Data protection declaration
When you visit our websites, personal data is processed. Personal data includes all information that could be used to identify you personally.
We take the protection of your personal data very seriously. Your personal data will be treated confidentially according to this data protection declaration and the legal data protection provisions. This data protection declaration informs you about the type, scope, and purpose of personal data processing within our website. There is no legal obligation to share your personal information with us.
Regarding the terms used, e.g. "processing" or "controller", we refer to the definitions in Art. 4 of the General Data Protection Regulation (EU-GDPR).
Who is responsible for processing the data on this website?
Responsible for this website's data processing is:
"Controller" is the natural or legal person, agency, institution, or other office that decides alone or together with others about the purpose and method of processing personal data.
For data protection questions:
What rights do you have regarding your data?
At any time, you have the right to receive information for free about the origin, recipient, and purpose of the personal data saved about you. You also have the right to request that this data is corrected, restricted, or deleted. On this and other questions related to data protection, you can contact us at any time under the address given in the legal notice. In addition, you have the right to file a complaint with the responsible supervisory authority.
Many data processing tasks are only possible with your express consent, e.g. when we publish pictures that are subject to your copyright or in which you are shown. You have the right to revoke consent given according to Art. 7(3) GDPR for the future. It is sufficient to send us informal notification of this by email.
At any time, you may revoke your consent for us processing your personal data in the future according to Sec. 21 GDPR. The revocation can be done in particular for processing for direct marketing purposes.
Right to file a complaint with the responsible supervisory authority
For data protection violations that affect you, you have the right to file a complaint with the responsible supervisory authority.
Right to data portability
You have the right to have data that we have automatically processed based on your consent or to fulfill a contract sent to you or a third party in a standard, machine-readable format. If you request the data to be transferred directly to another controller, this will only be done if it is technically possible.
Information, restriction, erasure
In the context of the valid legal regulations, you have the right to receive information free of charge about the personal data saved about you, its origin and recipient, and the purpose of data processing and, if applicable, a right to rectification, processing restrictions, or erasure of this data. On this and other questions related to personal data, you can contact us at any time under the address given in the legal notice.
Personal data will not be transferred to third parties without your express consent unless we are legally obligated to do so (e.g. transferring to agencies for prosecuting criminal acts).
What data is collected on our website?
When you visit our site, our web server automatically processes information given to us by your browser based on Art. 6(1) lit f) EU-GDPR
- Browser type and language
- Operating system used
- The site you last visited (referrer URL)
- Date and time of the server request
- The data amount transferred and access status (file transferred, file not found, etc.)
- IP address
- Results of the feedback survey
We collect and use this data solely in non-personalized form, that is, personal processing does not take place. It primarily serves security purposes and to ensure an error-free provision of the website; in addition, it is used for statistical analyses. This data is not merged with data from other sources. This data is deleted automatically after closing of the session.
Most of the cookies we use are session cookies that are automatically deleted after you leave the site. Other cookies are saved on your device until you delete them. These cookies enable us to recognize your browser the next time to visit the site.
You can change the settings in your browser so that you are informed about cookies being set and allow them only in individual cases, accept cookies only for certain cases, generally not permit them, or to automatically delete the cookies when you close the browser. When deactivating cookies, the functionality of this website could be limited.
Cookies that are necessary to provide certain functions are saved according to Art. 6(1) lit. f) EU-GDPR. The website operator has an interest in analyzing and optimizing its services as well as their economic operation.
If other cookies (e.g. cookies to analyze your surfing behavior) are saved, they are dealt with separately in this data protection declaration.
If you would like to send us a question (e.g. via email), your information from the contact request is saved together with the contact information you entered according to Art. 6(1) lit. f) EU-GDPR for the purpose of responding to the question and saved in case there are any follow-up questions. We do not transfer this data without your consent. If the data is no longer relevant, it is deleted. The legal archiving requirements apply.
If you fill out our survey, your information is saved together with the contact information you entered according to Art. 6(1) lit. a) EU-GDPR for the purpose of evaluating your answers. Your data will be processed and saved by Lime Survey. See https://www.limesurvey.org/policies/privacy-policy for further information. We do not transfer this data without your consent. If the data is no longer relevant, it is deleted. The legal archiving requirements apply.
Amazon Web Services
For hosting and database storage, we use the Amazon Elastic Beanstalk (EB), Amazon Simple Storage Service (S3) and the Amazon Relational Database Service (RDS) of Amazon Web Services Inc., 410 Terry Avenue North, Seattle WA 98109, USA (hereinafter "AWS") in accordance with Art. 6(1) lit. f) EU-GDPR. All data collected within the scope of our offers are stored exclusively in an American computer center (Virginia). The data transmitted to AWS is stored on the servers until we delete it. You can find more information about AWS and data protection at https://d1.awsstatic.com/legal/aws-gdpr/AWS_GDPR_DPA.pdf.
To get critical information about the behavior of our visitors, we use plausible.io. This analytics software gives us insight about our visitors only in general, but not about individuals per say, as it does not track visitors and does not store any personal identifiable information. Go to their documentation and data-policy to find out what plausible.io collects (and most importantly what they don't).
We use technical and organizational security measures to protect personal data that arises or is collected, especially to protect against intentional manipulation, loss, destruction or attacks from unauthorized persons. Our security measures are continually improved according to technological developments. However, we still point out that transferring data online can have security risks. Perfect protection of data from third-party access is not possible.
SSL or TLS encryption
For security reasons and to protect confidential information that is transferred, e.g. orders or questions sent to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection in the URL shown in the browser - it changes from "http://" to "https://" and a padlock symbol appears in your browser URL line.
If the SSL or TLS encryption is activated, data you send to us cannot be read by third parties.