Data Protection at a Glance
General Information
The following information provides a simple overview of whathappens to your personal data when you visit this website. Personaldata includes all data that can personally identify you. For detailedinformation on data protection, please refer to our privacy policybelow.
Data Collection on This Website
Who is responsible for data collection onthis website?
The data processing on this website is carried out by the websiteoperator. You can find their contact details in the section
"Information on the Responsible Party" inthis privacy policy.
How do we collect your data?
Your data is collected in two ways:
Data you provide to us: This includes, for example, information you enter into a contact form.
Data collected automatically or with your consent: When you visit our website, certain data is collected automatically by our IT systems. This primarily includes technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter this website.
What do we use your data for?
Some data is collected to ensure the error-free provision of thewebsite. Other data may be used to analyze your user behavior.
What rights do you have regarding your data?
You have the right to request information about the origin,recipients, and purpose of your stored personal data free of chargeat any time. You also have the right to request the correction ordeletion of your data. If you have given consent for data processing,you can revoke this consent at any time with future effect.Additionally, you have the right to request the restriction ofprocessing under certain circumstances. Furthermore, you have theright to lodge a complaint with the competent supervisory authority.You can contact us at any time with questions regarding dataprotection.
Analytics and Third-Party Tools
When visiting this website, your browsing behavior may bestatistically analyzed. This is primarily done using analysisprograms. For more details, please refer to the privacy policy below.
Hosting and Content Delivery Networks(CDN)
Hosting Providers
IONOS
We host the content of our website with
IONOS,provided by IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany.When you visit our website, IONOS collects various log files,including your IP address. Further details can be found in IONOS'sprivacy policy:
https://www.ionos.de/terms-gtc/terms-privacy.
Legal Basis: The use of IONOS is based on
Art.6(1)(f) GDPR—we have a legitimate interest in ensuring themost reliable presentation of our website. If consent has beenrequested, processing will be based solely on
Art. 6(1)(a)GDPR and
§ 25(1) TDDDG, where applicable,if the consent includes cookie storage or access to information onthe user's device (e.g., device fingerprinting). Consent can berevoked at any time.
Data Processing Agreement (DPA)We have entered into a
Data Processing Agreement (DPA)with IONOS. This legally required contract ensures that IONOSprocesses personal data of our website visitors only in accordancewith our instructions and in compliance with the
GDPR.
Webflow
We use
Webflow, provided by Webflow, Inc., 39811th Street, 2nd Floor, San Francisco, CA 94103, USA. When you visitour website, Webflow collects various log files, including your IPaddress.Webflow is a platform for building and hosting websites. Webflowuses cookies and other recognition technologies necessary for pagerendering, certain website functionalities, and security (essentialcookies). Further details can be found in Webflow’s privacy policy:
https://webflow.com/legal/eu-privacy-policy.
Legal Basis: The use of Webflow is based on
Art.6(1)(f) GDPR—we have a legitimate interest in ensuring themost reliable presentation of our website. If consent has beenrequested, processing will be based solely on
Art. 6(1)(a)GDPR and
§ 25(1) TDDDG, where applicable.Consent can be revoked at any time.
Data Transfer to the USA: Data transfer to theUSA is based on the
EU Commission’s Standard ContractualClauses (SCCs). Details can be found here:
https://webflow.com/legal/eu-privacy-policy.
EU-US Data Privacy Framework (DPF): Webflow iscertified under the
EU-US Data Privacy Framework (DPF),an agreement ensuring compliance with European data protectionstandards for data processing in the USA. Certified companies arecommitted to adhering to these standards. More information can befound here:
https://www.dataprivacyframework.gov/participant/6365.
Data Processing Agreement (DPA)We have entered into a
Data Processing Agreement (DPA) with Webflow to ensure GDPR compliance.
Amazon CloudFront CDNWe use
Amazon CloudFront CDN, a Content DeliveryNetwork (CDN) provided by
Amazon Web Services EMEA SARL,38 Avenue John F. Kennedy, L-1855 Luxembourg.Amazon CloudFront is a globally distributed
CDNthat facilitates the transfer of information between your browser andour website. This enhances the
global accessibility andperformance of our website.
Legal Basis: The use of Amazon CloudFront isbased on our
legitimate interest in ensuring anoptimal and secure website performance (
Art. 6(1)(f) GDPR).
Data Transfer to the USA: Data transfer is basedon the
EU Commission’s Standard Contractual Clauses (SCCs).
More details:
https://aws.amazon.com/de/blogs/security/aws-gdpr-data-processing-addendum/. Further information on
Amazon CloudFront CDN can be found here:
?
https://d1.awsstatic.com/legal/privacypolicy/AWS_Privacy_Notice__German_Translation.pdf.
EU-US Data Privacy Framework (DPF): Amazon iscertified under the
EU-US Data Privacy Framework (DPF).This agreement ensures compliance with European data protectionstandards for data processing in the USA. More information isavailable at:
https://www.dataprivacyframework.gov/participant/5776.
Data Processing Agreement (DPA)We have entered into a
Data Processing Agreement (DPA)with Amazon to ensure GDPR compliance.The following notes provide a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to personally identify you. Detailed information on data protection can be found in our privacy policy listed below this text.
Data collection on this website Who is responsible for data collection on this website? Data processing on this website is carried out by the website operator. You can find their contact details in the “Information about the responsible body” section of this privacy policy.
How do we collect your information?
On the one hand, your data is collected when you provide it to us. This could be data that you enter in a contact form, for example. Other data is collected automatically or with your consent when you visit the website by our IT systems. This is primarily technical data (e.g. Internet browser, operating system or time of page access). This data is collected automatically as soon as you enter this website.
What do we use your data for?
Some of the data is collected to ensure error-free provision of the website. Other data can be used to analyze your user behavior.
What are your rights with regard to your data?
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request that this data be corrected or deleted. If you have given your consent to data processing, you can withdraw this consent at any time for the future. You also have the right to request that the processing of your personal data be restricted under certain circumstances. You also have the right to lodge a complaint with the competent supervisory authority. You can contact us at any time about this and if you have any further questions about data protection.
Analytical tools and tools from third parties
When you visit this website, your surfing behavior can be statistically evaluated. This is done primarily with so-called analysis programs. Detailed information about these analysis programs can be found in the following privacy policy.
2. Hosting and Content Delivery Networks (CDN)
We host the content of our website with the following providers:
IONOS provider is IONOS SE, Elgendorfer Str. 57, 56410 Montabaur (hereinafter IONOS). When you visit our website, IONOS collects various log files, including your IP addresses. For details, see IONOS's privacy policy:
https://www.ionos.de/terms-gtc/terms-privacy.
IONOS is used on the basis of Article 6 (1) (f) GDPR. We have a legitimate interest in presenting our website as reliably as possible. If a corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information on the user's device (e.g. device fingerprinting) within the meaning of the TDDDG. The consent can be withdrawn at any time.
Order processing We have concluded an order processing contract (AVV) for the use of the above service. This is a contract required by data protection law, which ensures that it only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.
Webflow
The provider is Webflow, Inc., 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA (hereinafter Webflow). When you visit our website, Webflow collects various log files, including your IP addresses. Webflow is a tool for building and hosting websites. Webflow stores cookies or other recognition technologies that are necessary to display the page, to provide certain website functions and to ensure security (necessary cookies). For details, see Webflow's privacy policy:
https://webflow.com/legal/eu-privacy-
policy. Webflow is used on the basis of Art. 6 para. 1 lit. f DSGVO. We have a legitimate interest in presenting our website as reliably as possible. If a corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information on the user's device (e.g. device fingerprinting) within the meaning of the TDDDG. The consent can be withdrawn at any time. Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here:
https://webflow.com/legal/eu-privacy-policy.The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA, which is intended to ensure compliance with European data protection standards when processing data in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. For more information, please contact the provider at the following link:
https://www.dataprivacyframework.gov/
participant/6365.
Order processing We have concluded an order processing contract (AVV) for the use of the above service. This is a contract required by data protection law, which ensures that it only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.
Amazon CloudFront CDN We use the Amazon CloudFront CDN content delivery network. The provider is Amazon Web Services EMEA SARL, 38 avenue John F. Kennedy, L-1855, Luxembourg (hereinafter “Amazon”). Amazon CloudFront CDN is a globally distributed content delivery network. Technically, the transfer of information between your browser and our website is routed via the content delivery network. This allows us to increase the worldwide availability and performance of our website. The use of Amazon CloudFront CDN is based on our legitimate interest in providing our website as error-free and secure as possible (Art. 6 para. 1 lit. f GDPR). Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here:
https://aws.amazon.com/de/blogs/
security/aws-gdpr-data-processing-addendum/. Learn more about Amazon CloudFront CDN here:
https://d1.awsstatic.com/legal/
privacypolicy/
AWS_Privacy_Notice__German_
Translation.pdf.The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA, which is intended to ensure compliance with European data protection standards when processing data in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. For more information, please contact the provider at the following link:
https://www.dataprivacyframework.gov/
participant/5776.
Order processing We have concluded an order processing contract (AVV) for the use of the above service. This is a contract required by data protection law, which ensures that it only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.
Cloudflare
We use the "Cloudflare" service. The provider is Cloudflare Inc., 101 Townsend St., San Francisco, CA 94107, USA (hereinafter "Cloudflare").Cloudflare provides a globally distributed content deliverynetwork with DNS. Technically, the information transfer between yourbrowser and our website is routed through Cloudflare's network. Thisenables Cloudflare to analyze the data traffic between your browserand our website and serve as a filter between our servers andpotentially malicious data traffic from the internet. Cloudflare mayalso use cookies or other technologies for recognizing internetusers, which, however, are used solely for the purpose describedhere.The use of Cloudflare is based on our legitimate interest inproviding our online services as error-free and securely as possible(Art. 6(1)(f) GDPR). The data transfer to the USA is based on thestandard contractual clauses of the EU Commission. Details andfurther information on security and data protection at Cloudflare canbe found here:
https://www.cloudflare.com/privacypolicy/.The company is certified under the "EU-US Data PrivacyFramework" (DPF).The DPF is an agreement between the European Union and the USAthat aims to ensure compliance with European data protectionstandards in data processing in the USA. Each company certified underthe DPF is committed to adhering to these data protection standards.Further information can be obtained from the provider at thefollowing link:
https://www.dataprivacyframework.gov/participant/5666.
3. General Information and Mandatory Notices Data Protection
The operators of these pages take the protection of your personaldata very seriously. We handle your personal data confidentially andin accordance with the statutory data protection regulations as wellas this privacy policy.When you use this website, various personal data are collected.Personal data refers to data that can be used to personally identifyyou. This privacy policy explains which data we collect and what weuse it for. It also explains how and for what purpose this happens.We point out that data transmission over the internet (e.g.,communication via email) can have security gaps. A completeprotection of data against access by third parties is not possible.
Notice Regarding the Responsible Entity
The responsible entity for data processing on this website is:
Sandra Freymuth
Steinmauer 4
63924Kleinheubach
Germany
booking@maremita-villas.comPhone:+49 9371 91190350
The responsible entity is the natural or legal person who alone orjointly with others determines the purposes and means of processingpersonal data (e.g., names, email addresses, etc.).
Storage Duration
Unless a more specific storage period has been stated within thisprivacy policy, your personal data will remain with us until thepurpose for data processing no longer applies. If you assert alegitimate request for deletion or revoke your consent to dataprocessing, your data will be deleted unless we have other legallypermissible reasons for storing your personal data (e.g., tax orcommercial law retention periods); in the latter case, deletion takesplace after these reasons cease to apply.
General Information on the Legal Bases of Data Processingon This Website
If you have consented to data processing, we process your personaldata based on Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR if specialcategories of data according to Art. 9(1) GDPR are processed. In thecase of explicit consent to the transfer of personal data to thirdcountries, the data processing is also based on Art. 49(1)(a) GDPR.If you have consented to the storage of cookies or access toinformation on your device (e.g., via device fingerprinting), thedata processing is additionally based on § 25(1) TDDDG. Consent canbe revoked at any time.If your data is required for contract fulfillment orpre-contractual measures, we process your data based on Art. 6(1)(b)GDPR. Furthermore, we process your data if it is necessary to fulfilla legal obligation based on Art. 6(1)(c) GDPR. Data processing mayalso be based on our legitimate interest according to Art. 6(1)(f)GDPR. The relevant legal bases for each individual case are explainedin the following sections of this privacy policy.
Recipients of Personal Data
In the course of our business activities, we work with variousexternal entities. In some cases, the transfer of personal data tothese external entities is necessary. We only pass on personal dataif this is necessary for contract fulfillment, if we are legallyobligated to do so, if we have a legitimate interest in the transfer(Art. 6(1)(f) GDPR), or if another legal basis permits the datatransfer. When using data processors, we only pass on personal databased on a valid data processing agreement. In the case of jointprocessing, a joint processing agreement is concluded.
Revocation of Your Consent to Data Processing
Many data processing operations are only possible with yourexplicit consent. You can revoke an already given consent at anytime. The legality of the data processing carried out until therevocation remains unaffected by the revocation.
Right to Object to Data Collection in Special Cases and Direct Marketing (Art. 21 GDPR)IF DATA PROCESSING IS BASED ON ART. 6(1)(E) OR (F) GDPR,YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATAAT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THISALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS.Right to Lodge a Complaint with the Competent SupervisoryAuthorityIn the event of violations of the GDPR, affected persons have theright to lodge a complaint with a supervisory authority, particularlyin the member state of their habitual residence, place of work, orplace of the alleged violation. The right to lodge a complaint existswithout prejudice to other administrative or judicial remedies.
Right to Data Portability
You have the right to have data that we process automaticallybased on your consent or in fulfillment of a contract handed over toyou or to a third party in a common, machine-readable format. If yourequest the direct transfer of data to another responsible party,this will only be done if technically feasible.
SSL or TLS Encryption
This site uses SSL or TLS encryption for security reasons and toprotect the transmission of confidential content, such as orders orinquiries you send to us as the site operator. You can recognize anencrypted connection by the change in the browser's address line from"http://" to "https://" and the lock symbol inyour browser line.
Objection to Promotional Emails
The use of contact data published within the scope of the imprintobligation for sending unsolicited advertising and informationmaterials is hereby objected to. The site operators expressly reservethe right to take legal action in case of unsolicited sending ofadvertising information, such as spam emails.
4. Data Collection on This Website
Cookies
Our website uses so-called "cookies." Cookies are smalldata packets that do not harm your device. They are either storedtemporarily for the duration of a session (session cookies) orpermanently (persistent cookies) on your device. Session cookies areautomatically deleted after your visit ends. Persistent cookiesremain stored on your device until you delete them yourself or yourweb browser automatically removes them. Cookies may originate from us(first-party cookies) or from third-party companies (so-calledthird-party cookies). Third-party cookies enable the integration ofcertain services provided by third-party companies within websites(e.g., cookies for processing payment services). Cookies have variousfunctions. Many cookies are technically necessary since certainwebsite functions would not work without them (e.g., shopping cartfunctionality or video display). Other cookies may be used to analyzeuser behavior or for advertising purposes. Cookies required for theelectronic communication process, for providing specific functionsrequested by you (e.g., the shopping cart function), or foroptimizing the website (e.g., cookies for measuring web audience) arestored based on Art. 6 (1) lit. f GDPR unless another legal basis isspecified. The website operator has a legitimate interest in storingnecessary cookies for the technically error-free and optimizedprovision of its services. If consent for storing cookies and similarrecognition technologies has been requested, processing is carriedout exclusively based on this consent (Art. 6 (1) lit. a GDPR and §25 (1) TDDDG); consent can be revoked at any time. You can configureyour browser to inform you about cookie settings, allow cookies onlyin individual cases, exclude the acceptance of cookies for specificcases or generally, and activate the automatic deletion of cookieswhen closing the browser. Disabling cookies may limit thefunctionality of this website. You can find out which cookies andservices are used on this website in this privacy policy.
Consent with Usercentrics
This website uses the consent technology of Usercentrics to obtainand document your consent to store certain cookies on your device oruse specific technologies in a data protection-compliant manner. The provider of this technology is Usercentrics GmbH, Sendlinger Straße7, 80331 Munich, Website:
https://usercentrics.com/de/(hereinafter referred to as "Usercentrics").When you enter our website, the following personal data istransmitted to Usercentrics: Your consent(s) or withdrawal of your consent(s)
Your IP address
Information about your browser
Information about your device
Time of your visit to the website
Geolocation
Usercentrics also stores a cookie in your browser to be able to assign the granted consents or their withdrawal. The collected data is stored until you request deletion, delete the Usercentrics cookieyourself, or the purpose for data storage no longer applies. Mandatory legal retention obligations remain unaffected. The Usercentrics banner on this website was configured with the help of eRecht24. You can recognize this by the fact that theeRecht24 logo appears in the banner. To display the eRecht24 logo inthe banner, a connection is established with the image server of eRecht24. In this process, the IP address is also transmitted but isstored only in an anonymized form in the server logs. The eRecht24image server is located in Germany with a German provider. The banneritself is provided exclusively by Usercentrics.The use of Usercentrics is to obtain the legally required consentsfor the use of certain technologies. The legal basis for this is Art.6 (1) lit. c GDPR.
Data Processing Agreement We have concluded a data processing agreement (DPA) for using theabove-mentioned service. This is a legally required contract thatensures that Usercentrics processes the personal data of our websitevisitors only according to our instructions and in compliance withthe GDPR. Server Log Files The provider of these pages automatically collects and storesinformation in so-called server log files, which your browserautomatically transmits to us. These include:
Browser type and version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of the server request
IP address
This data is not merged with other data sources.The collection of this data is based on Art. 6 (1) lit. f GDPR.The website operator has a legitimate interest in the technicallyerror-free presentation and optimization of its website; for thispurpose, server log files must be recorded.
Contact Form
If you send us inquiries via the contact form, your details fromthe inquiry form, including the contact details you provide, will bestored by us for processing the inquiry and in case of follow-upquestions. We do not share this data without your consent.The processing of this data is based on Art. 6 (1) lit. b GDPR ifyour request is related to the fulfillment of a contract or isnecessary for pre-contractual measures. In all other cases,processing is based on our legitimate interest in effectivelyhandling inquiries addressed to us (Art. 6 (1) lit. f GDPR) or onyour consent (Art. 6 (1) lit. a GDPR), if this has been requested;consent can be revoked at any time.The data you enter in the contact form remains with us until yourequest deletion, revoke your consent for storage, or the purpose fordata storage no longer applies (e.g., after completing the processingof your inquiry). Mandatory statutory provisions, especiallyretention periods, remain unaffected.
Inquiry via Email, Telephone, or Fax
If you contact us via email, telephone, or fax, your request,including all personal data resulting from it (name, request), willbe stored and processed by us for processing your inquiry. We do notshare this data without your consent.The processing of this data is based on Art. 6 (1) lit. b GDPR ifyour request is related to the fulfillment of a contract or isnecessary for pre-contractual measures. In all other cases,processing is based on our legitimate interest in effectivelyprocessing inquiries directed at us (Art. 6 (1) lit. f GDPR) or onyour consent (Art. 6 (1) lit. a GDPR), if requested; consent can berevoked at any time.The data you send us via contact inquiries remains with us untilyou request deletion, revoke your consent for storage, or the purposefor data storage no longer applies (e.g., after processing yourrequest). Mandatory legal provisions, especially statutory retentionperiods, remain unaffected.
Communication via WhatsAppWe use the instant messaging service WhatsApp for communication with our customers and other third parties. The provider is WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. Communication is conducted through end-to-end encryption (peer-to-peer), which prevents WhatsApp or other third parties from accessing the communication content. However, WhatsApp does have access to metadata generated during the communication process (e.g., sender, recipient, and time).
Furthermore, we would like to point out that, according to WhatsApp, it shares personal data of its users with its parent company Meta, which is based in the USA. Further details about data processing can be found in WhatsApp's privacy policy at:
https://www.whatsapp.com/legal/#privacy-policy.The use of WhatsApp is based on our legitimate interest in enabling quick and effective communication with customers, prospects, and other business and contractual partners (Art. 6 Para. 1 lit. f GDPR). If consent has been requested, data processing takes place solely based on that consent; it can be revoked at any time with effect for the future.The communication content exchanged between you and us on WhatsApp will remain with us until you request deletion, revoke your consent to storage, or the purpose for storage no longer applies (e.g., after the completion of your inquiry). Mandatory statutory provisions – particularly retention periods – remain unaffected.The company is certified under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA to ensure compliance with European data protection standards in data processing in the USA. Every company certified under the DPF commits to adhering to these data protection standards. More information is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/7735.
https://www.whatsapp.com/legal/business-data-transfer-addendum.
Google CalendarOn our website, you have the option to schedule appointments with us. For planning purposes, we use Google Calendar.The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as "Google"). For the purpose of booking an appointment, you enter the requested data and the preferred time into the designated form. The entered data is used for planning, conducting, and, if necessary, following up on the appointment. Appointment data is stored for us on Google's servers, and you can view Google's privacy policy here:
https://policies.google.com/privacy.The data you enter remains with us until you request deletion, revoke your consent to storage, or the purpose for storage no longer applies. Mandatory statutory provisions – particularly retention periods – remain unaffected. The legal basis for data processing is Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in a straightforward appointment scheduling process with prospects and customers. If consent has been requested, processing occurs solely based on Art. 6 Para. 1 lit. a GDPR and § 25 Para. 1 TDDDG, provided the consent involves the storage of cookies or access to information on the user's device (e.g., for device fingerprinting) as defined by TDDDG.The consent can be revoked at any time. Data transfer to the USA is based on the Standard Contractual Clauses of the EU Commission. Details can be found here:
https://workspace.google.com/terms/dpa_terms.html and
https://cloud.google.com/terms/sccs.The company is certified under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA to ensure compliance with European data protection standards in data processing in the USA. Every company certified under the DPF commits to adhering to these data protection standards.More information is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780.
Contract Data ProcessingWe have entered into a Data Processing Agreement (DPA) for the use of the above-mentioned service. This is a data protection-required agreement ensuring that personal data of our website visitors is processed only according to our instructions and in compliance with GDPR.
5. Analytics Tools and AdvertisingIONOS WebAnalyticsThis website uses the analytics services of IONOS WebAnalytics (hereinafter: IONOS). The provider is 1&1 IONOS SE, Elgendorfer Straße 57, D – 56410 Montabaur. As part of the analysis with IONOS, visitor numbers and behaviors (e.g., number of page views, visit duration, bounce rates), visitor sources (i.e., the website the visitor came from), visitor locations, and technical data (browser and operating system versions) can be analyzed. For this purpose, IONOS stores the following data:Referrer (previously visited website)Requested website or fileBrowser type and versionOperating system usedDevice type usedTime of accessIP address in anonymized form (used only to determine the location of the access)The data collection is fully anonymized by IONOS, so it cannot be traced back to individual persons. No cookies are stored by IONOS WebAnalytics. The storage and analysis of data is based on Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in the statistical analysis of user behavior to optimize both its web offering and advertising. If consent has been requested, processing occurs solely based on Art. 6 Para. 1 lit. a GDPR and § 25 Para. 1 TDDDG, provided the consent involves the storage of cookies or access to information on the user's device (e.g., for device fingerprinting) as defined by TDDDG. The consent can be revoked at any time. Further information on data collection and processing by IONOS WebAnalytics can be found in IONOS's privacy policy at the following link:
https://www.ionos.de/terms-gtc/datenschutzerklaerung/.
Contract Data ProcessingWe have entered into a Data Processing Agreement (DPA) for the use of the above-mentioned service. This is a data protection-required agreement ensuring that personal data of our website visitors is processed only according to our instructions and in compliance with GDPR.
6. Plugins and ToolsGoogle Fonts (Local Hosting)This website uses Google Fonts, which are provided by Google, to ensure consistent font display. The Google Fonts are installed locally, so there is no connection to Google servers. More information about Google Fonts can be found at
https://developers.google.com/fonts/faq and in Google's privacy policy:
https://policies.google.com/privacy?hl=en.
Google MapsThis website uses the Google Maps service. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. This service allows us to embed map material on our website. To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this website has no influence over this data transfer.
When Google Maps is activated, Google may use Google Fonts to ensure consistent font display. When accessing Google Maps, your browser loads the required web fonts into its cache to display text and fonts correctly. The use of Google Maps is in the interest of providing an attractive presentation of our online offers and easy findability of the locations we specify on the website. This constitutes a legitimate interest under Art. 6 Para. 1 lit. f GDPR. If consent has been requested, processing occurs solely based on Art. 6 Para. 1 lit. a GDPR and § 25 Para. 1 TDDDG, provided the consent involves the storage of cookies or access to information on the user's device (e.g., for device fingerprinting) as defined by TDDDG. The consent can be revoked at any time.
Data transfer to the USA is based on the Standard Contractual Clauses of the EU Commission. Details can be found here:
https://privacy.google.com/businesses/gdprcontrollerterms/ and
https://privacy.google.com/businesses/gdprcontrollerterms/sccs/. More information about the handling of user data can be found in Google's privacy policy:
https://policies.google.com/privacy?hl=en. The company is certified under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA to ensure compliance with European data protection standards in data processing in the USA. Every company certified under the DPF commits to adhering to these data protection standards. More information is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780.
jsDelivr CDNWhen you access our website, personal data such as your IP address, browser type and version, the website visited, as well as the date and time of the page visit, may be processed by the jsDelivr service.
The data is stored only as long as necessary for the provision of the service.
Processing is based on your consent under Art. 6 Para. 1 lit. a GDPR or on our legitimate interest in a fast and stable delivery of the website under Art. 6 Para. 1 lit. f GDPR.
The purpose of using jsDelivr CDN is to optimize the loading speed of our website and ensure smooth display on different devices.
The provider is the Polish company ProspectOne, Królewska 65A/1, 30-081 Kraków, Poland.
A CDN is a network of servers distributed worldwide and connected via the Internet. This allows particularly large files to be efficiently delivered, which improves performance, especially for users outside Germany.
Processing of personal data by jsDelivr allows the downloading of JavaScript libraries and WordPress plugins hosted on npm, GitHub, or WordPress.org servers. Personal data such as your IP address, browser information, and visited websites may be transmitted to jsDelivr and temporarily stored. However, according to jsDelivr, no cookies or other tracking technologies are used.
Data may be stored outside the European Economic Area (EEA) as jsDelivr operates servers worldwide. Data is stored only as long as necessary to fulfill the service or comply with legal obligations.
You have the right to access, correct, or delete your personal data at any time. If you wish to prevent the transmission of data to jsDelivr, you can use a browser plugin such as NoScript (
https://noscript.net/). However, note that this may limit the functionality of our website.
Further information on data processing by jsDelivr can be found in the company’s privacy policy:
https://www.jsdelivr.com/terms/privacy-policy-jsdelivr-net.
7. eCommerce and Payment ProvidersProcessing of Customer and Contract DataWe collect, process, and use personal customer and contract data for the establishment, content, and modification of our contractual relationships. Personal data regarding the use of this website (usage data) is collected, processed, and used only to the extent necessary to enable the user to use the service or for billing purposes. The legal basis for this is Art. 6 Para. 1 lit. b GDPR. The collected customer data will be deleted after the completion of the order or termination of the business relationship and the expiration of any statutory retention periods. Statutory retention periods remain unaffected.
Data Transmission upon Contract Conclusion for Services and Digital ContentWe transmit personal data to third parties only when necessary for the processing of the contract, e.g., to the financial institution entrusted with payment processing. No further transmission of data takes place, except with your explicit consent.
Your data will not be shared with third parties without your express consent, e.g., for advertising purposes. The basis for data processing is Art. 6 Para. 1 lit. b GDPR, which permits the processing of data to fulfill a contract or take pre-contractual measures.
Source:
https://www.e-recht24.de
8. CopyrightThe photographs, graphics, content, works, and provided information published on this website are subject to German copyright and ancillary copyright law. Any reproduction, editing, distribution, storage, or use of the material outside the limits of copyright requires the prior written consent of the copyright holder BavarianMadeMedia, Katharina Ziegler. Unauthorized copying/storage of the information provided on these websites is not permitted and is subject to legal penalties.
