PRIVACY POLICY

General Information on Data Processing

On this page, we provide information regarding the processing of your personal data on our website.

The way we collect and use your personal data depends on your interactions with us and the services you utilize. We only collect, use, or share your personal data if we have a legitimate purpose and a legal basis to do so.

Legal Basis for Data Processing

Consent (Art. 6 para. 1 sentence 1 lit. a GDPR)

You have given us permission to process your personal data for a specific purpose. You may withdraw your consent at any time by contacting the data protection officer using the details provided below.

Contract (Art. 6 para. 1 sentence 1 lit. b GDPR)

We need to process your data to fulfill a contract we have with you or because you have requested certain steps before entering into a contract with us.

Legal Obligation (Art. 6 para. 1 sentence 1 lit. c GDPR)

We must process your data to comply with legal obligations.

Vital Interests (Art. 6 para. 1 sentence 1 lit. d GDPR)

Processing your data is necessary to protect your vital interests or those of another person, such as to prevent serious physical harm.

Public Task (Art. 6 para. 1 sentence 1 lit. e GDPR)

Processing your data is necessary for performing a task in the public interest or in the exercise of official authority.

Legitimate Interests (Art. 6 para. 1 sentence 1 lit. f GDPR)

Processing your data supports a legitimate interest of ours or a third party, provided your own interests do not override those interests.

Please note that if your data is required to fulfill a contract or a legal obligation and you do not provide the necessary data, we may not be able to offer you our web store services.

Your Rights

If your personal data is being processed, you have certain rights under the GDPR:

Right to Information (Art. 15 GDPR)

You have the right to request confirmation as to whether we are processing your personal data. If we are, you have the right to obtain information about the processing purposes, categories of personal data, recipients, storage periods, and other relevant details.

Right to Rectification (Art. 16 GDPR)

You have the right to have any incorrect or incomplete personal data corrected without undue delay.

Right to Restriction of Processing (Art. 18 GDPR)

You can request the restriction of your data processing under certain conditions, such as if you contest the accuracy of your data or if the processing is unlawful but you oppose deletion.

Right to Erasure (Art. 17 GDPR)

You have the right to request the deletion of your personal data if certain conditions are met, such as if your data is no longer necessary for the purposes for which it was collected, or if you withdraw your consent and no other legal basis for processing exists.

Right to Data Portability (Art. 20 GDPR)

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, or to request its transfer to another controller.

Right to Object (Art. 21 GDPR)

You have the right to object, on grounds relating to your particular situation, to the processing of your personal data based on Art. 6(1)(e) or (f) GDPR. This includes profiling based on these provisions. You can also object at any time to the processing of your personal data for direct marketing purposes.

Right to Lodge a Complaint with a Supervisory Authority

If you believe that the processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority.

For a list of local supervisory authorities in Germany, visit the [Federal Commissioner for Data Protection](https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html).

Data Sharing and International Transfer

As outlined in this Privacy Policy, we work with various service providers to deliver our services and secure your data. When we engage these service providers, it may be necessary to share your personal data with them.

If your data is transferred outside the EU, we ensure it receives an equivalent level of protection, either because the destination country has been deemed to have an "adequate" level of data protection by the European Commission or through other safeguards, such as the Standard Contractual Clauses (SCCs).

For instance, when we use US service providers, we rely on either the SCCs or the EU-US Data Protection Framework, depending on the provider.

Provision of the Website and Creation of Log Files

Description and Scope of Data Processing

Each time our website is accessed, our system automatically collects certain data from the accessing computer, including:

Browser type and version
Operating system
Internet service provider
Date and time of access
Websites from which the user accessed our site
Websites accessed by the user's system through our site

This data is stored in our system's log files and is not combined with other personal data.

Purpose of Data Processing

The temporary storage of the IP address is necessary to deliver the website to your computer. Storing this data in log files helps ensure the functionality, optimization, and security of our website. The data is not used for marketing purposes.

Legal Basis for Data Processing

The legal basis for this data processing is Art. 6 para. 1 sentence 1 lit. f GDPR.

Duration of Storage

Data is deleted once it is no longer needed for its original purpose. For website provision, this is when the session ends. Log files are deleted after seven days, unless longer storage is required. In such cases, IP addresses are anonymized.

Possibility of Objection

Data collection and storage in log files are essential for website operation. Users may object to this, but the success of such an objection must be determined through a balancing of interests.

General Information on Data Processing

On this page, we provide information regarding the processing of your personal data on our website.

The way we collect and use your personal data depends on your interactions with us and the services you utilize. We only collect, use, or share your personal data if we have a legitimate purpose and a legal basis to do so.

Legal Basis for Data Processing

Consent (Art. 6 para. 1 sentence 1 lit. a GDPR)

You have given us permission to process your personal data for a specific purpose. You may withdraw your consent at any time by contacting the data protection officer using the details provided below.

Contract (Art. 6 para. 1 sentence 1 lit. b GDPR)

We need to process your data to fulfill a contract we have with you or because you have requested certain steps before entering into a contract with us.

Legal Obligation (Art. 6 para. 1 sentence 1 lit. c GDPR)

We must process your data to comply with legal obligations.

Vital Interests (Art. 6 para. 1 sentence 1 lit. d GDPR)

Processing your data is necessary to protect your vital interests or those of another person, such as to prevent serious physical harm.

Public Task (Art. 6 para. 1 sentence 1 lit. e GDPR)

Processing your data is necessary for performing a task in the public interest or in the exercise of official authority.

Legitimate Interests (Art. 6 para. 1 sentence 1 lit. f GDPR)

Processing your data supports a legitimate interest of ours or a third party, provided your own interests do not override those interests.

Please note that if your data is required to fulfill a contract or a legal obligation and you do not provide the necessary data, we may not be able to offer you our web store services.

Your Rights

If your personal data is being processed, you have certain rights under the GDPR:

Right to Information (Art. 15 GDPR)

You have the right to request confirmation as to whether we are processing your personal data. If we are, you have the right to obtain information about the processing purposes, categories of personal data, recipients, storage periods, and other relevant details.

Right to Rectification (Art. 16 GDPR)

You have the right to have any incorrect or incomplete personal data corrected without undue delay.

Right to Restriction of Processing (Art. 18 GDPR)

You can request the restriction of your data processing under certain conditions, such as if you contest the accuracy of your data or if the processing is unlawful but you oppose deletion.

Right to Erasure (Art. 17 GDPR)

You have the right to request the deletion of your personal data if certain conditions are met, such as if your data is no longer necessary for the purposes for which it was collected, or if you withdraw your consent and no other legal basis for processing exists.

Right to Data Portability (Art. 20 GDPR)

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, or to request its transfer to another controller.

Right to Object (Art. 21 GDPR)

Right to Lodge a Complaint with a Supervisory Authority

If you believe that the processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority.

For a list of local supervisory authorities in Germany, visit the [Federal Commissioner for Data Protection](https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html).

Data Sharing and International Transfer

As outlined in this Privacy Policy, we work with various service providers to deliver our services and secure your data. When we engage these service providers, it may be necessary to share your personal data with them.

For instance, when we use US service providers, we rely on either the SCCs or the EU-US Data Protection Framework, depending on the provider.

Provision of the Website and Creation of Log Files

Description and Scope of Data Processing

Each time our website is accessed, our system automatically collects certain data from the accessing computer, including:

Browser type and version

Operating system

Internet service provider

Date and time of access

Websites from which the user accessed our site

Websites accessed by the user's system through our site

This data is stored in our system's log files and is not combined with other personal data.

Purpose of Data Processing

The temporary storage of the IP address is necessary to deliver the website to your computer. Storing this data in log files helps ensure the functionality, optimization, and security of our website. The data is not used for marketing purposes.

Legal Basis for Data Processing

The legal basis for this data processing is Art. 6 para. 1 sentence 1 lit. f GDPR.

Duration of Storage

Data is deleted once it is no longer needed for its original purpose. For website provision, this is when the session ends. Log files are deleted after seven days, unless longer storage is required. In such cases, IP addresses are anonymized.

Possibility of Objection

Data collection and storage in log files are essential for website operation. Users may object to this, but the success of such an objection must be determined through a balancing of interests.