Privacy Policy 11/2022

1. Definitions

Our data protection declaration is based on the terms used by the European legislator in the context of the data protection regulation (DSGVO). Our data protection declaration should be legible and understandable for the general public, but also for our customers and business partners. To ensure this, we would first like to explain some of the terms used.

Personal Data

Personal data is any information about a specific or identifiable natural person ("data subject"). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or by one or more specific characteristics of the physical, physiological, genetic, mental , economic, cultural or social identity of that natural person.

Affected Persons/r

Any identified or identifiable natural person whose personal data has been processed by the person responsible for processing is affected.

Processing

Processing is any operation or set of operations carried out on personal data, whether automatically collected, recorded, organized, structured, stored, adapted or modified, accessed, consulted, used, transmitted, disseminated or otherwise accessible made, aligned or combined, restricted, deleted or destroyed.

Profiling

Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain aspects of a natural person, in particular to analyze or predict aspects of work performance, economic situation, health, personal preferences, interests , reliability, conduct, location or movements of that natural person.

Pseudonymization

Pseudonymisation is the processing of personal data in such a way that the personal data can no longer be assigned to a specific person without the use of additional information, provided that this additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data is not assigned to a specific or identifiable natural person.

Responsible Person (=Controller)

The person responsible for processing is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for their nomination may be determined by Union or Member State law.

Processor

Processor is a natural or legal person, authority, authority or other body that processes personal data on behalf of the person responsible or controller.

Recipient

Recipient is a natural or legal person, public authority, agency or other body to which the personal data is passed on, regardless of whether it is a third party or not. However, authorities that may receive personal data in the context of a specific investigation under Union or Member State law are not considered recipients; the processing of this data by these authorities is carried out in accordance with the applicable data protection regulations, according to the purposes of the processing.

Third Parties

Third party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons authorized to process personal data under the direct supervision of the controller or processor.

Consent

The consent of the data subject is any freely given, specific, informed and unambiguous statement of the wishes of the data subject, through which they declare their consent to the processing of their personal data by means of a statement or a clear affirmation.

 

2. Name of person(s) responsible

The person responsible within the meaning of the GDPR and other national data protection laws of the member states as well as other data protection regulations

ZeoBent Handels GmbH

Weißen 2

07407 Uhlstädt-Kirchhasel

GERMANY

E-Mail: info@zeolith-bentonit-versand.at | Website: www.zeolith-bentonit-versand.eu | www.zeolite-bentonite.com

 

3. Data protection officer

You can reach our data protection officer as follows:

ZeoBent Handels GmbH

Mario Markotic

Weißen 2

07407 Uhlstädt-Kirchhasel

GERMANY

E-Mail:info@zeolith-bentonit-versand.de

 

4. General information on the collection and processing of your data

Scope of Processing

In principle, we only process the personal data of our website visitors and users to the extent that this is necessary to provide a functional website and our content and services. The processing of personal data of our users takes place regularly only with the consent of the user. An exception applies in such cases in which it is not possible to obtain prior consent for actual reasons and the processing of the data is permitted by statutory provisions.

Legal Basis

Insofar as we obtain the consent of the data subject for the processing of personal data, Article 6 (1) (a) GDPR serves as the legal basis. Article 6 (1) (b) GDPR serves as the legal basis for the processing of personal data required to fulfill a contract to which the data subject is a party. This also applies to processing operations that are necessary to carry out pre-contractual measures. Insofar as processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Article 6 (1) (c) GDPR serves as the legal basis. In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6 Paragraph 1 lit. d GDPR serves as the legal basis. If the processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and fundamental freedoms of the person concerned do not outweigh the first interest, Article 6 Paragraph 1 Letter f GDPR serves as the legal basis for the processing .

Storage and Deletion of your data

We delete or block personal data of the person concerned as soon as the purpose of storage no longer applies. Deletion can also take place if this has been provided for by the European or national legislator in EU regulations, laws or other regulations to which our company is subject. The data will also be blocked or deleted if a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.

Notice

Your consent data will be processed for the use of this website and the use of the integrated consent management platform. We use OneDrive Personal Cloud Storage from Microsoft OneDrive. The server locations are within the European Union. Due to the judgment of the ECJ of July 16, 2020 (Case C311/18), the transfer of personal data to the USA was declared unlawful on the basis of the Privacy Shield. We would like to inform you that it cannot be ruled out that the data will be transmitted to the USA and accessed there by the security authorities in accordance with 50 U.S.C. §1881(b)(4), 50 U.S.C. § 1881a (= FISA 702) could be exposed.

 

5. Provision of the website and Creation of log files

Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer. This is e.g. information such as information about the type and version of your internet browser, the operating system of your computer or smartphone, your internet service provider, your IP address, date and time of your access, websites from which you came to us arrived, Internet pages which you visit from our side. The legal basis for temporary storage is Art. 6 (1) (f) GDPR. We record such technical information in so-called "log files" (log files) so that our website is displayed correctly and we can determine the causes of any technical problems, for the technical optimization of our website and for the purpose of security of our computer systems and networks. Our legitimate interest in data processing in accordance with Article 6 (1) (f) GDPR also lies in these purposes. The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. Typically, this technical information is deleted or made unrecognizable after seven days at the latest. The collection of the data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility of objection on the part of the user.

 

6. Contact requests for product information or other matters

Description and Scope of data processing

You can contact us in various ways on our website (including the contact form) and request product information. If you take advantage of this option, the data entered in the input mask will be transmitted to us and saved. In addition to the specific input mask data, the IP address and the date and time of the request are collected and stored. You give your consent to the processing of the data by sending it. Alternatively, you can contact us by email. In this case, the user's personal data transmitted with the e-mail will be stored. In this context, the data will not be passed on to third parties, unless this is necessary to process the query (e.g. demo booking tool). In any case, the data will only be used to process the conversation.

Legal basis for Processing

The legal basis for processing the data is Article 6(1)(a) GDPR if the user has given their consent. The legal basis for the processing of data transmitted in the course of sending an email is Article 6 Paragraph 1 Letter f GDPR. If the e-mail contact is aimed at concluding a contract, the additional legal basis for processing is Art. 6 (1) (b) GDPR.

Purpose of Data Processing

The processing of the personal data from the input mask serves us solely to process your request. If contact is made by e-mail, this is also the necessary legitimate interest in the processing of the data. The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.

Duration of storage

If you have requested product information or an offer, we reserve the right to store the data for two years in order to measure the profitability of our sales and marketing. Otherwise, we will delete the data as soon as they are no longer required to achieve the purpose for which they were collected. For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is over when it can be inferred from the circumstances that the facts in question have been finally clarified. The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

Possibility of objection and elimination

The user(s) have the option to revoke their consent to the processing of personal data at any time. If the user contacts us by email, he/she can object to the storage of his/her personal data at any time. In such a case, the conversation cannot be continued. All personal data that was saved in the course of making contact will be deleted in this case.

 

7. You become a customer, reseller, recommender or partner 

Description and Scope of data processing

We offer the option of becoming a customer or partner by providing personal data. The data is collected and stored in the contract process. A transfer of data to third parties does not take place. The following data is collected as part of the registration process:

Your Email-Adresse,

first name and last name,

possibly company affiliation,

Payment information (of the company, if applicable),

other data that we request from you and

possibly data that we receive as part of the business relationship.

Legal basis for processing

The legal basis for processing the data is Article 6(1)(a) GDPR and Article 6(1)(b) GDPR if the user has given their consent, since registration is part of the fulfillment of a contract or the implementation of pre-contractual measures he follows.

Purpose of Data Processing

Registration is required to fulfill the customer or partner contract or to carry out pre-contractual measures.

Duration of storage

The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. This is the case during the registration process to fulfill a contract or to carry out pre-contractual measures if the data is no longer required for the execution of the contract. Even after the conclusion of the contract, it may be necessary to store personal data of the contractual partner in order to comply with contractual or legal obligations. In particular, our company has to observe the storage obligations of tax law (§257 dHGB, §132 öBAO) in this context.

Possibility of objection and elimination

As a user, you have the option to close your account at any time. You can have the data stored about you changed at any time. If the data is required to fulfill a contract or to carry out pre-contractual measures, the data can only be deleted prematurely if there are no contractual or legal obligations to the contrary.

Credit Check

If we pay in advance, e.g. when purchasing on account, we obtain identity and credit information from service companies specializing in this (credit agencies). For this purpose, we transmit your personal data required for a credit check to the following company(ies): ​​​​​​​ ​​​​​​​

SCHUFA Holding AG
Kormoranweg 5
65201 Wiesbaden
​​​​​​​GERMANY

CRIF Bürgel GmbH
Radlkoferstraße 2
81373 München
​​​​​​​GERMANY

Universum Business GmbH
Hanauer Landstraße 164
60314 Frankfurt am Main
GERMANY

arvato infoscore GmbH
Rheinstraße 99
76532 Baden-Baden
GERMANY

This serves to safeguard our overriding legitimate interests in accordance with Article 6 Paragraph 1 Clause 1 Letter f GDPR in assessing the creditworthiness and willingness to pay of our potential customers prior to the conclusion of the contract and thus avoiding purchase price losses, and is Conclusion of contract required in accordance with Article 22 (2) (a) GDPR. Appropriate measures to protect your rights, freedoms and legitimate interests are taken into account. You have the option of expressing your point of view and contesting the decision by contacting the contact option described in this data protection declaration. After the contract has been fully processed, your data processed for this purpose will be deleted, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we will inform you in this declaration.

Collection Service Provider

We will pass on your data to a commissioned debt collection service provider if our payment claim has not been settled despite a previous reminder. In this case, the claim will be collected directly by the debt collection service provider. This serves to fulfill the contract in accordance with Article 6 Paragraph 1 Sentence 1 lit. b GDPR and to safeguard our legitimate interests in an effective assertion or enforcement of our payment claim in accordance with Article 6 Paragraph 1 Sentence 1 lit. f GDPR.

Shipping Service Provider

In order to fulfill the contract in accordance with Article 6 Paragraph 1 Sentence 1 lit. b GDPR, we pass on your data to the shipping service provider commissioned with the delivery, insofar as this is necessary for the delivery of the goods ordered.

Data transfer to shipping service providers for the purpose of shipping notification

If you have given us your express consent to this during or after your order, we will pass on your e-mail address and telephone number to the selected shipping service provider in accordance with Article 6 Paragraph 1 Sentence 1 lit Delivery can contact you for the purpose of delivery notification or coordination. The consent can be revoked at any time by sending a message to the contact option described in this data protection declaration or directly to the shipping service provider at the contact address listed below. After revocation, we will delete the data you have provided for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use data that goes beyond this, which is permitted by law and about which we will inform you in this declaration.

DHL Paket GmbH
Sträßchensweg 10
53113 Bonn
GERMANY

 

8. Cookies and Tracking Technologies

What are cookies & Co.?

Web-Browser-Cookies

A web browser cookie is a small text file that is sent from a website to your computer or mobile device, where it is stored by your web browser. Web browser cookies may store information such as your IP address or other identifier, browser type, and information about the content you view and interact with on the Digital Services. By storing such information, web browser cookies can store your preferences and settings for online services and analyze how you use online services.

Tracking-Technologies: Web Beacons/Gifs, Pixels, Page-Tags, Script

Email and mobile applications may contain small, transparent image files or lines of code to record how you interact with them. This information is used to help website and app publishers better analyze and improve their services.

Use, Legal Basis and Purpose

We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change. 2 functional cookies are set before consent is given. The "PHPSESSID" cookie is used to recognize the browser language and thus display the language of the website appropriately. After closing the browser, this cookie is deleted again. The "wBounce" cookie only contains the value "true". This value is used to recognize whether the user has seen a pop-up before or not. If they've already interacted with it, we don't want to show it to them again for a period of time. In addition, we set the two IAB cookies "euconsent" and "eupubconsent". These cookies are used to store information if a user does not want to be tracked. The same applies to storing data in local storage. This only serves to remind us if a user has not given his consent. Otherwise we would have to query this again with every page view. The cookies mentioned and the storage of the data in local storage only enable functionalities that are intended to contribute to a positive user experience on our website. We do not set cookies with personal data without consent. We also use cookies on our website, which enable an analysis of the surfing behavior of users. When accessing our website, the user is informed about the use of cookies for analysis purposes and their consent to the processing of the personal data used in this context is obtained. In this context, there is also a reference to this data protection declaration. The legal basis for the processing of personal data using technically necessary cookies is Article 6 (1) (f) GDPR. The legal basis for the processing of personal data using cookies for analysis purposes is Article 6(1)(a) GDPR if the user has given their consent. The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For these it is necessary that the browser is recognized even after a page change. We need cookies for the following applications: Acceptance of language settings. The user data collected by technically necessary cookies are not used to create user profiles. Analysis cookies are used to improve the quality of our website and its content. Through the analysis cookies we learn how the website is used and can thus continuously optimize our offer.

Duration

Cookies are stored on the user's computer and transmitted to our site. Therefore, as a user, you also have full control over the use of cookies. By changing the settings in your Internet browser, you can deactivate or restrict the transmission of cookies. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all the functions of the website to their full extent.

 

9. Implemented Technologies

• Google Ads Remarketing

Service Description

This is a remarketing service. By means of remarketing, the user can show interest-based advertisements to users of the website on other websites within the Google Display Network (e.g. in Google search or on YouTube). For this purpose, the interactions of the users are analyzed, eg which products and services a user is interested in. This allows the user to display targeted advertising to the user on other websites even after visiting the website.

Processing Company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

https://support.google.com/policies/troubleshooter/7575787?hl=en

data processing purposes

This list represents the purposes of data collection and processing.

• remarketing
• advertisement
• tracking user action

Technologies used

This list includes all technologies used by this service to collect data. Typical technologies are cookies and pixels placed in the browser.

• Cookies

Collected Data

This list contains all (personal) data collected by or through the use of this service.

• visit duration
• IP adress
• visited pages
• Content the user is interested in
• website usage
• Referrer URL
• advertising identifier
• Date and time of visit
• device information
• browser informationen

Legal basis

The required legal basis for the processing of data is mentioned below

• 6 paragraph 1 sentence 1 lit. a GDPR

Place of Processing

This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately.

European Union

Duration to save the data

The retention period is the period of time during which the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the stated processing purposes.

Data will be deleted as soon as they are no longer required for the processing purposes.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred. For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

• United States of America
• Singapore
• Taiwan
• Chile
• Data Receiver

The recipients of the collected data are listed below.

• Google Ireland Limited
• Google LLC Alphabet Inc.

Click here to read the data processor's privacy policy

https://policies.google.com/privacy

Click here to read the data processor's cookie policy

https://policies.google.com/technologies/cookies

Click here to revoke on all domains of the processing company

https://safety.google/privacy/privacy-controls/

Storage Information

• Maximum limit for storing cookies: 1 year

Saved Information

• name: IDE; Contains a randomly generated user ID. Using this ID, Google can recognize the user across different websites and show them personalized advertising.; type: cookies; Duration: 1 year; Domain: doubleclick.net;
• name: test_cookie; Set as a test to check whether the browser allows cookies to be set. Contains no identifiers.; type: cookies; Duration: 15 minutes; Domain: doubleclick.net;

 

• Facebook Pixels

Service Description

This is a tracking technology offered by Facebook and used by other Facebook services. It is used to track visitor interactions with websites ("events") after clicking on an ad served on Facebook or other services provided by Meta ("conversion").

Processing Company

Meta Platforms

Ireland Ltd. 4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

https://www.facebook.com/help/contact/540977946302970

Data Processing Purposes

This list represents the purposes of data collection and processing.

• analysis
• marketing
• retargeting
• advertising
• conversion tracking
• personalization

Technologies used

This list includes all technologies used by this service to collect data. Typical technologies are cookies and pixels placed in the browser.

• cookies
• pixel

Collected Data

This list contains all (personal) data collected by or through the use of this service.

• viewed ads
• viewed content
• device information
• geographic location
• HTTP header
• interactions with advertising, services and products
• IP address
• clicked items
• marketinginformation
• visited pages
• pixel ID
• Referrer URL
• user data
• user behavior
• facebook cookie information
• facebook user ID
• usage/click behavior
• browser Information
• device operating system
• device ID
• user agent
• browser type

Legal basis

The required legal basis for the processing of data is mentioned below

• 6 paragraph 1 sentence 1 lit. a GDPR

place of processing

This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately.

european union

Duration to save the data

The retention period is the period of time during which the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the stated processing purposes. The user interactions recorded on the websites are not stored for longer than two years.

However, the data will be deleted as soon as they are no longer required for the purposes of processing.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred. For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

• Singapore
• United States of America
• Worldwide

Data Receiver

The recipients of the collected data are listed below.

• Meta Platforms Ireland Ltd., Meta Platforms Inc.

Click here to read the data processor's privacy policy

https://www.facebook.com/privacy/explanation

Click here to read the data processor's cookie policy

https://www.facebook.com/policies/cookies

storage information

• Maximum limit for storing cookies: 1 year

Saved Information

• Name: _fbp; Cookie from Facebook used for website analytics, ad targeting and ad measurement.; type: cookies; Duration: 3 months; Domain: facebook.com;

 

• Facebook Social Plugins

Service Description

This is a social plugin from Facebook that enables users to connect their website to the social network Facebook.

processing company

Meta Platforms Ireland Ltd.

4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

https://www.facebook.com/help/contact/540977946302970

data processing purposes

This list shows the purposes of data collection and processing. Integration of Facebook functions Optimization Marketing Technologies used This list contains all technologies with which this service collects data. Typical technologies are cookies and pixels placed in the browser.

• cookies

Collected Data

This list contains all (personal) data collected by or through the use of this service.

• browser information
• Date and time of visit
• Facebook User ID
• Websites visited
• HTTP Headers
• Interaction Data
• Browser type
• IP address

Legal Basis

The required legal basis for the processing of data is mentioned below

• 6 paragraph 1 sentence 1 lit. a GDPR

Place of processing

This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately.

European Union

Duration to save the data

The retention period is the length of time the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the stated processing purposes. The data will be deleted as soon as they are no longer required for the processing purposes.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred. For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

• United States of America
• Singapore

Data Receiver

The recipients of the collected data are listed below.

• Meta Platforms Ireland Ltd., Meta Platforms Inc.

Click here to read the data processor's privacy policy

https://www.facebook.com/privacy/explanation

Click here to read the data processor's cookie policy

https://www.facebook.com/policies/cookies/

Click here to revoke on all processor domains

https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen

 

• Google Ads Conversion

Service Description

This is a conversion marketing service for measuring the success of advertising campaigns.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

https://support.google.com/policies/contact/general_privacy_form

Data processing purposes

This list represents the purposes of data collection and processing.

• Advertising
• Conversion Tracking

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• Cookies

Data Collected

This list contains all (personal) data collected by or through the use of this service.

• CookieID
• Date and time of visit
• Device Information
• IP address
• Information about the operating system
• Referrer URL
• Web request
• Browser Information

Legal Basis

The required legal basis for the processing of data is mentioned below

• 6 paragraph 1 sentence 1 lit. a GDPR

Place of processing

This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately.

• European Union

Duration to save the data

The retention period is the length of time the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the specified processing purposes.

Data will be deleted as soon as they are no longer required for processing purposes.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred. For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

• United States of America
• Chile
• Singapore
• Taiwan

Data Receiver

The recipients of the collected data are listed below.

• Alphabet Inc. Google LLC Google Ireland Limited

Click here to read the data processor's privacy policy

href="https://policies.google.com/privacy?hl=en-US">https://policies.google.com/privacy?hl=en-US

Click here to read the data processor's cookie policy

href="https://policies.google.com/technologies/cookies?hl=en-US">https://policies.google.com/technologies/cookies?hl=en-US

Storage Information

• Maximum storage of cookies: 1 year

Stored Information

• Name: test_cookie; Set as a test to check whether the browser allows cookies to be set. Contains no identifiers.; type: cookies; Duration: 15 minutes; Domain: doubleclick.net;
• Name: IDE; Contains a randomly generated user ID. Using this ID, Google can recognize the user across different websites and show them personalized advertising.; type: cookies; Duration: 1 year; Domain: doubleclick.net;

 

• Google Ads Conversion Tracking

Service Description

This is a conversion tracking service. This service records what happens after a click on an ad placed by us via Google Ads when users subsequently visit the website. With conversions, we measure whether users perform a specific action on the website that we have specified (e.g. whether they order services) after clicking on an ad placed by us via Google Ads. In this way, the user can understand which keywords, ads, ad groups or campaigns lead to the desired user interaction.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

https://support.google.com/policies/troubleshooter/7575787?hl=en

Data processing purposes

This list represents the purposes of data collection and processing.

• Conversion Tracking
• Analysis
• Measuring the success of marketing campaigns

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• Cookies
• tracking
• pixels
• Tracking code
• Data collected

This list contains all (personal) data collected by or through the use of this service.

• Browser language
• Browser type
• Clicked Ads
• CookieID
• Date and time of visit
• IP address
• Referrer URL
• Web request
• User behavior

Legal Basis

The required legal basis for the processing of data is mentioned below

• 6 paragraph 1 sentence 1 lit. a GDPR

Place of processing

This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately.

• European Union

Duration to save the data

The retention period is the length of time the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the specified processing purposes.

Data will be deleted as soon as they are no longer required for processing purposes.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred. For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

• United States of America
• Singapore
• Taiwan
• Chile

Data Receiver

The recipients of the collected data are listed below.

• Google Ireland Limited, Google LLC, Alphabet Inc

Click here to read the data processor's privacy policy

href="https://policies.google.com/privacy?hl=en">https://policies.google.com/privacy?hl=en

Click here to read the data processor's cookie policy

href="https://policies.google.com/technologies/cookies?hl=en">https://policies.google.com/technologies/cookies?hl=en

Click here to revoke on all processor domains

href="https://safety.google/privacy/privacy-controls/">https://safety.google/privacy/privacy-controls/

Storage Information

Maximum storage time for cookies: 1 year

Stored Information

• Name: test_cookie; Set as a test to check whether the browser allows cookies to be set. Contains no identifiers.; type: cookies; Duration: 15 minutes; Domain: doubleclick.net;
• Name: IDE; Contains a randomly generated user ID. Using this ID, Google can recognize the user across different websites and show them personalized advertising.; type: cookies; Duration: 1 year; Domain: doubleclick.net;
• Name: _gcl_aw; This cookie is set when a user clicks on a Google ad to go to the website. It contains information about which ad was clicked on, so that successes achieved, such as orders or contact requests, can be assigned to the ad.; type: cookies; Duration: 2 months, 29 days;
• Name: _gcl_dc_; This cookie is set when a user clicks on a Google ad to go to the website. It contains information about which ad was clicked on, so that successes achieved, such as orders or contact requests, can be assigned to the ad.; type: cookies; Duration: 2 months, 29 days;

 

• Google Analytics

Service Description

This is a web analytics service. This allows the user to measure the return of interest "ROI" of advertising and track user behavior with Flash, video, websites and applications.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

ref="https://support.google.com/policies/contact/general_privacy_form">https://support.google.com/policies/contact/general_privacy_form

Data processing purposes

This list represents the purposes of data collection and processing.

• Marketing Analysis

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• Cookies
• pixels
• JavaScript
• Device fingerprint

Data Collected

This list contains all (personal) data collected by or through the use of this service.

• Click path
• Date and time of visit
• Device Information
• Location Information
• IP address
• Visited pages
• Referrer URL
• Browser Information
• hostname
• Browser language
• Browser type
• Screen resolution
• Device operating system
• Interaction data user behavior
• Visit URL

Legal Basis

The required legal basis for the processing of data is mentioned below

• 6 paragraph 1 sentence 1 lit. a GDPR

Place of processing

This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately.

• European Union

Duration to save the data

The retention period is the length of time the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the specified processing purposes.

The retention period depends on the type of data stored. Each customer can choose how long Google Analytics stores data before it is automatically deleted.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred. For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

• United States of America
• Singapore
• Chile
• Taiwan

Data Receiver

The recipients of the collected data are listed below.

• Google Ireland Limited, Alphabet Inc., Google LLC

Click here to read the data processor's privacy policy

href="https://policies.google.com/privacy?hl=en">https://policies.google.com/privacy?hl=en

Click here to read the data processor's cookie policy

href="https://policies.google.com/technologies/cookies?hl=en">https://policies.google.com/technologies/cookies?hl=en

Click here to revoke on all processor domains

href="https://tools.google.com/dlpage/gaoptout?hl=en">https://tools.google.com/dlpage/gaoptout?hl=en

Storage Information

Maximum limit for storing cookies: 2 years

Stored Information

• Name: _ga; This cookie is used to distinguish users.; type: cookies; Duration: 2 years;
• Name: _gid; This cookie is used to distinguish users.; type: cookies; Duration: 1 day;
• Name: _gat_gtag_xxx; This cookie is used to distinguish users.; type: cookies; Duration: 1 minute;
• Name: _gac_xx; This cookie contains information about which ad was clicked on.; type: cookies; Duration: 2 months, 29 days

 

• Google Ad Services

Service Description

This is an advertising service.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

https://support.google.com/policies/troubleshooter/7575787?

Data processing purposes

This list represents the purposes of data collection and processing.

• Advertising
• Targeting

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• Cookies

Data Collected

This list contains all (personal) data collected by or through the use of this service.

• Click path
• Events
• IP address
• Referrer URL
• Touchpoint to the advertising material
• Transactions
• User Agent
• Pages viewed

Legal Basis

The required legal basis for the processing of data is mentioned below

• 6 paragraph 1 sentence 1 lit. a GDPR

Place of processing

This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately.

• European Union

Duration to save the data

The retention period is the length of time the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the specified processing purposes.

The data will be deleted as soon as they are no longer required for the purposes of processing.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred. For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

• United States of America
• Singapore
• Chile
• Taiwan

Data Receiver

The recipients of the collected data are listed below.

• Google LLC Google Ireland Limited Alphabet Inc

Click here to read the data processor's privacy policy

https://policies.google.com/privacy?hl=en

Click here to read the data processor's cookie policy

https://policies.google.com/technologies/cookies?hl=en

Click here to revoke on all processor domains

https://safety.google/privacy/privacy-controls/

Storage Information

Maximum storage time for cookies: 1 year

Stored Information

• Name: test_cookie; Set as a test to check whether the browser allows cookies to be set. Contains no identifiers.; type: cookies; Duration: 15 minutes; Domain: doubleclick.net;
• Name: IDE; Contains a randomly generated user ID. Using this ID, Google can recognize the user across different websites and show them personalized advertising.; type: cookies; Duration: 1 year; Domain: doubleclick.net;

 

• gstatic.com

Service Description

This is a domain used by Google to offload static content to another domain name to reduce bandwidth usage and increase network performance for the end user.

Processing company

Alphabet Inc.

1600 Amphitheater Parkway, Mountain View, CA 94043-1351, United States of America

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

https://support.google.com/policies/contact/general_privacy_form

Data processing purposes

This list represents the purposes of data collection and processing.

• Boost network performance
• Reduce bandwidth usage

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• JavaScript

Data Collected

This list contains all (personal) data collected by or through the use of this service.

• Images
• CSS

Legal Basis

The required legal basis for the processing of data is mentioned below

• 6 paragraph 1 sentence 1 lit. f GDPR

Place of processing

This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately.

• United States of America

Duration to save the data

The retention period is the length of time the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the specified processing purposes.

Requests for CSS assets are cached for 1 day, font files are cached for 1 year. Some information is stored until removed by the user, some expires after a certain period of time, some is stored until the user's Google account is deleted.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred. For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

• Worldwide

Data Receiver

The recipients of the collected data are listed below.

• Alphabet Inc., Google LLC, Google Ireland Limited

 

 

• Google Ads

Service Description

This is an advertising service.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow Street, Dublin D04 E5W5, Ireland

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

https://support.google.com/policies/troubleshooter/7575787?hl=en

Data processing purposes

This list represents the purposes of data collection and processing.

• Advertising
• Analysis
• Provision of Services
• Statistics

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• Cookies

Data Collected

This list contains all (personal) data collected by or through the use of this service.

• Ads viewed
• CookieID
• Date and time of visit
• Device Information
• Geographical location
• IP address
• Search terms
• Ads displayed
• Customer ID
• Impressions
• Online identifiers
• Browser Information
• Hash contact info
• Legal Basis

The required legal basis for the processing of data is mentioned below

• 6 para. 1 sec. 1 lit. a GDPR

Place of processing

This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately.

• European Union

Duration to save the data

The retention period is the length of time the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the specified processing purposes.

The data will be deleted as soon as they are no longer required for the purposes of processing. Log data is anonymized after 9 months and cookie information after 18 months.

Data Receiver

The recipients of the collected data are listed below.

• Alphabet Inc., Google LLC, Google Ireland Limited

Click here to read the data processor's privacy policy

https://policies.google.com/privacy?

Click here to revoke on all processor domains

https://safety.google/privacy/privacy-controls/"

Storage Information

Maximum storage time for cookies: 1 year

Stored Information

• Name: test_cookie; Set as a test to check whether the browser allows cookies to be set. Contains no identifiers.; type: cookies; Duration: 15 minutes; Domain: doubleclick.net;
• Name: IDE; Contains a randomly generated user ID. Using this ID, Google can recognize the user across different websites and show them personalized advertising.; type: cookies; Duration: 1 year; Domain: doubleclick.net;

 

•  

  Stripe

Service Description

This service provides technology for operating online payment systems.

Processing company

Stripe, Inc.

3180 18th Street, San Francisco, CA 94110, United States of America

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

privacy@stripe.com

Data processing purposes

This list represents the purposes of data collection and processing.

• Payment

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• Cookies

Data Collected

This list contains all (personal) data collected by or through the use of this service.

• Date of purchase
• Payment Information
• Purchase activity
• Payment card information

Legal Basis

The required legal basis for the processing of data is mentioned below

• 6 paragraph 1 sentence 1 lit. b GDPR

Place of processing

This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately.

• United States of America

Duration to save the data

The retention period is the length of time the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the specified processing purposes.

Data will be deleted as soon as they are no longer required for processing purposes.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred. For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

• United States of America

Data Receiver

The recipients of the collected data are listed below.

• Stripe, Inc

Click here to read the data processor's privacy policy

 https://stripe.com/us/privacy/

Click here to read the data processor's cookie policy

 https://stripe.com/cookies-policy/legal

Storage Information

Maximum limit for storing cookies: 2 years

Stored Information

• Name: __stripe_mid; fraud prevention and detection; type: cookies; duration: session; Domain: stripe.com;
• Name: __stripe_sid; fraud prevention and detection; type: cookies; duration: session; Domain: m.stripe.com;
• Name: m; fraud prevention and detection; type: cookies; duration: session; Domain: m.stripe.com;
• Name: session; Login session for Stripe Dashboard; type: cookies; Duration: 2 months, 29 days; Domain: stripe.com;
• Name: lsession ; Stripe Express Dashboard login session for Stripe Express users; type: cookies; Duration: 7 days; Domain: stripe.com; Name: stripe.csrf ; Protection against counterfeiting through cross-site requirements for Stripe Dashboard users; type: cookies; Duration: 1 year; Domain: stripe.com;
• Name: cliauth_secret; To confirm authentication for the Stripe CLI; type: cookies; duration: session; Domain: stripe.com;
• Name: art_token, cbt_token, cct_token, cdt_token, ect_toksvt_token, lc_token, prt_token, act_token ; To verify authentication for account recovery, bank account changes, login prompts, password resets, support requests, adding an email or a new device; type: cookies; duration: session; Domain: stripe.com;
• Name: NID ; Used by reCAPTCHA, an additional security measure sometimes used when logging into Stripe.; type: cookies; duration: session; Domain: google.com;
• Name: locale; localization setting for the language used on the website and in the documents; type: cookies; duration: session; Domain: stripe.com;
• Name: country ; Country localization settings to customize product and feature availability; type: cookies; duration: session; Domain: stripe.com;
• name: long; Programming language for the code examples in Stripe documents; type: cookies; duration: session; Domain: stripe.com;
• Name: has_intentionally_selected_curl ; Shows the code examples in Curl in Stripe documents; type: cookies; duration: session; Domain: stripe.com;
• Name: persisted-tab-#{id} ; When the page refreshes, it remembers which document tab you're on; type: cookies; duration: session; Domain: stripe.com;
• Name: disable_cmd_f_override ; Disables the search shortcut cmd + f / Ctrl + f for Stripe documents and uses the default browser behavior instead (searches the current page only); type: cookies; duration: session; Domain: stripe.com;
• Name: double_cmd_f_uses ; Tracks cmd + f / ctrl + f hotkey usage in stripe documents; to improve user experience by not showing the user again a feature they have already used; type: cookies; duration: session; Domain: stripe.com;
• Name: expanded-topics ; Remembers which topics have been expanded in Stripe documents on page updates; type: cookies; duration: session; Domain: stripe.com;
• Name: checkout-test-session, checkout-live-session; To provide legacy checkout storage functionality; type: cookies; duration: session; Domain: stripe.com;
• Name: _ga, _gat, _gat_UA-12675062-5, _gid; Google Analytics cookies to analyze and improve the services; type: cookies; duration: session; Domain: stripe.com;
• Name: cid; Stripe Analytics "Client ID" to improve the Services; type: cookies; duration: session; Domain: stripe.com;
• Name: site_sid, __stripe_id ; Stripe's "Session ID" for analytics and to improve the Services; type: cookies; Duration: 2 hours, 30 minutes; Domain: stripe.com;
• Name: __stripe_orig_props ; To evaluate the effectiveness of marketing campaigns; type: cookies; duration: session; Domain: stripe.com;

 

• Google Fonts

Service Description

This is a collection of fonts for commercial and personal use.

Processing company

Google Ireland Limited

Gordon House, 4 Barrow St, Dublin 4, Ireland

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

https://support.google.com/policies/contact/general_privacy_form

Data processing purposes

This list represents the purposes of data collection and processing.

• Font Provision
• Service improvement

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• API

Data Collected

This list contains all (personal) data collected by or through the use of this service.

• IP address
• Aggregated usage figures
• Font request
• Referrer URL
• CSS requests
• User Agent
• Browser Information

Legal Basis

The required legal basis for the processing of data is mentioned below

• 6 paragraph 1 sentence 1 lit. a GDPR

Place of processing

This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately.

European Union

Duration to save the data

The retention period is the length of time the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the specified processing purposes.

Data will be deleted as soon as they are no longer required for processing purposes.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred. For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

• United States of America
• Singapore
• Taiwan
• Chile

Data Receiver

The recipients of the collected data are listed below.

• Alphabet Inc., Google LLC, Google Ireland Limited

Click here to read the data processor's privacy policy

https://policies.google.com/privacy?hl=en

Click here to read the data processor's cookie policy

https://policies.google.com/technologies/cookies?hl=e

 

• Hotjar

Service Description

This is a web analytics service. It is used to collect data about user behavior. Hotjar may also process information you provide as part of surveys and feedback features embedded on our website.

Processing company

Hotjar Limited

Dragonara Business Centre, 5th Floor, Dragonara Road, Paceville St Julian's STJ 3141, Malta

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

dpo@hotjar.com

Data processing purposes

This list represents the purposes of data collection and processing.

• Analysis
• Feedback

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• Cookies

Data Collected

This list contains all (personal) data collected by or through the use of this service.

• Date and time of visit
• Device Type
• Geographical location
• IP address
• Mouse movements
• Visited pages
• Referrer URL
• Screen resolution
• Unique device identifier
• Language information
• Device operating system
• Browser type
• Clicks
• domain name
• Unique user identifier
• Responses to surveys

Legal basis

The required legal basis for the processing of data is mentioned below: Article 6 (1) sentence 1 lit. a GDPR Place of processing This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately. European Union Data retention period The retention period is the length of time the collected data is retained for processing. The data must be deleted as soon as they are no longer required for the stated processing purposes. Data about your visit and your activities on the website are usually stored for 365 days and then automatically deleted. This does not apply to information collected through surveys and incoming feedback.

However, the data will be deleted in any case as soon as they are no longer required for the purposes of processing.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred.

For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

United States of America

Data Receiver

The recipients of the collected data are listed below.

Hotjar Ltd., Amazon Web Services EMEA SARL, Datadog Inc., Functional Software Inc.

Click here to read the data processor's privacy policy

https://www.hotjar.com/legal/policies/privacy

Click here to read the data processor's cookie policy

https://help.hotjar.com/hc/en-us/articles /115011789248-Hotjar-Cookies

Click here to revoke on all processor domains

https://www.hotjar.com/legal/compliance/opt-out

Storage Information

• Maximum storage of cookies: 1 year

Stored Information

• Name: _hjClosedSurveyInvites; Hotjar cookie that is set once a visitor interacts with an external link survey invitation modal. It is used to ensure that the same invitation is not displayed again if it has already been displayed.; type: cookies; Duration: 1 year;
• Name: _hjDonePolls; Hotjar cookie that is set once a visitor fills out a survey using the onsite survey widget. It is used to ensure that the same survey does not appear again if it has already been completed.; type: cookies; Duration: 1 year;
• Name: _hjMinimizedPolls; Hotjar cookie that is set when a visitor minimizes an onsite survey widget. It is used to ensure that the widget stays minimized when the visitor navigates through your website.; type: cookies; Duration: 1 year;
• Name: _hjShownFeedbackMessage; Hotjar cookie set when a visitor minimizes or completes incoming feedback. This is done so that the incoming feedback loads minimized immediately when the visitor navigates to another page where it should be displayed.; type: cookies; Duration: 1 year;
• Name: _hjid; Hotjar cookie that is set when the customer first lands on a page with the Hotjar script. It is used to store the Hotjar user ID unique to this website in the browser. This ensures that behavior on subsequent visits to the same website is attributed to the same user ID.; type: cookies; Duration: 1 year;
• Name: _hjTLDTest; When the Hotjar script runs, we try to get the most generic cookie path, which we should use instead of the page's hostname. This is done so that cookies (where applicable) can be shared across subdomains. To determine this, we try to save the _hjTLDTest cookie for different URL substring alternatives until it fails. After this check, the cookie is removed.; type: cookies; Duration: Session;
• Name: _hjUserAttributesHash; User attributes sent via Hotjar Identify API are cached for the duration of the session to know when an attribute has changed and needs to be updated.; type: cookies; duration: session; Name: _hjCachedUserAttributes; This cookie stores user attributes sent via the Hotjar Identify API when the user is not in the sample. These attributes are only saved when the user interacts with a Hotjar feedback tool.; type: cookies; Duration: Session;
• Name: _hjLocalStorageTest; This cookie is used to check if the Hotjar tracking script can use local storage. If possible, the value 1 is set in this cookie. The data stored in_hjLocalStorageTest has no expiration time, but is deleted almost immediately after it is created.; type: cookies; Duration: Session;
• Name: _hjIncludedInPageviewSample; This cookie is set to tell Hotjar whether this visitor is included in the data sample defined by your site's page view limit.; type: cookies; Duration: 30 minutes; Name: _hjIncludedInSessionSample; This cookie is set to let Hotjar know if this visitor is included in the data collection defined by your site's daily session limit.; type: cookies; Duration: 30 minutes;
• Name: _hjAbsoluteSessionInProgress; This cookie is used to recognize a user's first page view session. This is a true/false flag set by the cookie.; type: cookies; Duration: 30 minutes;
• Name: _hjFirstSeen; This is set to identify a new user's first session. It stores a true/false value indicating whether Hotjar saw this user for the first time. It is used by recording filters to identify new user sessions.; type: cookies; Duration: Session;
• Name: hjViewportId; This is where information about the user view area such as size and dimensions is stored.; type: cookies; Duration: Session;
• Name: _hjRecordingEnabled; This is added when a recording starts and is read when the recording module is initialized to see if the user is already in a recording in a given session.; type: cookies; Duration: Session;
• Name: _hjSessionUser {site_id}; This cookie is set when a user first lands on a page containing the Hotjar script. It is used to store the Hotjar user ID unique to this website in the browser. This ensures that behavior on subsequent visits to the same website is attributed to the same user ID.; type: cookies; Duration: 1 year;
• Name: _hjSession{site_id}; This cookie contains the current session data. This ensures that subsequent requests within the session window are mapped to the same Hotjar session.; type: cookies; Duration: 30 minutes;
• Name: _hjSessionTooLarge; This cookie causes Hotjar to stop collecting data when a session gets too large. This is automatically detected by a signal from the WebSocket server when the session size exceeds the limit.; type: cookies; Duration: Session;
• Name: _hjSessionRejected; If present, this cookie is set to "1" for the duration of a user session when Hotjar has refused to connect the session to the WebSocket due to server overload. This cookie is only applied in extremely rare situations to avoid serious performance issues.; type: cookies; Duration: Session;
• Name: _hjSessionResumed; This cookie is set when a session/recording is reconnected to Hotjar servers after a disconnection.; type: cookies; Duration: Session;

 

• LogRocket

Service Description

This is a web analytics service. It is used to collect data about user behavior, JavaScript errors, stack traces, browser metadata, etc. LogRocket may also process information you provide as part of surveys and feedback features embedded on our website.

Processing company

LogRocket Inc

87 Summer St., Boston, Massachusetts 02110, United States of America

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

support@logrocket.com

Data processing purposes

This list represents the purposes of data collection and processing.

• Analysis
• Feedback

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• Cookies
• Web logs
• Web beacons

Data Collected

This list contains all (personal) data collected by or through the use of this service.

• Date and time of visit
• Device Type
• Geographical location
• IP address
• Mouse movements
• Visited pages
• Referrer URL
• Screen resolution
• Unique device identifier
• Language information
• Device operating system
• Browser type
• Clicks
• domain name
• Unique user identifier

Legal basis

The required legal basis for the processing of data is mentioned below: Article 6 (1) sentence 1 lit. a GDPR Place of processing This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately. European Union Data retention period The retention period is the length of time the collected data is retained for processing. The data must be deleted as soon as they are no longer required for the stated processing purposes. Data about your visit and your activities on the website are usually stored for 365 days and then automatically deleted. This does not apply to information collected through surveys and incoming feedback.

However, the data will be deleted in any case as soon as they are no longer required for the purposes of processing.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred.

For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

United States of America

Data Receiver

The recipients of the collected data are listed below.

LogRock Inc., Amazon Web Services EMEA SARL, Datadog Inc.

Click here to read the data processor's privacy policy

https://logrocket.com/privacy/

Click here to read the data processor's cookie policy

https://logrocket.com/privacy/

Click here to revoke on all processor domains

https://logrocket.com/terms-and-conditions

Storage Information

• Maximum storage of cookies: 1 year

 

• Amazon Pay

Service Description

This is an online payment method service.

Processing company

Amazon Payments Europe S.C.A.

38 Avenue J.F. Kennedy, 1855 Luxembourg

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

• Amazon Europe Core S.à.r.l.
• Amazon EU S.à.r.l.
• Amazon Services Europe S.à.r.l.
• Amazon Media EU S.à.r.l.

all four located at 38, avenue John F. Kennedy, L-1855 Luxembourg

• Amazon Digital Germany GmbH

Domagkstr. 28, 80807 München, GERMANY

Data processing purposes

This list represents the purposes of data collection and processing.

• Analysis
• Purchase and delivery of products
• Feedback
• Show
• Fraud Prevention
• Compliance with legal obligations
• Communication

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• Cookies

Data Collected

This list contains all (personal) data collected by or through the use of this service.

• Date and time of visit
• Device Type
• Geographical location
• IP address
• Mouse movements
• Visited pages
• Referrer URL
• Screen resolution
• Unique device identifier
• Language information
• Device operating system
• Browser type
• Clicks
• domain name
• Unique user identifier
• Payment Information
• Transaction Data
• Any entered user data

Legal basis

The required legal basis for the processing of data is mentioned below: Article 6 (1) sentence 1 lit. a GDPR Place of processing This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately. European Union Data retention period The retention period is the length of time the collected data is retained for processing. The data must be deleted as soon as they are no longer required for the stated processing purposes. Data about your visit and your activities on the website are usually stored for 365 days and then automatically deleted. This does not apply to information collected through surveys and incoming feedback.

However, the data will be deleted in any case as soon as they are no longer required for the purposes of processing.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred.

For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

United States of America

Data Receiver

The recipients of the collected data are listed below.

Amazon Web Services EMEA SARL

Click here to read the data processor's privacy policy

https://www.amazon.de/gp/help/customer/display.html?nodeId=GX7NJQ4ZB8MHFRNJ#GUID-9DFA0CFF-9E83-4207-8EE5-5B1B8CFC3F4A__SECTION_59D17962BEAC4806A83E752ECC5FC54D

Click here to read the data processor's cookie policy

https://www.amazon.de/gp/help/customer/ display.html/?nodeId=GVASXV5UZ64R4Y25

Click here to revoke on all processor domains

https://www.amazon.de/cookieprefs/partners

Storage Information

• Maximum storage of cookies: 1 year

 

• PayPal Express

Service Description

This is an online payment method service.

Processing company

PayPal (Europe) S.à.r.l. et Cie, S.C.A., Inc. Pte. Ltd

22-24 Boulevard Royal, 2449 Luxembourg

Data protection officer of the processing company

Below you will find the contact details of the data protection officer of the processing company.

PayPal (Europe) S.à.r.l. et Cie, S.C.A., Inc. Pte. Ltd

22-24 Boulevard Royal, 2449 Luxembourg

Data processing purposes

This list represents the purposes of data collection and processing.

• Analysis
• Purchase and delivery of products
• Feedback
• Show
• Fraud Prevention
• Compliance with legal obligations
• Communication

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• Cookies

Data Collected

This list contains all (personal) data collected by or through the use of this service.

• Date and time of visit
• Device Type
• Geographical location
• IP address
• Mouse movements
• Visited pages
• Referrer URL
• Screen resolution
• Unique device identifier
• Language information
• Device operating system
• Browser type
• Clicks
• domain name
• Unique user identifier
• Payment Information
• Transaction Data
• Any entered user data

Legal basis

The required legal basis for the processing of data is mentioned below: Article 6 (1) sentence 1 lit. a GDPR Place of processing This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately. European Union Data retention period The retention period is the length of time the collected data is retained for processing. The data must be deleted as soon as they are no longer required for the stated processing purposes. Data about your visit and your activities on the website are usually stored for 365 days and then automatically deleted. This does not apply to information collected through surveys and incoming feedback.

However, the data will be deleted in any case as soon as they are no longer required for the purposes of processing.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred.

For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

United States of America

Data Receiver

The recipients of the collected data are listed below.

Governments, Credit Bureaus, Acquirers, Financial Institutions

Click here to read the data processor's privacy policy

https://www.paypal.com/de /webapps/mpp/ua/privacy-full?locale.x=de_DE#2

Click here to read the data processor's cookie policy

https://www.paypal.com/de /webapps/mpp/ua/privacy-full?locale.x=de_DE#2

Click here to revoke on all processor domains

https://www.paypal. com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE#2

Storage Information

• Maximum storage of cookies: 1 year

 

• Trusted Shops

Service Description

This is a service for companies and their customers for services relating to seals of approval, buyer protection procedures and customer reviews.

Processing company

Trusted Shops GmbH

Subbelrather Strasse 15c, 50823 Cologne, Germany

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

service@trustedshops.de

Data processing purposes

This list represents the purposes of data collection and processing.

• Analysis
• Purchasing products
• Feedback
• Fraud Prevention
• Compliance with legal obligations
• Communication

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• Cookies

Data Collected

This list contains all (personal) data collected by or through the use of this service.

• Date and time of visit
• Device Type
• Geographical location
• IP address
• Mouse movements
• Visited pages
• Referrer URL
• Screen resolution
• Unique device identifier
• Language information
• Device operating system
• Browser type
• Clicks
• domain name
• Unique user identifier
• Payment Information
• Transaction Data
• Any entered user data

Legal basis

The required legal basis for the processing of data is mentioned below: Article 6 (1) sentence 1 lit. a GDPR Place of processing This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately. European Union Data retention period The retention period is the length of time the collected data is retained for processing. The data must be deleted as soon as they are no longer required for the stated processing purposes. Data about your visit and your activities on the website are usually stored for 365 days and then automatically deleted. This does not apply to information collected through surveys and incoming feedback.

However, the data will be deleted in any case as soon as they are no longer required for the purposes of processing.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred.

For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

United States of America, Israel

Data Receiver

The recipients of the collected data are listed below.

• Amazon Web Services, 410 Terry Avenue North, Seattle,USA
• Timme Hosting GmbH & Co.KG, Ovelgönner Weg 43, 21335 Lüneburg, Germany
• com Ltd., Namal 40, 6350671 Tel Aviv, Israel
• Raidboxes GmbH, Friedrich-Ebert-Strasse 7, 41853 Munster, Germany

Click here to read the data processor's privacy policy

https://www.trustedshops.at/impressum-datenschutz/

Click here to read the data processor's cookie policy

https://www.trustedshops.at/impressum-datenschutz/

Click here to revoke on all processor domains

https://www.trustedshops.at/impressum-datenschutz/

• Maximum storage of cookies: 1 year

 

• SendinBlue

Service Description

This is a multichannel marketing platform for businesses.

Processing company

Sendinblue GmbH

Köpenicker Strasse 126, 10179 Berlin, Germany

Data protection officer of the processing company

Below you will find the e-mail address of the data protection officer of the processing company.

support@sendinblue.com

Data processing purposes

This list represents the purposes of data collection and processing.

• Analysis
• Feedback
• Communication
• Advertisements

Technology used

This list includes all technologies used by this service to collect information. Typical technologies are cookies and pixels placed in the browser.

• Cookies

Data Collected

This list contains all (personal) data collected by or through the use of this service.

• Date and time of visit
• Device Type
• Geographical location
• IP address
• Mouse movements
• Visited pages
• Referrer URL
• Screen resolution
• Unique device identifier
• Language information
• Device operating system
• Browser type
• Clicks
• domain name
• Unique user identifier
• Any entered user data

Legal basis

The required legal basis for the processing of data is mentioned below: Article 6 (1) sentence 1 lit. a GDPR Place of processing This is the primary place where the collected data is processed. If the data is also processed in other countries, you will be informed separately. European Union Data retention period The retention period is the length of time the collected data is retained for processing. The data must be deleted as soon as they are no longer required for the stated processing purposes. Data about your visit and your activities on the website are usually stored for 365 days and then automatically deleted. This does not apply to information collected through surveys and incoming feedback.

However, the data will be deleted in any case as soon as they are no longer required for the purposes of processing.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data to a country that does not offer an adequate level of data protection. If the data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes without you possibly being entitled to any legal remedies. Below is a list of the countries to which the data is transferred.

For more information on the security guarantees, please refer to the website provider's privacy policy or contact the website provider directly.

United States of America

Data Receiver

The recipients of the collected data are listed below.

• Amazon Web Services, 5895 Houchard Road, Dublin, Ireland
• Google Cloud, 1600 Amphitheater Pkwy, Mountain View, California, USA

Click here to read the data processor's privacy policy

https://help.sendinblue.com/hc/en/categories/360000229110-GDPR

Click here to read the data processor's cookie policy

https://help.sendinblue.com/hc/en/categories/360000229110-GDPR

Click here to revoke on all processor domains

https://help.sendinblue.com/hc/en/categories/360000229110-GDPR

• Maximum storage of cookies: 1 year

 

• Google reCaptcha

For the purpose of protecting against misuse of our web forms and against spam from automated software (so-called bots), Google collects reCAPTCHA data (IP address, time of visit, browser information and information on your use of our website) and leads An analysis of your use of our website is carried out by means of a so-called JavaScript and cookies. In addition, other cookies stored by Google services in your browser are evaluated. A reading or saving of personal data from the input fields of the respective form does not take place.

YouTube Video Plugin

In order to integrate third-party content, data (IP address, time of visit, device and browser information) is collected via the YouTube video plugin in the extended data protection mode we use, transmitted to Google and then processed by Google, only when playing a video.

 

• AWIN

We use our advertising partner AWIN AG, Eichhornstraße 3, 10785 Berlin, Germany ("AWIN") to market space for ads third party providers. These advertisements will be shown to you in various places on this website. AWIN can use cookies to track the course of the respective order and, in particular, to understand that you clicked on the respective ad and then ordered the product. For this purpose, data (IP address, time of visit, device and browser information as well as information on your use of our website) is collected, transmitted to AWIN and processed by AWIN. We have no influence on this data processing. The data processing takes place on the basis of an agreement between jointly responsible persons according to Art. 26 DSGVO.

 

Status: 21.11.2022