Data Privacy

We strive for the highest possible data minimization and transparency in the processing of personal data. The use of our websites is usually possible without providing personal information. The data protection regulations are observed.

For privacy-related inquiries, you can reach us at .

1. Data Collection and Processing for Internet Access

When you visit our websites, our web servers automatically record each access in a log file. The following data is stored:

  • IP address
  • Name and URL of the accessed file
  • Date and time of access
  • Transferred data volume
  • Whether the retrieval was successful
  • URL of the referring page
  • Access status of the web server (file transmitted, file not found, command not executed, etc.)
  • Browser identifier

The stored data is not disclosed to third parties and is only used to optimize the Internet offering and troubleshoot issues. The stored data is deleted after 14 days.

We collaborate with Microsoft Clarity and Microsoft Advertising to capture how you use and interact with our website, using behavioral metrics, heatmaps, and session replays to improve and market our products and services. Website usage data is collected using first-party and third-party cookies and other tracking technologies to determine the popularity of products/services and online activities. We also use this information to optimize the website, for fraud/security purposes, and for advertising. For more information on how Microsoft collects and uses your data, please refer to the Microsoft Privacy Statement.

2. Hosting and Content Delivery Network (CDN)

We use Microsoft Azure as our web hosting and content delivery network provider for our website. The service provider is the American company Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.

The legal basis for data processing is Art. 6(1)(f) of the General Data Protection Regulation (GDPR). The legitimate interest lies in the error-free functioning of the website. Microsoft Corporation has self-certified under the EU-US Privacy Shield agreement (see www.privacyshield.gov/list).

As the basis for data processing involving recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, particularly in the USA) or data transfers to such countries, Microsoft uses so-called Standard Contractual Clauses (Article 46(2) and (3) of the GDPR). Standard Contractual Clauses (SCC) are model templates provided by the European Commission and are intended to ensure that your data comply with European data protection standards, even when transferred and stored in third countries (such as the USA). Through these clauses, Microsoft commits to maintaining the European level of data protection when processing your relevant data, even if the data is stored, processed, and managed in the USA. These clauses are based on an implementing decision by the European Commission. You can find the decision and the corresponding Standard Contractual Clauses here, among other places: eur-lex.europa.eu/eli/dec_impl/2021/914/oj

For more information on the Standard Contractual Clauses with Microsoft, please visit learn.microsoft.com/en-us/compliance/regulatory/offering-eu-model-clauses

To learn more about the data processed by Microsoft, please refer to the privacy statement at privacy.microsoft.com/en-us/privacystatement.

3. Personal Data

We only collect personal data if and to the extent that you provide it to us voluntarily and with your knowledge.

You have the right to revoke your consent at any time. The purposes of the processing are stated at the respective locations on our websites and are not subject to subsequent changes.

4. Newsletter

We offer you the opportunity to subscribe to our newsletter free of charge. For this purpose, we use the email delivery service Brevo, provided by Sendinblue GmbH, located at Köpenicker Str. 126, 10179 Berlin. Brevo is an email marketing tool that allows us to send customized newsletters. With Brevo, we benefit from a variety of useful features without requiring an installation. The following information informs you about the use of Brevo’s email marketing service and the relevant data protection aspects.

The newsletter service also provides us with helpful analysis options. This allows us to gather information about whether and when you opened the newsletter and which links you clicked in the newsletter. This information helps us tailor and optimize our service to meet your needs and provide you with the best possible value. In addition to the aforementioned data, information about your user behavior is also stored.

We appreciate your newsletter registration, as it enables us to provide you with up-to-date information firsthand about our company. However, please note that when you subscribe to the newsletter, all the data you enter (such as your email address, first name, and last name) is stored and managed on our server and at Brevo. This constitutes personal data. This data includes the time, date of your registration, and your IP address. By subscribing, you consent to us sending you the newsletter, and you are referred to this privacy policy. Furthermore, data such as your click behavior in the newsletter may also be processed.

The data for the newsletter tool is stored on servers in Germany. Personal data that identifies you will generally be deleted at Brevo no later than two years after the termination of the contractual relationship with us. However, you always have the option to request the individual deletion of your data. Requests will be processed within 30 days. The data we collect and transmit to Brevo will be deleted once you unsubscribe from our newsletter.

You have the option to cancel your newsletter subscription at any time by revoking your consent to receive the newsletter. This process usually takes only a few seconds or requires just one or two clicks. In most cases, you will find a link at the end of each email that allows you to unsubscribe from the newsletter. If the link is not visible in the newsletter, please contact us by email, and we will promptly terminate your newsletter subscription. After unsubscribing, personal data will be deleted from our server and from Brevo’s servers located in Germany. You have the right to free information about your stored data and, if applicable, the right to deletion, blocking, or correction.

The dispatch of our newsletter by Brevo is based on your consent (Article 6(1)(a) of the GDPR). This means that we are only allowed to send you a newsletter if you have actively registered for it beforehand. If consent is not required, the newsletter will be sent based on our legitimate interest in direct marketing (Article 6(1)(f)), provided this is legally permissible. We log your registration process to be able to prove at any time that it complies with applicable laws.

For further information on data processing, we recommend that you review the company’s privacy policy at [https://www.brevo.com/de/legal/privacypolicy/](

https://www.brevo.com/de/legal/privacypolicy/).

5. Social Networks

We use the so-called Shariff solution for communication with social networks. Contact is only made when the user actively clicks on the corresponding button.

6. Notice of Data Subject Rights

According to Article 15 of the EU General Data Protection Regulation (GDPR), you have the right to obtain free information about whether personal data concerning you is being processed and, if so, what personal data is involved. In general, a copy of the data can be requested unless a legal exception applies. If the data is incomplete or incorrect, you have the right to request rectification under Article 16 of the GDPR.

Other data subject rights include:

  • Article 17 of the GDPR: Erasure of personal data concerning you if one of the specified deletion grounds applies.
  • Article 18 of the GDPR: Restriction of the processing of personal data if one of the specified grounds applies.
  • Article 20 of the GDPR: Transmission of your personal data to another controller, provided the processing is based on consent or a contract.
  • Article 21 of the GDPR: In certain cases of a particular personal situation, the right to object to otherwise lawful processing of personal data may exist.
  • Article 22 of the GDPR: Grants special data subject rights regarding automated individual decision-making, including profiling.

7. Use of Cookies

We do not use cookies ourselves. However, the services we use on our website may use cookies. These cookies are set by the respective services and not by us. We have no control over the use of these cookies and cannot view them. You can disable the use of cookies in your browser. Please note that this may limit the functionality of our website.

8. Information and Contact

You have the right to request free information at any time about the personal data stored about you. You can contact us in writing by both email and post. If you have any questions, feel free to contact us as well.