Data protection

Introduction

The Asymmetrix Bike School website can generally be used without providing any personal data. However, if a data subject wants to use special company services via our website, processing of personal data could become necessary. If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain the consent of the person concerned.

The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject shall always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regulations applicable to the Asymmetrix bike school. By means of this data protection declaration, our company would like to inform the public about the type, scope and purpose of the data we collect,
inform used and processed personal data. Furthermore, data subjects are informed of the rights to which they are entitled by means of this data protection declaration.

The bike school Asymmetrix endeavors to protect the personal data processed via this website as completely as possible. Nevertheless, Internet-based data transmissions can generally have security gaps, so that absolute protection cannot be guaranteed. For this reason, every person concerned is free to transmit personal data to us in alternative ways, for example by telephone.

Name and address of the person responsible for processing

Dominik Langrehr
Griesweg 9
82494 Krün
Germany
Phone: +4988258359229
Email: [email protected]
Website: www.asymmetrix.com

cookies

The Internet pages of the bike school Asymmetrix use cookies. Cookies are text files that are filed and saved on a computer system via an Internet browser.

Through the use of cookies, the bike school Asymmetrix can provide the users of this website with more user-friendly services that would not be possible without the cookie setting. For example, the user of a website that uses cookies does not have to re-enter their access data each time they visit the website because this is done by the website and the cookie stored on the user's computer system. Another example is
the cookie of a shopping cart in the online shop. The online shop uses a cookie to remember the items that a customer has placed in the virtual shopping cart.

The person concerned can prevent the setting of cookies by our website at any time by means of a corresponding setting in the Internet browser used and thus permanently object to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all common internet browsers. If the person concerned deactivates the setting of cookies in the Internet browser used, not all functions of our website may be fully usable.

Collection of general data and information

The website of the Asymmetrix Bike School collects a series of general data and information each time the website is accessed by an affected person or an automated system. This general data and information is stored in the log files of the server. The (1) browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system accesses our website (so-called referrer), (4) the sub-websites, which are accessed via an accessing system on our website can be controlled, (5) the date and time of access to the website, (6) an Internet protocol address (IP address), (7) the Internet service provider of the accessing system and (8) other similar data and information used to avert threats in the event of attacks on our information technology systems.

When using these general data and information, the Asymmetrix Bike School does not draw any conclusions about the data subject. Rather, this information is required to (1) deliver the content of our website correctly, (2) optimize the content of our website and the advertising for it, (3) ensure the long-term functionality of our information technology systems and the technology of our website and ( 4) to provide law enforcement authorities with the information necessary for law enforcement in the event of a cyber attack. This anonymously collected data and information is therefore statistically evaluated by the Asymmetrix bike school, with the aim of increasing data protection and data security in our company, in order to ultimately ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by an affected person.

Registration on our website

The data subject has the option of registering on the website of the controller by providing personal data. Which personal data is transmitted to the person responsible for processing results from the respective input mask used for registration. The personal data entered by the person concerned are collected and stored exclusively for internal use by the person responsible for processing and for their own purposes. The person responsible for processing can arrange for the data to be passed on to one or more processors, for example a parcel service provider, who also uses the personal data exclusively for internal use attributable to the person responsible for processing.

By registering on the website of the person responsible for processing, the IP address assigned to the person concerned by the Internet service provider (ISP), the date and time of registration are also stored. This data is stored against the background that this is the only way to prevent misuse of our services and, if necessary, to enable criminal offenses that have been committed to be investigated. In this respect, the storage of these
Data required to protect the person responsible for processing. In principle, this data will not be passed on to third parties unless there is a legal obligation to pass it on or the passing on is for criminal prosecution.

The registration of the data subject, with the voluntary provision of personal data, enables the data controller to offer the data subject content or services that, due to the nature of the matter, can only be offered to registered users. Registered persons are free to change the personal data provided during registration at any time or to have it completely deleted from the database of the person responsible for processing.

The person responsible for processing shall provide any data subject with information at any time upon request as to which personal data is stored about the data subject. Furthermore, the person responsible for processing corrects or deletes personal data at the request or notice of the person concerned, provided that there are no legal storage obligations to the contrary. All of the employees of the person responsible for processing are available to the person concerned as contact persons in this context.

Subscription to our newsletter

On the website of the bike school Asymmetrix, users are given the opportunity to subscribe to our enterprise's newsletter. Which personal data is transmitted to the person responsible for processing when ordering the newsletter results from the input mask used for this purpose.

The bike school Asymmetrix informs its customers and business partners regularly by means of a newsletter about enterprise offers. The newsletter of our company can only be received by the person concerned if (1) the person concerned has a valid e-mail address and (2) the person concerned registers for the newsletter dispatch. For legal reasons, a confirmation e-mail will be sent to the e-mail address entered by a data subject for the first time for the newsletter dispatch using the double opt-in procedure. This confirmation e-mail is used to check whether the owner of the e-mail address, as the person concerned, has authorized receipt of the newsletter.

When registering for the newsletter, we also store the IP address assigned by the Internet Service Provider (ISP) of the computer system used by the person concerned at the time of registration, as well as the date and time of registration. The collection of this data is necessary in order to be able to understand the (possible) misuse of the e-mail address of a person concerned at a later point in time and therefore serves to provide legal protection for the
the controller.

The personal data collected as part of registering for the newsletter will only be used to send our newsletter. Furthermore, subscribers to the newsletter could be informed by e-mail if this is necessary for the operation of the newsletter service or for registration in this regard, as could be the case in the event of changes to the newsletter offer or changes in the technical conditions. There is no transfer of the personal data collected as part of the newsletter service to third parties. The subscription to our newsletter can be canceled by the data subject at any time. The consent to the storage of personal data that the person concerned has given us for sending the newsletter,
can be revoked at any time. There is a corresponding link in every newsletter for the purpose of revoking consent. It is also possible to unsubscribe from the newsletter at any time directly on the website of the person responsible for processing or to inform the person responsible for processing of this in another way.

Newsletter tracking

The Asymmetrix bike school newsletter contains so-called tracking pixels. A tracking pixel is a miniature graphic that is embedded in e-mails that are sent in HTML format to enable log file recording and log file analysis. This allows a statistical evaluation of the success or failure of online marketing campaigns to be carried out. Based on the embedded tracking pixel, the bike school Asymmetrix can see if and when an e-mail was opened by a data subject, and which links in the e-mail were called up by data subjects.

Such personal data collected via the tracking pixels contained in the newsletters are stored and evaluated by the person responsible for processing in order to optimize the newsletter dispatch and to adapt the content of future newsletters even better to the interests of the person concerned. This personal data will not be passed on to third parties. Affected persons are entitled at any time to revoke the relevant separate declaration of consent given via the double opt-in procedure. After a revocation, this personal data will be deleted by the person responsible for processing. The Asymmetrix Bike School automatically regards a withdrawal from the receipt of the newsletter as a revocation.

Contact option via the website

Due to legal regulations, the Asymmetrix bike school website contains information that enables quick electronic contact to our company and direct communication with us, which also includes a general address for so-called electronic mail (e-mail address). If a person concerned contacts the person responsible for processing by e-mail or via a contact form, the personal data transmitted by the person concerned will be automatically saved. Such personal data transmitted on a voluntary basis by a data subject to the data controller are stored for the purpose of processing or contacting the data subject. This personal data will not be passed on to third parties.

Comment function in the blog on the website

The bike school Asymmetrix offers users the opportunity to leave individual comments on individual blog posts on a blog, which is on the website of the person responsible for processing. A blog is a portal maintained on a website, usually open to the public, in which one or more people called bloggers or web bloggers post articles or write down thoughts in so-called blog posts
can. The blog posts can usually be commented on by third parties.

If a data subject leaves a comment on the blog published on this website, information about the time the comment was entered and the user name (pseudonym) chosen by the data subject will be stored and published in addition to the comments left by the data subject. Furthermore, the IP address assigned by the Internet Service Provider (ISP) to the data subject is also logged. The IP address is stored for security reasons and in the event that the person concerned violates the rights of third parties or illegal content by submitting a comment
posts. The storage of this personal data is therefore in the own interest of the person responsible for processing, so that he could exculpate himself in the event of a violation of the law. This collected personal data will not be passed on to third parties unless such a transfer is required by law or serves the legal defense of the person responsible for processing.

Routine deletion and blocking of personal data

The person responsible for processing processes and stores personal data
affected person only for the period necessary to achieve the purpose of storage
or if this is done by the European directive and regulation giver or another
Legislators in laws or regulations which the controller is responsible for
subject, was provided.

If there is no storage purpose or if one is in progress from the European legislator of directives and regulations
or another responsible legislator prescribed storage period, the
personal data is blocked routinely and in accordance with legal regulations
or deleted.

rights of the data subject

a) Right to Confirmation
Each data subject has the right granted by the European legislator for directives and regulations
Right to request confirmation from the controller as to whether you
relevant personal data are processed. If a data subject wants this
If you make use of the right to confirmation, you can contact an employee of the for
contact the controller.

b) Right to information
Any person affected by the processing of personal data has the right from the European
Right granted by directives and regulations, at any time by the person responsible for the processing
Responsible person free information about the stored to his person
personal data and a copy of this information. Furthermore, the European
Policy and regulation giver of the data subject information about the following information
granted:

  • the processing purposes
  • the categories of personal data being processed
  • the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organizations
  • if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria used to determine that duration
  • the existence of a right to correction or deletion of the personal data concerning you or to restriction of processing by the person responsible or a right to object to this processing
  • the existence of a right of appeal to a supervisory authority if the personal data is not collected from the data subject: all available information about the origin of the data
  • the existence of automated decision-making including profiling in accordance with Article 22 (1) and (4) GDPR and - at least in these cases - meaningful information about the logic involved and the scope and intended effects of such processing for the data subject
  • Furthermore, the data subject has a right to information as to whether personal data has been transmitted to a third country or to an international organization. If this is the case, the person concerned has the right to receive information about the appropriate guarantees in connection with the transmission.

If a data subject wishes to make use of this right to information, they can do so
at any time to the above e-mail address of the bike school Asymmetrix.

c) Right to rectification
Any person affected by the processing of personal data has the right from the European
The right granted by the legislator of directives and regulations, the immediate correction of data concerning them
to request inaccurate personal data. Furthermore, the data subject has the right
to, taking into account the purposes of processing, the completion of incomplete
to request personal data - also by means of a supplementary declaration.

If a data subject wishes to exercise this right to rectification, they can do so
contact an employee of the person responsible for processing at any time.

d) Right to erasure (right to be forgotten)
Any person affected by the processing of personal data has the right from the European
The right granted by directives and regulations to require the person responsible to
the personal data concerning them will be deleted immediately if one of the
the following reasons apply and insofar as the processing is not necessary:

The personal data were collected for such purposes or otherwise
processed for which they are no longer necessary.
The data subject revokes their consent on which the processing is based pursuant to Art. 6 para. 1
letter a DS-GVO or Art. 9 para. 2 letter a DS-GVO, and one is missing
other legal basis for processing.
The data subject objects to the processing in accordance with Art. 21 Para. 1 DS-GVO,
and there are no overriding legitimate grounds for the processing, or the data subject
Person files an objection against the processing according to Art. 21 Para. 2 DS-GVO.
The personal data have been unlawfully processed.
The deletion of the personal data is required to fulfill a legal obligation
required by Union law or the law of the Member States to which the person responsible
subject.
The personal data was collected in relation to the services offered by the
Information society according to Art. 8 Para. 1 DS-GVO.
If one of the above reasons applies and a data subject requests the deletion of
personal data stored at the bike school Asymmetrix
If you want, you can contact an employee of the processing department at any time
Contact responsible person. The employee of the bike school Asymmetrix will arrange that the
request for deletion is complied with immediately.

Were the personal data made public by the bike school Asymmetrix and is
our company as the person responsible in accordance with Art. 17 Para. 1 DS-GVO for the deletion of the
obliged to provide personal data, the Asymmetrix bike school will take this into account
Measures appropriate to the available technology and implementation costs, too
of a technical nature, to other persons responsible for data processing, which the published
process personal data, to inform that the data subject
from these other data controllers to delete all links
this personal data or copies or replications of this personal data
has requested data, insofar as the processing is not necessary. The employee of the bike school
Asymmetrix will take the necessary steps in individual cases.

e) Right to restriction of processing
Any person affected by the processing of personal data has the right from the European
Right granted by directives and regulations, restricted by the person responsible
to demand processing if one of the following conditions is met:

The accuracy of the personal data is contested by the data subject, viz
for a period that enables the person responsible to verify the accuracy of the personal data
to check data.
The processing is unlawful, the data subject opposes the erasure of the
personal data and instead demands the restriction of the use of the
personal data.
The person responsible does not need the personal data for the purposes of processing
longer, but the data subject needs it for assertion, exercise or defense
of legal claims.
The data subject has objected to the processing pursuant to Article 21 (1) GDPR
filed and it is not yet clear whether the legitimate reasons for the person responsible
outweigh those of the data subject.
If one of the above conditions is met and a data subject
Restriction of personal data stored at the bike school Asymmetrix,
If you want to request this, you can contact an employee of the responsible for processing at any time
Contact responsible person. The employee of the bike school Asymmetrix will restrict the
initiate processing.

f) Right to data portability
Any person affected by the processing of personal data has the right from the European
the right granted by the directive and regulation giver, the personal data concerning them,
which were provided to a person responsible by the person concerned, in a
structured, common and machine-readable format. You also have the right
this data to another person responsible without hindrance by the person responsible, the
the personal data have been provided, provided that the processing is based on
the consent in accordance with Art. 6 Para. 1 Letter a DS-GVO or Art. 9 Para. 2 Letter a DS-GVO
or based on a contract in accordance with Art. 6 Para. 1 Letter b DS-GVO and the processing
is carried out using automated procedures, unless the processing is necessary for the performance of a
task is required which is in the public interest or in the exercise of public authority
takes place, which has been transferred to the person responsible.

Furthermore, the data subject has to exercise their right to data portability in accordance with
Art. 20 Para. 1 DS-GVO the right to obtain that the personal data directly from a
be transmitted to another person responsible, insofar as this is technically possible
is feasible and provided that this does not affect the rights and freedoms of other people
become.

The person concerned can assert the right to data portability at any time
contact an employee of the bike school Asymmetrix.

g) Right to object
Any person affected by the processing of personal data has the right from the European
The right granted by the legislator of directives and regulations, for reasons arising from their particular
situation arise, at any time against the processing of personal data concerning them
based on Art. 6 Para. 1 Letter e or f DS-GVO to file an objection. this applies
also for profiling based on these provisions.

The bike school Asymmetrix processes the personal data in the event of an objection
no longer unless we can have compelling legitimate grounds for processing
demonstrate that outweigh the interests, rights and freedoms of the data subject, or
the processing serves to assert, exercise or defend legal claims.

Does the bike school Asymmetrix process personal data in order to operate direct advertising,
the data subject has the right to object at any time to the processing of the
submit personal data for the purpose of such advertising. This also applies to that
Profiling to the extent related to such direct marketing. Contradicts the concerned
person to the bike school Asymmetrix of the processing for direct marketing purposes, see above
the bike school Asymmetrix will no longer use the personal data for these purposes
process.

In addition, the data subject has the right, for reasons arising from their particular situation
arise against the processing of personal data relating to them, which is carried out at the bike school
Asymmetrix for scientific or historical research purposes or for statistical purposes
Purposes according to Art. 89 Para. 1 DS-GVO, to object, unless such
Processing is necessary to fulfill a task in the public interest.

In order to exercise the right to object, the data subject can contact anyone directly
Contact a member of staff at the Asymmetrix bike school or another member of staff. the affected
The person is also free, in connection with the use of the services of
Information Society, notwithstanding Directive 2002/58/EC, exercise your right to object by means of
to exercise automated procedures using technical specifications.

h) Automated decisions in individual cases including profiling
Any person affected by the processing of personal data has the right from the European
right granted by directives and regulations, not one exclusively on one
Automated processing - including profiling - based decision
become, which develops legal effect against it or it is similarly significant
affected, provided that the decision (1) is not necessary for the conclusion or performance of a contract
between the data subject and the controller is necessary, or (2) due to
Union or Member State legislation to which the controller is subject,
is permissible and this legislation takes appropriate measures to protect the rights and
freedoms and legitimate interests of the data subject or (3) with
explicit consent of the person concerned.

Is the decision (1) for the conclusion or performance of a contract between the parties concerned
person and the person responsible or (2) it is carried out with explicit consent
of the person concerned, the bike school Asymmetrix takes appropriate measures to protect the rights
and freedoms as well as the legitimate interests of the data subject, for what purpose
at least the right to obtain human intervention on the part of the person responsible
presentation of one's own point of view and to challenge the decision.

If the data subject wishes to assert rights with regard to automated decisions
You can contact an employee of the processing department at any time
Contact responsible person.

i) Right to withdraw consent under data protection law
Any person affected by the processing of personal data has the right from the European
Right granted by directives and regulations, consent to processing
withdraw personal data at any time.

If the data subject wishes to assert their right to revoke consent, they can
you can contact an employee of the person responsible for processing at any time.

Data protection regulations for the deployment and use of Facebook

The person responsible for processing has components of the
Integrated company Facebook. Facebook is a social network.

A social network is an internet social meeting place, an online community,
which usually allows users to communicate with each other and in the virtual
space to interact. A social network can be used as a platform for exchanging opinions and
Experiences serve or enable the internet community to share personal or
provide company-related information. Facebook allows users of the
social network, among other things, the creation of private profiles, the upload of photos and
networking via friend requests.

Facebook's operating company is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025,
UNITED STATES. Responsible for the processing of personal data is when a data subject
person living outside the USA or Canada, Facebook Ireland Ltd., 4 Grand Canal Square, Grand
Canal Harbour, Dublin 2, Ireland.

Each time one of the individual pages of this website is called up, which is responsible for the processing
Controller is operated and on which a Facebook component (Facebook plug-in)
has been integrated, the Internet browser on the information technology system of the
affected person automatically prompted by the respective Facebook component
Download representation of the corresponding Facebook component from Facebook. One
A complete overview of all Facebook plug-ins can be found at
https://developers.facebook.com/docs/plugins/?locale=de_DE. As part of
This technical process gives Facebook knowledge of which specific subpage
our website is visited by the data subject.

If the data subject is logged into Facebook at the same time, Facebook recognizes everyone
Access to our website by the person concerned and for the entire duration of the
respective stay on our website, which specific subpage of our website
visited the person concerned. This information is provided by the Facebook component
collected and transmitted by Facebook to the respective Facebook account of the data subject
assigned. If the person concerned activates one of the integrated on our website
Facebook buttons, for example the "Like" button, or the person concerned gives one
comment, Facebook assigns this information to the personal Facebook user account
affected person and stores this personal data.

Facebook always receives information via the Facebook component that the
data subject has visited our website if the data subject at the time of the
is logged in to Facebook at the same time as accessing our website; this takes place regardless
instead of whether the data subject clicks on the Facebook component or not. Is such a
The data subject may not want this information to be transmitted to Facebook
they prevent the transmission by opting out before accessing our website
logged out of their Facebook account.

The data policy published by Facebook, which can be found at https://de-
de.facebook.com/about/privacy/ provides information about the collection, processing and
Use of personal data by Facebook. It is also explained there which
Facebook offers setting options to protect the privacy of the data subject.
In addition, different applications are available that enable data transmission
to suppress Facebook. Such applications can be used by the data subject
to suppress data transmission to Facebook.

Data protection regulations for the deployment and use of Instagram

The person responsible for processing has components of the service on this website
Instagram integrated. Instagram is a service that qualifies as an audiovisual platform and
users the sharing of photos and videos and also a further dissemination of such data in
other social networks possible.

The operator of the Instagram services is Facebook Ireland Ltd., 4 Grand Canal Square,
Grand Canal Harbour, Dublin 2 Ireland.

Each time one of the individual pages of this website is called up, which is responsible for the processing
Controller is operated and on which an Instagram component (Insta button)
has been integrated, the Internet browser on the information technology system of the
affected person automatically prompted by the respective Instagram component, a
Download representation of the corresponding component of Instagram. As part of this
technical process, Instagram is informed which specific subpage of our
website is visited by the data subject.

If the data subject is logged into Instagram at the same time, Instagram recognizes everyone
Access to our website by the person concerned and for the entire duration of the
respective stay on our website, which specific subpage the person concerned
visited. This information is collected through the Instagram component and through
Instagram assigned to the respective Instagram account of the data subject. Activates the
data subject clicks one of the Instagram buttons integrated on our website
data and information thus transmitted to the personal Instagram user account
assigned to the data subject and stored and processed by Instagram.

Instagram always receives information via the Instagram component that the
data subject has visited our website if the data subject at the time of the
is logged in to Instagram at the same time as accessing our website; this takes place regardless
instead of whether the data subject clicks on the Instagram component or not. Is such a
The data subject may not want this information to be transmitted to Instagram
they prevent the transmission by opting out before accessing our website
logged out of her Instagram account.

Further information and the applicable data protection regulations of Instagram can be found at
https://help.instagram.com/155833707900388 and
https://www.instagram.com/about/legal/privacy/.

Data protection regulations for the deployment and use of Jetpack for WordPress

The person responsible for processing has integrated Jetpack on this website. jet pack is
a WordPress plug-in that allows the operator of a website based on WordPress
offers additional functions. Jetpack allows the website operator, among other things,
Overview of the visitors of the site. By viewing related posts and
Publications or the ability to share content on the site is also increasing the
Number of visitors possible. Also, security features are built into Jetpack, so a
Jetpack using website is better protected against brute force attacks. Jetpack optimized
and also accelerates the loading of the images integrated on the website.

The operating company of the Jetpack plugin for WordPress is Aut O'Mattic A8C Ireland Ltd.,
Business Centre, No.1 Lower Mayor Street, International Financial Services Centre, Dublin 1, Ireland.

Jetpack sets a cookie on the information technology system of the data subject. What
Cookies are, has already been explained above. Each time one of the individual pages of this
Website operated by the controller and on which
a Jetpack component has been integrated, the Internet browser on the
information technology system of the person concerned automatically by the respective
Jetpack component to send data to Automattic for analysis. In the
As part of this technical process, Automattic gains knowledge of data that is subsequently
Creation of an overview of website visits. The data obtained in this way
serve to analyze the behavior of the person concerned who is on the website of the
The person responsible for processing has accessed and are using the website with the aim of
optimize, evaluate. The data collected via the Jetpack component will not be used without
prior obtaining a separate express consent from the data subject
used to identify the data subject. The data is also sent to Quantcast
knowledge. Quantcast uses the data for the same purposes as Automattic.

The person concerned can prevent the setting of cookies through our website, as already mentioned above
shown at any time by means of a corresponding setting of the Internet browser used
prevent and thus permanently contradict the setting of cookies. Such an attitude
Internet browser used would also prevent Automattic/Quantcast from storing a cookie on the
information technology system of the data subject. In addition, Automattic
cookies that have already been set at any time via the Internet browser or other software programs
to be deleted.

Furthermore, the data subject has the option of recording the data generated by the jetpack
Cookie-generated data related to the use of this website and the processing
to object to this data by Automattic/Quantcast and to prevent such. For this
the data subject must click the opt-out button under the link https://www.quantcast.com/opt-
out/, which sets an opt-out cookie. The opt-out cookie set with the objection
is stored on the information technology system used by the person concerned.
If the cookies on the system of the person concerned are deleted after an objection,
the person concerned must call up the link again and set a new opt-out cookie.

With the setting of the opt-out cookie, however, there is the possibility that the Internet pages of the
the persons responsible for processing can no longer be fully used by the person concerned.

The applicable data protection provisions of Automattic are available at
https://automattic.com/privacy/ available. Quantcast's applicable privacy policy
are available at https://www.quantcast.com/privacy/.

Data protection regulations for the application and use of LinkedIn

The person responsible for processing has components of LinkedIn on this website
Corporation integrated. LinkedIn is an Internet-based social network that uses a connection
of users with existing business contacts and making new business contacts
allows. Over 400 million registered people use LinkedIn in more than 200 countries.
LinkedIn is currently the largest platform for business contacts and one of the most visited
websites in the world.

LinkedIn is operated by LinkedIn Corporation, 2029 Stierlin Court Mountain View,
CA 94043, United States. For privacy matters outside the US, LinkedIn Ireland, Privacy
Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

Each time our website is called up, which is linked to a LinkedIn component (LinkedIn plug-
In) is equipped, this component causes the used by the data subject
Browser downloads a corresponding representation of the LinkedIn component. Further
Information on the LinkedIn plug-ins can be found at https://developer.linkedin.com/plugins
be retrieved. As part of this technical process, LinkedIn is informed
which specific subpage of our website is visited by the person concerned.

If the data subject is logged in to LinkedIn at the same time, LinkedIn recognizes everyone
Access to our website by the person concerned and for the entire duration of the
respective stay on our website, which specific subpage of our website
visited the person concerned. This information is provided by the LinkedIn component
collected and linked by LinkedIn to the respective LinkedIn account of the data subject
assigned. If the person concerned activates a LinkedIn button integrated on our website
button, LinkedIn assigns this information to the personal LinkedIn user account
affected person and stores this personal data.

LinkedIn always receives information via the LinkedIn component that the
data subject has visited our website if the data subject at the time of the
is logged in to LinkedIn at the same time as accessing our website; this takes place regardless
instead of whether the data subject clicks on the LinkedIn component or not. Is such a
If the data subject does not want this information to be transmitted to LinkedIn, they can
prevent the transmission by logging out of your browser before accessing our website
LinkedIn account logged out.

At https://www.linkedin.com/psettings/guest-controls LinkedIn offers the option of email
unsubscribe from messages, SMS messages and targeted ads, as well as advertising
manage settings. LinkedIn also uses partners such as Quantcast, Google Analytics, BlueKai,
DoubleClick, Nielsen, Comscore, Eloqua and Lotame, which may set cookies. Such cookies
can be rejected at https://www.linkedin.com/legal/cookie-policy. The applicable
LinkedIn's privacy policy is available at https://www.linkedin.com/legal/privacy-policy
available. LinkedIn's cookie policy is at https://www.linkedin.com/legal/cookie-policy
available.

Data protection regulations for the deployment and use of Shariff

The person responsible for processing has the Shariff component on this website
integrated. The Shariff component provides social media buttons that
are data protection compliant. Shariff was developed and is being developed for the German computer magazine c't
published via GitHub, Inc.

The component developer is GitHub, Inc. 88 Colin P. Kelly Junior Street, San Francisco, CA 94107,
UNITED STATES.

Usually the button solutions provided by the social networks are transmitted
already then personal data to the respective social network, if a user
Visited a website into which a social media button was integrated. By using the
Shariff component, personal data is only transmitted to social networks
when the visitor to a website actively clicks on one of the social media buttons. Further
Information on the Shariff component is published by the computer magazine c't at
http://www.heise.de/newsticker/meldung/Datenschutz-und-Social-Media-Der-c-t-Shariff-ist-im-
Use-2470103.html ready. The purpose of using the Shariff component is to
to protect personal data of visitors to our website and at the same time to us
enable a button solution for social networks to be integrated on this website.

Further information and the applicable data protection regulations of GitHub can be found at
https://help.github.com/articles/github-privacy-policy/.

Data protection regulations for the deployment and use of Twitter

The person responsible for processing has components from Twitter on this website
integrated. Twitter is a multilingual public microblogging service on which
the users so-called tweets, i.e. short messages limited to 280 characters,
publish and disseminate. These short messages are for everyone, including for
People who are not logged in to Twitter can be called up. The tweets are also the so-called
displayed to followers of the respective user. Followers are other Twitter users who follow the tweets
follow a user. Furthermore, Twitter enables the use of hashtags, links or retweets
addressing a wide audience.

Operating company of Twitter International Company, One Cumberland Place, Fenian Street
Dublin 2, D02 AX07, Ireland.

Each time one of the individual pages of this website is called up, which is responsible for the processing
Controller is operated and on which a Twitter component (Twitter button)
has been integrated, the Internet browser on the information technology system of the
affected person automatically prompted by the respective Twitter component
download representation of the corresponding Twitter component from Twitter. Further
Information on the Twitter buttons is available at https://about.twitter.com/de/resources/buttons
available. As part of this technical process, Twitter is informed which
specific subpage of our website is visited by the data subject. purpose of
Integration of the Twitter component is to give our users a redistribution of content
to enable this website to make this website known in the digital world and
increase our visitor numbers.

If the person concerned is logged in to Twitter at the same time, Twitter recognizes this with each call
our website by the person concerned and for the entire duration of the respective
Stay on our website, which specific subpage of our website
affected person visited. This information is collected by the Twitter component
and assigned by Twitter to the respective Twitter account of the data subject. Activates the
data subject clicks one of the Twitter buttons integrated on our website
data and information thus transmitted to the personal Twitter user account
assigned to the data subject and stored and processed by Twitter.

Twitter always receives information via the Twitter component that the
data subject has visited our website if the data subject at the time of the
is logged in to Twitter at the same time as accessing our website; this takes place regardless
whether the data subject clicks on the Twitter component or not. Is such a
If the data subject does not want this information to be transmitted to Twitter, they can
prevent the transmission by logging out of your browser before accessing our website
Twitter account logged out.

Twitter's applicable privacy policy is available at
https://twitter.com/privacy?lang=de available.

Data protection regulations for the deployment and use of YouTube

The person responsible for processing has components from YouTube on this website
integrated. YouTube is an Internet video portal that allows video publishers to post videos for free
Video clips and other users who also free viewing, rating and
Commenting on this allows. YouTube allows the publication of all types of videos,
which is why both complete film and television programs, but also music videos, trailers or from
Users can access videos they have made themselves via the Internet portal.

The operating company of YouTube is Google Ireland Limited, Gordon House, Barrow Street,
Dublin, D04 E5W5, Ireland.

Each time one of the individual pages of this website is called up, which is responsible for the processing
Controller is operated and on which a YouTube component (YouTube video)
has been integrated, the Internet browser on the information technology system of the
affected person automatically prompted by the respective YouTube component
Download representation of the corresponding YouTube component from YouTube. Further
Information about YouTube can be found at https://www.youtube.com/yt/about/de/
become. As part of this technical process, YouTube and Google are informed
which specific subpage of our website is visited by the person concerned.

If the data subject is logged in to YouTube at the same time, YouTube recognizes the
Calling up a subpage that contains a YouTube video, which specific subpage of ours
website visited by the data subject. This information is provided by YouTube and
Collected by Google and assigned to the respective YouTube account of the data subject.

YouTube and Google always receive information via the YouTube component
that the person concerned has visited our website if the person concerned
is logged in to YouTube at the same time as accessing our website; this finds
regardless of whether the data subject clicks on a YouTube video or not. Is a
such transmission of this information to YouTube and Google by the data subject
not wanted, they can prevent the transmission by protecting themselves from a call
logged out of their YouTube account on our website.

The data protection regulations published by YouTube, which can be found at
https://www.google.de/intl/de/policies/privacy/ provide information about the collection,
Processing and use of personal data by YouTube and Google.

Payment method: Data protection regulations for PayPal as a payment method

The person responsible for processing has components from PayPal on this website
integrated. PayPal is an online payment service provider. Payments are made via so-called PayPal
Accounts processed that represent virtual personal or business accounts. There is also PayPal
the ability to process virtual payments via credit cards if a user does not have a PayPal
account maintains. A PayPal account is managed through an email address, so there is no
classic account number. PayPal makes it possible to trigger online payments to third parties or
also receive payments. PayPal also assumes trustee functions and offers
buyer protection services.

PayPal's European operating company is PayPal (Europe) S.à.rl et Cie, SCA, 22-24
Boulevard Royal L-2449, Luxembourg.

Selects the person concerned during the ordering process in our online shop as
Payment option "PayPal", the data of the person concerned are automatically sent to PayPal
transmitted. By selecting this payment option, the data subject consents to the
Payment processing required transmission of personal data.

The personal data transmitted to PayPal is usually
First name, last name, address, email address, IP address, phone number, mobile phone number
or other data necessary for payment processing. To process the purchase contract
such personal data are also necessary in connection with the respective
standing order.

The transmission of the data is intended for payment processing and fraud prevention. the for
PayPal will be responsible for processing personal data in particular
transmit if there is a legitimate interest in the transmission. Those between PayPal
and the person responsible for the processing will be exchanged personal data
may be transmitted by PayPal to credit agencies. This transmission aims
the identity and credit check.

PayPal may provide the personal data to affiliated companies and
Service providers or subcontractors, insofar as this is necessary to fulfill the contractual obligations
obligations is required or the data is to be processed on behalf of the customer.

The data subject has the option of consenting to the handling of personal data
withdraw data from PayPal at any time. A revocation has no effect
personal data that must be processed for (contractual) payment processing,
must be used or transmitted.

PayPal's applicable data protection regulations can be found at
https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

Payment method: data protection regulations for immediate transfer as a payment method

The person responsible for processing has components of on this website
Integrated instant transfer. Sofortüberweisung is a payment service that is cashless
payment for products and services on the Internet. Sofortüberweisung forms a
technical procedure through which the online retailer immediately sends a confirmation of payment
receives. Thus, a trader is able to offer goods, services or downloads immediately
delivered to the customer after the order is placed.

The operating company of Sofortüberweisung is Klarna Bank AB, Sveavägen 46, 111 34
Stockholm, Sweden.

Selects the person concerned during the ordering process in our online shop as
Payment option "Sofortüberweisung" from, automatically data of the person concerned
sent to Sofortüberweisung. By selecting this payment option, the person concerned agrees
person in a transmission of personal data required for payment processing.

During the purchase process via Sofortüberweisung, the buyer transmits the PIN and the TAN to the
Sofort Ltd. Sofortüberweisung then leads after a technical check of the account balance and
Request further data to check the account funds from a transfer to the online retailer.
The execution of the financial transaction is then automatically communicated to the online retailer.

The personal data exchanged with Sofortüberweisung is
First name, last name, address, email address, IP address, phone number, mobile phone number
or other data necessary for payment processing. The transmission of the data
aims to process payments and prevent fraud. The one for processing
The person responsible will also transfer other personal data to Sofortüberweisung
if there is a legitimate interest in the transmission. The between Sofortüberweisung
and the person responsible for the processing will be exchanged personal data
may be transmitted to credit agencies by Sofortüberweisung. This
The purpose of the transmission is to check identity and creditworthiness.

Sofortüberweisung may give the personal data to affiliated companies
and service providers or subcontractors, insofar as this is necessary to fulfill the contractual obligations
obligations is required or the data is to be processed on behalf of the customer.

The data subject has the option of consenting to the handling of personal data
to revoke data at any time in relation to Sofortüberweisung. A revocation has no effect
personal data that must be processed for (contractual) payment processing,
must be used or transmitted.

The applicable data protection regulations of Sofortüberweisung can be found at
https://www.klarna.com/sofort/datenschutz/.

Legal basis of processing

Art. 6 I lit. a DS-GVO serves our company as the legal basis for processing operations,
where we obtain consent for a specific processing purpose. Is the
Processing of personal data for the performance of a contract to which the contracting party
data subject is necessary, as is the case, for example, with processing operations,
for a delivery of goods or the provision of any other service or consideration
are necessary, the processing is based on Art. 6 I lit. b GDPR. The same applies to such
Processing operations that are necessary to carry out pre-contractual measures, e.g
Cases of inquiries about our products or services. Is our company subject to a
legal obligation by which a processing of personal data
is required, such as for the fulfillment of tax obligations, the processing is based
on Art. 6 I lit. c GDPR. In rare cases, the processing of personal data
become necessary to protect vital interests of the data subject or another
to protect a natural person. This would be the case, for example, if a visitor to our
operation would be injured and then his name, his age, his health insurance data or
other vital information to a doctor, hospital or other third party
would have to be passed on. Then the processing would be based on Art. 6 I lit. d GDPR.
Ultimately, processing operations could be based on Art. 6 I lit. f GDPR. On this
The legal basis is based on processing operations that are not related to any of the above
Legal bases are recorded if the processing is to protect a legitimate
interests of our company or a third party is required, provided that the interests
fundamental rights and fundamental freedoms of the person concerned do not prevail. Such processing operations
are permitted to us in particular because they are specifically required by the European legislature
were mentioned. In this respect, he took the view that a legitimate interest had to be assumed
could be if the data subject is a customer of the controller (Recital 47
sentence 2 GDPR).

Legitimate interests in the processing carried out by the controller or a third party
be tracked
Is the processing of personal data based on Article 6 I lit. f DS-GVO is our legitimate
Interest in conducting our business for the benefit of all of us
employees and our shareholders.

Duration for which the personal data will be stored
The criterion for the duration of the storage of personal data is the respective
legal retention period. After the deadline, the corresponding data
routinely deleted, provided they are no longer necessary to fulfill or initiate a contract
required are.

Statutory or contractual requirements for providing the personal data;
Necessity for the conclusion of the contract; Obligation of the data subject who
to provide personal data; possible consequences of non-provision
We clarify that the provision of personal data is partly required by law
is prescribed (e.g. tax regulations) or also results from contractual regulations (e.g
information on the contractual partner). Sometimes it can lead to the conclusion of a contract
be necessary for a data subject to provide us with personal data that
subsequently have to be processed by us. For example, the data subject is
obliges us to provide personal data if our company agrees with her
contract. Failure to provide the personal data would result in the
contract could not be concluded with the person concerned. Before a deployment
personal data by the data subject, the data subject must contact one of our
Contact staff. Our employee clarifies to the person concerned on a case-by-case basis whether the
Provision of the personal data required by law or contract or for
the conclusion of the contract is necessary, whether there is an obligation, the personal data
provide, and what consequences the non-provision of the personal data would have.

Existence of automated decision-making
As a responsible company, we do not use an automatic
decision-making or profiling.

This data protection declaration was created by the data protection declaration generator of DGD Deutsche
Gesellschaft für Datenschutz GmbH, which acts as a data protection officer, in cooperation with the
Data protection lawyers of the law firm WILDE BEUGER SOLMECKE | created lawyers.

English