We have drawn up this data protection declaration (version 16.02.2020-311153530) to explain to you, in accordance with the provisions of the basic data protection regulation (EU) 2016/679 what information we collect, how we use data and what decision-making options you have as a visitor to this website.
Unfortunately, it is in the nature of things that these explanations sound very technical, but we have tried to describe the most important things as simply and clearly as possible.
Our website uses HTTP cookies to store user-specific data.
What exactly are cookies?
Whenever you browse the Internet, use a browser. Well-known browsers include Chrome, Safari, Firefox, Internet Explorer, and Microsoft Edge. Most websites store small text files in your browser. These files are called cookies.
Cookies store certain user data from you, such as language or personal page settings. When you visit our site again, your browser will return the “user-related” information to our site. Thanks to cookies, our website knows who you are and offers you your usual default setting. In some browsers each cookie has its own file, in others, such as Firefox, all cookies are stored in a single file.
There are both first-party cookies and third-party cookies. First-party cookies are created directly from our site, third-party cookies are created by partner websites (e.g. Google Analytics). Each cookie must be assessed individually, as each cookie stores different data. The expiration time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, Trojan horses or other “pests”. Cookies also cannot access information from your PC.
For example, this is what cookie data might look like:
• Name: _ga
• Expiration time: 2 years
• Use: Differentiation of website visitors
• Example value: GA1.2.1326744211.152311153530
A browser should support the following minimum sizes:
• A cookie should be able to contain at least 4096 bytes
• At least 50 cookies should be stored per domain
• A total of at least 3000 cookies should be saved
What types of cookies are there?
You can distinguish between 4 types of cookies:
Absolutely necessary cookies
These cookies are necessary to ensure basic functions of the website. For example, you need these cookies when a user puts a product in the shopping cart, then continues to surf on other pages and later goes to checkout. These cookies do not delete the shopping cart, even if the user closes his browser window.
These cookies collect information about the user behavior and whether the user receives any error messages. In addition, these cookies also measure the loading time and behaviour of the website in different browsers.
These cookies improve the user experience. For example, you can save entered locations, font sizes, or form data.
These cookies are also called targeting cookies. They are used to provide the user with customized advertising. This can be very practical, but also very annoying.
Usually, when you visit a website for the first time, you are asked which of these types of cookies you would like to allow. And of course, this decision is also stored in a cookie.
How can I delete cookies?
If you want to determine which cookies have been stored in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:
If you do not want cookies, you can set up your browser to always inform you when a cookie is to be set. This allows you to decide whether or not to allow the cookie for each cookie. The procedure varies depending on the browser. It is best to search the manual in Google with the search term “Delete cookies Chrome” or “Disable cookies Chrome” in the case of a Chrome browser or exchange the word “Chrome” for the name of your browser, e.g. Edge, Firefox, Safari.
The so-called “cookie guidelines” have been in place since 2009. It states that the storage of cookies requires the consent of the website visitor (i.e. you). However, there are still very different reactions to these directives within the EU countries. In Germany, the cookie guidelines have not been transposed as national law. Instead, this directive was largely implemented in Section 15(3) of the Telemedia Act (TMG).
If you want to know more about cookies and don’t shy away from technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments of the Internet Engineering Task Force (IETF) called the HTTP State Management Mechanism.
Rights under the General Data Protection Regulation
According to the provisions of the GDPR, you are entitled in principle to the following rights:
• Right to correction (Article 16 GDPR)
• Right to erasure (“Right to be forgotten”) (Article 17 GDPR)
• Right to restrict processing (Article 18 GDPR)
• Right to notification – obligation to notify in connection with the rectification or deletion of personal data or the restriction of processing (Article 19 GDPR)
• Right to data portability (Article 20 GDPR)
• Right to object (Article 21 GDPR)
• The right not to be subject to a decision based solely on automated processing, including profiling (Article 22 GDPR)
If you believe that the processing of your data violates data protection law or your data protection claims have otherwise been violated in any way, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI).
Evaluation of visitor behaviour
You can find out more about the possibilities of contradicting this evaluation of the visit data in the following data protection declaration.
TLS encryption with https
We use https to transmit data in an eavesdropping-proof manner on the Internet (data protection through technical design Article 25 paragraph 1 GDPR). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission over the Internet, we can ensure the protection of confidential data. You can see the use of this security of data transmission at the small lock icon at the top left of the browser and the use of the scheme https (instead of http) as part of our Internet address.
We use the analysis tracking tool Google Analytics (GA) of the American company Google LLC (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) on our website. Google Analytics collects data about your actions on our website. For example, if you click on a link, this action is stored in a cookie and sent to Google Analytics. With the reports we receive from Google Analytics, we can better adapt our website and service to your needs. In the following we will go into more detail about the tracking tool and inform you in particular about what data is stored and how you can prevent this.
What is Google Analytics?
Google Analytics is a tracking tool that is used to analyze the traffic of our website. For Google Analytics to work, a tracking code is built into the code of our website. When you visit our website, this code records various actions that you perform on our website. As soon as you leave our website, this data is sent to the Google Analytics servers and stored there.
Google processes the data and we receive reports about your user behaviour. These may include, but are not many of the reports:
• Target group reports: We get to know our users better through target group reports and know more precisely who is interested in our service.
• Display reports: Ad reports make it easier for us to analyze and improve our online advertising.
• Acquisition Reports: Acquisition Reports give us helpful information on how we can inspire more people to our service.
• Behavioral Reports: Learn how you interact with our website. We can understand which way you are going on our site and which links you click on.
• Conversion Reports: Conversion is a process where you perform a desired action based on a marketing message. For example, if you become a buyer or newsletter subscriber from a pure website visitor. These reports help us learn more about how our marketing efforts get you. This is how we want to increase our conversion rate.
• Real-time reports: Here we always find out immediately what is happening on our website. For example, we see how many users are reading this text.
Why do we use Google Analytics on our website?
Our goal with this website is clear: We want to offer you the best possible service. The statistics and data from Google Analytics help us achieve this goal.
The statistically evaluated data show us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimize our site so that it is easier to find by interested people on Google. On the other hand, the data helps us to better understand you as a visitor. We therefore know very well what we need to improve on our website in order to provide you with the best possible service. The data also serves us to carry out our advertising and marketing measures more individually and cost-effectively. After all, it only makes sense to show our products and services to people who are interested in them.
What data is stored by Google Analytics?
Google Analytics uses a tracking code to create a random, unique ID that is associated with your browser cookie. This is how Google Analytics recognizes you as a new user. The next time you visit our site, you will be recognized as a “recurring” user. All collected data is stored together with this user ID. Thus, it is possible to evaluate pseudonymous user profiles in the first place.
Labels such as cookies and app instance IDs measure your interactions on our website. Interactions are all kinds of actions you perform on our website. If you also use other Google systems (such as a Google account), data generated via Google Analytics can be linked to third-party cookies. Google does not share Google Analytics data unless we, as the website operator, approve it. Exceptions may occur if required by law.
The following cookies are used by Google Analytics:
Purpose: By default, analytics.js uses the ga cookie to store the user ID. Basically, it is used to distinguish website visitors.
Expiration date: after 2 years
Purpose: The cookie is also used to distinguish website visitors
Expiration date: after 24 hours
Purpose: Used to lower the request rate. When Google Analytics is provided through the Google Tag Manager, this cookie is named dcgtm < property-id > .
Expiration date: after 1 minute
Value: no information
Purpose: The cookie has a token that can be used to retrieve a user ID from the AMP client ID service. Other possible values indicate a logoff, request, or error.
Expiration date: after 30 seconds up to one year
Purpose: This cookie allows you to track your behavior on the website and measure performance. The cookie is updated every time information is sent to Google Analytics.
Expiration date: after 2 years
Purpose of use: The cookie is displayed as gatgtagUA_ < property-id > used to throttle the request rate.
Expiration date: after 10 minutes
Purpose: This cookie is used to determine new sessions. It is updated every time new data or info is sent to Google Analytics.
Expiration date: after 30 minutes
Purpose: This cookie is used to set new sessions for returning visitors. This is a session cookie and is only stored until you close the browser again.
Expiration date: After the browser closes
Purpose: The cookie is used to identify the source of the number of visitors to our website. That is, the cookie stores where you came to our website. This may have been a different page or an advertisement.
Expiration date: after 6 months
Value: no indication
Purpose: The cookie is used to store user data. It is always updated when information is sent to Google Analytics.
Expiration date: after 2 years
Note: This list cannot claim to be complete, as Google also changes the choice of its cookies again and again.
Here we show you an overview of the most important data collected with Google Analytics:
Heatmaps: Google creates so-called heat maps. Heatmaps show exactly the areas you click on. This gives us information about where you are on our site.
Session duration: Google refers to the amount of time you spend on our site without leaving the site. If you were inactive for 20 minutes, the session ends automatically.
Bounce rate: There is talk of a bounce rate if you only view one page on our website and then leave our website again.
Account creation: When you create an account or place an order on our website, Google Analytics collects this data.
IP address: The IP address is only displayed in truncated form, so that a unique assignment is not possible.
Location: The IP address can be used to determine the country and your approximate location. This process is also called IP location determination.
Technical information: Technical information includes, but is not covered by your browser type, Internet service provider, or screen resolution.
Source of origin: Google Analytics or we are of course also interested in which website or which advertisements you came to our site.
Other data includes contact details, possible ratings, playing media (e.g. when you play a video through our site), sharing content via social media or adding to your favorites. The list does not claim to be complete and serves only as a general orientation of data storage by Google Analytics.
We use Google Maps from Google Inc. on our website. Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services in Europe. With Google Maps, we can better show you locations and adapt our service to your needs. By using Google Maps, data is transferred to Google and stored on google servers. Here we want to go into more detail about what Google Maps is, why we use this Google service, what data is stored and how you can prevent it.
What is Google Maps?
Google Maps is an internet map service provided by Google. With Google Maps, you can search for exact locations of cities, landmarks, accommodations or businesses online using a PC, tablet, or app. If companies are represented on Google My Business, more information about the company is displayed next to the location. In order to indicate the way to get there, map sections of a location can be integrated into a website using HTML code. Google Maps shows the earth’s surface as a road map or as an aerial or satellite image. Thanks to the Street View images and the high-quality satellite images, very accurate representations are possible.
Why do we use Google Maps on our website?
All our efforts on this site are aimed at providing you with a useful and meaningful time on our website. By integrating Google Maps, we can provide you with the most important information about various locations. You can see at a glance where we have our headquarters. The directions always show you the best or fastest way to us. You can access the route for routes by car, public transport, on foot or by bicycle. For us, providing Google Maps is part of our customer service.
What data is stored by Google Maps?
For Google Maps to offer its service in its entirety, the company must collect and store data from you. This includes, among other things, the search terms entered, your IP address and also the latitude or longitude coordinates. Use the route planner function to save the entered start address. However, this data storage happens on the websites of Google Maps. We can only inform you about this, but we cannot influence it. Since we have integrated Google Maps into our website, Google sets at least one cookie (name: NID) in your browser. This cookie stores data about your user behaviour. Google uses this data primarily to optimize its own services and to provide individual, personalized advertising for you.
The following cookie is set due to the integration of Google Maps in your browser:
Purpose of use: NID is used by Google to customize ads to suit your Google search. With the help of the cookie, Google “remembers” your most frequently entered searches or your previous interaction with ads. This way you always get tailored advertisements. The cookie contains a unique ID that Google uses to collect your personal settings for advertising purposes.
Expiration date: after 6 months
Note: We cannot guarantee completeness of the data stored. Especially when using cookies, changes can never be ruled out. In order to identify the cookie NID, a separate test page was created, where only Google Maps was included.
How long and where is the data stored?
Google has distributed your servers around the world. Most servers are located in America, so your data is mostly stored on American servers. Here you can read exactly where the Google data centers are located: https://www.google.com/about/datacenters/inside/locations/?hl=de
Your data is distributed on different physical disks. This has the advantage that the data can be retrieved more quickly and is better protected against manipulation. Every Google data center has appropriate emergency programs for your data. For example, if Google’s hardware fails or natural disasters paralyze servers, the risk of service interruption at Google remains low.
Google Analytics has set a retention period of 26 months for your user data. Then your user data will be deleted. However, we have the option to choose the retention period of user data ourselves. We have five variants at our disposal:
• Deletion after 14 months
• Deletion after 26 months
• Deletion after 38 months
• Deletion after 50 months
• No automatic deletion
If the specified time period has expired, the data is deleted once a month. This retention period applies to your data, which are linked to cookies, user recognition and advertising IDs (e.g. cookies of the DoubleClick domain). Report results are based on aggregated data and are stored independently of user data. Aggregated data is a merging of individual data into a larger unit.
How can I delete my data or prevent data storage?
If you want to disable, delete or manage cookies (regardless of Google Analytics), there is a separate guide for each browser:
Chrome: Delete, enable, and manage cookies in Chrome
Safari: Manage cookies and website data with Safari
Firefox: Delete cookies to remove data that websites have placed on your computer
Internet Explorer: Deleting and Managing Cookies
Microsoft Edge: Deleting and Managing Cookies
Google Analytics is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. More information can be found on https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&tid=311153530. We hope we have been able to introduce you to the most important information about the data processing of Google Analytics. If you want to learn more about the tracking service, we recommend these two links: https://www.google.com/analytics/terms/de.html and https://support.google.com/analytics/answer/6004245?hl=de.
Google Analytics IP Anonymization
We have implemented the IP address anonymization of Google Analytics on this website. This feature was developed by Google to enable this website to comply with the applicable data protection regulations and recommendations of local data protection authorities when they prohibit the storage of the full IP address. The anonymization or masking of the IP takes place as soon as the IP addresses arrive in the Google Analytics data collection network and before the data is stored or processed.
For more information on IP anonymization, see https://support.google.com/analytics/answer/2763052?hl=de.
Google Analytics Reports on Demographics and Interests
We’ve turned on the ad reporting features in Google Analytics. The reports on demographic characteristics and interests contain information on age, gender and interests. This allows us to get a better picture of our users without being able to assign this data to individuals. Learn more about the advertising features on
You can stop using your Google Account’s activities and information under “Advertising Settings” on https://adssettings.google.com/authenticated by checkbox.
Automatic data storage
When you visit websites today, certain information is automatically created and stored, including on this website.
If you are visiting our website as you are now, our web server (computer on which this website is stored) automatically stores data such as
• the address (URL) of the website accessed
• Browser and browser version
• the operating system used
• the address (URL) of the previously visited page (Referrer URL)
• the host name and IP address of the device from which it is accessed
• Date and time
files (web server log files).
Typically, Web server log files are stored for two weeks and then automatically deleted. We do not share this data, but we cannot rule out the possibility that this data will be viewed in the presence of unlawful conduct.
Source: Created with AdSimple’s Privacy Generator in cooperation with justmed.de