Privacy Policy

With the following data protection declaration, we would like to explain to you which types of your personal data (hereinafter also referred to as “data”) we process for which purposes and to what extent. The data protection declaration applies to all processing of personal data carried out by us, both as part of the provision of our services and in particular on our websites, in mobile applications and within external online presences, such as our social media proles (hereinafter collectively referred to as “online offer”).

The terms used are not gender specific.

Status: 22. August 2024

Responsible

Steve Zabka
Kopernikusstraße 60
01129 Dresden
Germany

Phone: +49 160 6975372
E-Mail: info@cryinkfly.de

Legal Notice: https://cryinkfly.com/legal-notice

Overview of processing

The following overview summarizes the types of data processed and the purposes of their processing and refers to the data
subjects.

  • Inventory data.
  • Payment Data.
  • Contact details.
  • Content Data.
  • Contract data.
  • Usage Data.
  • Meta/Communication Data.
  • Contact information (Facebook).
  • Event Data (Facebook).

Categories of data subjects

  • Customers.
  • Communication partners.
  • Users.
  • Depicted people.

Purposes of processing

  • Provision of contractual services and customer service.
  • Contact Requests and Communication.
  • Safety measures.
  • Direct marketing.
  • range measurement.
  • Tracking.
  • Ofce and organizational procedures.
  • Conversion measurement.
  • Target group building.
  • Afliate Tracking.
  • Management and response to inquiries.
  • Feedback.
  • Marketing.
  • Proles with user-related information.
  • Target group building.
  • Provision of our online offer and user-friendliness.
  • Information technology infrastructure.

Relevant legal bases

Below you will find an overview of the legal bases of the GDPR, on the basis of which we process personal data. Please note that, in addition to the provisions of the GDPR, national data protection regulations may apply in your or our country of residence or domicile. If more specific legal bases are relevant in individual cases, we will inform you of them in the data protection declaration

  • Consent (Art. 6 Para. 1 S. 1 lit. a) GDPR) – The data subject has given their consent to the processing of their personal data for a specific purpose or several specific purposes.
  • Fulfillment of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR) – The processing is necessary for the fulfillment of a contract to which the data subject is a party, or for the implementation of pre-contractual measures that are required at the request of the data subject take place.
  • Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR) – Processing is necessary to safeguard the legitimate interests of the person responsible or a third party, unless the interests or fundamental rights and freedoms of the data subject, which protect personal Data require prevail.

In addition to the data protection regulations of the General Data Protection Regulation, national data protection regulations apply in Germany. This includes in particular the law on the protection against misuse of personal data in data processing (Federal Data Protection Act – BDSG). In particular, the BDSG contains special regulations on the right to information, the right to erasure, the right to object, the processing of special categories of personal data, processing for other purposes and transmission as well as automated decision-making in individual cases including proling. Furthermore, it regulates data processing for the purposes of the employment relationship (§ 26 BDSG), in particular with regard to the establishment, implementation or termination of employment relationships and the consent of employees. Furthermore, state data protection laws of the individual federal states may apply.

Safety measures

We take appropriate technical and organizational measures in accordance with legal requirements, considering the state of the art, implementation costs, the nature, scope, circumstances, and purposes of the processing, as well as the varying probabilities and severity of risks to the rights and freedoms of natural persons, to ensure a level of protection appropriate to the risk.

These measures include, in particular, securing the confidentiality, integrity, and availability of data by controlling physical and electronic access to the data, as well as access, input, transmission, availability safeguards, and separation of the data. Additionally, we have established procedures to enable the exercise of data subject rights, the deletion of data, and responses to data breaches. Furthermore, we consider the protection of personal data during the development or selection of hardware, software, and procedures, in line with the principle of data protection through technology design and privacy-friendly default settings.

TLS Encryption (https): To protect your data transmitted through our online services, we use TLS encryption. You can recognize such encrypted connections by the “https://” prefix in your browser’s address bar.

Transmission of Personal Data

As part of our processing of personal data, it may occur that the data is transmitted to other entities, companies, legally independent organizational units, or individuals, or disclosed to them. Recipients of such data may include service providers tasked with IT operations or providers of services and content integrated into a website. In such cases, we comply with legal requirements and, in particular, enter into contracts or agreements with the recipients of your data to ensure the protection of your data.

Data Processing in Third Countries

If we process data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)), or if processing takes place as part of the use of third-party services or the disclosure or transmission of data to other persons, entities, or companies, this occurs only in compliance with legal requirements. Subject to explicit consent or transmission required by contract or law, we process or allow data to be processed only in third countries with an officially recognized level of data protection, based on contractual obligations through so-called standard contractual clauses issued by the EU Commission, certifications, or binding internal data protection rules (Articles 44 to 49 of the GDPR, EU Commission information page: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de).

Deletion of Data

Data we process is deleted in accordance with legal requirements as soon as the consents permitting its processing are withdrawn or other permissions lapse (e.g., when the purpose for processing the data no longer applies or the data is no longer necessary for that purpose). If the data is not deleted because it is required for other legally permissible purposes, its processing is restricted to those purposes. This means the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax reasons or whose storage is necessary to assert, exercise, or defend legal claims or protect the rights of another natural or legal person.

As part of our privacy notices, we may provide users with additional information regarding the deletion and retention of data specific to the respective processing activities.

Use of Cookies

Cookies are text files that contain data from visited websites or domains and are stored by a browser on the user’s computer. A cookie primarily serves to store information about a user during or after their visit to an online offering. Stored data may include, for example, language settings on a website, login status, a shopping cart, or the point at which a video was watched. The term “cookies” also includes other technologies that perform the same functions as cookies (e.g., when user information is stored using pseudonymous online identifiers, also referred to as “user IDs”).

The following types and functions of cookies are distinguished:

  • Temporary Cookies (also known as session cookies): Temporary cookies are deleted at the latest after a user leaves an online offering and closes their browser.
  • Persistent Cookies: Persistent cookies remain stored even after the browser is closed. For example, the login status can be saved or preferred content displayed directly when the user revisits a website. Similarly, user interests used for reach measurement or marketing purposes can be stored in such a cookie.
  • First-Party Cookies: These cookies are set by us directly.
  • Third-Party Cookies: These cookies are primarily used by advertisers (so-called third parties) to process user information.
  • Necessary (also referred to as essential or strictly necessary) Cookies: Some cookies are essential for the operation of a website (e.g., to save logins or other user inputs, or for security reasons).
  • Statistics, Marketing, and Personalization Cookies: Cookies are often used for reach measurement or to save user interests or behavior (e.g., viewing specific content, using features) in user profiles on individual websites. Such profiles serve to show users content that matches their potential interests. This process is also referred to as “tracking,” i.e., tracking users’ potential interests. If we use cookies or “tracking” technologies, we will inform you separately in our privacy policy or when obtaining your consent.

Information on Legal Bases: The legal basis on which we process your personal data using cookies depends on whether we ask for your consent. If you consent to the use of cookies, the legal basis for processing your data is your declared consent. Otherwise, data processed using cookies is based on our legitimate interests (e.g., in the economic operation and improvement of our online offering) or is necessary to fulfill our contractual obligations.

Storage Duration: Unless we explicitly inform you about the storage duration of persistent cookies (e.g., as part of a so-called cookie opt-in), please assume that the storage duration may be up to two years.

General Information on Revocation and Objection (Opt-Out): Depending on whether the processing is based on consent or legal permission, you have the option at any time to revoke a given consent or object to the processing of your data using cookie technologies (collectively referred to as “opt-out”). You can express your objection by adjusting your browser settings, for example, by disabling the use of cookies (although this may limit the functionality of our online offering). Objections to the use of cookies for online marketing purposes can also be declared via various services, especially in the case of tracking, through the websites https://optout.aboutads.info and https://www.youronlinechoices.com. Additionally, you can find further objection options in the information provided about the services and cookies used.

  • Types of Data Processed: Meta/communication data (e.g., device information, IP addresses).
  • Affected Individuals: Users (e.g., website visitors, users of online services).
  • Purpose of Processing: Provision of our online offering and user-friendliness.
  • Legal Basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR).

Provision of the Online Offering and Web Hosting

To provide our online offering securely and efficiently, we use the services of one or more web hosting providers, from whose servers (or servers managed by them) the online offering can be accessed. For these purposes, we may use infrastructure and platform services, computing capacity, storage space, database services, security services, and technical maintenance services. The data processed as part of the hosting services may include all information related to the users of our online offering, which arises in the context of usage and communication. This regularly includes IP addresses, which are necessary to deliver the content of online offerings to browsers, and all entries made within our online offering or on websites.

  • Types of data processed: Usage data (e.g., visited websites, interest in content, access times); meta/communication data (e.g., device information, IP addresses).
  • Affected persons: Users (e.g., website visitors, users of online services).
  • Purposes of processing: Provision of our online offering and user-friendliness; IT infrastructure (operation and provision of information systems and technical devices such as computers, servers, etc.); security measures.
  • Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR).

Further notes on processing activities, procedures, and services:

  • Collection of access data and log files: We (or our web hosting provider) collect data on every access to the server (so-called server log files). These server log files may include the address and name of the accessed web pages and files, the date and time of access, the amount of data transferred, a message indicating successful retrieval, the browser type and version, the user’s operating system, the referrer URL (the previously visited page), and, as a rule, IP addresses and the requesting provider. The server log files can be used for security purposes, e.g., to avoid server overload (particularly in the case of abusive attacks such as DDoS attacks) and to ensure server utilization and stability. Deletion of data: Log file information is stored for a maximum of 14 days and is then deleted or anonymized. Data that requires further retention for evidentiary purposes is exempt from deletion until the respective incident is finally resolved.
  • netcup GmbH: Services in the field of IT infrastructure provision and related services (e.g., storage space and/or computing capacity); Service provider: netcup GmbH, Daimlerstraße 25, 76185 Karlsruhe, Germany; Website: https://www.netcup.de; Privacy Policy: https://www.netcup.de/kontakt/datenschutzerklaerung.php; Data Processing Agreement: We have entered into a data processing agreement (DPA) with the provider mentioned above. This is a legally required contract that ensures that they process the personal data of our website visitors solely in accordance with our instructions and in compliance with the GDPR.

Contact and request management

When contacting us (e.g., via contact form, email, phone, or social media) or as part of existing user and business relationships, the information provided by the inquiring persons is processed to the extent necessary to respond to contact inquiries and any requested actions.

  • Types of Data Processed: Contact data (e.g., email addresses, phone numbers); content data (e.g., entries in online forms); usage data (e.g., visited websites, interest in content, access times); meta/communication data (e.g., device information, IP addresses).
  • Affected Persons: Communication partners.
  • Purposes of Processing: Handling contact inquiries and communication; managing and responding to inquiries; collecting feedback (e.g., via online forms); providing our online offering and ensuring user-friendliness.
  • Legal Basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR); Fulllment of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR).

Further Notes on Processing, Procedures, and Services:

  • Contact Form: When users contact us via our contact form, email, or other communication channels, we process the data provided in connection with the inquiry to address the matter communicated;
    Legal Basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR); Fulllment of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR).

Web Analysis, Monitoring and Optimization

Web analysis (also referred to as “reach measurement”) is used to evaluate visitor traffic on our online offerings and may include pseudonymous data about visitors’ behavior, interests, or demographic information, such as age or gender. With the help of reach measurement, we can identify, for example, the times at which our online offering, its features, or its content are most frequently used or encourage reuse. Likewise, we can determine which areas need optimization.

In addition to web analysis, we may also use testing methods to, for instance, test and optimize different versions of our online offerings or their components.

Unless otherwise stated below, profiles—i.e., data grouped into a usage process—may be created for these purposes, and information may be stored in a browser or on a device and retrieved from it. The collected information primarily includes visited websites, utilized elements, and technical data such as the browser and computer system used, as well as usage times. If users have agreed to the collection of their location data by us or the providers of services we use, location data may also be processed.

Users’ IP addresses are also stored. However, we use an IP masking method (i.e., pseudonymization by truncating the IP address) to protect users. In general, during web analysis, A/B testing, and optimization, no clear user data (such as email addresses or names) is stored, only pseudonyms. This means that neither we nor the providers of the software we use know the actual identity of the users but only the information stored in their profiles for the purposes of the respective processes.

  • Types of data processed: Usage data (e.g., visited websites, interest in content, access times); meta/communication data (e.g., device information, IP addresses).
  • Affected individuals: Users (e.g., website visitors, users of online services).
  • Purposes of processing: Reach measurement (e.g., access statistics, identification of returning visitors); profiles with user-related information (creation of user profiles); provision of our online offerings and user-friendliness.
  • Security measures: IP masking (pseudonymization of IP addresses).
  • Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR); Consent (Art. 6 Para. 1 S. 1 lit. a) GDPR).

Additional information on processing methods, procedures, and services:

  • Statify: This website uses the web analysis service Statify to analyze and regularly improve the use of our website. The legal basis for using Statify is Art. 6 Para. 1 S. 1 lit. f GDPR. Statify exclusively counts page views and not visitors. The plugin does not process or store personal data such as IP addresses. The plugin is an open-source project. Further information on data protection from the third-party provider can be found at https://de.wordpress.org/plugins/statify.

Affiliate Programs and Affiliate Links

In our online offerings, we include so-called affiliate links or other references (which may include search forms, widgets, or discount codes) to the offers and services of third-party providers (collectively referred to as “affiliate links”). If users follow these affiliate links or subsequently make use of the offers, we may receive a commission or other benefits from these third-party providers (collectively referred to as “commission”).

To track whether users have taken advantage of an offer via an affiliate link provided by us, it is necessary for the respective third-party providers to know that the users followed an affiliate link embedded in our online offerings. The assignment of affiliate links to the respective transactions or other actions (e.g., purchases) serves solely the purpose of commission settlement and is removed as soon as it is no longer required for this purpose.

For the purposes of the aforementioned assignment of affiliate links, the affiliate links may be supplemented with certain values that are part of the link or can otherwise be stored, for example, in a cookie. These values may include, in particular, the referring website (referrer), the time, an online identifier of the website operator where the affiliate link was located, an online identifier of the respective offer, the type of link used, the type of offer, and an online identifier of the user.

Notes on Legal Basis: If we request the users’ consent for the use of third-party providers, the legal basis for the processing of data is the consent provided. Otherwise, user data is processed based on our legitimate interests (i.e., interest in efficient, economical, and user-friendly services). In this context, we also refer you to the information on the use of cookies in this privacy policy.

  • Types of Data Processed: Contractual data (e.g., subject of the contract, duration, customer category); usage data (e.g., visited websites, interest in content, access times); meta/communication data (e.g., device information, IP addresses).
  • Affected Persons: Users (e.g., website visitors, users of online services).
  • Purpose of Processing: Affiliate tracking.
  • Legal Basis: Consent (Art. 6 Para. 1 S. 1 lit. a) GDPR); Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR).

Payment Methods

As part of contractual and other legal relationships, due to legal obligations, or based on our legitimate interests, we offer affected individuals efficient and secure payment options. To this end, we work with banks and credit institutions as well as other service providers (collectively referred to as “payment service providers”). The data processed by the payment service providers includes account data, such as names and addresses, bank details, such as account or credit card numbers, passwords, TANs, and checksums, as well as contract, transaction amount, and recipient-related information. This information is necessary to carry out transactions. The entered data is processed exclusively by the payment service providers and stored with them. This means that we do not receive any account or credit card-related information, but only information regarding payment confirmations or rejections. In some cases, payment service providers may transmit the data to credit agencies. This transmission is intended for identity and creditworthiness verification. For further details, we refer to the general terms and conditions (GTC) and the privacy policies of the respective payment service providers. The terms and privacy policies of the respective payment service providers, available on their websites or transaction applications, apply to payment transactions. We also refer to these for additional information and for exercising rights of withdrawal, information access, and other rights of affected individuals.

  • Types of Data Processed: Account Data: e.g., names, addresses; Payment Data: e.g., banking details, invoices, payment history; Contract Data: e.g., contract details, duration, customer categories; Usage Data: e.g., visited websites, interest in content, access times; Meta/Communication Data: e.g., device information, IP addresses.
  • Affected Individuals: Customers; Interested parties.
  • Purposes of Processing: Provision of contractual services and customer support.
  • Legal basis: performance of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b. GDPR); Legitimate interests (Art. 6 Para. 1 S. 1 lit. f. GDPR).

Further Notes on Processing Procedures, Methods, and Services:

Presence in social networks (social media)

We maintain online presences within social networks and process user data in this context to communicate with users active there or to provide information about us.

We note that user data may be processed outside the European Union. This may pose risks for users, such as making it more difficult to enforce their rights. Additionally, user data within social networks is typically processed for market research and advertising purposes. For example, user profiles can be created based on usage behavior and interests. These profiles may be used to display advertisements inside and outside the networks that are presumably aligned with users’ interests. For these purposes, cookies are usually stored on users’ devices, capturing usage behavior and interests. Furthermore, data may also be stored in user profiles independently of the devices used by users (especially if users are members of the respective platforms and logged into them).

For detailed information on specific processing methods and options to object (opt-out), we refer to the privacy policies and information provided by the operators of the respective networks.

Even in the case of inquiries or asserting data subject rights, we recommend that these be most effectively addressed directly to the providers. Only the providers have access to user data and can take direct action or provide information. However, if you require assistance, you can contact us.

  • Processed Data Types: Contact Data: e.g., email addresses, phone numbers; Content Data: e.g., entries in online forms; Usage Data: e.g., visited websites, content interests, access times; Meta/Communication Data: e.g., device information, IP addresses.
  • Affected Individuals: Users (e.g., website visitors, online service users).
  • Purposes of Processing: Responding to inquiries and communication; Feedback collection (e.g., via online forms); Marketing.
  • Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR).

Additional Notes on Processing Methods, Procedures, and Services:

  • Facebook-Pages: Profiles on the social network Facebook – Together with Meta Platforms Ireland Limited, we are jointly responsible for collecting (but not further processing) data from visitors to our Facebook page (so-called “Fanpage”). This includes information about the types of content users view or interact with, actions they perform (see “Things you and others do and provide” in Facebook’s Data Policy: https://www.facebook.com/policy), as well as device information (e.g., IP addresses, operating systems, browser types, language settings, cookie data; see “Device Information” in Facebook’s Data Policy: https://www.facebook.com/policy). As explained in Facebook’s Data Policy under “How do we use this information?”, Facebook also collects and uses information to provide analytics services (“Page Insights”) to page operators, helping them understand how people interact with their pages and associated content. We have a special agreement with Facebook (“Page Insights Controller Addendum”: https://www.facebook.com/legal/terms/page_controller_addendum) that specifies the security measures Facebook must observe and states Facebook’s commitment to fulfill data subject rights (e.g., users may request access to or deletion of their data directly from Facebook). User rights (especially access, deletion, objection, and complaints to regulatory authorities) are not limited by this agreement. Further details can be found in the “Page Insights Information” (https://www.facebook.com/legal/terms/information_about_page_insights_data). Service Provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR); Website: https://www.facebook.com; Privacy Policy: https://www.facebook.com/about/privacy; Standard Contractual Clauses: https://www.facebook.com/legal/EU_data_transfer_addendum; More information: Joint Controllership Agreement: https://www.facebook.com/legal/terms/information_about_page_insights_data. Joint controllership is limited to the collection and transmission of data to Meta Platforms Ireland Limited, an EU based company. Further processing of the data is the sole responsibility of Meta Platforms Ireland Limited, which in particular concerns the transmission of the data to the parent company Meta Platforms, Inc. in the USA (on the basis of the agreement between Meta Platforms Ireland Limited and Meta Platforms, Inc. concluded standard contractual clauses).
  • Facebook Groups: Interest groups on the Facebook platform – We use Facebook’s “Groups” feature to create interest groups where Facebook users can interact with each other or with us and exchange information. In doing so, we process personal data of group users as necessary for group use and moderation. Our group policies may provide additional rules and information regarding the use of each group. This data includes names, published or privately shared content, membership status, group activities (e.g., joining or leaving), and timestamps related to these activities. Additionally, Facebook processes user data, including content interactions and device information (see Facebook’s Data Policy for details). Facebook also provides analytics (“Insights”) to group operators to help them understand group interactions. Service Provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR); Website: https://www.facebook.com; Privacy Policy: https://www.facebook.com/about/privacy.
  • Instagram: Social network; Service Provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR); Website: https://www.instagram.com; Privacy Policy: https://instagram.com/about/legal/privacy.
  • YouTube: Social network and video platform; Service Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA; Privacy Policy: https://policies.google.com/privacy; Possibility of objection (opt-out): https://adssettings.google.com/authenticated.
  • GitHub: Code hosting platform; Service Provider: GitHub, Inc., 88 Colin P. Kelly Jr. Street, San Francisco, CA 94107; Website: https://github.com; Privacy Policy: https://docs.github.com/en/github/site-policy/github-privacy-statement.

Plugins and embedded functions and content

We integrate functional and content elements into our online offering that are retrieved from the servers of their respective providers (hereinafter referred to as “third-party providers”). These can include graphics, videos, or maps (hereinafter uniformly referred to as “content”).

The integration of such content always requires that the third-party providers process the users’ IP addresses, as they cannot send the content to their browsers without it. The IP address is therefore necessary for the presentation of this content or functionality. We strive to use only content whose respective providers use the IP address solely for delivering the content. Third-party providers may also use pixel tags (invisible graphics, also referred to as “web beacons”) for statistical or marketing purposes. Pixel tags allow the evaluation of information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the users’ devices and include technical information about the browser and operating system, referring websites, visit time, as well as other details regarding the use of our online offering. These may also be linked with information from other sources.

  • Types of data processed: Usage data (e.g. websites visited, interest in content, access times); Meta/communication data (e.g. device information, IP addresses); Contact information (e.g. email, phone numbers); Content data (e.g. entries in online forms).
  • Affected persons: Users (e.g. website visitors, users of online services).
  • Purposes of processing: Provision of our online offer and user-friendliness; Feedback (e.g. collecting feedback via online form).
  • Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR).

Further information on processing processes, procedures and services:

  • Shariff: We use the privacy-safe “Shariff” buttons. “Shariff” was developed to provide more privacy on the web and to replace the usual “share” buttons on social networks. It is not the user’s browser that establishes a connection with the server of the respective social media platform, but rather the server on which this online offer is located and queries the number of likes, for example. The user remains anonymous. You can nd more information on the Shariff project from the developers of the c’t magazine: https://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html; Service provider: Heise Medien GmbH & Co. KG, Karl-Wiechert-Allee 10, 30625 Hanover, Germany; Website: https://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html; Data protection declaration: https://www.heise.de/Datenschutzerklaerung-der-Heise-Medien-GmbH-Co-KG-4860.html.
  • Google Web Fonts: In order to display the content of our website correctly and graphically appealing across browsers, we use Google Fonts, a script or font library from Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043 USA, (Google). The provider of Google services on the territory of the European Union and Switzerland is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (Google). You can nd more information about Google Fonts at https://fonts.google.com. The Google Fonts are installed locally on our web space and therefore there is no connection to the Google servers!
  • Retrieval of WordPress emojis and smilies: Retrieval of WordPress emojis and smilies from an external server (Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, USA) has been disabled! Even after switching off (deactivating), emojis and smilies can be displayed by the current browsers 🙂 – this function takes place within the technology of your browser and has nothing to do with WordPress, but with the interpretation of colon : hyphen – close bracket ).

Change and update of the privacy policy

We kindly ask you to regularly review the contents of our Privacy Policy. We update the Privacy Policy whenever changes to our data processing activities make this necessary. We will inform you if any changes require your involvement (e.g., consent) or another form of individual notification.

If we provide addresses and contact information for companies and organizations in this Privacy Policy, please note that these addresses may change over time. Therefore, we kindly ask you to verify the information before reaching out.

Rights of data subjects

As a data subject, you have various rights under the GDPR, which result in particular from Art. 15 to 21 GDPR:

  • Right to Object: You have the right to object at any time, for reasons related to your specific situation, to the processing of personal data concerning you, which is carried out based on Article 6(1)(e) or (f) of the GDPR; this also applies to profiling based on these provisions. If personal data concerning you is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing purposes; this also applies to profiling insofar as it is related to such direct marketing.
  • Right to Withdraw Consent: You have the right to withdraw consent that you have previously given at any time.
  • Right of Access: You have the right to request confirmation as to whether data concerning you is being processed, and to access such data along with further information and a copy of the data in accordance with legal requirements.
  • Right to Rectification: You have the right, in accordance with legal requirements, to request the completion of data concerning you or the rectification of inaccurate data concerning you.
  • Right to Deletion and Restriction of Processing: You have the right, in accordance with legal requirements, to request that data concerning you be deleted immediately, or alternatively, to request a restriction on the processing of such data in accordance with legal requirements.
  • Right to Data Portability: You have the right, in accordance with legal requirements, to receive the data concerning you that you have provided to us in a structured, commonly used, and machine-readable format, or to request the transfer of this data to another controller.
  • Right to Lodge a Complaint with a Supervisory Authority: In accordance with legal requirements and without prejudice to any other administrative or judicial remedy, you also have the right to lodge a complaint with a data protection supervisory authority, especially the supervisory authority in the member state where you usually reside, where you work, or where the alleged infringement occurred, if you believe that the processing of personal data concerning you is in violation of the GDPR.

Definitions of Terms

In this section, you will find an overview of the terms used in this privacy policy. Many of the terms are derived from the law and are primarily defined in Article 4 of the GDPR. The legal definitions are binding. The following explanations are primarily intended to aid understanding. The terms are sorted alphabetically.

  • Affiliate Tracking: In affiliate tracking, links that direct users from referring websites to websites offering products or other services are logged. Operators of the referring websites may receive a commission if users follow these so-called affiliate links and then take advantage of the offers (e.g., purchasing goods or using services). To enable this, it is necessary for providers to track whether users, interested in specific offers, later follow through with those offers as prompted by the affiliate links. Therefore, affiliate links need to be supplemented with specific values that become part of the link or are stored elsewhere, such as in a cookie. These values include, in particular, the referring website (referrer), the time, an online ID of the website operator where the affiliate link was located, an online ID of the specific offer, an online ID of the user, and tracking-specific values like advertising ID, partner ID, and categorization.
  • Conversion Measurement: Conversion measurement (also referred to as “visit action evaluation”) is a method used to determine the effectiveness of marketing actions. Typically, a cookie is stored on users’ devices within the websites where marketing activities take place and then retrieved on the target website. This allows us to track, for example, whether the ads we place on other websites have been successful.
  • Personal Data: “Personal data” refers to all information relating to an identified or identifiable natural person (hereafter referred to as “data subject”); an identifiable person is one who can be identified, directly or indirectly, particularly by reference to an identifier such as a name, identification number, location data, online identifier (e.g., cookie), or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.
  • Profiles with User-Related Information: The processing of “profiles with user-related information,” or simply “profiles,” involves any automated processing of personal data that uses this data to analyze, assess, or predict specific personal aspects relating to a natural person (depending on the type of profiling, this can include information related to demographics, behavior, and interests, such as interactions with websites and their content, etc.). For profiling purposes, cookies and web beacons are often used.
  • Reach Measurement: Reach measurement (also known as web analytics) is used to evaluate the visitor flow of an online offering and can include analyzing visitors’ behavior or interest in specific information, such as the content of websites. Using reach analysis, website owners can, for example, determine when visitors visit their website and which content they are interested in. This helps in adapting the website’s content to meet the visitors’ needs. For reach analysis, pseudonymous cookies and web beacons are often used to recognize returning visitors and thus obtain more accurate analyses of how an online offering is used.
  • Tracking: “Tracking” refers to the ability to follow a user’s behavior across multiple online offerings. Typically, behavioral and interest-related information regarding the online offerings used is stored in cookies or on the servers of the providers of the tracking technologies (so-called profiling). This information may then be used, for example, to display ads to users that are likely to match their interests.
  • Data Controller: The “data controller” refers to the natural or legal person, authority, organization, or other body that determines, alone or jointly with others, the purposes and means of processing personal data.
  • Processing: “Processing” refers to any operation or set of operations performed on personal data, whether or not by automated means. The term is broad and includes virtually every interaction with data, such as collecting, evaluating, storing, transmitting, or deleting.
  • Audience Targeting: Audience targeting (also referred to as “custom audiences”) refers to the process of defining target groups for advertising purposes, such as displaying ads. For example, if a user shows interest in certain products or topics online, it can be inferred that this user may be interested in ads for similar products or for the online store where they viewed those products. “Lookalike Audiences” refers to a situation where content deemed suitable is shown to users whose profiles or interests likely match those of the original target group. To form custom and lookalike audiences, cookies and web beacons are commonly used.

Switch Language to:

English
German

Note on Language Use: The terms and job titles used in my texts, which are often in the masculine form, are intended to include female, male, and gender-neutral individuals. The use of the non-gendered form is solely for readability and is not meant to discriminate or exclude anyone.

Legal Notice
Privacy Policy
Contact

Sponsors & Partners:

© 2020–2024 Cryinkfly | All Rights Reserved.