Data protection declaration and consent for the processing of proof of identity

Data protection declaration

We are delighted to welcome you to our website. The protection and security of your personal information when using our website is very important to us. We would therefore like to inform you of which of your personal data we collect when you visit our website and for what purposes it is being used. Personal data is individual information about personal or factual circumstances of a specific or identifiable natural person (data subject), such as name, address, e-mail addresses, user behavior. This is data with which we can identify you. We will use this opportunity to also provide you with additional information about data processing outside of this website (e.g., video conferences or newsletters).

Responsible for data processing

Responsible for the processing of personal data within the terms of the EU General Data Protection Regulation (DSGVO)

Van Ham Kunstauktionen GmbH & Co. KG
Hitzelerstr. 2
50968 Köln
GERMANY
+49 (221) 92 58 62-0
info@van-ham.com

Responsible for data security

exkulpa GmbH
Waldfeuchter Str. 266
52525 Heinsberg
GERMANY
+49 (2452) 99 33 11
Datenschutz@van-ham.com

General information

This privacy policy meets the legal requirements for transparency in the processing of personal data. This is any information relating to an identified or identifiable natural person. This includes, for example, information such as your name, age, address, telephone number, date of birth, e-mail address, IP address or user behavior when visiting a website. Information for which we cannot (or can only with a disproportionate effort) establish a reference to your person, e.g. by anonymization, is not personal data. The processing of personal data (e.g. collection, retrieval, use, storage or transmission) always requires a legal justification and a defined purpose.

Stored personal data will be deleted as soon as the purpose of its processing has been achieved and there are no legitimate reasons for further preservation. We will inform you about the specific storage periods or criteria for storage in the individual processing operations. Apart from this, we store your personal data in individual cases for the purpose of asserting, exercising or defending legal claims and in the event of existing statutory retention obligations.

13. Information According to art. 13 GDPR

This information is directed at customers, interested parties, suppliers and employees. Your personal data will be processed by us for the following purposes:

  • To fulfil our contractual obligations to which we are committed to you (art. 6 para. 1 lit. b GDPR).
  • To carry out pre-contractual obligations (art. 6 para. 1 lit. b GDPR).
  • To answer inquiries (art. 6 para. 1 lit. b GDPR).
  • If you have given us your consent to process your personal data for specific purposes (e.g. to receive our newsletter), data processing will take place on the basis of your consent (art. 6 para. 1 lit. a GDPR).
  • To fulfil legal obligations to which our company is subject (art. 6 para. 1 lit. c GDPR).
  • Insofar as necessary, we also process your data to protect our legitimate interests, in particular to assert legal claims and to defend ourselves in the event of legal disputes or to guarantee IT security, to consult and exchange data with credit agencies to determine creditworthiness and default risks, for direct advertising and market research insofar as you have not objected to the use of your data for this purpose, for measures for business management and the further development of services and products, for measures to optimize products and sales, for measures to control risks, to prevent or solve criminal offences (art. 6 para. 1 lit. f GDPR).

Categories of Recipients of Personal Data

Within our company employees only have access to the data that they absolutely need to fulfil their tasks (need-to-know principle). Individual processes and services are carried out by carefully selected service providers who have been commissioned in accordance with data protection regulations and who are based within the EEA. If service providers commissioned by us are given access to personal data during the performance of your services, these service providers have entered into contract processing agreements with us in accordance with art. 28 Para. 3 GDPR.

Duration of Data Storage

The data processed by us will be stored for the duration of the existence and execution of the contractual relationship and in compliance with statutory retention periods. These are in particular commercial and tax storage obligations according to the German Commercial Code (HGB) and the German Fiscal Code (AO). The regular storage and documentation periods are up to ten years. If no contractual relationship is established, we process the data only for as long as the specific purpose requires.

Your Data Subject Rights

As a data subject, you have the following rights with regard to the personal data concerning you:

  • The right to obtain information about the personal data we process about you.
  • Right to correction or deletion, if they are incorrect, not up to date or unlawfully collected by us.
  • The right to limit processing if complete deletion is not possible, e.g. because we have to comply with statutory storage obligations.
  • Right to object to processing if the data processing is based on a deliberation of interests (the so-called legitimate interest), as described above under »Purpose of processing«. This is the case in particular if the processing is not necessary for the fulfilment of a contract with you. When asserting your right of objection, please explain the reasons why we should not process your data as we have done.

Of course, you can also object to the processing of your personal data for advertising purposes at any time. Please address your objection to this to our address or e-mail address given in the imprint.

  • Right of revocation if you have given us your consent to process your data. You can assert your revocation at any time without giving reasons to our company. Please address your revocation to our address or e-mail address given in the imprint.
  • In addition, you have the right to complain to a data protection supervisory authority about the processing of your personal data by our company.
  • If you have any questions regarding data protection, please contact us via e-mail to the address provided in the imprint.

Data Processing in Accordance with the Money Laundering Prevention Act (GwG)

According to § 2 para. 1 GwG (Geldwäschepreventionsgesetz = Money Laundering Prevention Act, hereafter “GWG”) we are obliged to comply with measures to prevent money laundering and the financing of terrorism. The legally required measures include the identification of contractual partners (§ 11 GwG) if a certain transaction amount is exceeded. Under certain circumstances we are also obliged to report suspicious transactions or transaction intentions (§§ 27 ff. GwG). Within the scope of the prescribed identification and / or reporting, we collect personal data and, if necessary, forward it to the Central Office for Financial Transaction Investigations (FIU). The legal basis for data collection and disclosure is art. 6 para. 1 lit. c) GDPR in conjunction with the respective legal provisions of the GWG. Unless other legal provisions on recording and storage obligations provide for a longer period in individual cases, we are obliged to store the data for five years. After the retention period has expired, the data will be destroyed in accordance with data protection regulations without the need for a separate request to do so.
Proof of identity may be, for example, an identity card or passport, etc.

Person responsible

If you send your proof of identity to VAN HAM Kunstauktionen GmbH & Co. KG, Hitzelerstraße 2, 50968 Cologne, then VAN HAM is responsible for processing your personal data. You can reach our data protection manager at the contact details given above.

Legal basis for processing

The legal basis for processing your personal data, in particular, if applicable, your biometric data, is your consent pursuant to Art 6 para. 1 lit. a) DS-GMO, which you can revoke at any time without giving reasons.

Consignees

Only VAN HAM employees have access to your personal data. VAN HAM itself employs external service providers for the maintenance of its information technology, who may have access to your personal data within the scope of their activities. Your personal data will be stored on our VAN HAM servers at Hitzelerstraße 2, 50968 Cologne.

Cookies

Cookies are small text files. While you visit our website they are sent to your browser, where they are then stored. As an alternative to the use of cookies, information can also be stored in the local storage of your browser. Some functions of our website cannot be offered without the use of cookies or local storage (technically necessary cookies). Other cookies enable us to perform various analyses, enabling us, for example, to recognize your browser when you revisit our website or to transmit various information to us (non-essential cookies). With the help of cookies, we can, among other things, make our website more user-friendly and effective for you, for example by tracking your use of our website and determining your preferred settings (e.g. country and language settings). If third parties process information via cookies, they collect the information directly from your browser. Cookies do not cause any damage to your device. They cannot execute programs or contain viruses. We provide information about the respective services for which we use cookies in the individual processing procedures. You can find detailed information about the cookies used in the cookie settings or in the Consent Manager of this website.

Your rights

Under the conditions of the legal provisions of the General Data Protection Regulation (GDPR), you have the following rights as a data subject:

  • Access to information (according to art. 15 DSGVO) about the data stored about you, provided in informative detail about the processing of your data as well as a copy of the stored information;
  • Correction (according to art. 16 DSGVO) of incorrect or incomplete data stored by us;
  • Deletion (according to art. 17 DSGVO) of the data stored by us, as far as its processing is not necessary for the exercise of the right to freedom of expression and information, for the fulfillment of a legal obligation, for reasons of public interest or for the assertion, exercise or defense of legal claims;
  • Restriction of processing (according to art. 18 DSGVO), insofar as the accuracy of the data is in dispute, the processing is unlawful, we no longer need the data and you object to their deletion because you need them for the assertion, exercise or defense of legal claims or you have objected to the processing according to art. 21 DSGVO.
  • Data portability (according to art. 20 DSGVO), insofar as you have provided us with personal data within the scope of consent according to art. 6 para. 1 lit. a DSGVO or on the basis of a contract according to art. 6 para. 1 lit. b DSGVO and these have been processed by us with the help of automated procedures. You will receive your data in a structured, standard and machine-readable format or we will transfer the data directly to another responsible party, insofar as this is technically possible.
  • Objection (according to art. 21 DSGVO) to the processing of your personal data, insofar as the objection is carried out on the basis of art. 6 para. 1 lit. e, f DSGVO. There must be reasons for the objection that arise from your particular situation or it must be directed against direct advertising. The right to object does not exist if overriding compelling legitimate grounds for the processing are demonstrated or the processing is carried out for the assertion, exercise or defense of legal claims. If the right to object does not exist for individual processing operations, there will be according information.
  • Revocation (according to art. 7 para. 3 DSGVO) of your given consent with future effect.
  • Complaint (according to art. 77 DSGVO) to a supervisory authority if you are of the opinion that the processing of your personal data violates the DSGVO. Generally, you can contact the supervisory authority of your usual place of residence, your place of work or our company headquarters.

Data processing in detail

In the following, we inform you about the individual processing operations, the scope and purpose of the data processing, the legal basis, the obligation to provide your data and the respective storage periods. An automated decision in individual cases, including profiling, does not occur.

Website provision

When you access and use our website, we collect your personal data, which your browser automatically transmits to our server. The following information is stored temporarily in a so-called log file:

  • IP address of the accessing computer
  • Date and time of access
  • Name and URL of the accessed file
  • Website from which the access was made (referrer URL)
  • Browser used and possibly the operating system of your computer, as well as the name of your access provider

Our website is not hosted by ourselves, but by a service provider who processes the aforementioned data on our behalf in accordance with art. 28 DSGVO for the purpose of providing the website.

The hoster is used for the purpose of fulfilling contractual obligations to our potential and existing customers ( art. 6 para. 1 lit. b DSGVO) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider ( art. 6 para. 1 lit. f DSGVO).

We employ the following hoster:

Bergnet GmbH
Feilenhauerstraße 6
51789 Lindlar
GERMANY

Contact form

Type and scope of processing

If you send us inquiries (e.g. via contact form, e-mail or telephone), we store all data resulting from this (e.g. name, e-mail address, subject of inquiry, etc.). We need this data to process your inquiry and to be able to answer follow-up questions. We do not distribute this data without your consent.

Purpose and legal basis

The processing of this data is performed according to art. 6 para. 1 lit. b DSGVO, if your request is related to the execution of a contract or is necessary for the execution of pre-contractual measures. Otherwise, the processing is based on our legitimate interest in the effective processing of requests addressed to us (art. 6 para. 1 lit. f DSGVO) or on your consent (art. 6 para. 1 lit. a DSGVO) if you have given it beforehand.

Storage period

The data you have entered in the contact form will remain with us until you request us to delete it, you revoke your consent to store it, or the purpose for storing the data no longer applies (e.g. after we have completed processing your inquiry). Mandatory legal provisions - in particular retention periods - remain unaffected.

Contact form for job applicants

Type and scope of processing

On our website, you have the option of submitting an application to us (e.g. by e-mail, post or via online application form).

Purpose and legal basis

We process the personal data of applicants in accordance with the legal requirements for the purpose of handling the application process and carrying out pre-contractual measures within the context of art. 6 para. 1 lit. b. DSGVO and § 26 BDSG according to German law (initiation of an employment relationship) and - if you have given your consent - art. 6 para. 1 lit. a DSGVO. The consent can be revoked at any time. Your personal data will only be passed on within our company to persons involved in processing your application.

If the application is successful, the data you submitted will be stored in our data processing systems on the basis of section 26 BDSG and art. 6 para. 1 lit. b DSGVO for the purpose of implementing the employment relationship.

Storage period

Your data will be stored for a period of 6 months beyond the end of the application process. This is generally done to fulfill legal obligations or to defend against any claims arising from legal regulations. Subsequently, we are required to delete or anonymize your data. In such case, the data is only available to us as so-called metadata without direct personal reference for statistical evaluations (for example, proportion of women or men in applications, number of applications per period, etc.).

If it is evident that the data will be required after the 6-month period has expired (e.g. due to an impending or pending legal dispute), the data will not be deleted until the purpose for continued storage no longer applies.

Inclusion in the pool of applicants

As part of the application process, we offer applicants the opportunity to be included in our "talent pool" for a period of 12 months on the basis of consent within the terms of art. 6 para. 1 lit. a. DS-GVO. The application documents in the talent pool will be processed solely in the context of future job offers and employee searches and will be destroyed at the latest after the deadline expires. Applicants are informed that their consent to inclusion in the talent pool is voluntary, has no influence on the current application process and that they can revoke this consent for the future at any time.

If you receive an offer of employment with us as part of the application process and accept this offer, we will store the personal data collected as part of the application process for at least the duration of the employment relationship.

Newsletter

On this website we offer you our newsletter. If you would like to subscribe, we need your e-mail address and other data that proves that we are in fact recieving your e-mail address and that you agree to subscribing to the newsletter. Beyond that, no personal data is collected unless you provide it voluntarily (e.g. name, telephone number, place of residence, etc.). 

When processing the data you provide when registering for the newsletter, we rely exclusively on your consent according to art. 6 para. 1 lit. a DS-GVO as legal basis. You can revoke your consent to the future processing and storage of your personal data at any time (e.g. via the "unsubscribe" link in the newsletter). We store your personal data, which you have provided for the purpose of receiving the newsletter, until you unsubscribe from the newsletter with us or the service provider who distributes it. This does not apply to data that we have stored from you for other purposes.

If you unsubscribe from the newsletter, your e-mail address will be stored by us or the service provider in a blacklist for an indefinite period of time. This is done to prevent future mailings to you. The data from the blacklist will be used exclusively for this purpose and will not be merged with other data. This is not only in your interest, but also in our legitimate interest according to art. 6 para. 1 lit. f DS-GVO to fulfill our legal obligations when sending newsletters. You can object to the storage if your personal interests outweigh our legitimate interest.

MailerLite

This website uses MailerLite for sending newsletters. The provider is UAB "MailerLite", J. Basanaviciaus 15, LT-03108 Vilnius, Lithuania.
MailerLite is a service that organizes and analyzes the sending of newsletters. Data that you enter to receive newsletters (e.g. your email address) is stored on MailerLite's servers.

Data analysis by MailerLite

MailerLite offers the possibility to review the performance of our newsletter. We can determine whether a newsletter was opened, which links were clicked on and which further actions were performed after opening/clicking on the newsletter, e.g. a purchase. With the help of MailerLite, we can analyze and evaluate our newsletter campaigns.

Furthermore, MailerLite offers the possibility to better adapt the newsletters to our target groups, by dividing the newsletter recipients according to different categories, such as age, gender or place of residence. If you are opposed to analysis by MailerLite, you can unsubscribe from the newsletter by clicking on a link. This link is available in every newsletter you receive.

You can get more information about MailerLite here: https://www.mailerlite.com/features 

Legal basis

The processing of the data is based on your consent ( art. 6 para. 1 lit. a DS-GVO). This consent can be withdrawn at any time. The legitimacy of the data processing operations already carried out remains unaffected by this.

The privacy policy of MailerLite can be found here: https://www.mailerlite.com/legal/privacy-policy  

Storage period

Data that you provide to us for the purpose of sending the newsletter will be stored by us or the newsletter service provider. This applies until you unsubscribe from the newsletter. Data that has been stored by us for other purposes remains unaffected by this.

If you unsubscribe from our newsletter, we may store your e-mail address in a blacklist. This way, we ensure that we do not send newsletters to people who have unsubscribed. The data from the blacklist will only be used for this purpose and will not be merged with other data. This serves your and our interest ( art. 6 para. 1 lit. f DS-GVO) with regard to compliance with the legal requirements when sending newsletters. The storage of your data in the blacklist is not limited in time. You have the right to object to the storage of data if your interest outweighs our legitimate interest.

Order processing

To ensure that personal data is processed according to our specifications and in compliance with the DS-GVO, we have concluded an order processing agreement (AVV) with the provider.


Registration of a user account

Type and scope of processing

For the use of certain areas of our website, you have the option to register for a user account. The information collected during registration via the required fields of the entry form is necessary for the provision of access to the user account. In addition, you may voluntarily provide additional information for supplementary (convenience) functions.

For the registration of a user account, your personal data will be disclosed exclusively in accordance with this privacy policy declaration.

Purpose and legal basis

We process your data for the purpose of providing a user account to fulfill a contract with you according to art. 6 para. 1 lit. b DSGVO.

Furthermore, the processing of additional voluntarily provided information for the purpose of providing further (comfort) functions is based on your consent according to art. 6 para. 1 lit. a DSGVO. By deactivating the functions or by deleting the voluntary information in the user account, you can declare your revocation at any time with effect for the future according to art. 7 para. 3 DSGVO.

Storage period

We store your personal data in the context of providing the user account as long as you are registered to our site. After deletion of the user account, further storage of your data will only take place if there are legal storage obligations (e.g. tax and commercial law).

Registration of a customer account

Processing of customer and contract data

We collect, process and use your personal data only insofar as they are necessary for the establishment, modification or execution of a legal transaction. This is done for the fulfillment of a contract or pre-contractual measures according to art. 6 para. 1 lit. b DSGVO.
The collected customer data will be deleted after the completion of the assignment or the termination of the business relationship. Legal retention periods remain unaffected.

When placing an order in our shop, we may initially collect the following data:

  • title, first name, last name,
  • a valid e-mail address,
  • address
  • telephone number (landline and/or mobile)

The collection of this data is done,

  • so that we are able to identify you as our customer;
  • so that we are able to process, fulfill and handle your order;
  • so that we are able to correspond with you;
  • for invoicing purposes;
  • so that we are able to process any liability claims that may exist, as well as to assert any claims against you;
  • so that we are able to ensure the technical administration of our website;
  • so that we are able to manage our customer data

To prevent unauthorized access by third parties to your personal data, especially financial data, the ordering process is encrypted using TLS technology.

Data Transmission upon Contract Conclusion for Online Shops, Retailers and Shipping of Goods

We only transfer personal data to third parties if this is necessary for the execution of the contract, for example to the companies entrusted with the delivery of the goods or the credit institution commissioned with the handling of payments. A further transmission of the data does not take place or only if you have explicitly agreed to the transmission.

The basis for the data processing is the fulfillment of a contract or pre-contractual measures according to art. 6 para. 1 lit. b DSGVO.

Credit checks

In the case of a purchase on invoice or any other method of payment for which we provide advance payment, we may carry out a credit check (scoring). For this purpose, we transmit your entered data (e.g. name, address, age or bank data) to a credit agency. Based on this data, the probability of a payment default is determined. In the event of an excessive risk of non-payment, we may refuse the payment method in question.

The basis for data processing is the fulfillment of a contract or pre-contractual measures according to art. 6 para. 1 lit. b DSGVO, as well as the prevention of payment defaults (legitimate interest according to art. 6 para. 1 lit. f DSGVO). If you have previously given your consent to data processing, the processing of your data will take place solely on the basis of art. 6 para. 1 lit. a DS-GVO; the consent can be revoked at any time.

Payment services

We integrate third-party payment services on our website. When you make a purchase from us, your payment data (e.g. name, payment amount, account details, credit card number) is processed by the payment service provider for the purpose of payment processing. The respective contract and data protection provisions of the respective providers apply. The basis for the data processing is the fulfillment of a contract or pre-contractual measures according to art. 6 para. 1 lit. b DSGVO as well as the interest in a payment process that is as smooth, convenient and secure as possible (art. 6 para. 1 lit. f DSGVO). If you have previously given your consent to data processing, the processing of your data will take place solely on the basis of art. 6 para. 1 lit. a DS-GVO; the consent can be revoked at any time.

We use the following payment service providers:

Concardis GmbH, Helfmann-Park 7, 65760 Eschborn. For more information on data processing at Concardis, please visit www.concardis.com/datenschutz.

Presence on social media platforms

Data processing by social networks

We operate publicly accessible profiles on social networks. The social networks used by us can be found below in detail.

Social networks such as Facebook, Twitter, etc. can generally analyze your user behavior extensively. By visiting our social media presences, the following data protection-relevant processing operations are initiated:

If you are logged into your social media account and visit our profile, the operator of said social media can track your visit. Independently of this, the operator may also process your data (e.g. IP address) under certain circumstances if you are not logged into your account or you do not have an account at all.
The operator summarizes this data in user profiles, in which your preferences and interests are stored. These profiles are used for the placement of personalized advertisements inside and outside the respective social media presence. If you have an account with the respective social network, the personalized advertisements may be displayed on all devices on which you are or were logged in.

Depending on the platform, further processing operations may be carried out by the operators of the social media portals, over which we have no control. For details, please refer to the terms of use and data protection provisions of the respective social media portals.

Legal Basis

Our social media appearances are designed to ensure the widest possible presence for us on the Internet. This is a legitimate interest within the meaning of art. 6 para. 1 lit. f GDPR. The analysis processes initiated by the social networks may be based on different legal bases, which must be specified by the operators of the social networks.

Responsible Party and Assertion of Rights

If you visit one of our social media sites (e.g. Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during this visit. Principally, you can assert your rights (information, correction, deletion, restriction of processing, data transferability and complaint) both against us and against the operator of the respective social media portal (e.g. against Facebook).

Please note that despite the joint responsibility with the social media portal operators, we do not have full influence on the data processing procedures of the social media portals. Our possibilities are largely determined by the corporate policy of the respective provider.

Storage Period

The data collected directly by us via our social media presence will be deleted from our systems as soon as the purpose for storing them no longer applies, you request us to delete them, revoke your consent to storage or the purpose for storing the data no longer applies. Mandatory legal provisions - in particular retention periods - remain unaffected.

We have no influence on the storage period of your data, which is stored by the operators of social networks for their own purposes. For details, please contact the operators of the social networks directly (e.g. in their privacy policy, see below). 

Facebook page

We have a profile on Facebook. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. The data collected is also transferred to the USA and other countries. We have entered into a Joint Processing Agreement (Controller Addendum) with Facebook, which specifies which data processing operations we or Facebook are responsible for. You can view this agreement by clicking on the following link: https://www.facebook.com/legal/terms/page_controller_addendum

You can adjust your advertising settings independently on your user account. To do so, click on the following link to log in: www.facebook.com/settings.


Data transfer to the USA is based on the standard contractual clauses of the EU Commission. For details, please click following link: www.facebook.com/legal/EU_data_transfer_addendum  and

https://de-de.facebook.com/help/566994660333381 

More information on data processing by Facebook can be found at https://www.facebook.com/about/privacy/ 

Instagram page

We have a profile on Instagram. The provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. For details, please click following link: https://www.facebook.com/legal/EU_data_transfer_addendum, https://help.instagram.com/519522125107875 and https://de-de.facebook.com/help/566994660333381 
For details on their handling of your personal data, please refer to Instagram's privacy policy: https://help.instagram.com/519522125107875 

Twitter page

We use the short message service Twitter. The provider is Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland.
You can independently adjust your Twitter privacy settings in your user account. To do so, click on the following link and log in: https://twitter.com/personalization 
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. For details, please click following link:: https://gdpr.twitter.com/en/controller-to-controller-transfers.html 
For details, please refer to Twitter's privacy policy: https://twitter.com/de/privacy 

LinkedIn page

We have a profile on LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn uses advertising cookies.

If you would like to disable the LinkedIn advertising cookies, please use the following link: www.linkedin.com/psettings/guest-controls/retargeting-opt-out. 


Data transfer to the USA is based on the standard contractual clauses of the EU Commission. For details, please click following link: www.linkedin.com/legal/l/dpa and

https://www.linkedin.com/legal/l/eu-sccs 

For details on their handling of your personal data, please refer to LinkedIn's privacy policy: https://www.linkedin.com/legal/privacy-policy 

YouTube

We have a profile on YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. For details on how they handle your personal data, please refer to YouTube's privacy policy: https://policies.google.com/privacy?hl=de 

Pinterest

We have a profile on Pinterest. The operator is Pinterest Europe Ltd, Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland. For details on their handling of your personal data, please refer to Pinterest's privacy policy: https://policy.pinterest.com/de/privacy-policy 

Discord

We have a Discord channel. The operator is Discord Inc, De Haro Street #200 San Francisco, CA 94107, USA. You can find more information on data protection at https://discord.com/privacy 

Video conferencing

Data processing

To communicate with our customers, we use online conferencing tools. The tools we use are listed in detail below. When you communicate with us via video or audio conference, your personal data is collected and processed by us and by the provider of the respective tool. The tools collect the data you provide, including your email address and phone number. They also process, the duration of the conference, when you joined the conference, number of participants and other metadata.

In addition, the provider of the tool processes all technical data required to run the conference. This specifically includes: IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or speaker, and connection type. As you share content during the use of a conferencing tool, it will be stored on the providers' servers. This includes cloud recordings, chat messages, voice messages, as well as photos and videos that you share while using this service.

Please note that we do not have full control over the data processing operations of the tools used. For more information on data processing by the conference tools, please refer to the privacy statements of the respective tools used.

Purpose and Legal Basis

The conference tools are used to communicate with prospective or existing contractual partners or to offer certain services to our customers (art. 6 para. 1 sentence 1 lit. b GDPR). Furthermore, the use of the tools serves to generally simplify and accelerate communication with us or our company (legitimate interest in the sense of art. 6 para. 1 lit. f GDPR). If you have previously given your consent to data processing, the processing of your data will take place solely on the basis of art. 6 para. 1 lit. a DS-GVO; the consent can be revoked at any time.

Storage Period

The data collected directly by us via the video and conference tools will be deleted from our systems as soon as you request us to delete it, revoke your consent to storage or the purpose for which the data was stored no longer applies. Stored cookies remain on your end device until you delete them. Mandatory legal retention periods remain unaffected.

We have no influence on the storage period of your data, which is stored by the operators of the conference tools for their own purposes. Please contact the operators of the conference tools directly for details.

We use the following video conferencing tools:

TeamViewer

We use TeamViewer. The provider is TeamViewer Germany GmbH, Jahnstr. 30, 73037 Göppingen. For details on data processing, please refer to TeamViewer's privacy policy: https://www.teamviewer.com/de/datenschutzerklaerung/ 

Order processing

To ensure that personal data is processed according to our specifications and in compliance with the DS-GVO, we have concluded an order processing agreement (AVV) with the provider.

Cookiebot

Type and scope of processing

Our website uses the consent-technology of Cookiebot to obtain your consent to the storage of certain cookies on your terminal or to the use of certain technologies in order to document this in a manner that complies with data protection laws. The provider of this technology is Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark (hereinafter "Cookiebot").

When you enter our website, a connection is established to Cookiebot's servers to obtain your consents and other declarations regarding cookie use. Cookiebot then stores a cookie in your browser to determine whether you have given or revoked your consent.

Purpose and legal basis

Cookiebot is used to obtain the legally required consent for the use of cookies. The legal basis for this is art. 6 para. 1 lit. c DSGVO.

Storage period

The data collected this way is stored until you request us to delete it, delete the Cookiebot cookie yourself or the purpose for storing the data no longer applies. Mandatory legal storage obligations remain unaffected.

Order processing

We have concluded an order processing agreement (AVV) with the provider named above. This is a contract required by data protection law, which ensures that this provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the DSGVO.

Cookiebot CDN

Type and scope of processing

We use Cookiebot CDN to provide the content of our website in accordance with the regulations. Cookiebot CDN is a service provided by Cybot A/S, which acts as a Content Delivery Network (CDN) on our website, to ensure the functionality of other Cybot A/S services. For said services, you will find a separate section in this Privacy Policy. In this section, we will solely discuss the use of the CDN.

A CDN helps to provide content within our online service, in particular files such as graphics or scripts, more quickly. This is done with the help of regionally or internationally distributed servers. When you access this content, you establish a connection to servers of Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark, whereby your IP address and possibly browser data such as your user agent are transmitted. This data is processed solely for the purposes mentioned above and to maintain the security and functionality of Cookiebot CDN.

Purpose and legal basis

The use of the Content Delivery Network is based on our legitimate interests, i.e. interest in a secure and efficient provision as well as the optimization of our online offer according to art. 6 para. 1 lit. f. DSGVO.

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by Cybot A/S. Further information can be found in the privacy policy of Cookiebot CDN: https://www.cookiebot.com/de/privacy-policy/ 

Facebook Pixel

Type and scope of processing

We use the Facebook Pixel on this website, which is offered by Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.
The Facebook Pixel allows us to analyze the behavior of our website visitors when they are redirected to our website by clicking on a Facebook ad. We use this data to measure the success of our ads on Facebook and to optimize them. For this purpose, we as the website operator, only receive anonymized data, so that we cannot identify you as a user.

Facebook, on the other hand, processes the data in a way that assigns it to a specific user and then uses it for Facebook's own advertising purposes. This allows Facebook to display personalized advertisements on Facebook and other websites. We as the website operator have no influence on this. You can find more information on data processing in Facebook's privacy policy under https://www.facebook.com/about/privacy/ 

You can deactivate this Facebook "Custom Audiences" remarketing function in your personal account under https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. If you do not have an account with Facebook but would like to deactivate this advertising function, you can do so via the website of the European Interactive Digital Advertising Alliance at http://www.youronlinechoices.com/de/praferenzmanagement/

Purpose and legal basis

When using Facebook Pixel, we rely on art. 6 para. 1 lit. f DS-GVO as the legal basis, as we have a legitimate interest in optimizing our online presence and offers for you through social media platforms. If you have previously given your consent to data processing by Facebook Pixel on this website, the processing of your data takes place solely on the legal basis of art. 6 para. 1 lit. a DS-GVO. You can revoke your consent at any time.

The transfer of your personal data to the USA is based on the standard contractual clauses of the EU Commission. For more information, please visit www.facebook.com/legal/EU_data_transfer_addendum and

https://de-de.facebook.com/help/566994660333381 

If personal data is collected on this website through these services and passed on to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland bear joint responsibility for the processing of your personal data (art. 26 DS-GVO). In doing so, we are only responsible for the collection of your data and its transmission to Facebook, while Facebook is responsible for what happens to the data afterwards. The obligations we impose on each other in the context of joint responsibility are set out in a data sharing agreement. Please see the following link for the exact text of the agreement: https://www.facebook.com/legal/controller_addendum. Accordingly, we must provide you with information on data protection when using the Facebook tool and ensure that the tool is implemented on our website in a data protection-compliant manner.

Facebook itself is responsible for the security of its own products. If you wish to exercise your data subject rights and, for example, request information about your data processed by Facebook, you can contact Facebook directly. If you assert your rights as a data subject with us, we bear the responsibility of transmitting your request over to Facebook.

Fast Fonts

Nature and scope of processing

We use Fast Fonts from Monotype Imaging Inc, 600 Unicorn Park Drive, Woburn, Massachusetts 01801 USA, as a service to provide fonts for our online services. To obtain these fonts, you connect to servers of Monotype Imaging Inc. and your IP address is transmitted.

Purpose and legal basis

The use of Fast Fonts is based on our legitimate interests, i.e. interest in a uniform presentation as well as the optimization of our online service according to art. 6 para. 1 lit. f. DSGVO.

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by Monotype Imaging Inc. Further information can be found in the privacy policy of Fast Fonts: www.monotype.com/legal/privacy-policy. 

Google Analytics

Nature and scope of processing

On this website, we use services and functions provided by Google Analytics, which is offered by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
With the help of Google Analytics, we as the website operator can determine how our website is being used. As part of the analysis, we learn how often our website is accessed, how long visitors stay on the page and with which devices or systems they access the website. In addition, we may use Google Analytics to track your mouse movements and clicks. This information may be stored and used by Google to create a profile on you. In doing so, Google Analytics uses machine learning technologies to analyze and enhance your data. Furthermore, Google Analytics uses website visitor recognition technologies to analyze user behavior. The processing of the collected data usually takes place on Google servers in the USA.

Purpose and legal basis

When using Google Analytics, we rely on art. 6 para. 1 lit. f DS-GVO as the legal basis for the storage and analysis of personal data, as we have a legitimate interest in analyzing the use of our website. This allows us to optimize our online presence and offers for you. If you have previously given your consent to the processing of data by Google Analytics on this website, the processing of your data takes place solely on the legal basis of art. 6 para. 1 lit. a DS-GVO. You can revoke your consent at any time.
The transfer of your personal data to the USA is based on the standard contractual clauses of the EU Commission. You can find more information about this under https://privacy.google.com/businesses/controllerterms/mccs/ 

IP anonymization

When using Google Analytics on this website, we use a function in which Google shortens your IP address before it is transmitted to Google servers in the USA. This only happens if you are located in the European Union or in a country of the European Economic Area. Your full IP address will only be transmitted to the USA in the case of certain exceptions. It is then shortened there. Google Analytics uses this information to track how you use our website. Your IP address will not be merged with any other data held by Google.

Browser plugin

You can prevent Google from collecting and processing data about you. To do this, you must download the browser plugin from https://tools.google.com/dlpage/gaoptout?hl=de and install it on your browser.

For more information on the processing of user data, please consult the Google Analytics privacy policy at support.google.com/analytics/answer/6004245;

Order processing

When using Google Analytics, we comply with the strict regulations of the German data protection authorities, as we have concluded an order processing agreement with Google.

Storage duration

Google stores data linked to cookies, user IDs or advertising IDs. This data is stored for two months and then anonymized or deleted. You can find more information about the storage period or the deletion of your data under support.google.com/analytics/answer/7667196.

Google DoubleClick

Type and scope of processing

On this website, we use services and functions provided by Google DoubleClick, which is offered by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

With the help of Google DoubleClick, we can present our users with personalized advertisements in Google applications connected to DoubleClick, that are based on the users' interests. In order to present users with advertising that is relevant to them, Google DoubleClick must be able to identify users and associate them with the websites they visit, their clicks and other information about their behavior. For this purpose, Google DoubleClick uses cookies and user recognition technologies and creates pseudonymous profiles of users based on the data collected. 

You can deactivate this personalized advertising in your personal Google account. You can find more information on this under policies.google.com/technologies/ads and

https://adssettings.google.com/authenticated 

Purpose and legal basis

When using Google DoubleClick, we rely on art. 6 para. 1 lit. f DS-GVO as the legal basis, as we have a legitimate interest in analyzing the use of our website. This allows us to optimize our online presence and offers for you. If you have previously given your consent to data processing by Google DoubleClick on this website, the processing of your data takes place solely on the legal basis of art. 6 (1) lit. a DS-GVO. You can revoke your consent at any time.

Google Tag Manager

Nature and scope of processing

On this website, we use services and functions provided by Google Tag Manager, which is offered by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Tag Manager is a tool that allows us to use other tools on our website. It does not create user profiles, it does not store cookies, and it does not perform independent analytics. However, your IP address is collected and may be transmitted to the USA. Google Tag Manager itself is only used to manage those tools that are integrated by it.

Purpose and legal basis

In using Google Tag Manager on this website, we rely on art. 6 para. 1 lit. f DS-GVO as the legal basis, as we have a legitimate interest in implementing and directing tracking tools on this website easily and quickly. If you have previously given consent to data processing on this website by Google Tag Manager, the processing of your data takes place solely on the legal basis of art. 6 para. 1 lit. a DS-GVO. You can revoke your consent at any time.

YouTube video

Nature and scope of processing

This website embeds videos from YouTube. The operator is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Once you play a YouTube video on this website, a connection to their servers is established. The YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you also enable YouTube to associate your browsing behavior with your personal profile. You can prevent this by logging out of your account.

After starting a video, YouTube may store various cookies on your terminal device or use comparable recognition technologies, such as device fingerprinting. This allows YouTube to obtain information about visitors to this website. This information is used, among other things, to collect video statistics, improve the user experience and prevent fraud attempts.

Other data processing operations after the start of a video, over which we have no control, can not be ruled out.

For more information about data protection on YouTube, please see the privacy policy: https://policies.google.com/privacy?hl=de 

Purpose and legal basis

YouTube is used on the basis of our legitimate interest in an appealing presentation of our online offers ( art. 6 para. 1 lit. f DSGVO). If a respective consent has been requested, the data is processed exclusively on the basis of your consent according to art. 6 (1) lit. a DS-GVO. This consent can be revoked at any time.

Contact
Close

We are there for you

Call us at +49 (221) 92 58 62-0or write to us. We will process your request promptly and get back to you as soon as possible. If you would like us to call you back, please specify a time slot within our business hours (Mon-Fri 10 a.m. to 5 p.m.).

Contact page

* Required fields