Privacy Policy

for the website www.socialmonk.net and the service "SOCIALMONK"

INTRODUCTION AND TERMS

1. Introduction
Majuma GmbH operates an instagram management service called “SOCIALMONK”, which can be accessed on the Internet at the URL www.socialmonk.net. With SOCIALMONK users can subscribe to an Instagram Manager, which promotes the reach of an Instagram profile by generating followers and likes. In operating our website www.socialmonk.net (hereinafter referred to as “website”) and our Instagram Management service (hereinafter referred to as “SOCIALMONK”) we process personal data. Personal data will be treated confidentially and processed in accordance with the applicable laws – in particular the Basic Data Protection Regulation (DSGVO) and the Federal Data Protection Act (BDSG-neu). With our data protection regulations we want to inform you which personal data we collect from you, for which purposes and on which legal basis we use them and if necessary to whom we disclose them. Furthermore, we will explain to you which rights you are entitled to in order to protect and enforce your data protection.

2. Terms
Our data protection regulations contain technical terms that are new in the DSGVO and the BDSG. For your better understanding we would like to explain these terms in simple words in advance:

2.1 Personal data

“Personal data” means any information relating to an identified or identifiable person (Art. 4 No. 1 FADP). Information relating to an identified person may, for example, be the name or the e-mail address. However, personal data also includes data where the identity is not immediately apparent but can be determined by combining one’s own information or that of others and thus finding out who it is. A person becomes identifiable, for example, by providing their address or bank details, date of birth or user name, IP addresses and/or location data. Relevant here is all information that in any way allows an inference to a person.

2.2 Processing

Art. 4 No. 2 DPA defines “processing” as any operation involving personal data. This applies in particular to the collection, recording, organisation, arrangement, storage, adaptation or alteration, reading, querying, use, disclosure, transmission, dissemination or any other form of provision, comparison or linkage, restriction, deletion or destruction of personal data.

Responsible company

3. Responsible
Responsible for the data processing:

Company: Majuma GmbH (“we”)
Legal representative: Partner Marco Enzmann, Manuel Facchin and Julian Facchin

Address: Schatzbogen 33, 81829 Munich
e-mail: info@socialmonk.net

4. PROCESSING FRAME

Processing frame: Website and Socialmonk service
In operating our website and our instagram management service SOCIALMONK, we process the personal data of you listed in detail in sections 5-15 below. We only process data of yours that you actively provide (e.g. by filling out forms, transmitting your Instagram access data) or that you automatically provide when using our service.

Your data will be processed exclusively by us and will not be sold, lent or passed on to third parties. If we make use of external service providers to process your personal data, this is done within the framework of so-called order processing, in which we, as the client, are authorized to issue instructions to our contractors. We use an external service provider for the hosting of our website. We host our website at the external provider ALL-INKL (ALL-INKL.COM – Neue Medien Münnich, Hauptstraße 68, D-02742 Friedersdorf, www.all-inkl.com) in the computer centre in Dresden. Should further external service providers be used for individual processing operations listed in sections 5-15, they will be named there.

A data transfer to third countries does not take place and is not planned. We will provide information about exceptions to this principle in the processing operations described below.

THE PROCESSING OPERATIONS IN DETAIL

5. Provision of the website
5.1 Description of processing

Every time you access the website, we automatically collect information that your browser sends to our server. This is the following data:

Your IP address
the browser software you use, as well as its version and language
the operating system you use
the website from which you have accessed our website (so-called referrer)
the sub-pages you have called up on our website
the date and time of your visit to our website
Your Internet Service Provider
Amount of data transmitted
Country and city from which you visited our website
Your length of stay on our website
This is necessary to be able to deliver the website correctly to the browser of your end device. However, no so-called log files are stored in our system. Consequently, your IP address is not recorded in any log files.

5.2 Purpose

Processing is carried out to enable the website to be accessed and to ensure its stability and security.

5.3 Legal basis

The processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 para. 1 lit. f DSGVO). Our legitimate interest lies in the purpose stated in item 5.2.

5.4 Storage period

The data will be deleted as soon as they are no longer necessary for the purpose of their collection. In the case of the collection of data for the provision of the website, this is the case when the respective session is ended.

6. Conclusion of contract
6.1 Description of processing

You can conclude a subscription contract for our SOCIALMONK service on our website. You have the option of taking out a weekly or monthly subscription with us. To conclude the contract, an order form will ask you to provide your first name, surname and address. You can also choose one of the payment methods we offer (Paypal or credit card via Stripe). You will then be taken to the “ORDER OVERVIEW”, where you will once again receive an overview of your subscription as well as the mandatory order information. Here you can finally change and view your order. When you click the button “ORDER PAYMENT”, the form with your personal data is sent to us. When you complete your order, the data required for payment will be passed on to the payment service provider you have chosen (Paypal or Stripe). After sending an order, you will receive an order confirmation from us by e-mail, in which the information about your order is listed again. With the confirmation e-mail or in a separate e-mail you will receive information on how to send your Instagram access data to us via a secure transmission channel.

6.2 Purpose

The processing is carried out for the conclusion and execution of contracts for the SOCIALMONK service.

6.3 Legal basis

The processing is necessary for the conclusion and fulfilment of contracts for the SOCIALMONK service (art. 6 para. 1 letter b DSGVO).

6.4 Storage period

Due to commercial and tax law requirements, we are obliged to store your address, payment and order data for a period of ten years. However, after two years, we will restrict the processing. This means that your data will then only be stored separately to comply with the statutory retention periods and will be deleted immediately after their expiry.

6.5 Recipient

To process your payment, personal data will be forwarded to one of the external payment service providers listed below and selected by you in the course of your order:

PayPal: PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg. For more information about PayPal’s privacy policy, please visit https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE.
Credit Card: Stripe, Inc., 185 Berry Street, Suite 550, San Francisco, California 94107, USA. For more information about Stripe’s privacy policy, please visit https://stripe.com/de/privacy.

7. Provision of SOCIALMONK services
7.1 Description of processing

In order to be able to provide SOCIALMONK services, we require the access data of the Instagram account that is the subject of the contract, which you must provide us with in good time. With the order confirmation e-mail for the conclusion of the contract or with a separate e-mail you will receive information on how you can transmit your Instagram access data to us. Even during the term of the contract, you are responsible for notifying us of any changes to the access data of your Instagram account via a secure transmission channel. Your access data will be securely stored by us and will only be disclosed to your personal account manager for the management of your Instagram account. The account manager will then log in to your Instagram profile. However, he or she will endeavor to promote organic growth of a customer’s Instagram profile by manually interacting with Instagram, namely Follow, Like and Story View. The Account Manager does not create or publish content on your Instagram profile (specifically, no postings, no stories, no comments). In addition, an Account Manager will not read or send Instagram messages. Our services are limited to the Instagram Management services described. We have no control over and no knowledge of what additional data is processed by Instagram as part of our activities on your Instagram account. For more information about Instagram’s privacy policy, please visit https://help.instagram.com/519522125107875.

7.2 Purpose

The processing is carried out to provide the SOCIALMONK services owed under the contract.

7.3 Legal basis

The processing is necessary for the fulfilment of the contracts for the SOCIALMONK service (art. 6 para. 1 letter b DSGVO).

7.4 Storage period

We will delete the access data to your Instagram profile as soon as the contract for the SOCIALMONK services is terminated. Upon termination of the contractual relationship, the customer is subject to the post-contractual obligation to change the password for his Instagram account for security reasons.

7.5 Recipient

Through interaction with your Instagram account, data is transmitted to or processed by Instagram (Instagram LLC, 1601 Willow Rd, Menlo Park, California 94025, USA). Instagram also processes data in the USA and has submitted to the EU-US privacy shield. Further information on the EU-US Privacy Shield can be found at https://www.privacyshield.gov/EU-US-Framework.

8. Contact form and contact by e-mail
8.1 Description of processing

We have provided a contact form on our website for making contact. In this form you are asked to enter your e-mail address, your name and a message to us. When you click on the “Send” button, the data is transferred to us using SSL encryption (see item 16). The contact form can only be transmitted if you accept our data protection regulations by clicking the corresponding checkbox.

You can also contact us using the e-mail addresses provided on the website. In this case, the personal data transmitted with the e-mail will be processed by us.

8.2 Purpose

By providing a contact form on our website, we want to offer you a convenient way to contact us. The data transmitted with and in the contact form or your e-mail will be used exclusively for the purpose of processing and answering your request.

8.3 Legal basis

The processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 para. 1 lit. f DSGVO). Our legitimate interest lies in the purpose stated in item 8.2. If the e-mail contact is aimed at the conclusion or fulfilment of a contract, the data processing is carried out for the purpose of fulfilling the contract (Art. 6 para. 1 lit. b DSGVO).

8.4 Storage period

The data will be deleted by us as soon as they are no longer necessary for the purpose of their collection. This is usually the case when the respective communication with you has ended. The communication is terminated when it can be concluded from the circumstances that your request has been finally clarified. If legal retention periods prevent deletion, the data will be deleted immediately after expiry of the legal retention period.

9. Live Chat
9.1 Description of processing

For faster contact and processing of your request we have integrated a live chat function with our customer support on our website. We use the communication service Tidio, which is operated by Tidio Ltd. 220C Blythe Road, W14 0HH, London, United Kingdom. Tidio offers us the possibility to communicate with users via live chat. The messages sent via the chat and the data provided by you (if applicable your name, e-mail address, phone number) are processed by us on the servers of Tidio. Tidio uses cookies (see paragraph 10). You can find further information on data protection at Tidio at https://www.tidiochat.com/en/privacy-policy.

9.2 Purpose

With the provision of the live chat we want to offer you a comfortable and fast way to contact us. The data transmitted with and in the live chat are used exclusively for the purpose of processing and answering your request.

9.3 Legal basis

The processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 para. 1 lit. f DSGVO). Our legitimate interest lies in the purpose stated in item 9.2. If the live chat is aimed at the conclusion or fulfilment of a contract, the data processing is carried out for the purpose of fulfilling the contract (Art. 6 para. 1 lit. b DSGVO).

9.4 Storage period

The data will be deleted by us as soon as they are no longer necessary for the purpose of their collection. This is usually the case when the respective communication with you has ended. The communication is terminated when it can be concluded from the circumstances that your request has been finally clarified. If legal retention periods prevent deletion, the data will be deleted immediately after expiry of the legal retention period of 10 years.

9.5 Recipient and transfer to third countries

Tidio acts as a service provider for us within the scope of order processing. Tidio may process personal data in third countries outside the EU.

10. Cookies
10.1 Description of processing

Our website uses cookies. Cookies are small text files that are stored on the user’s end device when visiting a website. Cookies contain information that enables the recognition of a terminal device and possibly certain functions of a website. In most cases we only use so-called “session cookies”. These are automatically deleted when you end your internet session and close the browser. Other cookies remain stored on your end device for a longer period of time. We use the following cookies on our website:

Name / Purpose / Storage period
_gat / Used by Google Analytics to limit the request rate / 1 day
_gid / Registers a unique ID that is used to generate statistical information about how the visitor uses the site / 1 day
CookieConsent / Stores the user’s cookie approval status for cookies on the current domain / 1 year
cookielawinfo-checkbox-necessary / Determines whether the visitor has accepted the cookie consent field / 1 day
Google Analytics / 24 hours
_ga Google Analytics / Registers a unique ID that is used to generate statistical data on how the visitor uses the website / 2 years
_cfduid / Tidio Live Chat / 30 days
_gcl_auGoogle Ads / Google Ads / 90 days
cid / This cookie is necessary to process credit card transactions on the website. The service is provided by Stripe.com, which enables online transactions without storing credit card information / 2914571 days
ab_disable_remember_me / This cookie is used to safely store a customer’s login information when making a purchase on the site – the cookie is necessary to complete a secure transaction online / 7 years
checkout-live-session / This cookie is necessary to process credit card transactions on the website. The service is provided by Stripe.com, which enables online transactions without storing credit card information / 10 years
m Stripe / Specifies the device used to access the Web page. This allows the Web page to be formatted accordingly / 10 years
https://q.stripe.com / This cookie is necessary to process credit card transactions on the website. The service is provided by Stripe.com, which enables online transactions without storing credit card information / Session
test_cookie / Used to check whether the user’s browser supports cookies / 1 day
IDE / Used by Google DoubleClick to register and report the user’s actions on the web page after viewing or clicking on one of the provider’s ads, with the purpose of measuring the effectiveness of an ad and displaying targeted advertising to the user / 1 year
ads/ga-audiences / Pixel Tracker / Session
pagead/1p-conversion/# / Pixel Tracker / Session
lsid / Sets a unique ID for the visitor, which allows third-party advertisers to target the visitor with relevant advertising. This pairing service is provided by third-party advertising hubs that enable real-time bidding for advertisers / Persistent
_gcl_au / Used by Google AdSense to experiment with advertising effectiveness on websites that use their services / 3 months

10.2 Purpose

We use cookies to make our website more user-friendly and to offer the functions described in clause 10.1.

10.3 Legal basis

The processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 para. 1 lit. f DSGVO). Our legitimate interest lies in the purpose stated in item 10.2. If you are asked by us for consent in the context of a cookie banner or cookie content tool, the legal basis is Art. 6 para. 1 lit. a DSGVO. Such consent is voluntary.

10.4 Storage period, revocation of consent

Cookies are automatically deleted at the end of a session or when the specified storage period expires. Since cookies are stored on your terminal device, you as a user also have full control over the use of cookies. By changing the settings in your Internet browser, you can deactivate or restrict the transmission of cookies. Cookies already stored can be deleted at any time. This can also be done automatically. If cookies for our website are deactivated, individual functions of our website cannot be used or can only be used to a limited extent. If we obtain consent for the use of cookies via a cookie banner or a cookie content tool, you can revoke this consent at any time in the settings of the cookie banner or cookie content tool with effect for the future.

11. Newsletter
11.1 Description of processing

We send out a newsletter at irregular intervals. With the newsletter we inform you about our services. You will only receive our newsletter if you actively subscribe to our mailing list. You can subscribe to it by filling out and sending a newsletter registration form on our website. All you need to do to subscribe to our newsletter is to enter your e-mail address.

We use the so-called double opt-in procedure to carry out and verify newsletter registrations. A registration takes place in several steps. First of all you register for the newsletter on our website. You will then receive an e-mail from us to the e-mail address you have provided. With this e-mail we ask you to confirm that you have actually subscribed to the newsletter and wish to receive it. A confirmation is made by clicking on a confirmation link in the e-mail. Only after a successful confirmation we will add you to our newsletter distribution list and send you e-mails in the future. Within the scope of the double opt-in procedure, we save the date, time and your IP address both during registration and confirmation.

If you conclude a contract for SOCIALMONK services on our website, in which you also enter your e-mail address, this can subsequently be used by us to send a so-called existing customer newsletter. In such a case, the newsletter will only be used to send direct advertising for our own similar goods or services.

11.2 Purpose

The processing is done in order to offer the newsletter function and to send newsletter e-mails to subscribers and existing customers. The collection and storage of date, time and IP addresses during newsletter registration serves the documentation of granted consent and protection against the misuse of e-mail addresses.

11.3 Legal basis

The processing of our subscriber newsletter is based on a consent pursuant to Art. 6 para. 1 lit. a DSGVO. Your consent is voluntary. The collection and storage of the date, time and IP addresses when registering for the newsletter is necessary to safeguard the predominant legitimate interests of the person responsible (Art. 6 para. 1 lit. f DSGVO). Our legitimate interest lies in the purpose stated in clause 11.2.

The processing of our existing customer newsletter is carried out on the basis of Art. 6 para. 1 lit. f DSGVO in order to safeguard the predominant legitimate interests of the data controller. Our legitimate interest lies in direct advertising to existing customers. This is permissible within the framework of § 7 para. 3 UWG, which we observe.

11.4 Storage period and revocation of consent

If you do not confirm your subscription to our newsletter within 24 hours of receiving the corresponding registration e-mail, your data will be automatically deleted. We process your personal data for the duration of your newsletter subscription. You can cancel your subscription to our newsletter at any time by withdrawing your consent. You can also object at any time to the use of your e-mail address for sending our existing customer newsletter. A simple declaration (by e-mail to info@socialmonk.net) is sufficient in each case. You can also unsubscribe by clicking on the unsubscribe link in the footer of your newsletter. With the revocation of your consent, no more newsletters will be sent to you and your personal data will be removed from our active mailing list.

12. Google Web Fonts
12.1 Description of processing

Our website uses “Google Webfonts”, a font replacement service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as “Google”). With Google Web Fonts, the standard fonts of your end device are replaced with fonts from the Google catalogue when displaying our website. If your browser prevents the integration of Google Web Fonts, the text on our website will be displayed in the standard fonts of your device. The Google fonts are loaded directly from a Google server. In order for this to happen, your browser sends a request to a Google server. As a result, your IP address in connection with the address of our website may also be transmitted to Google. However, Google Web Fonts does not store any cookies on your end device. According to Google, data that is processed as part of the Google Webfonts service is transferred to resource-specific domains such as fonts.googleapis.com or fonts.gstatic.com. They are not associated with data that may be associated with the use of other Google services such as the search engine of the same name or Gmail. For more information about Google Web Fonts’ privacy policy, please visit https://developers.google.com/fonts/faq?hl=de-DE&csw=1. General information about Google’s privacy policy is available at https://policies.google.com/privacy?hl=de-DE.

12.2 Purpose

The processing is done to make the text on our website more readable and aesthetically pleasing.

12.3 Legal basis

The processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 para. 1 lit. f DSGVO). Our legitimate interest lies in the purpose stated in item 12.2.

12.4 Recipient and transfer to third countries

Through the use of Google Web Fonts, personal data may be transmitted to Google. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield. For more information about the EU-US Privacy Shield, please visit https://www.privacyshield.gov/EU-US-Framework.

13. Google Analytics
13.1 Description of processing

Our website uses “Google Analytics”, a web analysis service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as “Google”). Google Analytics uses cookies (see clause 10), which enable an analysis of your use of our offer. We use Google Analytics in the offered version “Universal Analytics”, which allows this analysis across devices by assigning the data to a pseudonymous user ID. The information generated by the cookie is usually transferred to a Google server in the USA and stored there. However, we use Google Analytics exclusively with IP anonymisation. As a result, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before. Only in exceptional cases is the full IP address transferred to a Google server in the USA and shortened there. The IP address transmitted by your browser within the scope of Google Analytics is not merged with other Google data. The statistics created by Google Analytics record, in particular, how many users visit our website, from which country or location the access takes place, which sub-pages are called up and via which links or search terms visitors reach our website. The user conditions of Google Analytics can be found at https://marketingplatform.google.com/about/analytics/terms/de/. An overview of data protection at Google Analytics is available at http://www.google.com/intl/de/analytics/learn/privacy.html. The Google data protection declaration can be viewed at https://policies.google.com/privacy?hl=de-DE.

13.2 Purpose

The processing is done in order to be able to evaluate the use of our website. The information thus obtained is used to improve our online presence and to design it in line with requirements.

13.3 Legal basis

The processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 para. 1 lit. f DSGVO). Our legitimate interest lies in the purpose stated in item 13.2. If you are asked by us within the framework of a cookie banner or cookie content tool for consent, which also covers the use of Google Analytics, then the legal basis is Art. 6 para. 1 lit. a DSGVO. Such consent is voluntary.

13.4 Storage period and right of objection, revocation of consent

We have explained the storage period as well as your control and setting options for cookies in section 10. You can object to data processing by Google Analytics at any time by downloading and installing the browser add-on offered by Google at https://tools.google.com/dlpage/gaoptout?hl=de. Alternatively, you have the possibility to click on the following link. This will set an opt-out cookie on your end device, which will prevent the collection of your data during future visits to this website: Disable Google Analytics. The analysis data processed and stored with Google Analytics will be automatically deleted by us after 14 months. If we obtain consent to use Google Analytics via a cookie banner or a cookie content tool, such consent can be revoked by you at any time within the settings of the cookie banner or cookie content tool with effect for the future.

13.5 Recipient and transfer to third countries

Google Analytics is a service provider for us within the scope of an order processing. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield. Further information on the EU-US Privacy Shield can be found at https://www.privacyshield.gov/EU-US-Framework.

14. GOOGLE ADSENSE
14.1 Description of processing

Our website uses Google AdSense, an advertising service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as “Google”). Google Adsense uses cookies (see paragraph 10). Furthermore, so-called web beacons (invisible graphics, counting pixels) are used. With Google Adsense it is possible to place advertisements on third party sites matching the content of the respective third party site. With Google Adsense we integrate advertisements on our website. For the purpose of targeted advertising, we also target the users of our website according to their interests by means of user profiles. The information generated by Google Adsense about the use of this website (including your IP address) and the delivery of advertising formats are transmitted to a Google server in the USA and stored there. You can find further information about Google Adsense at: https://www.google.com/adsense/start/?hl=de-DE.

14.2 purpose

The processing is done in order to be able to deliver advertisements on our website.

14.3 Legal basis

The processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 para. 1 lit. f DSGVO). Our legitimate interest lies in the purpose stated in item 14.2. If you are asked by us for consent in the context of a cookie banner or cookie content tool, the legal basis is Art. 6 para. 1 lit. a DSGVO. Such consent is voluntary.

14.4 Storage period and right of objection, revocation of consent

We have explained the storage period as well as your control and setting options for cookies in section 10. If we obtain consent to use Google Adsense via a cookie banner or a cookie content tool, you can revoke this consent at any time in the settings of the cookie banner or the cookie content tool with effect for the future.

14.5 Recipient and transfer to third countries

Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield. For more information about the EU-US Privacy Shield, please visit https://www.privacyshield.gov/EU-US-Framework. Google’s privacy policy can be found at https://policies.google.com/privacy?hl=de&gl=de.

15. DoubleClick by Google

15.1 Description of processing

Our website uses Doubleclick by Google, a marketing service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as “Google”).

Doubleclick uses cookies to present you with advertisements that are relevant to you, to measure the success of advertising campaigns and to prevent visitors from receiving the same advertisements more than once. In this process, a pseudonymous identification number (ID) is assigned to your browser, which is used to check which ads have been displayed in your browser and which ads have been viewed. In addition, DoubleClick may use cookie IDs to track conversions that are related to the requests/requests for each ad – for example, when a visitor sees a DoubleClick ad and later visits the advertiser’s website with the same browser and makes a purchase. According to Google, Doubleclick cookies do not contain any personal information. Through the use of Doubleclick, data is transmitted to Google. We have no influence on the scope and further use of data by Google and inform you to the best of our knowledge: By using Doubleclick, Google receives information that you have called up a corresponding subpage of our website or clicked on an advertisement from us. If you are registered with the Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, Google may still store information about you.

15.2 Purpose

Processing is carried out in order to carry out targeted online advertising for our own offers and to evaluate their effectiveness and reach.

15.3 Legal basis

The processing is necessary to safeguard the overriding legitimate interests of the controller (Art. 6 para. 1 lit. f DSGVO). Our legitimate interest lies in the purpose stated in item 15.2. If you are asked by us for consent within the framework of a cookie banner or cookie content tool, the legal basis is Art. 6 para. 1 lit. a DSGVO. Such consent is voluntary.

15.4 Storage period and right of objection, revocation of consent

We have explained the storage period as well as your control and setting options for cookies in section 10. You can also prevent the collection of data generated by the cookies and related to your use of the websites to Google and the processing of this data by Google by downloading and installing the browser plugin available under the following link under the item Doubleclick deactivation extension. Alternatively, you can deactivate the Doubleclick cookies on the Digital Advertising Alliance website by clicking on the following link. Where we obtain consent to use Doubleclick through a cookie banner or cookie content tool, you may revoke such consent at any time in the future by changing the settings of the cookie banner or cookie content tool.

15.5 Recipient and transfer to third countries

Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield. For more information about the EU-US Privacy Shield, please visit https://www.privacyshield.gov/EU-US-Framework. Google’s privacy policy can be found at https://policies.google.com/privacy?hl=de&gl=de.

SECURITY MEASURES

16. Security measures
In order to protect your personal data from unauthorised access, we have provided our website with an SSL or TLS certificate. SSL stands for “Secure Sockets Layer” and TLS for “Transport Layer Security” and encrypts the communication of data between a website and the user’s end device. You can recognize the active SSL or TLS encryption by a small lock logo, which is displayed on the far left in the address line of the browser.

YOUR RIGHTS

17. Rights of data subjects
With regard to the data processing by our company described above, you are entitled to the following rights of data subjects:

17.1 Information (Art. 15 DSGVO)

You have the right to ask us to confirm whether we process personal data concerning you. If this is the case, you have the right, under the conditions set out in Art. 15 of the DSGVO, to access this personal data and the other information listed in Art. 15 DSGVO.

17.2 Correction (Art. 16 DSGVO)

You have the right to ask us to correct incorrect personal data concerning you and, if necessary, to complete incomplete personal data.

17.3 Deletion (Art. 17 DSGVO)

You have the right to demand from us that personal data concerning you be deleted immediately if one of the reasons listed in Art. 17 DSGVO applies in detail, e.g. if your data is no longer required for the purposes pursued by us.

17.4 Restriction of data processing (Art. 18 DSGVO)

You have the right to ask us to limit the processing if one of the conditions listed in Art. 18 DSGVO is met, e.g. if you dispute the accuracy of your personal data, the data processing will be limited for the time necessary to allow us to verify the accuracy of your data.

17.5 Data transferability (Art. 20 DSGVO)

You have the right, under the conditions set out in Art. 20 DSGVO, to request the surrender of data concerning you in a structured, common and machine-readable format.

17.6 Revocation of consent (Art. 7 para. 3 DSGVO)

You have the right to revoke your consent at any time in the case of processing based on consent. The revocation is valid from the time of its assertion. In other words, it is effective for the future. The processing does not become retroactively illegal by the revocation of the consent.

17.7 Complaint (Art. 77 DSGVO)

If you believe that the processing of personal data concerning you violates the DSGVO, you have the right to complain to a supervisory authority. You can exercise this right before a supervisory authority in the EU Member State in which you are resident, in your place of work or in the place where the alleged infringement occurred.

17.8 Prohibition of automated decisions/profiling (Art. 22 DSGVO)

Decisions that have legal consequences for you or that significantly affect you must not be based solely on automated processing of personal data, including profiling. We inform you that we do not use automated decision making, including profiling, with respect to your personal data.

17.9 Opposition (Art. 21 DSGVO)

If we process your personal data on the basis of Art. 6 Para. 1 lit. f DSGVO (to safeguard overriding legitimate interests), you have the right to object to this under the conditions set out in Art. 21 DSGVO. However, this only applies if there are reasons arising from your particular situation. Following an objection, we will no longer process your personal data, unless we can prove compelling reasons for processing worthy of protection that outweigh your interests, rights and freedoms. Nor do we have to stop processing if it serves to assert, exercise or defend legal claims. In any case – even regardless of any particular situation – you have the right to object at any time to the processing of your personal data for direct marketing purposes.

Status: March 2020