This data protection declaration explains to you the type, scope and purpose of the processing of personal data within this online offer and the associated websites, functions and content (hereinafter collectively referred to as "online offer" or "website").

1. User rights
1.1 Users have the right, upon request, to receive information free of charge about the personal data stored about them by the person responsible. In addition, users have the right to correct incorrect data, restrict the processing and deletion of their personal data, if applicable, to assert their rights to data portability and, in the event of unlawful data processing being assumed, to file a complaint with the competent supervisory authority.
 
2. Right to object
2.1 Users can object to the future processing of their personal data in accordance with the legal requirements at any time. The objection can in particular be made against processing for direct marketing purposes.
 
3. Changes to the privacy policy
3.1 The person responsible reserves the right to change the data protection declaration in order to adapt it to changed legal situations or to changes in the service and data processing. If the consent of the user is required or components of the data protection declaration contain provisions of the contractual relationship with the users, the changes are only made with the consent of the users.
3.2 Users are asked to inform themselves regularly about the content of the data protection declaration.

4. Basic information on data processing and legal bases
4.1 The personal data of users processed in the context of this online offer includes inventory data (e.g. names and addresses), contract data (e.g. regarding the services used), usage data (e.g. the websites visited on this online offer, interest in its content), Meta / communication data (device IDs, IP addresses) and content data (e.g. entries in the contact form or guest book).
4.2 The term "user" includes all categories of persons affected by data processing. Above all, they include the visitors to this online offer. The terms used, such as “User” or “responsible person” are to be understood as gender-neutral.
4.3 The person responsible processes personal data of the users only in compliance with the relevant data protection regulations. This means that user data will only be processed if there is legal permission. This means, in particular, if the data processing is necessary or required by law to provide its contractual services (e.g. processing of orders) and online services, the consent of the user is available, as well as due to his legitimate interests (i.e. interest in analysis, optimization and (in the case of commercial use) economic operation and security of this online offer within the meaning of Art. 6 Paragraph 1 lit.f. .
4.4 With regard to the processing of personal data on the basis of the Data Protection Regulation (GDPR), the person responsible points out that the legal basis of the consent is Art. 6 Para. 1 lit. a and Art. 7 GDPR, the legal basis for processing for the performance of its services and implementation of contractual measures Art. 6 Para. 1 lit. b GDPR, the legal basis for processing to fulfill its legal obligations Art. 6 Para. 1 lit. c GDPR, and the legal basis for processing to protect its legitimate interests is Art. 6 Para. 1 lit. f GDPR.

5. Security Measures
5.1 The person responsible takes organizational, contractual and technical security measures in accordance with the state of the art to ensure that the provisions of data protection laws are complied with and thus protect the data processed by the person responsible against accidental or deliberate manipulation, loss, destruction or access by unauthorized persons to protect.
5.2 The security measures include in particular the encrypted transmission of data between your browser and its server.

6. Deletion of data
6.1 The data stored by the person responsible will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any statutory retention requirements. If the user data is not deleted because it is required for other and legally permissible purposes, its processing will be restricted. I.e. the data will be blocked and not processed for other purposes. This applies e.g. for user data that must be kept for commercial or tax reasons.

7. Transfer of data to third parties and third party providers
7.1 A transfer of data to third parties (ie in particular their transfer or transfer.) Only takes place on the basis of legal permissions and within the framework of the legal requirements To fulfill obligations towards users or if the person responsible makes use of the services of third parties within the scope of his legitimate interests.
7.2 If the person responsible uses the services of third parties to provide his services, the person responsible shall take appropriate legal precautions as well as appropriate technical and organizational measures to ensure the protection of personal data in accordance with the relevant statutory provisions.
7.3 If, within the scope of this data protection declaration, content, tools or other means are used by other providers (hereinafter jointly referred to as "third-party providers") and whose registered office is in a third country, it can be assumed that data will be transferred to the third-party providers' registered offices. Third countries are countries in which the GDPR is not a directly applicable law, i.e. basically countries outside the EU or the European Economic Area. The transfer of data to third countries takes place either if there is an adequate level of data protection, the consent of the user or other legal permission.

8. Cookies & range measurement
8.1 Cookies are information that is transferred from this web server or third-party web servers to the user's web browser and stored there for later retrieval. Cookies can be small files or other types of information storage. Unless expressly stated in this data protection declaration, the person responsible only uses so-called "session cookies", which are only stored for the duration of the current visit to his online offer (e.g. to enable your login status to be saved). A randomly generated unique identification number, a so-called session ID, is stored in a session cookie. A cookie also contains information about its origin and the storage period. These cookies cannot save any other data. Session cookies are deleted when you have finished using this online offer and e.g. log out or close the browser.
8.2 In the context of this data protection declaration, users are informed about the use of cookies in the context of pseudonymous range measurement.
8.3 If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.
8.4 You can use cookies, which are used for range measurement and advertising purposes, via the deactivation page of the network advertising initiative (http://optout.networkadvertising.org/) and also the US website (http://www.aboutads.info/ choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).

9. Hosting

​

9.1 This online offering is hosted by Wix.com Inc, (https://www.wix.com/). The wix data protection declaration can be found at the web address https://de.wix.com/about/privacy

9.2 The legal basis for processing is Art. 6 Paragraph 1 lit f. GDPR based on the legitimate interests in the use of a server and software infrastructure for reasons of security and efficiency. The data of the users are processed by Wix.com Inc only for the purpose of making this online offer available and maintaining its security.
 

10. Collection of access data

10.1 On the basis of his legitimate interests within the meaning of Art. 6 Para. 1 lit. f. GDPR data on every access to the server on which this service is located (so-called server log files). The access data includes the name of the accessed website, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page, IP address and the requesting provider .

10.2 Log file information is stored for security reasons (e.g. to investigate acts of abuse or fraud) for a maximum of seven days and then deleted. Data, the further storage of which is necessary for evidence purposes, are excluded from deletion until the respective incident has been finally clarified

11. Special functions of the online offer

11.1 This online offer will be further developed and may change in the future. In particular, individual functions of the online offer can be added or removed. The functions described below therefore apply if they are made available within the online offer (e.g. commercial use, guest book, forum, newsletter, content and services from third-party providers).

11.2 The legal basis for data processing in the context of making the functions available is Art. 6 Para. 1 lit. b. GDPR. If IP addresses are stored, this is done in accordance with. Art. 6 para. 1 lit. f. GDPR based on the legitimate interests of defense and / or prosecution of possible inadmissible content.

12. Processing of data in the context of customer relationships

12.1 If this online offer is used commercially, the person responsible processes inventory data (e.g. names and addresses as well as user contact details) and contract data (e.g. services used, names of contact persons, payment information) of customers and interested parties in order to fulfill contractual obligations and services according to Art. 6 para. 1 lit. b. GDPR.
 

13. Contact form and inquiries

13.1 When contacting the person responsible (via contact form or e-mail), the information provided by the user in accordance with. Art. 6 para. 1 lit. b. DSGVO processed to process the contact request and its processing.

14. Google Analytics

14.1 The person responsible uses Google Analytics, a web analysis service provided by Google, on the basis of their legitimate interests (i.e. interest in the analysis, optimization and (in the case of commercial use) economic operation of this online offer within the meaning of Art. 6 Para. 1 lit. f. GDPR) Inc. (“Google”). Google uses cookies. The information generated by the cookie about the use of the online offer by the user is usually transferred to a Google server in the USA and stored there.

14.2 Google is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

14.3 Google will use this information on its behalf to evaluate the use of this online offer by users, to compile reports on the activities within this online offer and to provide the person responsible with other services related to the use of this online offer and internet usage. In doing so, pseudonymous user profiles can be created from the processed data.

14.4 The person responsible only uses Google Analytics with activated IP anonymization. This means that the IP address of the user is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. The full IP address is only transmitted to a Google server in the USA and shortened there in exceptional cases.

14.5 The IP address transmitted by the user's browser will not be merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; Users can also prevent Google from collecting the data generated by the cookie and relating to their use of the online offer and from processing this data by downloading and installing the browser plug-in available under the following link: http: // tools .google.com / dlpage / gaoptout? hl = de.

14.6 Further information on data usage by Google, setting and objection options can be found on the Google website: https://www.google.com/intl/de/policies/privacy/partners (“Data usage by Google when you use websites or Apps of its partners "), http://www.google.com/policies/technologies/ads (" Data usage for advertising purposes "), http://www.google.de/settings/ads (" Manage information that Google uses to show you advertisements ”)
 

15. Facebook social plugins

15.1 The person responsible uses social plugins ("plugins") based on their legitimate interests (ie interest in the analysis, optimization and (in the case of commercial use) economic operation of their online offer within the meaning of Art. 6 Para. 1 lit. f. GDPR) the social network facebook.com, which is operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland ("Facebook"). The plugins can display interaction elements or content (e.g. videos, graphics or text contributions) and can be recognized by one of the Facebook logos (white “f” on a blue tile, the terms “like”, “like” or a “thumbs up” sign ) or are marked with the addition "Facebook Social Plugin". The list and the appearance of the Facebook social plugins can be viewed here: https://developers.facebook.com/docs/plugins/.

15.2 Facebook is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

15.3 If a user calls up a function of this online offer that contains such a plugin, his device establishes a direct connection with the Facebook servers. In doing so, user data relating to the visit and interests in this online offer as well as the software and hardware used, as well as the time of the visit and the IP address of the user are transmitted to Facebook. Here, user profiles can be created from the processed data and cookies with user profile data can be stored on their device. The user data processed by Facebook can be used for marketing purposes.

15.4 The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as the related rights and setting options to protect the privacy of users can be found in Facebook's data protection information: https://www.facebook.com/about/privacy /.

15.5 If a user is a Facebook member and does not want Facebook to collect data about him through this online offer and link it to his member data stored on Facebook, he must log out of Facebook before using this online offer and delete his cookies. Further settings and contradictions to the use of data for advertising purposes are possible within the Facebook profile settings: https://www.facebook.com/settings?tab=ads or via the US website http://www.aboutads.info / choices / or the EU page http://www.youronlinechoices.com/. The settings are platform-independent, i.e. they are adopted for all devices such as desktop computers or mobile devices.

16. Integration of services and content from third parties

16.1 The person responsible sets content or service offers within this online offer on the basis of his legitimate interests (i.e. interest in the analysis, optimization and (in the case of commercial use) economic operation of this online offer within the meaning of Art. 6 Para. 1 lit. f. GDPR) from third-party providers to use their content and services, such as Embed videos or fonts (hereinafter referred to as “content”). This always presupposes that the third-party providers of this content perceive the IP address of the user, since they would not be able to send the content to their browser without the IP address. The IP address is therefore required to display this content. The person responsible endeavors to only use such content whose respective provider only uses the IP address to deliver the content. Third-party providers can also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. The "pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information can also be stored in cookies on the user's device and contain, among other things, technical information about the browser and operating system, referring websites, visiting time and other information about the use of this online offer and information about the location of the user, as well as information from others Sources can be linked to user profiles.

16.2 The following illustration provides an overview of third-party providers and their content, along with links to their data protection declarations, which provide further information on the processing of data and, in some cases, the already mentioned here, possibilities of objection (so-called opt-out) contain:

- Videos from the “YouTube” platform of the third-party provider Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Data protection declaration: https://www.google.com/policies/privacy/, Opt-Out: https://www.google.com/settings/ads/.

- Maps of the "Google Maps" service provided by the third-party provider Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Data protection declaration: https://www.google.com/policies/privacy/, Opt-Out: https://www.google.com/settings/ads/.

- External fonts from Google, Inc., https://www.google.com/fonts ("Google Fonts"). The integration of the Google Fonts takes place via a server call to Google (usually in the USA. Data protection declaration: https://www.google.com/policies/privacy/, Opt-Out: https://www.google.com/ settings / ads /.

- Google Recaptcha, a so-called Captcha verification by the third-party provider Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Google Recaptcha is used to verify whether entries on its website were made by humans or by bots or the like. Systems originate. Data protection declaration: https://www.google.com/policies/privacy/, Opt-Out: https://www.google.com/settings/ads/. Further data protection information and information on opting out can be found in the respective Google Recaptcha requests that are issued to users.

.