Privacy Policy

Privacy Policy

We are delighted that you are visiting our website. The protection and security of your personal information when using our website is very important to us. We would therefore like to take this opportunity to inform you about which of your personal data we collect when you visit our website and for what purposes it is used. Personal data refers to individual details about the personal or factual circumstances of an identified or identifiable natural person (data subject), e.g. name, address, email addresses, user behaviour. This is therefore data that we can use to identify you. In addition, you will also find occasional information here about data processing procedures outside this website (e.g. video conferences or newsletters).

Responsible for data processing

Responsible

for the processing of personal data within the meaning of the EU General Data Protection Regulation (GDPR)

Markus Temming GmbH
An der Manufaktur 1
33334 Gütersloh
Telephone: +49 (0) 5241 74343 0
Email: info@markus-t.com
 

Data protection officer

exkulpa gmbh
Waldfeuchterstr. 266
52525 Heinsberg
Telephone: 02452 / 99 33 11
Email:  datenschutz@markus-t.com

 

General information

In addition to the data that you actively provide to us on this page (e.g. via our contact form), we collect some technical data. This so-called metadata is automatically transmitted from your computer to our servers as soon as you enter our website (including browser, operating system or timestamp). We use this data to ensure that our website is displayed correctly. In addition, we may collect data via integrated third-party providers (e.g. for external media such as map services or analysis tools). We will explain the individual purposes and legal bases in the course of this privacy policy.

Storage period

Unless a separate storage period is specified in this privacy policy, we will store your personal data for as long as the purpose of data processing exists. If you contact us with a legitimate request for deletion or revoke your consent, we will delete your data. Statutory retention obligations remain unaffected.

Legal basis for data processing

If you have consented to data processing, your personal data will be processed on the basis of Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR if special categories of data are processed in accordance with Art. 9 (1) GDPR. If you have expressly consented to the transfer of personal data to third countries, the data will also be processed in accordance with Art. 49(1)(a) GDPR. If you have consented to the storage of cookies or access to information on your end device (e.g. through device fingerprinting), data processing will also take place on the basis of Section 25(1) TDDDG. Your consent can be revoked at any time. If your data is necessary for the performance of a contract or for the implementation of pre-contractual measures, we process your data in accordance with Art. 6 (1) lit. b GDPR. In addition, we process your data if this is necessary to fulfil a legal obligation, on the basis of Art. 6 (1) lit. c GDPR. Data processing may also take place on the basis of our legitimate interest in accordance with Art. 6 (1) lit. f GDPR. The following sections of this privacy policy will inform you about the respective legal basis in individual cases.

Note on data transfer to third countries and US companies without DPF certification

Please note that we use tools from companies based in third countries or the US that are not covered by the EU-US Privacy Shield Framework (DPF) and where data protection is not guaranteed. When using these tools, your personal data may be transferred to these countries and processed there. Please note that in these third countries, a level of data protection comparable to that in the EU cannot be guaranteed.

We would like to clarify that the USA generally offers a level of data protection comparable to that of the EU. The transfer of data to the USA is permitted if the recipient has DPF certification or provides appropriate additional safeguards. Information about data transfers to third countries, including data recipients, can be found in our privacy policy.

Automated decision-making

Your personal data will not be processed for the purpose of automated decision-making.

Your rights

As a data subject under the General Data Protection Regulation (GDPR), you have the following rights:

Right to lodge a complaint with a supervisory authority: You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your personal data violates the GDPR (Art. 77 GDPR).

 

Further data processing procedures

General information obligations

This information is intended for customers, interested parties, suppliers and employees. We process your personal data for the following purposes:

Categories of recipients of personal data

Within our company, only those employees who absolutely need the data to perform their tasks have access to it (need-to-know principle). Individual processes and services are carried out by carefully selected service providers based within the EEA who are commissioned in accordance with data protection regulations. If service providers commissioned by us have access to personal data in the course of performing their services, data processing agreements have been concluded with them in accordance with Art. 28(3) GDPR.

Duration of data storage

The data we process is stored for the duration of the existence and execution of the contractual relationship and in compliance with statutory retention periods. These are, in particular, commercial and tax law retention obligations under the German Commercial Code (HGB) and the German Fiscal Code (AO). The regular retention and documentation periods are up to ten years. If no contractual relationship is established, we only process the data for as long as the specific purpose requires.

 

Cookies

Cookies are small text files that are stored by your browser on your device to store certain information during your use of the website. Cookies enable us to improve various aspects of our website and make your visit more convenient.

There are different types of cookies that serve different purposes. Temporary cookies, also known as session cookies, are only stored for the duration of your use of the website and are automatically deleted when you close your browser. Persistent cookies, on the other hand, remain stored on your device for a longer period of time and enable us to recognise you and your preferences when you visit the website again.

Cookies can also be divided into first-party cookies and third-party cookies. First-party cookies are set by our website, while third-party cookies are set by other websites or service providers whose content is integrated into our website, such as plugins or analysis tools.

Cookies are used for various purposes, for example to ensure the functionality of the website, to store user settings, to compile anonymous statistics on user behaviour or to display personalised content and advertising. The legal basis for the use of cookies varies depending on the purpose of the cookies. In some cases, the setting of cookies is based on your legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR in order to make our website functional and user-friendly. As a website operator, we have a legitimate interest in storing necessary cookies for the technically error-free and optimised provision of our services. If we obtain your consent for the use of cookies, processing is based on Art. 6 (1) lit. a GDPR in conjunction with § 25 (1) TDDDG. Your consent can be revoked at any time.

 

Data processing in detail

Below, we provide information about the individual processing operations, the scope and purpose of data processing, the legal basis, the obligation to provide your data and the respective storage period. There is no automated decision-making in individual cases, including profiling.

Provision of the website

When you access and use our website, we collect the personal data that your browser automatically transmits to our server. The following information is temporarily stored in a so-called log file:

Our website is not hosted by us, but by a service provider who processes the aforementioned data on our behalf for the purpose of providing the website in accordance with Art. 28 GDPR.

The hoster is used for the purpose of fulfilling our contractual obligations towards our potential and existing customers (Art. 6(1)(b) GDPR) and in the interest of a secure, fast and efficient provision of our online services by a professional provider (Art. 6(1)(f) GDPR).

We use the following host:

domainfactory GmbH
Oskar-Messter-Str. 33
85737 Ismaning

 

Contact form

Type and scope of processing

When you send us enquiries (e.g. via the contact form, email or telephone), we store all the data that this generates (e.g. name, email address, subject of the enquiry, etc.). We need this data to process your enquiry and to be able to answer any follow-up questions. We do not pass on this data without your consent.

Purpose and legal basis

This data is processed on the basis of Art. 6(1)(b) GDPR, provided that your enquiry is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. Otherwise, the processing is based on our legitimate interest in the effective processing of enquiries addressed to us (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) if you have given it beforehand.

Storage period

The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to its storage or the purpose for data storage no longer applies (e.g. after your enquiry has been processed). Mandatory legal provisions – in particular retention periods – remain unaffected.

 

Contact form for applicants

Type and scope of processing

We collect and process the personal data of applicants. The relevant data processing may also be carried out electronically, for example when applicants send us their application documents by email or via a web form on our website. On our website, we offer you the option of sending us applications for advertised job vacancies by email.

Purpose and legal basis

We process the personal data of applicants in accordance with the legal requirements for the purpose of initiating an employment relationship (Art. 6 (1) (b) GDPR). You are not obliged to provide us with this data. However, without this data, we cannot carry out an application process with you.

If your application is successful, the data you submit will be stored in our data processing systems on the basis of Art. 6 (1) (b) GDPR and, if you provide us with special categories of personal data such as health information, on the basis of Art. 9 (2) (b) for the purpose of implementing the employment relationship.

For the purpose of contacting potential applicants, we also use the services of the professional networks LinkedIn and XING. The operators of these networks act as processors for us in accordance with our instructions. The legal basis for data processing when approaching potential applicants on our behalf is Art. 6 para. 1 lit. f GDPR (our legitimate interests). If you send us your application as a result of such an approach, we will process your data for the purpose of initiating an employment relationship as described above on the basis of Art. 6 para. 1 lit. b GDPR.

Storage period

Your data will be stored for a period of 6 months after the end of the application process. This is done to protect our legitimate interests in order to check whether we need the data to defend against any claims in connection with the application process. We are then obliged to delete or anonymise your data. In this case, the data will only be available to us as so-called metadata without direct personal reference for statistical evaluations (e.g. proportion of female or male applicants, number of applications per period, etc.).

If it is apparent that further storage of the data is necessary after the expiry of the 6-month period to safeguard our legitimate interests (e.g. due to an impending or pending legal dispute), deletion will only take place when the purpose for further storage no longer applies. The legal basis for this further data storage is our legitimate interests in asserting, exercising or defending civil law claims (Art. 6(1)(f) GDPR in conjunction with Section 24(1)(2) BDSG or, insofar as special categories of personal data are stored, Art. 9 (2) (f) GDPR in conjunction with § 24 (2) BDSG).

Inclusion in the applicant pool

As part of the application process, we offer applicants the opportunity to be included in our "talent pool" for a period of 24 months on the basis of consent within the meaning of Art. 6 (1) (a), Art. 9 (2) (a) GDPR. If you have provided special categories of personal data in your application, such as health information, your consent also extends to this data. You are not obliged to provide us with your application data for our talent pool. However, without this data, we cannot consider you for future vacancies unless you submit a new application.

Consent to the inclusion of application data in the talent pool is voluntary and can be revoked at any time for the future. Revocation of consent does not affect the lawfulness of data processing carried out on the basis of consent prior to revocation.

Your application documents will be deleted from the talent pool at the latest after the expiry of the storage period or in the event of revocation or acceptance of a job offer from one of the companies responsible for the talent pool.

If you receive an offer of employment from us during the application process and accept it, we or this company will store the personal data collected during the application process for the purpose of implementing the employment relationship. The legal basis for this data processing is Art. 6 (1) (b) GDPR or, if you provide us with special categories of personal data such as health information, Art. 9 (2) (b).

 

Newsletter

We offer you our newsletter on this website. If you would like to subscribe to it, we need your email address and other data that proves that it is your email address and that you agree to receive the newsletter. No other personal data is collected unless you provide it voluntarily (e.g. name, telephone number, place of residence, etc.).

When processing the data you provide when registering for the newsletter, we rely exclusively on your consent in accordance with Art. 6 para. 1 lit. a GDPR as the legal basis. You can revoke your consent to the processing and storage of your personal data at any time (e.g. via the "Unsubscribe" link in the newsletter) for the future.

We store your personal data that you have provided for the purpose of receiving the newsletter until you unsubscribe from the newsletter with us or the mailing service provider. This does not apply to data that we have stored from you for other purposes.

If you unsubscribe from the newsletter distribution list, your email address will be stored by us or the mailing service provider in a blacklist for an indefinite period of time. This is done to prevent future mailings to you. The data from the blacklist will be used exclusively for this purpose and will not be merged with other data. This is not only in your interest, but also in our legitimate interest pursuant to Art. 6 (1) lit. f GDPR to fulfil our legal obligations when sending newsletters. You can object to the storage of your data if your personal interests outweigh our legitimate interest.

Mailchimp

We use the services of Mailchimp, a service provided by Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA, on our website to organise and analyse the sending of newsletters. The data you enter to subscribe to the newsletter, such as your email address, is stored on Mailchimp's servers in the USA.

Mailchimp enables us to analyse the effectiveness of newsletter campaigns. When an email sent by Mailchimp is opened, a file contained in the email (known as a web beacon) connects to Mailchimp's servers in the USA. This determines whether the newsletter message has been opened and which links in the email have been clicked on. In addition, technical information such as the time of retrieval, IP address, browser type and operating system is recorded. This data cannot be assigned to individual newsletter recipients and is used exclusively for statistical evaluations. These evaluations help us to better tailor future newsletters to the interests of the recipients.

If you do not want Mailchimp to analyse your data, you must unsubscribe from our newsletter. To do this, we provide a corresponding unsubscribe link in every newsletter. Data processing is based on your consent in accordance with Art. 6 (1) (a) GDPR. You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations already carried out remains unaffected by this revocation.

We store your data for the purpose of sending you the newsletter and delete it both from our systems and from those of the newsletter service provider as soon as you unsubscribe from the newsletter. Data stored for other purposes remains unaffected by this.

When you unsubscribe from the newsletter distribution list, your email address may be stored by us or the newsletter service provider in a so-called blacklist to prevent future mailings. The data from the blacklist will be used exclusively for this purpose and will not be merged with other data. This serves both your interest and our interest in complying with legal requirements when sending newsletters, in accordance with the legitimate interest pursuant to Art. 6 (1) lit. f GDPR. Storage in the blacklist is unlimited in time. You can object to this storage if your interests outweigh our legitimate interest. For more information about Mailchimp's privacy practices, please visit: https://mailchimp.com/legal/terms/.

The company is certified under the EU-US Data Privacy Framework (DPF), an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when processing data in the US. Certification under the DPF requires companies to comply with these data protection standards.

Data transfers to the United States are based on the EU Commission's standard contractual clauses. Details can be found at https://mailchimp.com/eu-us-data-transfer-statement/ and https://mailchimp.com/legal/data-processing-addendum/#Annex_C_-_Standard_Contractual_Clauses.

To ensure that personal data is processed in accordance with our specifications and in compliance with the GDPR, we have concluded a data processing agreement (DPA) with the provider.

 

Presence on social media platforms

We operate public profiles on various social networks on our website. You can find more detailed information about the social networks we use in the relevant sections of our privacy policy.

Social networks such as Facebook, Twitter and others can comprehensively analyse your user behaviour when you visit their websites or a website with integrated social media content (e.g. like buttons or advertising banners). Visiting our social media presences triggers numerous data protection-relevant processing operations:

If you are logged into your social media account and visit our social media presence, the operator of the social media portal can assign this visit to your user account. However, your personal data may also be collected if you are not logged in or do not have an account with the respective social media portal. In this case, this data is collected, for example, via cookies stored on your device or by recording your IP address.

With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. This allows interest-based advertising to be displayed to you both within and outside the respective social media presence . If you have an account with the respective social network, interest-based advertising can be displayed on all devices on which you are or were logged in.

Please note that we cannot track all processing operations on social media portals. Depending on the provider, further processing operations may therefore be carried out by the operators of social media portals. For details, please refer to the terms of use and privacy policies of the respective social media portals.

Legal basis for data processing

Our social media presence serves to ensure the most comprehensive presence possible on the internet. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR. The analysis processes initiated by social networks may be based on different legal grounds, which must be specified by the operators of the social networks (e.g. consent within the meaning of Art. 6(1)(a) GDPR).

Controller and assertion of rights

When you visit our social media sites (e.g. Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during this visit. You can assert your rights (information, correction, deletion, restriction of processing, data portability and complaint) both against us and against the operator of the respective social media portal (e.g. against Facebook).

Despite our joint responsibility with the social media portal operators, we do not have full control over the data processing operations of the social media portals. Our options are largely determined by the corporate policy of the respective provider.

Duration of data storage

The data collected directly by us via our social media presence will be deleted from our systems as soon as you request us to do so, revoke your consent to storage or the purpose for data storage no longer applies. Stored cookies remain on your device until you delete them. Mandatory legal provisions – in particular retention periods – remain unaffected.

We have no influence on the storage period of your data stored by the operators of social networks for their own purposes. For details, please contact the operators of the social networks directly (e.g. via their privacy policy, see below).

Facebook page

Our company has a profile on Facebook. This service is provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter referred to as Meta). According to Meta, the data collected is also transferred to the USA and other third countries.

We have entered into a joint processing agreement (Controller Addendum) with Meta. This agreement specifies which data processing operations we and Meta are responsible for when you visit our Facebook page. You can view the agreement at the following link: https://www.facebook.com/legal/terms/page_controller_addendum.

You can adjust your advertising settings yourself in your user account. To do so, click on the following link and log in: https://www.facebook.com/settings?tab=ads.

The company is certified under the EU-US Data Privacy Framework (DPF), an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when processing data in the US. Certification under the DPF obliges companies to comply with these data protection standards.

Data transfers to the United States are based on the standard contractual clauses of the European Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381.

For further information, please refer to Facebook's privacy policy: https://www.facebook.com/about/privacy/.

Instagram page

Our company has a profile on Instagram. This service is provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

The company is certified under the EU-US Data Privacy Framework (DPF), an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when processing data in the US. Certification under the DPF requires companies to comply with these data protection standards.

Data transfers to the United States are based on the EU Commission's standard contractual clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://help.instagram.com/519522125107875 and https://de-de.facebook.com/help/566994660333381.

For more information on how your personal data is handled, please refer to Instagram's privacy policy: https://help.instagram.com/519522125107875.

LinkedIn page

Our company has a profile on LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn uses advertising cookies.

If you wish to disable LinkedIn advertising cookies, please use the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

The company is certified under the EU-US Data Privacy Framework (DPF), an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when processing data in the US. Certification under the DPF obliges companies to comply with these data protection standards.

Data transfers to the United States are based on the standard contractual clauses of the European Commission. Details can be found here: https://www.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs.

For more information on how your personal data is handled, please refer to LinkedIn's privacy policy: https://www.linkedin.com/legal/privacy-policy.

PinterestOur company has a profile on Pinterest. The operator is Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland. For more information on how your personal data is handled, please refer to Pinterest's privacy policy: https://policy.pinterest.com/de/privacy-policy.

YouTubeOur company has a profile on YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. For more information on how your personal data is handled, please refer to YouTube's privacy policy: https://policies.google.com/privacy?hl=de.

The company is certified under the EU-US Data Privacy Framework (DPF), an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when processing data in the US. Certification under the DPF requires companies to comply with these data protection standards.

 

Video conferencing

Data processing

We use online conferencing tools to communicate with our customers. The specific tools we use are listed below. When you communicate with us via video or audio conference, your personal data is collected and processed by us and the provider of the respective tool.

The tools collect the data you provide, including your email address and telephone number. They also process the duration of the conference, when you participated in the conference, the number of participants and other metadata.

In addition, the provider of the tool processes all technical data necessary to conduct the conference. This includes, in particular, IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or speaker, and the type of connection.

When you share content on this service, it is stored on the providers' servers. This includes cloud recordings, chat messages, voice messages, photos and videos that you have shared while using this service.

Please note that we do not have full control over the data processing operations of the tools used. For more information on data processing by the conference tools, please refer to the privacy policies of the respective tools used.

Purpose and legal basis

The conference tools are used to communicate with prospective or existing contractual partners or to offer certain services to our customers (Art. 6(1)( (b) GDPR). Furthermore, the use of the tools serves to generally simplify and accelerate communication with us or our company (legitimate interest within the meaning of Art. 6(1)(f) GDPR). If you have previously given your consent to data processing, the processing of your data will take place solely on the basis of Art. 6 (1) (a) GDPR; consent can be revoked at any time.

Storage period

The data collected directly by us via the video and conference tools will be deleted from our systems as soon as you request us to delete it, revoke your consent to its storage or the purpose for data storage no longer applies. Stored cookies remain on your device until you delete them. Mandatory legal retention periods remain unaffected.

We have no influence on the storage period of your data stored by the operators of the conference tools for their own purposes. For details, please contact the operators of the conference tools directly.

 

Extended warranty

If you use our warranty extension form, we will store all data resulting from this. We need this data to process your enquiry and to answer any follow-up questions.

This data is processed on the basis of Art. 6 (1) (b) GDPR, provided that your enquiry is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. Otherwise, processing is based on our legitimate interest in the effective processing of enquiries addressed to us (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) if you have given it beforehand.

The data you enter in the form will remain with us until you request us to delete it, revoke your consent to its storage, or the purpose for data storage no longer applies (e.g. after your enquiry has been processed). Mandatory legal provisions – in particular retention periods – remain unaffected.

We use Brevo, offered by Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, to process enquiries. When using the warranty form, you can consent to receiving our newsletter. The legal basis for this is Art. 6 (1) (a) GDPR. Brevo offers the option of viewing the performance of our newsletter. We can determine whether a newsletter has been opened, which links have been clicked on and what further actions have been taken after opening/clicking on the newsletter, e.g. a purchase. This enables us to analyse and evaluate our newsletter campaigns with the help of Brevo.

Brevo also offers the option of better tailoring the newsletters to our target groups by dividing the newsletter recipients into different categories, such as age, gender or place of residence. If you do not want Brevo to analyse your data, you can unsubscribe from the newsletter via a link. This link is available in every newsletter you receive.

For more information about Brevo, please visit: https://www.brevo.com/de/legal/privacypolicy/

Order processing

To ensure that personal data is processed in accordance with our specifications and in compliance with the GDPR, we have concluded a contract for order processing (AVV) with the provider.

 

Data transmission by independent sales representatives – information in accordance with Art. 14 GDPR

In some cases, we receive personal data from independent sales representatives. Sales representatives visit opticians to present Temming eyewear products. If interested, the sales representatives collect the opticians' contact details and forward them to Temming. We then contact the opticians to initiate a possible contractual relationship. The following categories of personal data are processed in this process: contact details (name, address, telephone number, email address). The data is used internally at Temming for further contact and contract processing. The data is not passed on to third parties unless this is necessary to fulfil legal obligations.

Legal basis

The legal basis for the processing of personal data is Art. 6 (1) (b) GDPR (contract initiation or contract). Personal data is processed for the purpose of acquisition and the initiation of contractual relationships.

Storage period

Personal data will be stored for as long as necessary to fulfil the contractual relationship. After termination of the contractual relationship, the data will be stored in accordance with the statutory retention periods and then deleted.

Source of data

The data originates from independent sales representatives working on behalf of Temming.

 

Matomo

Our website uses services and functions of the open source web analysis service Matomo (formerly Piwik) to analyse the user behaviour of our website visitors.

Type and scope of data processing

With the help of Matomo, we can determine, for example, at what times and from what location visitors viewed certain pages. We also collect and store data such as IP addresses, browsers used and operating systems. This information helps us to understand what actions you have taken on our website (e.g. clicked on certain pages, made purchases, etc.). Matomo uses technologies (such as cookies or fingerprinting systems) to recognise visitors when they return to our website. The information collected by Matomo about the use of this website is stored on our server. Your IP address is anonymised before it is stored.

Legal basis

The processing of personal data is based on Art. 6 (1) lit. f GDPR, as we have a legitimate interest in analysing website usage in order to optimise our online presence and offerings.

IP anonymisation

When using Matomo on this website, we use a function that shortens your IP address before analysis. This means that it can no longer be clearly assigned to you.

Hosting

The data collected through the analysis is not passed on to third parties, as we host Matomo exclusively on our own servers.

 

Google Maps

This website uses Google Maps. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. To use the functions, it is necessary to store your IP address. As a rule, the information is transferred to a Google server and stored there. The provider of this website has no influence on this data transfer. If Google Maps is activated, Google may use web fonts for the purpose of uniform font display. When you call up Google Maps, your browser loads the required fonts into your browser cache so that the fonts are displayed correctly.

Legal basis

The use of Google Maps is based on our legitimate interest in an appealing presentation of our online offerings and in making it easy to find the locations we specify (Art. 6 para. 1 lit. f GDPR). If corresponding consent has been requested, the data will be processed exclusively on the basis of your consent in accordance with Art. 6 (1) lit. a GDPR and § 25 (1) TDDDG. This consent can be revoked at any time.

The company is certified under the EU-US Data Privacy Framework (DPF), an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when processing data in the US. Certification under the DPF obliges companies to comply with these data protection standards.

Data transfers to the United States are based on the standard contractual clauses of the European Commission: https://business.safety.google/gdprcontrollerterms/sccs/ and https://business.safety.google/gdprcontrollerterms/. Google's privacy policy can be found here: https://policies.google.com/privacy?hl=de.

 

hCaptcha

Type and scope of processing

We have integrated components from hCaptcha into our website. hCaptcha is a service provided by Intuition Machines, Inc. and enables us to distinguish whether a contact request comes from a natural person or is automated by a programme. When you access this content, you establish a connection to the servers of Intuition Machines, Inc., 350 Alabama St, San Francisco, CA 94110, United States, whereby your IP address and, if applicable, browser data such as your user agent are transmitted. Furthermore, hCaptcha records the user's dwell time and mouse movements in order to distinguish automated requests from human ones. This data is processed exclusively for the above-mentioned purposes and to maintain the security and functionality of hCaptcha.

Purpose and legal basis

The use of hCaptcha is based on your consent in accordance with Art. 6 (1) lit. a GDPR and § 25 (1) TDDDG.

Storage period

We have no influence on the specific storage period of the processed data; this is determined by Intuition Machines, Inc. Further information can be found in the privacy policy for hCaptcha: https://www.hcaptcha.com/privacy.

 

jQuery CDN

Type and scope of processing

We use jQuery CDN to ensure the proper provision of content on our website. jQuery CDN is a service provided by jQuery that acts as a content delivery network (CDN) on our website.

A CDN helps to deliver content from our online offering, in particular files such as graphics or scripts, more quickly with the aid of regionally or internationally distributed servers. When you access this content, you establish a connection to jQuery servers, whereby your IP address and, if applicable, browser data such as your user agent are transmitted. This data is processed exclusively for the above-mentioned purposes and to maintain the security and functionality of jQuery CDN.

Purpose and legal basis

The use of the content delivery network is based on our legitimate interests, i.e. our interest in the secure and efficient provision and optimisation of our online offering in accordance with Art. 6(1)(f) GDPR.

Storage period

We have no influence on the specific storage period of the processed data; this is determined by jQuery. Further information can be found in the privacy policy for jQuery CDN: https://www.stackpath.com/legal/privacy-statement/.