Privacy Policy

1. Privacy at a Glance

General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data includes all data that can be used to personally identify you.

For detailed information on data protection, please refer to our privacy policy listed below this text.

Data Collection on This Website

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. You can find the operator’s contact details in the section "Information on the Responsible Party" in this privacy policy.

How do we collect your data?

Your data is collected in two main ways:

1. You provide it to us – for example, by entering information in a contact form.
2. Automatically or with your consent, through our IT systems when you visit the website. This includes technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter this website.

What do we use your data for?

Some of the data is collected to ensure the website functions correctly. Other data may be used to analyze user behavior.

What rights do you have regarding your data?

You have the right at any time to:

• Request information about the origin, recipients, and purpose of your stored personal data, free of charge.
• Request correction or deletion of your data.
• Revoke your consent to data processing at any time, effective for the future.
• Request restriction of processing under certain circumstances.
• File a complaint with the relevant supervisory authority if you believe your data is being processed unlawfully.

For any questions about data protection, you can contact us at any time.

Analytics and Third-Party Tools

When you visit this website, your browsing behavior may be statistically analyzed. This is primarily done using analytics programs.

Detailed information about these analytics programs can be found in the privacy policy below.

2. Hosting

IONOS

We host our website with IONOS SE. The provider is IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany (hereinafter "IONOS").

When you visit our website, IONOS collects various log files, including your IP address.

For more details, please refer to IONOS’s privacy policy:
https://www.ionos.de/terms-gtc/terms-privacy

Legal Basis

The use of IONOS is based on Art. 6(1)(f) GDPR. We have a legitimate interest in ensuring the most reliable presentation of our website.

If consent has been requested, processing is carried out solely based on consent (Art. 6(1)(a) GDPR and § 25(1) TTDSG), provided that consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) as per TTDSG. Consent can be revoked at any time.

Data Processing Agreement (DPA)

We have entered into a Data Processing Agreement (DPA) with the provider mentioned above. This is a legally required contract that ensures the provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

3. General Information and Mandatory Notices

Data Protection

The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with statutory data protection regulations as well as this privacy policy.

When you use this website, various personal data is collected. Personal data refers to data that can be used to personally identify you. This privacy policy explains which data we collect, how we use it, and for what purpose.

We would like to point out that data transmission over the internet (e.g., communication via email) may have security vulnerabilities. A complete protection of data from third-party access is not possible.

Information on the Responsible Party

The responsible party for data processing on this website is:

MMplatinum e.K.
Michael Müller
Hepkestr. 153
01277 Dresden, Germany

Phone: +49 (0) 1703633682
Email: info@mmplatinum.de

The responsible party is the natural or legal person who, alone or jointly with others, determines the purposes and means of processing personal data (e.g., names, email addresses, etc.).

Storage Duration

Unless a specific storage period is mentioned in this privacy policy, your personal data will remain stored until the purpose for data processing no longer applies.

If you request deletion of your data or withdraw your consent for data processing, your data will be deleted unless we have other legally permissible reasons for retaining your personal data (e.g., tax or commercial law retention periods). In such cases, the deletion will take place after these legal reasons no longer apply.

General Information on the Legal Basis for Data Processing on This Website

If you have consented to data processing, we process your personal data based on Art. 6(1)(a) GDPR or, in the case of special categories of data under Art. 9(1) GDPR, based on Art. 9(2)(a) GDPR. If you have expressly consented to the transfer of personal data to third countries, data processing is also carried out on the basis of Art. 49(1)(a) GDPR. If you have consented to the storage of cookies or access to information on your end device (e.g., via device fingerprinting), data processing is also based on § 25(1) TTDSG. Consent can be revoked at any time.
If your data is required for contract fulfillment or pre-contractual measures, we process your data based on Art. 6(1)(b) GDPR. Additionally, we process your data if necessary to comply with legal obligations based on Art. 6(1)(c) GDPR. Data processing may also be based on our legitimate interest pursuant to Art. 6(1)(f) GDPR. The specific legal basis for each case is detailed in the relevant sections of this privacy policy.

Data Protection Officer

We have appointed a data protection officer for our company:

Michael Müller

Hepkestr. 153

01277 Dresden

Germany

Phone: +49 (0) 1703633682

Email: info@mmplatinum.de

Notice on Data Transfers to the USA and Other Third Countries

We use tools from companies based in the USA or other countries that are not deemed to have an adequate level of data protection. When these tools are active, your personal data may be transferred to these third countries and processed there. We would like to point out that these countries may not provide a level of data protection comparable to that of the EU.

For example, U.S. companies are required to disclose personal data to security authorities, and as a data subject, you may not have legal remedies against such disclosures. It is possible that U.S. authorities (e.g., intelligence agencies) may process, analyze, and permanently store your data located on U.S. servers for surveillance purposes. We have no influence over these processing activities.

Revocation of Your Consent to Data Processing

Many data processing operations are only possible with your explicit consent. You can revoke consent at any time. The legality of the data processing carried out before revocation remains unaffected.

Right to Object to Data Collection in Special Cases and to Direct Marketing (Art. 21 GDPR)

IF DATA PROCESSING IS BASED ON ART. 6(1)(E) OR (F) GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION. THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE APPLICABLE LEGAL BASIS FOR PROCESSING CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS, AND FREEDOMS OR IF THE PROCESSING SERVES TO ASSERT, EXERCISE, OR DEFEND LEGAL CLAIMS (OBJECTION PURSUANT TO ART. 21(1) GDPR).

IF YOUR PERSONAL DATA IS PROCESSED FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR SUCH MARKETING; THIS ALSO APPLIES TO PROFILING IN CONNECTION WITH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE USED FOR DIRECT MARKETING PURPOSES (OBJECTION PURSUANT TO ART. 21(2) GDPR).

Right to Lodge a Complaint with the Supervisory Authority

In the event of GDPR violations, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, workplace, or the place of the alleged infringement. This right exists without prejudice to other administrative or judicial remedies.

Right to Data Portability

You have the right to receive data that we process based on your consent or for the performance of a contract in a commonly used, machine-readable format and to have it transmitted to another controller where technically feasible.

Right to Access, Erasure, and Rectification

Within the scope of applicable legal provisions, you have the right to obtain free information about your stored personal data, its origin and recipients, and the purpose of data processing. You may also request the correction or deletion of this data at any time. If you have any questions regarding personal data, you can contact us at any time.

Right to Restriction of Processing

You have the right to request the restriction of processing of your personal data. You can contact us at any time regarding this. The right to restriction applies in the following cases:

• If you contest the accuracy of your personal data stored by us, we generally need time to verify this. During the verification period, you have the right to request the restriction of processing.
• If the processing of your personal data was/is unlawful, you may request the restriction of processing instead of deletion.
• If we no longer need your personal data, but you require it to exercise, defend, or assert legal claims, you have the right to request the restriction of processing instead of deletion.
• If you have objected to processing pursuant to Art. 21(1) GDPR, a balancing of interests must be conducted. Until it is determined whose interests prevail, you have the right to request the restriction of processing.

If processing has been restricted, your data may only be processed—apart from storage—with your consent or for the assertion, exercise, or defense of legal claims, or for the protection of another natural or legal person, or for important public interest reasons of the EU or a member state.

SSL and TLS Encryption

For security reasons and to protect the transmission of confidential content, such as orders or inquiries you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the change in the browser's address line from “http://” to “https://” and by the lock symbol in your browser bar.

When SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Encrypted Payment Transactions on This Website

If you are required to provide us with your payment data (e.g., account number for direct debit authorization) after entering into a paid contract, this data will be needed for payment processing.

Payment transactions using common means of payment (Visa/MasterCard, direct debit) are exclusively conducted via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the change in the browser's address line from “http://” to “https://” and by the lock symbol in your browser bar.

When communication is encrypted, your payment data cannot be read by third parties.

Objection to Promotional Emails

We hereby object to the use of the contact data published in the context of legal notice obligations for sending unsolicited advertising and informational materials. The site operators expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam emails.

4. Data Collection on This Website

Cookies

Our website uses so-called “cookies.” Cookies are small text files that do not harm your device. They are either temporarily stored for the duration of a session (session cookies) or permanently stored on your device (permanent cookies). Session cookies are automatically deleted after your visit, while permanent cookies remain stored until you delete them or they are automatically removed by your browser.

In some cases, third-party cookies may also be stored on your device when you visit our site (third-party cookies). These enable us or you to use certain services provided by third parties (e.g., cookies for payment processing).

Cookies serve different purposes. Many cookies are technically necessary because certain website functions would not work without them (e.g., shopping cart functionality or video display). Other cookies are used to analyze user behavior or display advertisements.

Cookies required for electronic communication, providing specific functions requested by you (e.g., shopping cart functionality), or optimizing the website (e.g., audience measurement cookies) are stored based on Art. 6(1)(f) GDPR unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of its services. If consent for storing cookies and similar recognition technologies has been requested, processing is based solely on this consent (Art. 6(1)(a) GDPR and § 25(1) TTDSG); consent can be revoked at any time.

You can configure your browser to inform you about the setting of cookies, allow cookies only in specific cases, block them entirely, or enable automatic deletion of cookies when closing your browser. If cookies are disabled, the functionality of this website may be limited.

If third-party cookies or cookies for analytical purposes are used, you will be separately informed in this privacy policy, and your consent may be requested.

Consent with Usercentrics

This website uses the Usercentrics consent management technology to obtain your consent for storing certain cookies or using specific technologies in compliance with data protection regulations. The provider of this technology is Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany (hereinafter "Usercentrics"). Website: https://usercentrics.com.

When you visit our website, the following personal data is transmitted to Usercentrics:

• Your consent(s) or the withdrawal of your consent(s)
• Your IP address
• Information about your browser
• Information about your device
• The time of your website visit

Usercentrics also stores a cookie in your browser to associate your granted or withdrawn consents. The collected data is stored until you request its deletion, delete the Usercentrics cookie yourself, or the purpose for data storage ceases. Legal retention obligations remain unaffected.

The use of Usercentrics is based on the legal obligation to obtain consent for specific technologies (Art. 6(1)(c) GDPR).

Data Processing Agreement

We have entered into a data processing agreement (DPA) with the provider mentioned above. This is a legally required agreement that ensures the provider processes the personal data of our website visitors only according to our instructions and in compliance with GDPR.

Server Log Files

The website provider automatically collects and stores information in server log files that your browser automatically transmits to us. These include:

• Browser type and version
• Operating system used
• Referrer URL
• Hostname of the accessing computer
• Time of the server request
• IP address

These data are not merged with other data sources.

The collection of this data is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the technically error-free display and optimization of its website, for which server log files must be recorded.

Contact Form

If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provide, will be stored with us for processing the inquiry and for follow-up questions. We do not share this data without your consent.

The processing of this data is based on Art. 6(1)(b) GDPR if your inquiry is related to contract fulfillment or is necessary for pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively processing inquiries (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR), if requested; consent can be revoked at any time.

Your data will remain with us until you request deletion, revoke your consent, or the purpose for data storage ceases (e.g., after your request has been processed). Mandatory legal provisions—especially retention periods—remain unaffected.

Inquiry via Email, Telephone, or Fax

If you contact us via email, phone, or fax, your inquiry, including all resulting personal data (e.g., name, inquiry), will be stored and processed by us to handle your request. We do not share this data without your consent.

The processing of this data is based on Art. 6(1)(b) GDPR if your request is related to contract fulfillment or necessary for pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively handling inquiries (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR), if requested; consent can be revoked at any time.

Your data will remain with us until you request deletion, revoke your consent, or the purpose for data storage ceases (e.g., after your inquiry has been processed). Mandatory legal provisions—especially retention periods—remain unaffected.

Communication via WhatsApp

We use the instant messaging service WhatsApp for communication with customers and other third parties. The provider is WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

Communication occurs via end-to-end encryption (peer-to-peer), preventing WhatsApp or third parties from accessing message content. However, WhatsApp collects metadata, including sender, recipient, and timestamps. Additionally, WhatsApp states that it shares user data with its U.S.-based parent company, Meta. For details, please refer to WhatsApp's privacy policy: https://www.whatsapp.com/legal/#privacy-policy.

Using WhatsApp is based on our legitimate interest in fast and effective communication (Art. 6(1)(f) GDPR). If consent has been requested, processing is based solely on consent, which can be revoked at any time.

Messages exchanged via WhatsApp remain with us until you request deletion, revoke your consent, or the purpose for data storage ceases (e.g., after handling your request). Mandatory legal provisions—especially retention periods—remain unaffected.

We use the “WhatsApp Business” version.

Data transfers to the USA are based on the EU Commission's Standard Contractual Clauses. Details: https://www.whatsapp.com/legal/business-data-transfer-addendum.

We have configured WhatsApp to prevent automatic data synchronization with address books on our devices.

We have entered into a data processing agreement (DPA) with WhatsApp.

5. Analytics Tools and Advertising

Google Analytics

This website uses features of the web analytics service Google Analytics. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics enables the website operator to analyze visitor behavior. The website operator receives various usage data, such as page views, duration of visit, operating systems used, and the user’s geographical origin. These data are assigned to the respective user’s device and are not linked to a user ID.

Additionally, we can use Google Analytics to record mouse and scroll movements and clicks. Google Analytics also applies modeling techniques to supplement collected datasets and utilizes machine learning technologies for data analysis.

Google Analytics uses technologies that enable user recognition for the purpose of analyzing behavior (e.g., cookies or device fingerprinting). The information collected by Google about the use of this website is generally transmitted to a Google server in the USA and stored there.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TTDSG. Consent can be revoked at any time.

Data transfer to the USA is based on the EU Commission’s Standard Contractual Clauses. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/.

Browser Plugin

You can prevent Google from collecting and processing your data by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

More information on how Google Analytics handles user data can be found in Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=en.

Data Processing Agreement

We have entered into a data processing agreement (DPA) with Google and fully comply with the strict requirements of German data protection authorities when using Google Analytics.

Google Analytics E-Commerce Tracking

This website uses the "E-Commerce Tracking" function of Google Analytics. With the help of E-Commerce Tracking, the website operator can analyze user purchasing behavior to improve online marketing campaigns. The data collected includes completed purchases, average order values, shipping costs, and the time from viewing a product to purchasing it. Google can link this data to a transaction ID assigned to the respective user or their device.

IONOS WebAnalytics

This website uses the analytics service IONOS WebAnalytics (hereinafter: "IONOS"). The provider is 1&1 IONOS SE, Elgendorfer Straße 57, D – 56410 Montabaur, Germany.

IONOS allows for the analysis of website visitors' behavior, including visitor numbers, visit duration, bounce rates, referral sources, and technical data such as browser and operating system versions. For this purpose, IONOS records the following data:

• Referrer (previously visited website)
• Requested page or file
• Browser type and version
• Operating system used
• Device type used
• Access time
• IP address (anonymized and used only to determine location)

According to IONOS, data collection is fully anonymized and cannot be traced back to individual users. No cookies are stored by IONOS WebAnalytics.

Data storage and analysis are based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in statistically analyzing user behavior to optimize both the website and advertising efforts. If consent has been requested, processing is based solely on Art. 6(1)(a) GDPR and § 25(1) TTDSG, provided consent includes the storage of cookies or access to device information (e.g., device fingerprinting) as per TTDSG. Consent can be revoked at any time.

For more information on how IONOS WebAnalytics processes data, please refer to IONOS's privacy policy: https://www.ionos.de/terms-gtc/index.php?id=6.

Data Processing Agreement

We have entered into a data processing agreement (DPA) with the provider mentioned above. This legally required contract ensures that the provider processes the personal data of our website visitors only according to our instructions and in compliance with the GDPR.

Google Ads

The website operator uses Google Ads. Google Ads is an online advertising program by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Ads allows us to display ads in Google’s search engine or on third-party websites when users enter specific search terms on Google (keyword targeting). Additionally, ads can be targeted based on user data stored by Google (e.g., location and interests) (audience targeting). We, as the website operator, can analyze data such as which search terms triggered our ads and how many users clicked on them.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TTDSG. Consent can be revoked at any time.

Data transfer to the USA is based on the EU Commission’s Standard Contractual Clauses. Details can be found here: https://policies.google.com/privacy/frameworks and https://privacy.google.com/businesses/controllerterms/mccs/.

Google Ads Remarketing

This website uses Google Ads Remarketing functions. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Ads Remarketing allows us to assign website visitors to specific target groups so that they can be shown interest-based advertising in Google’s advertising network (remarketing or retargeting).

Additionally, Google Ads Remarketing audiences can be linked with Google’s cross-device functions. This means that interest-based, personalized ads that have been customized based on previous usage and browsing behavior on one device (e.g., mobile phone) may also be displayed on another device (e.g., tablet or PC).

If you have a Google account, you can opt out of personalized advertising here: https://www.google.com/settings/ads/onweb/.

Further information and Google’s privacy policy can be found here: https://policies.google.com/technologies/ads?hl=en.

Google Conversion Tracking

This website uses Google Conversion Tracking. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

With Google Conversion Tracking, Google and we can determine whether a user has performed specific actions. For example, we can analyze which buttons were clicked on our website and how often, as well as which products were viewed or purchased. This data is used to generate conversion statistics. We receive the total number of users who clicked on our ads and which actions they performed. However, we do not receive information that personally identifies users.

Further details on Google Conversion Tracking can be found in Google’s privacy policy: https://policies.google.com/privacy?hl=en.

Facebook Pixel

This website uses Facebook Pixel for conversion tracking. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. According to Facebook, the collected data may also be transferred to the USA and other third countries.

Facebook Pixel allows us to track website visitors' behavior after they have clicked on a Facebook advertisement and were redirected to the provider's website. This enables us to evaluate the effectiveness of Facebook ads for statistical and market research purposes and to optimize future advertising campaigns.

The data collected is anonymous to us as the operator of this website, meaning we cannot draw any conclusions about users' identities. However, Facebook stores and processes this data, making it possible to associate it with the respective user profile. Facebook may also use this data for its own advertising purposes, in accordance with its Data Usage Policy. This allows Facebook to display advertisements on both Facebook itself and third-party websites. As the website operator, we have no control over this data processing.

The use of this service is based on your consent in accordance with Art. 6(1)(a) GDPR and § 25(1) TTDSG. Consent can be revoked at any time.

Data transfer to the USA is based on the EU Commission’s Standard Contractual Clauses. Details can be found here:

• https://www.facebook.com/legal/EU_data_transfer_addendum
• https://de-de.facebook.com/help/566994660333381
• 
  

Joint Data Processing

If personal data is collected using this tool and transferred to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). This joint responsibility only covers data collection and its transfer to Facebook. Any processing by Facebook after the data is forwarded is not part of this joint responsibility.

The obligations under this joint responsibility are defined in an agreement. The full text of this agreement can be found here:
https://www.facebook.com/legal/controller_addendum.

According to this agreement:

• We are responsible for providing privacy information when using the Facebook tool.
• We are responsible for implementing data protection safeguards on our website.
• Facebook is responsible for data security within its products.

Users can exercise their data subject rights (e.g., access requests) directly with Facebook. If users contact us with such requests, we are obligated to forward them to Facebook.

For more details, please see Facebook’s privacy policy:
https://de-de.facebook.com/about/privacy/

Disabling Facebook Remarketing

You can disable the Custom Audiences remarketing function in your Facebook ad settings:
https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen
(Note: You must be logged into Facebook to do this.)

If you do not have a Facebook account, you can opt out of Facebook-based advertising on the European Interactive Digital Advertising Alliance website:
http://www.youronlinechoices.com/de/praferenzmanagement/

Facebook Custom Audiences

We use Facebook Custom Audiences. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.

When you visit our websites or use our apps, take advantage of free or paid offers, submit data to us, or interact with our company's Facebook content, we collect your personal data. If you have given us consent to use Facebook Custom Audiences, we will transmit this data to Facebook, enabling Facebook to display targeted advertising to you. Additionally, your data may be used to create Lookalike Audiences (target groups with similar characteristics).

Facebook processes this data as our data processor. Details on this can be found in Facebook’s Custom Audiences Terms:
https://www.facebook.com/legal/terms/customaudience

The use of this service is based on your consent in accordance with Art. 6(1)(a) GDPR and § 25(1) TTDSG. Consent can be revoked at any time.

Data transfer to the USA is based on the EU Commission’s Standard Contractual Clauses. Details can be found here:

• https://www.facebook.com/legal/terms/customaudience
• https://www.facebook.com/legal/terms/dataprocessing

6. Newsletter

Newsletter Data

If you would like to subscribe to the newsletter offered on this website, we require an email address from you, as well as information that allows us to verify that you are the owner of the provided email address and that you consent to receiving the newsletter. No further data is collected or only on a voluntary basis.

For newsletter distribution, we use newsletter service providers, which are described below.

Klick-Tipp

This website uses Klick-Tipp for sending newsletters. The provider is KLICK-TIPP LIMITED, 15 Cambridge Court, 210 Shepherd’s Bush Road, London W6 7NJ, United Kingdom.

Klick-Tipp is a service that enables the organization and analysis of newsletter distribution. The data you enter to subscribe to the newsletter is stored on Klick-Tipp’s servers.

Data Analysis by Klick-Tipp

When we send newsletters via Klick-Tipp, we can track whether a newsletter was opened and which links were clicked, if any.

Klick-Tipp also allows us to categorize newsletter recipients into different groups (so-called tagging). This segmentation can be based on gender, personal preferences (e.g., vegetarian or non-vegetarian), or customer relationship (e.g., existing customer or potential customer). This enables us to tailor newsletters more effectively to specific audiences. More information can be found here:

• https://www.klicktipp.com
• https://support.klicktipp.com/

If you do not want your data to be analyzed by Klick-Tipp, you must unsubscribe from the newsletter. A corresponding unsubscribe link is included in every newsletter message.

Legal Basis

The data processing is carried out based on your consent in accordance with Art. 6(1)(a) GDPR. You can revoke this consent at any time. The legality of data processing that has already occurred remains unaffected by the revocation.

The United Kingdom is considered a secure third country in terms of data protection law. This means that the data protection level in the UK is equivalent to that of the European Union.

Storage Duration

The data you provide for the newsletter subscription is stored until you unsubscribe from the newsletter. After unsubscribing, your data will be deleted from our newsletter distribution list. Data stored for other purposes remains unaffected.

After unsubscribing, your email address may be stored in a blacklist if necessary to prevent future mailings. The data in the blacklist is used only for this purpose and is not combined with other data. This serves both your interest and our legitimate interest in complying with legal requirements for newsletter distribution (legitimate interest under Art. 6(1)(f) GDPR). The blacklist storage is indefinite, but you may object if your interests outweigh our legitimate interest.

For more details, please refer to Klick-Tipp’s privacy policy:
https://www.klicktipp.com/datenschutzerklarung/

Data Processing Agreement

We have entered into a Data Processing Agreement (DPA) with the above-mentioned provider. This legally required agreement ensures that Klick-Tipp processes the personal data of our website visitors only according to our instructions and in compliance with GDPR.

7. Plugins and Tools

Google Web Fonts (Local Hosting)

This site uses Google Web Fonts to ensure uniform font presentation. Google Fonts are installed locally on our servers, meaning no connection to Google servers is established.

More information about Google Web Fonts can be found here:

• https://developers.google.com/fonts/faq
• Google’s Privacy Policy

Google reCAPTCHA

We use Google reCAPTCHA (hereinafter "reCAPTCHA") on this website. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

reCAPTCHA is used to check whether data entry on this website (e.g., in a contact form) is performed by a human or an automated program (bot). reCAPTCHA analyzes website visitor behavior based on various criteria. This analysis begins automatically as soon as the visitor enters the website. The analysis evaluates various factors, such as:

• IP address
• Time spent on the website
• Mouse movements and interactions

The collected data is transmitted to Google. The analysis runs completely in the background, and visitors are not explicitly informed that it is taking place.

Legal Basis

The storage and analysis of this data are based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in protecting its web services from abuse, automated attacks, and spam.

If consent has been requested, processing is carried out solely based on consent (Art. 6(1)(a) GDPR and § 25(1) TTDSG), provided that the consent includes the storage of cookies or access to device information (e.g., device fingerprinting) under TTDSG. Consent can be revoked at any time.

Further details about Google reCAPTCHA can be found in Google’s privacy policy and terms of use:

• Google Privacy Policy
• Google Terms of Service

8. eCommerce and Payment Providers

Processing of Customer and Contract Data

We collect, process, and use personal customer and contract data to establish, structure, and modify our contractual relationships. We only collect, process, and use personal data regarding the use of this website (usage data) if it is necessary to enable the user to utilize the service or for billing purposes. The legal basis for this is Art. 6(1)(b) GDPR.

Collected customer data is deleted after the completion of the order or termination of the business relationship and after any applicable legal retention periods have expired. Legal retention periods remain unaffected.

Data Transfer Upon Contract Conclusion for Services and Digital Content

We transfer personal data to third parties only if this is necessary for contract fulfillment, such as to the bank responsible for processing payments.

Further data transfers do not occur unless you have explicitly consented to the transfer. Your data is not shared with third parties without your explicit consent, particularly for advertising purposes.

The legal basis for data processing is Art. 6(1)(b) GDPR, which allows the processing of data for contract performance or pre-contractual measures.

Digistore24

Some of our products, services, and content are offered by Digistore24 as a reseller. The provider and contractual partner is Digistore24 GmbH, St.-Godehard-Straße 32, 31139 Hildesheim, Germany.

The extent to which Digistore24 collects and processes data when accessing this website is determined by Digistore24 GmbH as the data controller in its own privacy policy.

More information can be found in Digistore24’s privacy policy:
https://www.digistore24.com/

Conversion Tools / Shopping Cart

Digistore24 provides various services that can be embedded on websites via HTML and JavaScript code, such as the Social Proof Bubble or the Digistore24 Shopping Cart.

Each time one of these elements is embedded, non-personal data is loaded from the Digistore24 server (e.g., a JavaScript file).

When this data is loaded, your web browser requests a web page from Digistore24’s server. Our server has no influence over the extent to which your web browser transmits data to Digistore24’s servers. We do not transmit any data to Digistore24 ourselves.

The extent of Digistore24's data collection and processing during website visits is determined by Digistore24 itself.

More details can be found in Digistore24’s privacy policy:
https://www.digistore24.com/dataschutz

Promo Links / Content Links

On this website, we use various links to Digistore24 offers to draw your attention to products that may interest you.

Some of these links lead to the domain digistore24.com, owned by Digistore24 GmbH.

When you click on one of these links, your browser loads a webpage from Digistore24’s server.

At no point does our server transmit any data to Digistore24. Instead, the data is transmitted directly from your web browser to Digistore24, just as with any other website visit. We have no control over the extent of the data transmission between your browser and Digistore24.

For more details on how Digistore24 processes data from website visits, please refer to Digistore24’s privacy policy:
https://www.digistore24.com/dataschutz

Affiliate Ad Generator

The Affiliate Ad Generator allows automated creation of advertising materials. It provides an input field where you can enter your Digistore24 ID. This generates advertising materials that allow you to quickly and easily promote products and services.

Additionally, based on your input, the system checks whether an affiliate partnership exists.

For further details, please refer to Digistore24’s privacy policy:
https://www.digistore24.com/dataschutz

Our Social Media Presence

Data Processing by Social Networks

We maintain publicly accessible profiles on social networks. The specific social networks we use are listed below.

Social networks such as Facebook, Twitter, etc. can typically analyze your user behavior extensively when you visit their website or a website with integrated social media content (e.g., like buttons or advertisements). Visiting our social media pages may trigger several data protection-related processing activities, including:

• If you are logged into your social media account and visit our social media profile, the operator of the platform may link this visit to your user account.
• Your personal data may still be collected even if you are not logged in or do not have an account with the social media platform. This data is collected via cookies stored on your device or by recording your IP address.
• 
  

The collected data enables social media platform operators to create user profiles that store your preferences and interests. These profiles may then be used to display interest-based advertisements, both within and outside the respective social media platform. If you have an account with the respective social network, interest-based ads may be displayed across all your devices where you have logged in.

Please note: We do not have full insight into all data processing activities carried out by social media platforms. Depending on the provider, additional processing activities may occur. For further details, please refer to the terms of use and privacy policies of the respective social media platforms.

Legal Basis

Our social media presence aims to ensure maximum visibility on the internet. This constitutes a legitimate interest as defined in Art. 6(1)(f) GDPR. The analysis processes initiated by social networks may be based on different legal grounds, which must be specified by the respective social media providers (e.g., consent under Art. 6(1)(a) GDPR).

Controller Responsibility and Exercising Your Rights

If you visit one of our social media profiles (e.g., Facebook), we share responsibility for data processing with the social media platform operator.

You may exercise your rights (e.g., access, correction, deletion, restriction of processing, data portability, and complaints) both with us and the respective social media platform operator (e.g., Facebook).

Please note: Despite joint responsibility with social media providers, we have limited influence over the data processing carried out by social media platforms. Our control is determined by the policies of each provider.

Storage Duration

The data collected directly through our social media presence is deleted as soon as:

• The purpose for storage no longer applies.
• You request deletion.
• You withdraw your consent for storage.

Stored cookies remain on your device until manually deleted. Legal retention obligations remain unaffected.

We have no control over how long social media platform operators store your personal data for their own purposes. Please refer to the respective privacy policies of each provider for more details.

Social Networks in Detail

Facebook

We have a profile on Facebook, provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. According to Facebook, the collected data may also be transferred to the USA and other third countries.

We have entered into a Controller Addendum agreement with Facebook, defining which data processing activities are managed by us or Facebook when you visit our Facebook page. You can view this agreement here:
https://www.facebook.com/legal/terms/page_controller_addendum

You can manage your advertising settings within your Facebook user account by following this link:
https://www.facebook.com/settings?tab=ads

Data transfers to the USA are based on the EU Commission’s Standard Contractual Clauses. More details can be found here:

• https://www.facebook.com/legal/EU_data_transfer_addendum
• https://de-de.facebook.com/help/566994660333381

For further details, please refer to Facebook’s privacy policy:
https://www.facebook.com/about/privacy/

YouTube

We have a profile on YouTube, operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

For details on how YouTube processes your personal data, please see YouTube’s privacy policy:
https://policies.google.com/privacy?hl=en