Overview of data protection
General information
The following information provides you with an easy-to-understand overview of what happens to your personal data when you visit this website. The term "personal data" includes all data that can be used to identify you personally. Detailed information on the subject of data protection can be found here in our privacy policy, which we provide at the end of this copy.
Data collection on this website
Who is the controller responsible for data collection on this website? The data on this website is processed by the operator of the website, whose contact information can be found in the section "Information about the controller (referred to as "controller" in the GDPR)" in this privacy policy.
How do we collect your data?
We collect your data when you provide it to us. This may, for example, be information that you enter in our contact form. Other data is collected automatically by our IT systems or after you have consented to its collection during your visit to the website. This data is primarily technical information (e.g. web browser, operating system or time of access to the website). This information is collected automatically when you access the website.
For what purposes do we use your data?
Some of the information is generated to ensure the error-free provision of the website. Other data can be used to analyze your usage behavior.
What rights do you have in relation to your data?
You have the right to receive information about the origin, recipient and purpose of use of your archived personal data at any time without incurring a fee. You also have the right to request the correction or deletion of your data. If you have consented to data processing, you have the option to revoke this consent at any time, with effect for the future. You also have the right to request that the processing of your data be restricted under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority. Please do not hesitate to contact us at any time if you have any questions about this or other data protection-related issues.
Analysis tools and tools from third-party providers
It is possible that your surfing behavior may be statistically analyzed when you visit this website. Such analyses are mainly carried out with so-called analysis programs. Detailed information on these analysis programs can be found in our privacy policy below.
Hosting
External hosting
This website is hosted by an external service provider (host). The personal data collected on this website is stored on the host's servers. This includes IP addresses, contact requests, metadata and messages, contract information, contact information, names, website accesses and other data generated via a website.
The hoster is used for the purpose of fulfilling contracts with our potential and existing customers (Art. 6(1)(b) GDPR) and in the interest of secure, fast and efficient provision of our online services by a professional provider (Art. 6(1)(f) GDPR). Our hoster will only process your data to the extent that this is necessary to fulfill its performance obligations and to follow our instructions with regard to this data.
Data processing
We have concluded a data processing agreement (DPA) with the above-mentioned provider. This is a contract under data protection law that ensures that it processes personal data of our website visitors only on the basis of our instructions and in accordance with the GDPR.
3. general information and mandatory information
Data protection
The operators of this website and its pages take the protection of your personal data very seriously. We therefore treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
When you use this website, various personal data is collected. Personal data is data that can be used to identify you personally. This privacy policy explains what data we collect and for what purposes we use this data. It also explains how and for what purpose the data is collected.
We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) may be subject to security vulnerabilities. Complete protection of data against access by third parties is not possible.
Information about the controller (referred to as "controller" in the GDPR)
The controller responsible for data processing on this website is:
Ossama Alasmar
EXTENT CORPORATE PROVIDER LLC
Office 1602, Empire Heights Tower B
00000 Business Bay, Dubai, United Arab Emirates
Phone: +971 50 777 0383
E-mail: [email protected]
The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).
Duration of storage
Unless a more precise storage period is specified in this privacy policy, your personal data will remain with us until the purpose for which it was collected no longer applies. If you assert a justified request for deletion or revoke your consent to data processing, your data will be deleted unless there are other legally permissible reasons for the storage of your personal data (e.g. retention periods under tax or commercial law); in the latter case, the deletion will take place after these reasons no longer apply.
Information on data transfer to the USA and other non-EU countries
Among other things, we use tools from companies based in the United States or other non-EU countries that are unsafe under data protection law. If these tools are active, your personal data may be transferred to these non-EU countries and processed there. We must point out that a level of data protection comparable to that in the EU cannot be guaranteed in these countries. For example, US companies are obliged to pass on personal data to the security authorities and you as the data subject have no opportunity to defend yourself in court. It therefore cannot be ruled out that US authorities (e.g. the Secret Service) may process, evaluate and permanently archive your personal data for surveillance purposes. We have no influence on these processing operations.
Withdrawal of your consent to data processing
A large number of data processing operations are only possible with your express consent. You can also withdraw consent that you have already given at any time. This does not affect the legality of the data collection carried out up to the time of revocation.
Right to object to data collection in special cases; right to object to direct marketing (Art. 21 GDPR)
In the event that data processing is based on Art. 6(1)(e) or (f) GDPR, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation. This also applies to profiling based on these provisions. The legal basis on which data processing is based can be found in this privacy policy. If you lodge an objection, we will no longer process your personal data concerned unless we can demonstrate compelling legitimate grounds for the processing of your data which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims (objection pursuant to Art. 21(1) GDPR).
If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such advertising. This also applies to profiling insofar as it is associated with such direct advertising. If you object, your personal data will subsequently no longer be used for direct marketing purposes (objection pursuant to Art. 21(2) GDPR).
Right to lodge a complaint with the competent supervisory authority
In the event of infringements of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, place of work or place of the alleged infringement. The right to lodge a complaint is independent of any other administrative or judicial procedure available as a legal remedy.
Right to data portability
You have the right to request that we provide you or a third party with the data that we process automatically on the basis of your consent or to fulfill a contract in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done if it is technically feasible.
SSL and/or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the website operator, this website uses either an SSL or a TLS encryption program. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and the lock symbol appears in the browser line. If SSL or TLS encryption is activated, data that you transmit to us cannot be read by third parties.
Encrypted payment transactions on this website
If you are obliged to provide us with your payment details (e.g. account number if you issue us with a direct debit authorization) after concluding a fee-based contract with us, this data is required to process payments. Payment transactions with the usual means of payment (Visa/MasterCard, direct debit) are processed exclusively via encrypted SSL or TLS connections. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and the lock symbol appears in the browser line. If communication with us is encrypted, third parties cannot read the payment information you provide to us.
Information about correction and deletion of data
Within the framework of the applicable legal provisions, you have the right to request information about your stored personal data, its origin and recipients as well as the purpose of the processing of your data at any time. In addition, you may have the right to have your data corrected or deleted. If you have any questions about this or any other questions about personal data, you can contact us at any time.
Right to restriction of processing
You have the right to request the restriction of the processing of your personal data. You can contact us at any time for this purpose. The right to request the restriction of processing applies in the following cases:
If you dispute the accuracy of your data archived by us, we generally require a certain amount of time to verify this assertion. You have the right to request that we restrict the processing of your personal data for as long as this review is ongoing.
If the processing of your personal data was/is carried out unlawfully, you have the option of requesting the restriction of the processing of your data instead of requesting the deletion of this data.
If we no longer need your personal data and you need it for the establishment, exercise or defense of legal claims, you have the right to request the restriction of the processing of your personal data instead of its erasure.
If you have lodged an objection pursuant to Art. 21(1) GDPR, your rights and our rights must be weighed against each other. As long as it has not yet been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.
If you have restricted the processing of your personal data, these data - with the exception of their archiving - may only be processed with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of other natural or legal persons or for important reasons of public interest cited by the European Union or a member state of the EU.
Collection of data on this website
Cookies
Our websites and pages use so-called "cookies". Cookies are small text files that do not cause any damage to your device. They are either stored temporarily for the duration of a session (session cookies) or they are permanently archived on your device (permanent cookies). Session cookies are automatically deleted as soon as you end your visit. Permanent cookies remain archived on your device until you actively delete them or they are automatically deleted by your web browser.
In some cases, third-party cookies may be stored on your device as soon as you enter our website. These cookies enable you or us to use certain services of the third party (e.g. cookies for the processing of payment services).
Cookies have a variety of functions. Many cookies are technically necessary, as certain functions of the website would not work without them (e.g. the shopping cart function or the display of videos). The purpose of other cookies may be the analysis of user behavior or the display of advertising messages.
Cookies that are necessary for the performance of electronic communications transactions (required cookies) or to provide certain functions you wish to use (functional cookies, e.g. for the shopping cart function) or cookies that are necessary for the optimization of the website (e.g. cookies that provide measurable insights into the web audience) are stored on the basis of Art. 6(1)(f) GDPR, unless a different legal basis is cited. The website operator has a legitimate interest in the storage of cookies to ensure the technically error-free and optimized provision of the operator's services. If your consent to the storage of cookies has been obtained, the respective cookies are stored exclusively on the basis of the consent given (Art. 6 para. 1 lit. a) GDPR); this consent can be revoked at any time.
You have the option of setting your browser so that you are informed about the setting of cookies and only allow the acceptance of cookies in individual cases. You can also exclude the acceptance of cookies for certain cases or in general or activate the delete function so that cookies are automatically deleted when the browser is closed. If cookies are deactivated, the functions of this website may be restricted.
When using cookies from third-party providers or when using cookies for analysis purposes, we will inform you separately in connection with this privacy policy and, if necessary, ask for your consent.
Contact form
If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions. We will not pass on this data without your consent.
This data is processed on the basis of Art. 6(1)(b) GDPR if your request is related to the performance of a contract or if it is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the requests addressed to us (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR), if this has been obtained.
We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after we have concluded our response to your inquiry). Mandatory statutory provisions, in particular retention periods, remain unaffected by this.
Request by e-mail, telephone or fax
If you contact us by e-mail, telephone or fax, we will store and process your request, including all resulting personal data (name, request), for the purpose of processing your request. We will not pass on this data without your consent.
This data is processed on the basis of Art. 6(1)(b) GDPR if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the data is processed on the basis of our legitimate interest in the effective processing of the inquiries addressed to us (Art. 6(1)(f) GDPR) or on the basis of your consent (Art. 6(1)(a) GDPR), if this has been obtained.
We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Mandatory statutory provisions - in particular statutory retention periods - remain unaffected by this.
Communication via WhatsApp
We use the instant messaging service WhatsApp to communicate with our customers and other third parties. The provider is WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Communication is encrypted end-to-end (peer-to-peer), which prevents WhatsApp or other third parties from gaining access to the communication content. However, WhatsApp gains access to the metadata created during the communication process (e.g. sender, recipient and time). We would also like to point out that WhatsApp states that it shares personal data of its users with its US parent company Facebook. Further details on data processing can be found in WhatsApp's privacy policy at: https://www.whatsapp.com/legal/#privacy-policy.
The use of WhatsApp is based on our legitimate interest in communicating as quickly and effectively as possible with customers, interested parties and other business and contractual partners (Art. 6 para. 1 lit. f) GDPR). If a corresponding consent has been obtained, the data processing takes place exclusively on the basis of the consent; the consent can be revoked at any time with effect for the future.
The communication content exchanged between us and via WhatsApp will remain with us until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions, in particular retention periods, remain unaffected by this.
We use WhatsApp in the "WhatsApp Business" version.
Data is transferred to the USA on the basis of the European Commission's Standard Contractual Clauses (SCC). You can find details here: https://www.whatsapp.com/legal/business-data-transfer-addendum?lang=en.
We have set up our WhatsApp accounts so that there is no automatic data synchronization with the address book on the smartphones used.
Social media
Instagram plugin
We have integrated functions of the public media platform Instagram into this website. These functions are offered by Facebook Ireland Ltd. based at 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
If you are logged into your Instagram account, you can link content from this website to your Instagram profile by clicking the Instagram button. This allows Instagram to associate your visit to this website with your user account. We would like to point out that, as the provider of the website and the pages, we have no knowledge of the content of the data transmitted or its use by Instagram.
The data is stored and analyzed on the basis of Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the highest possible visibility in social media. If a corresponding declaration of consent has been provided, the data is processed exclusively on the basis of Art. 6(1)(a) GDPR. Such consent can be revoked at any time.
Insofar as personal data is collected on our website using the tool described here and forwarded to Facebook or Instagram, we and Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland are jointly responsible for this data processing (Art. 26 GDPR). The joint responsibility is limited exclusively to the collection of data and its transmission to Facebook or Instagram.
The processing by Facebook or Instagram that takes place after forwarding is not part of the joint responsibility. The obligations incumbent on us jointly have been set out in a joint processing agreement. The wording of the agreement can be found at: https://www.facebook.com/legal/controller_addendum.
In accordance with this agreement, we are responsible for providing the data protection information when using the Facebook or Instagram tool and for implementing the tool on our website in a privacy-safe manner. Facebook is responsible for the data security of the Facebook or Instagram products. You can assert data subject rights (e.g. requests for information) regarding the data processed by Facebook or Instagram directly with Facebook. If you assert your data subject rights with us, we are obliged to forward them to Facebook.
Data is transferred to the USA on the basis of the European Commission's Standard Contractual Clauses (SCC). Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://help.instagram.com/519522125107875 and https://de-de.facebook.com/help/566994660333381.
Further information on this topic can be found in Instagram's privacy policy at: https://help.instagram.com/519522125107875.
6. analysis tools and advertising
WordPress statistics
This website uses "WordPress Statistics" for the statistical analysis of visitor access. The provider is Automattic Inc, 60 29th Street #343, San Francisco, CA 94110-4929, USA.
WordPress Statistics uses technologies that enable user recognition for the purpose of analyzing user behavior (e.g. cookies or device fingerprinting). For analysis purposes, WordPress Stats collects log files (referrer, IP address, browser, etc.), the origin of website visitors (country, city) and what actions they have performed on the website (e.g. clicks, views, downloads). The information collected about the use of this website is stored on servers in the United States. Your IP address is anonymized after processing and before the data is stored.
The use of this analysis tool is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the anonymous analysis of user behavior in order to optimize the operator's website and advertising. If a corresponding consent has been obtained (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR; the consent can be revoked at any time.
Facebook pixel
This website uses Facebook's visitor activity pixel to measure conversion rates. The provider of this service is Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. According to Facebook's statement, the data collected is also transferred to the USA and other third countries.
This tool enables the tracking of page visitors after they have been redirected to the provider's website after clicking on a Facebook ad. This makes it possible to analyze the effectiveness of Facebook ads for statistical and market research purposes and to optimize future advertising campaigns.
For us as the operator of this website, the data collected is anonymous. We are not in a position to draw conclusions about the identity of users. However, Facebook archives the information and processes it so that a connection to the respective user profile can be established and Facebook is able to use the data for its own advertising purposes in accordance with the Facebook Data Usage Policy. This enables Facebook to place advertisements on Facebook pages, but also in places outside of Facebook. As the operator of this website, we have no influence on the use of this data.
The Facebook pixel is used on the basis of Art. 6(1)(f) GDPR. The website operator has a legitimate interest in effective advertising campaigns, which also includes social media. If a corresponding consent has been obtained (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR; the consent can be revoked at any time.
Data is transferred to the USA on the basis of the European Commission's Standard Contractual Clauses (SCC). Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381.
Insofar as personal data is collected on our website using the tool described here and forwarded to Facebook, we and Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland are jointly responsible for this data processing (Art. 26 GDPR). The joint responsibility is limited exclusively to the collection of the data and its forwarding to Facebook. The processing by Facebook that takes place after forwarding is not part of the joint responsibility. The obligations incumbent on us jointly have been set out in a joint processing agreement. The wording of the agreement can be found at: https://www.facebook.com/legal/controller_addendum.
According to this agreement, we are responsible for providing data protection information when using the Facebook tool and for the privacy-safe implementation of the tool on our website. Facebook is responsible for the data security of Facebook products. You can assert data subject rights (e.g. requests for information) regarding the data processed by Facebook directly with Facebook. If you assert your data subject rights with us, we are obliged to forward them to Facebook.
You can find more information on protecting your privacy in Facebook's privacy policy at Facebook Privacy Policy. You also have the option of deactivating the remarketing function "Custom Audiences" in the ad settings under Facebook ad settings. To do this, you must first log in to Facebook.
If you do not have a Facebook account, you can deactivate any user-related advertising by Facebook on the website of the European Interactive Digital Advertising Alliance: European Interactive Digital Advertising Alliance.
7. plug-ins and tools
YouTube
This website embeds videos from the YouTube website. The operator of the website is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. When you visit a page of this website in which a YouTube video is embedded, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited.
In addition, YouTube may place various cookies or comparable technologies for recognition (e.g. device fingerprinting) on your device. In this way, YouTube can obtain information about visitors to this website. This information is used, among other things, to compile video statistics in order to improve the user-friendliness of the website and prevent attempted fraud.
If you are logged into your YouTube account while visiting our site, you allow YouTube to associate your browsing behavior directly with your personal profile. You have the option of preventing this by logging out of your YouTube account.
The use of YouTube is based on our interest in an appealing presentation of our online content. According to Art. 6(1)(f) GDPR, this is a legitimate interest. If a corresponding consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR; the consent can be revoked at any time.
Further information on how YouTube handles user data can be found in YouTube's privacy policy at YouTube Privacy Policy.
Webinaris
The operator of the website uses the Webinaris software to conduct online webinars. The provider is Webinaris GmbH, Bussardstr. 5, 82166 Gräfelfing, Germany (hereinafter referred to as "Webinaris").
If you participate in one of our webinars, your personal data will be stored on the Webinaris servers for the purpose of conducting the event. The stored data includes
Your e-mail address
Browser and system data
Your IP address
Language and time zone
Chat data
Other data that you have entered yourself (e.g. name, telephone or customer number, support requests, chat messages)
Usage data from webinars (e.g. access numbers, registration histories, registration for and participation in a webinar, access to certain pages, etc.)
Webinaris archives this data in accordance with its purpose and deletes it as soon as the purpose no longer exists. The legal basis for the use of Webinaris is Art. 6(1)(b) GDPR (performance of a contract) and our legitimate interest in the professional handling of our webinars (Art. 6(1)(f) GDPR). If a corresponding declaration of consent has been obtained (e.g. for the storage of cookies), the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR; the consent given can be revoked at any time.
We have concluded a data processing agreement (DPA) with the above-mentioned provider. This is a contract under data protection law that ensures that the provider processes the personal data of our website visitors only on the basis of our instructions and in accordance with the GDPR.
8. online marketing and partner programs
Affiliate programs on this website
The operator of the website participates in affiliate partner programs. If you click on an advertisement on our website that participates in the affiliate program and subsequently make a transaction (e.g. a purchase), we receive a commission from our affiliated partners. This requires our affiliate partners to be able to identify you and verify that you have been referred to the respective product via the advertisement placed with us and have carried out the predefined transaction. For this purpose, our affiliate partners use cookies or comparable recognition technologies (e.g. device fingerprinting).
The data is stored and analyzed on the basis of Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the correct calculation of its affiliate remuneration. If a corresponding consent has been obtained (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR; the consent can be revoked at any time.
9. e-commerce and payment service providers
Processing of data (customer and contract data)
We collect, process and use personal data only insofar as this is necessary for the establishment, content or modification of the legal relationship (inventory data). These measures are taken on the basis of Art. 6(1)(b) GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures. We collect, process and use personal data about the use of this website (usage data) only insofar as this is necessary to enable users to make use of the services and for billing purposes.
The customer data collected will be deleted once the order has been processed or the business relationship has ended. Statutory retention obligations remain unaffected by this.
Data transmission when concluding contracts for services and digital content
We only pass on personal data to third parties if this is necessary in the context of contract processing, e.g. to the credit institution responsible for processing payments. Data will not be passed on beyond this or only if you have expressly consented to this. Your data will not be passed on to third parties without your express consent, e.g. for advertising purposes.
The basis for the processing of data is Art. 6(1)(b) GDPR, which permits the processing of data for the performance of a contract or for pre-contractual measures.
Payment services
We integrate payment services from third-party companies on our website. When you shop with us, your payment details (e.g. name, payment amount, bank details, credit card number) are processed by the payment service provider for the purpose of payment processing. The respective contractual and data protection provisions of the respective providers apply to these transactions. The payment service providers are used on the basis of Art. 6(1)(b) GDPR (order processing) and in the interest of smooth, convenient and secure payment processing (Art. 6(1)(f) GDPR). Insofar as your consent is obtained for certain actions, Art. 6(1)(a) GDPR is the legal basis for data processing; consent can be withdrawn at any time with effect for the future.
We use the following payment services / payment service providers on this website:
PayPal
The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal"). Data is transferred to the USA on the basis of the Standard Contractual Clauses (SCC) of the European Commission. You can find details here: https://www.paypal.com/de/webapps/mpp/ua/pocpsa-full
Details can be found in PayPal's privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full
Apple Pay
The payment service provider is Apple Inc, Infinite Loop, Cupertino, CA 95014, USA. You can find Apple's privacy policy at: https://www.apple.com/legal/privacy/de-ww/
Google Pay
The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. You can find Google's privacy policy here: https://policies.google.com/privacy.
Sofortüberweisung Sofort
The provider of this payment service is Sofort GmbH, Theresienhöhe 12, 80339 Munich, Germany (hereinafter referred to as "Sofort GmbH"). With the help of the "Sofortüberweisung" procedure, we receive a payment confirmation from Sofort GmbH in real time and can immediately begin to fulfill our obligations. If you have selected the "Sofortüberweisung" payment method, please send the PIN and a valid TAN to Sofort GmbH, which they can use to log into your online banking account. After logging in, Sofort GmbH automatically checks your account balance and carries out the transfer to us with the help of the TAN you have sent. It then immediately sends us a transaction confirmation. After logging in, your turnover, the credit limit of the overdraft facility and the existence of other accounts and their balances are also checked automatically. In addition to the PIN and TAN, the payment data you have entered and your personal data are also transmitted to Sofort GmbH.
Your personal data includes your first and last name, address, telephone number(s), e-mail address, IP address and any other data required for payment processing. The transmission of this data is necessary to establish your identity beyond doubt and to prevent attempts at fraud.
You can find details on payment with Sofortüberweisung under the following links:
https://www.sofort.de/datenschutz.html
https://www.klarna.com/sofort/
Giropay
The provider of this payment service is paydirekt GmbH, Stephanstraße 14 - 16, 60313 Frankfurt am Main (hereinafter referred to as "giropay"). For details, please refer to the privacy policy of giropay at: https://www.paydirekt.de/agb/index.html
10. online-based audio and video conferences (conference tools)
Data processing
We use online conferencing tools, among other things, to communicate with our customers. The tools we use are listed in detail below. If you communicate with us via video or audio conference over the Internet, your personal data will be collected and processed by the provider of the respective conference tool and by us.
The conference tools collect all information that you provide or access in order to use the tools (e-mail address and/or your telephone number). In addition, the conferencing tools process the duration of the conference, the start and end (time) of participation in the conference, the number of participants and other "contextual information" about the communication process (metadata).
In addition, the provider of the tool processes all technical data required for the processing of online communication. This includes, in particular, IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or loudspeaker and the type of connection.
If content is exchanged, uploaded or otherwise made available within the tool, it is also stored on the tool provider's servers. This content includes cloud recordings, chat/instant messages, voice messages, uploaded photos and videos, files, whiteboards and other information that is exchanged while using the service.
Please note that we do not have complete control over the data processing procedures of the tools used. Our options are largely determined by the company policy of the respective provider. Further information on data processing by the conference tools can be found in the privacy policies of the tools used, which we have listed below this text.
Purpose and legal basis
The conference tools are used to communicate with potential or existing contractual partners or to offer certain services to our customers (Art. 6(1)(b) GDPR). In addition, the use of the tools serves to generally simplify and accelerate communication with us or our company (legitimate interest within the meaning of Art. 6(1)(f) GDPR). If consent has been obtained, the use of the respective tools is based on this consent; consent can be revoked at any time with effect for the future.
Duration of storage
The data collected by us directly via the video and conference tools will be deleted from our systems as soon as you ask us to delete it, revoke your consent to storage or the reason for storage no longer applies. The data collected by us directly via the video and conference tools will be deleted from our systems as soon as you ask us to delete it, revoke your consent to storage or the reason for storage no longer applies.
