Datenschutzerklärung - Fortna

DATA PROTECTION DECLARATION IN ACCORDANCE WITH THE GDPR (GENERAL DATA PROTECTION REGULATION)

I. Name and address of the person responsible

The person responsible within the meaning of the Basic Data Protection Regulation and other national data protection laws of the member states as well as other provisions of data protection law is:

Pierau Unternehmensberatung GmbH
Grotenbleken 33
22931 Hamburg
Germany
Phone: +49 (0)40 606899-0
E-Mail: info@fortna-pierau.de
Website: www.fortna-pierau.de

 

II. Name and address of the Data Protection Officer

The data protection officer of the person responsible is:

Pierau Unternehmensberatung GmbH
Data Protection Department
E-Mail: datenschutz@fortna-pierau.de
Phone: +49 (0)40 606899-0

 

III. General information on data processing

1. Scope of processing of personal data

We collect and use the personal data of our users only to the extent necessary to provide a functional website including our content and services. The collection and use of personal data of our users takes place regularly and only with their consent. An exception applies to cases in which prior consent cannot be obtained for practical reasons and the processing of the data is permitted by law.

2. Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for processing of personal data, Art. 6 para. 1 lit. a of the EU General Data Protection Regulation (GDPR) serves as the legal basis for the processing of personal data. Art. 6 para. 1 lit. b GDPR serves as a legal basis for the processing of personal data required for the performance of a contract to which the data subject is a party. This also applies to processing operations that are necessary to carry out pre-contractual measures.

If the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.

In the event that vital interests of the data subject or another natural person necessitate the processing of personal data, Art. 6 para. 1 lit. d GDPR serves as the legal basis.

If the processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and fundamental freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for the processing.

3. Data deletion and storage duration

The personal data of the person concerned will be deleted or blocked as soon as the purpose of storage no longer applies. In addition, such storage may take place if provided for by the European or national legislator in EU regulations, laws or other regulations to which the person responsible is subject. The data shall also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless it is necessary for further storage of the data for the conclusion or fulfillment of a contract.

 

IV. Provision of the website and creation of log files

1. Description and scope of data processing

Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer. The following data is collected:

  1. Information about the browser type and the version used
  2. The user's operating system
  3. The user's Internet Service Provider
  4. The IP address of the user
  5. Date and time of access
  6. Websites from which the user's system accesses our website
  7. Websites accessed by the user's system through our website

The data is also stored in the log files of our system. Storage of this data together with other personal data of the user does not take place.

2. Legal basis for data processing

The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR.

3. Purpose of the data processing

The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. For this purpose, the IP address of the user must remain stored for the duration of the session.

The data is stored in log files in order to ensure the functionality of the website. The data is also used to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

These purposes also include our legitimate interest in data processing pursuant to Art. 6 para. 1 lit. f GDPR.

4. Duration of storage

The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected. In the case of data collection for the provision of the website, this is the case when the session in question has ended.

If the data is stored in log files, this is the case after no more than seven days. An additional storage is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.

5. Possibility of opposition and removal

The collection of data for the provision of the website and the storage of data in log files is mandatory for the operation of the website. Consequently, there is no possibility of objection on the part of the user.

 

V. Use of cookies

1. Description and scope of data processing

Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user's computer system. When a user visits a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again.

We use functional cookies to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change.

When calling up our website, the user is informed about the use of cookies for analysis purposes and their consent to the processing of the personal data used in this combination is obtained. In this context there is also a reference to this data protection declaration.

2. Legal basis for data processing

The legal basis for the processing of personal data using technically necessary cookies is Art. 6 para. 1 lit. f GDPR.

The legal basis for the processing of personal data using cookies for analysis purposes is Art. 6 para. 1 lit. a GDPR if the user has given their consent.

3. Purpose of the data processing

In these purposes also our legitimate interest lies in the processing of personal data in accordance with Art. 6 para. 1 lit. f GDPR.

4. Duration of storage, possibility of objection and removal

Cookies are stored on the user's computer and transmitted to our site by the user. Therefore, you as a user also have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it is possible that not all functions of the website can be used to the full extent.

 

VI. Newsletter

1. Description and scope of data processing

Our website www.fortna-pierau.de enables users to register to receive our newsletter.

1.1 Summary
To send and personalize the newsletter, the following personal data is collected when you register:

  • Salutation and title
  • First name and surname
  • Company
  • Preferred Language
  • E-mail address
  • Information on extend of newsletter reception (regional options selected by the user upon registration)

1.2 Rapidmail
Registration takes place via online forms from rapidmail GmbH. These forms can be accessed via our website via a direct link, for example in email signatures and advertisements from our company, and by reading QR codes, for example in print advertisements.
Once you subscribe to the newletters of our company, your supplied data will be transferred from the form to the entity responsible for the processing of the data.

1.3 Double Opt-In
The subscription for our newsletter takes place in a so-called double opt-in procedure. This means that after submitting your data in the form you will receive an email in which you will be asked to confirm your subscription.

This confirmation is necessary so that nobody can register with someone else's e-mail address. When registering for the newsletter, the user's IP address and the date and time of registration are saved. This serves to prevent misuse of the services or the e-mail address of the person concerned.

1.4 Transfer of Data
The data will not be passed on to third parties (exception: Rapidmail, see "2. Use of Rapidmail"). There is an exception if there is a legal obligation to pass it on.

1.5 Use of Data
The data will only be used to send the newsletter. The data subject can cancel the subscription to the newsletter at any time. The consent to the storage of personal data can also be revoked at any time. There is a corresponding link in every newsletter for this purpose. The legal basis for the processing of the data after the user has registered for the newsletter is Article 6 (1) (a) GDPR if the user has given his / her consent. The legal basis for sending the newsletter as a result of the sale of goods or services is Section 7 (3) UWG.

2. Use of Rapidmail
1.1 Description and Purpose

We use rapidmail to send newsletters. The provider is rapidmail GmbH, Wentzingerstraße, 21, 79106 Freiburg, Germany.

With rapidmail, among other things, the dispatch of newsletters is organized and analyzed. The data you enter for the purpose of subscribing to the newsletter will be stored on rapidmail's servers in Germany. If you do not want an analysis by rapidmail, you must unsubscribe from the newsletter. We provide a link for this in every newsletter message.

For the purpose of analysis, the emails sent with rapidmail contain a so-called tracking pixel, which connects to the rapidmail servers when the email is opened. In this way it can be determined whether a newsletter message has been opened. Furthermore, with the help of rapidmail, we can determine whether and which links are clicked on in the newsletter message. All links in the e-mail are so-called tracking links with which your clicks can be counted.

2.2 Legal Basis
The legal basis for data processing is Art. 6 Para. 1 lit. a) GDPR.

2.3 Recipient
The recipient of the data is rapidmail GmbH.

2.4 Transfer to Third Countries
The data will not be transferred to third countries.

3. Duration
The data stored by us as part of your consent for the purpose of the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the servers of rapidmail after you unsubscribe from the newsletter. This does not affect data that we have stored for other purposes.

4. Possibility of Opposition and Removal
You have the option of withdrawing your consent to data processing with future effect at any time. The legality of the data processing operations that have already taken place remains unaffected by the revocation.

You will find a link to unsubscribe from our newsletter in every issue of our newsletter. If you do not have an issue of the newsletter, please send us an email to datenschutz@fortna-pierau.de.

5. Addional Data Protection Information
For more information, see the data protection information from rapidmail at: https://www.rapidmail.de/datensicherheit. Näheres zu den Analyse-Funktionen von rapidmail entnehmen Sie folgendem Link: https://www.rapidmail.de/wissen-und-hilfe

The information on data protection and data analytics provided by rapidmail is provided in German. For a translation to English, please contact marketing@fortna-pierau.de

 

VII. E-mail contact

1. Description and scope of data processing

Contact can be established via the e-mail addresses provided. In this case, the personal data of the user transmitted with the e-mail will be stored.

In this context, it does not pass on the data to third parties. The data is used exclusively for processing the conversation.

2. Legal basis for data processing

The legal basis for the processing of the data is Art. 6 para. 1 lit. a GDPR if the user has given their consent.

The legal basis for processing the data transmitted in the course of sending an e-mail is Art. 6 para. 1 lit. f GDPR. If the purpose of the e-mail contact is to conclude a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.

3. Purpose of the data processing

The processing of personal data from the received e-mail is solely for processing the contact. In this case, this is also the necessary legitimate interest in the processing of the data.

4. Duration of storage

The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected. With regard to the personal data sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is terminated when it can be inferred from the circumstances that the matter in question has been conclusively clarified.

5. Possibility of opposition and removal

The user has the possibility to revoke their consent to the processing of personal data at any time. If the user contacts us by e-mail, they can object to the storage of their personal data at any time. In such a case, the conversation cannot be continued.

To revoke your consent to the use of your personal data for processing, please send an e-mail to datenschutz@fortna-pierau.de..

In this case, all personal data stored in the course of establishing contact will be deleted.

 

VIII. Rights of the data subject

If your personal data is processed, you are the data subject within the context of the GDPR and you are entitled to the following rights in relation to the person responsible:

1. Right to information

You can request confirmation from the person responsible as to whether personal data relating to you will be processed by us.

In the event of such processing, you may request the following information from the person responsible:

  1. the purposes for which the personal data are processed;
  2. the categories of personal data processed;
  3. the recipients or categories of recipients to whom the personal information about you has been or will be disclosed;
  4. the planned duration of the storage of the personal data concerning you or, if it is not possible to provide specific information in this regard, criteria for determining the duration of the storage;
  5. the existence of a right to rectify or delete personal data concerning you, a right to limit the processing by the person responsible or a right to object to such processing;
  6. the existence of a right of appeal to a supervisory authority;
  7. all available information on the origin of the data, if the personal data is not collected from the data subject;
  8. the existence of automated decision-making including profiling in accordance with Article 22 para. 1 and para. 4 GDPR and - at least in these cases - meaningful information on the logic involved and the scope and intended effects of such processing on the data subject.

You have the right to request information as to whether the personal data concerning you will be transferred to a third country or to an international organization. In this context, you may request to be informed of the appropriate guarantees pursuant to Art. 46 GDPR in connection with the transfer.

2. Right to rectification

You have the right to have your personal data corrected and/or completed by the person responsible if the personal data processed concerning you is inaccurate or incomplete. The person responsible must carry out the rectification immediately.

3. Right to restrict processing

Under the following conditions, you may request that the processing of your personal data be restricted:

  1. for a period of time which allows the person responsible to verify the accuracy of the personal data if you dispute the accuracy of the personal data concerning you;
  2. if the processing is unlawful and you refuse to delete the personal data, requesting instead that use of the personal data be restricted;
  3. the person responsible no longer needs the personal data for the purposes of processing, but you need them to assert, exercise or defend legal claims, or
  4. if you have lodged an objection against the processing pursuant to Art. 21 para. 1 GDPR and it has not yet been determined whether the justified reasons of the person responsible outweigh your reasons.

Where the processing of personal data concerning you has been restricted, such data may not be processed, with the exception of their storage, without your consent or for the purpose of asserting, exercising or defending rights or protecting the rights of another natural or legal person or for reasons of an important public interest of the European Union or of a Member State.

If the processing restriction has been restricted in accordance with the above conditions, you will be informed by the person responsible before the restriction is lifted.

4. Right to deletion

a) Duty to delete

You may request that the person responsible deletes the personal data concerning you immediately and the person responsible is obliged to delete this data immediately if one of the following reasons applies:

  1. The personal data concerning you is no longer necessary for the purposes for which it was collected or otherwise processed.
  2. You revoke your consent on which the processing pursuant to Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. a GDPR was based and there is no other legal basis for the processing.
  3. You object to the processing pursuant to Art. 21 para. 1 GDPR and there are no overriding legitimate reasons for the processing, or you object to the processing pursuant to Art. 21 para. 2 GDPR.
  4. The personal data concerning you has been processed unlawfully.
  5. The deletion of personal data concerning you is necessary to fulfil a legal obligation under European Union law or the law of the Member States to which the person responsible is subject.
  6. The personal data relating to you has been collected in relation to information society services offered pursuant to Art. 8 para. 1 GDPR.

b) Information to third parties

If the person responsible has made the personal data concerning you public and is obliged to delete it in accordance with Art. 17 para. 1 GDPR, they shall take appropriate measures, including technical measures, taking into account available technology and implementation costs, to inform the persons responsible for data processing who process the personal data that you, as the person concerned, have requested them to delete all links to this personal data or copies or replications of this personal data.

c) Exceptions

  1. to exercise the right to freedom of expression and information;
  2. to fulfill a legal obligation required by the law of the European Union or of the Member States to which the person responsible is subject, or to carry out a task of public interest or in the exercise of public authority delegated to the person responsible;
  3. for reasons of public interest in the field of public health pursuant to Art. 9 para. 2 lit. h and i and Art. 9 para. 3 GDPR;
  4. for archival purposes of public interest, scientific or historical research purposes or for statistical purposes acc. Article 89 para. 1 GDPR, to the extent that the law referred to in subparagraph a) is likely to render impossible or seriously affect the achievement of the objectives of that processing, or
  5. to assert, exercise or defend legal claims.
    The right to deletion does not exist if the processing is necessary.

5. Right to information

If you have exercised your right to rectify, delete or restrict the processing of your personal data against the person responsible, the latter is obliged to notify all recipients to whom the personal data concerning you has been disclosed of such rectification, deletion or restriction, unless this proves impossible or involves a disproportionate effort.

You have the right to be informed about these recipients by the person responsible.

6. Right to data portability

You have the right to receive the personal data concerning you, that you have provided to the responsible person, in a structured, common and machine-readable format. In addition, you have the right to communicate this data to another person responsible without being hindered by the person responsible to whom the personal data was provided, provided that

  1. the processing is based on a consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR or on a contract pursuant to Art. 6 para. 1 lit. b GDPR and
  2. processing is carried out using automated procedures.

In exercising this right, you also have the right to request that the personal data concerning you be transmitted directly by one responsible person to another responsible person, insofar as this is technically feasible. Freedoms and rights of other persons must not be affected by this.

The right to data transfer does not apply to the processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the person responsible.

7. Right to object

You have the right, for reasons arising from your particular situation, to object at any time to the processing of your personal data on the basis of Art. 6 para. 1 lit. e or f GDPR; this also applies to profiling based on these provisions.

The person responsible will no longer process the personal data concerning you unless they can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is intended to assert, exercise or defend legal claims.

If the personal data relating to you is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct mail.

If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.

You have the possibility to exercise your right of objection in relation to the use of Information Society services - notwithstanding Directive 2002/58/EC - by means of automated procedures using technical specifications.

8. Right to revoke the declaration of consent under data protection law

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of your consent does not affect the legality of the processing carried out on the basis of your consent until you revoke it.

9. Automated decision in individual cases including profiling

You have the right not to be subject to any decision based solely on automated processing, including profiling, that has any legal effect on you or similarly significantly affects you. This does not apply if the decision

  1. is necessary for the conclusion or performance of a contract between you and the person responsible,
  2. is authorized by legislation of the European Union or of the Member States to which the person responsible is subject and contains adequate measures to safeguard your rights and freedoms and your legitimate interests, or
  3. is with your explicit consent.

However, these decisions may not be based on special categories of personal data pursuant to Art. 9 para. 1 GDPR, unless Art. 9 para. 2 lit. a or g applies and appropriate measures have been taken to protect the rights and freedoms as well as your legitimate interests.

In the cases referred to in (1) and (3), the person responsible shall take reasonable steps to safeguard the rights and freedoms and your legitimate interests, including at least the right of the person responsible to obtain the intervention of a person, to present his or her point of view and to contest the decision.

10. Right of appeal to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you shall have the right to complain to a supervisory authority, in particular in the Member State of your residence, place of work or place of presumed infringement, if you consider that the processing of your personal data is in breach of the GDPR.

The supervisory authority to which the complaint was submitted shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.

 

IX. Use of the Google Tag Manager

This section was created with the Datenschutz Generator by AdSimple

Der Text ist urheberrechtlich geschützt.

1. What is the Google Tag Manager?

For our website we use the Google Tag Manager from Google Inc. For the European area, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is responsible for all Google services. This Tag Manager is one of many helpful marketing products from Google. Using the Google Tag Manager, we can centrally integrate and manage code sections from various tracking tools that we use on our website.

In this data protection declaration we want to explain in more detail what the Google Tag Manager does, why we use it and in what form data is processed.

The Google Tag Manager is an organizational tool with which we can integrate and manage website tags centrally and via a user interface. Tags are small sections of code that, for example, record (track) your activities on our website. For this purpose, JavaScript code sections are used in the source code of our site. The tags often come from Google - internal products such as Google Ads or Google Analytics, but tags from other companies can also be integrated and managed via the manager. Such tags take on different tasks. You can collect browser data, feed marketing tools with data, integrate buttons, set cookies and also track users across multiple websites.

2. Why do we use Google Tag Manager for our website?

In order to make our website as good as possible for you and everyone who is interested in our products and services, we need various tracking tools such as Google Analytics. The data collected by these tools shows us what interests you most, where we can improve our services and who might be most interested in our offers. And for this tracking to work, we have to integrate the corresponding JavaScript code into our website. In principle, we could incorporate each code section of the individual tracking tools separately into our source code. However, this takes a relatively long time, and it is easy to lose track of things. That is why we use the Google Tag Manager. We can easily integrate the necessary scripts and manage them from one place. In addition, the Google Tag Manager offers an easy-to-use user interface and no programming knowledge is required. This is how we organize our tags.

3. What data is saved by the Google Tag Manager?

The Tag Manager itself is a domain that does not set any cookies and does not save any data. It acts as a mere "administrator" of the implemented tags. The data is recorded by the individual tags of the various web analysis tools. In the Google Tag Manager, the data is passed through to the individual tracking tools and not saved.

The situation is completely different, however, with the integrated tags of the various web analysis tools, such as Google Analytics. Depending on the analysis tool, various data about your web behaviour are usually collected, saved and processed with the help of cookies. To do this, please read our data protection texts on the individual analysis and tracking tools that we use on our website.

In the Tag Manager account settings, we have allowed Google to receive anonymized data from us. However, this only concerns the use and use of our Tag Manager and not your data, which is stored via the code sections. We enable Google and others to receive selected data in anonymized form. We therefore consent to our website data being passed on anonymously. In spite of long research, we were unable to find out exactly which summarized and anonymous data is forwarded. In any case, Google will delete all information that could identify our website. Google combines the data with hundreds of other anonymous website data and creates user trends as part of benchmarking measures. Benchmarking compares your own results with those of your competitors. Processes can be optimized on the basis of the information collected.

4. How long and where will the data be stored?

When Google stores data, this data is stored on its own Google servers. The servers are distributed all over the world. Most of them are in the USA. At https://www.google.com/about/datacenters/locations/ you can read exactly where the Google servers are located.

How long the individual tracking tools store your data can be found in our individual data protection texts for the individual tools.

5. How can I delete my data or prevent data storage?

The Google Tag Manager itself does not set cookies but manages tags from various tracking websites. In our data protection texts for the individual tracking tools (use of Google Analytics), you will find detailed information on how to delete or manage your data.

Please note that when you use this tool, your data can also be stored and processed outside the EU. Most countries outside of the EEA (including the USA) are not considered secure under current European data protection law. Data to these insecure countries may not simply be transferred, stored and processed there unless there are suitable guarantees in place (such as EU standard contractual clauses) between us and the non-EEA service provider.

6. Legal Basis

The use of the Google Tag Manager requires your consent, which we obtained with our cookie pop-up. This agreement provides, according to Art. 6 para. 1 lit .a GDPR (consent) is the legal basis for the processing of personal data, as it can occur when it is collected by Google Fonts.

In addition to consent, we have a legitimate interest in analyzing the behaviour of website visitors and thus improving our offer both technically and economically. With the help of Google Tag Managers we can also improve profitability. The legal basis for this is Art. 6 para. 1 lit . f GDPR (legitimate interests).We only use the Google Tag Manager if you have given your consent.

We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. The data processing is mainly done by Google (if, for example, Google Analytics is used in the Google Tag Manager). This can lead to data not being processed and stored anonymously. Furthermore, US government authorities may have access to individual data. It can also happen that this data is linked to data from other Google services with which you have a user account.

If you want to find out more about the Google Tag Manager, we recommend the FAQs at https://www.google.com/intl/de/tagmanager/faq.html.

 

XI. Use of Google Analytics

This section was created with the Datenschutz Generator by AdSimple

Der Text ist urheberrechtlich geschützt.

1. Google Analytics IP anonymization

We have implemented the IP address anonymization of Google Analytics on this website. This function was developed by Google so that this website can comply with the applicable data protection regulations and recommendations of the local data protection authorities if they prohibit the storage of the full IP address. The anonymization or masking of the IP takes place as soon as the IP addresses arrive in the Google Analytics data collection network and before the data is stored or processed.

You can find more information on IP anonymization at https://support.google.com/analytics/answer/2763052?hl=en.

2. Google Analytics deactivation link

If you click on the following deactivation link, you can prevent Google from recording further visits to this website. Warning: The deletion of cookies, the use of the incognito / private mode of your browser, or the use of another browser will result in data being collected again.

Deactivate Google Analytics

3. Google Analytics add-on for data processing

We have concluded a direct customer contract with Google for the use of Google Analytics by accepting the “data processing addendum” in Google Analytics.

You can find more about the addition on data processing for Google Analytics here: https://support.google.com/analytics/answer/3379636?hl=en&utm_id=ad

4. Our use of Google Analytics

A. What is Google Analytics?

We use the analysis tracking tool Google Analytics (GA) from the American company Google Inc. on our website. For the European area, the company Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is responsible for all Google services. Google Analytics collects data about your actions on our website. For example, if you click on a link, this action is saved in a cookie and sent to Google Analytics. With the help of the reports we receive from Google Analytics, we can better tailor our website and our service to your needs. In the following, we will go into more detail about the tracking tool and, above all, inform you about which data is stored and how you can prevent this.

Google Analytics is a tracking tool that is used to analyze the traffic on our website. In order for Google Analytics to work, a tracking code is built into the code of our website. When you visit our website, this code records various actions that you carry out on our website. As soon as you leave our website, this data is sent to the Google Analytics server and stored there.

Google processes the data and we receive reports on your user behavior. These reports can include the following:

  • Target group reports: With target group reports, we get to know our users better and know more precisely who is interested in our service.
  • Ad reports: Ad reports make it easier for us to analyze and improve our online advertising.
  • Acquisition Reports: Acquisition reports give us helpful information on how we can get more people excited about our service.
  • Behavioral Reports: This is where we learn how you interact with our website. We can understand which route you take on our site and which links you click.
  • Conversion reports : Conversion is a process in which you carry out a desired action based on a marketing message. For example, when you go from being a pure website visitor to being a buyer or newsletter subscriber. With the help of these reports, we can find out more about how our marketing measures are received by you. This is how we want to increase our conversion rate.
  • Real-time reports: Here we always find out immediately what is happening on our website. For example, we can see how many users are reading this text.

B. Why do we use Google Analytics on our website?

Our goal with this website is clear: We want to offer you the best possible service. The statistics and data from Google Analytics help us to achieve this goal.

The statistically evaluated data show us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimize our site so that interested people can find it more easily on Google. On the other hand, the data helps us to better understand you as a visitor. We therefore know very well what we need to improve on our website in order to offer you the best possible service. The data also help us to carry out our advertising and marketing measures in a more individual and cost-effective manner. After all, it only makes sense to show our products and services to people who are interested in them.

C. Which data is saved by Google Analytics?

Google Analytics uses a tracking code to create a random, unique ID that is linked to your browser cookie. This is how Google Analytics recognizes you as a new user. The next time you visit our site, you will be recognized as a "returning" user. All collected data is saved together with this user ID. This is how it is possible to evaluate pseudonymous user profiles in the first place.

In order to be able to analyze our website with Google Analytics, a property ID must be inserted into the tracking code. The data is then saved in the corresponding property. The Google Analytics 4 property is standard for every newly created property. Alternatively, you can also create the Universal Analytics Property. Depending on the property used, data are stored for different lengths of time.

Tags such as cookies and app instance IDs measure your interactions on our website. Interactions are all types of actions that you carry out on our website. If you also use other Google systems (such as a Google account), data generated by Google Analytics can be linked to third-party cookies. Google does not pass on any Google Analytics data unless we, as the website operator, approve it. Exceptions may be made if required by law.

The following cookies are used by Google Analytics:

Name: _ga
Value: 2.1326744211.152311288982-5
Purpose: By default, analytics.js uses the cookie _ ga to save the user ID. Basically, it is used to differentiate website visitors.
Expiry Date: after 2 years

Name: _gid
Value: 2.1687193234.152311288982-1
Purpose: Das Cookie dient auch zur Unterscheidung der Webseitenbesucher
Expiry Date:  after 24 hours

Name: _gat_gtag_UA_
Value: 1
Purpose: Is used to lower the request rate. If Google Analytics is provided via the Google Tag Manager, this cookie is given the name _ dc_gtm _ < property-id >.
Expiry Date: after 1 minute

Name: AMP_TOKEN
Value: not specified
Purpose: The cookie has a token with which a user ID can be retrieved from the AMP client ID service. Other possible values indicate a logout, a request, or an error.
Expiry Date: after 30 seconds up to a year

Name: __utma
Value: 1564498958.1564498958.1564498958.1
Purpose: This cookie can be used to track your behaviour on the website and to measure performance. The cookie is updated every time information is sent to Google Analytics.
Expiry Date: after 2 years

Name: __utmt
Value: 1
Purpose: The cookie is used like _ gat_gtag_UA _ < property-id > to deccelerate the request rate.
Expiry Date: after 10 minutes

Name: __utmb
Value: 3.10.1564498958
Purpose: This cookie is used to determine new sessions. It is updated every time new data or information is sent to Google Analytics.
Expiry Date: after 30 minutes

Name: __utmc
Value: 167421564
Purpose: This cookie is used to set new sessions for returning visitors. This is a session cookie and is only saved until you close the browser again.
Expiry Date: after closing the browser

Name:  __utmz
Value:  m|utmccn=(referral)|utmcmd=referral|utmcct=/
Purpose:  The cookie is used to identify the source of the traffic on our website. This means that the cookie stores from where you came to our website. That could have been another page or an advertisement.
Expiry Date:  after 6 months

Name:  __utmv
Value:  not specified
Purpose:  The cookie is used to save user-defined user data. It is always updated when information is sent to Google Analytics.
Expiry Date:  after 2 years

Note: This list cannot claim to be complete, as Google changes the choice of their cookies again and again.

Please find below an overview of the most important data that is collected with Google Analytics:

Heatmaps: Google creates so-called heatmaps . With heatmaps you can see exactly those areas that you click. In this way we get information about which parts of our website you are looking at.

Session Duration: Google defines the session duration as the time that you spend on our site without leaving the site. If you have been inactive for 20 minutes, the session ends automatically.

Bounce Rate: If you look at only one page on our website then leave immediately

IP address: The IP address is only shown in abbreviated form so that it cannot be clearly assigned.

Location: The country and your approximate location can be determined via the IP address. This process is also known as IP location determination.

Technical information: The technical information includes, among other things, your browser type, your Internet provider or your screen resolution.

Source of origin: Google Analytics and ourselves are also interested which website or advertising you visited before you came to our site.

Further data are contact details, any ratings, playing media (e.g. when you play a video on our site), sharing content via social media or adding it to your favourites. The list does not claim to be complete and only serves as a general guide to data storage by Google Analytics.

D. How long and where will the data be stored?

Google has distributed your servers all over the world. Most of the servers are located in America and consequently your data is mostly stored on American servers. Here you can read exactly where the Google data centers are located: https://www.google.com/about/datacenters/locations/

Your data is distributed on various physical data carriers. This has the advantage that the data can be accessed more quickly and is better protected against manipulation. Every Google data center has appropriate emergency programs for your data. If, for example, the hardware at Google fails or natural disasters paralyze servers, the risk of service interruption at Google remains low.

The retention period of the data depends on the properties used. When using the newer Google Analytics 4 properties, the retention period of your user data is set to 14 months. For other so-called event data, we have the option of choosing a retention period of 2 months or 14 months.

At Universal Analytics Properties, Google Analytics has set a standardized retention period for your user data of 26 months. Then your user data will be deleted. However, we have the option of choosing the retention period for user data ourselves. We have five options for this:

  • Deletion after 14 months
  • Löschung nach 26 Monaten
  • Deletion after 38 months
  • Deletion after 50 months
  • No automatic deletion

In addition, there is also the option that data will only be deleted if you no longer visit our website within the period selected by us. In this case, the retention period is reset every time you visit our website again within the specified period.

When the specified period has expired, the data is deleted once a month. This retention period applies to your data linked to cookies, user identification and advertising IDs ( e.g. cookies from the DoubleClick domain). Report results are based on aggregated data and are stored independently of user data. Aggregated data is a merging of individual data into a larger unit.

E. How can I delete my data or prevent data storage?

According to the data protection law of the European Union, you have the right to receive information about your data, to update it, to delete it or to restrict it. Use the browser add-on to deactivate Google Analytics JavaScript (ga.js, analytics.js, dc.js) to prevent Google Analytics from using your data. You can download and install the browser add-on at https://tools.google.com/dlpage/gaoptout?hl=en Please note that this add-on only deactivates data collection by Google Analytics.

If you generally want to deactivate, delete or manage cookies (independent of Google Analytics), there are separate instructions for each browser:

Chrome: Delete, activate and manage cookies in Chrome

Safari: manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have stored on your computer

Internet Explorer: deleting and managing cookies

Microsoft Edge: Deleting and managing cookies

F. Legal basis

The use of Google Analytics requires your consent, which we obtained with our cookie popup. This agreement provides, according to Art. 6 para. 1 lit . a GDPR (consent) is the legal basis for the processing of personal data, as it can occur when it is collected by web analytics tools. Art. 6 para. 1 lit .a GDPR (consent) is the legal basis for the processing of personal data, as it can occur when it is collected by Google Fonts.

In addition to consent, we have a legitimate interest in analyzing the behaviour of website visitors and thus improving our offer technically and economically. With the help of Google Analytics, we recognize website errors, identify attacks and improve profitability. The legal basis for this is Art. 6 para. 1 lit . f GDPR (legitimate interests).. Nevertheless, we only use Google Analytics if you have given your consent.

We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. The data processing is mainly done by Google. This can lead to data not being processed and stored anonymously. Furthermore, US government authorities may have access to individual data. It can also happen that this data is linked to data from other Google services with which you have a user account.

We hope we have been able to provide you with the most important information about data processing by Google Analytics. If you want to find out more about the tracking service, we recommend these two links: https://marketingplatform.google.com/about/analytics/terms/us/ and https://support.google.com/analytics/answer/6004245?hl=en.

 

XI. Use of Google Fonts

This section was created with the Datenschutz Generator by AdSimple

Der Text ist urheberrechtlich geschützt.

 1. 1. What are Google Fonts?

We use Google Fonts on our website. These are the “Google Fonts” from Google Inc. For the European area, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is responsible for all Google services.

You do not have to log in or enter a password to use Google fonts. Furthermore, no cookies are stored in your browser. The files (CSS, fonts / fonts) are requested via the Google domains fonts.googleapis.com and fonts.gstatic.com. According to Google, the requests for CSS and fonts are completely separate from all other Google services. If you have a Google account, you don't need to worry that your Google account details will be transmitted to Google while you are using Google Fonts. Google records the use of CSS (Cascading Style Sheets) and the fonts used and stores this data securely. We will take a closer look at what the data storage looks like.

Google Fonts (formerly Google Web Fonts) is a directory with over 800 fonts that Google makes available to its users free of charge.

Many of these fonts are released under the SIL Open Font License, while others are released under the Apache license. Both are free software licenses.

2. Why do we use Google Fonts on our website?

With Google Fonts, we can use fonts on our own website and do not have to upload them to our own server. Google Fonts is an important component in keeping the quality of our website high. All Google fonts are automatically optimized for the web and this saves data volume and is a great advantage, especially for use on mobile devices. When you visit our site, the small file size ensures a fast-loading time. Furthermore, Google Fonts are secure web fonts. Different image synthesis systems (rendering) in different browsers, operating systems and mobile devices can lead to errors. Such errors can partially distort texts or entire websites. Thanks to the fast content delivery network (CDN), there are no cross-platform problems with Google Fonts. Google Fonts supports all common browsers (Google Chrome, Mozilla Firefox, Apple Safari, Opera) and works reliably on most modern mobile operating systems, including Android 2.2+ and iOS 4.2+ (iPhone, iPad, iPod). So we use Google Fonts so that we can present our entire online service as beautifully and uniformly as possible.

3. What data is saved by Google?

When you visit our website, the fonts are downloaded from a Google server. This external call transfers data to the Google server. In this way, Google also recognizes that you or your IP address are visiting our website. The Google Fonts API was developed to reduce the use, storage and collection of end-user data to what is necessary for the proper provision of fonts. By the way, API stands for " Application Programming Interface" and serves, among other things, as a data transmitter in the software area.

Google Fonts securely stores CSS and font requests with Google and is therefore protected. With the usage figures collected, Google can determine how well the individual fonts are being received. Google publishes the results on internal analysis sites such as Google Analytics. Google also uses data from its own web crawler to determine which websites use Google fonts. This data is published in the BigQuery database by Google Fonts. Entrepreneurs and developers use the Google BigQuery web service to examine and move large amounts of data.

It should be noted, however, that information such as language settings, IP address, version of the browser, screen resolution of the browser and the name of the browser are automatically transmitted to the Google server with every Google Font request. It is not clear whether this data is saved or not clearly communicated by Google.

4. How long and where will the data be stored?

Google stores requests for CSS assets for one day on its servers, which are mainly located outside the EU. This enables us to use the fonts with the help of a Google stylesheet. A stylesheet is a format template that can be used to change quickly and easily the design or font of a website, for example.

Die Font-Dateien werden bei Google ein Jahr gespeichert. Google verfolgt damit das Ziel, die Ladezeit von Webseiten grundsätzlich zu verbessern. Wenn Millionen von Webseiten auf die gleichen Schriften verweisen, werden sie nach dem ersten Besuch zwischengespeichert und erscheinen sofort auf allen anderen später besuchten Webseiten wieder. Manchmal aktualisiert Google Schriftdateien, um die Dateigröße zu reduzieren, die Abdeckung von Sprache zu erhöhen und das Design zu verbessern.

5. How can I delete my data or prevent data storage?

The data that Google stores for a day or a year cannot simply be deleted. The data is automatically transmitted to Google when the page is accessed. In order to be able to delete this data prematurely, you must contact Google support at https://support.google.com/?hl=en&tid=311288982 In this case, you only prevent data storage if you are not visiting our site.

Unlike other web fonts, Google allows us unrestricted access to all fonts. We can therefore have unlimited access to a large directory of fonts and thus get the most out of our website. You can find more about Google Fonts and other questions at at https://developers.google.com/fonts/faq?tid=311288982. Although Google deals with data protection issues there, it does not contain any really detailed information about data storage. It is relatively difficult to get precise information about stored data from Google.

6. Legal Basis

If you have consented to the use of Google Fonts, the legal basis for the corresponding data processing is this consent. This agreement provides, according to Art. 6 para. 1 lit .a GDPR (consent) is the legal basis for the processing of personal data, as it can occur when it is collected by Google Fonts.

We also have a legitimate interest in using Google Fonts to optimize our online service. The corresponding legal basis is Art. 6 para. 1 lit . f GDPR (legitimate interests).. Nevertheless, we only use Google Font if you have given your consent.

We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. The data processing is mainly done by Google Fonts. This can lead to data not being processed and stored anonymously. Furthermore, US government authorities may have access to individual data. It can also happen that this data is linked to data from other possible Google services with which you have a user account.

You can also read which data is generally recorded by Google and what this data is used for at https://policies.google.com/privacy?hl=en&tid=311288982. nachlesen.