hand, of course, this concerns our services and products. On the other hand, there should also be other helpful information available to you. That is why we also use OpenStreetMap’s map service. Thanks to this, we can for example show you exactly how to find our company. The map shows you the best way to get to us and makes your journey very smooth and easy.

What data is stored by OpenStreetMap?

When you visit one of our websites that include OpenStreetMap, your user data is transmitted to the service where it is stored. OpenStreetMap collects information about your interactions with the digital map, your IP address, your browser, device type, operating system and on which day and at what time you used the service. Tracking software is also used to record user interactions. For this regard, the company specifiies the “Piwik” analysis tool in its own privacy policy.

The collected data are then accessible to the relevant employee groups of the OpenStreetMap Foundation. According to the company, personal data will not be passed on to other people or companies, unless it is legally required. The third-party provider Piwik stores your IP address, but in a shortened form.

The following cookies may be set in your browser if you inerace with OpenStreetMap on our website:

Name: _osm_location
Value: 9.63312%7C52.41500%7C17%7CM
Purpose: This cookie is required to unlock OpenStreetMap’s contents.
Ablaufdatum: after 10 years

If you want to view the map in full screen, you will be linked to OpenStreetMap’s website. There, the following cookies may be stored in your browser:

Name: _osm_totp_token
Value: 148253111825374-2
Purpose:This cookie is used to ensure the operation of the map section.
Expiry date:after one hour

Name: _osm_session
Value: 1d9bfa122e0259d5f6db4cb8ef653a1c
Purpose: With the help of this cookie, session information (i.e. user behavior) can be stored.
Expiry date: after end of session

Name: _pk_id.1.cf09
Value: 4a5.1593684142.2.1593688396.1593688396111825374-9
Purpose:This cookie is set by Piwik to save or measure user data such as click behavior.
Expiry date: after one year

How long and where are the data stored?

The API servers, databases, and servers of auxiliary services are currently located in the United Kingdom (Great Britain and Northern Ireland) and the Netherlands. Your IP address and user information, which are saved in an abbreviated version by the web analysis tool Piwik, will be deleted after 180 days.

How can I delete my data or prevent data retention?

You have the right to both access your personal data and to object to its use and processing at any time. You can also always manage, delete, or deactivate cookies that may be set by OpenStreetMap in your browser. As a result, however, the service may no longer work to their full extent. The management, deletion or deactivation of cookies works differently in every browser. Below you will find links to the instructions of the most popular browsers:

Chrome: Clear, enable and manage cookies in Chrome

Safari: Manage cookies and website data in Safari

https://support.mozilla.org/en-US/kb/clear-cookies-and-site-data-firefox?tid=111825374" target="_blank" rel="noopener" class="adsimple-111825374"> Firefox: Clear cookies and site data in Firefox

For more information on OpenStreetMap’s data processing, we recommend the company’s privacy policy at https://wiki.osmfoundation.org/wiki/Privacy_Policy.

All texts are copyrighted.

Source: Created with the Datenschutz Generator by AdSimple