Privacy PolicyStand 8/­2025

We are delighted that you are interested in our company. Protecting your personal data is extremely important to us. You can use our website without providing any personal data. However, if you wish to use specific services on our website, it may be necessary to process personal data. If there is no legal basis for this, we will obtain your consent.

We always process your personal data in accordance with the General Data Protection Regulation (GDPR) and the country-specific data protection regulations applicable to our company. With this privacy policy, we inform you about what data we collect, how we use it, and what rights you have.

We have taken numerous technical and organizational measures to ensure the most complete protection possible of the personal data processed via our website. Please note, however, that Internet-based data transmissions can generally have security gaps, so that absolute protection cannot be guaranteed. You are free to transmit personal data to us at any time by alternative means, e.g., by telephone.

Our privacy policy is based on the terminology used in the GDPR (Art. 4 GDPR). Our privacy policy is intended to be easy to read and understand for the general public as well as for our customers and business partners. To ensure this, we would like to explain the terms used in advance:

a) Personal data
Personal data is any information relating to an identified or identifiable natural person (hereinafter referred to as “data subject”). A natural person is considered identifiable if they can be identified directly or indirectly, in particular by association with an identifier such as a name, an identification number, location data, an online identifier, or one or more special characteristics that express the physical, physiological, genetic, psychological, economic, cultural, or social identity of that natural person.

b) Data subject
A data subject is any identified or identifiable natural person whose personal data is processed by the controller.

c) Processing
Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, distribution, or otherwise making available, alignment or combination, restriction, erasure, or destruction.

d) Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of limiting its processing in the future.

e) Profiling
Profiling is any form of automated processing of personal data consisting of the use of such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.

f) Pseudonymization
Pseudonymization is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data is not attributed to an identified or identifiable natural person.

g) Controller or processor
The controller or processor is the natural or legal person, public authority, agency, or other body that, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.

h) Processor
A processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

i) Recipient
A recipient is a natural or legal person, public authority, agency, or other body to whom personal data are disclosed, whether a third party or not. However, public authorities that may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients.

j) Third party
A third party is a natural or legal person, public authority, agency, or other body other than the data subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorized to process personal data.

k) Consent
Consent is any freely given, specific, informed, and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

Our website is provided and technically operated by the hosting service provider ALL-INKL.COM – Neue Medien Münnich, Hauptstraße 68, 02742 Friedersdorf, Germany. The use of this service provider is necessary to ensure the availability, stability, security, and performance of our website.
As part of the hosting service, ALL-INKL.COM processes the following data on our behalf:

• ‎IP addresses of website visitors,
• times of access,
• content and pages accessed,
• amounts of data transferred,
• referrer URLs,
• information about browsers and operating systems used,
• error logs and, if applicable, other technical usage data in server log files.

The collection and processing of this data is technically necessary in order to display the website to you and to ensure its stability and security. The legal basis for this is Art. 6 (1) (1) (f) GDPR in conjunction with our legitimate interest in the secure and efficient operation of our website.

ALL-INKL.COM processes all data exclusively on the basis of a data processing agreement concluded with us in accordance with Art. 28 GDPR. ALL-INKL.COM does not process the data for its own purposes. The service provider's servers are located exclusively in data centers within Germany. No data is transferred to third countries.

The stored log files are kept for a maximum of 7 days for security reasons (e.g., to investigate misuse or fraud) and are automatically deleted thereafter, unless further storage is necessary for evidence purposes.

The data collected in the context of hosting will only be passed on to third parties within the scope of what is legally permissible or in the event of a corresponding legal obligation.

Further information on data processing by ALL-INKL.COM can be found at: https:/­/­all-inkl.com/­datenschutzinformationen/­

Our website uses cookies. These are small text files that your internet browser automatically stores on your device when you visit our website. Many cookies contain a unique identifier (cookie ID) that enables your browser to be recognized on a subsequent visit and certain settings to be saved.

Cookies perform various functions: They help us to make our website more user-friendly and effective overall. For example, settings such as language or login status can be stored so that you do not have to re-enter them each time you visit. Another example is the storage of search terms: A cookie allows the system to remember what you searched for and thus tailor the hit list more specifically for future visits. The use of cookies therefore primarily serves to make our services more convenient for you and to enable certain functions from a technical perspective.

Of course, you can restrict or completely prevent the storage of cookies at any time via your browser settings. You can delete cookies that have already been stored at any time. Please note, however, that if you deactivate cookies, you may not be able to use all the functions of our website to their full extent.

When you visit our website, our system automatically collects various general technical data and information, which is stored in so-called server log files. This includes, in particular, the type and version of browser used, the operating system used, the website from which you access our pages (referrer URL), the subpages you visit, the date and time of your access, your IP address, and your Internet service provider. In addition, other similar technical information may be stored to defend against threats in the event of an attack on our IT systems.

We do not draw any conclusions about your person from this general data. The information collected is used exclusively to deliver the content of our website correctly, to optimize the presentation and reach of our content and our advertising, to ensure the long-term functionality and security of our information technology systems, and to provide law enforcement authorities with the necessary information in the event of a cyber attack.

We may statistically evaluate this anonymously collected data in order to continuously improve data security and data protection in our company and thus ensure an optimal level of protection for the personal data we process. The log file data is stored strictly separately from any other personal information you may transmit to us by other means.

Due to legal requirements, our website contains information that enables you to quickly contact our company electronically and communicate with us directly. This includes, in particular, our general email address and our contact form.

If you contact us by email or via the contact form, the personal data you provide will be stored exclusively for the purpose of processing your enquiry and for any follow-up questions. The provision of this data is always voluntary.

Your personal data will not be passed on to third parties in this context, unless this is required by law or you have expressly consented to this.

In order to process product inquiries, it may be necessary to forward your contact details and the content of your inquiry to authorized sales partners (resellers), especially if regional support is provided on site. The transfer will only take place if you have given your express prior consent (Art. 6 (1) (a) GDPR). Before transferring your personal data, we will ask you by email whether you agree to this.

In exceptional cases, data may also be disclosed without prior consent if this is necessary for the implementation of pre-contractual measures taken at your request (Art. 6 (1) (b) GDPR) or if there is a legitimate interest in the efficient and professional processing of your request and no overriding interests on your part are apparent (Art. 6 (1) (f) GDPR). The transfer is carried out exclusively for the purpose of responding to your request in a timely and professional manner.

On our website, you have the option of registering to receive Thies CLIMA News. The personal data collected for this purpose is determined by the input mask used for registration.

With Thies CLIMA News, we regularly inform our customers and business partners about current offers, new products, developments, and information about our company. We will only send you this newsletter if you have given us your express consent and have a valid email address. After registering, you will receive a confirmation email in a double opt-in process. This confirmation serves to verify that you, as the owner of the email address provided, have actually authorized the receipt of our newsletter.

As part of the registration process, we also store the IP address assigned by your Internet service provider (ISP) as well as the date and time of registration. This logging is necessary in order to be able to trace any possible misuse of your email address at a later date and thus serves our legal protection.

We use the personal data collected during registration exclusively for sending Thies CLIMA News and, if necessary, for information required for the operation of this service—for example, in the event of changes to the offer or technical adjustments. Your data will not be passed on to third parties.

We use the mailing service provider CleverReach GmbH & Co. KG, Schafjückenweg 2, 26180 Rastede, Germany, to send our newsletter. The processing of personal data is based on a data processing agreement in accordance with Art. 28 GDPR. CleverReach processes your data exclusively on our behalf and in accordance with our instructions. CleverReach does not store or use the data for its own purposes. The server locations are exclusively within the European Union.

CleverReach enables us to perform statistical analyses of usage behavior, such as whether a news email was opened, when this occurred, and which links were clicked, if any. This information is collected pseudonymously and is used exclusively to improve our information offering. No personal evaluation takes place unless you have expressly consented to this. Further information on data processing at CleverReach can be found at: https:/​­/​­www.cleverreach.com/​­en-de/​­privacy-policy/​­

You can unsubscribe from Thies CLIMA News at any time and revoke your consent to the storage of your personal data for this purpose with effect for the future. You will find a corresponding unsubscribe link in every news email. Alternatively, you can also inform us of your revocation at any time by other means, e.g., by email or post.

Data subjects have the option of registering in the THIES CUMULUS app (weather app) and creating a personalized user account. The app is used to display current weather data and retrieve historical measurement data and can be used on mobile devices (iOS and Android) as well as via a desktop version. It can be accessed at https:/­/­www.thiescloud.com/­cumulus/­#/­.

To create a user account, you only need to provide an email address and choose a password. No other personal data is required, nor is it necessary for using the app. The data collected during registration is used exclusively for internal processing and the individual provision of app functions. It is not passed on to third parties.

Processing is carried out on the basis of Art. 6 (1) (b) GDPR (performance of a contract) or Art. 6 (1) (f) GDPR (operation and security of the system). All personal data is stored exclusively for the duration necessary to fulfill the specified purposes and, if applicable, legal retention obligations.

The app also offers the option of connecting your own weather stations or data loggers to the CUMULUS cloud. The integration is carried out by the data subject themselves. The weather station can be named individually and made either publicly visible or kept private. In the case of a private configuration, it is possible to grant specific access to other users. Publicly shared stations can be viewed by all users. Here, too, no exact addresses are displayed – instead, the locations are visualized exclusively via geographical coordinates in Google Maps.

Owners of weather stations also have the option of downloading the recorded measurement data or making individual parameter settings on the logger. Registered users can also view current weather data and archive values via the app.

Processing is carried out on the basis of Art. 6 (1) (b) GDPR (performance of a contract) or Art. 6 (1) (f) GDPR (operation and security of the system). All personal data is stored exclusively for the period necessary to fulfill the specified purposes and, if applicable, legal retention obligations.

The app also offers the option of connecting your own weather stations or data loggers.

Data processing is carried out on servers belonging to Hetzner Online GmbH, Industriestraße 25, 91710 Gunzenhausen, Germany. Hetzner is a processor in terms of data protection law in accordance with Art. 28 GDPR and stores all data exclusively in data centers within the European Union.

Access to the underlying database is restricted to authorized system administrators using two-factor authentication (2FA). Passwords assigned during registration are stored exclusively in encrypted form and cannot be viewed in plain text by anyone, including administrators. The encryption methods used are state of the art.

An additional function is currently being implemented which, based on the last login, detects whether a user account has been inactive for a longer period of time. If an account has not been used for a period of currently two years, the personal data is automatically deleted. The specific storage period is subject to continuous review and adjustment to current technical and legal requirements.

We only process and store personal data for as long as is necessary to achieve the respective purpose or as required by law.

As soon as the purpose of storage no longer applies or a statutory retention period expires, the relevant personal data is routinely blocked or deleted in accordance with the statutory provisions.

The General Data Protection Regulation (GDPR) grants you, as a data subject, comprehensive rights, which we will explain in detail below:

a) Right to confirmation
You have the right to request confirmation at any time as to whether we are processing personal data about you.

b) Right to information
You have the right to obtain information free of charge at any time about what personal data we have stored about you. In addition, your right to information includes the following information:

• ‎the purposes of processing,
• the categories of personal data being processed,
• the recipients or categories of recipients to whom your personal data has been or will be disclosed, in particular recipients in third countries or international organizations,
• where possible, the planned duration for which your data will be stored or, if this is not possible, the criteria for determining this duration,
• the existence of a right to rectification or erasure of your personal data or to restriction of processing by us, as well as a right to object to such processing,
• the existence of a right to lodge a complaint with a supervisory authority,
• all available information on the origin of the data, if it was not collected directly from you,
• the existence of automated decision-making, including profiling, pursuant to Art. 22 (1) and (4) GDPR, and — at least in these cases — meaningful information about the logic involved, the scope and the intended effects of such processing for you.

You also have the right to obtain information about whether your personal data has been transferred to a third country or an international organization. If this is the case, you have the right to be informed about the appropriate safeguards in connection with the transfer.

c) Right to rectification
You have the right to request the immediate rectification of inaccurate personal data concerning you. Taking into account the purposes of the processing, you also have the right to request the completion of incomplete personal data, including by means of a supplementary statement.

d) Right to erasure (“right to be forgotten”)
You have the right to request that we erase your personal data without undue delay if one of the following reasons applies and processing is not necessary:

• ‎Your personal data is no longer necessary for the purposes for which it was collected or otherwise processed.
• You withdraw your consent on which the processing was based in accordance with Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, and there is no other legal basis for the processing.
• You object to the processing pursuant to Art. 21(1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21(2) GDPR.
• Your personal data has been processed unlawfully.

The erasure of the data is necessary to comply with a legal obligation under Union law or the law of the Member States to which we are subject.
Your personal data has been collected in connection with information society services offered pursuant to Art. 8(1) GDPR.

If we have made your personal data public and are obliged to delete it in accordance with Art. 17 (1) GDPR, we will take reasonable steps, including technical measures, taking into account available technology and implementation costs, to inform other controllers that you have requested them to delete all links to this personal data or copies or replications thereof, unless processing is necessary.

e) Right to restriction of processing

• ‎You have the right to request that we restrict processing if one of the following conditions applies:
• You dispute the accuracy of the personal data, for a period enabling us to verify its accuracy.
• The processing is unlawful, but you oppose the erasure of the data and request the restriction of its use instead.
• We no longer need the data for the purposes of processing, but you need it to assert, exercise, or defend legal claims.You have objected to the processing pursuant to Art. 21(1) GDPR and it is not yet clear whether our legitimate reasons outweigh yours.

f) Right to data portability
You have the right to receive the personal data concerning you that you have provided to us in a structured, commonly used, and machine-readable format. You also have the right to transmit this data to another controller without hindrance from us, provided that the processing is based on your consent pursuant to Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR or on a contract pursuant to Art. 6(1)(b) GDPR and the processing is carried out using automated means. To the extent technically feasible, you also have the right to have the data transmitted directly from us to another controller, provided that this does not affect the rights and freedoms of other persons.

g) Right to object
You have the right to object to the processing of your personal data at any time for reasons arising from your particular situation, insofar as the processing is based on Art. 6 para. 1 lit. e or f GDPR. This also applies to profiling based on this.
We will no longer process your personal data after an objection unless we can demonstrate compelling legitimate grounds that outweigh your interests, rights, and freedoms, or the processing serves to assert, exercise, or defend legal claims.
If your personal data is processed for direct marketing purposes, you have the right to object to the processing for such marketing purposes at any time. This also applies to profiling insofar as it is related to such direct marketing. If you object to processing for direct marketing purposes, we will no longer use your personal data for these purposes.

Furthermore, you have the right to object to processing for scientific or historical research purposes or for statistical purposes pursuant to Art. 89(1) GDPR on grounds relating to your particular situation, unless the processing is necessary for the performance of a task carried out in the public interest.
To exercise your right to object, you can contact us or our data protection officer directly. In connection with the use of information society services, you are also free to exercise your right to object—notwithstanding Directive 2002/­58/­EC—by means of automated procedures using technical specifications.

h) Right to automated individual decision-making, including profiling
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you, unless the decision is (1) necessary for entering into, or performance of, a contract; (2) is authorized by Union or Member State law and that law provides for appropriate measures to safeguard your rights and freedoms, or (3) is based on your explicit consent.
If the decision is necessary for the conclusion or performance of a contract or is based on your explicit consent, we will take appropriate measures to safeguard your rights and freedoms and your legitimate interests. This includes at least the right to obtain human intervention on the part of the controller, to express your point of view and to contest the decision.

i) Right to revoke consent under data protection law
You have the right to revoke your consent to the processing of personal data at any time with effect for the future.

j) Exercising your rights
To exercise your rights as described above, you can contact us or our data protection officer directly at any time. The contact details can be found at the beginning of this privacy policy. We are happy to answer any questions you may have about data protection at any time.

When you apply for a job, whether by mail or email, we collect and process various personal data. This includes, in particular, your contact information (such as your name, address, phone number, and email address) and your application documents (cover letter, resume, references, or other evidence of education and qualifications). Once we have received your application by email, we will send you a confirmation of receipt.

Your application data is collected and processed solely for the purpose of properly conducting the application process and reviewing a possible position in our company. Your data will only be passed on to the relevant departments and decision-makers within our company. Your data will only be transferred to other companies if you have given your express prior consent. Your data will not be used for any other purpose or passed on to third parties.

We generally delete your application data no later than six months after completion of the application process. Data will only be stored for longer than this if there are legal retention obligations, if further storage is necessary for evidence purposes, or if you have expressly consented to longer storage, for example to be considered for future job vacancies.

If an employment relationship is established, we will continue to store and process your data in accordance with legal requirements, insofar as this is necessary for the implementation and processing of the employment relationship.

Our website offers you the opportunity to visit our company profile on Facebook via a link. Facebook is operated by Meta Platforms, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA; for users residing outside the USA and Canada, Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, is responsible for data protection.

Facebook allows its members to create profiles, upload photos, connect with friends, and share content. When you visit a page with an integrated Facebook plug-in (e.g., the “Like” button), a direct connection to the Facebook servers is established. Facebook then receives information about which of our pages you have visited. If you are logged into Facebook at the same time, Facebook can assign the visit to your Facebook user account. Interactions, such as clicking the “Like” button or posting comments, are also assigned to your profile and stored there.

If you do not want Facebook to associate your visit to our website with your Facebook profile, please log out of your Facebook account before visiting our website.

For more information about data processing by Facebook and your settings and objection options, please refer to Facebook's privacy policy at: Meta Privacy Policy - How Meta collects and uses user data | Privacy Center | Manage your privacy on Facebook, Instagram and Messenger | Facebook Privacy

Our website offers you the opportunity to visit our company profile on LinkedIn via a link. LinkedIn is a professional network operated by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA; for users within the EU, LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland, is responsible.

When you visit a page with an integrated LinkedIn plug-in, a direct connection to the LinkedIn servers is established. LinkedIn learns which of our pages you have visited. If you are logged in to LinkedIn at the same time, LinkedIn can assign the visit to your personal user account. Interactions via plug-ins, such as clicking buttons, are also assigned to your account.

If you do not want LinkedIn to associate your visit to our website with your LinkedIn profile, please log out of LinkedIn before visiting our pages.
For more information about LinkedIn's collection and use of your data, as well as your settings and objection options, please refer to LinkedIn's privacy policy: https:/­​­/­ www.linkedin.com/­legal/­privacy-policy
and the cookie policy: https:/­​­/­​www.linkedin.com/­legal/­cookie-policy.

Our website offers you the opportunity to visit our company presence on YouTube via a link. YouTube is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Please note: Data will only be transmitted to YouTube or Google when you click on the link and visit our YouTube page. We ourselves do not receive any knowledge of the content of the transmitted data or its use by YouTube.
Further information on data processing by YouTube can be found in Google's privacy policy: https:/­​­/­​­www.google.de/­​­intl/­​­de/­​­policies/­​­privacy/­

Our website uses Google Ads, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Ads enables us to place targeted advertising for our offerings by placing ads in Google search results and on the Google advertising network.

If you access our website via a Google ad, Google may store a so-called conversion cookie on your device. This cookie has a limited validity of 30 days and is not used for personal identification. It enables us and Google to recognize whether you have visited certain pages or performed certain actions in order to measure the success of our ads (conversion tracking).

The information generated by the cookie (e.g., IP address, pages visited) is usually transferred to a Google server in the US and stored there. Google may pass this data on to third parties under certain circumstances.

You can prevent the storage of cookies by adjusting your browser settings accordingly. In addition, you can object to interest-based advertising by Google at any time by adjusting the ad settings at www.google.de/­settings/­ads.

For more information about data protection at Google, please visit: https:/­​­/­​­www.google.de/­​­intl/­​­de/­​­policies/­​­privacy/­​­.

We use advertising services provided by YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA (“YouTube Ads”), a company of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, on our website to show you interest-based advertising and to evaluate the effectiveness of our advertising measures (conversion tracking).

When you visit pages that contain YouTube Ads, cookies or similar technologies are used to collect information about your usage behavior (e.g., videos viewed, subpages visited, interactions). This information may be merged with other Google data and processed on servers in the USA.

Your personal data is processed exclusively on the basis of your express consent in accordance with Art. 6 (1) (a) GDPR in conjunction with Art. 7 GDPR. You can revoke your consent at any time with effect for the future. The transfer of personal data to the USA cannot be ruled out; Google relies on appropriate safeguards in accordance with Art. 46 (2) (c) GDPR (EU standard contractual clauses).

Further information on data processing by Google and YouTube can be found at: https:/­/­policies.google.com/­privacy.

We use the Google Maps map service on our website, provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Maps is used to display locations and enable you to plan your journey conveniently.

When using Google Maps, a connection to Google servers is established, whereby data such as your IP address and user settings may also be processed. It cannot be ruled out that data may also be transferred to Google LLC servers in the USA.

The legal basis for the use of Google Maps is Art. 6 (1) (1) (f) GDPR. Our legitimate interest lies in the user-friendly presentation of our online offering and the easy findability of the locations we specify.

If you do not agree to the transmission of your data to Google, you can deactivate the Google Maps service by disabling JavaScript in your browser. In this case, however, the map display will no longer be available to you.

Further information on data processing by Google can be found in the Google Terms of Service https:/­/­policies.google.com/­terms?hl=en, the Terms of Service for Google Maps https:/­/­www.google.com/­intl/­de_de/­help/­terms_maps.html, and in Google's privacy policy: https:/­​­/­​­policies.google.com/­​­privacy.

We use Google Tag Manager, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”), on our website. This management tool enables us to centrally and efficiently integrate and control various tags—i.e., tracking codes and associated code fragments—into our website. In particular, services such as conversion tracking, website analysis, remarketing, or other technologies can be managed in a bundled manner.

Google Tag Manager itself does not process any personal data for the purpose of analysis, does not create user profiles, does not store cookies, and does not perform its own evaluations. It is used exclusively for the display and control of the services integrated via it. However, it is technically necessary to transmit the IP address, which may also be forwarded to Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

We base the use of Google Tag Manager on our legitimate interest in the secure, efficient, and uniform integration of web technologies in accordance with Art. 6 (1) (f) GDPR. However, if services that require consent (e.g., analysis or marketing tools) are integrated via Tag Manager, processing is carried out exclusively on the basis of your consent in accordance with Art. 6 (1) (a) GDPR. You can revoke this consent at any time with effect for the future.

Insofar as data is transferred to the USA in the course of technical implementation, Google states that it relies on appropriate safeguards within the meaning of Art. 44 et seq. GDPR, in particular EU standard contractual clauses.

Further information on data protection at Google can be found at: https:/­/­policies.google.com/­privacy

We use the web analytics service Matomo on our website, operated by Matomo GmbH, Müllerstraße 146, 13353 Berlin, Germany. Matomo enables us to measure and evaluate data traffic and user behavior in compliance with data protection regulations and to present this in customizable reports. The aim is to continuously optimize our online offerings and develop them further in line with requirements.

The data collected includes, in particular: click paths, date and time of your visit, duration of visit, device information (including screen resolution), behavioral data, referrer URL, location information (if expressly permitted by you), and your IP address, which is anonymized by default.

Depending on the configuration, Matomo can either use cookies or operate completely without cookies. If Matomo is operated with cookies, the cookies are usually stored for up to 13 months; the exact storage period can be adjusted individually or completely avoided by using the service without cookies.

The legal basis for the use of Matomo is your express consent in accordance with Art. 6 (1) (a) GDPR in conjunction with Art. 7 GDPR. You can, of course, revoke your consent at any time with effect for the future, without affecting the lawfulness of the processing that has taken place up to that point.

To protect your privacy, Matomo uses IP anonymization and also enables analysis without the use of cookies. All data is stored exclusively on servers within the European Union; it is not passed on to third parties.

We use the “Blue Page CMS” content management system on our website to ensure the technical provision, security, and continuous optimization of our website. When you use the website, the system processes your IP address, the time of access, the pages you visit, the referrer URL, browser information, and, if applicable, other technical data such as your operating system or screen resolution. This data is collected via server log files and cookies or similar technologies.

The processing of this data is necessary to ensure the functionality, stability, and security of our website (Art. 6 (1) (1) (f) GDPR). If analysis and tracking functions are also used, processing is carried out exclusively on the basis of your express consent (Art. 6 (1) (a) in conjunction with Art. 7 GDPR).

In addition to secure operation, the purpose of processing is also the statistical evaluation of usage in order to measure reach and continuously optimize our offering in line with demand. The data collected will be deleted as soon as it is no longer required for these purposes, but after 30 days at the latest, unless there are legal retention obligations to the contrary.

Data will only be passed on to third parties if this is required by law or if it is technically necessary in the context of third-party modules. If data is transferred to third countries, this will only take place in compliance with the provisions of Art. 44 ff. GDPR.

We are delighted that you are interested in our company. Protecting your personal data is extremely important to us. You can use our website without providing any personal data. However, if you wish to use specific services on our website, it may be necessary to process personal data. If there is no legal basis for this, we will obtain your consent.

We always process your personal data in accordance with the General Data Protection Regulation (GDPR) and the country-specific data protection regulations applicable to our company. With this privacy policy, we inform you about what data we collect, how we use it, and what rights you have.
We have taken numerous technical and organizational measures to ensure the most complete protection possible of the personal data processed via our website. Please note, however, that Internet-based data transmissions can generally have security gaps, so that absolute protection cannot be guaranteed. You are free to transmit personal data to us at any time by alternative means, e.g., by telephone.