Privacy Policy

General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to personally identify you. For detailed information on data protection, please refer to our privacy policy listed below this text.

1. Data Collection on This Website

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. You can find their contact details in the “Information on the Responsible Party” section of this privacy policy.

How do we collect your data?

Your data is collected, on the one hand, when you provide it to us. This may include, for example, data you enter into a contact form.

Other data is collected automatically or with your consent when you visit the website via our IT systems. This primarily consists of technical data (e.g., internet browser, operating system, or time of page view). This data is collected automatically as soon as you access this website.

What do we use your data for?

Some of the data is collected to ensure the website functions properly. Other data may be used to analyze your user behavior. If contracts can be concluded or initiated via the website, the transmitted data is also processed for contract offers, orders, or other order inquiries.

What rights do you have regarding your data?

You have the right at any time to receive information free of charge regarding the origin, recipients, and purpose of your stored personal data. You also have the right to request the correction or deletion of this data. If you have given consent to data processing, you may revoke this consent at any time with future effect. Furthermore, you have the right to request the restriction of the processing of your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.

You can contact us at any time regarding this matter or any other questions about data protection.

Analytics Tools and Third-Party Tools

When you visit this website, your browsing behavior may be statistically analyzed. This is primarily done using so-called analytics programs. Detailed information about these analytics programs can be found in the following privacy policy.

2. Hosting and Content Delivery Networks (CDN)

We host the content of our website with the following provider:

Hetzner

The provider is Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen (hereinafter “Hetzner”).

For details, please refer to Hetzner’s privacy policy:https://www.hetzner.com/de/legal/privacy-policy/.

The use of Hetzner is based on Art. 6(1)(f) GDPR. We have a legitimate interest in ensuring the most reliable presentation of our website possible. If consent has been requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25(1) TDDDG, insofar as the consent covers the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) within the meaning of the TDDDG. Consent may be revoked at any time.

Data Processing
We have entered into a data processing agreement (DPA) for the use of the aforementioned service. This is a contract required under data protection law that ensures that the service provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

Bunny.net CDN

We use the Bunny.net Content Delivery Network. The provider is BunnyWay d.o.o., Dunajska cesta 165, 1000 Ljubljana, Slovenia (hereinafter “Bunny.net CDN”).

Bunny.net CDN is a globally distributed content delivery network. Technically, the transfer of information between your browser and our website is routed through the content delivery network. This allows us to increase the global accessibility and performance of our website. The CDN records the IP address, which is, however, anonymized. In addition, the CDN collects personal data when it is entered by the user (e.g., by submitting a contact form on the website).

The use of Bunny.net CDN is based on our legitimate interest in providing our website as error-free and secure as possible (Art. 6(1)(f) GDPR).

For more information about Bunny.net CDN, visit: https://bunny.net/privacy/.

Data Processing
We have entered into a Data Processing Agreement (DPA) for the use of the aforementioned service. This is a contract required by data protection law that ensures that the service provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

3. General Information and Mandatory Disclosures

Data Protection

The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with statutory data protection regulations as well as this privacy policy.

When you use this website, various types of personal data are collected. Personal data is data that can be used to personally identify you. This privacy policy explains what data we collect and how we use it. It also explains how and for what purpose this is done.

Please note that data transmission over the Internet (e.g., when communicating via email) may involve security vulnerabilities. It is not possible to completely protect data from access by third parties.

Information on the Data Controller

The controller responsible for data processing on this website is:
Ocono Ruhrkunststoff GmbH
Weseler Str. 35
45478 Mülheim an der Ruhr
Phone: +49 208 9991-0
E-Mail: shop.rk@ocono.com

The controller is the natural or legal person who, alone or jointly with others, determines the purposes and means of the processing of personal data (e.g., names, email addresses, etc.).

Retention Period

Unless a more specific retention period is stated in this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you submit a valid request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible grounds for storing your personal data (e.g., retention periods under tax or commercial law); in the latter case, deletion will occur once these grounds no longer apply.

General Information on the Legal Basis for Data Processing on This Website

If you have consented to data processing, we process your personal data on the basis of Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, provided that processes special categories of data pursuant to Art. 9(1) GDPR. In the event of explicit consent to the transfer of personal data to third countries, data processing is also carried out on the basis of Article 49(1)(a) of the GDPR. If you have consented to the storage of cookies or to access to information on your device (e.g., via device fingerprinting), data processing is additionally based on Section 25(1) of the German Telemedia Act (TDDG). Consent may be revoked at any time. If your data is necessary for the performance of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Article 6(1)(b) of the GDPR. Furthermore, we process your data if it is necessary to comply with a legal obligation on the basis of Article 6(1)(c) of the GDPR. Data processing may also be carried out on the basis of our legitimate interest pursuant to Article 6(1)(f) of the GDPR. The relevant legal bases in each individual case are described in the following sections of this Privacy Policy.

Data Protection Officer

We have appointed a Data Protection Officer.

Fabio Pastars
CompliWise GmbH & Co. KG
Helmholtzstraße 26
41747 Viersen
Phone: +49 2162 361 86 90
Email: datenschutz@ocono.com

Recipients of Personal Data

As part of our business operations, we collaborate with various external parties. In some cases, this requires the transfer of personal data to these external parties. We only disclose personal data to external parties if this is necessary for the performance of a contract, if we are legally obligated to do so (e.g., disclosure of data to tax authorities), if we have a legitimate interest in the disclosure pursuant to Art. 6(1)(f) GDPR, or if another legal basis permits the disclosure of data. When using data processors, we only disclose our customers’ personal data on the basis of a valid data processing agreement. In the case of joint processing, a joint processing agreement is concluded.

Withdrawal of Your Consent to Data Processing

Many data processing operations are only possible with your explicit consent. You may withdraw consent that has already been given at any time. The lawfulness of the data processing carried out prior to the withdrawal remains unaffected by the withdrawal.

Right to object to data collection in specific cases and to direct marketing (Art. 21 GDPR)

IF DATA PROCESSING IS BASED ON ART. 6(1)(e) E OR F OF THE GDPR, YOU HAVE THE RIGHT AT ANY TIME TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. YOU CAN FIND THE SPECIFIC LEGAL BASIS ON WHICH PROCESSING IS BASED IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA, UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR THE PROCESSING IS NECESSARY FOR THE ESTABLISHMENT, exercise, or defense of legal claims (objection pursuant to Art. 21(1) GDPR).

IF YOUR PERSONAL DATA IS PROCESSED FOR THE PURPOSE OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR SUCH MARKETING PURPOSES; THIS ALSO APPLIES TO PROFILING, INSOFAR AS IT IS RELATED TO SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE USED FOR DIRECT MARKETING PURPOSES (OBJECTION PURSUANT TO ART. 21(2) GDPR).

Right to lodge a complaint with the competent supervisory authority

In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work, or the place of the alleged violation. This right to lodge a complaint is without prejudice to any other administrative or judicial remedies.

Right to data portability

You have the right to receive data that we process automatically based on your consent or in fulfillment of a contract, either for yourself or for a third party, in a commonly used, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done to the extent that it is technically feasible.

Access, Rectification, and Erasure

Within the scope of applicable legal provisions, you have the right at any time to receive, free of charge, information about your stored personal data, its origin and recipients, and the purpose of data processing, as well as, where applicable, the right to have this data corrected or deleted. You may contact us at any time regarding this matter or any other questions about personal data.

Right to Restriction of Processing

You have the right to request the restriction of the processing of your personal data. You may contact us at any time regarding this matter. The right to restriction of processing applies in the following cases:

• If you dispute the accuracy of your personal data stored with us, we generally need time to verify this. For the duration of this verification, you have the right to request the restriction of the processing of your personal data.
• If the processing of your personal data was or is unlawful, you may request the restriction of data processing instead of erasure.
• If we no longer need your personal data, but you need it to exercise, defend, or assert legal claims, you have the right to request the restriction of the processing of your personal data instead of erasure.
• If you have lodged an objection pursuant to Article 21(1) of the GDPR, a balancing of your interests against ours must be carried out. As long as it has not yet been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.
• If you have restricted the processing of your personal data, such data—apart from its storage—may only be processed with your consent or for the purpose of asserting, exercising, or defending legal claims, or to protect the rights of another natural or legal person, or for reasons of an important public interest of the European Union or a Member State.

SSL or TLS Encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address bar of the browser changes from “http://” to “https://” and by the lock icon in your browser bar.

When SSL or TLS encryption is enabled, the data you transmit to us cannot be read by third parties.

Encrypted payment transactions on this website

If, after concluding a paid contract, you are required to provide us with your payment details (e.g., account number for direct debit authorization), this information is necessary for processing the payment.

Payment transactions using standard payment methods (Visa/MasterCard, direct debit) are conducted exclusively via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the fact that the browser’s address bar changes from “http://” to “https://” and by the lock icon in your browser’s address bar.

With encrypted communication, the payment data you transmit to us cannot be read by third parties.

4. Data Collection on This Website

Cookies

Our website uses so-called “cookies.” Cookies are small data packets and do not cause any damage to your device. They are stored on your device either temporarily for the duration of a session (session cookies) or permanently (permanent cookies). Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your device until you delete them yourself or your web browser deletes them automatically.

Cookies may originate from us (first-party cookies) or from third-party companies (so-called third-party cookies). Third-party cookies enable the integration of certain third-party services within websites (e.g., cookies for processing payment services).

Cookies serve various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g., the shopping cart function or the display of videos). Other cookies may be used to analyze user behavior or for advertising purposes.

Cookies that are required to carry out the electronic communication process, to provide certain functions you have requested (e.g., for the shopping cart function), or to optimize the website (e.g., cookies for measuring website traffic) are stored on the basis of Art. 6(1)(f) GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies to ensure the technically error-free and optimized provision of its services. If consent to the storage of cookies and comparable recognition technologies has been requested, processing is carried out exclusively on the basis of this consent (Art. 6(1)(a) GDPR and § 25(1) TDDDG); consent may be revoked at any time.

You can configure your browser to notify you when cookies are set and to allow cookies only on a case-by-case basis, to exclude the acceptance of cookies for specific cases or generally, and to enable the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.

If additional cookies and services are used on this website, you can find this information in this privacy policy.

Shopware

Our online store is based on the e-commerce solution provided by Shopware AG, Ebbinghoff 10, 48624 Schöppingen (“Shopware”). Shopware stores cookies in your browser to ensure the basic functions of the store (e.g., using a session cookie for shopping cart contents and login status). Without these necessary cookies, our online store cannot be used. In this regard, Shopware acts on our behalf based on a data processing agreement compliant with the General Data Protection Regulation ( ). For more details about Shopware, please visit: https://www.shopware.com/de/datenschutz/

Cookie Consent Manager

Our website uses the Cookie Consent Manager integrated into Shopware.

Server Log Files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These include:

• Browser type and browser version
• Operating system used
• Referrer URL
• Hostname of the accessing computer
• Time of the server request
• IP address

This data is not combined with other data sources.

The collection of this data is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website—for this purpose, the server log files must be collected.

Contact form

If you send us inquiries via the contact form, your details from the inquiry form, including the contact information you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not disclose this data without your consent.

The processing of this data is based on Article 6(1)(b) of the GDPR, provided that your inquiry relates to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of inquiries directed to us (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) if such consent was requested; consent may be revoked at any time.

The data you enter in the contact form will remain with us until you request its deletion, revoke your consent to its storage, or the purpose for data storage no longer applies (e.g., after your inquiry has been processed). Mandatory legal provisions—in particular retention periods—remain unaffected.

Inquiries via email, telephone, or fax

If you contact us via email, phone, or fax, your inquiry, including all personal data contained therein (name, inquiry), will be stored and processed by us for the purpose of handling your request. We will not disclose this data without your consent.

The processing of this data is based on Article 6(1)(b) of the GDPR, provided that your inquiry is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of inquiries directed to us (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) if such consent was requested; consent may be revoked at any time.

The data you send to us via contact requests will remain with us until you request its deletion, revoke your consent to its storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory legal provisions—in particular statutory retention periods—remain unaffected.

Registration on this website

You can register on this website to use additional features on the site. We use the data entered for this purpose solely for the purpose of using the respective offer or service for which you have registered. The mandatory information requested during registration must be provided in full. Otherwise, we will reject the registration.

For important changes, such as to the scope of the service or technically necessary changes, we will use the email address provided during registration to inform you.

The data entered during registration is processed for the purpose of fulfilling the user relationship established by the registration and, if applicable, to initiate further contracts (Art. 6(1)(b) GDPR).

We store the data collected during registration for as long as you are registered on this website and delete it thereafter. Statutory retention periods remain unaffected.

5. Analytics Tools and Advertising

Google Tag Manager

We use Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Tag Manager is a tool that allows us to integrate tracking or statistics tools and other technologies into our website. Google Tag Manager itself does not create user profiles, store cookies, or perform independent analyses. It serves solely to manage and deploy the tools integrated through it. However, Google Tag Manager records your IP address, which may also be transferred to Google’s parent company in the United States.

The use of Google Tag Manager is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the quick and straightforward integration and management of various tools on its website. If consent has been requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25(1) TDDDG, insofar as the consent covers the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) within the meaning of the TDDDG. Consent may be revoked at any time.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the United States. Every company certified under the DPF commits to complying with these data protection standards. Further information on this is available from the provider at the following link: https://www.dataprivacyframework.gov/participant/5780.

Google Analytics

This website uses features of the web analytics service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics enables the website operator to analyze the behavior of website visitors. In doing so, the website operator receives various usage data, such as page views, time spent on the site, operating systems used, and the user’s origin. This data is assigned to the user’s respective device. It is not assigned to a user ID.

Furthermore, we can use Google Analytics to track, among other things, your mouse and scroll movements and clicks. Additionally, Google Analytics uses various modeling approaches to supplement the collected data sets and employs machine learning technologies in data analysis.

Google Analytics uses technologies that enable user recognition for the purpose of analyzing user behavior (e.g., cookies or device fingerprinting). The information collected by Google regarding the use of this website is generally transmitted to a Google server in the United States and stored there.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TDDDG. Consent may be revoked at any time.

Data transfer to the United States is based on the EU Commission’s Standard Contractual Clauses. Details can be found here: https://business.safety.google/adscontrollerterms/sccs/.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the United States. Every company certified under the DPF commits to adhering to these data protection standards. Further information on this is available from the provider at the following link: https://www.dataprivacyframework.gov/participant/5780.

IP Anonymization
Google Analytics IP anonymization is enabled. This means that Google will truncate your IP address within member states of the European Union or in other signatory states to the Agreement on the European Economic Area before transmitting it to the United States. Only in exceptional cases will the full IP address be transmitted to a Google server in the United States and truncated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity, and to provide other services related to website and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

Browser Plugin
You can prevent the collection and processing of your data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.

For more information on how Google Analytics handles user data, please refer to Google’s Privacy Policy: https://support.google.com/analytics/answer/6004245?hl=de.

Data Processing
We have entered into a data processing agreement with Google and fully comply with the strict requirements of the German data protection authorities when using Google Analytics.

Google Analytics E-commerce Tracking

This website uses the “E-commerce Tracking” feature of Google Analytics. With the help of E-commerce Measurement, the website operator can analyze the purchasing behavior of website visitors to improve its online marketing campaigns. This involves collecting information such as orders placed, average order values, shipping costs, and the time from viewing to purchasing a product. This data may be aggregated by Google under a transaction ID assigned to the respective user or their device.

Hotjar

This website uses Hotjar. The provider is Hotjar Ltd., Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe (Website: https://www.hotjar.com ).

Hotjar is a tool for analyzing your user behavior on this website. With Hotjar, we can, among other things, record your mouse and scroll movements and clicks. Hotjar can also determine how long you hovered your mouse pointer over a specific area. From this information, Hotjar creates so-called heatmaps, which allow us to determine which areas of the website visitors prefer to view.

Furthermore, we can determine how long you stayed on a page and when you left it. We can also determine at which point you abandoned your entries in a contact form (so-called conversion funnels).

In addition, Hotjar can be used to collect direct feedback from website visitors. This feature is used to improve the website operator’s web offerings.

Hotjar uses technologies that enable user recognition for the purpose of analyzing user behavior (e.g., cookies or device fingerprinting).

To the extent that consent has been obtained, the use of the aforementioned service is based exclusively on Article 6(1)(a) of the GDPR and Section 25 of the TDDDG. Consent may be revoked at any time. If consent has not been obtained, the use of this service is based on Article 6(1)(f) of the GDPR; the website operator has a legitimate interest in analyzing user behavior in order to optimize both its website and its advertising.

Disabling Hotjar
If you wish to disable data collection by Hotjar, click on the following link and follow the instructions provided there: https://www.hotjar.com/policies/do-not-track/ 

Please note that Hotjar must be deactivated separately for each browser or device.

For more information about Hotjar and the data collected, please refer to Hotjar’s privacy policy at the following link: https://www.hotjar.com/privacy

Data Processing
We have entered into a Data Processing Agreement (DPA) for the use of the aforementioned service. This is a contract required by data protection law that ensures that the service provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

Microsoft Clarity

This website uses Microsoft Clarity. The provider is Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland, https://learn.microsoft.com/en-us/clarity/faq (hereinafter “Microsoft Clarity”).

Microsoft Clarity is a tool for analyzing user behavior on this website. In particular, Microsoft Clarity tracks mouse movements and creates a graphical representation of which parts of the website users scroll to most frequently (heatmaps). Microsoft Clarity can also record sessions, allowing us to view page usage in the form of videos. Furthermore, we receive information about general user behavior within our website.

Microsoft Clarity uses technologies that enable user recognition for the purpose of analyzing user behavior (e.g., cookies or device fingerprinting). Your personal data is stored on Microsoft’s servers (Microsoft Azure Cloud Service) in the United States.

To the extent that consent has been obtained, the use of the aforementioned service is based exclusively on Article 6(1)(a) of the GDPR and Section 25 of the TDDDG. Consent may be revoked at any time. Where consent has not been obtained, the use of this service is based on Article 6(1)(f) of the GDPR; the website operator has a legitimate interest in effective user analysis.

Further details on Microsoft Clarity’s data protection can be found here:https://docs.microsoft.com/en-us/clarity/faq.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the United States. Every company certified under the DPF commits to adhering to these data protection standards. Further information on this is available from the provider at the following link: https://www.dataprivacyframework.gov/participant/6474.

Data Processing
We have entered into a Data Processing Agreement (DPA) for the use of the aforementioned service. This is a contract required by data protection law that ensures the service provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

Google Ads

The website operator uses Google Ads. Google Ads is an online advertising program provided by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Ads enables us to display ads in the Google search engine or on third-party websites when the user enters specific search terms into Google (keyword targeting). Furthermore, targeted ads can be displayed based on user data available to Google (e.g., location data and interests) (audience targeting). As the website operator, we can evaluate this data quantitatively, for example by analyzing which search terms led to the display of our advertisements and how many ads resulted in corresponding clicks.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TDDDG. Consent may be revoked at any time.

Data transfer to the U.S. is based on the EU Commission’s Standard Contractual Clauses. Details can be found here: https://policies.google.com/privacy/frameworks and https://business.safety.google/controllerterms/.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the United States. Every company certified under the DPF commits to adhering to these data protection standards. For more information, please visit the provider’s website at the following link: https://www.dataprivacyframework.gov/participant/5780.

Google AdSense (non-personalized)

This website uses Google AdSense, a service for integrating advertisements. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

We use Google AdSense in “non-personalized” mode. Unlike personalized mode, the advertisements are therefore not based on your previous user behavior, and no user profile is created for you. Instead, so-called “contextual information” is used when selecting the advertisements. The selected advertisements are then based, for example, on your location, the content of the website you are visiting, or your current search terms. You can find more information about the differences between personalized and non-personalized targeting with Google AdSense at: https://support.google.com/adsense/answer/9007336.

Please note that even when using Google AdSense in non-personalized mode, cookies or comparable recognition technologies (e.g., device fingerprinting) may be used. According to Google, these are used to combat fraud and abuse.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TDDDG. Consent may be revoked at any time.

Data transfers to the U.S. are based on the EU Commission’s Standard Contractual Clauses. Details can be found here: https://business.safety.google/adscontrollerterms/sccs/.

You can adjust your advertising settings yourself in your user account. To do so, click on the following link and log in: https://adssettings.google.com/authenticated.

Further information on Google’s advertising technologies can be found here: https://policies.google.com/technologies/ads and https://www.google.de/intl/de/policies/privacy/.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the United States. Every company certified under the DPF commits to adhering to these data protection standards. For more information, please visit the provider’s website at the following link:https://www.dataprivacyframework.gov/participant/5780.

Google Ads Remarketing

This website uses the features of Google Ads Remarketing. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

With Google Ads Remarketing, we can assign people who interact with our online content to specific target groups so that we can subsequently display interest-based ads to them on the Google Display Network (remarketing or retargeting).

Furthermore, the advertising audiences created with Google Ads Remarketing can be linked to Google’s cross-device capabilities. In this way, can display interest-based, personalized advertising messages—tailored to you based on your previous usage and browsing behavior on one device (e.g., a smartphone)—on another of your devices (e.g., a tablet or PC).

If you have a Google account, you can opt out of personalized advertising at the following link:https://adssettings.google.com/anonymous?hl=de.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TDDDG. You may revoke your consent at any time.

Further information and the privacy policy can be found in Google’s privacy policy at:https://policies.google.com/technologies/ads?hl=de.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the United States. Every company certified under the DPF commits to adhering to these data protection standards. Further information on this is available from the provider at the following link: https://www.dataprivacyframework.gov/participant/5780.

Target audience creation using customer matching
For audience targeting, we use, among other things, Google Ads Remarketing’s customer matching. In this process, we transfer certain customer data (e.g., email addresses) from our customer lists to Google. If the customers in question are Google users and are logged into their Google account, relevant advertising messages will be displayed to them within the Google network (e.g., on YouTube, Gmail, or in the search engine).

Google Conversion Tracking

This website uses Google Conversion Tracking. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

With the help of Google Conversion Tracking, Google and we can determine whether the user has performed certain actions. For example, we can analyze which buttons on our website are clicked and how often, and which products were viewed or purchased particularly frequently. This information is used to generate conversion statistics. We learn the total number of users who clicked on our ads and what actions they performed. We do not receive any information that allows us to personally identify the user. Google itself uses cookies or similar recognition technologies for identification.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TDDDG. You may revoke your consent at any time.

For more information on Google Conversion Tracking, please refer to Google’s Privacy Policy:https://policies.google.com/privacy?hl=de.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the United States . Every company certified under the DPF commits to adhering to these data protection standards. For more information, please visit the provider’s website at the following link: https://www.dataprivacyframework.gov/participant/5780.

Meta Pixel (formerly Facebook Pixel)

This website uses Meta’s visitor action pixel for conversion tracking. The provider of this service is Meta Platforms Ireland Limited, Merrion Road Dublin 4, Dublin, D04 X2K5, Ireland. However, according to Meta, the collected data is also transferred to the United States and other third countries.

This allows the behavior of site visitors to be tracked after they have been redirected to the provider’s website by clicking on a Meta ad. This enables the effectiveness of Meta ads to be evaluated for statistical and market research purposes and future advertising measures to be optimized.

The collected data is anonymous to us as the operator of this website; we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Meta, allowing a connection to the respective user profile on Facebook or Instagram, and enabling Meta to use the data for its own advertising purposes in accordance with the Meta Data Use Policy (https://de-de.facebook.com/about/privacy/). This enables Meta to display advertisements on Facebook or Instagram pages and other advertising channels. As the website operator, we have no influence over this use of the data.

The use of this service is based on your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TDDDG. You may revoke your consent at any time.

To the extent that personal data is collected on our website using the tool described here and transmitted to Meta, we and Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). This joint responsibility is limited exclusively to the collection of the data and its transfer to Meta. The processing carried out by Meta after the transfer is not part of the joint responsibility. The obligations incumbent upon us jointly have been set forth in a joint processing agreement. The text of the agreement can be found at: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing privacy information when using the Meta tool and for ensuring the tool is implemented on our website in compliance with data protection laws. Meta is responsible for the data security of Meta products. You can exercise your data subject rights (e.g., requests for information) regarding data processed by Facebook or Instagram directly with Meta. If you exercise your data subject rights with us, we are obligated to forward them to Meta.

Data transfers to the U.S. are based on the EU Commission’s Standard Contractual Clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum andhttps://de-de.facebook.com/help/566994660333381.

You can find further information on the protection of your privacy in Meta’s privacy policy:https://de-de.facebook.com/about/privacy/.

You can also disable the “Custom Audiences” remarketing feature in the ad settings section athttps://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. To do this, you must be logged in to Facebook.

If you do not have a Facebook or Instagram account, you can disable usage-based advertising from Meta on the European Interactive Digital Advertising Alliance website:http://www.youronlinechoices.com/de/praferenzmanagement/.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the United States. Every company certified under the DPF commits to adhering to these data protection standards. For more information, please visit the provider’s website at the following link: https://www.dataprivacyframework.gov/participant/4452.

6. Newsletter

Newsletter Data

If you would like to subscribe to the newsletter offered on the website, we require your email address as well as information that allows us to verify that you are the owner of the provided email address and consent to receiving the newsletter. No further data is collected, or only on a voluntary basis. We use newsletter service providers described below to manage the newsletter.

Rapidmail

This website uses Rapidmail to send newsletters. The provider is rapidmail GmbH, Augustinerplatz 2, 79098 Freiburg i.Br., Germany.

Rapidmail is a service that allows, among other things, the sending of newsletters to be organized and analyzed. The data you enter for the purpose of subscribing to the newsletter is stored on Rapidmail’s servers in Germany.

Data Analysis by Rapidmail
For analysis purposes, emails sent via Rapidmail contain a so-called “tracking pixel” that connects to Rapidmail’s servers when the email is opened. This allows us to determine whether a newsletter message has been opened.

Furthermore, with the help of Rapidmail, we can determine whether and which links in the newsletter message are clicked. All links in the email are so-called tracking links, which allow your clicks to be counted. If you do not want your data analyzed by Rapidmail, you must unsubscribe from the newsletter. We provide a corresponding link for this purpose in every newsletter message.

For more information on Rapidmail’s analytics features, please visit the following link:https://de.rapidmail.wiki/kategorien/statistiken/.

Legal Basis
Data processing is based on your consent (Art. 6(1)(a) GDPR). You may revoke this consent at any time. The lawfulness of data processing operations that have already taken place remains unaffected by the revocation.

Retention period
The data you have provided to us for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter, at which point it will be deleted from the newsletter distribution list. Data stored by us for other purposes remains unaffected by this.

After you unsubscribe from the newsletter distribution list, your email address may be stored by us or the newsletter service provider on a blacklist, if necessary, to prevent future mailings. The data from the blacklist is used solely for this purpose and is not combined with other data. This serves both your interest and our interest in complying with legal requirements regarding the sending of newsletters (legitimate interest within the meaning of Art. 6(1)(f) GDPR). Storage on the blacklist is not time-limited. You may object to this storage if your interests outweigh our legitimate interest.

For more details, please refer to Rapidmail’s data security information at: https://www.rapidmail.de/datensicherheit.

Data Processing
We have entered into a Data Processing Agreement (DPA) for the use of the aforementioned service. This is a contract required by data protection law that ensures the service provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

Newsletter distribution to existing customers

If you order goods or services from us and provide your email address in the process, we may subsequently use this email address to send you newsletters, provided we inform you of this in advance. In such cases, the newsletter will only contain direct marketing for our own similar goods or services. You may unsubscribe from this newsletter at any time. A link for this purpose is included in every newsletter. The legal basis for sending the newsletter in this case is Article 6(1)(f) of the GDPR in conjunction with Section 7(3) of the UWG.

After you unsubscribe from the newsletter distribution list, your email address may be stored in a blacklist to prevent future mailings to you. The data from the blacklist is used solely for this purpose and is not combined with other data. This serves both your interest and our interest in complying with legal requirements when sending newsletters ( legitimate interest within the meaning of Article 6(1)(f) of the GDPR). Storage in the blacklist is not time-limited. You may object to the storage provided that your interests outweigh our legitimate interest.

7. Plugins and Tools

YouTube with enhanced privacy

This website embeds videos from the YouTube website. The website operator is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

When you visit one of these websites where YouTube is embedded, a connection is established with YouTube’s servers. In doing so, the YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you allow YouTube to directly associate your browsing behavior with your personal profile. You can prevent this by logging out of your YouTube account.

We use YouTube in enhanced privacy mode. According to YouTube, videos played in enhanced privacy mode are not used to personalize your browsing experience on YouTube. Ads displayed in enhanced privacy mode are also not personalized. No cookies are set in enhanced privacy mode. Instead, however, so-called local storage elements are stored in the user’s browser; these contain personal data similar to cookies and can be used for recognition purposes. Details on enhanced privacy mode can be found here:https://support.google.com/youtube/answer/171780.

In some cases, activating a YouTube video may trigger further data processing operations over which we have no control.

The use of YouTube is in the interest of presenting our online offerings in an appealing manner. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR. If consent has been requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25(1) TDDDG, insofar as the consent covers the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) within the meaning of the TDDDG. Consent may be revoked at any time.

Further information on data protection at YouTube can be found in their privacy policy at:https://policies.google.com/privacy?hl=de.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the United States. Every company certified under the DPF commits to adhering to these data protection standards. For more information, please visit the provider’s website at the following link: https://www.dataprivacyframework.gov/participant/5780.

Google reCAPTCHA

We use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on this website. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

reCAPTCHA is designed to verify whether data entry on this website (e.g., in a contact form) is performed by a human or by an automated program. To do this, reCAPTCHA analyzes the website visitor’s behavior based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various pieces of information (e.g., IP address, the duration of the website visitor’s stay on the website, or mouse movements made by the user). The data collected during the analysis is forwarded to Google.

The reCAPTCHA analyses run entirely in the background. Website visitors are not notified that an analysis is taking place.

In this context, Google acts solely as a data processor within the meaning of Article 28 of the GDPR and will not use the data collected in this manner for its own purposes. The use of the tool is based on a Data Processing Agreement (DPA) with Google.

The storage and analysis of the data are based on Article 6(1)(f) of the GDPR. The website operator has a legitimate interest in protecting its web offerings from abusive automated scanning and from SPAM. If consent has been requested, processing is carried out exclusively on the basis of Article 6(1)(a) of the GDPR and Section 25(1) of the TDDDG, insofar as the consent covers the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) within the meaning of the TDDDG. Consent may be revoked at any time.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the United States. Every company certified under the DPF commits to complying with these data protection standards. Further information on this is available from the provider at the following link: https://www.dataprivacyframework.gov/participant/5780.

Leadfeeder

We have integrated Leadfeeder into this website. The provider is Leadfeeder, Keskuskatu 6 E, 00100 Helsinki (hereinafter “Leadfeeder”).

Leadfeeder enables us to track visits to our website by employees of other companies. For this purpose, the website visitor’s IP address and, if applicable, other data are compared with the data contained in Leadfeeder’s company database. Furthermore, the website visitor’s user behavior may also be tracked (e.g., duration and time of the website visit and pages visited).

The use of Leadfeeder is based on Article 6(1)(f) of the GDPR. The website operator has a legitimate interest in tracking visits to our website by representatives of other companies and their user behavior. If consent has been requested, processing is carried out exclusively on the basis of Article 6(1)(a) of the GDPR and Section 25(1) of the TDDDG, insofar as the consent covers the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) within the meaning of the TDDDG. Consent may be revoked at any time.

For further details, please refer to the provider’s privacy policy at https://www.leadfeeder.com/privacy/.

Data Processing
We have entered into a data processing agreement (DPA) for the use of the aforementioned service. This is a contract required under data protection law that ensures the service provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

Leadinfo

We have integrated Leadinfo into this website. The provider is Leadinfo / Team.Blue GmbH, Bunsenstr. 19, 40215 Düsseldorf (hereinafter “Leadinfo”).

Leadinfo enables us to track visits to our website by employees of other companies. For this purpose, the website visitor’s IP address is compared with the company IP addresses stored in Leadinfo’s database. If this is the IP address of a company, this visit and the user behavior are recorded. IP addresses that are not present in Leadinfo’s database are immediately deleted, so that website visits by private individuals are ignored by Leadinfo.

The use of Leadinfo is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in recording corporate visits to our website and their user behavior. If consent has been obtained, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25(1) TDDDG, insofar as the consent covers the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) within the meaning of the TDDDG. Consent may be revoked at any time.

For further details, please refer to the provider’s privacy policy at https://www.leadinfo.com/de/datenschutz/.

Data Processing
We have entered into a data processing agreement (DPA) for the use of the aforementioned service. This is a contract required under data protection law that ensures the service provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

8. E-commerce and Payment Providers

Processing of Customer and Contract Data

We collect, process, and use personal customer and contract data to establish, define the content of, and modify our contractual relationships. We collect, process, and use personal data regarding the use of this website (usage data) only to the extent necessary to enable the user to use the service or to bill for it. The legal basis for this is Art. 6(1)(b) GDPR.

The collected customer data will be deleted upon completion of the order or termination of the business relationship and after the expiration of any applicable statutory retention periods. Statutory retention periods remain unaffected.

Data Transfer Upon Contract Conclusion for Online Stores, Retailers, and Product Shipping

When you order goods from us, we share your personal data with the shipping company responsible for delivery and with the payment service provider entrusted with payment processing. Only data necessary for the respective service provider to fulfill its task is disclosed. The legal basis for this is Article 6(1)(b) of the GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures. If you have given your consent in accordance with Article 6(1)(a) of the GDPR, we will provide your email address to the shipping company responsible for delivery so that it can inform you via email about the shipping status of your order; you may revoke your consent at any time.

9. Our Own Services

Handling of Applicant Data

We offer you the opportunity to apply for a position with us (e.g., by email, mail, or via our online application form). Below, we provide information about the scope, purpose, and use of the personal data collected from you during the application process. We assure you that the collection, processing, and use of your data are carried out in accordance with applicable data protection laws and all other legal provisions, and that your data will be treated as strictly confidential.

Scope and Purpose of Data Collection
When you submit an application to us, we process your associated personal data (e.g., contact and communication details, application documents, notes taken during interviews, etc.) to the extent necessary to decide on the establishment of an employment relationship. The legal basis for this is Section 26 of the German Federal Data Protection Act (BDSG) (initiation of an employment relationship), Article 6(1)(b) of the GDPR (general contract initiation), and—provided you have given your consent—Article 6(1)(a) of the GDPR. Consent may be revoked at any time. Your personal data will be shared within our company exclusively with persons involved in processing your application.

If the application is successful, the data you have submitted will be stored in our data processing systems on the basis of Section 26 of the Federal Data Protection Act (BDSG) and Article 6(1)(b) of the GDPR for the purpose of carrying out the employment relationship.

As part of the application process, we may also conduct an online search regarding you. This primarily includes Google searches, LinkedIn, and Xing. The legal basis for this type of processing is our legitimate interest in obtaining an overall impression of publicly available information about you pursuant to Article 6(1)(f) of the GDPR.

Data Retention Period
If we are unable to offer you a position, you decline a job offer, or you withdraw your application, we reserve the right to retain the data you have provided for up to 6 months from the conclusion of the application process (rejection or withdrawal of the application) based on our legitimate interests (Article 6(1)(f) of the GDPR). The data will then be deleted and the physical application documents destroyed. The retention serves, in particular, as evidence in the event of a legal dispute. If it becomes apparent that the data will be required after the 6-month period has expired (e.g., due to an impending or pending legal dispute), deletion will not take place until the purpose for continued retention no longer applies.

Data may also be retained for a longer period if you have provided your consent (Art. 6(1)(a) GDPR) or if statutory retention obligations prevent deletion.

Inclusion in the applicant pool
If we do not offer you a position, there may be the option to include you in our applicant pool. If you are included, all documents and information from your application will be transferred to the applicant pool so that we can contact you in the event of suitable vacancies.

Inclusion in the applicant pool is based exclusively on your explicit consent (Art. 6(1)(a) GDPR). Providing consent is voluntary and is unrelated to the ongoing application process. The data subject may withdraw their consent at any time. In this case, the data will be irrevocably deleted from the applicant pool, provided there are no legal grounds for retention.

Data from the applicant pool will be irrevocably deleted no later than two years after consent is given.

9.2 Processing of personal data of customers, suppliers, and business partners

• To carry out pre-contractual measures or to initiate a sales contract or a business relationship. This processing is based on Article 6(1)(b) of the GDPR. You may object to the storage of your data at any time; in that case, we will delete your data unless statutory retention periods still apply.

• For the performance of a contract and for customer service. This processing is based on Article 6(1)(b) of the GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures. The data will be deleted upon termination of the business relationship, unless statutory retention periods still apply. Such periods arise, among other things, from tax regulations and can extend up to ten years.

9.3 Transfer of Data

We may transfer your personal data to other companies to the extent that this is permissible or necessary within the scope of the stated purposes and legal bases. Furthermore, personal data is processed on our behalf by external service providers, particularly in the fields of information technology and data processing, based on data processing agreements pursuant to Article 28 of the GDPR. Under no circumstances will your data be transferred outside the EU.

We also transfer customer data and purchase contract data to our affiliated companies strictly for specific purposes and only to the extent necessary. The transfer and processing of customers’ personal data within the ocono Group is carried out for internal administrative purposes. The legal basis for the processing of personal data in connection with the data transfer is Article 6(1)(f) of the GDPR, whereby our legitimate interest arises from the improvement of internal data exchange for the purpose of optimizing and simplifying administration within the Group.

9.4 Storage of Data

Your personal data will only be stored for as long as knowledge of the data is necessary for the purposes of the contractual relationship or the purposes for which it was collected, or as long as statutory or contractual retention requirements exist. Statutory retention periods arise, among other things, from social security and tax law regulations and can extend up to eight years for tax-relevant documents and records.

10. Our Social Media Presence

10.1 Data Processing by Social Networks

We maintain publicly accessible profiles on social networks. The specific social networks we use are listed below.

Social networks such as Facebook, X, etc., can generally analyze your user behavior comprehensively when you visit their website or a website with integrated social media content (e.g., “Like” buttons or advertising banners). Visiting our social media presences triggers numerous data processing operations relevant to data protection. Specifically:

If you are logged into your social media account and visit our social media page, the operator of the social media platform may associate this visit with your user account. However, your personal data may also be collected even if you are not logged in or do not have an account with the respective social media portal. In this case, data collection occurs, for example, via cookies stored on your device or by recording your IP address.

Using the data collected in this way, the operators of the social media platforms can create user profiles that store your preferences and interests. This allows interest-based advertising to be displayed to you both within and outside the respective social media platform. If you have an account with the respective social network, the interest-based advertising can be displayed on all devices on which you are logged in or have been logged in.

Please also note that we cannot track all processing activities on social media platforms. Depending on the provider, additional processing operations may therefore be carried out by the operators of the social media platforms. For details, please refer to the terms of use and privacy policies of the respective social media platforms.

Legal Basis
Our social media presence is intended to ensure the most comprehensive online presence possible. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR. The analysis processes initiated by the social networks may be based on different legal grounds, which must be specified by the operators of the social networks (e.g., consent within the meaning of Article 6(1)(a) of the GDPR).

Data Controller and Exercising Rights
When you visit one of our social media pages (e.g., Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered by that visit. You may generally exercise your rights (right of access, rectification, erasure, restriction of processing, data portability, and the right to lodge a complaint) both against us and against the operator of the respective social media portal (e.g., against Facebook).

Please note that, despite our joint responsibility with the social media portal operators, we do not have full control over the data processing operations of the social media portals. Our options depend largely on the corporate policy of the respective provider.

Retention Period
The data collected directly by us via our social media presence is deleted from our systems as soon as you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies. Stored cookies remain on your device until you delete them. Mandatory legal provisions—in particular retention periods—remain unaffected.

We have no influence over the storage period of your data that is stored by the operators of social networks for their own purposes. For details, please contact the operators of the social networks directly (e.g., in their privacy policy, see below).

Your Rights
You have the right at any time to receive information free of charge regarding the origin, recipients, and purpose of your stored personal data. You also have the right to object, the right to data portability, and the right to lodge a complaint with the competent supervisory authority. Furthermore, you may request the correction, blocking, deletion, and, under certain circumstances, the restriction of the processing of your personal data.

10. 2 Social Networks in Detail

Facebook
We have a profile on Facebook. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland (hereinafter “Meta”). According to Meta, the collected data is also transferred to the United States and other third countries.

We have entered into a joint processing agreement (Controller Addendum) with Meta. This agreement specifies which data processing operations we or Meta are responsible for when you visit our Facebook page. You can view this agreement at the following link: https://www.facebook.com/legal/terms/page_controller_addendum.

You can adjust your ad settings yourself in your user account. To do so, click on the following link and log in: https://www.facebook.com/settings?tab=ads.

Data transfers to the U.S. are based on the EU Commission’s Standard Contractual Clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381.

For details, please refer to Facebook’s Privacy Policy: https://www.facebook.com/about/privacy/.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the United States. Every company certified under the DPF commits to adhering to these data protection standards. For more information, please visit the provider’s website at the following link: https://www.dataprivacyframework.gov/participant/4452

LinkedIn
We have a profile on LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn uses advertising cookies.

If you wish to disable LinkedIn advertising cookies, please use the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Data transfers to the United States are based on the European Commission’s Standard Contractual Clauses. For more details, please visit: https://www.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs.

For details on how LinkedIn handles your personal data, please refer to LinkedIn’s Privacy Policy: https://www.linkedin.com/legal/privacy-policy.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the United States. Every company certified under the DPF commits to adhering to these data protection standards. For more information, please visit the provider’s website at the following link: https://www.dataprivacyframework.gov/participant/5448.

Status: 09.04.2026