Privacy policy - Data-Warehouse GmbH

Privacy policy

In order to comply with our obligations pursuant to Art. 13 GDPR, this privacy policy will inform you about the nature, scope and purpose of the processing of personal data (hereinafter referred to as "data") that occurs in the provision of our services and within our online offering. This online offering includes, in particular, the required websites and associated functions and content as well as external online presences, such as social network profiles and media.

With regard to the terms used, please refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).

Person responsible

The controller for data processing within the meaning of Art. 13 I GDPR is

Data-Warehouse GmbH

Beethovenstr. 33

85521 Ottobrunn

Managing directors authorized to represent the company:

Dr. Alexander Löw

E-mail address: info(at)datawh.de

Contact data protection officer: datenschutz(ät)dwh.info

Affected persons

Visitors and users of our online offer are affected by the data processing we carry out.

Types of data processed

If you simply access our online offer, i.e. without registering or providing any other information, only the data transmitted to our server by the respective user's browser (so-called "server log files") will be collected. The following data is affected by this:

- Date and time at the time of access

- Amount of data sent in bytes

- Source/reference from which you reached the page

- IP address used (if applicable: in anonymized form)

- Usage data (e.g. cookies, websites visited, interest in content, access times),

- Meta/communication data (e.g. software information, IP/MAC addresses, operating system used and browser).

If the respective user also completes a registration or submits other information, the following data will also be processed:

- Inventory data (e.g. personal master data, names or addresses),

- Contact details (e.g. e-mail addresses, telephone numbers),

- Content data (e.g. text input, photo and video material)

Purpose of the processing

The processing of the data takes place

- for the provision of the online offer including its functions and contents,

- to answer contact requests and communicate with users,

- to guarantee safety measures,

- for range measurement and

- for marketing purposes

Terminology used

According to Art. 4 No. 1 GDPR, "personal data" means "any information relating to an identified or identifiable natural person (hereinafter referred to as "data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person".

According to Art. 4 No. 2 GDPR, "processing" means "any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction".

According to Art. 4 No. 4 GDPR, "profiling" means "any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements".

According to Art. 4 No. 5 GDPR, "pseudonymization" means "the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person".

According to Art. 4 No. 6 GDPR, a "filing system" is "any structured set of personal data which are accessible according to specific criteria, whether centralized, decentralized or dispersed on a functional or geographical basis".

According to Art. 4 No. 7 GDPR, "controller" means "the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law".

According to Art. 4 No. 8, a "processor" is "a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller".

According to Art. 4 No. 9 GDPR, "recipient" means "a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not that person is a third party". However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing".

The IP address is a number combination that is assigned to a device by an Internet service provider in order to grant the device access to the Internet.

Legal basis

In accordance with Art. 13 I c) GDPR, we are obliged to inform you of the legal basis of our data processing. For users from the scope of the General Data Protection Regulation (GDPR), which extends to the European Union (EU) and the European Economic Community (EEC), the following applies with the proviso that no other legal basis is stated in the data protection declaration:

Art. 6 para. 1 lit. a and Art. 7 GDPR is the legal basis for the processing of data covered by consent.

Art. 6 para. 1 lit. b GDPR is the legal basis for the processing of data to fulfill our owed services, to carry out pre-contractual measures and to answer inquiries.

Art. 6 para. 1 lit. c GDPR is the legal basis for processing to fulfill our legal obligations.

Art. 6 para. 1 lit. d GDPR is the legal basis for the processing of personal data which is necessary in order to protect the vital interests of the data subject or of another natural person.

Art. 6 para. 1 lit. e GDPR is the legal basis for processing for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller, insofar as this is necessary for this purpose.

Art. 6 para. 1 lit. f GDPR is the legal basis for processing to protect our legitimate interests.

Art. 6 para. 4 GDPR concerns the processing of data for purposes other than those for which they were collected. Such processing is only possible under the conditions specified here.

Art. 9 para. 2 GDPR places special requirements on the processing of special categories of data (in accordance with Art. 9 para. 1 GDPR).

Security measures

To ensure a level of protection commensurate with the risk, we take the following measures

- the legal requirements, taking into account the state of the art,

- the costs of implementation, the nature, scope, context and purposes of processing, and

- the different likelihood and severity of the risk to the rights and freedoms of natural persons

for suitable technical and organizational measures.

These measures include, in particular, ensuring the confidentiality, integrity and availability of data by

- Control of physical access to the data,

- Control of access to the data,

- Control of data input, forwarding, securing availability and separation.

In addition, we have created procedures that guarantee the exercise of data subjects' rights, the deletion of data and a response to data threats.

Cooperation with processors, joint controllers and third parties

For certain services, it is necessary in the course of our data processing to disclose the data to other persons (usually companies), i.e. to transfer data to them or otherwise grant them access to the data. These companies are, on the one hand, processors or joint controllers and, on the other hand, third parties such as payment service providers. Such disclosure only takes place on the basis of a legal permission or obligation, consent by the user or on the basis of our legitimate interests, which exist, for example, in the use of agents or web hosts. Such a legitimate interest also exists in particular in the processing of data for administrative purposes.

In the event that we make data accessible to other companies in our group of companies (by disclosure, transmission or granting access in any other form), this is done in particular for administrative purposes. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. In addition, access may also be based on a legal requirement.

Transfers of data to third countries

Disclosure, transfer or other access to the data to a person (including a company) in a third country (i.e. outside the EU, EEA or the Swiss Confederation) takes place if the legal requirements are met. This applies in particular to processing for the fulfillment of our contractual or pre-contractual obligations. Otherwise, the processing must be based on your consent, a legal obligation or our legitimate interests. We are also obliged to ensure the necessary minimum standards in this constellation. This includes, for example, that the respective third country has been officially awarded a level of data protection equivalent to that of the EU (e.g. for the USA through the "Privacy Shield") or that officially recognized special contractual obligations are observed.

Rights of the data subjects

You have the right to request information as to whether data concerning you is being processed. In addition, you have the right to further information and to receive a copy of the data in accordance with the legal requirements.

You have the right to have the data concerning you completed and to have incorrect data concerning you corrected.

In accordance with the statutory provisions, you have the right to demand the immediate erasure of data concerning you. Alternatively, you have the right to restrict the processing of the data within the framework of the legal requirements. (see also right to object)

In accordance with the statutory provisions, you have the right to demand the provision of the data concerning you that you have made available to us and may also demand that it be transferred to other controllers.

You have the right to lodge a complaint with the competent supervisory authority.

Right of withdrawal

You can revoke your consent at any time with effect for the future.

Right of objection

You have the right to object to the future processing of data concerning you in accordance with the statutory provisions. The objection may in particular also be directed against processing for the purposes of direct advertising.

Cookies

We offer the use of temporary and permanent cookies. If you do not agree to this use, please deactivate the corresponding option in the system settings of your browser. Stored cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.

Cookies are small files that are stored on your computer. These files contain different types of information. Cookies are primarily used to store information about a user of an online service. In particular, for example, login data, the contents of a shopping cart and items accessed in an online store or websites accessed in general are stored.

A distinction must first be made between temporary and permanent cookies. Temporary cookies are also known as "session cookies" or "transient cookies". These are cookies that are deleted after you leave the website. This usually happens when the browser is closed.

Permanent cookies (or "persistent cookies") are files that remain stored even after the browser is closed. In this way, the above-mentioned information can be retained beyond the respective browser session.

This is particularly relevant for cookies that contain information about users' interests. This data is often used for reach measurement or marketing purposes.

A distinction must also be made between so-called "third-party cookies", which are offered by providers other than the controller who operates the online service, and so-called "first-party cookies", which are present in all other cases.

It is possible to generally object to the use of cookies used for online marketing purposes. There are a number of providers for this purpose. In the case of tracking, this service is offered by the US website "http://www.aboutads.info/choices/" or the EU website "http://www.youronlinechoices.com/".

In addition, the storage of cookies can also be prevented by deactivating them in the browser settings. However, this option may mean that not all functions of this online offer can be used.

Deletion of data

In accordance with the legal requirements, we delete the data collected by us or restrict its processing.

We delete the data stored by us as soon as the purpose on which the storage is based has ceased to exist and there are no statutory retention obligations to the contrary and no deviating provisions have been made in this privacy policy.

If the data is not deleted because it is required for other, legally permissible purposes (e.g. storage for commercial or tax law reasons), its processing will be restricted. In this case, the data is processed exclusively for this purpose and is otherwise blocked.

Changes to the privacy policy

Legal innovations or changes to the data processing carried out by us may make it necessary to adapt this data protection declaration. For this reason, we ask you to regularly inquire about the content of our privacy policy. If a change requires your cooperation (e.g. consent) or other individual notification, you will be informed by us in an appropriate form.

Agency services

We process our customers' data in order to fulfill our contractual services. These services include in particular

conceptual and strategic consulting,
Campaign planning,
Software and design development/consulting or
Maintenance, implementation of campaigns and processes including handling, server administration, data analysis and consulting and training services.

The processed data is primarily concerned with

Inventory data (e.g., customer master data, such as names or addresses),
Contact details (e.g., e-mail, telephone numbers),
Content data (e.g., text entries, photographs, videos),
Contract data (e.g., subject matter of the contract, term),
Payment data (e.g. bank details, payment history),
Usage and metadata (e.g. as part of the evaluation and performance measurement of marketing measures).

In principle, we do not process special categories of personal data unless they are part of commissioned processing. The data subjects include our customers, interested parties and their customers, users, website visitors or employees as well as third parties. The purpose of the processing is the provision of contractual services, billing and our customer service.

The legal basis for the processing results from Art. 6 para. 1 lit. b GDPR (contractual services), Art. 6 para. 1 lit. f GDPR (analysis, statistics, optimization, security measures).

We process data that is required to justify and fulfill the contractual services and point out the necessity of their disclosure.

Disclosure to external parties only takes place if it is necessary as part of an order. When processing the data provided to us as part of an order, we act in accordance with the instructions of the client and the legal requirements of order processing in accordance with Art. 28 GDPR and do not process the data for any purposes other than those specified in the order.

We delete the data after the expiry of statutory warranty and comparable obligations. We review the necessity of storing the data every three years. Otherwise, the statutory retention obligations apply. If statutory archiving obligations are relevant, the deletion takes place after their expiry (6 years according to § 257 para. 1 HGB, 10 years according to § 147 para. 1 AO). In the case of data disclosed to us by the client as part of an order, we delete the data in accordance with the specifications of the order, generally after the end of the order.

Administration, financial accounting, office organization, contact management

We process data as part of the performance of administrative tasks and the organization of our business, financial accounting and compliance with legal obligations, such as archiving.

This data is the same data that we process to provide our contractual services. This processing is carried out in accordance with Art. 6 para. 1 lit. c. GDPR, Art. 6 para. 1 lit. f. GDPR.

Customers, interested parties, business partners and website visitors are affected by the processing. The purpose and our interest in the processing lies in the administration, financial accounting, office organization, archiving of data, i.e. tasks that serve to maintain our business activities, perform our tasks and provide our services. The deletion of data with regard to contractual services and contractual communication corresponds to the information specified in these processing activities.

We disclose or transmit data to the tax authorities, consultants such as tax advisors or auditors as well as other fee offices and payment service providers.

We also store information on suppliers, event organizers and other business partners on the basis of our business interests, e.g. for the purpose of contacting them at a later date. We store this data, most of which is company-related, permanently.

Business analyses and market research

We analyze the data available to us, in particular that relating to business transactions, contracts and inquiries, in order to operate our business economically. In doing so, we also try to recognize market trends and the wishes of our contractual partners and users (marketing, market research). For these purposes, we process in particular inventory data, communication data, contract data, payment data, usage data and metadata on the basis of Art. 6 para. 1 lit. f. GDPR are processed by us. As part of the processing, we can, for example, compare the details of registered users within their profiles with the services they have used.

The analyses carried out are designed to increase user-friendliness and business efficiency and to optimize our offering. The analyses are carried out exclusively for our own purposes and are not disclosed externally, unless they are anonymous analyses with summarized values.
The persons affected by these measures include our contractual partners, interested parties, customers, visitors and users of our online offer.
Insofar as such analyses or profiles are personal, they are deleted or anonymized when the user terminates the contract. Otherwise, this takes place after two years from the conclusion of the contract. Furthermore, the overall business analyses and general trend determinations are created anonymously where possible.

Data protection information in the application process

We process applicant data only for the purpose and within the scope of the application process in accordance with the legal requirements. Applicant data is processed to fulfill our contractual or pre-contractual obligations as part of the application process in accordance with Art. 6 para. 1 lit. b. GDPR Art. 6 para. 1 lit. f. GDPR, if the data processing becomes necessary for us, e.g. in the context of legal proceedings, whereby § 26 BDSG must also be observed here.

The application procedure is only opened when the applicant provides us with all the necessary applicant data. If we offer an online form, these are expressly marked. Otherwise, they are derived from our job descriptions, whereby personal details, postal and contact addresses and the documents relating to the application, such as cover letter, CV and references, are always recorded. Applicants can also voluntarily provide us with additional information.

By submitting their application to us, applicants consent to the processing of their data for the purposes of the application process in accordance with the type and scope set out in this privacy policy.

If special categories of personal data are voluntarily provided during the application process in accordance with Art. 9 para. 1 GDPR, they will also be processed in accordance with Art. 9 para. 2 lit. a GDPR. This applies in particular to health data or information on ethnic origin.

Insofar as special categories of personal data within the meaning of Art. 9 para. 1 GDPR are requested from applicants as part of the application process, their processing is also carried out in accordance with Art. 9 para. 2 lit. b GDPR. This is the case in particular for health data, insofar as this is necessary for the exercise of the profession.

If available, applicants can send us their applications using an online form on our website. This transmission is encrypted in accordance with the state of the art.
Applicants can also send us their applications by e-mail. Please note, however, that e-mails are generally not sent in encrypted form and that applicants are responsible for encryption. For this reason, we therefore recommend using an online form or sending it by post, which is probably the most secure in terms of data protection.

The data provided by applicants in their application may be processed by us for the purposes of the employment relationship if the application is successful. However, if the application for a job offer was not successful, the applicant's data will be deleted. Applicants' data will also be deleted if an application is withdrawn, which applicants are entitled to do at any time.

Subject to a justified revocation by the applicant, the deletion will take place after a period of six months so that we can answer any follow-up questions about the application and fulfill our obligations to provide evidence under the Equal Treatment Act. Invoices for any reimbursement of travel expenses are archived in accordance with tax law requirements.

As part of the application process, we offer applicants the opportunity to be included in our "talent pool" for a period of two years on the basis of consent pursuant to Art. 6 para. 1 lit. a. and Art. 7, Art. 9 para. 2 lit. a GDPR.

The application documents in the talent pool are processed exclusively in the context of future job advertisements and the search for employees. The documents will be destroyed after the deadline at the latest.

Applicants are informed that their consent to inclusion in the talent pool is voluntary, has no influence on the current application process and that they can revoke this consent at any time for the future.

Contact us

When contacting us, which is possible via contact form, email, telephone, fax or social media, the user's details are processed to process and handle the contact request. The legal basis with regard to contractual/pre-contractual relationships results from Art. 6 para. 1 lit. b. GDPR. With regard to other inquiries, Art. 6 para. 1 lit. f. GDPR is relevant. The information provided by users is generally stored in a customer relationship management system ("CRM system") or comparable inquiry organization.

We delete the data obtained with regard to the inquiry if it is no longer required. The necessity is reviewed every two years. Otherwise, the statutory archiving obligations apply.

Newsletter
The following information relates to the content of our newsletter, the registration, dispatch and statistical evaluation process and your rights of objection.

By subscribing to our newsletter, you simultaneously declare your consent to receiving it and to the procedures explained.

Content of the newsletter:

We send newsletters in the form of e-mails and other electronic notifications with advertising information only with the prior consent of the recipient or legal permission.

If the content of the newsletter is specifically described when registering for the newsletter, it is decisive for the user's consent. Otherwise, our newsletters contain information about our services and us.

Double opt-in and logging:

Registration for our newsletter takes place in a so-called double opt-in procedure.

This means that a message will be sent to the e-mail address you have provided asking you to confirm your registration by clicking on a specific link. This confirmation is necessary so that users can only log in with e-mail addresses that they can access themselves and not misuse third-party e-mail addresses.

In order to be able to prove the registration process in accordance with the legal requirements, every registration for the newsletter is logged. For this purpose, the time of registration and confirmation as well as the user's IP address are recorded.

In addition, the changes to your data stored with the shipping service provider are recorded.

Login data:

To subscribe to our newsletter, simply enter your e-mail address. In order to be able to address you personally in the newsletter, we ask that you also provide a name.

Legal basis:

The legal admissibility of sending newsletters results from the above-mentioned consent by the respective recipient in accordance with Art. 6 para. 1 lit. a, Art. 7 GDPR in conjunction with Art. 7 para. 2 no. 3 UWG. § Section 7 para. 2 no. 3 UWG or, if consent is not required, on the basis of our legitimate interests in direct marketing pursuant to Art. 6 para. 1 lt. f. GDPR in conjunction with. § Section 7 (3) UWG.
The logging of the registration process is based on the protection of our legitimate interests in accordance with Art. 6 (1) (f) GDPR.

These interests consist in the establishment and maintenance of a user-friendly and secure newsletter system for business purposes, which also enables us to provide proof of consent.

Cancellation/revocation:

You have the right to cancel our newsletter service at any time. By doing so, you revoke your consent at the same time. You will find a link to unsubscribe from our newsletter at the end of each newsletter. In order to be able to prove that consent has been given but later revoked, we are entitled to store the unsubscribed e-mail addresses for up to three years after revocation on the basis of our legitimate interests. This data is processed exclusively for the purpose of a possible defense against claims. If you confirm the former existence of your consent, you can submit an individual request for deletion at any time.

Newsletter - Measuring success

Our newsletters contain a so-called "web-beacon". This is a pixel-sized file that is loaded from our server when the newsletter is opened or, if we use a dispatch service provider, from their server.

Technical information, such as information on the browser and operating system of the respective user as well as their IP address and time of access, is collected when access is made.

This information is used for the technical improvement of the services. The technical data can be evaluated with regard to the respective target groups and their reading behavior, the respective retrieval locations, which can be determined by the IP address, and the access times.

The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked.

For technical reasons, it is possible that this information may be assigned to individual newsletter recipients. However, we assure you that it is neither our intention nor that of any mailing service providers we use to spy on individual users.

The evaluations are used much more to determine the reading habits of our users and to adapt our content to them or to distribute different content according to the interests of our users.

A separate revocation of the performance measurement is not possible. In the event that you do not agree with the analysis, you must cancel the entire newsletter subscription.

Hosting and e-mail delivery

We use external hosting services for the operation of our online offering. This concerns:

Infrastructure and platform services
Computing capacity, storage space and database services,
E-mail dispatch services and
Security services and technical maintenance services.

As part of the exercise of our legitimate interests in the efficient and secure provision of this online offer in accordance with Art. 6 para. 1 lit. f GDPR in conjunction with. Art. 28 GDPR (conclusion of order processing contract), the following data in particular is processed by us or our hosting provider:

Inventory and contact data,
Content data and contract data and
Usage, meta and communication data.

This data processing concerns our customers as well as interested parties and visitors to our online offering.

Collection of access data and log files

On the basis of our legitimate interests in accordance with Art. 6 para. 1 lit. f. GDPR, we or our hosting provider collect data about every access to the server on which this service is located (so-called server log files). This data includes

Name of the website accessed and, if applicable, certain files,
Date and time of retrieval,
amount of data transferred,
Notification of successful retrieval,
Browser type and version, the user's operating system,
Referrer URL (the previously visited page),
IP address and
the requesting provider.

For security reasons, log file information is stored for up to seven days and then deleted. This serves in particular to clarify acts of abuse or fraud. If data is suitable as evidence to clarify a matter, it is excluded from deletion until the respective incident has been finally clarified.

IONOS services

This website was created with the modular system IONOS MyWebsite. IONOS uses various third-party providers and scripts to enable the operation of the website: cdn.website-editor.netdd-cdn.multiscreensite.com, fonts.googleapis.com, fonts.gstatic.com, integration.mywebsite-editor.com, le-cdn.website-editor.net, static-cdn.website-editor.net, t.webjavaskript.net, tif.webjavaskript.net

Further information can be found in the IONOS privacy policy: https://www.ionos.de/terms-gtc/terms-privacy/#c67

Reach measurement with Matomo/PIWIK

On the basis of our legitimate interests in the analysis, optimization and economic operation of our online offer in accordance with Art. 6 para. 1 lit. f. GDPR. GDPR, we use the Matomo reach analysis service.

The following user data is processed:

Browser type and version used,
operating system used,
Country of origin,
Date and time of the server request,
Number of visits,
Time spent on the website and the external links clicked on.

The user's IP address is anonymized before it is saved so that it can no longer be assigned to a person.
Matomo is an open-source project for which Matthieu Aubry is legally responsible according to his own information on the website. An official company headquarters is not currently known.

The Matomo service uses cookies, which are stored on the device of the respective user and enable an analysis of the use of our online offer. It is possible that pseudonymous user profiles are created from the processed data.

These cookies are stored for approximately one week. The information contained in the cookie about the use of our websites is stored exclusively on our server and not passed on to third parties.

users are entitled at any time to object to the anonymized data collection by the Matomo program with effect for the future by clicking on the link below.

In this case, a so-called opt-out cookie is stored in the user's browser. As a result, Matomo will not collect any further session data.

If the user deletes their cookies, this means that the opt-out cookie is also deleted. Consequently, this must be reactivated by the user if they wish to maintain their objection.

The logs with the user data are deleted after 6 months at the latest.

Online calculator

When using our fine calculator, data is sent to the operator Olaf A. Kastein, Meinwerkstr. 13, D-33178 Borchen to calculate the result. Privacy policy: https://www.mein-onlinerechner.com/onlinerechner-anfrage.php The use is based on the protection of our legitimate interests in accordance with Art. 6 para. 1 lit. f. GDPR. This consists in the provision of this offer.

jQuery Migrate

The website uses jQuery Migrate for the stability of jQuery technologies. In this regard, program libraries are called from jQuery servers. The use is based on the protection of our legitimate interests in accordance with Art. 6 para. 1 lit. f. GDPR. These consist here in a secure and efficient provision of our online offer. The CDN (content delivery network) from Google is used. If you have previously used jQuery Migrate on another page of the jQuery CDN, your browser will fall back on the copy stored in the cache. If this is not the case, this requires a download, whereby data from your browser is sent to the jQuery Foundation ("jQuery.org"). Your data will be transferred to the USA. You can find out more at: https://code.jquery.com/ and in the jQuery Foundation's code of conduct.

Content delivery network from StackPath

We use a so-called "Content Delivery Network" (CDN), which is offered by StackPath, LLC, 2021 McKinney Avenue, Suite 1100 Dallas, Texas 75201, USA.

The CDN is used to deliver the content of our online offering faster with the help of regionally distributed servers connected via the Internet. This is particularly necessary for large media files such as graphics or scripts. User data is processed exclusively for the aforementioned purposes and to maintain the security and functionality of the CDN.

The CDN is used on the basis of our legitimate interests in accordance with Art. 6 para. 1 lit. f. GDPR. These consist in the secure and efficient provision of our online offer as well as its analysis and optimization.

Further information can be found in StackPath's privacy policy: https://www.stackpath.com/legal/privacy-statement.

Content delivery network from Cloudflare

We use a so-called "Content Delivery Network" (CDN), which is operated by Cloudflare, Inc, 101 Townsend St, San Francisco, CA 94107, USA.

Further information can be found in Cloudflare's privacy policy: https://www.cloudflare.com/security-policy.

Google ReCaptcha

We integrate the function for recognizing bots, e.g. for entries in online forms ("ReCaptcha") of the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Opt-out: https://adssettings.google.com/authenticated.

WooCommerce

To provide our website, we use the WooCommerce service developed and operated by Bubblestorm Management (Pty) Ltd (WooCommerce.com), Unit A206, The Old Biscuit Mill (TOBM), 373 - 375 Albert Road, Woodstock, Cape Town, South Africa (hereinafter referred to as "WooCommerce"). WooCommerce provides us with its online e-commerce platform through which we can offer you our goods for sale. Your inventory and usage data is stored on the WooCommerce servers. You can find more information on this in WooCommerce's privacy policy at https://automattic.com/privacy/.

Weglot

We use the translation service Weglot from Amazon Web Services Inc, 2021 Seventh Ave Seattle, Washington 98121, USA to translate the content of our website into different languages. The legal basis for the use of Weglot is a legitimate interest pursuant to Art. 6 para. 1 sentence 1 f GDPR. You can find more information about Weglot's data processing and storage here: https://weglot.com/privacy/.