Privacy Policy

July 2022

Table of contents

I. Name and address of the responsible person

II. contact details of the data protection officer

III. General information on data processing

IV. Rights of the data subject

V. Provision of the website and creation of the log files

VI. use of cookies

VII. Newsletter

VIII. email contact

IX. Contact form

X. Application by email and application form

XI. Company appearances

XII. Use of company presences in job-oriented networks

XIII Hosting

XIV Geotargeting

XV. Registration

XVI Content Delivery Networks

XVII Plugins used

I. Name and address of the responsible person

The controller within the meaning of the General Data Protection Regulation (GDPR) and other data protection regulations is:

Revo Munich GmbH

Carl-Wery-Strasse 35

81793 Munich

Germany

+49 89 37799800

welcome@revo-club.com

www.revo-club.com

II. contact details of the data protection officer

The data protection officer of the controller is:

DataCo GmbH

Dachauer Street 65

80335 Munich

Germany

+49 89 7400 45840

www.dataguard.de

III. General information on data processing

1. scope of the processing of personal data

We process personal data of our users only insofar as this is necessary for the provision of a functional website and our content and services. The processing of personal data of our users is regularly only carried out with the consent of the user. An exception applies in those cases where obtaining prior consent is not possible for actual reasons and the processing of the data is required by legal regulations.

2. legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for processing operations involving personal data, Art. 6 (1) p. 1 lit. a DSGVO serves as the legal basis.

When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Article 6 (1) sentence 1 lit. b DSGVO serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.

Insofar as the processing of personal data is necessary for the fulfillment of a legal obligation to which our company is subject, Art. 6 (1) sentence 1 lit. c DSGVO serves as the legal basis.

In the event that vital interests of the data subject or another natural person make it necessary to process personal data, Article 6 (1) sentence 1 lit. d DSGVO serves as the legal basis.

If the processing is necessary to protect a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Article 6 (1) sentence 1 lit. f DSGVO serves as the legal basis for the processing.

3. data deletion and storage period

The personal data of the data subject shall be deleted or blocked as soon as the purpose of the storage no longer applies. Storage may also take place if this has been provided for by the European or national legislator in Union regulations, laws or other provisions to which the controller is subject. Blocking or deletion of data also takes place when a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or performance of a contract.

IV. Rights of the data subject

If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:

1. right to information

You may request confirmation from the controller as to whether personal data concerning you are being processed by him.

If there is such processing, you may request information from the controller about the following:

1. the purposes for which the personal data are processed;

2. the categories of personal data which are processed;

3. the recipients or categories of recipients to whom the personal data concerning you have been or will be disclosed;

4. the planned duration of the storage of the personal data concerning you or, if concrete information on this is not possible, criteria for determining the storage duration;

5. the existence of a right to rectification or erasure of personal data concerning you, a right to restriction of processing by the controller or a right to object to such processing;

6. the existence of a right of appeal to a supervisory authority;

7. any available information on the origin of the data, if the personal data are not collected from the data subject;

8. the existence of automated decision-making, including profiling, pursuant to Article 22(1) and (4) of the GDPR, and at least in these cases – meaningful information about the logic involved and the scope and intended effects of such processing for the data subject.

You have the right to request information about whether the personal data concerning you is transferred to a third country or to an international organization. In this context, you may request to be informed about the appropriate safeguards pursuant to Art. 46 DSGVO in connection with the transfer.

2. right to rectification

You have a right to rectification and/or completion vis-à-vis the controller, insofar as the processed personal data concerning you are inaccurate or incomplete. The controller shall carry out the rectification without undue delay.

3. right to restriction of processing

Under the following conditions, you may request the restriction of the processing of personal data concerning you:

o if you contest the accuracy of the personal data concerning you for a period enabling the controller to verify the accuracy of the personal data;

o the processing is unlawful and you object to the erasure of the personal data and request instead the restriction of the use of the personal data;

o the controller no longer needs the personal data for the purposes of processing, but you need them for the assertion, exercise or defense of legal claims, or

o if you have objected to the processing pursuant to Art. 21 (1) DSGVO and it has not yet been determined whether the controller’s legitimate grounds override your grounds.

Where the processing of personal data concerning you has been restricted, such data may be processed, with the exception of their storage, only with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or a Member State.

If the restriction of processing has been restricted in accordance with the above conditions, you will be informed by the controller before the restriction is lifted.

4. right to deletion

a) Obligation to delete

You may request the controller to delete the personal data concerning you without undue delay, and the controller is obliged to delete such data without undue delay, if one of the following reasons applies:

1. the personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.

2. you revoke your consent on which the processing was based pursuant to Art. 6 (1) p. 1 lit. a or Art. 9 (2) lit. a DSGVO and there is no other legal basis for the processing.

3. you object to the processing pursuant to Art. 21 (1) DSGVO and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21 (2) DSGVO.

4. the personal data concerning you have been processed unlawfully.

5. the deletion of the personal data concerning you is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.

6. the personal data concerning you has been collected in relation to information society services offered pursuant to Art. 8(1) DSGVO.

b) Information to third parties

If the controller has made the personal data concerning you public and is obliged to erase it pursuant to Article 17(1) of the GDPR, it shall take reasonable measures, including technical measures, having regard to the available technology and the cost of implementation, to inform data controllers which process the personal data that you, as the data subject, have requested that they erase all links to or copies or replications of such personal data.

c) Exceptions

The right to erasure does not exist insofar as the processing is necessary to

7. to exercise the right to freedom of expression and information.

8. for compliance with a legal obligation which requires processing under Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;

9. for reasons of public interest in the area of public health in accordance with Art. 9(2)(h) and (i) and Art. 9(3) DSGVO;

10. for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes pursuant to Article 89(1) of the GDPR, insofar as the right referred to in section a) is likely to render impossible or seriously prejudice the achievement of the purposes of such processing; or

11. to assert, exercise or defend legal claims.

5. right to information

If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to notify all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.

You have the right to be informed about these recipients by the data controller.

6. right to data portability

You have the right to receive the personal data concerning you that you have provided to the controller in a structured, commonly used and machine-readable format. You also have the right to transmit this data to another controller without hindrance from the controller to whom the personal data has been provided, provided that

12. the processing is based on consent pursuant to Art. 6 para. 1 sentence 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO or on a contract pursuant to Art. 6 para. 1 sentence 1 lit. b DSGVO and

13. the processing is carried out with the help of automated procedures.

In exercising this right, you also have the right to have the personal data concerning you transferred directly from one controller to another controller, insofar as this is technically feasible. The freedoms and rights of other persons must not be affected by this.

The right to data portability does not apply to processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

7. right of objection

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data relating to you which is carried out on the basis of Article 6 (1) sentence 1 lit. e or f DSGVO; this also applies to profiling based on these provisions.

The controller shall no longer process the personal data concerning you unless it can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or for the establishment, exercise or defense of legal claims.

If the personal data concerning you is processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; this also applies to profiling, insofar as it is related to such direct marketing.

If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for these purposes.

You have the possibility, in connection with the use of information society services – notwithstanding Directive 2002/58/EC – to exercise your right to object by means of automated procedures using technical specifications.

8. right to revoke the declaration of consent under data protection law

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

9. automated decision in individual cases including profiling

You have the right not to be subject to a decision based solely on automated processing – including profiling – which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision

14. is necessary for the conclusion or performance of a contract between you and the responsible party,

15. is permitted by legislation of the Union or the Member States to which the controller is subject and that legislation contains appropriate measures to safeguard your rights and freedoms and your legitimate interests; or

16. is done with your express consent.

However, these decisions may not be based on special categories of personal data pursuant to Article 9(1) of the GDPR, unless Article 9(2)(a) or (b) of the GDPR applies and appropriate measures have been taken to protect the rights and freedoms and your legitimate interests.

With regard to the cases referred to in 1. and 3. above, the controller shall take reasonable steps to safeguard the rights and freedoms of, and the legitimate interests of, the data subject, which shall include, at least, the right to obtain the intervention of a person on the part of the controller, to express his or her point of view and to contest the decision.

10. right to complain to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, workplace or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.

The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.

V. Provision of the website and creation of the log files

1. description and scope of data processing

Each time you visit our website, our system automatically collects data and information from the computer system of the calling computer.

The following data is collected:

o Information about the browser type and the version used

o The operating system of the user

o The Internet service provider of the user

o Date and time of access

o Websites from which the user’s system accesses our website

o Web pages that are called up by the user’s system via our website

This data is stored in the log files of our system. Not affected by this are the IP addresses of the user or other data that allow the data to be assigned to a user. A storage of this data together with other personal data of the user does not take place.

2. purpose of data processing

The storage in log files is done to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

These purposes are also our legitimate interest in data processing according to Art. 6 para. 1 p. 1 lit. f DSGVO.

3. legal basis for data processing

The legal basis for the temporary storage of the data is Art. 6 para. 1 p. 1 lit. f DSGVO.

4. duration of storage

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

5. possibility of objection and elimination

The collection of data for the provision of the website and the storage of the data in log files is mandatory for the operation of the website. Consequently, there is no possibility of objection on the part of the user.

Cookies use

1. description and scope of data processing

Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user’s computer system. When a user accesses a website, a cookie may be stored on the user’s operating system. This cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again.

We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change.

The following data is stored and transmitted in the cookies:

o Language settings

o Log-in information

We also use cookies on our website that enable an analysis of the user’s surfing behavior.

In this way, the following data can be transmitted:

o Entered search terms

o Frequency of page views

o Use of website functions

The user data collected in this way is pseudonymized by technical precautions. Therefore, an assignment of the data to the calling user is no longer possible. The data is not stored together with other personal data of the users.

2. purpose of data processing

The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For these, it is necessary that the browser is recognized even after a page change.

We need cookies for the following applications:

o Adoption of language settings

o Shopping cart settings

The user data collected through technically necessary cookies are not used to create user profiles.

The analysis cookies are used for the purpose of improving the quality of our website and its content. Through the analysis cookies, we learn how the website is used and can thus constantly optimize our offer.

Statistics, marketing and external media

3. legal basis for data processing

The legal basis for the processing of personal data using technically unnecessary cookies is Art. 6 para. 1 p. 1 lit. a DSGVO.

The legal basis for the processing of personal data using technically necessary cookies is Art. 6 para. 1 p. 1 lit. f DSGVO.

4. duration of storage, possibility of objection and elimination

Cookies are stored on the user’s computer and transmitted from it to our site. Therefore, you as a user also have full control over the use of cookies. By changing the settings in your Internet browser, you can disable or restrict the transmission of cookies. Cookies that have already been stored can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website in full.

If you use a Safari browser version 12.1 or higher, cookies are automatically deleted after seven days. This also applies to opt-out cookies, which are set to prevent tracking measures.

Newsletter

1. description and scope of data processing

On our website there is the possibility to subscribe to a free newsletter. When registering for the newsletter, the data from the input mask is transmitted to us.

o Email address

o Name

o First name

o Pseudonym

o Telephone / mobile phone number

o Address

o IP address of the calling computer

o Date and time of registration

No data will be passed on to third parties in connection with the data processing for sending newsletters. The data is used exclusively for sending the newsletter.

2. purpose of data processing

The collection of the user’s email address is used to deliver the newsletter.

The collection of other personal data during the registration process serves to prevent misuse of the services or the email address used.

3. legal basis for data processing

The legal basis for the processing of data after registration for the newsletter by the user is, if the user has given his consent, Art. 6 para. 1 p. 1 lit. a DSGVO.

4. duration of storage

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. Accordingly, the email address of the user is stored as long as the subscription to the newsletter is active.

The other personal data collected during the registration process is usually deleted after a period of seven days.

5. possibility of objection and elimination

The subscription to the newsletter can be cancelled by the user concerned at any time. For this purpose, a corresponding link can be found in each newsletter.

This also enables the revocation of consent to the storage of personal data collected during the registration process.

Email contact

1. description and scope of data processing

On our website, it is possible to contact us via the email address provided. In this case, the personal data of the user transmitted with the email will be stored.

The data will be used exclusively for the processing of the conversation.

2. purpose of data processing

In the case of contact by email, this also constitutes the necessary legitimate interest in processing the data.

3. legal basis for data processing

The legal basis for the processing of the data is Art. 6 para. 1 lit. a DSGVO if the user has given his consent.

The legal basis for the processing of data transmitted in the course of sending an email is Art. 6 (1) lit. f DSGVO. If the email contact aims at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b DSGVO.

4. duration of storage

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For personal data sent by email, this is the case when the respective conversation with the user has ended. The conversation is terminated when it can be inferred from the circumstances that the matter in question has been conclusively clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

5. possibility of objection and elimination

The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by email, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued.

About contacting the data protection officer

All personal data stored in the course of contacting us will be deleted in this case.

Contact form

1. description and scope of data processing

Our website contains a contact form that can be used for electronic contact. If a user makes use of this option, the data entered in the input mask will be transmitted to us and stored.

At the time of sending the message, the following data will be stored:

o Email address

o Name

o First name

o Pseudonym

o Address

o Telephone / mobile phone number

o IP address of the calling computer

o Date and time of contact

o E-mail address of the sender

For the processing of the data, your consent is obtained during the submission process and reference is made to this privacy policy.

Alternatively, it is possible to contact us via the email address provided. In this case, the personal data of the user transmitted with the email will be stored.

The data will be used exclusively for the processing of the conversation.

2. purpose of data processing

The processing of personal data from the input mask serves us solely to process the contact. In the case of contact by email, this also constitutes the necessary legitimate interest in processing the data.

The other personal data processed during the submission process are used to prevent misuse of the contact form and to ensure the security of our information technology systems.

3. legal basis for data processing

The legal basis for the processing of the data is Art. 6 para. 1 p. 1 lit. a DSGVO if the user has given his consent.

The legal basis for the processing of data transmitted in the course of sending an email is Art. 6 para. 1 p. 1 lit. f DSGVO. If the email contact aims at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 p. 1 lit. b DSGVO.

4. duration of storage

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For the personal data from the input mask of the contact form and those sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when it is clear from the circumstances that the matter in question has been conclusively clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

5. possibility of objection and elimination

About contacting the data protection officer

All personal data stored in the course of contacting us will be deleted in this case.

Application by email and application form

1. scope of the processing of personal data

Our website contains an application form that can be used for electronic applications. If an applicant takes advantage of this option, the data entered in the input mask will be transmitted to us and stored. These data are:

o Salutation

o First name

o Name

o Address

o Telephone / mobile phone number

o Email address

o Salary requirement

o Information on education and schooling

o Language skills

o Curriculum vitae

o Testimonials

o Photo

For the processing of your data, your consent is obtained during the submission process and reference is made to this privacy policy.

Alternatively, you can also send us your application by email. In this case, we will collect your email address and the data you provide in the email.

After sending your application, you will receive a confirmation of receipt of your application documents by email from us.

Your data will not be passed on to third parties. The data will be used exclusively for the processing of your application.

2. purpose of data processing

The processing of personal data from the application form serves us solely to process your application. In the case of contact by email, this also constitutes the necessary legitimate interest in processing the data.

The other personal data processed during the submission process are used to prevent misuse of the application form and to ensure the security of our information technology systems.

3. legal basis for data processing

The legal basis for the processing of your data is the initiation of a contract at the request of the data subject, Art. 6 para. 1 p.1 lit. b Alt. 1 DSGVO and § 26 para. 1 p. 1 BDSG.

4. duration of storage

After completion of the application process, the data will be stored for up to six months. Your data will be deleted after the six months at the latest. In the event of a legal obligation, the data will be stored within the scope of the applicable provisions.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

5. possibility of objection and elimination

The applicant has the option to object to the processing of personal data at any time. If the applicant contacts us by email, he or she can object to the storage of his or her personal data at any time. In such a case, the application can no longer be considered.

Via notification to the personnel office or the data protection officer

All personal data stored in the course of electronic applications will be deleted in this case.

Company websites

Use of corporate presences in social networks

Instagram:

Instagram, Part of Facebook Ireland Ltd, 4 Grand Canal Square Grand Canal Harbour, Dublin 2 Ireland

On our company page, we provide information and offer Instagram users the opportunity to communicate. If you carry out an action on our Instagram company page (e.g. comments, posts, likes, etc.), you may make personal data (e.g. clear name or photo of your user profile) public. However, since we generally or to a large extent have no influence on the processing of your personal data by Instagram, which is jointly responsible for the R.EVO München GmbH corporate presence, we cannot make any binding statements regarding the purpose and scope of the processing of your data.

Our corporate presence in social networks is used for communication and information exchange with (potential) customers. In particular, we use the corporate presence for:

Products and competitions

In this context, publications about the company’s presence may include the following content:

o Information about products

o Information about services

o Sweepstakes

o Advertising

o Customer contact

Every user is free to publish personal data through activities.

The legal basis for the data processing is Art. 6 para.1 p.1 lit. a DSGVO.

The data generated by the company website is not stored in our own systems.

You can object at any time to the processing of your personal data that we collect in the course of your use of our Instagram – company presence and assert your data subject rights mentioned under IV. of this privacy policy. To do so, send us an informal email to datenschutz@revo-club.com. \n For more information on the processing of your personal data by Instagram and the corresponding objection options, please click here:

Instagram: https://help.instagram.com/519522125107875

YouTube:

YouTube LLC, 901 Cherry Ave, San Bruno, CA 94066, United States

On our company page, we provide information and offer YouTube users the opportunity to communicate. If you carry out an action on our YouTube corporate site (e.g. comments, posts, likes, etc.), you may make personal data (e.g. clear name or photo of your user profile) public. However, since we generally or to a large extent have no influence on the processing of your personal data by YouTube, the company jointly responsible for the R.EVO München GmbH corporate presence, we cannot make any binding statements about the purpose and scope of the processing of your data.

Our corporate presence in social networks is used for communication and information exchange with (potential) customers. In particular, we use the corporate presence for:

Products and competitions

In this context, publications about the company’s presence may include the following content:

o Information about products

o Information about services

o Sweepstakes

o Advertising

o Customer contact

Every user is free to publish personal data through activities.

The legal basis for the data processing is Art. 6 para.1 p.1 lit. a DSGVO.

The data generated by the company website is not stored in our own systems.

You can object at any time to the processing of your personal data that we collect in the course of your use of our YouTube corporate presence and assert your data subject rights mentioned under IV. of this privacy policy. To do so, send us an informal email to datenschutz@revo-club.com. \n For more information on the processing of your personal data by YouTube and the corresponding objection options, please click here:

YouTube: https://policies.google.com/privacy?gl=DE&hl=de

Use of company presences in job-oriented networks

1. scope of data processing

We use the possibility of company appearances on profession-oriented networks. We maintain a company presence on the following job-oriented networks:

LinkedIn:

LinkedIn, Unlimited Company Wilton Place, Dublin 2, Ireland

XING:

XING SE, Dammtorstraße 30, 20354 Hamburg, Germany

On our site we provide information and offer users the opportunity to communicate.

The company website is used for job applications, information/PR and active sourcing.

We do not have any information on the processing of your personal data by the companies jointly responsible for the corporate presence. For more information, please refer to the privacy policy of:

LinkedIn:

https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv

XING:

https://privacy.xing.com/de/datenschutzerklaerung

If you carry out an action on our company website (e.g. comments, posts, likes, etc.), it is possible that you make personal data (e.g. clear name or photo of your user profile) public.

2. legal basis for data processing

The legal basis for the processing of your data in connection with the use of our corporate presence is Art.6 Abs.1 S.1 lit. f DSGVO.

3. purpose of data processing

Our company website serves to inform users about our services. In doing so, every user is free to publish personal data through activities.

4. duration of storage

We store your activities and personal data published via our corporate website until you revoke your consent. In addition, we comply with the statutory retention periods.

5. possibility of objection and elimination

You can object at any time to the processing of your personal data that we collect in the course of your use of our company website and assert your data subject rights as stated under IV. of this data protection declaration. To do so, send us an informal email to the email address stated in this data protection declaration.

For more information on appeal and removal options, click here:

LinkedIn:

https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv

XING:

https://privacy.xing.com/de/datenschutzerklaerung

Hosting

The website is hosted on servers of a service provider contracted by us.

Our service provider is:

Kingstar.com via Goolge Cloud in the European Data Center

The servers automatically collect and store information in so-called server log files, which your browser automatically transmits when you visit the website. The information stored is:

o Browser type and browser version

o Operating system used

o Referrer URL

o Host name of the accessing computer

o Date and time of the server request

o IP address

This data is not merged with other data sources. The collection of this data is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website – for this purpose, the server log files must be collected.

The location of the Website’s server is geographically within the European Union (EU) or the European Economic Area (EEA).

Geotargeting

We use the IP address and other information provided by the user (in particular zip code in the context of registration or ordering) for regional targeting (so-called “geotargeting”).

Regional targeting is used, for example, to automatically show you regional offers or advertising that are often more relevant to users. The legal basis for the use of the IP address and, if applicable, other information provided by the user (in particular zip code) is Art. 6 (1) lit. f DSGVO, based on our interest in ensuring more precise targeting and thus providing offers and advertising with higher relevance for users.

In the process, part of the IP address and the additional information provided by the user (in particular zip code) are merely read out and not stored separately.

You can prevent geotargeting by, for example, using a VPN or proxy server that prevents precise localization. In addition, depending on the browser used, you can also deactivate location localization in the corresponding browser settings (insofar as the respective browser supports this).

We use geotargeting on our website for the following purposes:

o Geoblocking

o Customer approach

o Advertising purposes

Registration

1. description and scope of data processing

On our website, we offer users the opportunity to register by providing personal data. The data is entered in an input mask and transmitted to us and stored. The data is not passed on to third parties. The following data is collected during the registration process:

o Email address

o Name

o First name

o Pseudonym

o Address

o Telephone / mobile phone number

o IP address of the calling computer

o Date and time of registration

o Password, bookings, company address, interests

As part of the registration process, the user’s consent to the processing of this data is obtained.

2. purpose of data processing

Registration of the user is necessary for the fulfillment of a contract with the user or for the implementation of pre-contractual measures.

ADJUST: For what reason is the identification of the user required for the provision? Are there any legal obligations? Please specify the content and services for which the processing is required. Note: The text entered here appears identically in your privacy policy.

3. legal basis for data processing

The legal basis for the processing of the data is Art. 6 para. 1 p. 1 lit. a DSGVO if the user has given his consent.

If the registration serves the fulfillment of a contract to which the user is a party or the implementation of pre-contractual measures, the additional legal basis for the processing of the data is Art. 6 para. 1 p. 1 lit. b DSGVO.

4. duration of storage

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected.

This is the case for the data collected during the registration process for the fulfillment of a contract or for the implementation of pre-contractual measures when the data is no longer required for the implementation of the contract. Even after the conclusion of the contract, there may be a need to store personal data of the contractual partner in order to fulfill contractual or legal obligations.

5. possibility of objection and elimination

As a user, you have the option to cancel the registration at any time. You can have the data stored about you changed at any time.

ADJUST: How do you allow users of your website to delete the account or change data? Please describe how. Note: The text entered here will appear identically in your privacy policy.

If the data is required for the fulfillment of a contract or for the implementation of pre-contractual measures, early deletion of the data is only possible insofar as contractual or legal obligations do not prevent deletion.

Content Delivery Networks

CloudFlare

1. description and scope of data processing

On our website, we use functions of the CloudFlare content delivery network of CloudFlare Germany GmbH, Rosental 7, 80331 Munich, Germany (hereinafter referred to as: CloudFlare). A Content Delivery Network (CDN) is a network of regionally distributed servers connected via the Internet, which is used to deliver content – especially large media files such as videos. CloudFlare provides web optimization and security services that we use to improve the load times of our website and to protect it from misuse. When you visit our website, a connection is established to CloudFlare’s servers in order to retrieve content, for example. Personal data may be stored and analyzed in server log files, especially the activity of the user (in particular, which pages have been visited) and device and browser information (in particular, the IP address and operating system). For more information on the collection and storage of data by CloudFlare, please click here:

https://www.cloudflare.com/de-de/privacypolicy/

2. purpose of data processing

The use of CloudFlare’s features is for the delivery and acceleration of online applications and content.

3. legal basis for data processing

The collection of this data is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website – for this purpose, the server log files must be collected.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law.

5. possibility of objection and elimination

You can find information on objection and removal options vis-à-vis CloudFlare at:

https://www.cloudflare.com/de-de/privacypolicy/

Plugins used

We use plugins for various purposes. The plugins used are listed below:

Use of the Google Marketing Platform

1. scope of the processing of personal data

We use the marketing platform of Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter: Google). Google sets a cookie on your computer. Personal data can be stored and evaluated, especially the activity of the user (in particular which pages have been visited and on which elements have been clicked), device and browser information (in particular the IP address and the operating system), data about the displayed advertisements (in particular which advertisements have been displayed and whether the user has clicked on them) and also data from advertising partners (in particular pseudonymized user IDs).

Due to the marketing tools used, your browser automatically establishes a direct connection with Google’s server.

We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our knowledge. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is the possibility that the provider learns your IP address and stores it.

For more information on the processing of data by Google, click here:

https://policies.google.com/privacy?gl=DE&hl=de

2. purpose of data processing

Google Marketing Platform is used to serve relevant ads to the user, to improve campaign performance reports, or to prevent a user from seeing the same ads more than once.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

The Google Marketing Platform stores your data until the stated purpose is fulfilled, with a maximum storage period of 18 months.

5. revocation and removal option

You can prevent the collection as well as the processing of your personal data by Google by preventing third-party cookies from being stored on your computer, by using the “Do Not Track” function of a supporting browser, by disabling the execution of script code in your browser or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

With the following link you can deactivate the use of your personal data by Google:

https://adssettings.google.de

You can find more information on objection and removal options vis-à-vis Google at:

https://policies.google.com/privacy?gl=DE&hl=de

Use of Facebook Pixel

1. scope of the processing of personal data

We use the Facebook pixel of Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA and its representative in the Union Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal H , D2 Dublin, Ireland (hereinafter referred to as: Facebook) on our online presence. With its help, we can track the actions of users after they have seen or clicked on a Facebook ad. As a result, personal data can be stored and analyzed, especially the user’s activity (in particular, which pages have been visited and which elements have been clicked on), device and browser information (in particular, the IP address and the operating system), data about the advertisements displayed (in particular, which advertisements were displayed and whether the user clicked on them) and also data from advertising partners (in particular, pseudonymized user IDs). This allows us to measure the effectiveness of Facebook ads for statistical and market research purposes.

In the process, data may be transmitted to Facebook servers in the USA.

The data collected in this way is anonymous for us, which means that we do not see the personal data of individual users. However, this data is stored and processed by Facebook. Facebook may associate this data with their Facebook account and also use it for their own advertising purposes, according to Facebook’s data usage policy.

For more information on the processing of data by Facebook, click here:

https://de-de.facebook.com/policy.php

2. purpose of data processing

The use of the Facebook pixel serves the analysis and optimization of advertising measures.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, such as for tax and accounting purposes.

5. revocation and removal option

You can prevent the collection as well as the processing of your personal data by Facebook by preventing third-party cookies from being stored on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

You can find more information about objection and removal options vis-à-vis Facebook at:

https://de-de.facebook.com/policy.php

Use of Google AdWords

1. scope of the processing of personal data

We use Google AdWords of Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter: Google). We use this service to place advertisements. Google sets a cookie on your computer. Personal data can be stored and evaluated, especially the activity of the user (in particular which pages have been visited and on which elements have been clicked), device and browser information (in particular the IP address and the operating system), data about the displayed advertisements (in particular which advertisements have been displayed and whether the user has clicked on them) and also data from advertising partners (in particular pseudonymized user IDs).

For more information on the processing of data by Google, click here:

https://policies.google.com/privacy?gl=DE&hl=de

2. purpose of data processing

We only get to know about the total number of users who have responded to our ad. No information is shared that could identify you to us. The use is not for tracking purposes.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, such as for tax and accounting purposes.

5. revocation and removal option

With the following link you can deactivate the use of your personal data by Google:

https://adssettings.google.de

You can find more information on objection and removal options vis-à-vis Google at:

https://policies.google.com/privacy?gl=DE&hl=de

Use of Google Analytics

1. scope of the processing of personal data

We use Google Analytics, a web analytics service provided by Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter: Google). Google Analytics examines, among other things, the origin of visitors, their length of stay on individual pages and the use of search engines and thus allows a better control of the success of advertising campaigns. Google sets a cookie on your computer. This allows personal data to be stored and analyzed, in particular the activity of the user (especially which pages have been visited and which elements have been clicked on), device and browser information (especially the IP address and operating system), data about the advertisements displayed (especially which advertisements were displayed and whether the user clicked on them) and also data from advertising partners (especially pseudonymized user IDs). The information generated by the cookie about your use of this online presence will be transmitted to and stored by Google on servers in the United States. In the event that IP anonymization is activated on this online presence, however, your IP address will be truncated beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there.

On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the operator of the website. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.

For more information on the processing of data by Google, click here:

https://policies.google.com/privacy?gl=DE&hl=de

2. purpose of data processing

The purpose of processing personal data is to specifically address a target group that has already expressed an initial interest by visiting the site.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law. Advertising data in server logs is anonymized by Google deleting parts of the IP address and cookie information after 9 and 18 months, respectively, according to Google.

5. revocation and removal option

You can also prevent the collection of data generated by the cookie and related to your use of the online presence (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available under the following link:

https://tools.google.com/dlpage/gaoptout?hl=de

With the following link you can deactivate the use of your personal data by Google:

https://adssettings.google.de

You can find more information on objection and removal options vis-à-vis Google at:

https://policies.google.com/privacy?gl=DE&hl=de

Use of Google Ads Remarketing

1. scope of the processing of personal data

We use Google Ads Remarketing of Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter: Google). Google Remarketing is used for retargeting visitors to the online presence for advertising purposes via Google Ads ads. With the help of Google Ads Remarketing, target groups (“similar target groups”) can be created, which have called up certain pages, for example. This makes it possible to identify the user on other online presences and display targeted advertising. Google sets a cookie on the user’s computer. Personal data can be stored and evaluated, especially the activity of the user (in particular which pages have been visited and on which elements have been clicked), device and browser information (in particular the IP address and the operating system), data about the displayed advertisements (in particular which advertisements were displayed and whether the user clicked on them) and also data from advertising partners (in particular pseudonymized user IDs).

For more information on the processing of data by Google, click here:

https://policies.google.com/privacy?gl=DE&hl=de

2. purpose of data processing

The purpose of the processing of personal data is to specifically address a target group. The cookies stored on the end device of the users recognize them when they visit an online presence and can therefore show them interest-based advertising.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, such as for tax and accounting purposes.

5. revocation and removal option

https://tools.google.com/dlpage/gaoptout?hl=de

With the following link you can deactivate the use of your personal data by Google:

https://adssettings.google.de

You can find more information on objection and removal options vis-à-vis Google at:

https://policies.google.com/privacy?gl=DE&hl=de

Use of Google Maps

1. scope of the processing of personal data

We use the online map service Google Maps of Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as: Google). We use the plugin from Google Maps to visually display geographical data and embed it on our online presence. By using Google Maps on our online presence, information about the use of our online presence, your IP address and addresses entered in the route planning function are transmitted to a Google server and stored there.

For more information on the processing of data by Google, click here:

https://policies.google.com/privacy?gl=DE&hl=de

2. purpose of data processing

The use of the Google Maps plug-in serves to improve user-friendliness and an appealing presentation of our online presence.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law.

5. revocation and removal option

With the following link you can deactivate the use of your personal data by Google:

https://adssettings.google.de

You can find more information on objection and removal options vis-à-vis Google at:

https://policies.google.com/privacy?gl=DE&hl=de

Use of Google Web Fonts

1. scope of the processing of personal data

We use Google Web Fonts of Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter: Google). The web fonts are transferred to the browser’s cache when the page is called up in order to be able to use them for the visually improved display of various information. If the browser does not support Google web fonts or prevents access, the text is displayed in a standard font. No cookies are stored on the visitor’s computer when the page is accessed. Data transmitted in connection with the page call are sent to resource-specific domains such as https://fonts.googleapis.com or https://fonts.gstatic.com. As a result, personal data can be stored and evaluated, especially the user’s activity (in particular, which pages have been visited and which elements have been clicked on) and device and browser information (in particular, the IP address and the operating system).

The data is not associated with data that may be collected or used in connection with the parallel use of authenticated Google services such as Gmail.

For more information on the processing of data by Google, click here:

https://policies.google.com/privacy?gl=DE&hl=de

2. purpose of data processing

The use of Google web fonts serves an appealing presentation of our texts. If your browser does not support this function, a standard font from your computer will be used for display.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, such as for tax and accounting purposes.

5. possibility of objection and elimination

With the following link you can deactivate the use of your personal data by Google:

https://adssettings.google.de

You can find more information on objection and removal options vis-à-vis Google at:

https://policies.google.com/privacy?gl=DE&hl=de

Use of Gravity Forms

1. scope of the processing of personal data

We use Gravity Forms by Rocketgenius Inc, 1620 Centerville Turnpike #102, Virginia Beach, VA 23464, USA (hereinafter: Rocketgenius). Gravity Forms is a complete form management solution for WordPress. This is used to improve the presentation of our online presence content. According to Rocketgenius, it does not process any personal data itself and does not set any cookies for the user.

For more information about the processing of data by Rocketgenius, click here:

https://www.gravityforms.com/privacy/

2. purpose of data processing

The use of the Gravity Form plug-in serves to improve the user-friendliness of our online presence. We use this plug-in to easily create, embed and present forms in an appealing way.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, such as for tax and accounting purposes.

5. revocation and removal option

You can prevent the collection as well as the processing of your personal data by Rocketgenius by preventing third-party cookies from being stored on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

For more information about opting out and opting in to Rocketgenius, please visit:

https://www.gravityforms.com/privacy/

Use of LinkedIn

1. scope of the processing of personal data

We use functions of the network LinkedIn. The provider is LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland (hereinafter referred to as LinkedIn). Each time one of our pages containing LinkedIn functions is accessed, a connection to LinkedIn servers is established. LinkedIn is informed that you have visited our web pages with your IP address. If you click the “Recommend button” of LinkedIn and are logged into your account at LinkedIn, it is possible for LinkedIn to assign your visit to our website to you and your user account. Personal data can thus be stored and evaluated, especially the user’s activity (in particular, which pages have been visited and which elements have been clicked on) and device and browser information (in particular, the IP address and the operating system).

We point out that we as the provider of the pages have no knowledge of the content of the transmitted data and its use by LinkedIn. For more information on the processing of data by LinkedIn, please click here:

https://www.linkedin.com/legal/privacy-policy

2. purpose of data processing

The use of the LinkedIn plugin serves the user-friendliness of our online presence.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, such as for tax and accounting purposes.

5. revocation and removal option

You can prevent the collection as well as the processing of your personal data by LinkedIn by preventing the storage of third-party cookies on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. Furthermore, the transmission can be prevented by logging out of your LinkedIn account before accessing our website.

You can use the links below to disable LinkedIn’s use of your personal data:

https://www.linkedin.com/psettings/guest-controls

For more information on opt-out and removal options vis-à-vis LinkedIn, please visit:

https://www.linkedin.com/legal/privacy-policy

Use of WPML

1. scope of the processing of personal data

We use WPML from OnTheGoSystems Limited, 22/F 3 Lockhart Road, Wanchai, Hong Kong (hereinafter: WPML). WPML is a multi-language plugin for WordPress. We use WPML to display our online presence in different languages. When you visit our online presence, WPML stores a cookie on your terminal device to save the language setting you have selected. Personal data can be stored and analyzed, especially the activity of the user (in particular, which pages have been visited and on which elements have been clicked) as well as device and browser information (in particular, the IP address and the operating system).

For more information about the processing of data by WPML, click here:

https://wpml.org/de/documentation-3/privacy-policy-and-gdpr-compliance/

Purpose of the data processing of personal data

The use of WPML serves to be able to present our online presence in multiple languages.

3. legal basis for the processing of personal data

The legal basis for data processing is Art. 6 para.1 p.1 lit. f DSGVO. Our legitimate interest lies in addressing visitors to our online presence in their native language.

4. duration of storage

WPML stores cookies on your terminal device. Information on the storage period of the cookies can be found at: https://wpml.org/documentation/privacy-policy-and-DSGVO-compliance

5. possibility of objection and elimination

You can prevent the collection as well as the processing of your personal data by WPML by preventing third-party cookies from being stored on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser, or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

For more information about opt-out and removal options with respect to WPML, please visit:

https://wpml.org/de/documentation-3/privacy-policy-and-gdpr-compliance/

Use of Newsletter2Go

1. scope of the processing of personal data

We use the service provider Newsletter2Go of Newsletter2Go GmbH, Köpenicker Str. 126, 10179 Berlin, Germany (hereinafter referred to as: Newsletter2Go) to send our newsletters. Newsletter2Go is a provider of email and SMS marketing and enables us to communicate directly with potential customers via email and SMS newsletters. If you register for the newsletter, the data you enter when registering for the newsletter will be transferred to Newsletter2Go and stored there. As a result, further personal data may be stored and evaluated, especially the activity of the user (in particular, which pages have been visited and which elements have been clicked on) and device and browser information (in particular, the IP address and the operating system). For this purpose, your data will also be stored by Newsletter2Go. Your data will not be disclosed to third parties for the purpose of receiving the newsletter and Newsletter2Go does not obtain the right to disclose your data. After registration Newsletter2Go will send you an email to confirm your registration. Furthermore, Newsletter2Go offers various analysis options about how the sent newsletters are opened and used, e.g. to how many users an email or SMS was sent, whether emails or SMS were rejected and whether users unsubscribed from the list after receiving an email or SMS.

For more information on the processing of data by Newsletter2Go, click here:

https://www.newsletter2go.de/datenschutz/

2. purpose of data processing

The personal data collected in the context of a registration for the newsletter will be used exclusively for sending our newsletter, possibly for invitations to events and, if you are already our customer, for our customer mail. Furthermore, subscribers to the newsletter could be informed by email if this is necessary for the operation of the newsletter service or a related registration, as could be the case in the event of changes to the newsletter offer or the change of technical circumstances.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law. In addition, you may contact Newsletter2Go and request deletion of your information.

5. revocation and removal option

You can revoke your consent to the storage of the data, as well as their use for sending the newsletter by Newsletter2Go at any time. You can exercise your revocation at any time by emailing Newsletter2Go or by clicking on the link provided in each newsletter.

For more information on objection and removal options vis-à-vis Newsletter2Go, please see:

https://www.newsletter2go.de/datenschutz/

Use of Google Tag Manager

1. scope of the processing of personal data

We use the Google Tag Manager (https://www.google.com/intl/de/tagmanager/) of Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as: Google). With the Google Tag Manager, tags of Google’s services and of third-party providers can be managed and bundled and embedded on an online presence. Tags are small code elements on an online presence that are used, among other things, to measure visitor numbers and behavior, to record the impact of online advertising and social channels, to use remarketing and targeting, and to test and optimize online presences. When a user visits the online presence, the current tag configuration is sent to the user’s browser. It contains instructions on which tags to trigger. Google Tag Manager takes care of triggering other tags, which in turn may collect data. Information on this can be found in the passages on the use of the corresponding services in this privacy policy. Google Tag Manager does not access this data.

For more information on Google Tag Manager, please visit https://www.google.com/intl/de/tagmanager/faq.html and see Google’s privacy policy: https://policies.google.com/privacy?hl=de

2. purpose of data processing

The purpose of the processing of personal data is the collected and clear management, as well as an efficient integration of the services of third parties.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

5. revocation and removal option

https://tools.google.com/dlpage/gaoptout?hl=de

With the following link you can deactivate the use of your personal data by Google:

https://adssettings.google.de

You can find more information on objection and removal options vis-à-vis Google at:

https://policies.google.com/privacy?gl=DE&hl=de

Use of LinkedIn Analytics

1. scope of the processing of personal data

We use the analysis service LinkedIn Analytics of LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (hereinafter referred to as: LinkedIn). By using LinkedIn Analytics, pseudonymized usage profiles are created of the users. The profiles are used to analyze user behavior and are used to optimize our offer. The following data is processed in the process:

– Operating system information

– Device identifier

– Internet service provider

– IP address

– Referrer URL

– Browser information

For more information on the processing of data by LinkedIn, click here:

https://www.linkedin.com/legal/privacy-policy

2. purpose of data processing

The processing of users’ personal data by LinkedIn Analytics enables us to analyze the surfing behavior of our users. By evaluating the data obtained, we are able to compile information about the use of the individual components of our offer. This helps us to constantly improve our online presence and in this context also to increase user-friendliness.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law.

5. revocation and removal option

You can prevent the collection as well as the processing of your personal data by LinkedIn by preventing third-party cookies from being stored on your computer, using the “Do Not Track” function of a supporting browser, disabling the execution of script code in your browser, or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

With the following link you can deactivate the use of your personal data by LinkedIn:

https://www.linkedin.com/help/linkedin/answer/62931/manage-advertising-preferences

For more information on opt-out and removal options vis-à-vis LinkedIn, please visit:

https://www.linkedin.com/legal/privacy-policy

Use of Bookatable

1. scope of the processing of personal data

We use functionalities of the restaurant reservation tool Bookatable of Bookatable Limited, 5th FL Elizabeth House, 39 York Road, London SE1 7NQ, England (hereinafter referred to as: Bookatable). With the help of the plugin, reservations in selected restaurants can be made directly on the Internet. Cookies from Bookatable are stored on your terminal device.

In particular, the following personal data will be processed by Bookatable as a result:

– E-mail address

– Complete address (under certain circumstances in the case of promotions, so-called promotion data)

– Feedback data, so-called rating data of a restaurant collected via a rating form

– Phone number (for reservation)

– First name, last name (for reservation)

– Payment data such as: Debit or credit card number, verification number, expiration date, cardholder name (if prepaid).

– IP address

– Operating system

– Browser type through which the call takes place

In addition, we process the following special categories of personal data within the meaning of Art. 9 (1) DSGVO:

Health data:

During the reservation process or when submitting reviews, users can optionally use free text fields to provide voluntary information regarding disabilities or health problems such as food allergies. If such information is provided to us as part of a reservation, this information will be treated confidentially and will only be used to process the reservation and fulfill any special requests.

Any data you provide will be stored on Bookatable’s secure servers in the UK or EEA.

Other recipients of the data are:

Personal Data is shared by Bookatable with Michelin Travel Partner SAS, a member of the Michelin Group, for the purpose of hosting its marketing database.

The relevant Group companies are:

– Bookatable AB and 2 Book AB

– Bookatable AB, Suomen sivuliike

– Bookatable ApS

– Bookatable Norway NUF

– Bookatable GmbH & Co KG

– Livebookings SL

– Bookatable Inc

– Michelin Travel Partner S.A.S

In addition, the data will be processed, if necessary, with:

– Restaurants

– Partner networks

– Payment and billing service providers

– Companies of the Bookatable Group

shared.

For more information about the processing of data by Bookatable, click here:

https://www.bookatable.com/de/datenschutz

https://www.bookatable.com/de/cookies-richtlinie

2. purpose of data processing

We use Bookatable to record, process and manage reservations and reviews.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

When processing the special categories of personal data pursuant to Art. 9 (1) DSGVO, the legal basis is the express consent pursuant to Art. 6 (1) sentence 1 lit. a DSGVO in conjunction with Art. 9 (2) lit. a DSGVO.

– Absolutely necessary cookies

– Performance cookies

– Functional cookies

the legal basis for the data processing is Art. 6 para.1 p.1 lit. f DSGVO. Our legitimate interest here lies in the purposes of data processing mentioned under 2.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, such as for tax and accounting purposes.

5. revocation and removal option

You can prevent the collection as well as the processing of your personal data by Bookatable by preventing third-party cookies from being stored on your computer, by using the “Do Not Track” function of a supporting browser, by disabling the execution of script code in your browser or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

For more information on how to object to and remove Bookatable, please visit: https://www.bookatable.com/de/datenschutz

Use of Facebook Retargeting

1. scope of the processing of personal data

We use functionalities of the advertising plugin Facebook Retargeting of Facebook Ireland Limited, 4 Grand Canal Square, Dublin Dublin 2, Ireland (hereinafter: Facebook Retargeting).

Facebook Retargeting is used to run and interact with advertising campaigns. Users are reminded by Facebook retargeting of products that they have searched for or viewed but not purchased. Cookies from Facebook are stored on your terminal device in the process.

In particular, the following personal data is processed by Facebook as a result:

– Information about activities of the user

– Web page called

– What products have been displayed

– Which ads have been clicked

– Device information, especially device type, IP address

– Facebook account of the users, if they are logged into Facebook

In the process, data is processed on servers of Facebook Inc, Facebook, Inc, 1601 Willow Road, Menlo Park, California 94025in the USA.

Other recipients of the data are providers and service providers of Facebook Inc. e.g. for analysis purposes.

For more information on the processing of data by Facebook, click here:

https://de-de.facebook.com/privacy/explanation

2. purpose of data processing

We use Facebook Retargeting to serve ads on various platforms and to analyze how users interact with those ads. In this way, we aim to show users personalized advertising that is more relevant to them.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, such as for tax and accounting purposes.

5. revocation and removal option

Deactivating personalized advertising for Facebook users is possible for logged-in users here:

https://www.facebook.com/settings/?tab=ads

You can find more information about objection and removal options vis-à-vis Facebook at:

https://de-de.facebook.com/privacy/explanation

Use of Google My Business

1. scope of the processing of personal data

We use the Google My Business marketing platform of Google LLC, Gordon House, Barrow Street, 4, Dublin, Ireland (hereinafter referred to as: Google).

We use Google My Business for customer acquisition with optimized company profiles including the possibility of statistical analysis and contact with users.

Cookies from Google are stored on your terminal device.

In particular, the following personal data is processed by Google My Business as a result:

– Contact details / Company data

– Address data

– E-mail addresses

– Phone number

– Opening hours

– Location data

– Credit card data

– Reviews

– IP address

In the process, data may be transmitted to Google servers in the USA. For more information on the processing of data by Google My Business, click here:

https://policies.google.com/privacy

2. purpose of data processing

We use Google My Business to develop statistical methods and improve user behavior.

3. legal basis for the processing of personal data

The legal basis for data processing is Art. 6 (1) sentence 1 lit. f DSGVO. Our legitimate interest lies here in the purposes of data processing mentioned under 2.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, such as for tax and accounting purposes.

5. revocation and removal option

Use of Hotelcareer

1. scope of the processing of personal data

We use functionalities of the career and job platform of Yourcareergroup GmbH, Völklinger Str. 1, 40219, Düsseldorf, North Rhine-Westphalia, Germany.

Hotelcareer is an industry-specific job board on the European market that enables people to find a job. At the same time, it enables companies to search for suitable, service-oriented candidates and post jobs on the online platform.

Hotelcareer is an international job exchange for the hotel, catering and tourism industry.

Cookies from Yourcareergroup are stored on your terminal device.

In particular, the following personal data is processed by Yourcareergroup as a result:

– Personal data (all contact details)

– Data processing about companies or employees of companies

– Application & Applicant Data (cover letter, resume, references, salary information, education and training, work experience, computer skills, reason for change and expectations for the new position).

– Photos

– Optional data: Date of birth, marital status, number of children, title, address, telephone number, website.

For more information on the processing of data by Yourcareergroup, click here:

https://www.hotelcareer.de/datenschutzerklärung

2. purpose of data processing

The use of Hotelcareer is for us to collect and provide jobs, career tips and training & development opportunities.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

The legal basis for the processing of your data is the initiation of a contract at the request of the data subject, Art. 6 para. 1 p.1 lit. b Alt. 1 DSGVO and § 26 para. 1 p. 1 BDSG.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, such as for tax and accounting purposes.

5. possibility of objection and elimination

You can prevent the collection as well as the processing of your personal data by Yourcareergroup by preventing third-party cookies from being stored on your computer, by using the “Do Not Track” function of a supporting browser, by disabling the execution of script code in your browser or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

You can find more information about objection and removal options vis-à-vis Yourcareergroup at:

https://www.hotelcareer.de/datenschutzerklärung

Use TrustYou

1. scope of the processing of personal data

We use functionalities of the online marketing plugin of TrustYou GmbH, Steinerstraße 15, 81369, Munich, Bavaria, Germany as an online marketing plugin for rating analysis, rating marketing, reputation management and for creating and editing guest questionnaires.

Cookies from TrustYou are stored on your terminal device.

In particular, the following personal data is processed by TrustYou as a result:

– The address of the page you accessed on the website

– The address of the website that was visited immediately before

– Date and time of the website visit

– Properties of the end device, especially the operating system. Device detection.

– IP address

– Identification number

For more information on the processing of data by tawk.to, click here:

https://www.trustyou.com/de/downloads/privacy-policy-de.pdf

2. purpose of data processing

TrustYou is used to interpret, collect and share feedback from customers. In addition, it is used to publish the ratings across websites.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

Your personal information will be retained for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, such as for tax and accounting purposes.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.

5. possibility of objection and elimination

You can prevent the collection as well as the processing of your personal data by TrustYou by preventing third-party cookies from being stored on your computer, by using the “Do Not Track” function of a supporting browser, by disabling the execution of script code in your browser or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

You can find more information about objection and removal options vis-à-vis TrustYou at:

https://www.trustyou.com/de/downloads/privacy-policy-de.pdf

Use of LinkedIn Insight Tag

1. scope of the processing of personal data

We use functionalities of the marketing plugin LinkedIn Insight Tag of LinkedIn Ireland, Unlimited Company, Wilton Place, Dublin 2, Ireland (hereinafter: LinkedIn).

The plugin allows us to get information about the website visitors and keep detailed campaign reports.

In particular, the following personal data is processed by LinkedIn as a result:

– URL

– Referrer URL

– IP address shortened or hashed

– Device and browser properties (user agent) and timestamp.

Cookies from LinkedIn are stored on your terminal device. You can find more information about the cookies used here:

https://www.linkedin.com/legal/cookie-policy

LinkedIn does not share any personal data with us, but only provides aggregated audience and ad reports. LinkedIn also provides a remarketing feature that allows us to show you targeted personalized ads outside of our website without revealing your identity.

For more information on the processing of data by LinkedIn, click here:

https://www.linkedin.com/legal/privacy-policy?_l=de_DE

2. purpose of data processing

The use of LinkedIn Insight Tag serves us to collect information about visitors to our website.

3. legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a DSGVO.

4. duration of storage

Members’ direct identifiers are removed within seven days to pseudonymize the data. This remaining pseudonymized data is then deleted within 180 days.

5. revocation and removal option

For more information on opt-out and removal options vis-à-vis LinkedIn, please visit:

https://www.linkedin.com/legal/privacy-policy?_l=de_DE

This privacy policy was created with the support of DataGuard.

Privacy Policy

Spring Offer