Privacy policy

Unless otherwise stated below, the provision of your personal data is neither legally nor contractually required, nor is it necessary for the conclusion of a contract. You are not obliged to provide the data. Failure to provide it has no consequences. This only applies insofar as no other information is provided in the following processing operations.
"Personal data" means any information relating to an identified or identifiable natural person.

Server log files
You can visit our websites without providing any personal information.
Each time our website is accessed, usage data is transmitted to us or our web host / IT service provider by your internet browser and stored in log data (so-called server log files). This stored data includes, for example, the name of the page accessed, the date and time of access, the IP address, the amount of data transferred and the requesting provider.
Processing is carried out on the basis of Art. 6(1)(f) GDPR due to our overriding legitimate interest in ensuring the trouble-free operation of our website and improving our offering.
 

Your data may be transferred to and processed in third countries outside the EU, in particular Canada and the USA. An adequacy decision by the EU Commission exists for Canada. For the USA, an adequacy decision by the EU Commission exists in the form of the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer takes place on the basis of contractual obligations comparable to the EU Commission's standard contractual clauses.

Contact

Controller
Contact us if you wish. The controller responsible for data processing is: finkid GmbH, Berliner Straße 46, 10713 Berlin Germany, +49 30 62937740, service@finkid.de

Unsolicited contact by the customer via email
If you contact us by email on your own initiative for business purposes, we collect your personal data (name, email address, message text) only to the extent provided by you. Data processing serves the purpose of handling and responding to your contact request.
If the contact is made for the implementation of pre-contractual measures (e.g. advice in the event of purchase interest, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6(1)(b) GDPR.
If contact is made for other reasons, this data processing is carried out on the basis of Art. 6(1)(f) GDPR due to our overriding legitimate interest in handling and responding to your request. In this case, you have the right, on grounds relating to your particular situation, to object at any time to this processing of personal data concerning you based on Art. 6(1)(f) GDPR.
We use your email address only to process your request. Your data will then be deleted in compliance with statutory retention periods, unless you have consented to further processing and use.

Customer account Orders

Customer account
When opening a customer account, we collect your personal data to the extent specified there. Data processing serves the purpose of improving your shopping experience and simplifying order processing. Processing is carried out on the basis of Art. 6(1)(a) GDPR with your consent. You can revoke your consent at any time by notifying us, without affecting the lawfulness of the processing carried out on the basis of the consent until revocation. Your customer account will then be deleted.

Collection, processing and disclosure of personal data for orders
When you place an order, we collect and process your personal data only insofar as this is necessary to fulfil and process your order and to handle your enquiries. The provision of the data is necessary for the conclusion of the contract. Failure to provide it means that no contract can be concluded. Processing is carried out on the basis of Art. 6(1)(b) GDPR and is necessary for the performance of a contract with you.
Your data may be disclosed, for example, to shipping companies, dropshipping or fulfilment providers, payment service providers, service providers for order processing and IT service providers. In all cases, we strictly comply with the legal requirements. The scope of data transfer is limited to a minimum.
 

Your data may be transferred to and processed in third countries outside the EU, in particular Canada and the USA. An adequacy decision by the EU Commission exists for Canada. For the USA, an adequacy decision by the EU Commission exists in the form of the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer takes place on the basis of contractual obligations comparable to the EU Commission's standard contractual clauses.

Advertising


Use of the email address for sending newsletters
We use your email address to send you information and offers by newsletter, provided that you have expressly consented to this. Data processing serves exclusively the purpose of advertising communication. For this purpose, we process your email address and, if applicable, other data that you voluntarily provided when signing up for our newsletter.
Processing is carried out on the basis of Art. 6(1)(a) GDPR with your consent. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until revocation.
You can unsubscribe from the newsletter at any time using the corresponding link in the newsletter or by notifying us. Your email address will then be removed from the mailing list. Despite removal from the mailing list, we may continue to store your email address in a so-called blacklist in order to prevent you from receiving newsletter emails from us in the future. This storage is carried out on the basis of Art. 6(1)(f) GDPR due to our and your legitimate interest in preventing the renewed use of your email address for sending our newsletter. You have the right, on grounds relating to your particular situation, to object at any time to this processing of personal data concerning you.

Use of the email address for sending direct advertising
We use your email address, which we received in connection with the sale of a good or service, for the electronic sending of advertising for our own goods or services that are similar to those you have already purchased from us, provided that you have not objected to this use. Providing the email address is necessary for the conclusion of the contract. Failure to provide it means that no contract can be concluded. Processing is carried out on the basis of Art. 6(1)(f) GDPR due to our overriding legitimate interest in direct advertising. You can object to this use of your email address at any time by notifying us. You can find the contact details for exercising your objection in the legal notice. You can also use the link provided for this purpose in the advertising email. No costs will be incurred other than the transmission costs according to the basic rates.

Use of Brevo (formerly Sendinblue)
We use the newsletter service of Sendinblue GmbH (Köpenicker Straße 126, 10179 Berlin; “Brevo”) for sending newsletters within the framework of order processing.
We pass on the information you provide when registering for the newsletter (email address, if applicable first and last name) to Brevo. Data processing serves the purpose of sending the newsletter and its statistical evaluation.
To evaluate newsletter campaigns, the email newsletters sent contain a 1x1 pixel graphic (tracking pixel) and/or a tracking link. This allows us to determine whether you opened the newsletter and whether you clicked on any integrated links. In this context, your personal data such as IP address, browser type and device, as well as the time of opening, may also be collected. Usage profiles can be created from this data under a pseudonym. The data collected is not used to personally identify you. The data collected is used solely for statistical evaluation to improve newsletter campaigns.
Your personal data is processed on the basis of Art. 6(1)(f) GDPR due to our overriding legitimate interest in a targeted, effective and user-friendly newsletter system. You have the right, on grounds relating to your particular situation, to object at any time to this processing of personal data concerning you.
Further information and Brevo's privacy policy can be found at: https://www.brevo.com/de/legal/privacypolicy/.

Use of Klaviyo
We use the service of Klaviyo Inc. (125 Summer St Floor 7, Boston, MA 02111, USA; “Klaviyo”) for sending newsletters within the framework of order processing.
We pass on the information you provide when registering for the newsletter (email address, if applicable first and last name) to Klaviyo. Data processing serves the purpose of sending the newsletter and its statistical evaluation.
To evaluate newsletter campaigns, the newsletters sent contain a 1x1 pixel graphic (tracking pixel) or a tracking link. This allows us to determine whether you opened the newsletter and whether you clicked on any integrated links. In this context, we collect your personal data such as IP address, browser type and device, as well as the time. Usage profiles can be created from this data under a pseudonym. The data collected is not used to personally identify you. The data collected is used solely for statistical evaluation to improve newsletter campaigns.
Your data is generally transmitted to Klaviyo servers in the USA and stored there. For the USA, an adequacy decision by the EU Commission exists in the form of the Trans-Atlantic Data Privacy Framework (TADPF). Klaviyo has certified itself under the TADPF and is therefore committed to complying with European data protection principles.
Your personal data is processed on the basis of Art. 6(1)(f) GDPR due to our overriding legitimate interest in a targeted, effective and user-friendly newsletter system. You have the right, on grounds relating to your particular situation, to object at any time to this processing of personal data concerning you.
Further information on data protection at Klaviyo can be found at https://www.klaviyo.com/legal/privacy-notice as well as at https://www.klaviyo.com/legal/data-processing-agreement.

Use of the email address for availability notifications
We offer a product availability notification service on our website. If an item is temporarily unavailable, you have the option of entering your email address for the relevant item and, subject to your consent, being informed by us by email when it becomes available. You will receive a one-time email notification about the availability of the respective item when it is back in stock. Processing is carried out on the basis of Art. 6(1)(a) GDPR with your consent. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until revocation. You can unsubscribe from the availability notification at any time by notifying us. Your email address will then be removed from the mailing list.
 

Payment service providers Credit check

Use of PayPal Express
We use the PayPal Express payment service of PayPal (Europe) S.à.r.l. et Cie, S.C.A. (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal") on our website. Data processing serves the purpose of being able to offer you payment via the PayPal Express payment service. To integrate this payment service, it is necessary for PayPal to collect, store and analyse data when the website is accessed (e.g. IP address, device type, operating system, browser type, location of your device). Cookies may also be used for this purpose. The cookies make it possible to recognise your browser.
Your personal data is processed on the basis of Art. 6(1)(f) GDPR due to our overriding legitimate interest in offering a customer-oriented range of different payment methods. You have the right, on grounds relating to your particular situation, to object at any time to this processing of personal data concerning you.
By selecting and using PayPal Express, the data required for payment processing is transmitted to PayPal in order to fulfil the contract with you using the chosen payment method. This processing is carried out on the basis of Art. 6(1)(b) GDPR. Further information on data processing when using the PayPal Express payment service can be found in the corresponding privacy policy at www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE#Updated_PS.

Use of PayPal Check-Out
We use the PayPal Check-Out payment service of PayPal (Europe) S.à.r.l. et Cie, S.C.A. (22-24 Boulevard Royal L-2449, Luxembourg; "PayPal") on our website. Data processing serves the purpose of being able to offer you payment via the payment service. By selecting and using payment via PayPal, credit card via PayPal, direct debit via PayPal or “Pay Later” via PayPal, the data required for payment processing is transmitted to PayPal in order to fulfil the contract with you using the chosen payment method. This processing is carried out on the basis of Art. 6(1)(b) GDPR.

Cookies may be stored here that enable your browser to be recognised. The resulting data processing is carried out on the basis of Art. 6(1)(f) GDPR due to our overriding legitimate interest in offering a customer-oriented range of different payment methods. You have the right, on grounds relating to your particular situation, to object at any time to this processing of personal data concerning you.

Credit card via PayPal, direct debit via PayPal & “Pay Later” via PayPal
For individual payment methods such as credit card via PayPal, direct debit via PayPal or “Pay Later” via PayPal, PayPal reserves the right to obtain a credit report, if applicable, on the basis of mathematical-statistical procedures using credit agencies. For this purpose, PayPal transmits the personal data required for a credit check to a credit agency and uses the information received on the statistical probability of a payment default for a balanced decision on the establishment, implementation or termination of the contractual relationship. The credit report may contain probability values (score values) calculated on the basis of scientifically recognised mathematical-statistical procedures, the calculation of which includes address data, among other things. Your legitimate interests are taken into account in accordance with the statutory provisions. Data processing serves the purpose of credit checking for contract initiation. Processing is carried out on the basis of Art. 6(1)(f) GDPR due to our overriding legitimate interest in protection against payment default when PayPal makes advance payments.
You have the right, on grounds relating to your particular situation, to object at any time by notifying PayPal to this processing of personal data concerning you based on Art. 6(1)(f) GDPR. The provision of the data is necessary for the conclusion of the contract with the payment method you require. Failure to provide it means that the contract cannot be concluded using the payment method you have chosen.

Third-party providers
When paying using the payment method of a third-party provider, the data required for payment processing is transmitted to PayPal. This processing is carried out on the basis of Art. 6(1)(b) GDPR. To carry out this payment method, the data may then be passed on by PayPal to the respective provider. This processing is carried out on the basis of Art. 6(1)(b) GDPR. Local third-party providers may, for example, be:

  • Apple Pay (Apple Distribution International Ltd., Hollyhill Industrial Estate, Hollyhill, Cork, Ireland)
  • Google Pay (Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland)


Purchase on account via PayPal
When paying using the purchase on account payment method, the data required for payment processing is first transmitted to PayPal. To carry out this payment method, the data is then transmitted by PayPal to Ratepay GmbH (Franklinstraße 28-29, 10587 Berlin; "Ratepay") in order to fulfil the contract with you using the chosen payment method. This processing is carried out on the basis of Art. 6(1)(b) GDPR. Ratepay may carry out a credit check on the basis of mathematical-statistical procedures (probability or score values) using credit agencies according to the process already described above. Data processing serves the purpose of credit checking for contract initiation. Processing is carried out on the basis of Art. 6(1)(f) GDPR due to our overriding legitimate interest in protection against payment default when Ratepay makes advance payments. Further information on data protection and which credit agencies Ratepay uses can be found at https://www.ratepay.com/legal-payment-dataprivacy/ and https://www.ratepay.com/legal-payment-creditagencies/.

Further information on data processing when using PayPal can be found in the corresponding privacy policy at https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

Data collection and processing for credit checks
If we make advance payments, e.g. in the case of payment on account or direct debit, we reserve the right to obtain a credit report, if applicable, on the basis of mathematical-statistical procedures using SCHUFA Holding AG, Kormoranweg 5, 65201 Wiesbaden, for this purpose. To do so, we transmit the personal data required for a credit check there and use the information received on the statistical probability of a payment default for a balanced decision on the establishment, implementation or termination of the contractual relationship. The credit report may contain probability values (score values) calculated on the basis of scientifically recognised mathematical-statistical procedures, the calculation of which includes address data, among other things. Your legitimate interests are taken into account in accordance with the statutory provisions. Data processing serves the purpose of credit checking for contract initiation. Processing is carried out on the basis of Art. 6(1)(f) GDPR due to our overriding legitimate interest in protection against payment default when we make advance payments. You have the right, on grounds relating to your particular situation, to object at any time by notifying us to this processing of personal data concerning you based on Art. 6(1)(f) GDPR. The provision of the data is necessary for the conclusion of the contract with the payment method you require. Failure to provide it means that the contract cannot be concluded using the payment method you have chosen.

Use of Klarna payment options
We use the payment service of Klarna Bank AB (publ) (Sveavägen 46, 111 34 Stockholm, Sweden; “Klarna”) on our website. By selecting and using payment via Klarna, the data required for payment processing is transmitted to Klarna in order to fulfil the contract with you using the chosen payment method. This processing is carried out on the basis of Art. 6(1)(b) GDPR.

Cookies may be stored here that enable your browser to be recognised. The resulting data processing is carried out on the basis of Art. 6(1)(f) GDPR due to our overriding legitimate interest in offering a customer-oriented range of different payment methods. You have the right, on grounds relating to your particular situation, to object at any time to this processing of personal data concerning you.
 
“Pay Later” (invoice), “Pay Now” (payment by direct debit, credit card, instant bank transfer), “Financing” (instalment purchase)
For individual payment methods such as “Pay Later” (invoice), “Pay Now” (payment by direct debit, credit card, instant bank transfer), and “Financing” (instalment purchase), Klarna reserves the right to obtain a credit report, if applicable, on the basis of mathematical-statistical procedures using credit agencies.
For this purpose, Klarna transmits the personal data required for a credit check, such as first and last name, address, gender, email address, IP address and data connected with the order, to a credit agency for the purpose of identity and credit checking and uses the information received on the statistical probability of a payment default for a balanced decision on the establishment, implementation or termination of the contractual relationship. The credit report may contain probability values (score values) calculated on the basis of scientifically recognised mathematical-statistical procedures, the calculation of which includes address data, among other things. Your legitimate interests are taken into account in accordance with the statutory provisions. Data processing serves the purpose of credit checking for contract initiation. Processing is carried out on the basis of Art. 6(1)(f) GDPR due to our overriding legitimate interest in protection against payment default when Klarna makes advance payments. You have the right, on grounds relating to your particular situation, to object at any time by notifying Klarna to this processing of personal data concerning you based on Art. 6(1)(f) GDPR. The provision of the data is necessary for the conclusion of the contract with the payment method you require. Failure to provide it means that the contract cannot be concluded using the payment method you have chosen.
Further information, in particular on which credit agencies Klarna passes on your personal data to, can be found for Germany at https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies and for Austria at https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_at/credit_rating_agencies.
General information about Klarna can be found for Germany at: https://www.klarna.com/de/ and for Austria at https://www.klarna.com/at/. Your personal data will be processed by Klarna in accordance with the applicable data protection regulations and in line with the information in Klarna's privacy policy for Germany at https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/privacy and for Austria at https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_at/privacy.
 

Cookies

Our website uses cookies. Cookies are small text files that are stored in the internet browser or by the internet browser on a user's computer system. When a user accesses a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic string that enables the browser to be uniquely identified when the website is accessed again.
 
Cookies are stored on your computer. You therefore have full control over the use of cookies. By selecting the appropriate technical settings in your internet browser, you can be notified before cookies are set and decide individually whether to accept them, as well as prevent the storage of cookies and transmission of the data they contain. Cookies that have already been stored can be deleted at any time. However, please note that you may then not be able to use all functions of this website to their full extent.
 
You can find information on how to manage cookies (including how to disable them) in the most important browsers via the links below:
Chrome: https://support.google.com/accounts/answer/61416?hl=de
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9-2a946a29ae09
Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
Safari: https://support.apple.com/de-de/guide/safari/manage-cookies-and-website-data-sfri11471/mac
 
Technically necessary cookies
Unless otherwise stated below in this privacy policy, we only use these technically necessary cookies for the purpose of making our offering more user-friendly, effective and secure. Furthermore, cookies enable our systems to recognise your browser even after a page change and to offer you services. Some functions of our website cannot be offered without the use of cookies. For these, it is necessary that the browser is recognised even after a page change.
 
The use of cookies or comparable technologies is carried out on the basis of Section 25(2) TDDDG. Your personal data is processed on the basis of Art. 6(1)(f) GDPR due to our overriding legitimate interest in ensuring the optimal functionality of the website and a user-friendly and effective design of our offering.
You have the right, on grounds relating to your particular situation, to object at any time to this processing of personal data concerning you.
 


Analytics

Use of Google Analytics 4
We use the Google Analytics web analytics service of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; “Google”) on our website.
Data processing serves the purpose of analysing this website and its visitors, as well as for marketing and advertising purposes. To this end, Google will use the information obtained on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity and to provide further services related to website use and internet use to the website operator.
In this context, the following information may be collected, among other things: IP address, date and time of page access, click path, information about the browser and device you use, pages visited, referrer URL (website from which you accessed our website), location data, purchasing activities. Your data may be linked by Google with other data, such as your search history, your personal accounts, your usage data from other devices and all other data Google holds about you.

Your IP address is shortened by us beforehand on our own servers. Google therefore receives only pseudonymised data.

Google uses technologies such as cookies, browser web storage and tracking pixels that enable analysis of your use of the website. The use of cookies or comparable technologies is carried out with your consent on the basis of Section 25(1) sentence 1 TDDDG in conjunction with Art. 6(1)(a) GDPR.

Your personal data is processed with your consent on the basis of Art. 6(1)(a) GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until revocation.

We use the advanced implementation of consent mode (Advanced Consent Mode). In this process, even if consent has not been given, user data is transmitted to Google in the form of “pings”. These pings may include, among other things, the following information: IP address to derive the IP country (the IP address is not logged), date and time of page access, URL of the pages visited, user agent, referrer URL (website from which our website was accessed) or information about the triggering of website events such as a conversion. On the basis of this information, Google models usage data in order to be able to carry out comprehensive usage analysis despite refusal of consent.

The information generated in this way about your use of this website is generally transmitted to a Google server in the USA and stored there. For the USA, an adequacy decision by the EU Commission exists in the form of the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is therefore committed to complying with European data protection principles. Both Google and US government authorities have access to your data.

Further information on terms of use and data protection can be found at https://policies.google.com/technologies/partner-sites and at https://policies.google.com/privacy?hl=de&gl=de.

Use of Shopify statistics
We use the statistics and analysis functions of Shopify International Ltd. (Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland; "Shopify") on our website within the framework of order processing. Shopify is an affiliated company of Shopify Inc. (151 O’Connor Street, Ground Floor, Ottawa, Ontario, K2P 2L8, Canada).
Data processing serves the purpose of analysing this website and its visitors. For this purpose, data is stored for marketing and optimisation purposes and provided in reports, analyses and statistics. The following device information is collected and processed, among other things: information about the web browser, IP address, time zone and some of the cookies installed on your device. In addition, when you navigate the website, information is collected about the webpages or products accessed, the referrer URL (website from which you accessed our website), and information about how you interact with the website. Technologies such as cookies, web beacons, tags and pixels (electronic files used to collect information about how you navigate the website) are used for this purpose.
Your data may be transferred to and processed in third countries outside the EU, in particular Canada and the USA. An adequacy decision by the EU Commission exists for Canada. For the USA, an adequacy decision by the EU Commission exists in the form of the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer takes place on the basis of contractual obligations comparable to the EU Commission's standard contractual clauses.
The use of cookies or comparable technologies is carried out with your consent on the basis of Section 25(1) sentence 1 TDDDG in conjunction with Art. 6(1)(a) GDPR. Your personal data is processed with your consent on the basis of Art. 6(1)(a) GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until revocation.
You can find further information on data protection at Shopify at https://www.shopify.com/de/legal/datenschutz, information on the data processing agreement at https://www.shopify.com/de/legal/dpa as well as information on the cookies used at https://www.shopify.com/de/legal/cookies.

Use of Microsoft Clarity
We use the analysis tool “Microsoft Clarity” of Microsoft Ireland Operations Limited (One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland; ”Microsoft”) on our website. Microsoft is an affiliated company of Microsoft Corporation (One Microsoft Way, Redmond, Washington 98052, USA).
Data processing serves the purpose of demand-oriented design, optimisation and analysis of our website. With the tool, movements of website visitors on the website are recorded on a random sample basis. This creates a log of mouse movements, scrolling behaviour, dwell time and clicks on the website (so-called heatmap).
For this purpose, cookies or comparable technologies are used. The following information may be collected, among other things: IP address, time of access, click path, information about the device you use (device type, screen size and resolution, unique device identifier, operating system), information about the browser you use (browser type and browser version), location data, preferred language for displaying the website, visited subpages, duration of visit, viewed content, requested website or file.
User profiles are created from this data under a pseudonym. The data is not used to personally identify the website visitor and is not merged with personal data of the holder of the pseudonym. Microsoft is contractually prohibited from selling the collected data to other third parties.
Your data may be transferred to the USA. For the USA, an adequacy decision by the EU Commission exists in the form of the Trans-Atlantic Data Privacy Framework (TADPF). Microsoft has certified itself under the TADPF and is therefore committed to complying with European data protection principles.
The use of cookies or comparable technologies is carried out with your consent on the basis of Section 25(1) sentence 1 TDDDG in conjunction with Art. 6(1)(a) GDPR. Your personal data is processed with your consent on the basis of Art. 6(1)(a) GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until revocation.
Detailed information on the cookies used and their function can be found at https://learn.microsoft.com/en-us/clarity/setup-and-installation/cookie-list. Information on the retention period of the information collected can be found at https://learn.microsoft.com/en-us/clarity/setup-and-installation/data-retention. Further information on data protection when using Microsoft Clarity can be found at https://learn.microsoft.com/en-us/clarity/faq#privacy, https://learn.microsoft.com/en-us/clarity/setup-and-installation/clarity-data and https://clarity.microsoft.com/terms. General information on data protection at Microsoft can be found at https://privacy.microsoft.com/de-de/privacystatement.


Plug-ins and miscellaneous


Use of Google reCAPTCHA
We use the reCAPTCHA service of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. The query serves the purpose of distinguishing whether input is made by a human being or by automated, machine processing. For this purpose, your input is transmitted to Google and further used there. In addition, the IP address and, if applicable, other data required by Google for the reCAPTCHA service are transmitted to Google. This data is processed by Google within the European Union and may also be transmitted to servers of Google LLC in the USA. For the USA, an adequacy decision by the EU Commission exists in the form of the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is therefore committed to complying with European data protection principles.
The use of cookies or comparable technologies is carried out with your consent on the basis of Section 25(1) sentence 1 TDDDG in conjunction with Art. 6(1)(a) GDPR. Your personal data is processed with your consent on the basis of Art. 6(1)(a) GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until revocation.
Further information about Google reCAPTCHA and the related privacy policy can be found at: https://www.google.com/recaptcha/intro/android.html as well as https://www.google.com/privacy.
 

Use of Google invisible reCAPTCHA
We use the invisible reCAPTCHA service of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
This serves the purpose of distinguishing whether input is made by a human being or by automated, machine processing. In the background, Google collects and analyses usage data which is used by Invisible reCAPTCHA to distinguish regular users from bots. For this purpose, your input is transmitted to Google and further used there. In addition, the IP address and, if applicable, other data required by Google for the Invisible reCAPTCHA service are transmitted to Google.
This data is processed by Google within the European Union and may also be transmitted to servers of Google LLC in the USA. For the USA, an adequacy decision by the EU Commission exists in the form of the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is therefore committed to complying with European data protection principles.
The use of cookies or comparable technologies is carried out with your consent on the basis of Section 25(1) sentence 1 TDDDG in conjunction with Art. 6(1)(a) GDPR. Your personal data is processed with your consent on the basis of Art. 6(1)(a) GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until revocation.
Further information about Google reCAPTCHA and the related privacy policy can be found at: https://www.google.com/recaptcha/intro/android.html as well as https://www.google.com/privacy

Use of GoogleMaps
We use the function for embedding GoogleMaps maps of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland, "Google") on our website.
The function enables the visual display of geographical information and interactive maps. Google also collects, processes and uses data from visitors to the websites when pages into which GoogleMaps maps are integrated are accessed.
Your data may also be transmitted to the USA in this context. For the USA, an adequacy decision by the EU Commission exists in the form of the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself under the TADPF and is therefore committed to complying with European data protection principles.
The use of cookies or comparable technologies is carried out with your consent on the basis of Section 25(1) sentence 1 TDDDG in conjunction with Art. 6(1)(a) GDPR. Your personal data is processed with your consent on the basis of Art. 6(1)(a) GDPR. You can revoke your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until revocation.
Further information on the collection and use of data by Google can be found in Google's privacy notices at https://www.google.com/privacypolicy.html. There you also have the option in the Privacy Center to change your settings so that you can manage and protect your data processed by Google.

Rights of data subjects and storage period

Duration of storage
After the contract has been fully processed, the data is initially stored for the duration of the warranty period, then taking into account statutory retention periods, in particular under tax and commercial law, and is then deleted after expiry of the period unless you have consented to further processing and use.

Rights of the data subject
If the legal requirements are met, you have the following rights under Art. 15 to 20 GDPR: right of access, rectification, erasure, restriction of processing, and data portability.
In addition, under Art. 21(1) GDPR, you have the right to object to processing based on Art. 6(1)(f) GDPR, as well as to processing for the purposes of direct advertising.

Right to lodge a complaint with the supervisory authority
In accordance with Art. 77 GDPR, you have the right to lodge a complaint with the supervisory authority if you believe that the processing of your personal data is not lawful.

You can lodge a complaint, among other places, with the supervisory authority responsible for us, which you can contact using the following details:

Berlin Commissioner for Data Protection and Freedom of Information
Friedrichstr. 219
Visitor entrance: Puttkamerstr. 16 – 18 (5th floor)
10969 Berlin
Tel.: +49 30 138890
Fax: +49 30 2155050
Email: mailbox@datenschutz-berlin.de

Right to object
If the personal data processing listed here is based on our legitimate interest pursuant to Art. 6(1)(f) GDPR, you have the right, on grounds relating to your particular situation, to object to this processing at any time with effect for the future.
Once an objection has been made, processing of the data concerned will be terminated unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or if the processing serves the establishment, exercise or defence of legal claims.

If personal data is processed for the purposes of direct advertising, you can object to this processing at any time by notifying us. Once an objection has been made, we will stop processing the data concerned for the purposes of direct advertising.

Last updated: 22.10.2024