Data Protection

Privacy Policy (Obermaier Bäder)

Data Protection

We have drafted this privacy policy (Version 24.11.2020-311234294) to explain to you, in accordance with the provisions of the General Data Protection Regulation (EU) 2016/679, what information we collect, how we use data, and what choices you have as a visitor to this website.

Unfortunately, these explanations are inherently technical in nature, but we have tried to describe the most important points as simply and clearly as possible.

Automatic Data Storage

When you visit websites today, certain information is automatically created and stored, including on this website.

When you visit our website as you are doing now, our web server (the computer on which this website is stored) automatically saves data such as:

• The address (URL) of the accessed web page

• Browser and browser version

• The operating system used

• The address (URL) of the previously visited page (referrer URL)

• The hostname and IP address of the device from which access is made

• Date and time

in files (web server log files).

Web server log files are usually stored for two weeks and then automatically deleted. We do not pass on this data, but we cannot rule out that this data may be viewed in the event of unlawful behavior.

Cookies

Our website uses HTTP cookies to store user-specific data.

Below, we explain what cookies are and why they are used, so that you can better understand the following privacy policy.

What is the legal basis for processing your personal data?

We only link your cookies to your personal data when you are logged into your Obermaier account.

When you are logged into your account, the legal basis is our legitimate interest.

What exactly are cookies?

Whenever you browse the internet, you use a browser. Well-known browsers include Chrome, Safari, Firefox, Internet Explorer, and Microsoft Edge. Most websites store small text files in your browser. These files are called cookies.

One thing is undeniable: cookies are truly useful little helpers. Almost all websites use cookies. More precisely, they are HTTP cookies, as there are also other cookies for other applications. HTTP cookies are small files stored on your computer by our website. These cookie files are automatically placed in the cookie folder, which is essentially the "brain" of your browser. A cookie consists of a name and a value. When defining a cookie, one or more attributes must also be specified.

Cookies store certain user data from you, such as language or personal page settings. When you revisit our site, your browser transmits the "user-related" information back to our site. Thanks to cookies, our website knows who you are and offers you your customary default settings. In some browsers, each cookie has its own file; in others, such as Firefox, all cookies are stored in a single file.

There are both first-party cookies and third-party cookies. First-party cookies are created directly by our site, while third-party cookies are created by partner websites (e.g., Google Analytics). Each cookie must be evaluated individually, as each cookie stores different data. The expiration time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, Trojans, or other "malware". Cookies cannot access information on your PC.

For example, cookie data might look like this:

• Name: _ga

• Expiry: 2 years

• Purpose: Distinguishing website visitors

• Example value: GA1.2.1326744211.152311234294

A browser should support the following minimum sizes:

• A cookie should be able to contain at least 4096 bytes

• At least 50 cookies should be storable per domain

• A total of at least 3000 cookies should be storable

What types of cookies are there?

The specific cookies we use depend on the services used and will be clarified in the following sections of the privacy policy. At this point, we would like to briefly discuss the different types of HTTP cookies.

Four types of cookies can be distinguished:

Strictly Necessary Cookies

These cookies are necessary to ensure basic website functions. For example, these cookies are needed if a user adds a product to the shopping cart, then continues browsing on other pages, and only later proceeds to checkout. These cookies ensure that the shopping cart is not deleted, even if the user closes their browser window.

Functional Cookies

These cookies collect information about user behavior and whether the user receives any error messages. In addition, these cookies are used to measure the loading time and the behavior of the website across different browsers.

Targeted Cookies

These cookies provide a better user experience. For example, entered locations, font sizes, or form data are saved.

Advertising Cookies

These cookies are also called targeting cookies. They are used to deliver individually tailored advertising to the user. This can be very practical, but also very annoying.

Typically, when you visit a website for the first time, you will be asked which of these cookie types you want to allow. And of course, this decision is also stored in a cookie.

How can I delete cookies?

You decide how and whether you want to use cookies. Regardless of which service or website the cookies originate from, you always have the option to delete cookies, allow them only partially, or disable them. For example, you can block third-party cookies but allow all other cookies.

If you want to find out which cookies have been stored in your browser, or if you want to change or delete cookie settings, you can find this in your browser settings:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

If you generally do not want cookies, you can configure your browser to always inform you when a cookie is about to be set. This allows you to decide for each individual cookie whether you want to allow it or not. The procedure varies depending on the browser. It is best to search for instructions on Google using the search term "delete cookies Chrome" or "disable cookies Chrome" for a Chrome browser, or replace "Chrome" with the name of your browser, e.g., Edge, Firefox, Safari.

What about my data privacy?

Since 2009, there have been so-called "cookie guidelines". These stipulate that storing cookies requires your consent. However, there are still very different reactions to these guidelines in EU countries. In Germany, the cookie guidelines were not implemented as national law. Instead, this guideline was largely implemented in Section 15 (3) of the Telemedia Act (TMG).

If you want to know more about cookies and are not afraid of technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments from the Internet Engineering Task Force (IETF) named "HTTP State Management Mechanism".

Storage of Personal Data

Personal data that you transmit to us electronically on this website, such as your name, email address, address, or other personal information as part of submitting a form or comments in the blog, will be used by us together with the time and IP address only for the stated purpose, kept securely, and not passed on to third parties.

We therefore only use your personal data for communication with those visitors who expressly wish to make contact and for the processing of the services and products offered on this website. We do not pass on your personal data without consent, but we cannot rule out that this data may be viewed in the event of unlawful behavior.

If you send us personal data by email – i.e., outside of this website – we cannot guarantee secure transmission and protection of your data. We recommend that you never transmit confidential data unencrypted by email.

The legal basis, according to Article 6 paragraph 1 lit. a GDPR (lawfulness of processing), is that you give us your consent to process the data you have entered. You can revoke this consent at any time – an informal email is sufficient; you will find our contact details in the impressum.

Rights according to the General Data Protection Regulation

According to the provisions of the GDPR, you generally have the following rights:

• Right to rectification (Article 16 GDPR)

• Right to erasure ("right to be forgotten") (Article 17 GDPR)

• Right to restriction of processing (Article 18 GDPR)

• Right to notification – notification obligation regarding rectification or erasure of personal data or restriction of processing (Article 19 GDPR)

• Right to data portability (Article 20 GDPR)

• Right to object (Article 21 GDPR)

• Right not to be subject to a decision based solely on automated processing – including profiling – (Article 22 GDPR)

If you believe that the processing of your data violates data protection law or that your data protection rights have otherwise been violated, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI).

Analysis of Visitor Behavior

In the following privacy policy, we inform you whether and how we analyze data from your visit to this website. The evaluation of the collected data is usually anonymous, and we cannot draw conclusions about your person from your behavior on this website.

You can find more about how to object to this analysis of visit data in the following privacy policy.

TLS encryption with https

We use https to transmit data securely over the internet (data protection by design Article 25 paragraph 1 GDPR). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission over the internet, we can ensure the protection of confidential data. You can recognize the use of this data transmission security by the small padlock symbol in the upper left corner of the browser and the use of the https scheme (instead of http) as part of our internet address.

Google Maps Privacy Policy

We use Google Maps from Google Inc. on our website. For the European area, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. Google Maps allows us to better show you locations and thus adapt our service to your needs. By using Google Maps, data is transmitted to Google and stored on Google servers. Here we want to go into more detail about what Google Maps is, why we use this Google service, what data is stored, and how you can prevent this.

What is Google Maps?

Google Maps is an internet map service provided by Google. With Google Maps, you can search for precise locations of cities, sights, accommodations, or businesses online via a PC, tablet, or app. If businesses are represented on Google My Business, additional information about the company is displayed in addition to the location. To show directions, map sections of a location can be embedded into a website using HTML code. Google Maps displays the Earth's surface as a street map or as an aerial or satellite image. Thanks to Street View images and high-quality satellite images, very precise representations are possible.

Why do we use Google Maps on our website?

All our efforts on this site aim to provide you with a useful and meaningful time on our website. By integrating Google Maps, we can provide you with the most important information about various locations. You can see at a glance where our company is located. The directions always show you the best or fastest way to us. You can access directions for routes by car, public transport, on foot, or by bicycle. For us, providing Google Maps is part of our customer service.

What data is stored by Google Maps?

For Google Maps to offer its service completely, the company must collect and store data from you. This includes search terms entered, your IP address, and also latitude and longitude coordinates. If you use the route planner function, the entered starting address is also stored. However, this data storage takes place on Google Maps websites. We can only inform you about this but cannot influence it. Since we have integrated Google Maps into our website, Google sets at least one cookie (name: NID) in your browser. This cookie stores data about your user behavior. Google primarily uses this data to optimize its own services and to provide you with individual, personalized advertising.

The following cookie is set in your browser due to the integration of Google Maps:

Name: NID

Value: 188=h26c1Ktha7fCQTx8rXgLyATyITJ311234294-5

Purpose: NID is used by Google to tailor advertisements to your Google search. With the help of the cookie, Google "remembers" your most frequently entered search queries or your previous interaction with ads. This way, you always get customized ads. The cookie contains a unique ID that Google uses to collect your personal settings for advertising purposes.

Expiration date: after 6 months

Note: We cannot guarantee the completeness of the specified stored data. Especially with the use of cookies, changes can never be ruled out. To identify the NID cookie, a separate test page was created where only Google Maps was integrated.

How long and where is the data stored?

Google's servers are located in data centers around the world. However, most servers are in America. For this reason, your data is also increasingly stored in the USA. You can find out exactly where Google's data centers are located here: https://www.google.com/about/datacenters/inside/locations/?hl=de

Google distributes the data across different data carriers. This makes the data faster to access and better protected against manipulation attempts. Each data center also has special emergency programs. For example, if there are problems with Google hardware or a natural disaster shuts down the servers, the data remains fairly securely protected.

Google stores some data for a specified period. For other data, Google only offers the option to delete it manually. Furthermore, the company also anonymizes information (such as advertising data) in server logs by deleting part of the IP address and cookie information after 9 or 18 months.

How can I delete my data or prevent data storage?

With the automatic deletion function for location and activity data introduced in 2019, information on location and web/app activity - depending on your decision - is stored for either 3 or 18 months and then deleted. In addition, this data can also be manually deleted from the history at any time via your Google account. If you want to completely prevent your location tracking, you must pause the "Web & App Activity" section in your Google account. Click "Data & personalization" and then the "Activity controls" option. Here you can enable or disable activities.

In your browser, you can also deactivate, delete, or manage individual cookies. Depending on the browser you use, this always works a little differently. The following instructions show how to manage cookies in your browser:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

If you generally do not want cookies, you can configure your browser to always inform you when a cookie is about to be set. This allows you to decide for each individual cookie whether you want to allow it or not.

Google is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. More information can be found at https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI. If you want to learn more about Google's data processing, we recommend the company's own privacy policy at https://policies.google.com/privacy?hl=de.

Google Fonts Privacy Policy

We use Google Fonts on our website. These are the "Google fonts" from Google Inc. For the European area, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services.

You do not need to register or store a password to use Google Fonts. Furthermore, no cookies are stored in your browser. The files (CSS, fonts) are requested via the Google domains fonts.googleapis.com and fonts.gstatic.com. According to Google, requests for CSS and fonts are completely separate from all other Google services. If you have a Google account, you don't need to worry about your Google account data being transmitted to Google when using Google Fonts. Google records the use of CSS (Cascading Style Sheets) and the fonts used and stores this data securely. We will look at exactly how data storage works in more detail.

What are Google Fonts?

Google Fonts (formerly Google Web Fonts) is a directory of over 800 fonts that Google provides to its users free of charge.

Many of these fonts are released under the SIL Open Font License, while others are released under the Apache License. Both are free software licenses.

Why do we use Google Fonts on our website?

With Google Fonts, we can use fonts on our own website without having to upload them to our own server. Google Fonts is an important component to maintain the high quality of our website. All Google fonts are automatically optimized for the web, which saves data volume and is a great advantage, especially for use with mobile devices. When you visit our site, the low file size ensures fast loading times. Furthermore, Google Fonts are secure web fonts. Different image synthesis systems (rendering) in different browsers, operating systems, and mobile devices can lead to errors. Such errors can sometimes optically distort texts or entire websites. Thanks to the fast Content Delivery Network (CDN), there are no cross-platform problems with Google Fonts. Google Fonts supports all common browsers (Google Chrome, Mozilla Firefox, Apple Safari, Opera) and works reliably on most modern mobile operating systems, including Android 2.2+ and iOS 4.2+ (iPhone, iPad, iPod). We therefore use Google Fonts to present our entire online service as beautifully and uniformly as possible.

What data is stored by Google?

When you visit our website, the fonts are reloaded via a Google server. This external call transmits data to the Google servers. Google thus also recognizes that you or your IP address are visiting our website. The Google Fonts API was designed to reduce the use, storage, and collection of end-user data to what is necessary for the proper provision of fonts. API, by the way, stands for "Application Programming Interface" and serves, among other things, as a data transmitter in the software sector.

Google Fonts stores CSS and font requests securely with Google and is thus protected. Through the collected usage figures, Google can determine how well individual fonts are received. Google publishes the results on internal analysis pages, such as Google Analytics. In addition, Google also uses data from its own web crawler to determine which websites use Google fonts. This data is published in the BigQuery database of Google Fonts. Entrepreneurs and developers use the Google web service BigQuery to analyze and move large amounts of data.

However, it should also be noted that with every Google Font request, information such as language settings, IP address, browser version, browser screen resolution, and browser name are automatically transmitted to Google servers. Whether this data is also stored is not clearly ascertainable or is not clearly communicated by Google.

How long and where is the data stored?

Google stores requests for CSS assets on its servers for one day, most of which are located outside the EU. This allows us to use the fonts with the help of a Google stylesheet. A stylesheet is a template that allows you to easily and quickly change, for example, the design or font of a website.

Font files are stored by Google for one year. Google's goal is to generally improve the loading time of websites. If millions of websites refer to the same fonts, they are cached after the first visit and immediately reappear on all other websites visited later. Sometimes Google updates font files to reduce file size, increase language coverage, and improve design.

How can I delete my data or prevent data storage?

The data that Google stores for one day or one year cannot be easily deleted. The data is automatically transmitted to Google when the page is accessed. To delete this data prematurely, you must contact Google support at https://support.google.com/?hl=de&tid=311234294. In this case, you can only prevent data storage if you do not visit our site.

Unlike other web fonts, Google allows us unlimited access to all fonts. So we can access an ocean of fonts without limitation and get the best out of our website. More about Google Fonts and further questions can be found at https://developers.google.com/fonts/faq?tid=311234294. Although Google addresses privacy-related issues there, truly detailed information about data storage is not included. It is relatively difficult to get really precise information about stored data from Google.

You can also find out what data Google generally collects and what this data is used for at https://www.google.com/intl/de/policies/privacy/.

Google Analytics Privacy Policy

On our website, we use the analysis tracking tool Google Analytics (GA) from the American company Google Inc. For the European area, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. Google Analytics collects data about your actions on our website. For example, if you click a link, this action is stored in a cookie and sent to Google Analytics. With the help of the reports we receive from Google Analytics, we can better adapt our website and our service to your wishes. In the following, we will go into more detail about the tracking tool and inform you, above all, what data is stored and how you can prevent this.

What is Google Analytics?

Google Analytics is a tracking tool used for traffic analysis of our website. For Google Analytics to work, a tracking code is embedded in the code of our website. When you visit our website, this code records various actions you perform on our website. As soon as you leave our website, this data is sent to the Google Analytics servers and stored there.

Google processes the data and we receive reports on your user behavior. These reports may include, among others:

• Audience reports: Through audience reports, we get to know our users better and understand more precisely who is interested in our service.

• Advertising reports: Advertising reports allow us to easily analyze and improve our online advertising.

• Acquisition reports: Acquisition reports provide us with helpful information on how to attract more people to our service.

• Behavior reports: Here we learn how you interact with our website. We can track your path on our site and which links you click.

• Conversion reports: A conversion is a process in which you perform a desired action based on a marketing message. For example, when you go from being a mere website visitor to a buyer or newsletter subscriber. These reports help us learn more about how our marketing efforts are received by you. This way, we aim to increase our conversion rate.

• Real-time reports: Here we always know immediately what is happening on our website. For example, we see how many users are currently reading this text.

Why do we use Google Analytics on our website?

Our goal with this website is clear: we want to offer you the best possible service. The statistics and data from Google Analytics help us achieve this goal.

The statistically evaluated data gives us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimize our site so that it can be found more easily by interested people on Google. On the other hand, the data helps us to better understand you as a visitor. We then know very precisely what we need to improve on our website to offer you the best possible service. The data also serves us to carry out our advertising and marketing measures more individually and cost-effectively. After all, it only makes sense to show our products and services to people who are interested in them.

What data is stored by Google Analytics?

Google Analytics uses a tracking code to create a random, unique ID, which is linked to your browser cookie. This way, Google Analytics recognizes you as a new user. The next time you visit our site, you will be recognized as a "returning" user. All collected data is stored together with this user ID. This is what makes it possible to evaluate pseudonymized user profiles in the first place.

Your interactions on our website are measured by identifiers such as cookies and app instance IDs. Interactions are all types of actions you perform on our website. If you also use other Google systems (such as a Google account), data generated via Google Analytics can be linked to third-party cookies. Google does not share Google Analytics data unless we, as the website operator, authorize it. Exceptions may occur if required by law.

The following cookies are used by Google Analytics:

Name: _ga

Value: 2.1326744211.152311234294-5

Purpose: By default, analytics.js uses the _ga cookie to store the user ID. It primarily serves to distinguish website visitors.

Expiration: after 2 years

Name: _gid

Value: 2.1687193234.152311234294-1

Purpose: This cookie also serves to distinguish website visitors.

Expiration: after 24 hours

Name: _gat_gtag_UA_Value: 1

Purpose: Used to reduce the request rate. If Google Analytics is provided via Google Tag Manager, this cookie is named _dc_gtm_ .

Expiration: after 1 minute

Name: AMP_TOKEN

Value: no information

Purpose: The cookie has a token that allows a user ID to be retrieved from the AMP Client ID service. Other possible values indicate an unsubscribe, a request, or an error.

Expiration: after 30 seconds to one year

Name: __utma

Value: 1564498958.1564498958.1564498958.1

Purpose: This cookie allows your behavior on the website to be tracked and performance to be measured. The cookie is updated every time information is sent to Google Analytics.

Expiration: after 2 years

Name: __utmt

Value: 1

Purpose: Like _gat_gtag_UA_, this cookie is used to throttle the request rate.

Expiration: after 10 minutes

Name: __utmb

Value: 3.10.1564498958

Purpose: This cookie is used to determine new sessions. It is updated every time new data or information is sent to Google Analytics.

Expiration: after 30 minutes

Name: __utmc

Value: 167421564

Purpose: This cookie is used to define new sessions for returning visitors. It is a session cookie and is only stored until you close the browser again.

Expiration: After browser closure

Name: __utmz

Value: m|utmccn=(referral)|utmcmd=referral|utmcct=/

Purpose: The cookie is used to identify the source of traffic to our website. This means the cookie stores where you came to our website from. This could have been another page or an advertising placement.

Expiration: after 6 months

Name: __utmv

Value: no information

Purpose: The cookie is used to store custom user data. It is always updated when information is sent to Google Analytics.

Expiration: after 2 years

Note: This list cannot claim to be exhaustive, as Google constantly changes its choice of cookies.

Here we give you an overview of the most important data collected with Google Analytics:

Heatmaps: Google creates so-called heatmaps. Heatmaps show exactly the areas you click. This gives us information about where you are "traveling" on our site.

Session duration: Google defines session duration as the time you spend on our site without leaving it. If you have been inactive for 20 minutes, the session ends automatically.

Bounce rate: A bounce occurs when you view only one page on our website and then leave our website.

Account creation: If you create an account or place an order on our website, Google Analytics collects this data.

IP address: The IP address is displayed only in abbreviated form, so that no clear assignment is possible.

Location: Your country and approximate location can be determined via the IP address. This process is also known as IP geolocation.

Technical information: Technical information includes, among other things, your browser type, your internet provider, or your screen resolution.

Source of origin: Google Analytics, and consequently we, are also interested in which website or advertisement you came to our site from.

Other data includes contact details, any ratings, media playback (e.g., if you play a video via our site), sharing content via social media, or adding to your favorites. The list is not exhaustive and serves only as a general orientation for data storage by Google Analytics.

How long and where is the data stored?

Google has its servers distributed around the world. Most servers are located in America, and consequently, your data is mostly stored on American servers. You can find out exactly where Google's data centers are located here: https://www.google.com/about/datacenters/inside/locations/?hl=de

Your data is distributed across various physical storage media. This has the advantage that the data can be accessed faster and is better protected against manipulation. In each Google data center, there are corresponding emergency programs for your data. For example, if Google hardware fails or natural disasters shut down servers, the risk of a service interruption at Google remains low.

Google Analytics is set by default to retain your user data for 26 months. After this period, your user data is deleted. However, we have the option to choose the retention period for user data ourselves. There are five options available to us:

• Deletion after 14 months

• Deletion after 26 months

• Deletion after 38 months

• Deletion after 50 months

• No automatic deletion

When the specified period has expired, the data is deleted once a month. This retention period applies to your data linked to cookies, user identification, and advertising IDs (e.g., DoubleClick domain cookies). Reporting results are based on aggregated data and are stored independently of user data. Aggregated data is a consolidation of individual data into a larger unit.

How can I delete my data or prevent data storage?

According to the data protection law of the European Union, you have the right to receive information about your data, to update, delete or restrict it. With the help of the browser add-on for deactivating Google Analytics JavaScript (ga.js, analytics.js, dc.js), you prevent Google Analytics from using your data. You can download and install the browser add-on at https://tools.google.com/dlpage/gaoptout?hl=de. Please note that this add-on only deactivates data collection by Google Analytics.

If you generally want to deactivate, delete or manage cookies (regardless of Google Analytics), there are separate instructions for each browser:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

Google Analytics is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. More information can be found at https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&tid=311234294. We hope we have been able to provide you with the most important information regarding Google Analytics data processing. If you want to learn more about the tracking service, we recommend these two links: https://www.google.com/analytics/terms/de.html and https://support.google.com/analytics/answer/6004245?hl=de.

Google Analytics IP Anonymization

We have implemented IP address anonymization from Google Analytics on this website. This function was developed by Google to allow this website to comply with applicable data protection regulations and recommendations from local data protection authorities that prohibit the storage of the full IP address. The anonymization or masking of the IP takes place as soon as the IP addresses arrive in the Google Analytics data collection network and before any storage or processing of the data occurs.

More information about IP anonymization can be found at https://support.google.com/analytics/answer/2763052?hl=de.

Google Analytics Demographics and Interests Reports

We have enabled the advertising reports features in Google Analytics. The demographics and interests reports provide information on age, gender, and interests. This allows us to get a better picture of our users – without being able to assign this data to individual persons. You can find more about the advertising features here: https://support.google.com/analytics/answer/3450482?hl=de_AT&utm_id=ad.

You can stop the use of your Google account's activities and information under "Ad settings" at https://adssettings.google.com/authenticated by checking the box.

Google Analytics Data Processing Amendment

We have concluded a direct customer agreement with Google for the use of Google Analytics by accepting the "Data Processing Amendment" in Google Analytics.

More information about the data processing amendment for Google Analytics can be found here: https://support.google.com/analytics/answer/3379636?hl=de&utm_id=ad

Google Analytics Google Signals Privacy Policy

We have activated Google Signals in Google Analytics. This updates the existing Google Analytics features (advertising reports, remarketing, cross-device reports, and interest and demographics reports) to provide aggregated and anonymized data from you, provided you have enabled personalized ads in your Google Account.

The special thing about this is that it involves cross-device tracking. This means that your data can be analyzed across devices. By activating Google Signals, data is collected and linked to the Google account. Google can thus recognize, for example, if you view a product on our website via a smartphone and only later purchase the product via a laptop. Thanks to the activation of Google Signals, we can launch cross-device remarketing campaigns that would otherwise not be possible in this form. Remarketing means that we can also show you our offers on other websites.

In Google Analytics, Google Signals also collects additional visitor data such as location, search history, YouTube history, and data about your actions on our website. This gives us better advertising reports and more useful information about your interests and demographic characteristics. This includes your age, what language you speak, where you live, or what gender you are. Furthermore, social criteria such as your profession, marital status, or income are also added. All these characteristics help Google Analytics to define groups of people or target groups.

The reports also help us to better assess your behavior, wishes, and interests. This allows us to optimize and adapt our services and products for you. This data expires automatically after 26 months. Please note that this data collection only takes place if you have allowed personalized advertising in your Google account. This is always aggregated and anonymous data and never data of individual persons. You can manage or delete this data in your Google account.

Facebook Pixel Privacy Policy

We use the Facebook Pixel from Facebook on our website. For this, we have implemented a code on our website. The Facebook Pixel is a snippet of JavaScript code that loads a collection of functions that allow Facebook to track your user actions if you have come to our website via Facebook Ads. For example, if you purchase a product on our website, the Facebook Pixel is triggered and stores your actions on our website in one or more cookies. These cookies allow Facebook to match your user data (customer data such as IP address, user ID) with the data of your Facebook account. Then Facebook deletes this data again. The collected data is anonymous to us and cannot be viewed and is only usable for the purpose of placing advertisements. If you are a Facebook user yourself and are logged in, your visit to our website will be automatically assigned to your Facebook user account.

We only want to show our services or products to people who are genuinely interested in them. With the help of Facebook Pixel, our advertising measures can be better tailored to your wishes and interests. This way, Facebook users (provided they have allowed personalized advertising) see relevant advertisements. Furthermore, Facebook uses the collected data for analysis purposes and its own advertisements.

Below, we show you the cookies that were set by embedding Facebook Pixel on a test page. Please note that these are only example cookies. Different cookies are set depending on the interaction on our website.

Name: _fbp

Value: fb.1.1568287647279.257405483-6311234294-7

Purpose: This cookie is used by Facebook to display advertising products.

Expiration: after 3 months

Name: fr

Value: 0aPf312HOS5Pboo2r..Bdeiuf...1.0.Bdeiuf.

Purpose: This cookie is used for the Facebook Pixel to function correctly.

Expiration: after 3 months

Name: comment_author_50ae8267e2bdf1253ec1a5769f48e062311234294-3

Value: Name of the author

Purpose: This cookie stores the text and name of a user who, for example, leaves a comment.

Expiration: after 12 months

Name: comment_author_url_50ae8267e2bdf1253ec1a5769f48e062

Value: https%3A%2F%2Fwww.testseite...%2F (URL of the author)

Purpose: This cookie stores the URL of the website that the user enters in a text field on our website.

Expiration: after 12 months

Name: comment_author_email_50ae8267e2bdf1253ec1a5769f48e062

Value: Author's email address

Purpose: This cookie stores the user's email address, if they have provided it on the website.

Expiration: after 12 months

Note: The cookies mentioned above relate to individual user behavior. Especially with the use of cookies, changes on Facebook can never be ruled out.

If you are logged into Facebook, you can change your ad settings yourself at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. If you are not a Facebook user, you can generally manage your interest-based online advertising at https://www.youronlinechoices.com/de/praferenzmanagement/. There you have the option to deactivate or activate providers.

If you want to learn more about Facebook's data protection, we recommend the company's own data policy at https://www.facebook.com/policy.php.

Facebook Automatic Advanced Matching Privacy Policy

Within the Facebook Pixel function, we have also activated automatic advanced matching. This pixel function allows us to send hashed emails, names, gender, city, state, zip code, and date of birth or phone number as additional information to Facebook, provided you have provided us with this data. This activation enables us to tailor advertising campaigns on Facebook even more precisely to people who are interested in our services or products.

Google Tag Manager Privacy Policy

For our website, we use the Google Tag Manager from Google Inc. For the European region, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. This Tag Manager is one of many helpful Google marketing products. Through Google Tag Manager, we can centrally embed and manage code snippets from various tracking tools that we use on our website.

In this privacy policy, we want to explain to you exactly what Google Tag Manager does, why we use it, and in what form data is processed.

What is Google Tag Manager?

Google Tag Manager is an organizational tool that allows us to integrate and manage website tags centrally and through a single user interface. Tags are small code snippets that, for example, record (track) your activities on our website. For this purpose, JavaScript code snippets are inserted into the source code of our page. The tags often come from internal Google products such as Google Ads or Google Analytics, but tags from other companies can also be integrated and managed via the manager. Such tags perform various tasks. They can collect browser data, feed data to marketing tools, integrate buttons, set cookies, and also track users across multiple websites.

Why do we use Google Tag Manager for our website?

As the saying goes: organization is half the battle! And this, of course, also applies to the maintenance of our website. To make our website as good as possible for you and everyone who is interested in our products and services, we need various tracking tools such as Google Analytics. The data collected by these tools shows us what interests you most, where we can improve our services, and to whom we should still show our offers. And for this tracking to work, we need to embed corresponding JavaScript codes into our website. In principle, we could embed each code snippet of the individual tracking tools separately into our source code. However, this takes a relatively long time and it is easy to lose track. That's why we use Google Tag Manager. We can easily embed the necessary scripts and manage them from one place. In addition, Google Tag Manager offers an easy-to-use user interface and no programming knowledge is required. This way, we manage to keep order in our tag jungle.

What data is stored by Google Tag Manager?

The Tag Manager itself is a domain that does not set cookies and does not store data. It acts as a mere "administrator" of the implemented tags. The individual tags of the different web analysis tools collect the data. The data is quasi-channeled through the Google Tag Manager to the individual tracking tools and not stored.

However, this is completely different with the integrated tags of the various web analysis tools, such as Google Analytics. Depending on the analysis tool, various data about your web behavior is usually collected, stored, and processed with the help of cookies. For this, please read our privacy texts on the individual analysis and tracking tools that we use on our website.

In the account settings of Tag Manager, we have allowed Google to receive anonymized data from us. However, this only concerns the use and utilization of our Tag Manager and not your data that is stored via the code snippets. We enable Google and others to receive selected data in anonymized form. We thus agree to the anonymous transfer of our website data. We could not find out exactly what aggregated and anonymized data is forwarded, despite extensive research. In any case, Google deletes all information that could identify our website. Google aggregates the data with hundreds of other anonymous website data and creates user trends as part of benchmarking measures. Benchmarking involves comparing your own results with those of competitors. Based on the information collected, processes can be optimized.

How long and where is the data stored?

If Google stores data, this data is stored on Google's own servers. The servers are distributed all over the world. Most are located in America. You can find out exactly where Google's servers are located at https://www.google.com/about/datacenters/inside/locations/?hl=de.

How long the individual tracking tools store your data can be found in our individual privacy texts for each tool.

How can I delete my data or prevent data storage?

Google Tag Manager itself does not set cookies, but manages tags from various tracking websites. In our privacy texts for the individual tracking tools, you will find detailed information on how to delete or manage your data.

Google is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. More information can be found at https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&tid=311234294. If you want to learn more about Google Tag Manager, we recommend the FAQs at https://www.google.com/intl/de/tagmanager/faq.html.

Google Site Kit Privacy Policy

We have integrated the WordPress plugin Google Site Kit from the American company Google Inc. into our website. For the European region, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. With Google Site Kit, we can quickly and easily view statistics from various Google products, such as Google Analytics, directly in our WordPress dashboard. The tool, or rather the tools integrated into Google Site Kit, also collect personal data from you. In this privacy policy, we explain why we use Google Site Kit, how long and where data is stored, and which other privacy policies are relevant to you in this context.

What is Google Site Kit?

Google Site Kit is a plugin for the WordPress content management system. With this plugin, we can view important statistics for website analysis directly in our dashboard. These are statistics collected by other Google products, primarily Google Analytics. In addition to Google Analytics, the services Google Search Console, Page Speed Insight, Google AdSense, Google Optimize, and Google Tag Manager can also be linked with Google Site Kit.

Why do we use Google Site Kit on our website?

As a service provider, it is our job to provide you with the best possible experience on our website. You should feel comfortable on our website and quickly and easily find exactly what you are looking for. Statistical evaluations help us get to know you better and adapt our offers to your wishes and interests. For these evaluations, we use various Google tools. Site Kit greatly simplifies our work in this regard, because we can view and analyze the statistics of Google products directly in the dashboard. We no longer have to register separately for each tool. Site Kit thus always provides a good overview of the most important analytical data.

What data is stored by Google Site Kit?

If you have actively consented to tracking tools in the cookie notice (also known as a script or banner), Google products such as Google Analytics will set cookies and send data about you, such as your user behavior, to Google, where it will be stored and processed. This also includes personal data such as your IP address.

For more detailed information on the individual services, we have separate sections in this privacy policy. For example, please refer to our Google Analytics privacy policy. Here we go into great detail about the data collected. You will learn how long Google Analytics stores, manages, and processes data, which cookies may be used, and how you can prevent data storage. We also have separate privacy policies with comprehensive information for other Google services such as Google Tag Manager or Google AdSense.

Below, we show you example Google Analytics cookies that may be set in your browser, provided you have generally consented to data processing by Google. Please note that these cookies are only a selection:

Name: _ga

Value: 2.1326744211.152311234294-2

Purpose: By default, analytics.js uses the _ga cookie to store the user ID. It primarily serves to distinguish website visitors.

Expiration: after 2 years

Name: _gid

Value: 2.1687193234.152311234294-7

Purpose: This cookie also serves to distinguish website visitors.

Expiration: after 24 hours

Name: _gat_gtag_UA_Value: 1

Purpose: This cookie is used to reduce the request rate.

Expiration: after 1 minute

How long and where is the data stored?

Google stores collected data on its own Google servers, which are distributed worldwide. Most servers are located in the United States, and therefore it is quite possible that your data will also be stored there. At https://www.google.com/about/datacenters/inside/locations/?hl=de you can see exactly where the company provides servers.

Data collected by Google Analytics is stored for a standard period of 26 months. After that, your user data will be deleted. The retention period applies to all data linked to cookies, user identification, and advertising IDs.

How can I delete my data or prevent data storage?

You always have the right to receive information about your data, to have your data deleted, corrected, or restricted. In addition, you can also deactivate, delete, or manage cookies in your browser at any time. Here we show you the corresponding instructions for the most common browsers:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

Google is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. More information can be found at https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&tid=311234294. To learn more about data processing by Google, we recommend Google's comprehensive privacy policy at https://policies.google.com/privacy?hl=de.

Newsletter Privacy Policy

If you subscribe to our newsletter, you transmit the personal data mentioned above and give us the right to contact you by email. We use the data stored during the newsletter registration exclusively for our newsletter and do not pass it on.

Should you unsubscribe from the newsletter – you will find the link for this at the bottom of every newsletter – we will delete all data stored with the newsletter registration.

MailChimp Privacy Policy

Like many other websites, we also use the services of the newsletter company MailChimp on our website. The operator of MailChimp is The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308 USA. Thanks to MailChimp, we can send you interesting news very easily via newsletter. With MailChimp, we don't have to install anything and can still draw from a pool of really useful functions. In the following, we will go into more detail about this email marketing service and inform you about the most important data protection aspects.

What is MailChimp?

MailChimp is a cloud-based newsletter management service. "Cloud-based" means that we don't have to install MailChimp on our own computer or server. Instead, we use the service via an IT infrastructure - available over the internet - on an external server. This way of using software is also called SaaS (Software as a Service).

With MailChimp, we can choose from a wide range of different email types. Depending on what we want to achieve with our newsletter, we can conduct single campaigns, regular campaigns, autoresponders (automatic email), A/B tests, RSS campaigns (sending at predefined times and frequencies), and follow-up campaigns.

Why do we use MailChimp on our website?

Essentially, we use a newsletter service to stay in touch with you. We want to tell you what's new with us or what attractive offers we currently have in our program. For our marketing measures, we are always looking for the simplest and best solutions. And for this reason, we have chosen Mailchimp's newsletter management service. Although the software is very easy to use, it offers a large number of helpful features. This allows us to create interesting and beautiful newsletters in a short time. Thanks to the offered design templates, we can design each newsletter individually, and thanks to "Responsive Design," our content is displayed legibly and beautifully on your smartphone (or other mobile devices).

Through tools such as A/B testing or the extensive analysis options, we can quickly see how our newsletters are received by you. This allows us to react if necessary and improve our offer or our services.

Another advantage is Mailchimp's "cloud system". The data is not stored and processed directly on our server. We can retrieve the data from external servers and thus save storage space. In addition, the maintenance effort is significantly reduced.

What data is stored by MailChimp?

The Rocket Science Group LLC (MailChimp) maintains online platforms that enable us to communicate with you (provided you have subscribed to our newsletter). If you become a subscriber to our newsletter via our website, you confirm your membership in a MailChimp email list via email. For MailChimp to be able to prove that you have registered with the "list provider", the date of registration and your IP address are stored. Furthermore, MailChimp stores your email address, your name, physical address, and demographic information such as language or location.

This information is used to send you emails and enable certain other MailChimp features (such as newsletter evaluation).

MailChimp also shares information with third-party providers to provide better services. MailChimp also shares some data with third-party advertising partners to better understand the interests and concerns of its customers, so that more relevant content and targeted advertising can be provided.

Through so-called "web beacons" (small graphics in HTML emails), MailChimp can determine whether the email has arrived, whether it has been opened, and whether links have been clicked. All this information is stored on MailChimp servers. This provides us with statistical evaluations and shows us exactly how well our newsletter was received by you. In this way, we can adapt our offer much better to your wishes and improve our service.

MailChimp may also use this data to improve its own service. For example, dispatch can be technically optimized, or the location (country) of the recipients can be determined.

The following cookies may be set by Mailchimp. This is not a complete list of cookies, but rather an exemplary selection:

Name: AVESTA_ENVIRONMENT

Value: Prod

Purpose: This cookie is necessary to provide the Mailchimp services. It is always set when a user registers for a newsletter mailing list.

Expiration: at the end of the session

Name: ak_bmsc

Value: F1766FA98C9BB9DE4A39F70A9E5EEAB55F6517348A7000001311234294-3

Purpose: The cookie is used to distinguish a human from a bot. This allows secure reports on the use of a website to be created.

Expiration: after 2 hours

Name: bm_sv

Value: A5A322305B4401C2451FC22FFF547486~FEsKGvX8eovCwTeFTzb8//I3ak2Au...

Purpose: The cookie is from MasterPass Digital Wallet (a MasterCard service) and is used to securely and easily offer a visitor a virtual payment transaction. For this, the user is anonymously identified on the website.

Expiration: after 2 hours

Name: _abck

Value: 8D545C8CCA4C3A50579014C449B045311234294-9

Purpose: We could not find any detailed information about the purpose of this cookie.

Expiration: after one year

Sometimes it may happen that you open our newsletter via a specified link for better display. This is the case, for example, if your email program does not work or the newsletter is not displayed correctly. The newsletter is then displayed via a MailChimp website. MailChimp also uses cookies (small text files that store data on your browser) on its own websites. In doing so, personal data may be processed by MailChimp and its partners (e.g., Google Analytics). This data collection is the responsibility of MailChimp and we have no influence on it. In MailChimp's "Cookie Statement" (at: https://mailchimp.com/legal/cookies/), you can find out exactly how and why the company uses cookies.

How long and where is the data stored?

As MailChimp is an American company, all collected data is also stored on American servers.

In principle, the data remains permanently stored on Mailchimp's servers and is only deleted if you request it. You can have your contact deleted with us. This permanently removes all your personal data for us and anonymizes you in Mailchimp reports. However, you can also request the deletion of your data directly from MailChimp. Then all your data will be removed there, and we will receive a notification from MailChimp. After we receive the email, we have 30 days to delete your contact from all connected integrations.

How can I delete my data or prevent data storage?

You can revoke your consent to receive our newsletter at any time by clicking on the link at the bottom of each email received. If you have unsubscribed by clicking on the unsubscribe link, your data will be deleted from MailChimp.

If you access a MailChimp website via a link in our newsletter and cookies are set in your browser, you can delete or deactivate these cookies at any time.

Depending on the browser, deactivating or deleting works slightly differently. The following instructions show how to manage cookies in your browser:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

If you generally do not want cookies, you can configure your browser to always inform you when a cookie is about to be set. This allows you to decide for each individual cookie whether you want to allow it or not.

MailChimp is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. More information can be found at https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&tid=311234294. You can find more about the use of cookies by MailChimp at https://mailchimp.com/legal/cookies/, and information on data protection at MailChimp (Privacy) can be found at https://mailchimp.com/legal/privacy/.

MailChimp Data Processing Agreement

We have concluded a data processing agreement with MailChimp (Data Processing Addendum). This agreement serves to protect your personal data and ensures that MailChimp complies with applicable data protection regulations and does not disclose your personal data to third parties.

More information on this agreement can be found at https://mailchimp.com/legal/data-processing-addendum/.

Google Ads (Google AdWords) Conversion Tracking Privacy Policy

We use Google Ads (formerly Google AdWords) as an online marketing measure to promote our products and services. This way, we want to draw more people's attention to the high quality of our offers on the internet. As part of our advertising measures through Google Ads, we use conversion tracking from Google Inc. on our website. In Europe, however, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. With the help of this free tracking tool, we can better adapt our advertising offer to your interests and needs. In the following article, we want to go into more detail about why we use conversion tracking, what data is stored, and how you can prevent this data storage.

What is Google Ads Conversion Tracking?

Google Ads (formerly Google AdWords) is Google Inc.'s in-house online advertising system. We are convinced of the quality of our offering and want as many people as possible to get to know our website. In the online sector, Google Ads offers the best platform for this. Of course, we also want to get a precise overview of the cost-benefit ratio of our advertising campaigns. That's why we use Google Ads' conversion tracking tool.

But what exactly is a conversion? A conversion occurs when you change from a purely interested website visitor to an active visitor. This always happens when you click on our ad and then perform another action, such as visiting our website. With Google's conversion tracking tool, we track what happens after a user clicks on our Google Ads ad. For example, we can see if products are purchased, services are used, or if users have signed up for our newsletter.

Why do we use Google Ads Conversion Tracking on our website?

We use Google Ads to draw attention to our offers on other websites as well. The goal is that our advertising campaigns truly reach only those people who are interested in our offers. With the Conversion Tracking Tool, we see which keywords, ads, ad groups, and campaigns lead to the desired customer actions. We see how many customers interact with our ads on a device and then complete a conversion. This data allows us to calculate our cost-benefit ratio, measure the success of individual advertising measures, and consequently optimize our online marketing measures. Furthermore, with the data obtained, we can make our website more interesting for you and tailor our advertising offers even more individually to your needs.

What data is stored during Google Ads Conversion Tracking?

We have integrated a conversion tracking tag or code snippet on our website to better analyze certain user actions. If you now click on one of our Google Ads advertisements, the "Conversion" cookie from a Google domain is stored on your computer (usually in the browser) or mobile device. Cookies are small text files that store information on your computer.

Here is the data for the most important cookies for Google's conversion tracking:

Name: Conversion

Value: EhMI_aySuoyv4gIVled3Ch0llweVGAEgt-mr6aXd7dYlSAGQ311234294-3

Purpose: This cookie stores every conversion you make on our site after coming to us via a Google Ad.

Expiration: after 3 months

Name: _gac

Value: 1.1558695989.EAIaIQobChMIiOmEgYO04gIVj5AYCh2CBAPrEAAYASAAEgIYQfD_BwE

Purpose: This is a classic Google Analytics cookie and serves to record various actions on our website.

Expiration: after 3 months

Note: The _gac cookie only appears in connection with Google Analytics. The list above is not exhaustive, as Google repeatedly uses other cookies for analytical evaluation.

As soon as you complete an action on our website, Google recognizes the cookie and saves your action as a so-called conversion. As long as you are browsing our website and the cookie has not yet expired, we and Google recognize that you found us via our Google Ads advertisement. The cookie is read out and sent back to Google Ads with the conversion data. It is also possible that other cookies are used to measure conversions. Google Ads conversion tracking can be refined and improved with the help of Google Analytics. For ads that Google displays in various places on the web, cookies named "__gads" or "_gac" may be set under our domain. Since September 2017, various campaign information from analytics.js has been stored with the _gac cookie. The cookie stores this data as soon as you visit one of our pages for which Google Ads' automatic tag labeling has been set up. Unlike cookies set for Google domains, Google can only read these conversion cookies when you are on our website. We do not collect or receive personal data. We receive a report with statistical evaluations from Google. For example, we learn the total number of users who clicked on our ad and we see which advertising measures were well received.

How long and where is the data stored?

At this point, we would like to point out that we have no influence on how Google continues to use the collected data. According to Google, the data is encrypted and stored on secure servers. In most cases, conversion cookies expire after 30 days and do not transmit any personal data. The cookies named "Conversion" and "_gac" (which is used in conjunction with Google Analytics) have an expiration date of 3 months.

How can I delete my data or prevent data storage?

You have the option not to participate in Google Ads conversion tracking. If you deactivate the Google conversion tracking cookie via your browser, you block conversion tracking. In this case, you will not be included in the statistics of the tracking tool. You can change the cookie settings in your browser at any time. This works a little differently for each browser. Here are instructions on how to manage cookies in your browser:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

If you generally do not want cookies, you can configure your browser to always inform you when a cookie is about to be set. This allows you to decide for each individual cookie whether you want to allow it or not. By downloading and installing this browser plug-in at https://support.google.com/ads/answer/7395996, all "advertising cookies" are also deactivated. Please note that by deactivating these cookies, you do not prevent advertisements, but only personalized advertising.

Through certification for the US-European data protection agreement "Privacy Shield", the American corporation Google LLC must comply with the data protection laws applicable in the EU. If you would like to know more about data protection at Google, we recommend Google's general privacy policy: https://policies.google.com/privacy?hl=de.

IONOS WebAnalytics Privacy Policy

We use the analysis tool IONOS WebAnalytics from the German company 1&1 IONOS SE, Elgendorfer Straße 57, 56410 Montabaur, Germany, on our website. The tool helps us analyze our website, and data is also collected and stored for this purpose. However, this tool refrains from collecting data that could identify you as a person. Nevertheless, in this privacy policy, we want to inform you more precisely about the data processing and storage by IONOS WebAnalytics and also explain why we use it.

What is IONOS WebAnalytics?

IONOS WebAnalytics is, as the name suggests, a tool used to analyze our website. The software program collects data such as how long you spend on our website, which buttons you click, or from which other websites you found us. This gives us a good overview of user behavior on our website. All this information is anonymous. This means that through this data, we do not identify you as a person, but merely receive general usage information and statistics.

Why do we use IONOS WebAnalytics on our website?

Our goal is to provide you with the best possible experience on our website. We are convinced of our offers and want our website to be a helpful and useful place for you. To achieve this, we need to adapt our website as much as possible to your wishes and concerns. With a web analysis tool like IONOS WebAnalytics and the resulting data, we can improve our website in this regard. The data can also help us to design advertising and marketing measures more individually. However, with all these web analyses, the protection of personal data is still important to us. Unlike other analysis tools, IONOS WebAnalytics does not store or process any data that could identify you as a person.

What data is stored by IONOS WebAnalytics?

The data is collected and stored through log files or a so-called pixel. A pixel is a snippet of JavaScript code that loads a collection of functions with which user behavior can be tracked. WebAnalytics deliberately refrains from using cookies.

IONOS does not store any personal data about you. When a page view is transmitted, your IP address is transferred, but then immediately anonymized and processed in such a way that you cannot be identified as a person.

The following data is stored by IONOS WebAnalytics:

• Your browser type and browser version

• Which website you visited before (referrer)

• Which specific webpage you visited on our site

• Which operating system you use

• Which end device you use (PC, tablet, or smartphone)

• When you came to our page

• Your IP address in anonymized form

The data is not passed on to third parties and is only used for statistical evaluations.

How long and where is the data stored?

The data is stored until the contract between IONOS WebAnalytics and us expires. In the case of a regular web hosting plan, the data is stored in our log directory and graphical statistics are generated from it. These logs are deleted every 8 weeks. In the case of a MyWebsite plan, the data is collected via a pixel. Here, the data is only stored and processed within IONOS WebAnalytics.

How can I delete my data or prevent data storage?

In principle, you have the right to information, rectification, deletion, and restriction of the processing of your personal data at any time. You can also revoke your consent to data processing at any time. However, since IONOS WebAnalytics does not store or process any personal data and thus an assignment to you as a person is not possible, there is no possibility to delete such data.

We hope we have been able to provide you with the most important information regarding the truly economical data processing of IONOS WebAnalytics. If you want to learn more about the tracking service, we recommend the company's privacy policy at https://www.ionos.de/hilfe/datenschutz/datenverarbeitung-von-webseitenbesuchern-ihres-11-ionos-produktes/webanalytics/?tid=311234294.

Google reCAPTCHA Privacy Policy

Our primary goal is to secure and protect our website as best as possible for you and for us. To ensure this, we use Google reCAPTCHA from Google Inc. For the European region, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. With reCAPTCHA, we can determine whether you are actually a human being of flesh and blood and not a robot or other spam software. By spam, we mean any unsolicited information that reaches us electronically without being requested. With classic CAPTCHAs, you usually had to solve text or image puzzles for verification. With Google's reCAPTCHA, we usually don't have to bother you with such puzzles. In most cases, it is sufficient to simply check a box to confirm that you are not a bot. With the new Invisible reCAPTCHA version, you don't even need to check a box. How this works exactly and, above all, what data is used for it, you will learn in the course of this privacy policy.

What is reCAPTCHA?

reCAPTCHA is a free Captcha service from Google that protects websites from spam software and misuse by non-human visitors. This service is most commonly used when you fill out forms on the internet. A Captcha service is a type of automated Turing test designed to ensure that an action on the internet is performed by a human and not by a bot. In the classic Turing test (named after computer scientist Alan Turing), a human determines the distinction between bot and human. With Captchas, the computer or a software program also does this. Classic Captchas work with small tasks that are easy for humans to solve, but pose significant difficulties for machines. With reCAPTCHA, you no longer have to actively solve puzzles. The tool uses modern risk techniques to distinguish humans from bots. Here you only have to check the text box "I am not a robot" or, with Invisible reCAPTCHA, even that is no longer necessary. With reCAPTCHA, a JavaScript element is embedded in the source code, and then the tool runs in the background and analyzes your user behavior. From these user actions, the software calculates a so-called Captcha score. Google uses this score to calculate the probability that you are a human even before you enter the Captcha. reCAPTCHA or Captchas in general are always used when bots could manipulate or misuse certain actions (e.g., registrations, surveys, etc.).

Why do we use reCAPTCHA on our website?

We only want to welcome human beings of flesh and blood to our site. Bots or spam software of various kinds are welcome to stay at home. That's why we pull out all the stops to protect ourselves and offer you the best possible user-friendliness. For this reason, we use Google reCAPTCHA from Google. This way, we can be quite sure that our website remains "bot-free." By using reCAPTCHA, data is transmitted to Google to determine whether you are actually a human. reCAPTCHA thus serves the security of our website and consequently your security. For example, without reCAPTCHA, it could happen that a bot registers as many email addresses as possible during a registration process to then "spam" forums or blogs with unwanted advertising content. With reCAPTCHA, we can avoid such bot attacks.

What data is stored by reCAPTCHA?

reCAPTCHA collects personal data from users to determine whether the actions on our website truly originate from humans. Thus, the IP address and other data that Google requires for the reCAPTCHA service can be sent to Google. IP addresses within the member states of the EU or other contracting states of the Agreement on the European Economic Area are almost always truncated before the data lands on a server in the USA. The IP address is not combined with other Google data unless you are logged into your Google account while using reCAPTCHA. First, the reCAPTCHA algorithm checks whether Google cookies from other Google services (YouTube, Gmail, etc.) have already been placed in your browser. Then, reCAPTCHA sets an additional cookie in your browser and captures a snapshot of your browser window.

The following list of collected browser and user data does not claim to be exhaustive. Rather, these are examples of data that, to our knowledge, are processed by Google.

• Referrer URL (the address of the page from which the visitor comes)

• IP address (e.g., 256.123.123.1)

• Information about the operating system (the software that enables your computer to operate. Well-known operating systems are Windows, Mac OS X, or Linux)

• Cookies (small text files that store data in your browser)

• Mouse and keyboard behavior (every action you perform with the mouse or keyboard is recorded)

• Date and language settings (which language or date you have preset on your PC is stored)

• All JavaScript objects (JavaScript is a programming language that allows websites to adapt to the user. JavaScript objects can collect all kinds of data under a name)

• Screen resolution (indicates how many pixels the image display consists of)

It is undisputed that Google uses and analyzes this data even before you click the "I'm not a robot" checkbox. With the Invisible reCAPTCHA version, even checking the box is omitted, and the entire detection process runs in the background. How much and what data Google precisely stores is not disclosed in detail by Google.

The following cookies are used by reCAPTCHA: We refer to Google's reCAPTCHA demo version at https://www.google.com/recaptcha/api2/demo. All these cookies require a unique identifier for tracking purposes. Here is a list of cookies that Google reCAPTCHA set on the demo version:

Name: IDE

Value: WqTUmlnmv_qXyi_DGNPLESKnRNrpgXoy1K-pAZtAkMbHI-311234294-8

Purpose: This cookie is set by DoubleClick (also owned by Google) to register and report a user's actions on the website in connection with advertisements. This allows the effectiveness of advertising to be measured and appropriate optimization measures to be taken. IDE is stored in browsers under the doubleclick.net domain.

Expiration: after one year

Name: 1P_JAR

Value: 2019-5-14-12

Purpose: This cookie collects statistics on website usage and measures conversions. A conversion occurs, for example, when a user becomes a buyer. The cookie is also used to display relevant advertisements to users. Furthermore, the cookie can prevent a user from seeing the same advertisement more than once.

Expiration: after one month

Name: ANID

Value: U7j1v3dZa3112342940xgZFmiqWppRWKOr

Purpose: We could not find much information about this cookie. In Google's privacy policy, the cookie is mentioned in connection with "advertising cookies" such as "DSID", "FLC", "AID", "TAID". ANID is stored under the google.com domain.

Expiration: after 9 months

Name: CONSENT

Value: YES+AT.de+20150628-20-0

Purpose: The cookie stores the status of a user's consent to the use of various Google services. CONSENT also serves security purposes, to verify users, prevent credential fraud, and protect user data from unauthorized attacks.

Expiration: after 19 years

Name: NID

Value: 0WmuWqy311234294zILzqV_nmt3sDXwPeM5Q

Purpose: NID is used by Google to tailor advertisements to your Google search. With the help of the cookie, Google "remembers" your most frequently entered search queries or your previous interaction with ads. This way, you always get customized ads. The cookie contains a unique ID to collect personal settings of the user for advertising purposes.

Expiration: after 6 months

Name: DV

Value: gEAABBCjJMXcI0dSAAAANbqc311234294-4

Purpose: As soon as you check the "I'm not a robot" box, this cookie is set. The cookie is used by Google Analytics for personalized advertising. DV collects information in an anonymized form and is also used to differentiate users.

Expiration: after 10 minutes

Note: This list cannot claim to be exhaustive, as Google repeatedly changes its choice of cookies.

How long and where is the data stored?

By integrating reCAPTCHA, data about you is transferred to Google's servers. Google does not clearly state where exactly this data is stored, even after repeated inquiries. Without confirmation from Google, it can be assumed that data such as mouse interaction, time spent on the website, or language settings are stored on European or American Google servers. The IP address that your browser transmits to Google is generally not merged with other Google data from other Google services. However, if you are logged into your Google account while using the reCAPTCHA plug-in, the data will be merged. In this case, Google's deviating privacy policy applies.

How can I delete my data or prevent data storage?

If you do not want data about you and your behavior to be transmitted to Google, you must completely log out of Google and delete all Google cookies before visiting our website or using the reCAPTCHA software. In principle, data is automatically transmitted to Google as soon as you access our page. To delete this data again, you must contact Google support at https://support.google.com/?hl=de&tid=311234294.

Therefore, by using our website, you agree that Google LLC and its representatives automatically collect, process, and use data.

You can find out more about reCAPTCHA on Google's web developer page at https://developers.google.com/recaptcha/. While Google goes into more detail about the technical development of reCAPTCHA here, precise information about data storage and privacy-relevant topics is also missing. A good overview of the general use of data at Google can be found in the company's own privacy policy at https://www.google.com/intl/de/policies/privacy/.

Custom Google Search Privacy Policy

We have integrated the custom Google search plug-in into our website. Google is the largest and best-known search engine worldwide and is operated by the US company Google Inc. For the European region, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible. Through the custom Google search, data from you can be transmitted to Google. In this privacy policy, we inform you why we use this plug-in, what data is processed, and how you can manage or prevent this data transfer.

What is custom Google search?

The custom Google search plug-in is a Google search bar directly on our website. The search takes place as on www.google.com, only the search results focus on our content and products or on a restricted search area.

Why do we use custom Google search on our website?

A website with a lot of interesting content often becomes so large that you may lose track of it. Over time, a lot of valuable material has accumulated with us, and as part of our service, we want you to find our content as quickly and easily as possible. The custom Google search makes finding interesting content child's play. The built-in Google plug-in generally improves the quality of our website and makes searching easier for you.

What data is stored by custom Google search?

Through the custom Google search, data from you is only transmitted to Google if you actively use the Google search embedded on our website. This means that only when you enter a search term into the search bar and then confirm this term (e.g., by clicking "Enter"), your IP address, in addition to the search term, is sent to Google, stored, and processed there. Based on the cookies set (e.g., 1P_JAR), it can be assumed that Google also receives data on website usage. If, during your visit to our website, you search for content using the embedded Google search function and are simultaneously logged into your Google account, Google can also assign the collected data to your Google account. As the website operator, we have no influence on what Google does with the collected data or how Google processes the data.

The following cookies are set in your browser if you use the custom Google search and are not logged into a Google account:

Name: 1P_JAR

Value: 2020-01-27-13311234294-5

Purpose: This cookie collects statistics on website usage and measures conversions. A conversion occurs, for example, when a user becomes a buyer. The cookie is also used to display relevant advertisements to users.

Expiration: after one month

Name: CONSENT

Value: WP.282f52311234294-9

Purpose: The cookie stores the status of a user's consent to the use of various Google services. CONSENT also serves security purposes, to verify users and protect user data from unauthorized attacks.

Expiration: after 18 years

Name: NID

Value: 196=pwIo3B5fHr-8

Purpose: NID is used by Google to tailor advertisements to your Google search. With the help of the cookie, Google "remembers" your most frequently entered search queries or your previous interaction with ads. This way, you always get customized ads.

Expiration: after 6 months

Note: This list cannot claim to be exhaustive, as Google repeatedly changes its choice of cookies.

How long and where is the data stored?

Google's servers are distributed all over the world. As Google is an American company, most data is stored on American servers. At https://www.google.com/about/datacenters/inside/locations/?hl=de you can see exactly where Google's servers are located.

Your data is distributed across various physical storage media. This makes the data faster to access and better protected against possible manipulation. Google also has corresponding emergency programs for your data. For example, if there are internal technical problems at Google and servers stop working, the risk of service interruption and data loss remains low.

Depending on the data, Google stores it for different lengths of time. Some data you can delete yourself, others are automatically deleted or anonymized by Google. However, there is also data that Google stores for longer if this is required for legal or business reasons.

How can I delete my data or prevent data storage?

Under European Union data protection law, you have the right to receive information about your data, to update, delete, or restrict it. There is some data that you can delete at any time. If you have a Google account, you can delete web activity data there or set it to be deleted after a certain period.

In your browser, you also have the option to disable, delete, or manage cookies according to your wishes and preferences. Here you will find instructions for the most important browsers:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

Google is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. More information can be found at https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI. We hope we have been able to provide you with the most important information regarding data processing by Google. If you want to learn more, we recommend Google's comprehensive privacy policy at https://policies.google.com/privacy?hl=de.

Shopify

PERSONAL DATA WE COLLECT

When you visit the Site, we automatically collect certain information about your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device. As you browse the Site, we also collect information about the individual web pages or products that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site. We refer to this automatically-collected information as “Device Information.”

We collect Device Information using the following technologies:

- “Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier.

For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org.

- “Log files” track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.

- “Web beacons,” “tags,” and “pixels” are electronic files used to record information about how you browse the Site.

[[INSERT DESCRIPTIONS OF OTHER TRACKING TECHNOLOGIES USED]]

When you make a purchase or attempt to make a purchase through the Site, we also collect certain information from you, including your name, billing address, shipping address, payment information (including credit card numbers, for example), email address, and phone number. We refer to this information as “Order Information.”

When we talk about “Personal Information” in this Privacy Policy, we are talking both about Device Information and Order Information.

HOW DO WE USE YOUR PERSONAL INFORMATION?

We use the Order Information that we collect generally to fulfill any orders placed through the Site (including processing your payment information, arranging for shipping, and providing you with invoices and/or order confirmations).

Additionally, we use this Order Information to:

- Communicate with you;

- Screen our orders for potential risk or fraud; and

- When in line with the preferences you have shared with us, provide you with information or advertising relating to our products or services.

We use the Device Information that we collect to help us screen for potential risk and fraud (in particular, your IP address), and more generally to improve and optimize our Site (for example, by generating analytics about how our customers browse and interact with the Site, and to assess the success of our marketing and advertising campaigns).

SHARING YOUR PERSONAL INFORMATION

We share your Personal Information with third parties to help us use your Personal Information, as described above. For example, we use Shopify to power our online store–you can read more about how Shopify uses your Personal Information here: https://www.shopify.com/legal/privacy. We also use Google Analytics to help us understand how our customers use the Site–you can read more about how Google uses your Personal Information here: https://policies.google.com/privacy?hl=de. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.

Finally, we may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights or to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.

BEHAVIORAL ADVERTISING

As described above, we use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.

You can opt out of targeted advertising by:

COMMON LINKS INCLUDE:

FACEBOOK – https://www.facebook.com/settings/?tab=ads

GOOGLE – https://www.google.com/settings/ads/anonymous

Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: http://optout.aboutads.info/.

DO NOT TRACK

Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser.

YOUR RIGHTS

If you are a European resident, you have the right to access personal information we hold about you and to ask that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us through the contact information below.

Additionally, if you are a European resident we note that we are processing your information in order to fulfill contracts we might have with you (for example if you make an order through the Site), or otherwise to pursue our legitimate business interests listed above. Additionally, please note that your information will be transferred outside of Europe, including to Canada and the United States.

DATA RETENTION

When you place an order through the Site, we will maintain your Order Information for our records unless and until you ask us to delete this information.

CHANGES

We may update this privacy policy from time to time in order to reflect, for example, changes to our practices or for other operational, legal or regulatory reasons.

CONTACT US

For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us by e-mail at mail@obermaier.de or by mail using the details provided below:

Stripe Privacy Policy

On our website, we use a payment tool from the American technology company and online payment service Stripe. For customers within the EU, Stripe Payments Europe (Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland) is responsible. This means that if you choose Stripe as your payment method, your payment will be processed via Stripe Payments. In doing so, data necessary for the payment process is transferred to Stripe and stored there. In this privacy policy, we give you an overview of this data processing and storage by Stripe and explain why we use Stripe on our website.

What is Stripe?

The technology company Stripe offers payment solutions for online payments. With Stripe, it is possible to accept credit and debit card payments in our webshop. Stripe handles the entire payment process. A great advantage of Stripe is, for example, that you never have to leave our website or shop during the payment process and that payment processing is very fast.

Why do we use Stripe for our website?

Of course, with our website and our integrated online shop, we want to offer the best possible service so that you feel comfortable on our site and use our offers. We know that your time is precious and therefore payment processing, in particular, must function quickly and smoothly. In addition to our other payment providers, we have found a partner in Stripe who ensures secure and fast payment processing.

What data is stored by Stripe?

If you choose Stripe as your payment method, personal data from you will also be transmitted to and stored by Stripe. This concerns transaction data. This data includes, for example, the payment method (i.e., credit card, debit card, or account number), bank code, currency, the amount, and the date of payment. For a transaction, your name, email address, billing or shipping address, and sometimes your transaction history may also be transmitted. This data is necessary for authentication. Furthermore, Stripe may also collect your name, address, phone number, and country, in addition to technical data about your device (such as IP address), for fraud prevention, financial reporting, and to fully provide its services.

Stripe does not sell any of your data to independent third parties, such as marketing agencies or other companies not associated with Stripe. However, the data may be passed on to internal departments, a limited number of external Stripe partners, or to comply with legal requirements. Stripe also uses cookies to collect data. Here is a selection of cookies that Stripe may set during the payment process:

Name: m

Value: edd716e9-d28b-46f7-8a55-e05f1779e84e040456311234294-5

Purpose: This cookie appears when you select the payment method. It stores and recognizes whether you are accessing our website via a PC, tablet, or smartphone.

Expiration: after 2 years

Name: __stripe_mid

Value: fc30f52c-b006-4722-af61-a7419a5b8819875de9311234294-1

Purpose: This cookie is required to carry out a credit card transaction. For this purpose, the cookie stores your session ID.

Expiration: after one year

Name: __stripe_sid

Value: 6fee719a-c67c-4ed2-b583-6a9a50895b122753fe

Purpose: This cookie also stores your ID and is used by Stripe for the payment process on our website.

Expiration: after session expiry

How long and where is the data stored?

Personal data is generally stored for the duration of the service provision. This means that the data is stored until we terminate our collaboration with Stripe. However, to comply with legal and regulatory obligations, Stripe may also store personal data beyond the duration of the service provision. Since Stripe is a globally active company, data may also be stored in any country where Stripe offers services, for example, in the USA.

How can I delete my data or prevent data storage?

Stripe continues to participate in the EU-U.S. Privacy Shield Framework, which regulated the correct and secure transfer of personal data until July 16, 2020. After the European Court of Justice declared the agreement invalid, the company no longer relies on this agreement but still acts according to the principles of the Privacy Shield.

You always have the right to access, rectify, and delete your personal data. If you have any questions, you can contact the Stripe team at any time via https://support.stripe.com/contact/email.

You can delete, disable, or manage cookies that Stripe uses for its functions in your browser. This works differently depending on the browser you use. Please note, however, that the payment process may then no longer function. The following instructions show you how to manage cookies in your browser:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

We have now given you a general overview of the processing and storage of data by Stripe. If you want more detailed information, the comprehensive Stripe privacy policy at https://stripe.com/at/privacy serves as a good source.