Privacy policy

Privacy Policy according to the GDPR

I.Name and address of the data controller

L.A.B. Cosmetics GmbH

Friesenweg 24

22763 Hamburg

Deutschland

Phone: +49-40-386 29 1020

Email: [email protected]

Website: https://www.daytox.de/de/

is the data controller as defined by the EU General Data Protection Regulation (GDPR) and the national data privacy laws.

II.Name and address of the data protection officer

The data protection officer of the data controller is:

AGOR AG

Niddastraße 74

60329 Frankfurt am Main

Germany

Phone: +49 (0) 69 - 9494 32 410

Email: [email protected]

Website: www.agor-ag.com

III.General information about data processing

1. Extent of personal data processing

We collect and use personal data from users of our homepage only to the extent that is necessary for keeping our website, our content and our services functioning properly.

In general, we collect and use our users’ personal data only after they give their consent. An exception to this principle applies in cases where processing data is permitted by statutory provisions or when obtaining prior con-sent is not possible.

1. Legal basis for processing personal data

The legal basis for processing personal data is generally based on:

Art. 6 para. 1 s. 1 lit. a GDPR upon obtaining the consent of the data subject.

Art. 6 para. 1 s. 1 lit. b GDPR for processing operations that serve to fulfil a contract to which the data subject is a party. Included here are processing operations that are necessary to carry out pre-contractual measures.

Art. 6 para. 1 s. 1 lit. c GDPR for processing required to fulfil a legal obligation.

Art. 6 para. 1 s. 1 lit. d GDPR, if vital interests of the data subject or another natural person require processing of personal data.

Art. 6 para. 1 s. 1 lit. f GDPR, if processing is necessary for purposes of the legitimate interests of our company or a third party, and the interests, fundamental rights and fundamental freedoms of the data subject do not outweigh the former interest.

To be able to base the processing of personal data on a legitimate interest, an assessment is carried out in each case in consultation with the data protection officer for each relevant process, whereby the following three conditions must be met:

1) The controller or a third party has a legitimate interest in the processing of personal data.

2) The processing is necessary to safeguard the legitimate interest.

3) Interests or fundamental rights and freedoms of the data subject which require the protection of personal data do not prevail.

3. Data erasure and data storage duration

Personal data of users will be deleted or restricted as soon as the purpose for storing the data is no longer applicable. Personal data may be stored for longer than for the original purpose, if there is applicable European or national legislation through EU regulations, laws, or other regulations, to which the data controller is subject to. Personal data is also deleted or restricted, when a mandatory storage period expires, unless the personal data is needed for concluding or fulfilling a contract.

IV.Use of our website, general information

1. Description and scope of data processing

Every time our website is accessed, our system automatically collects data and information from the user's computer system. The following information is collected:

Information about the browser type and version used, the user’s operating system, the user’s Internet service provider, the user’s IP address, Date and time of access, Websites the user’s system accesses to get to our website, Websites that the user's system invokes by accessing our website

The described data is stored in log files for our system and is not stored together with any other personal user data.

2. Purpose and legal basis for data processing

To provide our website to users, our system must store user IP addresses temporarily. Therefore, IP addresses must be stored for the duration of a users’ session.

Storage in log files is done to ensure the functionality of our website. In addition, the data is used to optimize our website and to ensure the security of our systems. Personal data that is processed in this context, is not processed for marketing purposes.

The legal basis for the temporary storage of data and log files is our legitimate interest according to Art. 6 para. 1 s. 1 lit. f GDPR.

Collecting this personal data and storing it in log files is essential to secure, provide and operate our website. Therefore, an option to object to processing in this context does not exist.

3. Duration of storage

Your data will be deleted as soon as it is no longer necessary for achieving the purpose it was processed for. Personal data that is processed in order to provide our website will be deleted after your session ends.

If your data is stored in log files, it will be deleted after seven days at the latest. It may be stored for longer, whereby the IP addresses of users are de-leted or alienated. This means, that it will no longer be possible, to assign them to individual clients.

V.General information about the use of cookies

We use cookies on our website. Cookies are text files that are stored in your Internet browser and therefore on your computer system. If you display any website, a cookie can be stored on your operating system. Cookies can contain characteristic strings that allow unique identification of browsers.

We use cookies to make our homepage more user friendly. Some elements of our website require that your browser can be identified even after leaving our website.

TTDPA; Ger.: TTDSG:

The legal basis for the storage of cookies, device identifiers and similar tracking technologies or for the storage of information in the end user's terminal equipment and access to this information is the European ePrivacy Directive in conjunction with the Telecommunications and Telemedia Data Protection Act (TTDPA; Ger.: TTDSG).

Please note that the legal basis for the processing of personal data collected in this context then results from the GDPR. The relevant legal basis for the processing of personal data in each specific case can be found below the respective cookie or the respective processing itself.

The primary legal basis for the storage of information in the end user's terminal equipment - consequently in particular for the storage of cookies - is their consent, §25 Abs.1 S.1 TTDPA (Ger.: TTDSG). Consent is given when visiting our website - although this does not have to be given, of course - and can be revoked at any time in the cookie settings.

According to §25 Abs.2 Nr.2 TTDPA (Ger.: TTDSG), consent is not required if the storage of information in the end user's terminal equipment or access to in-formation already stored in the end user's terminal equipment is absolutely necessary for the provider of a Telemedia service to be able to provide a Telemedia service expressly requested by the user. You can see from the cookie settings which cookies are to be classified as absolutely necessary (often also referred to as "technically necessary cookies") and therefore fall under the exception of §25 Para.2 TTDPA (Ger.: TTDSG) and therefore do not require consent.

GDPR:

When cookies are used, the following data is stored and transmitted:

An item placed in a shopping cart, Log-in information

The legal basis for processing personal data using cookies is defined in Art. 6 para. 1 s. 1 lit. f GDPR. The purpose for using technically required cookies is to simplify the use of our website.

We would like to point out that some functions on our website can only be offered if cookies are enabled.

This applies to the following applications:

Shopping cart, Remembering keywords

We do not use personal data collected with technically necessary cookies to create user profiles.

Cookies are stored on the user’s computer, which transmits them to our page. As a user, you therefore have control over the use of cookies. You can restrict or disable transmission of cookies by making changes to your Internet browser settings. There you can also delete cookies that have been stored. Please note that you may not be able to use all the features on our website if you deactivate cookies.

The legal basis for the processing of personal data using cookies for analysis and advertising purposes is Art. 6 para. 1 s. 1 lit. a GDPR if the user has given his consent.

Cookie consent with consentmanager

We have integrated the consent management tool "consentmanager" (www.consentmanager.net) by Jaohawi AB (Håltgelvågen 1b, 72348 Västerås, Sweden, [email protected]) on our website to request consent for data processing or the use of cookies or similar functions. With the help of "consentmanager" you have the possibility to give or refuse your consent for certain functionalities of our website, e.g. for the purpose of integrating external elements, integrating streaming content, statistical analysis, coverage measurement and personalized advertising. You can use "consentmanager" to give or reject your consent for all functions or to give your consent for individual purposes or individual functions. The settings you have made can also be changed by you afterwards. The purpose of integrating "consentmanager" is to allow users of our website to decide on the aforementioned matters and, in the course of their continued use of our website, to offer them the opportunity to change settings they have already made. In the course of using "consentmanager", personal data as well as information of the end devices used, such as the IP address, are processed.

The legal basis for the processing is Art. 6 para. 1 s. 1 lit. c in conjunction with. Art. 6 para. 3 s. 1 lit. a in conjunction with. Art. 7 para. 1 DSGVO and alternatively lit. f. By processing the data, we help our customers (according to DSGVO the responsible party) to fulfill their legal obligations (e.g., obligation to provide evidence). Our legitimate interests in the processing lie in the storage of user settings and preferences in relation to the use of cookies and other functionalities.

"Consentmanager" stores your data as long as your user settings are active. After 13 Month after the user settings have been made, the consent will be queried again. The user settings made will then be stored again for this period.

You can object to the processing. Your right to object exists for reasons arising from your particular situation. For the purpose of objection, please contact us via e-mail at [email protected] .

https://delivery.consentmanager.net/delivery/vendorlist.php?cdid=09d9601ecb05%22 Here you can view and adjust your cookie settings.

VI.Your rights/rights of the data subject

According to the EU General Data Protection Regulation, as data subject you have the following rights:

1. Right of access by the data subject

You have the right to receive from us as data controller the information whether and which personal data concerning you are processed by us as well as further information in accordance with the legal requirements pursuant to Art. 13, 14 GDPR.

You can claim your right to information under: [email protected]

2. The right to rectification

If we process your personal data incorrectly or in an incomplete manner, then you have a right for it to be corrected/completed. The correction will be made immediately.

3. Right to restriction

You have the right to restrict the processing of personal data concerning you in accordance with the legal provisions (Art. 18 GDPR).

4. The right to delete

If the conditions set out in Article 17 of the GDPR apply, you may request that the personal data relating to you be deleted without delay.

We would like to point out that the right to erasure does not exist insofar as the processing is necessary for one of the exceptional circumstances mentioned in Art. 17 para. 3.

5. Right to information

If you have asserted the right to rectify, delete or restrict the processing, we are obligated to notify all recipients to whom your personal data have been disclosed of this correction or deletion of the data or restriction of processing, unless this proves to be impossible or is associated with a disproportionate amount of effort. You also have the right to be informed about these recipients.

6. Right to data portability

According to the GDPR, you also have the right to receive the personal data concerning you that has been provided to us in a structured, common and machine-readable format or to request its transfer to another controller.

7. Right to revoke the declaration of consent to data protection

You have the right to revoke your data protection declaration at any time. Please note that revoking consent does not affect the lawfulness of the processing carried out based on the consent until the revocation goes into effect.

8. Right to objection

Furthermore, you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data relating to you which is carried out on the basis of Art. 6 para. 1 s. 1 lit. e or f GDPR.

9. Automated decision on an individual basis, including profiling

Under the EU General Data Protection Regulation, you remain entitled not to be subjected to a decision based solely on automated processing - including profiling - which would have legal effect or would affect you in a similar manner.

10. Right to complain to a supervisory authority

Finally, if you believe that the processing of personal data concerning you is contrary to the GDPR, you have the right to complain to a supervisory authority, in the Member State of its place of residence, employment or the location of the alleged infringement.

VII.Data transfers to third countries (outside of the EU):

The GDPR ensures an equally high level of data protection within the European Union. When selecting our service providers, we therefore rely on European partners wherever possible when your personal data is being processed. Within some exceptions we may process personal data outside the EU through third-party services. This may only be the case where the special requirements in accordance with Art. 44 et. seq. GDPR are fully met. This means that the processing of your data may then only take place when the third country has been declared to ensure an adequate level of protection by the European Commission or if the European Standard Contractual Clauses have been signed.

VIII.Minors under 16 years of age

Minors under 16 years of age are expressly not addressees of our website and our offers on this website. We point out that legal guardians must accompany the online activities of their children. Minors under the age of 16 should not transmit any personal data to us without the consent of their parents or legal guardians. We explicitly do not request personal data from minors under the age of 16, do not knowingly collect such data and do not pass it on to third parties.

IX.Newsletter

1. General

You can subscribe to a free newsletter on our homepage that we use to inform you about our current interesting offers. The advertised goods and services are named in the declaration of consent. The data you enter in the online registration form will be transmitted to us.

We collect the following data based on the consent obtained during the registration process:

email address

Furthermore, the following data is stored at the moment of transmission:

IP address, Date and time of registration.

Your data will not be forwarded as part of data processing involved in sending newsletters. The data will be used exclusively for sending the newsletter.

2. Double opt-in and logging

Registration for our newsletter takes place in a so-called double-opt-in procedure. After registration, you will receive an email asking you to confirm your registration. This confirmation is necessary so that nobody can register using external email addresses.

The registration for the newsletter will be logged to prove the registration process according to the legal requirements. This includes the storage of the login and the confirmation time, as well as the IP address.

3. Legal basis

Legal basis for processing the data is once the consent of the user Art. 6 para. 1 s. 1 lit. a GDPR has been submitted. Collecting the user's email address aids in delivering the newsletter.

4. Cancellation, revocation and opposition

Your data will be deleted as soon as they are no longer necessary for achieving the purpose of the inquiry. Your email address will therefore be saved as long as the subscription to the newsletter is active. You may terminate subscription to the newsletter at any time by revoking your consent. There is a corresponding link in each newsletter to do this.

We would like to further point out that at any time, you are free to cancel any future processing of your personal data in accordance with the statutory requirements. pursuant to Art. 21 GDPR. You are free to object to your data being processed for direct marketing purposes.

5. Shipping provider Klaviyo / Statistical survey

We use the services of Klaviyo to send our email newsletters. The provider is Klaviyo, 125 Summer St, Boston, MA 02110, USA. Klaviyo is a service that serves, among other things, the organization as well as the analysis of e-mail newsletters.

When you enter data for the purpose of receiving e-mail newsletters (e.g. your e-mail address), this data is stored on Klaviyo's servers in the USA. With the help of Klaviyo, we can analyze our email newsletter campaigns. When you open an email sent with Klaviyo, a file contained in the email (known as a web beacon) connects to Klaviyo's servers in the USA. This makes it possible to determine whether an e-mail newsletter message has been opened and which links, if any, have been clicked on. In addition, technical information is recorded (e.g. time of retrieval, IP address, browser type and operating system). This information cannot be assigned to the respective e-mail newsletter recipient. It is used exclusively for the statistical evaluation of e-mail newsletter campaigns. The results of these analyses can be used to better tailor future e-mail newsletters to the interests of the recipient.

The legal basis for the associated data processing the sending of e-mail newsletters by Klaviyo is your consent pursuant to Art. 6 para. 1 s. 1 lit. a DSGVO in conjunction with your consent. You can revoke your consent at any time by unsubscribing from the e-mail newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.

We have also concluded the so-called "Standard Contractual Clauses" with Klaviyo, in which we oblige Klaviyo to protect our customers' data and not to pass it on to third parties.

The Data Processing Agreement, which corresponds to the Standard Contractual Clauses, can be found at https://www.klaviyo.com/legal/dpa.

To learn more about the data processed through the use of Klaviyo, please see the Privacy Policy at https://www.klaviyo.com/legal/privacy-policy.

X.Electronic contact

1. contact form / e-mail

On our website you can find a form that you can use to contact us. The data you enter is transmitted to us, and we process it for communication purposes. This data includes:

Name*, Email*, Subject*, Order No., Transaction ID

The following data is also stored once your message has been sent:

IP address, Date and time of registration

It is also possible to contact us via the provided email address. In this case, your personal data is transmitted via e-mail will then be processed by us. A transfer of your data to third parties will not take place in this context; your data will be processed exclusively for communication purposes.

Communication via e-mail or through our contact form regularly concerns contracts or the initiation of such. Therefore, the legal basis for processing your personal data in this context is Art. 6 para. 1 s. 1 lit. b GDPR.

If further personal data is processed within the communication process, this only serves the prevention of misuse of our contact form and to ensure the security of our systems.

Your data will be deleted as soon as it is no longer necessary for achieving the purpose it was processed for. Regarding the contact form and e-mail communication,

this is the case when the respective conversation with the user has ended. The conversation has ended when the circumstances re-veal, that all relevant facts have been clarified.

Additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

CRM tool Groove

To process your inquiries when contacting us via email or contact form, we use the "Groove" service provided by Groove Networks, LLC. (2 Dearborn St. Newport, RI, USA, "Groove"). If you do not wish your data to be processed by Groove, we offer an alternative means of contact by telephone or mail.

We use Groove to help us process requests more quickly and efficiently. When you send an inquiry to us by email, Groove collects and processes the above data. We have concluded an order data processing contract with Groove.

The data transferred for this purpose may be transferred to the USA. The transfer takes place on the basis of a contract concluded with Groove Networks, LLC. on standard contractual clauses.

For more information on Groove's data protection, please visit https://www.groovehq.com/our/privacy and https://www.groovehq.com/our/dpa.

2. Chatchamp

Within the scope of our so-called personal routine finder/consulting tool, we collect and process personal data on your habits and physical condition. These are determined by means of a questionnaire and the results are stored. For the routine finder, we use the chat tool of Chatchamp UG, c/o Wayra, Kaufingerstr. 15, 80331 Munich ("Chatchamp"). Chatchamp assists us in retrieving our questionnaire by presenting it to you during a chat conversation. Subsequently, Chatchamp supports us in analysing this data in order to recommend products to you that are suitable for your skin. This is partly health data in the sense of Art. 4 No. 15 DSGVO.

If you request the evaluation of the Expert by e-mail, we link your e-mail address with the information you have provided to send you individual product recommendations. However, we keep the information you have provided pseudonymized.

The processing is based on Art. 6 para. 1 s. 1 lit. a and Art. 9 para. 2 lit. a DSGVO. We store the information you provide, including information about your health condition, for the duration of the existence of your consent. After revocation of your consent, this data will be deleted. You can easily notify us of your revocation by clicking on the unsubscribe link in the product recommendation email. If we discontinue the "Routinefinder" program, the information you have provided will also be deleted in this case.

3. WhatsApp

In communication with our customers, we also use the messenger service of WhatsApp (WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, e-mail: [email protected]). Of course, the use of this service is voluntary. You can still contact us quickly by phone or e-mail. A prerequisite for the use of the WhatsApp messenger service is that you consent to its use and in this course agree to your personal data being transmitted to the USA. The legal basis in this respect is Art. 6 para. 1 s. 1 lit. a DSGVO.

Revocation: You can revoke your consent to the use of the Messenger service of WhatsApp at any time with effect for the future by sending us an email to: [email protected].

In addition, the WhatsApp offer also includes so-called location-based services, with which you are provided with special offers that are tailored to your respective location. You can only use these functions after you have agreed via a pop-up that your location data by means of GPS and your IP address are transmitted to WhatsApp in anonymized form for the purpose of providing the service.

You can find more information about data processing by WhatsApp in WhatsApp's privacy information. There you will also find further information on your rights in this regard and setting options to protect your privacy, https://www.whatsapp.com/legal/updates/privacy-policy-eea. Finally, WhatsApp explains the data transfers that take place as part of WhatsApp Business at https://www.whatsapp.com/legal/business-data-transfer-addendum/?lang=de, as well as https://www.whatsapp.com/legal/business-data-transfer-addendum-20210927.

XI. Registration

1. Direct registration

You have the option of registering on our homepage by indicating your personal data. The data is entered into an input mask, transmitted to us and stored. This data is not transferred to third parties. The following data is collected during the registration process:

First name*, last name*, e-mail*, date of birth

The following data is also stored at the time of registration:

The IP address of the user, The date and time of registration

Registration regularly serves the fulfillment of a contract to which the user is a party or the implementation of pre-contractual measures in the form of the extended use of our website. The legal basis for the processing of the data is therefore Art. 6 para. 1 s. 1 lit. b GDPR.

Your data will be deleted as soon as they are no longer necessary for achieving the purpose of the inquiry. This is the case for the data collected during the registration process whenever registration on our website is canceled or modified.

This is the case during the registration process for entering into a contract or for carrying out pre-contractual measures if the data are no longer required for executing the contract. Even after concluding the contract, there may be a need to store the personal data of the contracting party to comply with contractual or legal obligations.

Continuing obligations require that personal data be stored during the contract period. In addition, warranty periods must be complied with and the storage of data for tax purposes. The retention periods that must be adhered to here cannot be determined on a generalized basis but must be determined on an ad hoc basis for each contract and contractual parties.

You have the option of dissolving registration on our homepage at any time. Furthermore, you can also change data stored about you at any time.

If the data is required to fulfill a contract or to carry out pre-contractual measures, then prematurely deleting the data is only possible if there are no contractual or legal obligations that would preclude deletion.

2. Facebook Connect

Furthermore, we provide you with access to our personalized, interactive platforms, applications and tools through "Facebook Connect". Facebook Connect is operated by Facebook Inc, 1601 S California Ave, Palo Alto, California 94304, USA. "Facebook Connect" is a service that allows users of the Facebook social network to log in to other websites with their Facebook profile without having to create separate accounts there. In our services, we offer you the option to register for our service with Facebook Connect. If you use the Facebook Connect service, you will first be redirected to the Facebook page, where you can log in with your Facebook usage data. After successful login, a link is established with our service and data from your Facebook profile is automatically transferred to us. In turn, data from the website or application may also be transmitted to your Facebook profile.

Of the data transmitted to us by Facebook Inc. we use only:

Name, e-mail address, Date of birth

These data are mandatory for the conclusion of the contract, on the one hand to be able to identify you and on the other hand to be able to offer our services to you in a correct manner. During this, your data may be stored and processed by us. For more information about Facebook Connect and the privacy settings, please refer to the privacy policy:https://de-de.facebook.com/about/privacy/and the terms of use:https://www.facebook.com/legal/terms of Facebook Inc.

If you wish to have your account or profile deleted completely, please let us know by sending an email to: [email protected]

XII.Career Portal

On this website, we display job offers to which interested parties can apply by e-mail. Initiative applications can also be sent to us by e-mail. In the event of an incoming application, we process the data received from the applicant exclusively for the purpose of processing for the potential filling of the vacant position.

The primary legal basis for this is Art. 88 GDPR in conjunction with Sec. 26 para. 1 BDSG.

Within our company, your personal data is only accessed by those persons who are responsible for processing the application procedure and who are the decision-makers regarding the outcome of the application.

We delete your personal data as soon as they are no longer required for the above-mentioned purposes. If we conclude an employment contract with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If no employment contract is concluded with the applicant, the application documents will be deleted no later than six months after notification of the rejection decision, provided that no other legitimate interests of the controller conflict with such deletion. Other legitimate interest in this sense is, for example, a duty to provide evidence in proceedings under the General Equal Treatment Act (AGG).

Your personal data will not be passed on to third parties.

XIII.Shop

You have the possibility to order our offered goods and services directly on our homepage. During the ordering process, we use the contact data provided by you during registration, or we collect the personal data provided by you in the input mask.

This involves the following data:

E-mail*, first name*, last name*, phone number, street and house number*, country*, postal code*, city*, company name

At the time of the order process, the following data is also stored:

IP address of the user, date and time of the order.

If you want to order in our store, it is necessary for the conclusion of the contract that you provide your personal data, which we need for the processing of your order. For the processing, we pass on your data to the corresponding payment and delivery service providers. The legal basis for this is Art. 6 para. 1 s. 1 lit. b GDPR.

We are required by commercial and tax law to store your address, payment and order data for a period of 10 years. However, we restrict processing after 6 years, i.e. your data is only used to comply with legal obligations. To prevent unauthorized access by third parties to your personal data, especially financial data, the ordering process takes place via encrypted connection.

Integration of the Trusted Shops Trustbadge

Trusted Shops widgets are integrated on this website to display Trusted Shops services (e.g. seal of approval, collected ratings) and to offer Trusted Shops products to buyers after they have placed an order.

This serves to protect our legitimate interests in optimal marketing by enabling secure shopping, which prevail in the context of a balancing of interests pursuant to Art. 6 para. 1 s. 1 lit. f GDPR. The Trustbadge and the services advertised with it are an offer of Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne, Germany, with whom we are jointly responsible for data protection pursuant to Art. 26 GDPR. Within the scope of this data protection notice, we inform you in the following about the essential contractual contents according to Art. 26 para. 2 GDPR.

The trust badge is provided as part of a joint responsibility by a US CDN provider (content delivery network). An appropriate level of data protection is ensured by standard data protection clauses and other contractual measures. Further information on the data protection of Trusted Shops GmbH can be found in their privacy policy.

When the Trustbadge is called up, the web server automatically saves a so-called server log file, which also contains your IP address, the date and time of the call-up, the amount of data transferred and the requesting provider (access data) and documents the call-up. The IP address is anonymized immediately after collection so that the stored data cannot be assigned to you personally. The anonymized data is used for statistical purposes and for error analysis.

After order completion, your e-mail address, which is hashed by cryptological one-way function, is transmitted to Trusted Shops GmbH. The legal basis is Art. 6 para. 1 s. 1 lit. f GDPR. This serves to check whether you are already registered for services with Trusted Shops GmbH and is therefore necessary for the fulfillment of our and Trusted Shops' overriding legitimate interests in the provision of the buyer protection linked to the specific order in each case and the transactional evaluation services pursuant to Art. 6 para. 1 s. 1 lit. f GDPR. If this is the case, further processing will be carried out in accordance with the contractual agreement between you and Trusted Shops. If you have not yet registered for the services, you will be given the opportunity to do so for the first time. Further processing after registration also depends on the contractual agreement with Trusted Shops GmbH. If you do not register, all transmitted data is automatically deleted by Trusted Shops GmbH and a personal reference is then no longer possible.

Trusted Shops uses service providers in the areas of hosting, monitoring, and logging. The legal basis is Art. 6 para. 1 s. 1 lit. f GDPR for the purpose of ensuring trouble-free operation. Processing may take place in third countries (USA and Israel). An adequate level of data protection is ensured in the case of the USA by standard data protection clauses and further contractual measures and in the case of Israel by an adequacy decision.

Within the framework of the joint responsibility existing between us and Trusted Shops GmbH, please prefer to contact Trusted Shops GmbH with data protection questions and to assert your rights using the contact options provided in the data protection information linked above. Irrespective of this, however, you can always contact the responsible person of your choice. Your inquiry will then, if necessary, be forwarded to the other responsible party for a response.

XIV.Encrypted payment transactions on this website

If, after the conclusion of a contract with costs, there is an obligation to transmit your payment data to us (e.g. account number in the case of direct debit authorization), this data will be required for payment processing.

Payment transactions via the common means of payment (Visa/MasterCard, direct debit) are made exclusively via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

With encrypted communication, your payment data that you transmit to us cannot be read by third parties.

1. Klarna

In cooperation with Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden, we offer the following payment options. The payment is made in each case to Klarna by direct debit. The debit will be made after the goods have been shipped. The time will be communicated to you by e-mail.

The use of the payment methods invoice, installment purchase and direct debit requires a positive credit assessment. In this respect, we forward your data to Klarna for the purpose of address and credit assessment as part of the purchase initiation and processing of the purchase contract. Please understand that we can only offer you those payment methods that are permitted based on the results of the credit check.

The transfer takes place according to Art. 6 para. 1 s.1 lit. b GDPR and only insofar as this is necessary for the payment processing.

Further information and Klarna's terms of use can be found here. General information about Klarna can be found here. Your personal data will be treated by Klarna in accordance with the applicable data protection regulations and as specified in Klarna's privacy policy at https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/privacy.

2. PayPal

When paying via PayPal, we pass on your payment data to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal") as part of the payment processing.

The transfer takes place in accordance with Art. 6 para. 1 s.1 lit. b GDPR and only to the extent necessary for payment processing. PayPal reserves the right to conduct a credit check for the payment methods credit card via PayPal, direct debit via PayPal or - if offered - "purchase on account" or "installment payment" via PayPal. For this purpose, your payment data may be passed on to credit agencies in accordance with Art. 6 para. 1 s. 1 lit. f GDPR on the basis of PayPal's legitimate interest in determining your solvency. PayPal uses the result of the credit check regarding the statistical probability of non-payment for the purpose of deciding on the provision of the respective payment method. The creditworthiness information may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they have their basis in a scientifically recognized mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. For further information on data protection law, including information on the credit agencies used, please refer to PayPal's data protection declaration: www.paypal.com/de/webapps/mpp/ua/privacy-full .

You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for the contractual processing of payments.

3. Stripe

If you choose a payment method of the payment service provider Stripe, the payment processing is carried out by Stripe Payments Europe Ltd, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, to whom we pass on your information provided during the ordering process together with information about your order (name, address, account number, bank code, possibly credit card number, invoice amount, currency and transaction number) in accordance with Art. 6 para. 1 p. 1 lit. b GDPR. The transfer of your data takes place exclusively for the purpose of payment processing with the payment service provider Stripe Payments Europe Ltd. and only insofar as it is necessary for this purpose.

Stripe transfers, processes and stores personal data outside the EU, if applicable. In doing so, Stripe undertakes to provide suitable guarantees in accordance with Art. 46 GDPR in the form of standard contractual clauses (See https://stripe.com/privacy-center/legal#data-transfers).

In addition, we have concluded an order processing agreement with Stripe.

You can find more information about Stripe's data protection at https://stripe.com/de/privacy#translation.

4. Google Pay

When you pay via Google Pay, we pass on your payment data to Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, as part of the payment processing.

In addition to your payment information, data about your order (date, time, information about the purchased products or services, etc.) may also be forwarded to Google. The transfer takes place in accordance with Art. 6 para. 1 s.1 lit. b GDPR and only to the extent necessary for payment processing.

When using the services of Google, your personal data may be transferred to countries outside the European Union (third countries).

You can find more information on the data protection of Google Pay at: https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=de.

5. Apple Pay

On our website, we also offer payment via Apple Pay. The provider of this payment service is Apple Inc., Infinite Loop, Cupertino, CA 95014, USA (hereinafter "Apple Pay"). If you select payment via Apple Pay, the payment data you enter will be transmitted to Apple Pay.

In addition to their payment information, data about your order (date, time, information about the products or services purchased, etc.) may also be forwarded to Apple Pay. The transfer takes place in accordance with Art. 6 para. 1 s.1 lit. b GDPR and only insofar as this is necessary for the payment processing.

You can find more information on the data protection of Google Pay at:https://www.apple.com/legal/privacy/de-ww/ and https://www.apple.com/de/privacy/.

XV.Google Tag Manager

This website uses Google Tag Manager. Google Tag Manager is a solution that allows marketers to manage website tags through one interface. The tool itself (which implements the tags) does not use cookies and only collects your IP address out of technical necessity. The tool takes care of triggering other tags, which in turn may set cookies and collect data. Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, this remains in place for all tracking tags implemented with Google Tag Manager.

If we have obtained consent from you, the legal basis for the use of Google Tag Manager is Art. 6 para. 1 s. 1 lit a GDPR. Otherwise, the legal basis for the use of the technically necessary cookie results from our legitimate interest according to Art. 6 para. 1 s. 1 lit. f GDPR.

For more information, please refer to the provider's terms of use at: https://www.google.com/intl/de/tagmanager/use-policy.html.

XVI.Google ReCaptcha

Furthermore, we use the Google service reCaptcha on our website to determine whether a human or a computer makes a certain entry in our contact or newsletter form.

Google uses the following data to check whether you are a human or a computer: IP address of the terminal device used, the website that you visit with us and on which the captcha is embedded, the date and duration of the visit, the recognition data of the browser and operating system type used, Google account if you are logged in to Google, mouse movements on the reCaptcha areas as well as tasks in which you have to identify images.

The legal basis for the data processing is Art. 6 para. 1 p.1 lit. f GDPR. Our legitimate interest in this data processing is to ensure the security of our website and protection against automated entries (attacks).

Further information on the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland can be found at https://www.google.com/policies/privacy/.

Opt-out: https://adssettings.google.com/authenticated.

XVII.Google Web Fonts

We integrate the fonts ("Google Web Fonts") of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, based on our legitimate interests pursuant to Art. 6 para. 1 s. 1 lit. f DSGVO. The aim is the optimization and economic operation of our homepage. We host the fonts from our own servers so that no data is transmitted to Google.

The privacy policy of the provider can be found at: https://www.google.com/policies/privacy.

XVIII.Bugsnag

We want to offer our visitors the best possible experience, which is why we are constantly improving and developing our websites. Nevertheless, not all malfunctions, e.g., due to programming errors, can be excluded with certainty from the outset. Therefore, we use Bugsnag, a technical error analysis tool of Bugsnag Inc. (hereinafter "Bugsnag"), 939 Harrison St, San Francisco, CA 94107, USA.

The tool helps us, in case of errors, to analyze, evaluate and categorize them. In order to improve the accessibility and technical stability of our websites by monitoring functionality, system stability and identifying code errors, we may automatically transmit the following information to Bugsnag in the event of a software error occurring:

Device information (operating system, browser version, browser type), the IP address of the device used, details of the page visited at the time of the error, time of the error.

The legal basis for the processing is Art. 6 para. 1 s.1 lit. f GDPR, whereby the resulting data processing is in our legitimate interest, as the data serves the sole purpose of error identification and analysis. An evaluation for advertising purposes expressly does not take place. The data is collected anonymously and used in a non-personal manner and subsequently deleted.

You can prevent the collection and forwarding as well as the processing of this data by deactivating the execution of script code in your browser, installing a script blocker in your browser (you can find this, for example, at www.noscript.net) or activating the "Do Not Track" setting of your browser.

For more information on data processing and how Bugsnag works, please refer to Bugsnag's privacy policy: https://docs.bugsnag.com/legal/privacy-policy/

XIX.Cloudflare

To provide you with secure data transmission on our website using SSL encryption and to secure our website against malicious, mass (DDoS) or other accesses that would disrupt or prevent the operation of the website, we use the service of Cloudflare, Inc. 101 Townsend St San Francisco, CA 94107.

We have concluded a corresponding commissioned processing agreement with Cloudflare based on the GDPR.

As part of the protection of this website, Cloudflare uses a script and possibly a cookie in your browser. This cookie is used to validate access and to detect malicious access attempts. Cloudflare collects statistical data about visits to this website. The access data includes:

Name of the accessed website, file, date and time of access, amount of data transferred, notification of successful access, browser type along with version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider.

Cloudflare uses the log data for statistical analysis for the purpose of operation, security and optimization of the offer. Please also read the privacy policy of Cloudflare which is available here https://www.cloudflare.com/privacypolicy/

The legal basis for the use of Cloudflare is our legitimate interest according to Art. 6 para. 1 s. 1 lit. f GDPR, which consists in the purposes described above.

Your data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected.

You can prevent the collection and forwarding as well as the processing of this data by disabling the execution of script code in your browser, installing a script blocker in your browser (you can find this, for example, at www.noscript.net) or activating the "Do Not Track" setting of your browser.

XX.Web analytics

1. Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc. (“Google”). Google Analytics uses so-called "cookies," text files that are stored on your computer and they allow how you use the website to be analyzed. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the US and stored there. However, if IP anonymization is activated on this website, your IP address will be shortened by Google beforehand within member states of the European Union or in other contracting states of the Agreement on the European Eco-nomic Area. Only in exceptional cases the full IP address is sent to a Google server in the US and then shortened there. On behalf of the provider of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website and Internet usage to the website provider. The IP address provided by Google Analytics within the framework of Google Analytics will not be merged with other data provided by Google.

You can prevent the storage of cookies by enabling a corresponding setting in your browser software; however, please note that if you do this, you may not be able to fully use all the features of this website. You may also prevent Google from collecting the data generated by the cookie and related to your use of the website (including your IP address) as well as prevent Google from processing this data by downloading and installing the browser plug-in available under the following link http://tools.google.com/dlpage/gaoptout?hl=de

This website uses Google Analytics with the extension "_anonymizeIp()." As a result, IP addresses are processed shortened so that they cannot be related to any one particular person. Insofar as the data collected about you is as-signed a personal reference, it will be immediately excluded, and the personal data will be deleted immediately.

We use Google Analytics to analyze and regularly improve the use of our website. We use the statistics to improve our offer and make it more interesting for you as a user. The legal basis for using Google Analytics is your con-sent, as defined in Art. 6 para. 1 s. 1 lit. a GDPR.

Third-party information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.

User conditions: http://www.google.com/analytics/terms/de.html, Data privacy overview: http://www.google.com/intl/de/analytics/learn/privacy.html, data protection policy: http://www.google.de/intl/de/policies/privacy.

2. Google Analytics Audiences

We also use Google Analytics Audiences ("GA Audiences"), another web analytics service provided by Google. Through this service, data is collected and stored, from which pseudonymized usage profiles are created. This technology allows us to display targeted advertising on other external pages of the Google Partner Network to users who have visited our websites.

The legal basis for the processing of your data is Art. 6 para. 1 s. 1 lit. a GDPR.

GA Audience uses, among other things, cookies that are stored on your computer as well as other mobile devices (e.g., smartphones, tablets, etc.) and that enable an analysis of the use of the respective devices. Some of the data is evaluated across devices. GA Audience receives access to the cookies created in the context of the use of Google Analytics. During use, data, such as in particular the IP address and activities of the user, may be transmitted to a server of the company Google LLC and stored there. Google LLC may transfer this information to third parties where required to do so by law, or where such data is processed by third parties.

You can prevent the collection and forwarding of personal data (especially your IP address) and the processing of this data by deactivating the execution of JavaScript in your browser or installing a tool such as 'NoScript'. In addition, you can prevent the collection of data generated by the Google cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link (http://tools.google.com/dlpage/gaoptout?hl=de).

Further information on data protection when using GA Audience can be found at the following link: https://support.google.com/analytics/answer/2700409?hl=en&ref_topic=2611283.

3. Matomo

This website uses the web analytics service Matomo to analyze and regularly improve the use of our website. Matomo collects your anonymized IP address, your pseudo-anonymized location (based on the anonymized IP address), date and time, title of the page accessed, URL of the page accessed, URL of the previous page (if the latter allows this), screen resolution, external links, duration of the page load, main language of the browser and the user agent of the browser.

In addition, Matomo creates so-called heatmaps and session recordings, in which your interactions with forms (but not their content), files that have been clicked on and downloaded, the movement of the mouse pointer, as well as the click and scroll behavior are recorded.

The statistics obtained in this way allow us to improve our offer and make it more interesting for you as a user. The legal basis for the use of Matomo is your consent according to Art. 6 para. 1 s. 1 lit. a GDPR.

Cookies are stored on your computer for the evaluation. The information collected in this way is stored by the responsible party exclusively on its server in Germany.

We use Matomo with the extension "AnonymizeIP". This means that IP addresses are processed in abbreviated form, which means that they cannot be directly linked to a specific person. The IP address transmitted by your browser via Matomo is not merged with other data collected by us.

Information from the third-party provider on data protection is available at https://matomo.org/privacy-policy/.

4. Taboola

To increase the attractiveness, content, and functionality of the website, we use technologies of Taboola Inc., London (Oneus-tonsq, 40 Melton Street, 13th Floor, London, NW1 2FD) on our website. This makes it possible to recommend content that matches your personal interests and thus to design our offer individually for you. Taboola uses cookies to determine which websites you visit frequently and how you move around our website. For this purpose, device-related data and log data are collected and usage profiles are generated using pseudonyms. These usage profiles are not merged with data about the bearer of the pseudonym and do not allow any conclusions to be drawn about your personal data. Your IP address, for example, is transmitted to Taboola in abbreviated form.

The legal basis for the processing of your data is Art. 6 para. 1 s. 1 lit. a GDPR.

You can find more information about Taboola at https://www.taboola.com/privacy-policy. You can find a way to deactivate the service on the website of the Digital Advertising Alliance at http://optout.aboutads.info/?c=2&lang=EN.

5. AWIN (Digital Window)

We participate in the performance advertising network of AWIN AG, Eichhornstraße 3, 10785 Berlin (hereinafter "AWIN"). As part of its tracking services, AWIN stores cookies (digital windows) on end devices of users who visit or use websites or other online offers of its customers (e.g., register for a newsletter or place an order in an online store) for the documentation of transactions (e.g., of leads and sales). These cookies serve the sole purpose of correctly assigning the success of an advertising medium and the corresponding billing within its network.

In a cookie, only the information about when a particular advertising medium was clicked on by an end device is placed. In the AWIN tracking cookies, an individual sequence of numbers, which cannot be assigned to the individual user, is stored with which the partner program of an advertiser, the publisher, and the time of the user's action (click or view) are documented. In this context, AWIN also collects information about the end device from which a transaction is carried out, e.g., the operating system and the calling browser. The legal basis is your consent pursuant to Art. 6 para. 1 s. 1 lit. a GDPR.

For more information on data usage by AWIN, please refer to the company's privacy policy: www.awin.com/de/rechtliches/.

6. Outbrain Amplify

We use "Outbrain Amplify" on our website, a service of Outbrain UK Ltd, 5 New Bridge Street, London, EC4V 6JA, UK (hereinafter referred to as: "Outbrain"). Outbrain stores and processes information about your user behaviour on our website. Outbrain uses, among other things, cookies, i.e., small text files that are stored locally in the cache of your web browser on your terminal device and that enable an analysis of your use of our website.

We use Outbrain Amplify for marketing and optimization purposes, to analyse the use of our website and to continuously improve individual functions and offers as well as the user experience. Through the statistical evaluation of user behaviour, we can improve our offer and make it more interesting for you as a user. The legal basis is your consent according to Art. 6 para. 1 s. 1 lit. a GDPR.

You can find more information about data protection from the third-party provider on the following website: http://www.outbrain.com/de/legal/privacy.

7. Mouseflow

This website uses the Mouseflow web analytics tool from Mouseflow ApS, Flaesketorvet 68, 1711 Copenhagen, Denmark. Data processing is for the purpose of analysing this website and its visitors. For this purpose, data is collected and stored for marketing and optimization purposes. From this data, usage profiles can be created under a pseudonym. Cookies can be used for this purpose. With the web analysis tool Mouseflow, randomly selected individual visits (only with anonymized IP address) are recorded. This creates a log of mouse movements and clicks with the intention of randomly replaying individual website visits and deriving potential improvements for the website. The data collected with Mouseflow will not be used to personally identify the visitor to this website without the separately granted consent of the person concerned and will not be merged with personal data about the bearer of the pseudonym.

The processing is based on your consent pursuant to Art. 6 para. 1 s. 1 lit. a GDPR.

For more information on data protection, please visit https://mouseflow.com/legal/company/privacy-policy/.

8. NEORY Marketing Cloud

We use the service "NEORY Marketing Cloud" of NEORY GmbH, Brandschachtstraße 2, D-44149 Dortmund, Germany, to conduct effective market research/analysis, to collect statistical data for campaign tracking or to optimize the user-friendliness of our offer.

This is done by means of pseudonymous usage profiles, in which no personal, but only anonymized or pseudonymized data is used. So-called cookies can be used for this purpose. Among other things, the following data is collected: Time of the call, channel information including possible parameters as well as domain of the referrer. The data will not be used to personally identify the visitor of this website.

NEORY GmbH will use the transmitted data on behalf of us specially to realize campaign tracking. All data mentioned above will be collected exclusively for this purpose and stored without any personal reference.

The processing is based on your consent pursuant to Art. 6 para. 1 s. 1 lit. a GDPR.

For more information on data protection, please visit https://www.neory.com/privacy-policy.

9. TikTok Analytics / TikTok Pixel

We use the TikTok Pixel on our website. The TikTok Pixel is a TikTok advertiser tool provided by TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland, and TikTok Information Technologies UK Limited, WeWork, 125 Kingsway, London, WC2B 6NH, United Kingdom (collectively "TikTok").

The TikTok Pixel is a JavaScript code snippet that allows us to understand and track visitors' activity on our website. For this purpose, the TikTok Pixel collects and processes information about the users of our website or the devices they use. The data collected through the TikTok Pixel is used for targeting our ads and improving ad delivery and personalized advertising. For this purpose, the data collected on our website by means of the TikTok Pixel is transmitted to TikTok. In part, this data is information stored in the terminal device you are using. In addition, cookies are also used via the TikTok Pixel, via which information is stored on your end device used.

The processing is based on your consent according to Art. 6 para. 1 s. 1 lit. a GDPR.

For more information on how TikTok processes personal data, please see TikTok's privacy policy at https://www.tiktok.com/legal/privacy-policy?lang=de-DE.

XXI.Social Media

1. Social media presence

We maintain fan pages within social networks to communicate with customers, prospects and users who are active there and to inform them about our services.

We would like to point out that your personal data may be processed out-side the European Union, which may pose risks to you (e.g., in enforcing your rights under European/German law).

These users’ data is usually processed for market research and advertising purposes. Thus, for example, user profiles that are created based on the user’s behavior and interests. These profiles can be used to place advertisements that allegedly is within the users' interests. For these purposes, technologies such as cookies are used to observe the user’s behavior and to evaluate each user’s interests. The generated profiles can extend beyond a single device and track you independently across multiple devices.

Processing personal user data is based on our legitimate interests in an effective communication with users in accordance with. Art. 6 para. s.1 lit. f. GDPR. If user’s giver their consent over processing of their personal information by a social network (which is the case, if they declare their agreement, for example, by ticking a check box or clicking on a button to consent)., the legal basis for processing user info is Art. 6 para. s.1 lit. a., Art. 7 GDPR.

You can find additional information about how your personal data is processed in the links listed below. There you can also find options on how you can object to processing of personal data. Please note, that your right of access and other rights as a data subject regarding this data must be exercised towards the provider of the social network. Of course, we are available for questions and support if you need help.

We currently use the following social media platforms:

a) Facebook

Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland

Opt-Out: https://www.facebook.com/settings?tab=ads

and http://www.youronlinechoices.com

b) Instagram

Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA

c) YouTube (Google)

Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA)

Opt-Out: https://adssettings.google.com/authenticated

d) Pinterest

Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA

https://about.pinterest.com/de/privacy-policy.

2. integration of YouTube videos links

We have included links to YouTube videos in our online offer. These lead directly to the YouTube video platform, so that no data about you as a user is transmitted to YouTube if you do not play the videos. Only when you click on the videos and get to the YouTube platform, the data mentioned in paragraph 2 are transferred. We have no influence on this data transmission.

If you are logged in to Google, your data will be directly assigned to your account. If you do not want the assignment with your profile at YouTube, you must log out before clicking on the link. YouTube stores your data as usage profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out (even for users who are not logged in) for the provision of needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, and you must contact YouTube to exercise this right.

Insofar as we obtain your consent, the legal basis for the use of the plug-in is your consent pursuant to Art. 6 para. 1 s. 1 lit. a GDPR. How the respective social media providers process your personal data can be found in the respective privacy policy. We are not the responsible party in the sense of the GDPR for the data processing of the social media providers.

Further information on the purpose and scope of data collection and its processing by YouTube can be found in the privacy policy. There you will also find further information about your rights and setting options to protect your privacy: https://www.google.de/intl/de/policies/privacy

Opt-out: https://support.google.com/ads/answer/10261289?hl=de&ref_topic=7048998.

XXII.Online advertising

1. Google AdSense

We use the online advertising service Google AdSense on our homepage. Google AdSense can be used to show you advertising tailored to your interests. We are interested in showing you advertisements that may be of interest to you to make our website more interesting to you. It collects statistical information about you, which is processed by our advertising partners. These ads can be seen via the "Google ads" reference in the ad.

By visiting our website, Google receives information that you have accessed our website. Google uses a web beacon to place a cookie on your computer. The data referred to under Section IV of this declaration will be transmitted. We have no influence on the collected data, nor are we aware of the full extent of the data collection or the duration of storage. Your data will be transmitted to the US and evaluated there. Your data can be assigned directly to your Google account if you are logged in to it. You'll need to log out if you do not want to be associated with your Google profile. It is possible that Google's contractors may share these data with third parties and government agencies.

The legal basis for processing your data is your consent, as defined in Art. 6 para. 1 s. 1 lit. a GDPR.

You can prevent Google AdSense cookies from being installed in various ways:

a) by setting your browser software accordingly; suppressing third-party cookies will prevent you from receiving any third-party advertisements

b) by disabling interest-based ads on Google through the http://www.google.com/ads/preferences link, which will be deleted if you delete your cookies;

c) by disabling interest-based ads from the providers that are part of the About Ads self-regulatory campaign by clicking on the http://www.aboutads.info/choices , which will be deleted when you delete your cookies

d) through permanent deactivation in your Firefox, Internet Explorer or Google Chrome browsers under the link http://www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to fully utilize all the features of this offer.

For more information on the purpose and scope of data collection and its processing, as well as further information on your rights and options for privacy, please contact: Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA; data protection conditions for advertising: http://www.google.de/intl/de/policies/technologies/ads.

2. Google Dynamic Remarketing

We use the Google Dynamic Remarketing application. This is a procedure with which we would like to address you again. Through this application, our advertisements can be displayed to you during your further internet use after visiting our website. This is done by means of cookies stored in your browser, which Google uses to record and evaluate your usage behavior when you visit various websites. In this way, Google can determine your previous visit to our website. According to its own statements, Google does not combine the data collected while remarketing with your personal data, which may be stored by Google. According to Google, pseudonymization is used in remarketing.

You can prevent participation in this tracking process several different ways:

a) by setting your browser software accordingly; suppressing third-party cookies will prevent you from receiving any third-party advertisements

b) by disabling interest-based ads on Google through the http://www.google.com/ads/preferences link, which will be deleted if you delete your cookies;

The legal basis for processing your data is your consent, as defined in Art. 6 para. 1 s. 1 lit. a GDPR.

You can find additional information on Google’s data privacy policies at: http://www.google.com/intl/de/policies/privacy And https://services.google.com/sitestats/de.html. Another option is to visit the Network Advertising Initiative (NAI) at:http://www.networkadvertising.org.

1. Google DoubleClick

This website also uses the online marketing tool DoubleClick by Google. DoubleClick uses cookies to serve ads that are relevant to users, to improve campaign performance reports, or to prevent a user from seeing the same ads multiple times. Google uses a cookie ID to determine which ads are running in which browser and can prevent them from being displayed multiple times. In addition, DoubleClick uses cookie IDs to track conversions related to ad requests. This can occur, for example, if a user sees a DoubleClick ad and later goes to the advertiser's website with the same browser and buys something there. According to Google, DoubleClick cookies do not contain personally identifiable information.

Your browser automatically establishes a direct connection to the Google server because of the marketing tools used. We have no control over the extent and the later use of the data that is collected through Google’s use of this tool and we will therefore inform you according to our level of knowledge. By integrating DoubleClick, Google receives the information that you have accessed the relevant part of our website or have clicked on an ad from us. If you are registered with a service provided by Google, then Google may associate the visit with your account. Even if you are not registered with Google or have not logged in, there is a possibility that the provider will find out and store your IP address.

You can prevent participation in this tracking process several different ways:

a) by setting your browser software accordingly; suppressing third-party cookies will prevent you from receiving any third-party advertisements

b) by disabling interest-based ads on Google through the http://www.google.com/ads/preferences link, which will be deleted if you delete your cookies;

The legal basis for processing your data is your consent, as defined in Art. 6 para. 1 s. 1 lit. a GDPR.

2. Facebook custom audiences/Facebook pixel

The site also uses Facebook's "Custom Audiences" remarketing feature ("Facebook"). This allows website users to be shown interest-based advertisements ("Facebook Ads") as part of their visit to the social network Facebook or other websites that also use this process. We are interested in showing you advertisements that may be of interest to you to make our website more interesting

Your browser automatically establishes a direct connection to the Facebook server based on the marketing tools used. We have no control over the extent and the later use of the data that is collected due to Facebook’s use of this this tool and we will therefore inform you according to our level of knowledge. By integrating Facebook Custom Audiences, Facebook receives the information that you have accessed the corresponding website of our website or have clicked on an ad from us. If you are registered with a service provided by Facebook, then Facebook may associate the visit with your account. Even if you are not registered with Facebook or have not logged in, there is a chance that the provider will find and store your IP address and other identifying characteristics.

The legal basis for the processing of your data is Art. 6 para. 1 s. 1 lit. a GDPR.

For more information on data processing by Facebook, please visit https://www.facebook.com/about/privacy.