Privacy policy - Mobos.at

Privacy

We have written this Privacy Policy (version 01.01.1970-121611089) to explain to you, in accordance with the provisions of the General Data Protection Regulation (EU) 2016/679, what information we collect, how we use data and what choices you have as a visitor to this website.

Unfortunately, it is in the nature of the matter that these explanations sound very technical, but we have tried to describe the most important things as simply and clearly as possible.

Automatic data storage

When you visit websites today, certain information is automatically created and stored, including on this website.

If you are visiting our website as you are now, our web server (computer on which this website is stored) automatically stores data such as

  • the address (URL) of the website accessed
  • Browser and browser version
  • the operating system used
  • the address (URL) of the previously visited page (Referrer URL)
  • the host name and IP address of the device from which it is accessed
  • Date and time

files (web server log files).

Typically, Web server log files are stored for two weeks and then automatically deleted. We do not share this data, but we cannot rule out the possibility that this data will be viewed in the presence of unlawful conduct.

Cookies

Our website uses HTTP cookies to store user-specific data. In the following, we explain what cookies are and why you are being used to help you better understand the following privacy policy.

What exactly are cookies?

Whenever you browse the Internet, use a browser. Well-known browsers include Chrome, Safari, Firefox, Internet Explorer, and Microsoft Edge. Most websites store small text files in your browser. These files are called cookies.

One thing cannot be dismissed: cookies are really useful helpers. Almost all websites use cookies. More specifically, they are HTTP cookies, as there are other cookies for other areas of application. HTTP cookies are small files that are stored on your computer by our website. These cookie files are automatically stored in the cookie folder, the “brain” of your browser. A cookie consists of a name and a value. When defining a cookie, one or more attributes must also be specified.

Cookies store certain user data from you, such as language or personal page settings. When you visit our site again, your browser will return the “user-related” information to our site. Thanks to cookies, our website knows who you are and offers you the setting you are used to. In some browsers each cookie has its own file, in others, such as Firefox, all cookies are stored in a single file.

There are both first-party cookies and third-party cookies. First-party cookies are created directly from our site, third-party cookies are created by partner websites (e..B. Google Analytics). Each cookie must be assessed individually, as each cookie stores different data. The expiration time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, Trojan horses or other “pests”. Cookies also cannot access information from your PC.

For example, this is what cookie data might look like:

Name: _ga
Value: GA1.2.1326744211.152121611089-9
Purpose of use: Differentiation of website visitors
Expiration date: after 2 years

These minimum sizes should be supported by a browser:

  • At least 4096 bytes per cookie
  • At least 50 cookies per domain
  • At least 3000 cookies in total

What types of cookies are there?

The question of which cookies we use in particular depends on the services used and is clarified in the following sections of the privacy policy. At this point, we would like to briefly discuss the different types of HTTP cookies.

You can distinguish between 4 types of cookies:

Essential cookies

These cookies are necessary to ensure basic functions of the website. For example, you need these cookies when a user puts a product in the shopping cart, then continues to surf on other pages and later goes to checkout. These cookies do not delete the shopping cart, even if the user closes his browser window.

Appropriate cookies

These cookies collect information about the user behavior and whether the user receives any error messages. In addition, these cookies also measure the loading time and behaviour of the website in different browsers.

Target-oriented cookies

These cookies improve the user experience. For example, you can save entered locations, font sizes, or form data.

Advertising cookies

These cookies are also called targeting cookies. They are used to provide the user with customized advertising. This can be very practical, but also very annoying.

Usually, when you visit a website for the first time, you are asked which of these types of cookies you would like to allow. And of course, this decision is also stored in a cookie.

How can I delete cookies?

You decide for yourself how and whether you want to use cookies. Regardless of which service or website the cookies originate, you always have the option to delete, deactivate or only partially allow cookies. For example, you can block third-party cookies, but allow all other cookies.

If you want to determine which cookies have been stored in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Deleting and Managing Cookies

Microsoft Edge: Deleting and Managing Cookies

If you do not want cookies, you can set up your browser to always inform you when a cookie is to be set. This allows you to decide whether or not to allow the cookie for each cookie. The procedure varies depending on the browser. It is best to search the manual in Google with the search term “Delete cookies Chrome” or “Disable cookies Chrome” in the case of a Chrome browser.

What about my privacy policy?

The so-called “cookie guidelines” have been in place since 2009. It states that storing cookies requires your consent. However, there are still very different reactions to these directives within the EU countries. In Austria, however, this directive was transposed into Paragraph 96 para. 3 of the Telecommunications Act (TKG).

If you want to know more about cookies and don’t shy away from technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments of the Internet Engineering Task Force (IETF) called the HTTP State Management Mechanism.

Storage of personal data

Personal data that you transmit to us electronically on this website, such as name, e-mail address, address or other personal information in connection with the transmission of a form or comments in the blog, will be used by us together with the time and the IP address only for the specified purpose, securely stored and not passed on to third parties.

We therefore only use your personal data for communication with those visitors who expressly wish to contact and for the processing of the services and products offered on this website. We do not share your personal information without consent, but we cannot rule out the possibility that this data will be viewed in the presence of unlawful conduct.

If you send us personal data by e-mail, i.e. away from this website, we cannot guarantee the secure transmission and protection of your data. We recommend that you never send confidential data unencrypted by e-mail.

Rights under the General Data Protection Regulation

According to the provisions of the GDPR and the Austrian Data Protection Act (DSG), you are entitled in principle to the following rights:

  • Right to correction (Article 16 GDPR)
  • Right to erasure (“Right to be forgotten”) (Article 17 GDPR)
  • Right to restrict processing (Article 18 GDPR)
  • Right to notification – obligation to notify in connection with the rectification or deletion of personal data or the restriction of processing (Article 19 GDPR)
  • Right to data portability (Article 20 GDPR)
  • Right to object (Article 21 GDPR)
  • Right not to be subject to a decision based solely on automated processing, including profiling (Article 22 GDPR)

If you believe that the processing of your data violates data protection law or your data protection claims have otherwise been violated in any way, you can complain to the supervisory authority, which in Austria is the data protection authority whose website you can find under https://www.dsb.gv.at/.

TLS encryption with https

We use https to transmit data in an interception-proof manner on the Internet (data protection through technical design Article 25 paragraph 1 GDPR). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission over the Internet, we can ensure the protection of confidential data. You can see the use of this security of data transmission at the small lock icon at the top left of the browser and the use of the scheme https (instead of http) as part of our Internet address.

Google Analytics Privacy Policy

We use the analysis tracking tool Google Analytics (GA) of the American company Google Inc. on our website. Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services in Europe. Google Analytics collects data about your actions on our website. For example, if you click on a link, this action is stored in a cookie and sent to Google Analytics. With the reports we receive from Google Analytics, we can better adapt our website and service to your needs. In the following we will go into more detail about the tracking tool and inform you in particular about what data is stored and how you can prevent this.

What is Google Analytics?

Google Analytics is a tracking tool that is used to analyze the traffic of our website. For Google Analytics to work, a tracking code is built into the code of our website. When you visit our website, this code records various actions that you perform on our website. As soon as you leave our website, this data is sent to the Google Analytics servers and stored there.

Google processes the data and we receive reports about your user behaviour. These may include, but are not many of the reports:

  • Target group reports: We get to know our users better through target group reports and know more precisely who is interested in our service.
  • Ad Reports: Ad reports make it easier for us to analyze and improve our online advertising.
  • Acquisition Reports: Acquisition Reports give us helpful information on how we can inspire more people to our service.
  • Behavioral Reports: Learn how you interact with our website. We can understand which way you are going on our site and which links you click on.
  • Conversion reports: Conversion is a process where you perform a desired action based on a marketing message. For example, if you become a buyer or newsletter subscriber from a pure website visitor. These reports help us learn more about how our marketing efforts get you. This is how we want to increase our conversion rate.
  • Real-time reports: Here we always find out immediately what is happening on our website. For example, we see how many users are reading this text.

Why do we use Google Analytics on our website?

Our goal with this website is clear: We want to offer you the best possible service. The statistics and data from Google Analytics help us achieve this goal.

The statistically evaluated data show us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimize our site so that it is easier to find by interested people on Google. On the other hand, the data helps us to better understand you as a visitor. We therefore know very well what we need to improve on our website in order to provide you with the best possible service. The data also serves us to carry out our advertising and marketing measures more individually and cost-effectively. After all, it only makes sense to show our products and services to people who are interested in them.

What data is stored by Google Analytics?

Google Analytics uses a tracking code to create a random, unique ID that is associated with your browser cookie. This is how Google Analytics recognizes you as a new user. The next time you visit our site, you will be recognized as a “recurring” user. All collected data is stored together with this user ID. Thus, it is possible to evaluate pseudonymous user profiles in the first place.

Labels such as cookies and app instance IDs measure your interactions on our website. Interactions are all kinds of actions you perform on our website. If you also use other Google systems (such as .B. a Google account), data generated via Google Analytics can be linked to third-party cookies. Google does not share Google Analytics data unless we, as the website operator, approve it. Exceptions may occur if required by law.

The following cookies are used by Google Analytics:

Name: _ga
Value: 2.1326744211.152121611089-5
Purpose of use: By default, analytics.js uses the cookie _ga to store the user ID. Basically, it is used to distinguish website visitors.
Expiration date: after 2 years

Name: _gid
Value: 2.1687193234.152121611089-1
Purpose of use: The cookie is also used to distinguish website visitors
Expiration date: after 24 hours

Name: _gat_gtag_UA_
Value: 1
Purpose of use: Used to lower the request rate. When Google Analytics is provided through Google Tag Manager, this cookie is named _dc_gtm_ .
Expiration date: after 1 minute

Name: AMP_TOKEN
Value: no information
Purpose of use: The cookie has a token that can be used to retrieve a user ID from the AMP client ID service. Other possible values indicate a logoff, request, or error.
Expiration date: after 30 seconds up to one year

Name: __utma
Value: 1564498958.1564498958.1564498958.1
Purpose of use: With this cookie you can track your behavior on the website and measure performance. The cookie is updated every time information is sent to Google Analytics.
Expiration date: after 2 years

Name: __utmt
Value: 1
Purpose of use: The cookie is used, like _gat_gtag_UA_, to throttle the request rate.
Expiration date: after 10 minutes

Name: __utmb
Value: 3.10.1564498958
Purpose of use: This cookie is used to determine new sessions. It is updated every time new data or info is sent to Google Analytics.
Expiration date: after 30 minutes

Name: __utmc
Value: 167421564
Purpose of use: This cookie is used to set new sessions for returning visitors. This is a session cookie and is only stored until you close the browser again.
Expiration date: After closing the browser

Name: __utmz
Value: m|utmccn=(referral)|utmcmd=referral|utmcct=/
Purpose of use: The cookie is used to identify the source of the number of visitors to our website. That is, the cookie stores where you came to our website. This may have been a different page or an advertisement.
Expiration date: after 6 months

Name: __utmv
Value: no indication
Purpose of use: The cookie is used to store user data. It is always updated when information is sent to Google Analytics.
Expiration date: after 2 years

Note: This list cannot claim to be exhaustive, as Google also changes the choice of its cookies again and again.

Here we show you an overview of the most important data collected with Google Analytics:

Heatmaps: Google creates so-called heat maps. Heatmaps show exactly the areas you click on. This gives us information about where you are on our site.

Session duration: Google refers to the amount of time you spend on our site without leaving the site. If you were inactive for 20 minutes, the session ends automatically.

Bounce rate: There is talk of a bounce rate if you only view one page on our website and then leave our website again.

Account creation: When you create an account or place an order on our website, Google Analytics collects this data.

IP address: The IP address is only displayed in truncated form, so that a unique assignment is not possible.

Location: The IP address can be used to determine the country and your approximate location. This process is also called IP location determination.

Technical information: Technical information includes, but is not covered by your browser type, Internet service provider, or screen resolution.

Source of origin: Google Analytics or we are of course also interested in which website or which advertising you came to our site.

Other data includes contact details, any ratings, playing media (e..B g. when you play a video through our site), sharing content via social media or adding to your favorites. The list does not claim to be complete and serves only as a general orientation of data storage by Google Analytics.

How long and where is the data stored?

Google has distributed your servers around the world. Most servers are located in America, so most of your data is stored on American servers. Here you can read exactly where the Google data centers are located: https://www.google.com/about/datacenters/inside/locations/?hl=de

Your data is distributed on different physical disks. This has the advantage that the data can be retrieved more quickly and is better protected against manipulation. Every Google data center has appropriate emergency programs for your data. For example, if Google’s hardware fails or natural disasters paralyze servers, the risk of service interruption at Google remains low.

Google Analytics has set a retention period of 26 months for your user data. Then your user data will be deleted. However, we have the option to choose the retention period of user data ourselves. We have five variants at our disposal:

  • Deletion after 14 months
  • Deletion after 26 months
  • Deletion after 38 months
  • Deletion after 50 months
  • No automatic deletion

If the specified time period has expired, the data is deleted once a month. This retention period applies to your data, which are linked to cookies, user recognition and advertising IDs (e..B. cookies of the DoubleClick domain). Report results are based on aggregated data and are stored independently of user data. Aggregated data is a merging of individual data into a larger unit.

How can I delete my data or prevent data storage?

Under European Union data protection law, you have the right to receive, update, delete or restrict information about your data. You use the browser add-on to disable Google Analytics JavaScript (ga.js, analytics.js, dc.js) to prevent Google Analytics from using your data. You can download and install the browser add-on under https://tools.google.com/dlpage/gaoptout?hl=de. Please note that this add-on only disables data collection by Google Analytics.

If you want to disable, delete or manage cookies (regardless of Google Analytics), there is a separate guide for each browser:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Deleting and Managing Cookies

Microsoft Edge: Deleting and Managing Cookies

Google Analytics is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. More information can be found on https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&tid=121611089. We hope we have been able to introduce you to the most important information about the data processing of Google Analytics. If you want to learn more about the tracking service, we recommend these two links: http://www.google.com/analytics/terms/de.html and https://support.google.com/analytics/answer/6004245?hl=de.

Google Analytics IP Anonymization

We have implemented the IP address anonymization of Google Analytics on this website. This feature was developed by Google to enable this website to comply with the applicable data protection regulations and recommendations of local data protection authorities when they prohibit the storage of the full IP address. The anonymization or masking of the IP takes place as soon as the IP addresses arrive in the Google Analytics data collection network and before the data is stored or processed.

For more information on IP anonymization, see https://support.google.com/analytics/answer/2763052?hl=de.

Facebook Pixel Privacy Policy

We use the Facebook pixel of Facebook on our website. For this we have implemented a code on our website. The Facebook pixel is a snippet of JavaScript code that loads a collection of features that Allow Facebook to track your user actions if you have come to our website via Facebook ads. For example, when you purchase a product on our website, the Facebook pixel is triggered and your actions on our website are stored in one or more cookies. These cookies allow Facebook to compare your user data (customer data such as IP address, user ID) with the data of your Facebook account. Then Facebook deletes this data again. The collected data is anonymous and unavailable to us and can only be used in the context of advertisements. If you are a Facebook user yourself and are logged in, your visit to our website will be automatically assigned to your Facebook user account.

We want to show our services or products only to those people who are really interested in them. With the help of Facebook pixels, our advertising measures can be better tailored to your wishes and interests. This way, Facebook users (if they have allowed personalized advertising) will see suitable advertisements. Furthermore, Facebook uses the collected data for analysis purposes and its own advertisements.

In the following we show you those cookies that were set by including Facebook pixels on a test page. Please note that these are only example cookies. Depending on the interaction on our website, different cookies are set.

Name: _fbp
Value: fb.1.1568287647279.257405483-6121611089-7
Purpose of use: This cookie uses Facebook to display advertising products.
Expiration date: after 3 months

Name: fr
Value: 0aPf312HOS5Pboo2r.. Bdeiuf… 1.0.Bdeiuf.
Purpose of use: This cookie is used to make Facebook pixels work properly.
Expiration date: after 3 months

Name: comment_author_50ae8267e2bdf1253ec1a5769f48e062121611089-3
Value: Author’s name
Purpose of use: This cookie stores the text and name of a user who, for example, leaves a comment.
Expiration date: after 12 months

Name: comment_author_url_50ae8267e2bdf1253ec1a5769f48e062
Value: https%3A%2F%2Fwww.testpage…%2F (author’s URL)
Purpose of use: This cookie stores the URL of the website that the user enters in a text box on our website.
Expiration date: after 12 months

Name: comment_author_email_50ae8267e2bdf1253ec1a5769f48e062
Value: Author’s e-mail address
Purpose of use: This cookie stores the user’s e-mail address, provided that he has posted it on the website.
Expiration date: after 12 months

Note: The above cookies refer to individual user behaviour. Especially when using cookies, changes in Facebook can never be ruled out.

If you’re signed in to Facebook, you can change your ad settings on https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen yourself. If you are not a Facebook user, you can always manage your usage-based online advertising on http://www.youronlinechoices.com/de/praferenzmanagement/. There you have the option to deactivate or activate providers.

If you want to learn more about Facebook’s privacy, we recommend your own data policies on https://www.facebook.com/policy.php.

Facebook Automatic Extended Matching Privacy Policy

As part of the Facebook pixel function, we have also activated automatic advanced matching. This feature of the pixel allows us to send hashed emails, name, gender, city, state, zip code and date of birth or phone number to Facebook as additional information, provided you have provided us with this information. This activation allows us to adapt advertising campaigns on Facebook even more precisely to people who are interested in our services or products.

Embedded Social Media Elements Privacy Policy

We include elements of social media services on our website to display images, videos and texts.
By visiting pages that represent these elements, data is transferred from your browser to the respective social media service and stored there. We do not have access to this data.
The following links will take you to the pages of the respective social media services where it explains how they handle your data:

Facebook Privacy Policy

We use selected tools from Facebook on our website. Facebook is a social media network of Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. With these tools, we can offer you and people who are interested in our products and services the best possible deal. Below we give an overview of the various Facebook tools, what data is sent to Facebook and how you can delete this data.

What are Facebook tools?

In addition to many other products, Facebook also offers the so-called “Facebook Business Tools”. This is the official name of Facebook. However, since the term is hardly known, we decided to call it only Facebook tools. Among them are:

  • Facebook pixels
  • social plug-ins (such as .B the “Like” or “Share” button)
  • Facebook Login
  • Account Kit
  • APIs (programming interface)
  • SDKs (collection of programming tools)
  • Platform integrations
  • Plugins
  • Codes
  • Specification
  • Documentation
  • Technologies and services

Through these tools, Facebook extends services and has the ability to get information about user activities outside of Facebook.

Why do we use Facebook tools on our website?

We want to show our services and products only to people who are really interested in them. We can use facebook ads to reach these very people. However, in order to show users suitable advertising, Facebook needs information about people’s wishes and needs. In this way, information about the user behavior (and contact details) is made available to the company on our website. As a result, Facebook collects better user data and can display the appropriate advertising about our products or services to interested people. The tools thus enable tailor-made advertising campaigns on Facebook.

Facebook calls data about your behavior on our website “event data”. These are also used for measurement and analysis services. Facebook can thus create “campaign reports” on our behalf about the impact of our advertising campaigns. Furthermore, we get a better insight into how you use our services, website or products through analyses. In this way, we optimize your user experience on our website with some of these tools. For example, you can use the social plug-ins to share content on our site directly on Facebook.

What data is stored by Facebook tools?

By using individual Facebook tools, personal data (customer data) can be sent to Facebook. Depending on the tools used, customer data such as name, address, telephone number and IP address can be sent.

Facebook uses this information to match the data it has of you (if you are a Facebook member). Before customer data is transmitted to Facebook, a so-called “hashing” takes place. This means that any record is transformed into a string. This is also used to encrypt data.

In addition to the contact details, “event data” is also transmitted. “Event Data” refers to the information we receive about you on our website. For example, which subpages you visit or which products you buy from us. Facebook does not share the information it obtains with third parties (such as advertisers), unless the company has explicit permission or is legally required to do so. “Event data” can also be connected to contact details. This allows Facebook to offer better personalized advertising. After the already mentioned reconciliation process, Facebook deletes the contact details.

In order to deliver ads in an optimized manner, Facebook uses the event data only if it has been combined with other data (which was collected by Facebook in other ways). Facebook also uses this event data for security, protection, development and research purposes. Many of this data is transmitted to Facebook via cookies. Cookies are small text files that are used to store data or information in browsers. Depending on the tools used and whether you are a Facebook member, different number of cookies are created in your browser. In the descriptions of the individual Facebook tools we go into more detail about individual Facebook cookies. General information about the use of Facebook cookies can also be found on https://www.facebook.com/policies/cookies.

How long and where is the data stored?

Basically, Facebook stores data until it is no longer needed for its own services and Facebook products. Facebook has distributed servers around the world where its data is stored. However, customer data will be deleted within 48 hours after it has been matched with your own user data.

How can I delete my data or prevent data storage?

In accordance with the General Data Protection Regulation, you have the right to access, rectify, transmit and delete your data.

A complete deletion of the data will only take place if you delete your Facebook account completely. Here’s how deleting your Facebook account works:

1) On the right side of Facebook, click Settings.

2) Then click on “Your Facebook Information” in the left column.

3) Now click “Deactivation and deletion”.

4) Select “Delete account” now and then click on “Delete Next and Account”

5) Now enter your password, click “Next” and then on “Delete account”

The storage of the data that Facebook receives via our website is carried out, among other things, by cookies (e.B. for social plugins). In your browser, you can disable, delete or manage individual or all cookies. Depending on which browser you are using, this works in different ways. The following instructions show how to manage cookies in your browser:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Deleting and Managing Cookies

Microsoft Edge: Deleting and Managing Cookies

If you do not want cookies, you can set up your browser to always inform you when a cookie is to be set. This allows you to decide whether or not to allow it for each cookie.

Facebook is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. More information can be found on https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC. We hope we have brought you the most important information about the use and data processing by the Facebook tools. If you want to learn more about how Facebook uses your data, we recommend the data policies on https://www.facebook.com/about/privacy/update.

Facebook Social Plug-ins Privacy Policy

On our website are so-called social plug-ins of the company Facebook Inc. Built. You can recognize these buttons by the classic Facebook logo, such as the “Like” button (the hand with a raised thumb) or a unique “Facebook plug-in” label. A social plug-in is a small part of Facebook that is integrated into our site. Each plug-in has its own function. The most commonly used functions are the well-known “Like” and “Share” buttons.

The following social plug-ins are offered by Facebook:

  • “Save” button
  • Like, Share, Send and Quote
  • Page plug-in
  • Comments
  • Messenger plug-in
  • Embedded posts and video players
  • Group plug-in

On https://developers.facebook.com/docs/plugins, you can learn more about how to use each plug-in. We use the social plug-ins on the one hand to offer you a better user experience on our site, on the other hand because Facebook can optimize our ads.

If you have a Facebook account or have visited facebook.com, Facebook has already set at least one cookie in your browser. In this case, your browser sends information to Facebook via this cookie as soon as you visit our site or interact with social plug-ins (e.B.dem “Like” button).

The information received will be deleted or anonymized within 90 days. According to Facebook, this information includes your IP address, which website you have visited, the date, time and other information concerning your browser.

In order to prevent Facebook from collecting a lot of data during your visit to our website and connecting it to the Facebook data, you must log out (log out) of Facebook during your visit to the website.

If you’re not signed in to Facebook or don’t have a Facebook account, your browser sends less information to Facebook because you have fewer Facebook cookies. However, data such as your IP address or which website you visit can be transferred to Facebook. We would like to make it clear that we do not know exactly what the exact contents of the data are. However, we try to inform you as much as possible about data processing according to our current state of knowledge. You can also find out how Facebook uses the data in the company’s data guideline at https://www.facebook.com/about/privacy/update.

The following cookies are set in your browser at least when you visit a website with social plug-ins from Facebook:

Name: dpr
Value: no indication
Purpose of use: This cookie is used to make the social plug-ins work on our website.
Expiration date: after the end of the session

Name: fr
Value: 0jieyh4121611089c2GnlufEJ9.. Bde09j… 1.0.Bde09j
Purpose of use: The cookie is also necessary for the plug-ins to function properly.
Expiration date: after 3 months

Note: These cookies were set after a test, even if you are not a Facebook member.

If you’re signed in to Facebook, you can change your ad settings on https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen yourself. If you are not a Facebook user, you can always manage your usage-based online advertising on http://www.youronlinechoices.com/de/praferenzmanagement/. There you have the option to deactivate or activate providers.

If you want to learn more about Facebook’s privacy, we recommend your own data policies on https://www.facebook.com/policy.php.

Instagram Privacy Policy

We have built in Instagram features on our website. Instagram is a social media platform of Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA. Instagram has been a subsidiary of Facebook Inc. since 2012. and is one of Facebook’s products. Embedding is the name of embedding Instagram content on our website. This allows us to show you content such as buttons, photos or videos from Instagram directly on our website. When you visit websites of our website that have integrated an Instagram function, data is transmitted, stored and processed to Instagram. Instagram uses the same systems and technologies as Facebook. Your data is processed across all Facebook companies.

In the following, we want to give you a more detailed insight into why Instagram collects data, what data it is, and how you can largely control data processing. Since Instagram to Facebook Inc. we obtain our information from the Instagram guidelines on the one hand, but also from the Facebook data guidelines themselves.

What is Instagram?

Instagram is one of the most popular social media networks in the world. Instagram combines the benefits of a blog with the benefits of audiovisual platforms such as YouTube or Vimeo. You can upload photos and short videos on “Insta” (as many of the users call the platform) and edit them with different filters and also spread them on other social networks. And if you don’t want to be active yourself, you can only follow other interesting users.

Why do we use Instagram on our website?

Instagram is the social media platform that has really gone through the roof in recent years. And, of course, we have also responded to this boom. We want you to feel as comfortable as possible on our website. That is why a varied preparation of our contents is a matter of course for us. With embedded Instagram features, we can enrich our content with helpful, fun or exciting content from the Instagram world. Since Instagram is a subsidiary of Facebook, the data collected may also be of use to us for personalized advertising on Facebook. So our ads only get people who are really interested in our products or services.

Instagram also uses the collected data for measurement and analysis purposes. We get summarized statistics and thus more insight about your wishes and interests. It is important to mention that these reports do not personally identify you.

What data is stored by Instagram?

If you come across one of our sites that have Instagram features (such as Instagram images or plug-ins), your browser will automatically connect to Instagram’s servers. Data is sent, stored and processed to Instagram. Whether you have an Instagram account or not. This includes information about our website, about your computer, about purchases made, about advertisements you see and how you use our offer. It also saves the date and time of your interaction with Instagram. If you have an Instagram account or are logged in, Instagram stores significantly more data about you.

Facebook distinguishes between customer data and event data. We assume that this is exactly the case with Instagram. Customer data includes, for example, name, address, telephone number and IP address. This customer data will not be transmitted to Instagram until you have been “hashed” before. Hashing means a record is turned into a string. This allows you to encrypt the contact details. In addition, the above-mentioned “event data” will also be transmitted. By “event data” Facebook – and therefore also Instagram – means data about your user behavior. Contact details may also be combined with event data. The contact details collected will be compared with the data Instagram already has of you.

The collected data is transmitted to Facebook via small text files (cookies), which are usually set in your browser. Depending on the Instagram features you use and whether you have an Instagram account yourself, different amount of data is stored.

We assume that the data processing works the same with Instagram as with Facebook. This means that if you have an Instagram account or visited www.instagram.com, Instagram has set at least one cookie. If this is the case, your browser will send info to Instagram via the cookie as soon as you come into contact with an Instagram function. At the latest after 90 days (after reconciliation) this data will be deleted or anonymized. Although we’ve been working Instagram’s data processing, we can’t say exactly what data Instagram collects and stores.

In the following, we show you cookies, which are set at least in your browser when you click on an Instagram function (such as .B button or an Insta image). In our test, we assume that you don’t have an Instagram account. If you are logged in to Instagram, of course, significantly more cookies will be set in your browser.

These cookies were used in our test:

Name: csrftoken
Value: “”
Purpose of use: This cookie is most likely set for security reasons to prevent counterfeiting of requests. However, we were not able to find out more precisely.
Expiration date: after one year

Name: mid
Value: “”
Purpose of use: Instagram uses this cookie to optimize its own services and offerings in and outside Instagram. The cookie sets a unique user ID.
Expiration date: after the end of the session

Name: fbsr_121611089124024
Value: no information
Purpose of use: This cookie stores the log-in request for users of the Instagram app.
Expiration date:
after the end of the session

Name: rur
Value: Atn
Purpose of use: This is an Instagram cookie that ensures functionality on Instagram.
Expiration date: after the end of the session

Name: urlgen
Value: “”194.96.75.33″: 1901″:1iEtYv:Y833k2_UjKvXgYe121611089”
Purpose of use: This cookie is used for the marketing purposes of Instagram.
Expiration date: after the end of the session

Note: We cannot claim to be complete here. Which cookies are set in the individual case depends on the embedded features and your use of Instagram.

How long and where is the data stored?

Instagram shares the information you receive between Facebook companies with external partners and with people you connect with around the world. The data processing takes place in compliance with the own data policy. Your data is distributed on Facebook servers around the world, among other things for security reasons. Most of these servers are located in the United States.

How can I delete my data or prevent data storage?

Thanks to the General Data Protection Regulation, you have the right to information, portability, rectification and deletion of your data. In Instagram settings, you can manage your data. If you want to completely delete your data on Instagram, you need to permanently delete your Instagram account.

Here’s how to delete your Instagram account:

First, open the Instagram app. On your profile page, go down and click on “Help section”. Now you come to the company’s website. On the web page, click “Manage the account” and then click “Delete your account”.

If you delete your account altogether, Instagram deletes posts such as your photos and status updates. Information shared by other people about you does not belong to your account and will therefore not be deleted.

As mentioned above, Instagram stores your data primarily through cookies. You can manage, deactivate or delete these cookies in your browser. Depending on your browser, the management always works a bit differently. Here we show you the instructions of the most important browsers.

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Deleting and Managing Cookies

Microsoft Edge: Deleting and Managing Cookies

You can also set up your browser so that you are always informed when a cookie is to be set. Then you can always decide individually whether you want to allow the cookie or not.

Instagram is a subsidiary of Facebook Inc. and Facebook is an active participant in the EU-U.S. Privacy Shield Framework. This framework ensures correct data transmission between the UNITED States and the European Union. You can find out more at https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC. We have tried to provide you with the most important information about Data Processing through Instagram. On https://help.instagram.com/519522125107875
you can take a closer look at Instagram’s data policies.

Google reCAPTCHA Privacy Policy

Our ultimate goal is to secure and protect our website for you and for us in the best possible way. To ensure this, we use Google reCAPTCHA of Google Inc. Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services in Europe. With reCAPTCHA we can determine if you are really a human being of flesh and blood and not a robot or any other spam software. By spam, we mean any, by electronic means, unwanted information that we have unquestioned. With the classic CAPTCHAS, you usually had to solve text or image puzzles for verification. With reCAPTCHA from Google, we usually don’t have to bother you with such puzzles. Here, in most cases, it is enough if you simply tick a check mark and confirm that you are not a bot. With the new Invisible reCAPTCHA version, you don’t even have to tick a check mark anymore. You can find out exactly how this works and, above all, what data is used for this purpose in the course of this privacy policy.

What is reCAPTCHA?

reCAPTCHA is a free Captcha service from Google that protects websites from spam software and misuse by non-human visitors. This service is most commonly used when you fill out forms on the Internet. A Captcha service is a kind of automatic Turing test designed to ensure that an action is done on the Internet by a human, not a bot. In the classic Turing test (named after the computer scientist Alan Turing), a person determines the distinction between bot and human. With Captchas, this is also done by the computer or a software program. Classic captchas work with small tasks that are easy for humans to solve, but have considerable difficulties for machines. With reCAPTCHA, you don’t have to actively solve any puzzles. The tool uses modern risk techniques to distinguish people from bots. Here you only have to tick the text box “I am not a robot” or with Invisible reCAPTCHA even this is no longer necessary. With reCAPTCHA, a JavaScript element is integrated into the source code and then the tool runs in the background and analyzes your user behavior. From these user actions, the software calculates a so-called captcha score. Google uses this score to calculate how likely you are to be human even before entering the captcha. reCAPTCHA or Captchas in general are used whenever bots could manipulate or abuse certain actions (such as.B. registrations, surveys, etc.).

Why do we use reCAPTCHA on our website?

We just want to welcome people of flesh and blood to our side. Bots or spam software of all kinds are allowed to stay at home. That’s why we put all the levers in motion to protect ourselves and offer the best possible user experience for you. For this reason, we use Google reCAPTCHA from Google. So we can be pretty sure that we will remain a “bot-free” website. By using reCAPTCHA, data is transmitted to Google to determine whether you are actually a human being. reCAPTCHA therefore serves the security of our website and subsequently also your security. For example, without reCAPTCHA, it could happen that when registering, a bot registers as many email addresses as possible in order to “spam” forums or blogs with unwanted advertising content. With reCAPTCHA we can avoid such bot attacks.

What data is stored by reCAPTCHA?

reCAPTCHA collects personal data from users to determine whether the actions on our website actually originate from people. This means that the IP address and other data that Google needs for the reCAPTCHA service can be sent to Google. IP addresses are almost always truncated within the Member States of the EU or other contracting states of the Agreement on the European Economic Area before the data lands on a server in the USA. The IP address will not be combined with other data from Google unless you are logged in to your Google Account while using reCAPTCHA. First, the reCAPTCHA algorithm checks whether your browser already has Google cookies from other Google services (YouTube. Gmail, etc.) are placed. reCAPTCHA then sets an additional cookie in your browser and captures a snapshot of your browser window.

The following list of collected browser and user data does not claim to be complete. Rather, they are examples of data that we believe are processed by Google.

  • Referrer URL (the address of the page from which the visitor comes)
  • IP address (e.B. 256.123.123.1)
  • Information about the operating system (the software that allows your computer to operate. Known operating systems are Windows, Mac OS X or Linux)
  • Cookies (small text files that store data in your browser)
  • Mouse and keyboard behavior (any action you perform with the mouse or keyboard is saved)
  • Date and language settings (which language or date you have preset on your PC is saved)
  • All Javascript objects (JavaScript is a programming language that allows web pages to adapt to the user. JavaScript objects can collect all sorts of data under one name)
  • Screen resolution (shows how many pixels the image representation consists of)

It is undisputed that Google uses this data and analyzes it before you click on the “I am not a robot” check mark. With the Invisible reCAPTCHA version, even the ticking is omitted and the whole recognition process runs in the background. Google does not know in detail how much and what data Google stores exactly.

The following cookies are used by reCAPTCHA: We refer to the reCAPTCHA demo version of Google under https://www.google.com/recaptcha/api2/demo. All these cookies require a unique identifier for tracking purposes. Here is a list of cookies that Google reCAPTCHA has set on the demo version:

Name: Ide
Value: WqTUmlnmv_qXyi_DGNPLESKnRNrpgXoy1K-pAZtAkMbHI-121611089-8
Purpose of use: This cookie is set by the company DoubleClick (also owned by Google) to register and report the actions of a user on the website in the handling of advertisements. In this way, the advertising effectiveness can be measured and appropriate optimization measures can be taken. IDE is stored in browsers under the domain doubleclick.net.
Expiration date: after one year

Name: 1P_JAR
Value: 2019-5-14-12
Purpose of use: This cookie collects statistics on website usage and measures conversions. A conversion occurs .B when a user becomes a buyer. The cookie is also used to show users relevant advertisements. Furthermore, you can use the cookie to prevent a user from viewing the same ad more than once.
Expiration date: after one month

Name: Anid
Value: U7j1v3dZa1216110890xgZFmiqWppRWKOr
Purpose of use: We couldn’t find out a lot of information about this cookie. Google’s privacy policy mentions the cookie in connection with “advertising cookies” such as .B.” “DSID”, “FLC”, “AID”, “TAID”. ANID is stored under Domain google.com.
Expiration date: after 9 months

Name: CONSENT
Value: YES+AT.de+20150628-20-0
Purpose of use: The cookie stores the status of a user’s consent to use different services from Google. CONSENT is also used for security to verify users, prevent credential fraud, and protect user data from unauthorized attacks.
Expiration date: after 19 years

Name: Nid
Value: 0WmuWqy121611089zILzqV_nmt3sDXwPeM5Q
Purpose of use: NID is used by Google to customize ads to suit your Google search. With the help of the cookie, Google “remembers” your most frequently entered searches or your previous interaction with ads. This way you always get tailored advertisements. The cookie contains a unique ID to collect the user’s personal settings for advertising purposes.
Expiration date: after 6 months

Name: Dv
Value: gEAABBCjJMXcI0dSAAAANbqc121611089-4
Purpose of use: Once you have ticked the “I am not a robot” check mark, this cookie will be set. The cookie is used by Google Analytics for personalized advertising. DV collects information in anonymized form and is also used to make user distinctions.
Expiration date: after 10 minutes

Note: This list cannot claim to be exhaustive, as experience shows that Google also changes the choice of its cookies over and over again.

How long and where is the data stored?

By inserting reCAPTCHA, data is transferred from you to the Google server. Exactly where this data is stored is not clear, even after repeated requests. Without receiving confirmation from Google, it can be assumed that data such as mouse interaction, length of stay on the website or language settings are stored on the European or American Google servers. The IP address that your browser transmits to Google will not be merged with other Google data from other Google services. However, if you are logged in to your Google Account while using the reCAPTCHA plug-in, the data will be merged. The different data protection regulations of Google apply to this.

How can I delete my data or prevent data storage?

If you do not want any data to be transmitted to Google about you and your behaviour, you must log out of Google and delete all Google cookies before you visit our website or use the reCAPTCHA software. As a rule, the data will be automatically transmitted to Google as soon as you visit our site. To delete this data again, you must contact Google Support on https://support.google.com/?hl=de&tid=121611089.

Therefore, by using our website, you agree that Google LLC and its agents will automatically collect, edit and use data.

You can learn more about reCAPTCHA on Google’s web developer page on https://developers.google.com/recaptcha/. Google is going into more detail about the technical development of reCAPTCHA, but precise information about data storage and data protection-related topics is also searched in vain there. A good overview of the basic use of data at Google can be found in the in-house privacy policy on https://www.google.com/intl/de/policies/privacy/.

WooCommerce Privacy Policy

We have integrated the open source shop system WooCommerce as a plugin on our website. This WooCommerce plugin is based on the content management system WordPress, which is a subsidiary of Automattic Inc. (60 29th Street #343, San Francisco, CA 94110, USA). The implemented functions provide data to Automattic Inc. sent, stored and processed. In this privacy policy, we inform you about what data is involved, how the network uses this data and how you can manage or prevent data storage.

What is WooCommerce?

WooCommerce is an online shop system that has been part of The WordPress directory since 2011 and has been developed specifically for WordPress websites. It is a customizable, open source eCommerce platform based on WordPress and also integrated into our website as a WordPress plugin.

Why do we use WooCommerce on our website?

We use this convenient online shop solution to offer you our physical or digital products or services in the best possible way on our website. The aim is to provide you with easy and easy access to our offer, so that you can easily and quickly get to your desired products. With WooCommerce we have found a good plugin that meets our requirements for an online shop.

What data is stored by WooCommerce?

Information that you actively enter into a text box in our online shop can be collected and stored by WooCommerce or Automattic. So when you register with us or order a product, Automattic can collect, process and store this data. In addition to your e-mail address, name, or address, this may also be credit card or billing information. Automattic can also use this information for its own marketing campaigns.

In addition, there is also information that Automattic automatically collects from you in so-called server log files:

  • IP address
  • Browser information
  • Preset language setting
  • Date and time of web access

WooCommerce also sets cookies in your browser and uses technologies such as pixel tags (web beacons) in order, for example, to clearly identify you as a user and to be able to offer potentially interest-based advertising. WooCommerce uses a number of different cookies, which are set depending on the user action. This means, for example, if you put a product in your shopping cart, a cookie is set so that the product remains in the shopping cart when you leave our website and come back at a later time.

Here we show you an exemplary list of possible cookies that can be set by WooCommerce:

Name: woocommerce_items_in_cart
Value: 1
Purpose of use: The cookie helps WooCommerce determine when the content in the shopping cart changes.
Expiration date: after the end of the session

Name: woocommerce_cart_hash
Value: 447c84f810834056ab37cfe5ed27f204121611089-7
Purpose of use: This cookie is also used to detect and store the changes in your shopping cart.
Expiration date: after the end of the session

Name: wp_woocommerce_session_d9e29d251cf8a108a6482d9fe2ef34b6
Value: 1146%7C%7C1589034207%7C%7C95f8053ce0cea135bbce671043e740121611089-4aa
Purpose of use: This cookie contains a unique identifier for you so that the shopping cart data can be found in the database.
Expiration date: after 2 days

How long and where is the data stored?

Unless there is a legal obligation to retain data for an extended period of time, WooCommerce deletes the data when it is no longer needed for the purposes for which it was stored. For example, server log files that receive technical data about your browser and IP address are deleted after about 30 days. As long as Automattic uses the data to analyze traffic on its own websites (for example, all WordPress sites) and to fix possible problems. The data is stored on American servers of Automattic.

How can I delete my data or prevent data storage?

You have the right to access and object to the use and processing of your personal data at any time. You can also file a complaint with a state supervisory authority at any time.

In your browser you also have the possibility to manage, delete or deactivate cookies individually. Please note, however, that disabled or deleted cookies may have a negative impact on the functions of our WooCommerce online shop. Depending on which browser you use, managing cookies works slightly differently. The following are links to the instructions of the most common browsers:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Deleting and Managing Cookies

Microsoft Edge: Deleting and Managing Cookies

Automattic is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure data transfer of personal data. More information can be found on https://www.privacyshield.gov/participant?id=a2zt0000000CbqcAAC.
For more details on the Privacy Policy and what data WooCommerce collects and how, see https://automattic.com/privacy/ and general information about WooCommerce on https://woocommerce.com/.

Klarna Checkout Privacy Policy

We use the online payment system Klarna Checkout of the Swedish company Klarna Bank AB on our website. Klarna Bank has its head office in Sveavägen 46, 111 34 Stockholm, Sweden. If you choose this service, personal data will be sent, stored and processed to Klarna, among other things. In this data protection declaration we would like to give you an overview of the data processing by Klarna.

What is Klarna Checkout?

Klarna Checkout is a payment system for orders in an online shop. The user chooses the payment method and Klarna Checkout takes over the entire payment process. Once a user has made a payment via the checkout system and provided the relevant data, future online purchases can be made even faster and easier. The Klarna system then recognizes the existing customer as early as entering the e-mail address and postal code.

Why do we use Klarna Checkout for our website?

Our goal with our website and our integrated online shop is to offer you the best possible service. This includes not only the overall experience on the website and our offers, but also a smooth, fast and secure payment processing of your orders. To ensure this, we use the Klarna Checkout payment system.

What data is stored by Klarna Checkout?

As soon as you decide on the Klarna payment service and pay through the Klarna Checkout payment method, you will also transfer personal data to the company. On the Klarna Checkout page, you collect technical data such as browser type, operating system, our internet address, date and time, language settings, time zone settings and IP address and transmit it to Klarna’s servers and store them there. This data will be stored even if you have not yet completed an order.

When you order a product or service through our shop, you need to enter personal data in the given fields. This data is processed by Klarna for payment processing. For creditworthiness and identity verification, the following personal data (as well as general product information) can be stored and processed by Klarna:

  • Contact information: name, date of birth, national identification number, title, billing and delivery address, email address, telephone number, nationality or salary.
  • Payment information such as credit card details or your account number
  • Product information such as shipment number, type of item and price of the product

In addition, there is also data that can be collected optionally, if you make a conscious decision to do so. These are, for example, political, religious or ideological beliefs or various health data.

Klarna may also collect data on the goods or services you buy or order in addition to the above data, either by itself or via third parties (such as through us or via public databases). This can be, for example, the shipment number or the type of item ordered, but also information about your creditworthiness, income or credit. Klarna may also share your personal data with service providers such as software providers, data storage providers or us as a distributor.

If data is automatically entered into a form, then cookies are always in play. If you do not want to use this function, you can deactivate these cookies at any time. Further down in the text, you will find instructions on how to delete, disable or manage cookies in your browser. Our tests have shown that Klarna does not directly set cookies. If you select the payment method “Klarna Sofort” and click on “Order”, you will be redirected to the Sofort website. After the successful payment, you will come to our thank you page. The following cookie is set by sofort.com:

Name: SOFUEB
Value: e8cipp378mdscn9e17kajlfhv7121611089-4
Purpose of use: This cookie stores your session ID.
Expiration date: after the browser session ends

How long and where is the data stored?

Klarna makes every effort to store your data only within the EU or the European Economic Area (EEA). However, data may also be transferred outside the EU/EEA. If this happens, Klarna will ensure that data protection is in compliance with the GDPR, that the third country is in an adequacy decision of the European Union or that the country holds the US Privacy Shield certificate. The data is always stored as long as Klarna needs it for the processing purpose.

How can I delete my data or prevent data storage?

You can revoke your consent that Klarna processes personal data at any time. You also always have the right to access, rectify and delete your personal data. All you need to do is contact the company or data protection team by emailing datenschutz@klarna.de. You can also contact Klarna directly via the Klarna website “My Privacy Request”.

You can delete, disable or manage cookies that Klarna may use for its functions in your browser. Depending on which browser you are using, this works in different ways. The following instructions show how to manage cookies in your browser:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Deleting and Managing Cookies

Microsoft Edge: Deleting and Managing Cookies

We hope to have provided you with a good overview of Klarna’s data processing. If you want to know more about how your data is handled, we recommend the Klarna Privacy Policy at https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_at/privacy.

Immediate transfer Privacy Policy

We offer on our website the payment method “Immediate transfer” of the company Sofort GmbH for cashless payment. Sofort GmbH has been part of the Swedish company Klarna since 2014, but has its headquarters in Germany, Theresienhöhe 12, 80339 Munich.

If you choose this payment method, personal data will also be transmitted to Sofort GmbH or Klarna, stored and processed there. With this data protection text we give you an overview of the data processing by Sofort GmbH.

What is an “instant transfer”?

Instant transfer is an online payment system that allows you to place an order via online banking. The payment processing is carried out by Sofort GmbH and we receive immediate information about the payment made. This method can be used by any user who has an active online banking account with PIN and TAN. Few banks still support this payment method.

Why do we use “Instant Transfer” on our website?

Our goal with our website and our integrated online shop is to offer you the best possible service. This includes not only the overall experience on the website and our offers, but also a smooth, fast and secure payment processing of your orders. To ensure this, we use “immediate transfer” as a payment system.

What data is stored by “Instant Transfer”?

When you perform an instant transfer through the Sofort/Klarna service, data such as name, account number, bank code, subject, amount, and date is stored on the company’s servers. We also receive this information via the payment confirmation.

As part of the account verification check, Sofort GmbH checks whether your account balance and overdraft credit framework covers the payment amount. In some cases, it also checks whether instant transfers have been successful in the last 30 days. Furthermore, your user identification (such as an owner number or contract number) is collected and stored in a truncated (“hashed”) form and your IP address. For SEPA transfers, BIC and IBAN are also stored.

According to the company, no other personal data (such as account balances, revenue data, disposal framework, account lists, mobile phone number, authentication certificates, security codes or PIN/TAN) will be collected, stored or passed on to third parties.

Instant transfer also uses cookies to make your own service more user-friendly. When you order a product, you will be redirected to the Sofort or Klarna website. After the successful payment, you will be redirected to our thank you page. The following three cookies are set here:

Name: SOFUEB
Value: e8cipp378mdscn9e17kajlfhv7121611089-5
Purpose of use: This cookie stores your session ID.
Expiration date: after the browser session ends

Name: User [user_cookie_rules] Value: 1
Purpose of use: This cookie stores your consent to the use of cookies.
Expiration date: after 10 years

Name: _ga
Value: GA1.2.69759879.1589470706
Purpose of use: By default, analytics.js uses the cookie _ga to store the user ID. Basically, it is used to distinguish website visitors. This is a cookie from Google Analytics.
Expiration date: after 2 years

Note: The cookies listed here do not claim to be complete. Instant transfer may always use other cookies.

How long and where is the data stored?

All collected data will be stored within the legal retention obligation. This obligation can last between three and ten years.

Klarna/Sofort GmbH tries to store data only within the EU or the European Economic Area (EEA). If data is transferred outside the EU/EEA, data protection must comply with the GDPR, the country must be in an EU adequacy decision or hold the US Privacy Shield certificate.

How can I delete my data or prevent data storage?

You can revoke your consent that Klarna processes personal data at any time. You also always have the right to access, rectify and delete your personal data. To do this, you can simply contact the company’s data protection team by emailing datenschutz@sofort.com.

You can manage, delete or disable possible cookies that use instant transfer in your browser. Depending on your preferred browser, this works in different ways. The following instructions show how to manage cookies in the most popular browsers:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Deleting and Managing Cookies

Microsoft Edge: Deleting and Managing Cookies

If you would like to learn more about data processing through the “immediate transfer” of the company Sofort GmbH, we recommend the data protection declaration under https://www.sofort.de/datenschutz.html.

Stripe Privacy Policy

We use a payment tool from the American technology company and online payment service Stripe on our website. For customers within the EU, Stripe Payments Europe (Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland) is responsible. This means that if you choose Stripe as the payment method, your payment will be processed via Stripe Payments. Data that is necessary for the payment process is forwarded to Stripe and stored. In this Privacy Statement, we provide you with an overview of this data processing and storage by Stripe and explain why we use Stripe on our website.

What is Stripe?

The technology company Stripe offers payment solutions for online payments. With Stripe it is possible to accept credit and debit card payments in our webshop. Stripe handles the entire payment process. A big advantage of Stripe is that you never have to leave our website or shop during the payment process and the payment processing takes place very quickly.

Why do we use Stripe for our website?

Of course, we want to offer the best possible service with our website and our integrated online shop, so that you feel comfortable on our site and use our offers. We know that your time is precious and therefore especially payment processing must work quickly and smoothly. In addition to our other payment providers, we have found stripe as a partner that ensures secure and fast payment processing.

What data does Stripe store?

If you choose Stripe as the payment method, you will also transfer personal data to Stripe and store it there. This is transactional data. This information includes, for example, the payment method (i.e. credit card debit cards or account number), bank code, currency, amount and date of payment. In addition, a transaction can transmit your name, e-mail address, billing or shipping address, and sometimes your transaction history. This data is required for authentication. In addition, Stripe may collect your device’s name, address, telephone number and country in addition to technical data for your device (such as IP address) for fraud prevention, financial reporting and to fully provide its own services.

Stripe does not sell any of your data to independent third parties, such as marketing agencies or other companies that have nothing to do with the Stripe company. However, the data can be forwarded to internal departments, a limited number of external stripe partners, or for regulatory compliance. Stripe also uses cookies to collect data. Here is a selection of cookies that Stripe can set during the payment process:

Name: m
Value: edd716e9-d28b-46f7-8a55-e05f1779e84e040456121611089-5
Purpose of use: This cookie appears when you select the payment method. It stores and detects whether you are accessing our website via a PC, tablet or smartphone.
Expiration date: after 2 years

Name: __stripe_mid
Value: fc30f52c-b006-4722-af61-a7419a5b8819875en9121611089-1
Purpose of use: This cookie is required to perform a credit card transaction. To do this, the cookie stores your session ID.
Expiration date: after one year

Name: __stripe_sid
Value: 6fee719a-c67c-4ed2-b583-6a9a50895b122753fe
Purpose of use: This cookie also stores your ID and is used for the payment process on our website by Stripe.
Expiration date:after the end of the session

How long and where is the data stored?

Personal data is generally stored for the duration of the service provision. This means that the data is stored until we dissolve the collaboration with Stripe. However, in order to comply with the legal and official obligations, Stripe may also store personal data for the duration of the service. Because Stripe is a global company, the data can also be stored in any country where Stripe provides services. This also allows data to be stored outside of your country, for example in the United States.

How can I delete my data or prevent data storage?

Stripe is still a participant in the EU-U.S. Privacy Shield Framework,which ensures the correct and secure transfer of personal data by July 16, 2020. Now that the European Court of Justice has annulled the agreement, the company is no longer relying on this agreement, but is still acting in accordance with the principles of the Privacy Shield.

You always have the right to access, rectify and delete your personal data. If you have any questions, you can also contact the Stripe team via https://support.stripe.com/contact/email at any time.

You can delete, disable or manage cookies that Stripe uses for its functions in your browser. Depending on which browser you are using, this works in different ways. Please note, however, that the payment process may no longer work. The following instructions show how to manage cookies in your browser:

Chrome: Delete, enable, and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Deleting and Managing Cookies

Microsoft Edge: Deleting and Managing Cookies

We have now given you a general overview of the processing and storage of data by Stripe. If you want to get more and more detailed information, the detailed Stripe Privacy Policy under https://stripe.com/at/privacy is a good source.