Privacy policy

Data protection

The use of my website is usually possible without providing personal data. As far as on our pages personal data (such as name, address or e-mail addresses) are collected, this is as far as possible on a voluntary basis. This data will not be passed on to third parties without your express consent. We point out that data transmission over the Internet (eg communication by e-mail) can have security gaps. A complete protection of data against access by third parties is not possible. The use of contact data published on this website by third parties for the purpose of sending unsolicited advertising and information material is hereby expressly prohibited. The operators of the pages expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, such as spam e-mails. This privacy policy applies to my websites, mobile applications and within external online presences, such as my social media profiles (hereinafter collectively referred to as "Online offers").

The terms used are not gender specific.

Stand: 21. August 2022

Security Measures

We take appropriate technical and organizational measures in accordance with the law, taking into account the state of the art, the cost of implementation and the nature, scope, circumstances and purposes of the processing, as well as the various probabilities of occurrence and the level of risk to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk.

Measures include, in particular, ensuring the confidentiality, integrity, and availability of data by controlling physical and electronic access to data as well as access to, entry into, disclosure of, assurance of availability of, and segregation of data concerning them. Furthermore, we have established procedures to ensure the exercise of data subjects rights, the deletion of data, and responses to data compromise. Furthermore, we take the protection of personal data into account as early as the development or selection of hardware, software as well as procedures in accordance with the principle of data protection, through technology design and through data protection-friendly default settings.

SSL encryption (https): To protect your data transmitted via our online offer, we use SSL encryption. You can recognize such encrypted connections by the prefix https:// in the address line of your browser.

Use of cookies

Cookies are small text files or other memory notes that store information on end devices and read information from the end devices. For example, to save the login status in a user account, the content of a shopping cart in an e-shop, the content accessed or the functions used in an online offer. Cookies can also be used for various purposes, e.g. for the purpose of functionality, security and comfort of online offers as well as the creation of analyzes of visitor flows.

Notes on consent: We use cookies in accordance with legal regulations. Therefore, we obtain prior consent from users, except where not required by law. In particular, consent is not necessary if the storage and reading of the information, including cookies, is absolutely necessary in order to provide the users with a telemedia service (i.e. our online offer) that they have expressly requested. The revocable consent is clearly communicated to the users and contains information on the respective use of cookies.

Notes on legal bases under data protection law: On which legal basis under data protection law we process the personal data of users with the help of cookies depends on whether we ask users for their consent. If the users consent, the legal basis for the processing of your data is the declared consent. Otherwise, the data processed with the help of cookies will be processed on the basis of our legitimate interests (e.g. in the commercial operation of our online offer and improving its usability) or, if this is done in the context of fulfilling our contractual obligations, if the use of cookies is necessary to enable our to fulfill contractual obligations. We will explain the purposes for which we process cookies in the course of this data protection declaration or as part of our consent and processing processes.

• Temporary cookies (also: session or session cookies) : Temporary cookies are deleted at the latest after a user has left an online offer and closed his end device (e.g. browser or mobile application).
• Permanent cookies: Permanent Cookies remain stored even after the end device is closed. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. Likewise, the user data collected with the help of cookies can be used to measure reach. Unless we provide users with explicit information on the type and storage period of cookies (e.g. when obtaining consent), users should assume that cookies are permanent and the storage period can be up to two years.

Storage period: With regard to the storage period, the following types of cookies are distinguished:

General information on revocation and objection (opt-out): Users can revoke the consent they have given at any time and also object to the processing in accordance with the legal requirements in Art. 21 DSGVO put in Users can also declare their objection via their browser settings, e.g. by deactivating the use of cookies (which can also limit the functionality of our online services).

Provision of the online offer and web hosting

We process user data in order to be able to provide our online services to them. For this purpose we process the IP address of the user, which is necessary to transmit the content and functions of our online services to the browser or the end device of the user.

Further information on processing procedures, procedures and services:

• Persons affected: Users (e.g. website visitors, users of online services).
• Purposes of processing: Provision of our online offer and user-friendliness; Information technology infrastructure (operation and provision of information systems and technical devices (computers, servers, etc.)); Security measures.
• Types of data processed: Usage data (e.g. websites visited, interest in content, access times); Meta/communication data (e.g. device information, IP addresses).
• Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR.

• Collection of access data and log files: Access our online offer is accessed in the form of so-called "server log files". logged. The address and name of the retrieved websites and files, date and time of retrieval, amounts of data transferred, notification of successful retrieval, browser type and version, the users operating system, referrer URL (the previously visited page) and, as a rule, IP Addresses and the requesting provider belong. The server log files can be used on the one hand for security purposes, e.g. to avoid overloading the server (especially in the case of abusive attacks, so-called DDoS attacks) and on the other hand to ensure server utilization and stability; Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR; Deletion of data: Log file information is stored for a maximum of 30 days and then deleted or made anonymous. Data whose further storage is required for evidence purposes are excluded from deletion until the respective incident has been finally clarified.
• Provision of online offer on rented storage space: We use storage space, computing capacity and software to provide our online offer, which we rent or otherwise obtain from a corresponding server provider (also called "web hoster"); Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR.
• netcup: Services in the field of providing information technology infrastructure and related Services (e.g. storage space and/or computing capacity); Service provider: netcup GmbH, Daimlerstraße 25, D-76185 Karlsruhe, Germany; Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR; Website: https://www.netcup.de/ ; Privacy Policy: https://www.netcup .de/kontakt/datenschutzerklaerung.php ;

Services and service providers used:

• umami: The open-source tool focuses on user privacy. No cookies are used, all data is completely anonymized and no personal data is collected or shared with third parties. The tool is hosted on the same server as this website, which is why no data is transferred to third parties. Website: Umami.is

Affiliate Programs and Affiliate Links

In our online offer, we include so-called affiliate links or other references (which may include, for example, search masks, widgets or discount codes) to the offers and services of third-party providers (collectively referred to as "affiliate links"). If users follow the affiliate links or then take advantage of the offers, we may receive a commission or other benefits from these third parties (collectively referred to as "Commission").

In order to be able to track whether the users have taken advantage of the offers of an affiliate link used by us, it is necessary for the respective third-party providers to know that the users have followed an affiliate link used within our online offer. The assignment of the affiliate links to the respective business transactions or to other actions (e.g. purchases) serves solely the purpose of the commission statement and is canceled as soon as it is no longer required for the purpose.

For the purposes of the aforementioned assignment of the affiliate links, the affiliate links can be supplemented with certain values that are part of the link or can be stored in some other way, e.g. in a cookie. The values can include, in particular, the source website (referrer), the time, an online ID of the operator of the website on which the affiliate link was located, an online ID of the respective offer, the type of link used, the type of offer and an online identifier of the user.

Notes on legal bases: If we ask users for their consent to the use of third-party providers, the legal basis for processing data is consent. Otherwise, user data is processed on the basis of our legitimate interests (i.e. interest in efficient, economical and recipient-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this data protection declaration.

• Persons affected: Users (e.g. website visitors, users of online services).
• Purposes of processing: Affiliate tracking.
• Types of data processed: Contract data (e.g. subject of the contract, term, customer category); Usage data (e.g. websites visited, interest in content, access times); Meta/communication data (e.g. device information, IP addresses).
• Legal basis: Consent (Art. 6 Para. 1 S. 1 lit. a) GDPR; Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR.

Presence in social networks (social media)

We maintain online presences within social networks and process user data in this context in order to communicate with the users active there or to offer information about us.

We would like to point out that user data may be processed outside of the European Union. This can result in risks for users, for example because it could make it more difficult to enforce user rights.

Furthermore, user data is usually processed within social networks for market research and advertising purposes. For example, user profiles can be created based on usage behavior and the resulting interests of users. The usage profiles can in turn be used, for example, to place advertisements inside and outside the networks that presumably correspond to the interests of the users. For these purposes, cookies are usually stored on the users computers, in which the usage behavior and the interests of the users are stored. Furthermore, data can also be stored in the usage profiles independently of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).

For a detailed description of the respective forms of processing and the possibility of objection (opt-out), we refer to the data protection declarations and information provided by the operators of the respective networks.

Also in the case of requests for information and the assertion of data subject rights, we would like to point out that these can most effectively be asserted with the providers. Only the providers have access to the data of the users and can take appropriate measures and provide information directly. If you still need help, you can contact us.

Further information on processing, procedures and services:

• LinkedIn: Social network; Service Provider: LinkedIn Ireland Unlimited Company, Wilton Plaza Wilton Place, Dublin 2, Ireland; Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR; Website: https://www.linkedin.com ; Privacy Policy: https://www.linkedin .com/legal/privacy-policy ; Order processing agreement: https://legal.linkedin.com/dpa ; Standard contractual clauses (ensuring the level of data protection when processing in third countries): https:/ /legal.linkedin.com/dpa ; Opt-out option: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out .
• Twitter: Social network; Service Provider: Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland, Parent Company: Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA; Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR; Privacy Policy: https://twitter.com/privacy , (Settings: https://twitter.com/personalization ).
• YouTube: Social network and video platform; Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA; Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR; Privacy Policy: https://policies.google.com/privacy ; Opt-out option: https://adssettings. google.com/authenticated .
• Instagram: Social network; Service Provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR; Website: https://www.instagram.com ; Privacy Policy: https://instagram.com/about /legal/privacy .
• Xing: Social network; Service provider: XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany; Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR; Website: https://www.xing.de ; Privacy Policy: https://privacy.xing.com /de/datenschutzerklaerung .

Changes and updates to the data protection declaration

• Persons affected: Users (e.g. website visitors, users of online services).
• Purposes of processing: contact requests and communication; Feedback (e.g. collecting feedback via online form); Marketing.
• Types of data processed: contact details (e.g. e-mail, telephone numbers); Content data (e.g. entries in online forms); Usage data (e.g. websites visited, interest in content, access times); Meta/communication data (e.g. device information, IP addresses).
• Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR.

We ask you to inform yourself regularly about the content of our data protection declaration . We will adapt the data protection declaration as soon as the changes in the data processing we carry out make this necessary. We will inform you as soon as the changes require your cooperation (e.g. consent) or other individual notification.

If we provide addresses and contact information of companies and organizations in this data protection declaration, please note that the addresses can change over time and ask you to check the information before contacting us.

Rights of data subjects

As a data subject, you have various rights under the GDPR, which result in particular from Art. 15 to 21 GDPR:

• Right of withdrawal in the case of consent: You have the right to withdraw your consent at any time.
• Right to information: You have the right to request confirmation as to whether the data in question is being processed and information about this data as well as further information and a copy of the data in accordance with the legal requirements.
• Right to rectification: In accordance with legal requirements, you have the right to request the completion of the data concerning you or the correction of incorrect data concerning you.
• Right to deletion and restriction of processing: In accordance with the legal requirements, you have the right to demand that data concerning you be deleted immediately, or alternatively in accordance with the legal requirements Request restriction of the processing of the data.
• Right to data transferability: You have the right to have data relating to you that you have provided to us, in accordance with the legal requirements, in a structured, common and machine-readable format or to request its transmission to another responsible party.
• Right to object: You have the right, for reasons which If your particular situation arises, you can object at any time to the processing of your personal data, which is based on Article 6 (1) (e) or (f) GDPR; this also applies to profiling based on these provisions. If the personal data concerning you is processed in order to operate direct advertising, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling insofar as it is connected to such direct advertising.
• Complaint to supervisory authority: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority , in particular in the Member State of your usual place of residence, your place of work or the place of the alleged infringement if you believe that the processing of your personal data violates the provisions of the GDPR.

Definition of Terms

This section provides you with an overview of the terms used in this data protection declaration. Many of the terms are taken from the law and defined above all in Art. 4 GDPR. The legal definitions are binding. The following explanations, on the other hand, are intended primarily for understanding. The terms are sorted alphabetically.

• Personal data: "Personal data" is any information relating to an identified or identifiable natural person (hereinafter "data subject"); an identifiable natural person is one who can be identified directly or indirectly, in particular by means of assignment to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or one or more special features, are an expression of the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
• Profiles with user-related information: The processing of "profiles with user-related information" or "profiles" for short; includes any type of automated processing of personal data that consists of using this personal data to measure certain personal aspects relating to a natural person (depending on the type of profiling, this may include different information regarding demographics, behavior and interests, such as interaction with websites and their content, etc.), to analyze, evaluate or predict them (e.g. interests in specific content or products, click behavior on a website or whereabouts). Cookies and web beacons are often used for profiling purposes.
• Range measurement: The range measurement (also known as web analytics) serves to evaluate the flow of visitors to an online offer and can determine the behavior or interests of visitors in certain information, such as the content of websites, include. With the help of the range analysis, website owners can, for example, see at what time visitors visit their website and what content they are interested in. This allows them, for example, to better adapt the content of the website to the needs of their visitors. Pseudonymous cookies and web beacons are often used for range analysis purposes in order to recognize returning visitors and thus obtain more precise analyzes of the use of an online offer.
• Responsible: As "Responsible" is the natural or legal person, authority, institution or other body that alone or jointly with others decides on the purposes and means of processing personal data.
• Affiliate tracking: Affiliate tracking logs links that the linking websites use to direct users to websites that offer products or other services. The operators of the linked websites can receive a commission if users follow these so-called affiliate links and then take advantage of the offers (e.g. buy goods or use services). To do this, it is necessary for the providers to be able to track whether users who are interested in certain offers subsequently perceive them at the instigation of the affiliate links. It is therefore necessary for the functionality of affiliate links that they are supplemented with certain values that become part of the link or are stored in some other way, e.g. in a cookie. The values include in particular the source website (referrer), the time, an online ID of the operator of the website on which the affiliate link was located, an online ID of the respective offer, an online ID of the user and tracking-specific values , such as advertising ID, partner ID and categorizations
• Processing: "Processing" is any process or series of processes carried out with or without the aid of automated processes in connection with personal data. The term goes far and covers practically every handling of data, be it collection, evaluation, storage, transmission or deletion.