The controller as defined in Art. 4(7) of the General Data Protection Regulation (GDPR) is MY ESEL GmbH. Please refer to our legal notice (Imprint) for details.
The scope and type of collection and use of your personal data depends on whether you visit our website merely to access information or make use of any services we may offer.
If we use additional (IT) service providers for individual functions of our offering, or if we intend to use your data for advertising purposes, we will inform you in detail below about the respective processes (all data processing activities). We also state the specified criteria for the storage period and the applicable legal basis for the data processing.
When you use our website for informational purposes, we only collect the personal data that your browser automatically transmits to us, such as:
- IP address
- Date and time of the request
- Time zone difference to Greenwich Mean Time (GMT)
- Content of the request (specific page)
- Amount of data transferred in each case and the access status (file transferred, file not found, etc.)
- Website from which the request originates
- Browser type, version, and language
- Operating system and its interface
- Language and version of your browser
Storage period:
The storage period for this data (logs) is 40 days.
Legal basis for processing:
The above data is technically necessary to display our website to you and to ensure stability and security, pursuant to Art. 6(1)(f) GDPR.
We differentiate email communication with our customers into several areas. In addition to the classic newsletter, there are other purposes for processing your data, about which we would like to inform you below.
Newsletter
We use Mailchimp and, following a recent change, Sendinblue for sending the newsletter and measuring its success. In order for you to receive our newsletter regularly, we require your consent under data protection law. In this context, we process your email address to which the newsletter is to be sent and your name, so that we can address you personally. For registration, we use the so-called double opt-in procedure. This means that we will only send you the newsletter once you have confirmed your registration via a confirmation email sent to you for this purpose by clicking the link contained in it. This is intended to ensure that only you can sign up for the newsletter using the email address provided. You must confirm within 30 days of receiving the confirmation email, otherwise your newsletter registration will be automatically deleted.
Withdrawal of your consent: You can unsubscribe from a newsletter you have subscribed to at any time, for example by clicking the relevant link at the end of the newsletter or by sending an email to office@my-esel.com
Newsletter performance measurement: Please note that we evaluate your user behavior when sending the newsletter. For this evaluation, the emails sent contain so-called web beacons or tracking pixels. These are one-pixel image files that are stored on our websites.
The evaluation is carried out anonymously for statistical purposes and pseudonymized (outbound ID) for the creation of personalized advertising.
Commissioned service providers:
Sendinblue, Köpenicker Str. 126, 10179 Berlin Further information on data protection at Sendinblue can be found at the following addresses: https://de.sendinblue.com/datenschutz-uebersicht/ https://de.sendinblue.com/legal/privacypolicy/ A data processing agreement (DPA) has been concluded with Sendinblue.
Mailchimp, by The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA Your personal data is processed on the basis of your consent pursuant to Art. 6(1)(a) GDPR.
Mailchimp processes data in the USA. Mailchimp is certified under the EU-US Privacy Shield, which ensures compliance with an adequate level of data protection. Further information about Mailchimp and data protection can be found in Mailchimp’s privacy policy: https://mailchimp.com/legal/privacy/.
Storage period:
If you do not confirm your registration within 30 days, your information will be blocked and automatically deleted after a further 30 days. After successful registration, your data will be stored for as long as you remain subscribed to the newsletter.
Legal basis for processing: The newsletter is sent on the basis of your personal consent pursuant to Art. 6(1)(a) GDPR.
We use cookies on our websites. Cookies are small text files that are sent by our web server to your browser during your visit to our websites and stored by your browser on your device for later retrieval. They are used to make the website as a whole more user-friendly and effective. Detailed information can be found in our Cookie Policy and in our cookie consent manager, which you can access not only automatically when starting a new session on our website, but also at any time via the Cookie Policy.
Managing required consents (consent manager) In order to manage the consents required for cookies, we use the cookie consent manager provided by cookiebot.eu. The consent manager itself sets a cookie so that the configuration you have selected for cookies can be saved on your device.
Service provider: Usercentrix A/S, Havnegade 39, 1058 Copenhagen, Denmark (Cookiebot is a brand of Usercentrix A/S).
We have concluded a data processing agreement with Usercentrix A/S.
Storage period: The data is stored for the duration of the session.
Legal basis: The legal basis for the processing is compliance with a legal obligation to obtain consent for cookies and tracking, pursuant to Art. 6(1)(c) GDPR.
Hotjar If you have given your consent, we use the analytics tool Hotjar to record and evaluate user behavior, for example by creating heatmaps.
Service provider: Hotjar Ltd., Dragonara Business Centre 5th Floor, Dragonara Road, Paceville St. Julian's STJ, 3141 Malta
Further information on how Hotjar uses data can be found in Hotjar’s privacy information at:https://help.hotjar.com/hc/en-us/articles/360045447134-Legal-at-Hotjar
Storage period: The cookies generally expire after 30 days.
Legal basis for processing: We use Hotjar solely on the basis of your consent pursuant to Art. 6(1)(a) GDPR. The statistics obtained help us improve our offering and make it more interesting for users. You can withdraw your consent at any time with effect for the future. You can also do this via the consent manager, which you can access via the Cookie Policy (see above).
Leadfeeder If you have given your consent, we use the Leadfeeder service on our website to analyze user behavior and to optimize our website based on this analysis. In particular, the service enables us to identify which companies have visited our website. We do not receive any information that directly identifies you as an individual. Leadfeeder accesses the list of IP addresses of website visitors provided by Google Analytics in its reports and links this list of IP addresses with information about the companies that can be found on the internet under those IP addresses.
Service provider: Leadfeeder, Keskuskatu 6 E, 00100 Helsinki, Finland, Tel.: +358504303422, Email: team@leadfeeder.com
Further information on data use by Leadfeeder can be found in its privacy information at:https://www.leadfeeder.com/our-data/ https://www.leadfeeder.com/leadfeeder-and-gdpr/
Storage period: The cookies generally expire after 30 days.
Legal basis for processing: We use Leadfeeder solely on the basis of your consent pursuant to Art. 6(1)(a) GDPR. The statistics obtained help us improve our offering and make it more interesting for users. You can withdraw your consent at any time with effect for the future. You can also do this via the consent manager, which you can access via the Cookie Policy (see above).
Google Remarketing We use Google Remarketing within our website if you have given your consent for this. The cookie with the remarketing tag enables us to display ads to you via Google and its products (including YouTube, AdSense, and AdMob) if you have previously visited our website. In this context, your IP address and the data linked via the remarketing tag are processed and transmitted to Google. Google uses this data for its own purposes, such as creating profiles or linking it with other data sources. If you do not wish Google Remarketing to process your data, you can (a) withdraw your consent on our website, (b) delete the cookies on your device, or (c) if you have a Google account, disable remarketing there.
Service provider: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland.
Further information on the processing of personal data by Google and its advertising products can be found in Google’s privacy policies and the data processing terms for Google advertising products: https://policies.google.com/privacy and https://business.safety.google/adsservices/
Storage period: The data transmitted is anonymized and stored by Google in a remarketing list in a way that does not allow us to identify you. It serves as a targeting option for our advertising measures and is not stored for longer than 540 days. This period is reset each time you visit our website.
Legal basis for processing: We use Google Remarketing on the basis of your consent pursuant to Art. 6(1)(a) GDPR. You can withdraw your consent at any time with effect for the future. You can do this via the cookie consent manager, which you can access via the Cookie Policy (see above).
To design our websites and provide additional functions, we integrate the following external services in our own interest.
All services can be disabled through the use of special plugins for your browser or, more specifically, the necessary connection to the corresponding servers can be blocked. Please note, however, that the use of such tools may result in a reduction in the usual convenience, as many functions may no longer work as you would normally expect.
Interested users are recommended to use tools such as NoScript, uBlock Origin, or uMatrix. There are many tools intended to make internet traffic generally more secure; however, these are not automatically privacy-friendly.
If properly configured, these tools can also generally block web analytics, usage-based advertising networks, and other automatically triggered background connections to third-party providers for all websites you visit.
Google Web Fonts
Google Web Fonts are implemented on our websites. These are responsible for displaying fonts.
We have downloaded the fonts onto our own server and provide them from there so that no connection to Google servers in the United States is established.
Service provider:
Google Inc.
1600 Amphitheatre Parkway
Mountain View, CA 94043, USA
EU representative:
Google Ireland Ltd.
Gordon House, Barrow Street
Dublin 4, Ireland
Further information on data protection at Google can be found at:
http://www.google.de/policies/privacy/
Storage duration:
See storage duration of logs under “Informational use” above in this privacy policy.
Legal basis:
The service is integrated in our legitimate interest to optimize our websites in accordance with Art. 6 (1) (f) GDPR.
Google Maps
We integrate content from Google Maps on our websites to allow you to easily view the locations of our partners.
As a result, a connection between your browser and the Google Maps server is automatically established and your IP address is transmitted. If you are simultaneously logged into Google with an existing user account while visiting our website, Google may be able to associate your visit with your user behavior.
Additionally, further cookies may be sent to your browser by Google. We have no influence over this process and receive no information from Google regarding the transmitted content.
Analysis of your user behavior by Google
Google stores your data as usage profiles and uses them for purposes of advertising, market research, and/or the needs-based design of its websites.
Such evaluation takes place in particular (even for users who are not logged in) to provide interest-based advertising and to inform other users of the social network about your activities on our websites.
You have the right to object to the creation of these user profiles, but you must contact Google to exercise this right.
Service provider:
Google Inc.
1600 Amphitheatre Parkway
Mountain View, CA 94043, USA
EU representative:
Google Ireland Ltd.
Gordon House, Barrow Street
Dublin 4, Ireland
Further information:
https://www.google.com/intl/de/policies/privacy/
Storage duration:
See storage duration of logs under “Informational use” above in this privacy policy.
Legal basis:
The service is integrated based on your consent in accordance with Art. 6 (1) (a) GDPR.
In exceptional cases where personal data (your IP address) is transferred to the USA, Google relies on the European Standard Contractual Clauses:
https://policies.google.com/privacy/frameworks?hl=de
YouTube
We have integrated YouTube videos into our online offering that are stored at http://www.youtube.com and can be played directly from our website.
In principle, when you access a page containing embedded videos, your IP address is transmitted to YouTube/Google and cookies are installed on your computer.
However, we have integrated our videos in “extended data protection mode”, meaning that no data about you as a user will be transmitted to YouTube/Google unless you play the videos.
Only when you click to play the video will the following data be transmitted:
- IP address
- Date and time of the request
- Time zone difference from Greenwich Mean Time (GMT)
- Content of the request (specific page)
- Access status / HTTP status code
- Amount of data transferred
- Website from which the request originates
- Browser
- Operating system and interface
- Language and version of the browser software
- Hardware used (PC, smartphone, etc.)
- Location (if Google Maps is activated)
We have no influence on this data transfer.
By visiting our website and playing videos, YouTube/Google receives the information that you have accessed the corresponding subpage of our website.
If you are logged into Google, this data will be directly assigned to your account. If you do not want the data to be associated with your YouTube profile, you must log out before activating the button.
YouTube/Google also stores data even if you do not have a Google account, particularly:
- IP address
- search queries
- browser and operating system version
YouTube/Google stores this data as usage profiles and uses it for advertising, market research, and/or needs-based design of its website.
You have the right to object to the creation of these user profiles by contacting YouTube.
Provider:
YouTube LLC
901 Cherry Ave.
San Bruno, CA 94066
USA
Further information:
https://policies.google.com/technologies/product-privacy?hl=de
https://www.google.de/intl/de/policies/privacy
The information collected by cookies is generally transmitted to a server in the USA and stored there. If data is transferred to the USA, the transfer is based on Standard Contractual Clauses.
Typeform
We use Typeform for some of our contact forms to provide simple forms and contact options.
Depending on the user's input, the following personal data may be transmitted to Typeform:
- First name
- Last name
- Address
- Phone number
- Email address
- Employer
- Employer address
- Uploaded files (if applicable)
Typeform is the recipient of your personal data and acts as a processor on our behalf.
Without your explicit consent within each form, no personal data will be transmitted to Typeform. If consent is given, the data will be stored solely for the purpose of transmitting inquiries and responding to them.
Additionally, Typeform collects the following personal data using cookies:
- Device information
- Operating system
- Browser settings
Furthermore, usage data such as the date and time when you used the form is collected.
Typeform requires this data to ensure the display and functionality of the contact form. This corresponds to Typeform’s legitimate interest (Art. 6 (1) (f) GDPR).
More information:
https://help.typeform.com/hc/en-us/articles/360029581691-What-happens-to-my-data
Service provider:
TYPEFORM SL
C/Bac de Roda, 163 (Local)
08018 Barcelona
Spain
Further information:
https://www.typeform.com/help/a/what-is-gdpr-360029580771/
Objection options:
https://admin.typeform.com/to/dwk6gt
Storage duration:
We store your data for the duration of processing and delete it afterwards.
Legal basis:
Your consent pursuant to Art. 6 (1) (a) GDPR.
You may withdraw your consent at any time. The withdrawal does not affect the legality of processing carried out before the withdrawal.
Facebook Pixel, Facebook Custom Audiences and Facebook Conversion
With the help of the Facebook Pixel, Facebook is able, on the one hand, to determine visitors to our online offering as a target group for the display of advertisements (so-called “Facebook Ads”). Accordingly, we use the Facebook Pixel in order to display the Facebook Ads placed by us only to those Facebook users who have also shown an interest in our online offering or who exhibit certain characteristics (e.g. interests in certain topics or products that are determined based on the websites visited) that we transmit to Facebook (so-called “Custom Audiences”). With the help of the Facebook Pixel we also want to ensure that our Facebook Ads correspond to the potential interests of users and do not appear annoying. With the help of the Facebook Pixel we can further track the effectiveness of Facebook advertisements for statistical and market research purposes by seeing whether users were redirected to our website after clicking on a Facebook advertisement (so-called “conversion”).
Service provider:
Facebook Ireland Ltd.
4 Grand Canal Square
Grand Canal Harbour
Dublin 2
Ireland
The processing of the data by Facebook takes place within the framework of Facebook’s data usage policy:
https://www.facebook.com/policy.php
Accordingly, general information regarding the display of Facebook Ads can be found in Facebook’s data usage policy. Specific information and details about the Facebook Pixel and its functionality can be found in Facebook’s help section:
https://www.facebook.com/business/help/651294705016616
For the processing of data in which Facebook acts as a processor, we have concluded a data processing agreement with Facebook in which Facebook undertakes to protect the data of our customers and not to pass it on to third parties.
Storage duration:
See storage duration of the logs under “Informational use” further above in this privacy policy.
Legal basis of the data processing:
The use of the Facebook Pixel and the storage of “conversion cookies” takes place on the legal basis of Art. 6 (1) (a) GDPR.
You can object to the collection by the Facebook Pixel and the use of your data for displaying Facebook Ads. To set which types of advertisements are shown to you within Facebook, you can visit the page set up by Facebook and follow the instructions on the settings for usage-based advertising. The settings are platform-independent, meaning they are applied to all devices such as desktop computers or mobile devices.
You can also object to the use of cookies that serve reach measurement and advertising purposes via the deactivation page of the Network Advertising Initiative as well as additionally via the US website aboutads.info or the European website youronlinechoices.com.
Mouseflow
If you have given your consent, we use the analysis tool Mouseflow to record and evaluate your user behavior, for example via heatmaps.
Service provider:
Mouseflow ApS
Flæsketorvet 68
1711 Copenhagen
Denmark
Further information on the use of data by Mouseflow can be found in their privacy notices:
Privacy page for website visitors:
https://mouseflow.com/legal/visitor/
Privacy information:
https://mouseflow.com/de/privacy
Information regarding GDPR:
https://mouseflow.com/de/gdpr/
Storage duration:
The cookies generally expire after 30 days.
Legal basis of the data processing:
We only use Mouseflow on the legal basis of your consent in accordance with Art. 6 (1) (a) GDPR. Through the statistics obtained, we can improve our offering and make it more interesting for you as a user. You can withdraw your consent at any time with effect for the future. For this purpose, you can also use the consent manager which you can access via the cookie policy (see above).
Google Analytics (with anonymization function)
The controller responsible for processing has integrated the Google Analytics component (with anonymization function) on this website. Google Analytics is a web analytics service. Web analytics is the collection, gathering and evaluation of data about the behavior of visitors to websites. Among other things, a web analytics service collects data about the website from which a data subject has come to a website (so-called referrers), which subpages of the website were accessed, or how often and for what duration a subpage was viewed. Web analytics is predominantly used for the optimization of a website and for the cost-benefit analysis of internet advertising.
The operating company of the Google Analytics component is Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland.
For web analytics via Google Analytics the controller uses the addition “_gat._anonymizeIp”. By means of this addition the IP address of the internet connection of the data subject is shortened and anonymized by Google when access to our websites occurs from a member state of the European Union or from another contracting state to the Agreement on the European Economic Area.
The purpose of the Google Analytics component is the analysis of visitor flows on our website. Among other things, Google uses the collected data and information to evaluate the use of our website, to compile online reports for us which show the activities on our websites, and to provide further services associated with the use of our website.
Google Analytics places a cookie on the information technology system of the data subject. What cookies are has already been explained above. By placing the cookie, Google is enabled to analyze the use of our website. With each call-up of one of the individual pages of this website which is operated by the controller and on which a Google Analytics component has been integrated, the internet browser on the information technology system of the data subject is automatically prompted by the respective Google Analytics component to transmit data for the purpose of online analysis to Google.
Within the framework of this technical procedure Google gains knowledge of personal data, such as the IP address of the data subject, which among other things serves Google to trace the origin of visitors and clicks and subsequently enable commission settlements.
By means of the cookie, personal information such as the access time, the location from which access originated, and the frequency of visits to our website by the data subject are stored. During each visit to our website, these personal data, including the IP address of the internet connection used by the data subject, are transmitted to Google in the United States of America. These personal data are stored by Google in the United States of America. Google may pass these personal data collected via the technical procedure on to third parties.
The data subject can prevent the setting of cookies by our website at any time by means of a corresponding setting of the internet browser used and thus permanently object to the setting of cookies. Such a setting of the internet browser used would also prevent Google from setting a cookie on the information technology system of the data subject. In addition, a cookie already set by Google Analytics can be deleted at any time via the internet browser or other software programs.
Furthermore, the data subject has the possibility to object to the collection of data generated by Google Analytics relating to the use of this website as well as the processing of these data by Google and to prevent such processing. For this purpose, the data subject must download and install a browser add-on under the link https://tools.google.com/dlpage/gaoptout. This browser add-on informs Google Analytics via JavaScript that no data and information about visits to websites may be transmitted to Google Analytics. The installation of the browser add-on is considered an objection by Google.
Further information and the applicable data protection provisions of Google may be retrieved under:
https://www.google.de/intl/de/policies/privacy/
http://www.google.com/analytics/terms/de.html
Google Analytics is explained in more detail under the following link:
https://www.google.com/intl/de_de/analytics/
Google AdWords
The controller has integrated Google AdWords on this website. Google AdWords is a service for internet advertising that allows advertisers to place ads both in the search engine results of Google and in the Google advertising network.
The operating company of the Google AdWords services is Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland.
The purpose of Google AdWords is the promotion of our website by displaying interest-based advertising on the websites of third-party companies and in the search engine results of Google and by displaying third-party advertising on our website.
If a data subject reaches our website via a Google advertisement, a so-called conversion cookie is placed on the information technology system of the data subject by Google. A conversion cookie expires after thirty days and does not serve to identify the data subject.
Further text continues describing tracking of purchases, visit statistics, cookie prevention options, and opt-out via:
www.google.de/settings/ads
Further information on Google's privacy policies can be found at:
https://www.google.de/intl/de/policies/privacy/
Klarna as a Payment Method
The controller has integrated components of Klarna on this website. Klarna is an online payment service provider that enables purchase on account or flexible installment payment.
Operating company:
Klarna Bank AB
Sveavägen 46
111 34 Stockholm
Sweden
If the data subject selects “purchase on account” or “installment purchase” as the payment option during the ordering process in our online shop, data of the data subject are automatically transmitted to Klarna.
The transmitted personal data usually include:
- first name
- last name
- address
- date of birth
- gender
- email address
- IP address
- telephone number
- mobile number
- and other data necessary for payment processing
Klarna may also transfer personal data to credit agencies for identity and creditworthiness checks.
The applicable privacy policy of Klarna can be found at:
https://cdn.klarna.com/1.0/shared/content/policy/data/de_de/data_protection.pdf
PayPal as a Payment Method
The controller has integrated PayPal components on this website.
PayPal is an online payment service provider. Payments are processed via so-called PayPal accounts, which represent virtual private or business accounts.
European operator:
PayPal (Europe) S.à r.l. et Cie, S.C.A.
22-24 Boulevard Royal
L-2449 Luxembourg
If the data subject selects PayPal as a payment option during the ordering process, personal data are automatically transmitted to PayPal.
These generally include:
- first name
- last name
- address
- email address
- IP address
- phone number
- mobile phone number
- and other data necessary for payment processing
The applicable PayPal privacy policy can be found at:
https://www.paypal.com/de/webapps/mpp/ua/privacy-full
Skrill as a Payment Method
Skrill is an online payment service provider. Payments are processed via the so-called Skrill Wallet, which represents a virtual electronic wallet.
Operating company:
Skrill Limited
25 Canada Square
London E14 5LQ
United Kingdom
If the user selects Skrill as a payment method during checkout, personal data such as purchase amount and email address are transmitted.
Further information:
https://www.skrill.com/de/fusszeile/datenschutzbestimmungen/
Sofortüberweisung as a Payment Method
Sofortüberweisung is a payment service that enables cashless payment for products and services on the internet.
Operating company:
Klarna Bank AB
Sveavägen 46
111 34 Stockholm
Sweden
During the payment process, the buyer transmits the PIN and TAN to Sofort GmbH. The service performs a technical verification of the account balance and then executes a transfer.
Further information:
https://www.klarna.com/sofort/datenschutz/
Pipedrive
We use the CRM service Pipedrive from Pipedrive Inc., 460 Park Avenue South, New York, NY 10016, USA, to manage and organize customer and prospect data.
Processing is based on Art. 6 (1) (f) GDPR (legitimate interest). Our legitimate interest lies in the efficient organization and management of customer and prospect data.
Further information:
https://www.pipedrive.com/de/privacy
Dropbox
We use the cloud storage service Dropbox from Dropbox, Inc., 1800 Owens St, San Francisco, CA 94158, USA, to store and exchange documents and files.
Processing is based on Art. 6 (1) (f) GDPR (legitimate interest).
Further information:
https://www.dropbox.com/privacy
Slack
We use the communication service Slack from Slack Technologies, Inc., 500 Howard Street, San Francisco, CA 94105, USA, for internal communication and collaboration.
Processing is based on Art. 6 (1) (f) GDPR (legitimate interest).
Further information:
https://slack.com/intl/de-de/privacy-policy
Shopify
For our online shop and our website, we use the Shopify platform, Shopify Inc., 151 O'Connor Street, Ground floor, Ottawa, ON K2P 2L8, Canada ("Shopify"). Shopify is a cloud-based e-commerce system that enables us to provide you with a user-friendly and secure online shop.
Transfer of data to Shopify
By visiting our online shop, your personal data that is necessary to process your order is transferred to Shopify. This includes in particular:
Your name Your address Your email address Your telephone number (if provided) Your order information (e.g., items, quantity, price)
This data transfer is based on Art. 6(1)(b) GDPR (processing for the performance of a contract).
Processing of data by Shopify
Shopify processes the personal data transferred on our behalf and ensures that the data processing is carried out in accordance with applicable data protection laws, in particular the GDPR. We have concluded a data processing agreement with Shopify pursuant to Art. 28 GDPR, which ensures the legally compliant processing of your personal data.
Data storage
Your personal data is stored on secure servers operated by Shopify. Shopify has implemented appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, destruction, or alteration.
International data transfers
Shopify is a company based in Canada. Your personal data may therefore be processed in countries outside the European Union. However, Shopify ensures an adequate level of data protection in accordance with European data protection standards, in particular through the use of appropriate safeguards.
These privacy notices also apply to the following websites on which we maintain a presence.
If you have any questions about our information offering, you can reach us at office@my-esel.com.
- Facebook - https://www.facebook.com/My.Esel/
For our presence on Facebook, we use the technical platform and services of Facebook Ireland Ltd., Ireland.
We would like to point out that you use our Facebook page and its functions at your own responsibility. This applies in particular to the use of interactive functions (e.g. commenting, sharing, rating).
Facebook processes personal data relating to your account, your IP address, and the end devices you use. Cookies are used for data collection. These are small files that are stored on your end devices. Facebook describes in general terms which information Facebook receives and how it is used in its data use policy. There you will also find information about how to contact Facebook, options for objection, and settings for advertisements.
Facebook may use this information to provide us, as the operator of the Facebook pages, with statistical information such as gender and age distribution regarding the use of the Facebook page. In addition, Facebook may display further information or advertisements to you based on your preferences (Insights).
The data collected about you in this context is processed by Facebook Ltd. and may be transferred to countries outside the European Union.
If you visit one of our presences on social media (e.g. Facebook), such a visit triggers processing of your personal data. In this case, we are jointly responsible with the operator of the respective social network for the processing operations within the meaning of Art. 26 GDPR, provided that we actually make a joint decision with the operator of the social network about the processing and we also have an influence on the processing. Where possible, we have concluded agreements on joint responsibility pursuant to Art. 26 GDPR with the operators of the social networks, in particular the Page Controller Addendum of Facebook Ireland Ltd.
In principle, you can assert your rights (right of access pursuant to Art. 15 GDPR, right to rectification pursuant to Art. 16 GDPR, right to erasure pursuant to Art. 17 GDPR, right to restriction of processing pursuant to Art. 18 GDPR, right to data portability pursuant to Art. 20 GDPR, and right to lodge a complaint pursuant to Art. 77 GDPR) both against us and against the operator of the respective social network (e.g. Facebook).
Please note that, despite joint responsibility pursuant to Art. 26 GDPR with the operators of social networks, we do not have full influence over the data processing of the individual social networks. The corporate policy of the respective provider has a significant impact on our options. If data subject rights are asserted, we can only forward such requests to the operator of the social network.
Facebook does not conclusively and clearly state how Facebook uses data from visits to Facebook pages for its own purposes, to what extent activities on the Facebook page are assigned to individual users, how long Facebook stores this data, and whether data from a visit to the Facebook page is passed on to third parties. This is not known to us.
When you access a Facebook page, the IP address assigned to your device is transmitted to Facebook. According to Facebook, this IP address is anonymized (for “German” IP addresses) and deleted after 90 days. Facebook also stores information about its users’ end devices (for example as part of the “login notifications” function). This may enable Facebook to assign IP addresses to individual users.
If you are currently logged in to Facebook, a cookie containing your Facebook ID is stored on your device. This enables Facebook to track that you have visited this page and how you have used it. This also applies to all other Facebook pages. Facebook buttons integrated into websites enable Facebook to record your visits to these websites and assign them to your Facebook profile. Based on this data, content or advertising can be tailored to you.
If you want to avoid this, you should log out of Facebook, deactivate the “stay logged in” function, delete the cookies on your device, and close and restart your browser. In this way, Facebook information that could directly identify you will be deleted. You can then use our Facebook page without your Facebook ID being disclosed. If you access interactive functions of the page (like, comment, share, messages, etc.), a Facebook login screen will appear. After logging in, you will again be identifiable to Facebook as a specific user. Alternatively, you can use a different browser than usual to visit our Facebook page.
Service provider:
Facebook Ireland Ltd., 4 Grand Canal Square Grand Canal Harbour, Dublin 2, Ireland
The data use policy and information on how you can manage or delete information about you is available at the following link:
http://de-de.facebook.com/about/privacy
You can find Facebook’s full data policy here:
https://de-de.facebook.com/full_data_use_policy
Information from Facebook about the GDPR is available at the following link:
https://de-de.facebook.com/business/gdpr
More information about Insights is available from Facebook at the following link:
http://de-de.facebook.com/help/pages/insights
In addition, we do not collect or process any personal data via Facebook.
You can access this privacy policy via the “Privacy” section on our Facebook page.
For our presence on YouTube, we use the technical platform and services of Google Ireland Ltd., Ireland.
We would like to point out that you use the YouTube channel offered here and its functions at your own responsibility. This applies in particular to the use of the “discussion” function.
We have no influence over the type and scope of the data processed by Google, the type of processing and use, or the transfer of this data to third parties. We also have no effective control options in this respect. When using Google, your personal data is collected, transmitted, stored, disclosed, and used by Google and transferred and stored and used irrespective of your place of residence in the United States, Ireland, and any other country in which Google conducts business. Data is transferred to companies affiliated with Google and to other companies or persons trusted by Google that process it on Google’s behalf.
Google processes, on the one hand, data you voluntarily enter such as name and username, email address, and telephone number. Google also processes content that you create, upload, or receive from others when using the services. This includes, for example, photos and videos you save, documents and spreadsheets you create, and comments you write on YouTube videos. On the other hand, Google also analyses the content you share to determine what topics you are interested in, stores and processes confidential messages that you send directly to other users, and can determine your location based on GPS data, information about wireless networks, or your IP address, in order to provide you with advertising or other content. Google may use analysis tools such as Google Analytics for evaluation. We have no influence over Google’s use of such tools and have not been informed about any potential use. If Google uses such tools for our YouTube channel, we have neither commissioned nor supported this in any way. We also do not receive the data obtained from the analysis. Only certain information that is usually shared publicly from subscribers’ profiles is visible to us via our account. Moreover, we have no way to prevent or stop the use of such tools on our YouTube channel. Finally, Google also receives information, e.g. when you view content, even if you have not created an account. Such “log data” may include the IP address, browser type, operating system, information about the previously visited website and the pages you visit, your location, your mobile service provider, the device you use (including device ID and application ID), the search terms you use, and cookie information.
Service provider:
YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA, see: https://policies.google.com/technologies/product-privacy?hl=de and https://www.google.de/intl/de/policies/privacy.
The information collected by this provider via cookies is generally sent to a server in the USA and stored there. If data is transferred to the USA, the transfer is based on the existence of standard contractual clauses.
Information about which data is processed by Google and for what purposes it is used can be found in Google’s privacy policy:
https://policies.google.com/privacy?hl=de&gl=de#infocollect
You can limit the processing of your data in the general settings of your Google account. In addition to these tools, Google also offers specific privacy settings for YouTube. You can learn more in Google’s guide to privacy in Google products:
https://policies.google.com/technologies/product-privacy?hl=de&gl=de
Further information can be found in Google’s privacy policy under the term “privacy settings”:
https://policies.google.com/privacy?hl=de&gl=de#infochoices
You also have the option to request information via Google’s privacy form:
We also process your data if you communicate with us via YouTube. The recipient of the data is initially Google, where it may be passed on to third parties for Google’s own purposes and under Google’s responsibility. Recipients of publications are also the public, potentially anyone. Although we do not collect any data ourselves via our YouTube channel, the data you enter on YouTube, in particular your username and the content you publish under your account, is processed by us insofar as we may respond to your publications under “Discussions”. The data you publish and distribute freely on YouTube is thus incorporated into our offering and made accessible to our followers.
If you have any questions about our information offering, you can reach us at office@my-esel.com.
In addition, we do not collect or process any personal data via Facebook.
You can access this privacy policy via the “Privacy” section in our YouTube channel.
- Instagram - https://www.instagram.com/my.esel/
For our presence on Instagram, we use the technical platform and services of Instagram Inc.
We would like to point out that you use our Instagram page and its functions at your own responsibility. This applies in particular to the use of interactive functions (for example commenting or rating).
When you visit our Instagram page, Instagram collects, among other things, your IP address and other information that is stored on your PC in the form of cookies. This information is used to provide us, as the operator of the Instagram pages, with statistical information about the use of the Instagram page.
The data collected about you in this context is processed by Instagram Inc. and may be transferred to countries outside the European Union. Instagram describes in general terms which information Instagram receives and how it is used in its privacy policy. There you will also find information about how to contact Instagram and settings for advertisements. Instagram does not conclusively and clearly state how Instagram uses data from visits to Instagram pages for its own purposes, to what extent activities on the Instagram page are assigned to individual users, how long Instagram stores this data, and whether data from a visit to the Instagram page is passed on to third parties. This is not known to us.
When you access an Instagram page, the IP address assigned to your device is transmitted to Instagram. According to Instagram, this IP address is anonymized (for “German” IP addresses) and deleted after 90 days. Instagram also stores information about its users’ end devices (for example as part of the “login notifications” function). This may enable Instagram to assign IP addresses to individual users.
If you are currently logged in to Instagram, a cookie containing your Instagram ID is stored on your device. This enables Instagram to track that you have visited this page and how you have used it. This also applies to all other Instagram pages. Instagram buttons integrated into websites enable Instagram to record your visits to these websites and assign them to your Instagram profile. Based on this data, content or advertising can be tailored to you.
If you want to avoid this, you should log out of Instagram, deactivate the “stay logged in” function, delete the cookies on your device, and close and restart your browser. In this way, Instagram information that could directly identify you will be deleted. You can then use our Instagram page without your Instagram ID being disclosed. If you access interactive functions of the page (like, commenting, messages, and more), an Instagram login screen will appear. After logging in, you will again be identifiable to Instagram as a specific user.
Information on how you can manage or delete information about you can be found in the following Instagram help section.
Service provider:
Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA
Instagram’s privacy policy is available at the following link: https://help.instagram.com/519522125107875
You can access Instagram’s help section at the following link: https://help.instagram.com/?locale=de_DE
In addition, we do not collect or process any personal data via Twitter.
You can access this privacy policy via the “Privacy” section on our Instagram page.
LinkedIn - https://at.linkedin.com/company/my-esel
For our presence on LinkedIn, we use the technical platform and services of LinkedIn Ireland Unlimited Company.
We would like to point out that you use this LinkedIn page and its functions at your own responsibility. This applies in particular to the use of interactive functions (e.g. commenting, sharing, rating).
When you visit our LinkedIn page, LinkedIn collects, among other things, your IP address and other information that is stored on your PC in the form of cookies. This information is used to provide us, as the operator of the LinkedIn pages, with statistical information about the use of the LinkedIn page.
The data collected about you in this context is processed by LinkedIn and may be transferred to countries outside the European Union. LinkedIn describes in general terms which information LinkedIn receives and how it is used in its data use policy. There you will also find information about how to contact LinkedIn and settings for advertisements. LinkedIn does not conclusively and clearly state how LinkedIn uses data from visits to LinkedIn pages for its own purposes, to what extent activities on the LinkedIn page are assigned to individual users, how long LinkedIn stores this data, and whether data from a visit to the LinkedIn page is passed on to third parties. This is not known to us.
When you access a LinkedIn page, the IP address assigned to your device is transmitted to LinkedIn. According to LinkedIn, this IP address is anonymized (for “German” IP addresses) and deleted after 90 days. LinkedIn also stores information about its users’ end devices (e.g. as part of the “login notifications” function). This may enable LinkedIn to assign IP addresses to individual users.
If you are logged in to LinkedIn, a cookie containing your Facebook ID is stored on your device. This enables LinkedIn to track that you have visited this page and how you have used it. This also applies to all other LinkedIn pages. LinkedIn buttons integrated into websites enable LinkedIn to record your visits to these websites and assign them to your LinkedIn profile. Based on this data, content or advertising can be tailored to you.
If you want to avoid this, you should log out of LinkedIn, deactivate the “stay logged in” function, delete the cookies on your device, and close and restart your browser. In this way, LinkedIn information that could directly identify you will be deleted. You can then use our LinkedIn page without your LinkedIn ID being disclosed. If you access interactive functions of the page (like, commenting, sharing, messages, etc.), a LinkedIn login screen will appear.
After logging in, you will again be identifiable to LinkedIn as a specific user.
Service provider:
LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
Further information on data processing is available from LinkedIn at the following link:
https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv.
The data use policy is available at the following link:
https://www.linkedin.com/legal/privacy-policy
In addition, we do not collect or process any personal data via LinkedIn.
You can access this privacy policy via the “Privacy” section on our LinkedIn page.
Your personal data is not processed in countries outside the European Union and the European Economic Area, except for the integrated services listed above.
You have the following rights with regard to your personal data:
- Right of access
- Right to rectification
- Right to erasure
- Right to restriction of processing
- Right to object
- Right to data portability
You also have the right to lodge a complaint with a data protection supervisory authority about our processing of your personal data.
Austrian Data Protection Authority:
If you have given consent to the processing of your data, you can withdraw it at any time with effect for future processing.
Where we base the processing of your personal data on a balancing of interests (legal basis then Art. 6(1)(f) GDPR), you may object to the processing. This is the case in particular if the processing is not necessary for the performance of a contract with you, as is explained above in these data protection notices for the individual processing operations and functions on our websites. If you exercise such an objection, we ask you to explain the reasons why we should not process your personal data as carried out by us. In the event of your justified objection, we will examine the situation and will either stop or adjust the data processing or demonstrate our compelling legitimate grounds on the basis of which we continue the processing.
Right to object to direct marketing
Of course, you can object at any time to the processing of your personal data for advertising and data analysis purposes, for example if, within a business relationship, you receive advertising from us in the form of a newsletter, customer magazine, or informational material by post.
If we use your data within the scope of functions on our websites for direct marketing and related data analysis, we will inform you about these processing operations further above in these data protection notices, including an option to exercise your right of withdrawal, where applicable, by technical means.
Automated individual decision-making, including profiling
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.
This does not apply if the decision
(a) is necessary for entering into, or performance of, a contract between you and the controller.
(b) is authorised by Union or Member State law to which the controller is subject and that law contains suitable measures to safeguard your rights and freedoms and your legitimate interests.
(c) is based on your explicit consent.
However, such decisions may not be based on special categories of personal data pursuant to Art. 9(1) GDPR unless Art. 9(2)(a) or (g) applies and suitable measures to protect your rights and freedoms and your legitimate interests have been taken.
With regard to the cases referred to in (a) and (c), the controller shall implement suitable measures to safeguard your rights and freedoms and your legitimate interests. These include, at least, the right to obtain human intervention on the part of the controller, to express your point of view, and to contest the decision.
Contact options regarding your rights
To exercise your rights, you can contact us at any time. Please use one of the contact options listed in our legal notice (Imprint) or contact our data protection officer directly (contact details above).
We also implement technical and organisational security measures to protect personal data that is collected or processed, in particular against accidental or intentional manipulation, loss, destruction, or access by unauthorised persons. Our security measures are continuously improved in line with technological developments.
The transmission of your personal data is encrypted using SSL technology (https) to prevent access by unauthorised third parties.
Our email systems support encrypted communication via SSL technology (TLS 1.2 including PFS). The transmission of your email can therefore generally take place in encrypted form. Please note, however, that encryption also depends on the configuration of your email program and that we therefore cannot guarantee complete data security for the transmission path.
For information requiring a high level of confidentiality, we recommend sending it by post.