DATA PROTECTION

Data protection

 

data protection

We have written this data protection declaration (version 18.01.2020-311144076) to explain to you, in accordance with the provisions of the General Data Protection Regulation (EU) 2016/679, what information we collect, how we use data and what choices you have as a visitor to this website .

Unfortunately, it is in the nature of things that these explanations sound very technical, but we have tried to describe the most important things as simply and clearly as possible.

 

Storage of personal data

Personal data that you transmit to us electronically on this website, such as name, e-mail address, address or other personal information in the context of submitting a form or comments in the blog, are saved by us together with the time and the IP Address is only used for the specified purpose, stored securely and not passed on to third parties.

We therefore only use your personal data for communication with those visitors who expressly request contact and for processing the services and products offered on this website. We do not pass on your personal data without your consent, but we cannot rule out that this data will be viewed in the event of illegal behavior.

If you send us personal data by e-mail - outside of this website - we cannot guarantee secure transmission and protection of your data. We recommend that you never send confidential data unencrypted by e-mail.

According to Article 6 Paragraph 1 a GDPR (lawfulness of processing), the legal basis is that you give us your consent to process the data you have entered. You can revoke this consent at any time - an informal e-mail is sufficient, you will find our contact details in the imprint.

 

Rights according to the General Data Protection Regulation

According to the provisions of the GDPR, you have the following rights:

  • Right to rectification (Article 16 GDPR)

  • Right to cancellation ("right to be forgotten") (Article 17 GDPR)

  • Right to restriction of processing (Article 18 GDPR)

  • Right to notification - obligation to notify in connection with the correction or deletion of personal data or the restriction of processing (Article 19 GDPR)

  • Right to data portability (Article 20 GDPR)

  • Right of objection (Article 21 GDPR)

  • Right not to be subject to a decision based solely on automated processing - including profiling (Article 22 GDPR)

If you believe that the processing of your data violates data protection law or that your data protection claims have been violated in any other way, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI).

 

Evaluation of visitor behavior

In the following data protection declaration, we inform you whether and how we evaluate data from your visit to this website. The data collected is usually evaluated anonymously and we cannot infer your person from your behavior on this website.

You can find out more about how to object to this analysis of the visit data in the following data protection declaration.

 

TLS encryption with https

We use https to transmit data securely on the Internet (data protection through technology design, Article 25 (1) GDPR). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data. You can recognize the use of this data transmission protection by the small lock symbol in the top left of the browser and the use of the https (instead of http) scheme as part of our Internet address.

 

Embedded social media elements data protection declaration

We integrate elements of social media services on our website in order to display images, videos and texts.
When you visit pages that display these elements, data is transferred from your browser to the respective social media service and stored there. We have no access to this data.
The following links take you to the pages of the respective social media services where it is explained how they handle your data:

 

Instagram privacy policy

We have installed Instagram functions on our website. Instagram is a social media platform operated by Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA. Instagram has been a subsidiary of Facebook Inc. since 2012 and is a Facebook product. Embedding Instagram content on our website is called embedding. This enables us to show you content such as buttons, photos or videos from Instagram directly on our website. When you visit our website that has an Instagram function integrated, data is transmitted to Instagram, stored and processed. Instagram uses the same systems and technologies as Facebook. Your data will thus be processed across all Facebook companies.

In the following we would like to give you a more detailed insight into why Instagram collects data, what data it is and how you can largely control the data processing. Since Instagram belongs to Facebook Inc., we obtain our information from the Instagram guidelines on the one hand, but also from the Facebook data guidelines themselves on the other.

 

What is Instagram

Instagram is one of the most famous social media networks worldwide. Instagram combines the advantages of a blog with the advantages of audiovisual platforms such as YouTube or Vimeo. You can upload photos and short videos to “Insta” (as many of the users casually call the platform), edit them with various filters and also distribute them on other social networks. And if you don't want to be active yourself, you can just follow other interesting users.

 

Why do we use Instagram on our website?

Instagram is the social media platform that has really gone through the roof in recent years. And of course we have reacted to this boom too. We want you to feel as comfortable as possible on our website. That is why a varied preparation of our content is a matter of course for us. Thanks to the embedded Instagram functions, we can enrich our content with helpful, funny or exciting content from the Instagram world. Since Instagram is a subsidiary of Facebook, the data collected can also be used for personalized advertising on Facebook. Our advertisements only get to people who are really interested in our products or services.

Instagram also uses the collected data for measurement and analysis purposes. We get summarized statistics and thus more insight into your wishes and interests. It is important to note that these reports do not personally identify you.

 

What data does Instagram store?

If you come across one of our pages that has Instagram functions (such as Instagram images or plug-ins) installed, your browser automatically connects to Instagram's servers. In doing so, data is sent to Instagram, stored and processed. Regardless of whether you have an Instagram account or not. This includes information about our website, about your computer, about purchases made, about advertisements that you see and how you use our offer. The date and time of your interaction with Instagram are also saved. If you have an Instagram account or are logged in, Instagram saves significantly more data about you.

Facebook differentiates between customer data and event data. We assume this is exactly the case with Instagram. Customer data are, for example, name, address, telephone number and IP address. It is important to mention that this customer data is only transmitted to Instagram after it has been "hashed" beforehand. Hashing means that a data record is converted into a character string. This allows you to encrypt the contact details. In addition, the above-mentioned "event data" are also transmitted. Facebook - and consequently Instagram - understands “event data” to mean data about your user behavior. It can also happen that contact data is combined with event data. The contact details collected are compared with the data that Instagram already has about you.

The collected data is transmitted to Facebook via small text files (cookies), which are usually set in your browser. Depending on the Instagram functions used and whether you have an Instagram account yourself, different amounts of data are stored.

We assume that data processing on Instagram works the same as on Facebook. This means: if you have an Instagram account or have visited www.instagram.com, Instagram has set at least one cookie. If this is the case, your browser sends information to Instagram via the cookie as soon as you come into contact with an Instagram function. After 90 days at the latest (after reconciliation), this data will be deleted or anonymized. Although we have dealt intensively with data processing by Instagram, we cannot say exactly which data Instagram collects and stores.

In the following we show you cookies that are set in your browser at least when you click on an Instagram function (such as a button or an Insta picture). Our test assumes that you do not have an Instagram account. If you are logged in to Instagram, significantly more cookies will of course be set in your browser.

These cookies were used in our test:

Name: csrftoken
Value: ""
Purpose: This cookie is very likely to be set for security reasons in order to prevent falsification of inquiries. However, we could not find out more precisely.
Expiry date: after one year

Name: mid
Value: ""
Purpose: Instagram sets this cookie to optimize its own services and offers in and outside of Instagram. The cookie defines a unique user ID.
Expiration date: after the session ends

Name: fbsr_311144076124024
Value: not specified
Purpose: This cookie stores the log-in request for users of the Instagram app.
Expiration date: after the end of the session

Name: rur
Value: ATN
Purpose: This is an Instagram cookie that guarantees functionality on Instagram.
Expiration date: after the session ends

Name: urlgen
Value: “{\” 194.96.75.33 \ ”: 1901}: 1iEtYv: Y833k2_UjKvXgYe311144076”
Purpose: This cookie is used by Instagram for marketing purposes.
Expiration date: after the end of the session

Note: We cannot claim to be complete here. Which cookies are set in the individual case depends on the embedded functions and your use of Instagram.

 

How long and where is the data stored?

Instagram shares the information received between the Facebook companies with external partners and with people with whom you connect worldwide. The data processing takes place in compliance with our own data guidelines. For security reasons, among other things, your data is distributed on Facebook servers around the world. Most of these servers are in the USA.

 

How can I delete my data or prevent data storage?

Thanks to the General Data Protection Regulation, you have the right to information, portability, correction and deletion of your data. You can manage your data in the Instagram settings. If you want to completely erase your data on Instagram, you have to delete your Instagram account permanently.

And this is how the deletion of the Instagram account works:

First, open the Instagram app. On your profile page, go down and click on "Help Center". You are now on the company's website. On the website, click on "Manage Your Account" and then on "Delete Your Account".

If you delete your account entirely, Instagram will delete posts such as your photos and status updates. Information that other people have shared about you does not belong to your account and therefore will not be deleted.

As already mentioned above, Instagram stores your data primarily via cookies. You can manage, deactivate or delete these cookies in your browser. Management always works a little differently depending on your browser. Here we show you the instructions for the most important browsers.

Chrome: Delete, activate and manage cookies in Chrome

Safari: manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have stored on your computer

Internet Explorer: deleting and managing cookies

Microsoft Edge: Deleting and managing cookies

You can also set up your browser so that you are always informed when a cookie is to be set. Then you can always decide individually whether you want to allow the cookie or not.

Instagram is a subsidiary of Facebook Inc. and Facebook is an active participant in the EU-US Privacy Shield Framework. This framework ensures correct data transfer between the USA and the European Union. You can find out more about this at https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC. We have tried to give you the most important information about data processing by Instagram. On https://help.instagram.com/519522125107875
you can take a closer look at Instagram's data guidelines.

 

YouTube privacy policy

We have integrated YouTube videos on our website. So we can present you interesting videos directly on our site. YouTube is a video portal that has been a subsidiary of Google LLC since 2006. The video portal is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you call up a page on our website that has embedded a YouTube video, your browser automatically connects to the YouTube or Google servers. Different data are transmitted (depending on the settings). Google is responsible for all data processing and Google's data protection therefore also applies.

In the following we would like to explain to you in more detail which data is processed, why we have integrated YouTube videos and how you can manage or delete your data.

 

What is youtube

On YouTube, users can watch, rate, comment and upload videos for free. Over the past few years, YouTube has become one of the most important social media channels in the world. So that we can display videos on our website, YouTube provides a code excerpt that we have built into our site.

 

Why do we use YouTube videos on our website?

YouTube is the video platform with the most visitors and the best content. We strive to offer you the best possible user experience on our website. And of course interesting videos shouldn't be missing. With the help of our embedded videos, we provide you with other helpful content in addition to our texts and images. In addition, our website is more easily found on the Google search engine thanks to the embedded videos. Even if we place advertisements via Google Ads, thanks to the data collected, Google can really only show these advertisements to people who are interested in our offers.

 

Which data is saved by YouTube?

As soon as you visit one of our pages that has a YouTube video integrated, YouTube sets at least one cookie that saves your IP address and our URL. If you are logged into your YouTube account, YouTube can usually assign your interactions on our website to your profile using cookies. This includes data such as session duration, bounce rate, approximate location, technical information such as browser type, screen resolution or your Internet provider. Further data can be contact details, any ratings, sharing content via social media or adding it to your favorites on YouTube.

If you are not signed in to a Google account or a YouTube account, Google stores data with a unique identifier that is linked to your device, browser or app. For example, your preferred language setting is retained. But a lot of interaction data cannot be saved because fewer cookies are set.

In the following list we show cookies that were set in a test in the browser. On the one hand, we show cookies that are set without a registered YouTube account. On the other hand, we show cookies that are set with a registered account. The list cannot claim to be complete because the user data always depends on the interactions on YouTube.

Name: YSC
Value: b9-CV6ojI5Y
Purpose: This cookie registers a unique ID in order to save statistics of the videos seen.
Expiration date: after the session ends

Name: PREF
Value: f1 = 50000000
Purpose: This cookie also registers your unique ID. Via PREF, Google receives statistics on how you use YouTube videos on our website.
Expiry date: after 8 months

Name: GPS
Value: 1
Purpose: This cookie registers your unique ID on mobile devices in order to track the GPS location.
Expiry date: after 30 minutes

Name: VISITOR_INFO1_LIVE
Value: 95Chz8bagyU
Purpose: This cookie tries to estimate the bandwidth of the user on our website (with built-in YouTube video).
Expiry date: after 8 months

Other cookies that are set when you are logged in to your YouTube account:

Name: APISID
Value: zILlvClZSkqGsSwI / AU1aZI6HY7311144076-
Purpose: This cookie is used to create a profile about your interests. The data is used for personalized advertisements.
Expiry date: after 2 years

Name: CONSENT
Value: YES + AT.de + 20150628-20-0
Purpose: The cookie stores the status of a user's consent to the use of various Google services. CONSENT also provides security to check users and to protect user data from unauthorized attacks.
Expiry date: after 19 years

Name: HSID
Value: AcRwpgUik9Dveht0I
Purpose: This cookie is used to create a profile about your interests. These data help to display personalized advertising.
Expiry date: after 2 years

Name: LOGIN_INFO
Value: AFmmF2swRQIhALl6aL…
Purpose: This cookie stores information about your login data.
Expiry date: after 2 years

Name: SAPISID
Value: 7oaPxoG-pZsJuuF5 / AnUdDUIsJ9iJz2vdM
Purpose: This cookie works by uniquely identifying your browser and your device. It is used to create a profile about your interests.
Expiry date: after 2 years

Name: SID
Value: oQfNKjAsI311144076-
Purpose: This cookie stores your Google Account ID and your last login time in a digitally signed and encrypted form.
Expiry date: after 2 years

Name: SIDCC
Value: AN0-TYuqub2JOcDTyL
Purpose: This cookie stores information on how you use the website and which advertisements you may have seen before visiting our site.
Expiry date: after 3 months

 

How long and where is the data stored?

The data that YouTube receives and processes from you is stored on Google's servers. Most of these servers are in America. At https://www.google.com/about/datacenters/inside/locations/?hl=de you can see exactly where the Google data centers are located. Your data is distributed on the servers. This means that the data can be accessed more quickly and is better protected against manipulation.

Google stores the collected data for different lengths of time. You can delete some data at any time, others are automatically deleted after a limited time and others are stored by Google for a longer period of time. Some data (such as items from "My Activity", photos or documents, products) stored in your Google Account will remain stored until you delete them. Even if you are not signed in to a Google Account, you can delete some data associated with your device, browser or app.

 

How can I delete my data or prevent data storage?

Basically, you can delete data in the Google account manually. With the automatic deletion function of location and activity data introduced in 2019, information is stored depending on your decision - either 3 or 18 months and then deleted.

Regardless of whether you have a Google account or not, you can configure your browser in such a way that Google deletes or deactivates cookies. Depending on which browser you are using, this works in different ways. The following instructions show how to manage cookies in your browser:

Chrome: Delete, activate and manage cookies in Chrome

Safari: manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have stored on your computer

Internet Explorer: deleting and managing cookies

Microsoft Edge: Deleting and managing cookies

If you generally do not want cookies, you can set up your browser so that it always informs you when a cookie is to be set. You can decide for each individual cookie whether or not to allow it. Since YouTube is a subsidiary of Google, there is a common privacy policy. If you want to find out more about how your data is handled, we recommend the data protection declaration at https://policies.google.com/privacy?hl=de.

Source: Created with the data protection generator from AdSimple in cooperation with 123familie.de