This is an English translation of the data protection regulation. The German version is therefore valid without exception.

Privacy policy (Website)

Google Analytics IP anonymisation

We have implemented the IP address anonymisation of Google Analytics on this website. This function was developed by Google so that this website can comply with the applicable data protection regulations and recommendations of local data protection authorities if they prohibit the storage of the complete IP address. The anonymization or masking of the IP takes place as soon as the IP addresses arrive in the Google Analytics data collection network and before the data is saved or processed.

You can find more information on IP anonymisation at https://support.google.com/analytics/answer/2763052?hl=de.

Google Analytics reports on demographic characteristics and interests
We have enabled the advertising reporting features in Google Analytics. The demographic and interest reports include information about age, gender and interests. This allows us to get a better picture of our users without having to associate this data with individual people. You can learn more about the advertising features at https://support.google.com/analytics/answer/3450482?hl=de_AT&utm_id=ad.

You can stop using the activities and information in your Google Account by checking the box under “Advertising Settings” on https://adssettings.google.com/authenticated.

Google Analytics deactivation link

If you click on the following deactivation link, you can prevent Google from recording further visits to this website. Attention: Deleting cookies, using the incognito/private mode of your browser, or using another browser will result in data being collected again.

Google Analytics add-on for data processing

We have concluded a direct customer agreement with Google for the use of Google Analytics by accepting the “data processing addendum” in Google Analytics.

You can find more information about the data processing addendum for Google Analytics here: https://support.google.com/analytics/answer/3379636?hl=de&utm_id=ad

Newsletter Privacy Policy

When you register for our newsletter, you provide us with the personal data mentioned above and give us the right to contact you by e-mail. We use the data stored during the registration for the newsletter exclusively for our newsletter and do not pass them on.

If you unsubscribe from our newsletter – you will find the link for this at the bottom of every newsletter – we will delete all data stored with the registration for the newsletter.

MailChimp order data processing contract
We have concluded a contract with MailChimp for the processing of order data (Data Processing Addendum). This contract serves to protect your personal data and ensures that MailChimp complies with the applicable data protection regulations and does not pass on your personal data to third parties.

You can find more information about this contract on http://mailchimp.com/legal/forms/data-processing-agreement/.

Embedded Social Media Elements Privacy Policy
We integrate elements of social media services on our website to display pictures, videos and text.
When you visit pages that display these elements, data is transferred from your browser to the respective social media service and stored there. We have no access to this data.
The following links will take you to the pages of the respective social media services where it is explained how they handle your data:

Instagram Privacy Policy: https://help.instagram.com/519522125107875
For YouTube the Google Privacy Policy applies: https://policies.google.com/privacy?hl=de
Facebook data policy: https://www.facebook.com/about/privacy
Twitter privacy policy: https://twitter.com/de/privacy
Data protection
We have drawn up this data protection declaration (version 12.03.2020-211119076) in order to explain to you, in accordance with the provisions of the basic data protection regulation (EU) 2016/679, what information we collect, how we use data and what decision-making options you have as a visitor to this website.

Unfortunately, it is in the nature of things that these explanations sound very technical, but we have tried to describe the most important things as simply and clearly as possible.

Automatic data storage
Nowadays, when you visit websites, certain information is automatically created and stored, as is the case on this website.

When you visit our website as you are doing right now, our web server (the computer on which this website is stored) automatically stores data such as

the address (URL) of the web page accessed
Browser and browser version
the operating system used
the address (URL) of the previously visited page (referrer URL)
the host name and IP address of the device from which access is made
date and time
in files (web server log files).

Usually web server log files are stored for two weeks and then automatically deleted. We do not pass on this data, but cannot exclude the possibility that this data may be viewed in the event of illegal behaviour.

Cookies

Our website uses HTTP cookies to store user-specific data.
In the following we explain what cookies are and why they are used so that you can better understand the following privacy policy.

What exactly are cookies?
Whenever you surf the Internet, you use a browser. Common browsers include Chrome, Safari, Firefox, Internet Explorer, and Microsoft Edge. Most websites store small text files in your browser. These files are called cookies.

One thing is not to be dismissed: Cookies are really useful little helpers. Almost all websites use cookies. To be more precise, they are HTTP cookies, as there are also other cookies for other applications. HTTP cookies are small files that are stored on your computer by our website. These cookie files are automatically stored in the cookie folder, quasi the “brain” of your browser. A cookie consists of a name and a value. When defining a cookie, one or more attributes must also be specified.

Cookies store certain user data about you, such as language or personal page settings. When you visit our site again, your browser transmits the “user-related” information back to our site. Thanks to the cookies, our website knows who you are and offers you the settings you are used to. In some browsers, each cookie has its own file, in others, such as Firefox, all cookies are stored in a single file.

There are both first-party cookies and third-party cookies. First-party cookies are created directly by our site, third-party cookies are created by partner sites (e.g. Google Analytics). Each cookie is evaluated individually, as each cookie stores different data. The expiration time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, trojans or other “malware”. Cookies also cannot access information on your PC.

For example, cookie data may look like this:

Name: _ga
Value: GA1.2.1326744211.152211119076-6
Purpose: differentiation of website visitors
Expiry date: after 2 years

A browser should be able to support these minimum sizes:

At least 4096 bytes per cookie
At least 50 cookies per domain
At least 3000 cookies in total
What types of cookies are there?
The question of which cookies we use in particular depends on the services used and is clarified in the following sections of the privacy policy. At this point we would like to briefly discuss the different types of HTTP cookies.

You can distinguish between 4 types of cookies:

Essential cookies
These cookies are necessary to ensure basic functions of the website. For example, these cookies are needed when a user places a product in the shopping cart, then continues surfing on other pages and only proceeds to checkout later. These cookies do not delete the shopping cart, even if the user closes his browser window.

Useful cookies
These cookies collect information about user behavior and whether the user receives any error messages. In addition, these cookies also measure the loading time and the behaviour of the website with different browsers.

Target-oriented cookies
These cookies ensure a better user-friendliness. For example, entered locations, font sizes or form data are stored.

Advertising cookies
These cookies are also called targeting cookies. They are used to deliver customized advertising to the user. This can be very practical, but also very annoying.

Usually the first time you visit a website, you are asked which of these types of cookies you would like to allow. And of course this decision is also stored in a cookie.

How can I delete cookies?
How and whether you want to use cookies is up to you. Regardless of which service or website the cookies come from, you always have the option to delete, deactivate or only partially allow cookies. For example, you can block third-party cookies, but allow all other cookies.

If you want to find out which cookies are stored in your browser when you change or delete cookie settings, you can find this in your browser settings:

Chrome: Delete, activate and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

If you do not wish to receive cookies, you can set up your browser so that it always informs you when a cookie is to be set. This way you can decide for each individual cookie whether you want to allow it or not. The procedure varies from browser to browser. The best way to find the instructions is to search Google using the keyword “Delete Chrome cookies” or “Disable Chrome cookies” in the case of a Chrome browser.

What about my privacy?
Since 2009 there are the so-called “cookie guidelines”. This states that the storage of cookies requires your consent. Within the EU countries, however, there are still very different reactions to these guidelines. In Austria, however, this directive was implemented in § 96 para. 3 of the Telecommunications Act (TKG).

If you want to know more about cookies and are not afraid of technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments of the Internet Engineering Task Force (IETF) called “HTTP State Management Mechanism”.

Storage of personal data

Personal information that you submit to us electronically on this website, such as your name, email address, postal address or other personal information when submitting a form or comments on the blog, together with the time and IP address, will only be used by us for the purpose stated in each case, will be kept securely stored and will not be disclosed to third parties.

Thus, we will only use your personal data for communication with those visitors who expressly request contact and for processing the services and products offered on this website. We will not pass on your personal data without your consent, but we cannot exclude the possibility that this data may be viewed in the event of unlawful behaviour.

If you send us personal data by e-mail – thus off this website – we cannot guarantee secure transmission and protection of your data. We recommend that you never send confidential data by e-mail without encryption.

Rights according to the data protection basic regulation
In accordance with the provisions of the DSGVO and the Austrian Data Protection Act (DSG), you are basically entitled to the following rights:

Right of rectification (Article 16 DSGVO)
Right of deletion (“right to be forgotten”) (Article 17 DPA)
Right to restrict processing (Article 18 DSGVO)
Right of notification – obligation to notify in connection with the rectification or erasure of personal data or the restriction of processing (Article 19 DPA)
Right to data transferability (Article 20 DSGVO)
Right of objection (Article 21 DSGVO)
Right not to be subject to a decision based solely on automated processing, including profiling (Article 22 DPA)
If you believe that the processing of your data violates data protection law or that your data protection rights have otherwise been violated in any way, you can complain to the supervisory authority, which in Austria is the data protection authority, whose website you can find at https://www.dsb.gv.at/

Evaluation of visitor behaviour
In the following data protection declaration we inform you whether and how we evaluate data from your visit to this website. The evaluation of the collected data is usually anonymous and we cannot deduce your identity from your behaviour on this website.

You can find out more about how to object to this evaluation of visit data in the following data protection declaration.

TLS encryption with https

We use https to transmit data tap-proof on the Internet (data protection through technology design article 25 paragraph 1 DSGVO). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data. You can recognize the use of this data transmission security by the small lock symbol in the upper left corner of the browser and the use of the https scheme (instead of http) as part of our Internet address.

Google Fonts Privacy Policy

On our website we use Google Fonts. These are the “Google Fonts” of the company Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA).

To use Google fonts, you do not need to log in or set a password. Furthermore, no cookies are stored in your browser. The files (CSS, fonts) are requested via the Google domains fonts.googleapis.com and fonts.gstatic.com. According to Google, the requests for CSS and fonts are completely separate from all other Google services. If you have a Google Account, you don’t need to worry about your Google Account information being submitted to Google while using Google Fonts. Google tracks the use of CSS (Cascading Style Sheets) and the fonts used and stores this information securely. We’ll be taking a closer look at what exactly this data storage looks like.

What are Google Fonts?
Google Fonts (formerly Google Web Fonts) is a directory of over 800 fonts that Google LLC makes available to its users free of charge.

Many of these fonts are released under the SIL Open Font License, while others are released under the Apache license. Both are free software licenses.

Why do we use Google Fonts on our website?
With Google Fonts, we can use fonts on our own website, and we don’t have to upload them to our own server. Google Fonts is an important component to keep the quality of our website high. All Google Fonts are automatically optimized for the web and this saves data volume and is a great advantage especially for mobile devices. When you visit our site, the low file size ensures a fast loading time. Furthermore, Google Fonts are secure web fonts. Different image synthesis systems (rendering) in different browsers, operating systems and mobile devices can lead to errors. Such errors can visually distort some texts or entire web pages. Thanks to the fast Content Delivery Network (CDN) there are no cross-platform problems with Google Fonts. Google Fonts supports all major browsers (Google Chrome, Mozilla Firefox, Apple Safari, Opera) and works reliably on most modern mobile operating systems, including Android 2.2+ and iOS 4.2+ (iPhone, iPad, iPod). So we use Google Fonts to make our entire online service as beautiful and consistent as possible.

What data does Google store?
When you visit our website, the fonts are reloaded via a Google server. This external call transfers data to the Google servers. In this way Google also recognises that you or your IP address is visiting our website. The Google Fonts API was developed to reduce the use, storage and collection of end user data to what is necessary for the proper provision of fonts. By the way, API stands for “Application Programming Interface” and serves, among other things, as a data transmitter in the software sector.

Google Fonts stores CSS and font requests securely at Google and is therefore protected. The usage figures collected enable Google to determine how well the individual fonts are received. Google publishes the results on internal analysis pages, such as Google Analytics. Google also uses data from its own web crawler to determine which websites use Google fonts. This data is published in Google Fonts’ BigQuery database. Entrepreneurs and developers use the Google BigQuery web service to examine and move large amounts of data.

However, it should be noted that each Google Font request also automatically sends information such as language settings, IP address, browser version, browser screen resolution and browser name to the Google servers. Whether this data is also stored is not clearly ascertainable or is not clearly communicated by Google.

How long and where is the data stored?
Google stores requests for CSS assets for one day on your servers, which are mainly located outside the EU. This allows us to use the fonts with the help of a Google style sheet. A stylesheet is a style template that allows you to easily and quickly change, for example, the design or font of a web page.

The font files are stored by Google for one year. Google’s goal is to improve the loading time of web pages. If millions of web pages link to the same fonts, they are cached after the first visit and reappear immediately on all other web pages visited later. Sometimes Google updates font files to reduce file size, increase language coverage and improve design.

How can I delete my data or prevent data storage?
The data that Google stores for a day or a year cannot be easily deleted. The data is automatically sent to Google when you visit the site. To delete this data prematurely, you must contact Google support at https://support.google.com/?hl=de&tid=211119076. In this case you only prevent data storage if you do not visit our site.

Unlike other web fonts, Google allows us unlimited access to all fonts. This means that we have unlimited access to a sea of fonts and can thus get the most out of our website. You can find more information about Google Fonts and other questions at https://developers.google.com/fonts/faq?tid=211119076. Although Google addresses privacy issues there, it does not provide really detailed information about data storage. It’s relatively difficult to get really accurate information from Google about stored data.

You can also find out which data is basically collected by Google and what this data is used for at https://www.google.com/intl/de/policies/privacy/.

Google Fonts Local Privacy Policy

On our website we use Google Fonts of the company Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA). We have integrated the Google fonts locally, i.e. on our web server – not on the Google servers. This means there is no connection to Google servers and therefore no data transfer or storage.

What are Google Fonts?
In former times Google Fonts were also called Google Web Fonts. This is an interactive directory with over 800 fonts, which Google LLC provides free of charge. With Google Fonts you could use fonts without uploading them to your own server. But to prevent any information transfer to Google servers, we have downloaded the fonts to our server. In this way, we act in accordance with data protection laws and do not send any data to Google Fonts.

Unlike other web fonts, Google gives us unlimited access to all fonts. This means we have unlimited access to a sea of fonts and can thus get the most out of our website. More about Google Fonts and other questions can be found at https://developers.google.com/fonts/faq?tid=211119076.

Google Analytics Privacy Policy

On our website we use the analysis tracking tool Google Analytics (GA) from the American company Google LLC (1600 Amphitheatre Parkway Mountain View, CA 94043, USA). Google Analytics collects data about your actions on our website. For example, when you click on a link, that action is stored in a cookie and sent to Google Analytics. The reports we receive from Google Analytics enable us to better tailor our website and services to your needs. In the following we will go into more detail about the tracking tool and inform you in particular about what data is stored and how you can prevent this.

What is Google Analytics?
Google Analytics is a tracking tool that is used to analyse the data traffic on our website. To make Google Analytics work, a tracking code is built into the code of our website. When you visit our website, this code records various actions that you perform on our website. As soon as you leave our website, this data is sent to the Google Analytics servers and stored there.

Google processes the data and we receive reports about your user behaviour. These reports may include the following:

Target group reports: Through target group reports we get to know our users better and know more precisely who is interested in our service.
Advertising reports: Advertising reports help us to analyse and improve our online advertising.
Acquisition reports: Acquisition reports give us helpful information on how we can get more people interested in our service.
Behavioral Reports: Here we learn how you interact with our website. We can track which path you take on our site and which links you click on.
Conversion reports: Conversion is a process in which you receive a desired conversion based on a marketing message.

For example, when you go from being a mere website visitor to a buyer or newsletter subscriber. With the help of these reports, we learn more about how our marketing measures are received by you. This is how we want to increase our conversion rate.
Real-time reports: Here we always know immediately what is happening on our website. For example, we see how many users are reading this text.
Why do we use Google Analytics on our website?
Our goal with this website is clear: We want to offer you the best possible service. The statistics and data from Google Analytics help us to achieve this goal.

The statistically evaluated data give us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimise our site so that it is easier for interested people to find it on Google. On the other hand, the data helps us to better understand you as a visitor. We therefore know exactly what we need to improve on our website in order to offer you the best possible service. The data also helps us to carry out our advertising and marketing measures more individually and cost-effectively. After all, it only makes sense to show our products and services to people who are interested.

What data is stored by Google Analytics?
Google Analytics uses a tracking code to create a random, unique ID associated with your browser cookie. This allows Google Analytics to recognize you as a new user. The next time you visit our site, you will be recognized as a “returning” user. All collected data is stored together with this User ID. This is the only way to evaluate pseudonymous user profiles.

Through identifiers such as cookies and app instance IDs, your interactions on our website are measured. Interactions are all kinds of actions you perform on our website. If you also use other Google systems (such as a Google account), data generated by Google Analytics can be linked to third-party cookies. Google does not share any Google Analytics data unless we, as the website operator, authorise it. Exceptions may be made if required by law.

The following cookies are used by Google Analytics:

Name: _ga
Value:2.1326744211.152211119076-5
Purpose: By default, analytics.js uses the _ga cookie to store the user ID. Basically, it is used to differentiate between website visitors.
Expiration date: after 2 years

Name: _gid
Value:2.1687193234.152211119076-1
Purpose: The cookie is also used to differentiate between website visitors
Expiry date: after 24 hours

Name: gat_gtag_UA
Value: 1
Purpose: Used to lower the request rate. If Google Analytics is provided through the Google Tag Manager, this cookie is named dc_gtm .
Expiration date: after 1 minute

Name: AMP_TOKEN
Value: not specified
Purpose: The cookie has a token with which a user ID can be retrieved from the AMP Client ID Service. Other possible values indicate a logoff, a request or an error.
Expiration date: after 30 seconds up to one year

Name: __utma
Value:1564498958.1564498958.1564498958.1
Purpose: With this cookie you can track your behavior on the site and measure its performance. The cookie is updated each time information is sent to Google Analytics.
Expiration date: after 2 years

Name: _utmt Value: 1 Purpose: The cookie is used like _gat_gtag_UA to throttle the request rate.
Expiration date: after 10 minutes

Name: __utmb
Value:3.10.1564498958
Purpose: This cookie is used to determine new sessions. It is updated every time new data or information is sent to Google Analytics.
Expiration date: after 30 minutes

Name: __utmc
Value: 167421564
Purpose: This cookie is used to establish new sessions for returning visitors. This is a session cookie and is only stored until you close the browser.
Expiration date: After closing the browser

Name: __utmz
Value: m|utmccn=(referral)|utmcmd=referral|utmcct=/
Purpose: The cookie is used to identify the source of traffic to our website. This means that the cookie stores where you came to our website from. This could have been another site or an advertising campaign.
Expiry date: after 6 months

Name: __utmv
Value: not specified
Purpose: The cookie is used to store user-defined user data. It is always updated when information is sent to Google Analytics.
Expiration date: after 2 years

Note: This list cannot claim to be exhaustive, as Google constantly changes the choice of its cookies.

Here we show you an overview of the most important data collected with Google Analytics:

heat maps: Google creates so-called heat maps. With Heatmaps you can see exactly those areas that you click on. This way we get information where you are “on the road” on our site.

Session duration: Google defines session duration as the time you spend on our site without leaving the site. If you’ve been inactive for 20 minutes, the session ends automatically.

Bouncerate: We talk about a bouncer if you only look at one page on our website and then leave our website again.

Account creation: When you create an account or place an order on our website, Google Analytics collects this data.

IP address: The IP address is only shown in abbreviated form so that no clear assignment is possible.

location: The IP address can be used to determine the country and your approximate location. This process is also known as IP-location determination.

Technical Information: Technical information includes your browser type, your Internet provider or your screen resolution.

Source of origin: Google Analytics or we are of course also interested in which website or which advertisement brought you to our site.

Other data includes contact details, any ratings, media playback (e.g. if you play a video on our site), sharing content via social media or adding to your favourites. This list is not intended to be exhaustive and serves only as a general guide to data storage by Google Analytics.

How long and where is the data stored?
Google has distributed your servers around the world. Most servers are located in America and therefore your data is usually stored on American servers. Here you can find out exactly where the Google data centers are located: https://www.google.com/about/datacenters/inside/locations/?hl=de

Your data is distributed on different physical media. This has the advantage that the data can be retrieved more quickly and is better protected against manipulation. In every Google data centre there are appropriate emergency programs for your data. For example, if Google’s hardware fails or natural disasters paralyse servers, the risk of a service interruption at Google remains low.

Google Analytics has a standard retention period of 26 months for your user data. Then your user data will be deleted. However, we have the option of choosing the retention period for user data ourselves. We have five options for this:

Deletion after 14 months
Cancellation after 26 months
Cancellation after 38 months
Cancellation after 50 months
No automatic deletion
When the specified period has expired, the data is deleted once a month. This retention period applies to your data linked to cookies, user recognition and advertising IDs (e.g. cookies from the DoubleClick domain). Reporting results are based on aggregated data and are stored independently of user data. Aggregated data is a fusion of individual data into a larger entity.

How can I delete my data or prevent data storage?
According to the data protection law of the European Union, you have the right to obtain information about your data, to update, delete or restrict it. You can use the browser add-on to disable Google Analytics JavaScript (ga.js, analytics.js, dc.js) to prevent Google Analytics from using your data. You can download and install the browser add-on at https://tools.google.com/dlpage/gaoptout?hl=de. Please note that this add-on only disables the data collection by Google Analytics.

If you basically want to deactivate, delete or manage cookies (independently of Google Analytics), there are separate instructions for each browser:

Chrome: Delete, activate and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

Google Analytics is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. You can find more information about this at https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&tid=211119076. We hope we have been able to provide you with the most important information about data processing by Google Analytics. If you want to learn more about the tracking service, we recommend these two links: http://www.google.com/analytics/terms/de.html and https: https://support.google.com/analytics/answer/6004245?hl=de.

Google Analytics Google Signals Privacy Policy

We have activated the Google signals in Google Analytics. This updates existing Google Analytics features (advertising reports, remarketing, cross-device reports, and reports on interests and demographics) to provide aggregated and anonymous information about you, if you have allowed personalized ads in your Google Account.

What’s special about this is that it is cross-device tracking. This means that your data can be analyzed across devices. By enabling Google signals, data is collected and linked to your Google Account. Google can thus recognize, for example, if you view a product on our website via a smartphone and only later purchase the product via a laptop. By activating Google signals, we can launch cross-device remarketing campaigns that would otherwise not be possible in this form. Remarketing means that we can also show you our offer on other websites.

In Google Analytics, the Google signals also collect additional visitor data such as location, search history, YouTube history and data about your actions on our website. This allows Google to provide us with better advertising reports and more useful information about your interests and demographics. These include your age, what language you speak, where you live, and what gender you are. In addition, social criteria such as your occupation, marital status and income are also collected. All these characteristics help Google Analytics to define groups of people or target groups.

The reports also help us to better assess your behaviour, wishes and interests. This enables us to optimize and adapt our services and products for you. These data expire by default after 26 months. Please note that this data is only collected if you have allowed personalised advertising in your Google Account. It is always aggregated and anonymous data and never data about individual people. You can manage or delete this data in your Google Account.

Facebook Pixel Privacy Policy

We use the Facebook pixel of Facebook on our website. We have implemented a code for this on our website. The Facebook pixel is an excerpt from JavaScript code that loads a collection of functions that Facebook can use to track your user actions, provided you came to our website via Facebook ads. For example, when you purchase a product on our website, the Facebook pixel is triggered and stores your actions on our website in one or more cookies. These cookies enable Facebook to compare your user data (customer data such as IP address, user ID) with the data of your Facebook account. Then Facebook deletes this data again. The collected data is anonymous and not visible to us and can only be used for advertising purposes. If you yourself are a Facebook user and are logged in, your visit to our website is automatically assigned to your Facebook user account.

We only want to show our services or products to people who are really interested in them. With the help of Facebook pixels, our advertising measures can be better tailored to your wishes and interests. This way, Facebook users (provided they have allowed personalized advertising) can see suitable advertising. Furthermore, Facebook uses the collected data for analysis purposes and its own advertisements.

In the following, we show you those cookies that were set by integrating Facebook pixels on a test page. Please note that these are only sample cookies. Different cookies are set depending on the interaction on our website.

Name: _fbp
Value: fb.1.1568287647279.257405483-6211119076-7
Purpose: This cookie uses Facebook to display advertising products.
Expiration date: after 3 months

Name: fr
Value: 0aPf312HOS5Pboo2r..Bdeiuf…1.0.Bdeiuf.
Purpose: This cookie is used to ensure that Facebook pixels work properly.
Expiration date: after 3 months

Name: comment_author_50ae8267e2bdf1253ec1a5769f48e062211119076-3
Value: Name of the author
Purpose: This cookie stores the text and the name of a user, who for example leaves a comment.
Expiration date: after 12 months

Name: comment_author_url_50ae8267e2bdf1253ec1a5769f48e062
Value: https%3A%2F%2Fww.test page…%2F (URL of the author)
Purpose: This cookie stores the URL of the website, which the user enters in a text field on our website.
Expiration date: after 12 months

Name: comment_author_email_50ae8267e2bdf1253ec1a5769f48e062
Value: e-mail address of the author

Purpose: This cookie stores the user’s e-mail address, provided that the user has provided it on the website.
Expiration date: after 12 months

Note: The cookies mentioned above refer to individual user behaviour. Especially when using cookies, changes in Facebook can never be excluded.

If you are logged in to Facebook, you can change your settings for advertisements at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen yourself. If you are not a Facebook user, you can basically manage your usage-based online advertising at http://www.youronlinechoices.com/de/praferenzmanagement/. There you have the possibility to deactivate or activate providers.

If you would like to learn more about Facebook’s privacy policy, we recommend that you review the company’s own data policies at https://www.facebook.com/policy.php.

Facebook Automatic Advanced Matching Privacy Policy

We have also enabled Automatic Advanced Matching as part of the Facebook pixel feature. This pixel feature allows us to send hashed emails, name, gender, city, state, zip code and date of birth or phone number as additional information to Facebook, if you have provided us with this information. This activation enables us to tailor advertising campaigns on Facebook even more precisely to people who are interested in our services or products.

Google Tag Manager Privacy Policy

For our website we use the Google Tag Manager of the company Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA). This Tag Manager is one of many helpful marketing products from Google. The Google Tag Manager allows us to centrally install and manage code sections of various tracking tools that we use on our website.

In this privacy statement, we would like to explain to you in more detail what the Google Tag Manager does, why we use it and how we process data.

What is the Google Tag Manager?
The Google Tag Manager is an organization tool that allows us to centrally embed and manage website tags through a single interface. Tags are small sections of code that, for example, record (track) your activities on our website. For this purpose JavaScript code sections are inserted into the source code of our site. The tags often come from Google internal products such as Google Ads or Google Analytics, but tags from other companies can also be integrated and managed via the manager. Such tags perform different tasks. They can collect browser data, feed marketing tools with data, integrate buttons, set cookies and also track users across multiple websites.

Why do we use the Google Tag Manager for our website?
As they say: Organization is half the battle! And that of course also applies to the maintenance of our website. To make our website as good as possible for you and all people interested in our products and services, we need various tracking tools such as Google Analytics. The data collected by these tools show us what interests you most, where we can improve our services and to which people we should still show our offers. And for this tracking to work, we need to include appropriate JavaScript codes in our website. Basically we could integrate each code section of the individual tracking tools separately into our source code. However, this requires a relatively large amount of time and it’s easy to lose track. Therefore we use the Google Tag Manager. We can easily integrate the necessary scripts and manage them from one place. In addition, the Google Tag Manager offers an easy-to-use interface and no programming skills are required. This is how we manage to keep order in our tag jungle.

What data is stored by Google Tag Manager?
The Tag Manager itself is a domain that does not set cookies and does not store any data. It acts as a mere “administrator” of the implemented tags. The data captures the individual tags of the different web analysis tools. In the Google Tag Manager, the data is virtually routed to the individual tracking tools and not stored.

However, the situation is completely different with the tags of the various web analysis tools, such as Google Analytics, which are integrated. Depending on the analysis tool, different data about your web behaviour is usually collected, stored and processed with the help of cookies. For this purpose, please read our data protection texts on the individual analysis and tracking tools that we use on our website.

In the Tag Manager account settings, we have allowed Google to receive anonymized information from us. However, this only concerns the use and usage of our Tag Manager and not your data, which is stored via the code sections. We allow Google and others to receive selected data in anonymized form. We thus agree to the anonymous transfer of our website data. We were not able to find out exactly which summarized and anonymous data is forwarded – despite long research. In any case, Google will delete all information that could identify our website. Google combines this data with hundreds of other anonymous website data and creates user trends as part of benchmarking measures. Benchmarking involves comparing our own results with those of our competitors. Based on the collected information, processes can be optimized.

How long and where is the data stored?
When Google stores data, this data is stored on its own Google servers. These servers are distributed all over the world. Most of them are located in America. At https://www.google.com/about/datacenters/inside/locations/?hl=de you can find out exactly where the Google servers are located.

How long the individual tracking tools store data about you can be found in our individual privacy texts for each tool.

How can I delete my data or prevent data storage?
The Google Tag Manager itself does not set any cookies, but manages tags of different tracking websites. In our privacy policy for each tracking tool, you will find detailed information on how to delete or manage your data.

Google is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. You can find more information about this at https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&tid=211119076. If you would like to learn more about the Google Tag Manager, we recommend you read the FAQs at https://www.google.com/intl/de/tagmanager/faq.html.

MailChimp Privacy Policy

Like many other websites we use the services of the newsletter company MailChimp on our website. The operator of MailChimp is The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308 USA. Thanks to MailChimp, we can send you interesting news very easily via newsletter. With MailChimp we do not need to install anything and can still draw from a pool of really useful functions. In the following we will go into more detail about this e-mail marketing service and inform you about the most important data protection aspects.

What is MailChimp?
MailChimp is a cloud based newsletter management service. “Cloudbased” means that we do not have to install MailChimp on our own computer or server. Instead, we use the service via an IT infrastructure – which is available via the Internet – on an external server. This way of using a software is also called SaaS (Software as a Service).

With MailChimp we can choose from a wide range of different types of email. Depending on what we want to achieve with our newsletter, we can run single campaigns, regular campaigns, autoresponders (automatic email), A/B tests, RSS campaigns (sending in predefined time and frequency) and follow-up campaigns.

Why do we use MailChimp on our website?
Basically we use a newsletter service to keep in touch with you. We want to tell you what’s new with us or what attractive offers we have in our program right now. For our marketing activities we always look for the simplest and best solutions. And this is why we have chosen the newsletter management service of Mailchimp. Although the software is very easy to use, it offers a large number of helpful features. So we can create interesting and beautiful newsletters in a short time. Due to the offered design templates we can create each newsletter individually and thanks to the “Responsive Design” our content will be displayed legibly and beautifully on your smartphone (or any other mobile device).

Through tools such as the A/B test or the extensive analysis options, we see very quickly how our newsletters are received by you. This enables us to react if necessary and improve our offer or services.

Another advantage is the “cloud system” of Mailchimp. The data is not stored and processed directly on our server. We can retrieve the data from external servers and thus save our storage space.

In addition, the maintenance effort is significantly reduced.

Which data is stored by MailChimp?
The Rocket Science Group LLC (MailChimp) maintains online platforms that allow us to contact you (if you have subscribed to our newsletter). If you become a subscriber to our newsletter via our website, you confirm your membership in an e-mail list of MailChimp by e-mail. To enable MailChimp to prove that you have registered with the “list provider”, the date of registration and your IP address will be saved. Furthermore MailChimp stores your e-mail address, your name, the physical address and demographic information, such as language or location.

This information is used to send you emails and to enable certain other MailChimp features (such as newsletter analysis).

MailChimp also shares information with third parties to provide better service. MailChimp also shares some information with third-party advertising partners to better understand your customers’ interests and concerns so that more relevant content and targeted advertising can be delivered.

Using so-called “web beacons” (small graphics in HTML emails), MailChimp can determine whether the email has arrived, whether it has been opened and whether links have been clicked on. All this information is stored on the MailChimp servers. Thus we get statistical evaluations and see exactly how well our newsletter was received by you. This way we can adapt our offer much better to your wishes and improve our service.

MailChimp may also use this information to improve our own service. This way, for example, the dispatch can be technically optimized or the location (country) of the recipients can be determined.

The following cookies can be set by Mailchimp. This is not a complete cookie list, but rather an exemplary selection:

Name: AVESTA_ENVIRONMENT
Value: Prod
Purpose: This cookie is necessary to provide the mailchimp services. It is always set when a user registers for a newsletter mailing list.
Expiration date: after session end

Name: ak_bmsc
Value: F1766FA98C9BB9DE4A39F70A9E5EEAB55F6517348A7000001211119076-3
Purpose: The cookie is used to distinguish a human from a bot. This enables secure reports to be generated about the use of a website.
Expiration date: after 2 hours

Name: bm_sv
Value: A5A322305B4401C2451FC22FFF547486~FEsKGvX8eovCwTeFTzb8//I3ak2Au…
Purpose: The cookie is from MasterPass Digital Wallet (a MasterCard service) and is used to offer a visitor a virtual payment transaction securely and easily. For this purpose, the user is identified anonymously on the website.
Expiration date: after 2 hours

Name: _abck
Value: 8D545C8CCA4C3A50579014C449B045211119076-9
Purpose: We could not find out more information about the purpose of this cookie
Expiry date: after one year

Sometimes it can happen that you open our newsletter for a better presentation via a given link. This is the case, for example, if your e-mail program does not work or the newsletter is not displayed correctly. The newsletter will then be displayed on a website of MailChimp. MailChimp also uses cookies (small text files that store data on your browser) on your own web pages. Personal data can be processed by MailChimp and its partners (e.g. Google Analytics). This data collection is the responsibility of MailChimp and we have no influence on it. In the “Cookie Statement” of MailChimp (under: https://mailchimp.com/legal/cookies/) you can read exactly how and why the company uses cookies.

How long and where is the data stored?
Since MailChimp is an American company, all collected data is also stored on American servers.

In principle, the data remains permanently stored on the servers of Mailchimp and is only deleted when you request it. You can have your contact deleted by us. This will permanently remove all your personal data for us and make them anonymous in the Mailchimp reports. However, you can also request the deletion of your data directly from Mailchimp. Then all your data will be removed there and we get a notification from MailChimp. After we receive the email, we have 30 days to delete your contact from all connected integrations.

How can I delete my data or prevent the data storage?
You can withdraw your consent to receive our newsletter at any time within the received e-mail by clicking on the link in the lower area.

If you have unsubscribed by clicking on the unsubscribe link, your data will be deleted from MailChimp.

If you reach a MailChimp website via a link in our newsletter and cookies are set in your browser, you can delete or deactivate these cookies at any time.

Depending on your browser, the deactivation or deletion works slightly different. The following instructions show how to manage cookies in your browser:

Chrome: Delete, enable and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

If you do not wish to receive cookies, you can set up your browser so that it always informs you when a cookie is to be set. This way you can decide for each individual cookie whether you want to allow it or not.

MailChimp is an active participant in the EU-U.S. Privacy Shield Framework which regulates the correct and secure transfer of personal data. You can find more information about this on https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&tid=211119076. You can learn more about the use of cookies with MailChimp on https://mailchimp.com/legal/cookies/, information about data protection with MailChimp (Privacy) can be found on https://mailchimp.com/legal/privacy/.

Google Ads (Google AdWords) Conversion Tracking Privacy Policy

We use Google Ads (formerly Google AdWords) as an online marketing measure to advertise our products and services. In this way we want to make more people aware of the high quality of our offers on the Internet. As part of our Google Ads advertising efforts, we use conversion tracking on our website from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). This free tracking tool allows us to better tailor our advertising offerings to your interests and needs. In the following articles, we will discuss in more detail why we use conversion tracking, what data is stored and how you can prevent this data storage.

What is Google Ads Conversion Tracking?
Google Ads (formerly Google AdWords) is Google LLC’s proprietary online advertising system. We are convinced of the quality of our offer and want as many people as possible to get to know our website. In the online area Google Ads offers the best platform for this. Of course, we also want to get an exact overview of the cost-benefit factor of our advertising campaigns. Therefore we use the conversion tracking tool of Google Ads.

But what is a conversion actually? A conversion occurs when you go from being a purely interested website visitor to an acting visitor. This happens whenever you click on our ad and then perform another action, such as visiting our website. With Google’s conversion tracking tool, we record what happens after a user clicks on our Google Ads ad. For example, we can see if products are purchased, services are used or if users have signed up for our newsletter.

Why do we use Google Ads conversion tracking on our website?
We use Google Ads to make other websites aware of our offer. The goal is to ensure that our advertising campaigns really only reach those people who are interested in our offers. With the conversion tracking tool we see which keywords, ads, ad groups and campaigns lead to the desired customer actions. We see how many customers interact with our ads on a device and then perform a conversion. With this data we can calculate our cost-benefit factor, measure the success of individual advertising measures and consequently optimize our online marketing measures. Furthermore, we can use the data obtained to make our website more interesting for you and adapt our advertising offer even more individually to your needs.

Which data is stored by Google Ads Conversion Tracking?
We have integrated a conversion tracking tag or code snippet on our website in order to better analyse certain user actions. If you now click on one of our Google Ads ads, the “conversion” cookie from a Google domain is stored on your computer (usually in the browser) or mobile device. Cookies are small text files that store information on your computer.

Here are the data of the most important cookies for Google’s conversion tracking:

Name: Conversion
Value: EhMI_aySuoyv4gIVled3Ch0llweVGAEgt-mr6aXd7dYlSAGQ211119076-7

Purpose: This cookie stores every conversion you make on our site after you have come to us via a Google Ads.
Expiration date: after 3 months

Name: _gac
Value: 1.1558695989.EAIaIQobChMIiOmEgYO04gIVj5AYCh2CBAPrEAAYASAAEgIYQfD_BwE
Purpose: This is a classic Google Analytics cookie and is used to record various actions on our website.
Expiration date: after 3 months

Note: The _gac cookie only appears in connection with Google Analytics. The above list does not claim to be exhaustive, as Google also repeatedly uses other cookies for analytical evaluation.

As soon as you complete an action on our website, Google recognizes the cookie and saves your action as a so-called conversion. As long as you are surfing on our website and the cookie has not expired, we and Google recognize that you have found us through our Google Ads display. The cookie is read and sent back to Google Ads with the conversion data. It is also possible that other cookies are used to measure conversions. The conversion tracking of Google Ads can be further refined and improved using Google Analytics. For ads that Google displays in multiple locations on the web, our domain may set cookies named “__gads” or “_gac”. Since September 2017, various campaign information from analytics.js has been stored with the _gac cookie. The cookie saves this data as soon as you visit one of our pages for which Google Ads has set up automatic tagging. In contrast to cookies that are set for Google domains, Google can only read these conversion cookies if you are on our website. We do not collect or receive any personal data. We receive a report with statistical evaluations from Google. For example, we find out the total number of users who clicked on our advertisement and we see which advertising measures were well received.

How long and where is the data stored?
At this point we would like to point out that we have no influence on how Google uses the data collected. According to Google, the data is encrypted and stored on secure servers. In most cases, conversion cookies expire after 30 days and do not transmit any personal data. The cookies named “Conversion” and “_gac” (which is used in connection with Google Analytics) have an expiration date of 3 months.

How can I delete my data or prevent data storage?
You have the option not to participate in Google Ads conversion tracking. If you disable the Google Conversion Tracking cookie through your browser, you are blocking conversion tracking. In this case, you will not be included in the tracking tool’s statistics. You can change the cookie settings in your browser at any time. Each browser works slightly differently. Here you will find instructions on how to manage cookies in your browser:

Chrome: Delete, activate and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

If you do not wish to receive cookies, you can set up your browser so that it always informs you when a cookie is to be set. This way you can decide for each individual cookie whether you want to allow it or not. Downloading and installing this browser plug-in on https://support.google.com/ads/answer/7395996 will also deactivate all “advertising cookies”. Please note that by deactivating these cookies you do not prevent the advertising, but only personalized advertising.

As a result of the certification for the American-European data protection agreement “Privacy Shield”, the American company Google LLC must comply with the data protection laws applicable in the EU. If you would like to learn more about Google’s privacy policy, we recommend that you read Google’s general privacy policy: https://policies.google.com/privacy?hl=de.

YouTube Privacy Policy

We have included YouTube videos on our website. So we can present you interesting videos directly on our site. YouTube is a video portal, which is a subsidiary of Google LLC since 2006. The video portal is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit a page on our website that has an embedded YouTube video, your browser automatically connects to the servers of YouTube or Google.

Different data is transmitted (depending on the settings). Google is responsible for the entire data processing and Google’s data protection policy therefore also applies.

In the following we would like to explain to you in more detail which data is processed, why we have integrated YouTube videos and how you can manage or delete your data.

What is YouTube?
On YouTube, users can watch, rate, comment and upload videos for free. Over the last few years, YouTube has become one of the most important social media channels worldwide. To enable us to display videos on our website, YouTube provides a code snippet that we have built into our site.

Why do we use YouTube videos on our website?
YouTube is the video platform with the most visitors and the best content. We strive to provide you with the best possible user experience on our website. And of course interesting videos should not be missing. With the help of our embedded videos, we provide you with further helpful content in addition to our texts and images. In addition, the embedded videos make our website easier to find on the Google search engine. Even if we place ads via Google Ads, Google can – thanks to the data collected – really only show these ads to people who are interested in our offers.

What data does YouTube store?
When you visit one of our sites that has a YouTube video embedded, YouTube at least sets a cookie that stores your IP address and our URL. If you are logged in to your YouTube account, YouTube can associate your interactions on our site with your profile, usually using cookies. This includes information such as session duration, bounce rate, approximate location, technical information such as browser type, screen resolution, or your Internet service provider. Other information may include contact information, any ratings, sharing content through social media, or adding to your favorites on YouTube.

If you’re not signed in to a Google Account or a YouTube account, Google stores data with a unique identifier associated with your device, browser, or app. For example, your preferred language setting is preserved. But much interaction data can’t be stored because fewer cookies are set.

In the following list, we show cookies that were set in a test in the browser. On the one hand, we show cookies that are set without a logged in YouTube account. On the other hand we show cookies that are set with a registered account. The list cannot claim to be complete, because the user data always depends on the interactions on YouTube.

Name: YSC
Value: b9-CV6ojI5Y211119076-1
Purpose: This cookie registers a unique ID to store statistics of the video viewed.
Expiration date: after session end

Name: PREF
Value: f1=50000000
Purpose: This cookie also registers your unique ID. Google gets statistics about how you use YouTube videos on our website via PREF.
Expiration date: after 8 months

Name: GPS
Value: 1
Purpose: This cookie registers your unique ID on mobile devices to track your GPS location.
Expiration date: after 30 minutes

Name: VISITOR_INFO1_LIVE
Value: 95Chz8bagyU
Purpose: This cookie tries to estimate the bandwidth of the user on our websites (with built-in YouTube video).
Expiration date: after 8 months

Other cookies that are set when you are logged in with your YouTube account:

Name: APISID
Value: zILlvClZSkqGsSwI/AU1aZI6HY7211119076-
Purpose: This cookie is used to create a profile of your interests. The data is used for personalised advertisements.
Expiration date: after 2 years

Name: CONSENT
Value: YES+AT.de+20150628-20-0
Purpose: The cookie stores the status of a user’s consent to use various Google services. CONSENT is also used for security purposes, to verify users and protect user data from unauthorised attacks.
Expiration date: after 19 years

Name: HSID
Value: AcRwpgUik9Dveht0I
Purpose: This cookie is used to create a profile of your interests. This data helps us to display personalized advertising.
Expiration date: after 2 years

Name: LOGIN_INFO
Value: AFmmF2swRQIhALl6aL…
Purpose: Information about your login data is stored in this cookie.
Expiry date: after 2 years

Name: SAPISID
Value: 7oaPxoG-pZsJuuF5/AnUdDUIsJ9iJz2vdM
Purpose: This cookie works by uniquely identifying your browser and device. It is used to create a profile of your interests.
Expiration date: after 2 years

Name: SID
Value: oQfNKjAsI211119076-

Purpose: This cookie stores your Google Account ID and your last sign-in time in digitally signed and encrypted form.
Expiration date: after 2 years

Name: SIDCC
Value: AN0-TYuqub2JOcDTyL
Purpose: This cookie stores information about how you use the website and which advertisements you may have seen before visiting our site.
Expiration date: after 3 months

How long and where is the data stored?
The data that YouTube receives and processes from you is stored on Google’s servers. Most of these servers are located in America. You can see exactly where the Google data centres are located at https://www.google.com/about/datacenters/inside/locations/?hl=de. Your data is distributed across the servers. So the data can be retrieved faster and is better protected against manipulation.

Google stores the collected data for different lengths of time. Some data can be deleted at any time, others are automatically deleted after a limited time and some are stored by Google for a longer time. Some data (such as items from “My activity”, photos or documents, products) stored in your Google Account will remain stored until you delete them. Even if you’re not signed in to a Google Account, you can still delete some data associated with your device, browser, or app.

How can I delete my data or prevent it from being stored?
Generally, you can manually delete data in your Google Account. With the automatic deletion of location and activity data introduced in 2019, information is stored for either 3 or 18 months, depending on your decision, and then deleted.

Whether or not you have a Google Account, you can configure your browser to delete or disable Google cookies. This works in different ways depending on the browser you use. The following instructions show you how to manage cookies in your browser:

Chrome: Delete, enable and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

If you do not wish to receive cookies, you can set up your browser so that it always informs you when a cookie is to be set. This way you can decide for each individual cookie whether you want to allow it or not. Since YouTube is a subsidiary of Google, there is a common privacy policy. If you want to learn more about how we handle your information, we recommend you read the privacy policy at https://policies.google.com/privacy?hl=de.

Subscribe to YouTube Button Privacy Policy
We have integrated the YouTube Subscribe button on our website. You can usually recognize the button by the classic YouTube logo. The logo shows the words “Subscribe” or “YouTube” in white writing on a red background and the white “Play” symbol to the left. The button can also be shown in a different design.

Our YouTube channel always offers you funny, interesting or exciting videos. With the built-in “Subscribe Button” you can subscribe to our channel directly from our website and do not need to visit the YouTube website. We want to make it as easy as possible for you to access our extensive content. Please note that this allows YouTube to store and process data about you.

If you see a built-in subscription button on our site, YouTube – according to Google – sets at least one cookie. This cookie stores your IP address and our URL. It also allows YouTube to learn information about your browser, your approximate location and your default language. In our test, the following four cookies were set without being logged into YouTube:

Name: YSC
Value: b9-CV6ojI5211119076Y
Purpose: This cookie registers a unique ID to store statistics of the video viewed.
Expiration date: after session end

Name: PREF
Value: f1=50000000
Purpose: This cookie also registers your unique ID. Google gets statistics about how you use YouTube videos on our website via PREF.
Expiration date: after 8 months

Name: GPS
Value: 1
Purpose: This cookie registers your unique ID on mobile devices to track your GPS location.
Expiration date: after 30 minutes

Name: VISITOR_INFO1_LIVE
Value: 21111907695Chz8bagyU
Purpose: This cookie tries to estimate the bandwidth of the user on our websites (with built-in YouTube video).
Expiration date: after 8 months

Note: These cookies were set after a test and cannot claim to be complete.

If you are logged into your YouTube account, cookies allow YouTube to store many of your actions/interactions on our site and associate them with your YouTube account. This allows YouTube to obtain information such as how long you have been browsing our site, what type of browser you are using, what screen resolution you prefer, or what actions you perform.

YouTube uses this information to improve its own services and offers, and to provide analysis and statistics for advertisers (who use Google Ads).

Google reCAPTCHA Privacy Policy

Our primary goal is to secure and protect our website for you and for us in the best possible way. To ensure this, we use Google reCAPTCHA from Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA). With reCAPTCHA we can determine whether you are really a flesh and blood human being and not a robot or other spam software. By spam, we mean any unsolicited information sent to us electronically. With the classic CAPTCHAS, you usually had to solve text or image puzzles to check it. With Google’s reCAPTCHA we usually do not have to bother you with such puzzles. In most cases it is sufficient to simply check the box to confirm that you are not a bot. With the new Invisible reCAPTCHA version you don’t even have to check the box. How exactly this works and especially which data is used for this purpose, you will learn in the course of this privacy policy.

What is reCAPTCHA?
reCAPTCHA is a free captcha service from Google that protects websites from spam software and abuse by non-human visitors. This service is most commonly used when you fill out forms on the Internet. A captcha service is a kind of automatic turing test, which is supposed to ensure that an action on the internet is done by a human and not by a bot. In the classic Turing test (named after the computer scientist Alan Turing), a human makes the distinction between bot and human. With Captchas this is also done by the computer or a software program. Classical captchas work with small tasks, which are easy to solve for humans, but have considerable difficulties for machines. With reCAPTCHA, you no longer have to actively solve puzzles. The tool uses modern risk techniques to distinguish humans from bots. Here you only have to tick the text field “I am not a robot” or with Invisible reCAPTCHA even this is no longer necessary. With reCAPTCHA, a JavaScript element is integrated into the source code and then the tool runs in the background and analyzes your user behavior. From these user actions, the software calculates a so-called captcha score. Google uses this score to calculate the probability that you are a human being even before you enter the captcha. reCAPTCHA or captchas in general are always used when bots could manipulate or abuse certain actions (such as registrations, surveys, etc.).

Why do we use reCAPTCHA on our website?
We only want to welcome people of flesh and blood on our site. Bots or spam-software of different kinds may safely stay at home. That is why we do everything we can to protect ourselves and offer the best possible user-friendliness for you. For this reason we use Google reCAPTCHA from the company Google. So we can be pretty sure that we remain a “bot-free” website. Through the use of reCAPTCHA, data is transmitted to Google to determine whether you are really a human being. reCAPTCHA therefore serves the security of our website and, as a consequence, your security. For example, without reCAPTCHA, it could happen that a bot registers as many e-mail addresses as possible during registration, in order to “spam” forums or blogs with unwanted advertising content. With reCAPTCHA we can avoid such bot attacks.

Which data is stored by reCAPTCHA?
reCAPTCHA collects personal data from users to determine whether the actions on our website are really from humans. This means that the IP address and other data that Google requires for the reCAPTCHA service can be sent to Google. IP addresses are almost always truncated within the member states of the EU or other signatory states to the Agreement on the European Economic Area before the data lands on a server in the USA.

The IP address is not combined with any other data held by Google unless you are signed in to your Google Account while using reCAPTCHA. First, the reCAPTCHA algorithm checks whether Google cookies from other Google services (YouTube, Gmail, etc.) are already placed on your browser. Then reCAPTCHA sets an additional cookie in your browser and takes a snapshot of your browser window.

The following list of collected browser and user data does not claim to be complete. Rather, they are examples of data which, to our knowledge, are processed by Google.

Referrer URL (the address of the page the visitor comes from)
IP address (e.g. 256.123.123.1)
Information about the operating system (the software that enables your computer to operate. Known operating systems are Windows, Mac OS X or Linux)
Cookies (small text files that store data in your browser)
Mouse and keyboard behavior (every action you perform with the mouse or keyboard is saved)
Date and language settings (which language or date you have preset on your PC is stored)
All Javascript objects (JavaScript is a programming language that allows websites to adapt to the user. JavaScript objects can collect all kinds of data under one name)
Screen resolution (shows how many pixels the image consists of)
It is indisputable that Google uses and analyses this data even before you click on the “I am not a robot” checkbox. With the Invisible reCAPTCHA version even the ticking is omitted and the whole recognition process runs in the background. How much and which data Google stores exactly, you will not learn from Google in detail.

The following cookies are used by reCAPTCHA: Here we refer to the reCAPTCHA demo version of Google at https://www.google.com/recaptcha/api2/demo. All these cookies require a unique identifier for tracking purposes. Here is a list of cookies that Google reCAPTCHA has set on the demo version

Name: IDE
Value: WqTUmlnmv_qXyi_DGNPLESKnRNrpgXoy1K-pAZtAkMbHI-211119076-8
Purpose: This cookie is set by DoubleClick (also owns Google) to register and report the actions of a user on the website in handling advertisements. In this way the advertising effectiveness can be measured and appropriate optimisation measures can be taken. IDE is stored in browsers under the domain doubleclick.net.
Expiration date: after one year

Name: 1P_JAR
Value: 2019-5-14-12
Purpose: This cookie collects statistics on website usage and measures conversions. A conversion occurs, for example, when a user becomes a buyer. The cookie is also used to show users relevant advertisements. Furthermore, the cookie can be used to prevent a user from seeing the same ad more than once.
Expiration date: after one month

Name: ANID
Value: U7j1v3dZa2111190760xgZFmiqWppRWKOr
Purpose: We could not find out much information about this cookie. In Google’s privacy policy, the cookie is mentioned in connection with “advertising cookies” such as “DSID”, “FLC”, “AID”, “TAID”. ANID is stored at domain google.com.
Expiration date: after 9 months

Name: CONSENT
Value: YES+AT.de+20150628-20-0
Purpose: The cookie stores the status of a user’s consent to use various Google services. CONSENT is also used for security purposes, to verify users, to prevent fraudulent use of login information and to protect user data from unauthorized attacks.
Expiration date: after 19 years

Name: NID
Value: 0WmuWqy211119076zILzqV_nmt3sDXwPeM5Q
Purpose: NID is used by Google to adapt advertisements to your Google search. Google uses the cookie to “remember” your most commonly entered search queries or your previous interaction with ads. So you can always get customized ads. The cookie contains a unique ID in order to collect user preferences for advertising purposes.
Expiration date: after 6 months

Name: DV
Value: gEAABBCjJJMXcI0dSAAAANbqc211119076-4
Purpose: As soon as you have ticked the “I am not a robot” checkbox, this cookie is set. The cookie is used by Google Analytics for personalized advertising. DV collects information in anonymous form and is also used to make user distinctions.
Expiration date: after 10 minutes

Note: This list cannot claim to be complete, as experience has shown that Google changes its choice of cookies again and again.

How long and where is the data stored?
By inserting reCAPTCHA, data is transferred from you to the Google server. Where exactly this data is stored is not clearly shown by Google, even after repeated requests. Without having received confirmation from Google, it can be assumed that data such as mouse interaction, time spent on the website or language settings are stored on Google’s European or American servers. The IP address that your browser transmits to Google is generally not merged with other Google data from other Google services. However, if you are logged into your Google account while using the reCAPTCHA plug-in, the data will be merged. Google’s differing privacy policies apply.

How can I delete my data or prevent data storage?
If you do not want any data about you or your behaviour to be transmitted to Google, you must log out of Google completely and delete all Google cookies before you visit our website or use the reCAPTCHA software. In principle, the data is automatically transmitted to Google as soon as you visit our website. To delete this data again, you must contact Google support at https://support.google.com/?hl=de&tid=211119076.

So when you use our website, you agree that Google LLC and its representatives automatically collect, process and use data.

You can find out more about reCAPTCHA on Google’s web development page at https://developers.google.com/recaptcha/. Google will go into more detail about the technical development of reCAPTCHA, but you will not find detailed information about data storage and data protection issues there. A good overview of the basic use of data at Google can be found in the company’s own privacy policy at https://www.google.com/intl/de/policies/privacy/.

Vimeo privacy policy

We also use videos from the company Vimeo on our website. The video portal is operated by Vimeo LLC, 555 West 18th Street, New York, New York 10011, USA. With the help of a plug-in we can display interesting video material directly on our website. Certain data may be transferred from you to Vimeo. In this privacy statement, we explain what information we collect, why we use Vimeo, and how you can manage or stop your information or data transfer.

What is Vimeo?
Vimeo is a video platform that was founded in 2004 and since 2007 has enabled the streaming of videos in HD quality. Since 2015 it is also possible to stream in 4k Ultra HD. The use of the portal is free of charge, but it is also possible to publish paid content. In comparison to the market leader YouTube, Vimeo places priority on high quality content in good quality. On the one hand, the portal offers a lot of artistic content such as music videos and short films, on the other hand, it also offers interesting documentaries on various topics.

Why do we use Vimeo on our website?
The goal of our web presence is to provide you with the best possible content. And as easily accessible as possible. Only when we have achieved this are we satisfied with our service. The Vimeo video service helps us achieve this goal. Vimeo gives us the opportunity to present you with high-quality content directly on our website. Instead of just giving you a link to an interesting video, you can watch the video right here. This extends our service and makes it easier for you to access interesting content. Therefore we offer video content in addition to our texts and images.

What data is stored on Vimeo?
When you visit a web page on our website that has a Vimeo video embedded, your browser connects to the Vimeo servers. This results in a data transfer. This data is collected, stored and processed on the Vimeo servers. Regardless of whether you have a Vimeo account or not, Vimeo collects data about you. This includes your IP address, technical information about your browser type, operating system, or basic device information. In addition, Vimeo stores information about which website you use the Vimeo service and what actions (web activities) you perform on our website. These web activities include, for example, session duration, bounce rate, or which button you clicked on our website with the built-in Vimeo function. Vimeo can track and store these actions using cookies and similar technologies.

If you are logged in as a registered member of Vimeo, more data can usually be collected because more cookies may already have been set in your browser. In addition, your actions on our website are directly linked to your Vimeo account. To prevent this from happening, you must log out of Vimeo while “surfing” our website.

Below we show you the cookies that are set by Vimeo when you are on a website with integrated Vimeo functionality. This list is not exhaustive and assumes that you do not have a Vimeo account.

Name: player
Value: “”
Purpose: This cookie saves your settings before you play an embedded Vimeo video. This means that the next time you watch a Vimeo video, you will get your preferred settings back.
Expiration date: after one year

Name: vuid
Value: pl1046149876.614422590211119076-4
Purpose: This cookie collects information about your actions on websites that have embedded a Vimeo video.
Expiration date: after 2 years

Note: These two cookies are always set when you are on a web page with an embedded Vimeo video. When you view the video and click the button, for example to “share” or “link” the video, additional cookies are set. These are also third-party cookies such as _ga or _gat_UA-76641-8 from Google Analytics or _fbp from Facebook. Exactly which cookies are set here depends on your interaction with the video.

The following list shows a sample of possible cookies that are set when you interact with the Vimeo video:

Name: _abexps
Value: %5B%5D
Purpose: This Vimeo cookie helps Vimeo remember the settings you have made. This could be a preset language, region or user name, for example. In general, the cookie stores information about how you use Vimeo.
Expiration date: after one year

Name: continuous_play_v3
Value: 1
Purpose: This cookie is a first-party cookie from Vimeo The cookie collects information about how you use the Vimeo service. For example, the cookie stores when you pause/replay a video.
Expiration date: after one year

Name: _ga
Value: GA1.2.1522249635.1578401280211119076-7
Purpose: This cookie is a third-party cookie from Google. By default analytics.js uses the _ga cookie to store the user ID. Basically, it is used to differentiate between website visitors.
Expiration date: after 2 years

Name: _gcl_au
Value: 1.1.770887836.1578401279211119076-3
Purpose: This third-party cookie from Google AdSense will be used to improve the efficiency of ads on websites.
Expiration date: after 3 months

Name: _fbp
Value: fb.1.1578401280585.310434968
Purpose: This is a Facebook cookie. This cookie is used to display advertisements or promotional products from Facebook or other advertisers.
Expiration date: after 3 months

Vimeo uses this information, among other things, to improve its own service, to communicate with you and to implement its own targeted advertising measures. Vimeo emphasizes on your website that only first-party cookies (i.e. cookies from Vimeo itself) are used for embedded videos, as long as you do not interact with the video.

How long and where is the data stored?
Vimeo is headquartered in White Plains, New York State (USA). However, the services are offered worldwide. The company uses computer systems, databases and servers in the USA and in other countries. Your data can therefore also be stored and processed on servers in America. The data will remain stored by Vimeo until the company no longer has an economic reason to store it. Then the data will be deleted or made anonymous. Vimeo complies with the EU-U.S. Privacy Shield Framework and is therefore allowed to collect, use and transfer data from users in the EU to the USA.

How can I delete my data or prevent data storage?
You always have the option of managing cookies in your browser according to your wishes. For example, if you do not want Vimeo to set cookies and thus collect information about you, you can delete or deactivate cookies in your browser settings at any time. Depending on your browser, this works a little differently. Please note that after deactivating/deleting cookies, some functions may no longer be fully available. The following instructions show you how to manage or delete cookies in your browser.

Chrome: Delete, activate and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

Vimeo is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal information. For more information, please visit https://www.privacyshield.gov/participant?id=a2zt00000008V77AAE&status=Active. You can learn more about the use of cookies at Vimeo at https://vimeo.com/cookie_policy. Information about Vimeo’s privacy policy can be found at https://vimeo.com/privacy.

Privacy Policy (App)

Security and anonymity

Tablet Solutions GmbH (the operator of www.workheld.com/en and the WorkHeld application hereinafter referred to as “Tablet Solutions”), with headquarters at Rotensterngasse 5, 1020 Vienna, attaches the highest importance to the issue of security and does everything in its power to prevent unauthorized access to data entrusted by its users. Technical protective measures such as SSL encryption and firewalls, in combination with a differentiated system of access authorisations, are intended to guarantee the highest possible level of data security.

The data that is transferred to other users when using WorkHeld or other Tablet Solutions services is linked to the clear name chosen by the user.

General information

By accepting the offer to use the WorkHeld platform, the customer authorizes Tablet Solutions or third party service providers to collect, process and use the personal data of users in the name and on behalf of Tablet Solutions based on the following privacy policy.

The user has the right at any time to revoke, in whole or in part, his consent to the use of his data as described in detail below within the framework of the legal requirements. Furthermore, he has the right to object to the use of his anonymised or pseudonymised data.

For the revocation an e-mail to hallo@workheld.com, in which the customer names affected users accounts.

Security in Microsoft Azure West Europe – The cloud platform behind WorkHeld

The WorkHeld platform is operated on the Microsoft Cloud Service Azure West Europe. The Microsoft Azure West Europe Cloud servers are located exclusively in Europe.

Security and privacy are integrated into the Azure Platform from the very beginning: The Security Development Lifecycle (SDL) ensures security at every stage of development – from initial planning to the release of your solution. In addition, Azure is constantly updated to make your solutions even more secure. Operational Security Assurance (OSA) is based on SDL expertise and processes and provides a framework that enables secure operation of cloud-based services throughout their lifecycle. Thanks to Azure Security Center, Azure is the only public cloud platform that provides continuous monitoring of security and integrity. Further information can be found here: https://azure.microsoft.com/de-de/overview/trusted-cloud/

Collection, processing and use of personal data

A distinction is made between the following user groups: coordinators and technicians / workers. They differ with regard to the authorization to use some functions.

In order for Tablet Solutions to provide the services described in the General Terms of Use (GTU), it is necessary to collect, process and use personal data provided by the user during the registration process or when completing his/her profile.

Personal data are individual details about personal or factual circumstances of an identified or identifiable natural person.

In the course of registration the customer is requested to provide certain information. The following data is provided by the user during registration:

  • Salutatory address
  • Name (first and last name)
  • Company/Organization
  • Department
  • E-mail address
  • Username
  • Password (chosen by the user)
  • Billing address

A user’s profile will only be visible to those users who are connected to him/her through the customer’s organization. These are coordinators and technicians/workers within a company.

Creation of anonymous and pseudonymous user profiles for the optimization of services

With every access to www.workheld.com/en or the WorkHeld applications, usage data is transmitted and stored in log files. Tablet Solutions will use this data to perform or have performed analyses of the behavior of its users in the context of the use of its service and will create anonymized or pseudonymized usage profiles for this purpose. This data is stored within the scope of application of the EU data protection basic regulation. The sole purpose of creating user profiles is to make Tablet Solutions’ service more efficient, secure and user-friendly.

Die derzeit erhobenen Daten sind:

In addition, the mobile application also integrates the crash report service “HockeyApp” from Microsoft, which stores some more data in addition to the data already mentioned in the table above. These are:

Device-Type, Device-Id, Device-Language, Device-Network, und StoreRegion.

These data are not personal but can only be traced back to the device used. It is collected automatically to provide Tablet Solutions’ services to the user.

Earmarking

Personal data is primarily collected to enable users to use WorkHeld securely, smoothly, efficiently and personally. This data is primarily used for the following:

  • Providing the services requested by the user, adapting, measuring and improving the services of WorkHeld and its contents
  • Notification of services, news and promotional offers from WorkHeld (to the extent permitted by this Privacy Policy and subject to the necessary consents)
  • Prevent, detect and remedy potentially prohibited or illegal activities and enforce WorkHeld’s General Terms of Use, resolve disputes and resolve problems.

Transfer of personal data to third parties

Tablet Solutions does not sell, trade, or otherwise unauthorized transfer of personal data and information to third parties for commercial purposes. Tablet Solutions does not share users’ personal information with third parties unless the user has given permission or Tablet Solutions is required to do so by law or governmental regulation.

Tablet Solutions is expressly authorized by the users during registration by accepting the General Terms and Conditions of Use (GTC) to allow the customer’s company management access to the participant data at their request. The users will be informed of this.

Third parties are not external service providers of Tablet Solutions who provide services in the name and on behalf of Tablet Solutions. These include host providers, payment providers, collection agencies, etc.

Tablet Solutions uses the newsletter dispatch service Mailchimp or similar services for sending newsletters and information mails. Mailchimp processes the data exclusively for and on behalf of Tablet Solutions (service provider); no data processing is carried out by Mailchimp for its own purposes. When the user registers on the WorkHeld platform, the data which the user provides during registration (i.e. clear name and e-mail address) is transferred to Mailchimp and stored there. After the direct registration via the newsletter order the user will receive an e-mail to confirm his registration (“double opt-in”). If the registration for the newsletter takes place during the creation of a user account, the confirmation for the newsletter registration is part of the confirmation for the creation of the user account.

Mailchimp offers extensive analysis possibilities about how the newsletter is opened and used. More information about Mailchimp can be found here: https://mailchimp.com/legal/

WorkHeld Voice Assistant

The WorkHeld Voice Assistant uses the services of wit.ai. These are only active while using the voice assistant. The privacy policy of the wit.ai Services can be found here: https://wit.ai/privacy

Use of cookies

Tablet Solutions uses “cookies” for the purpose of providing its services. A cookie is a text file that is either temporarily stored in your computer’s memory (“session cookie”) or stored on your hard drive (“persistent” cookie). Cookies contain, for example, information about the user’s previous accesses to the corresponding server or information about which offers have been accessed so far. Cookies are not used to execute programs or load viruses onto your computer. Rather, the main purpose of cookies is to provide an offer that is specially tailored to the user and to make the use of the service as convenient as possible.

The user has the option of rejecting the setting of cookies at any time. This is usually done by selecting the appropriate option in the browser settings or by additional programs. Further details can be found in the help function of the browser used by the user. However, if the user decides to disable cookies, this may reduce the performance of the service and may have a negative impact on the use of Tablet Solutions’ services.

Information on stored data

The customer has the right to request information at any time about the data stored by Tablet Solutions for his or her organization, its origin, the purpose for which it is stored, and the recipient to whom the data is transferred. This information is free of charge and is provided in writing. The request for information must be made in writing, signed by the recipient and accompanied by a copy of his or her identity card, and sent to the following address

To Mr

Benjamin Schwärzler

Tablet Solutions GmbH

Rotensterngasse 5, 1020 Wien

Tel.: +43 1 9929028

E-Mail: hallo@workheld.com

Deletion and rectification of data

When the account is closed, the data associated with it will be deleted. Tablet Solutions stores the described data for as long as required by law. Tablet Solutions may therefore retain certain data even after the account has been closed. However, this does not restrict the right to close an account.

Review of personal data

In order to protect against persons who abuse Tablet Solutions’ internet services, Tablet Solutions uses various automated monitoring tools to randomly analyze activities on the platform and check user entries for plausibility, without Tablet Solutions having any legal obligation in this regard. Certain character strings or logins of different users, which appear to originate from a computer, for example, can lead to the blocking of suspicious activities.

Current state of technology

The user is aware that data protection for data transmissions on the Internet is not yet fully guaranteed according to the current state of technology. In particular, e-mails do not represent secure communication, as the “reading” of contents cannot be technically excluded. Tablet Solutions is not responsible for this; the user is responsible for the security of the data transmitted by him/her to the Internet.

Disclaimer

Tablet Solutions has no control over the privacy practices of the operators of external websites and third-party services and cannot be responsible for the privacy practices of the operators of linked sites. Tablet Solutions does not endorse the content of external websites or files linked by Tablet Solutions or users.

Newsletter

The user agrees that Tablet Solutions may send him/her product information about Tablet Solutions as part of the free and, if applicable, paid contractual relationship. Newsletters as well as information on products and services of partner companies will only be sent to the user if he/she requests. If the User no longer agrees to receive such newsletters, he/she may object to them at any time. At the end of each e-mail/newsletter there is a clear indication of the possibility of objection and a link to the objection. Furthermore, the user can also deactivate the newsletter delivery in the settings of the user account.