The following information is intended to give you an overview of how we process your personal data when you use our website and your data protection rights. In principle, it is possible to use our website without entering personal data. However, if you wish to make use of special services or other options for interacting with us, it may be necessary to process personal data.

häwa GmbH
Industriestrasse 12
88489 Wain 

Phone: +49 7353 98 46 - 0
Email: info@haewa.de
Internet: www.haewa.de 

For further information, please refer to our imprint.

If you have any questions regarding data processing or data protection at häwa GmbH, you can contact our data protection officer at any time.

You can reach him by letter post at the above address (please note 'z.Hd. Datenschutzbeauftragter' on the envelope), by email at Datenschutz@haewa.de or confidentially via our data protection portal.

We do not transfer your personal data to third parties for purposes other than those listed below when you visit our website. We only pass on your personal data to third parties if:

1. you have given us your express consent to do so in accordance with type. 6 para. 1 lit. a GDPR,
2. the disclosure is permitted to safeguard our legitimate interests in accordance with Art. 6 (1) point f GDPR and there is no reason to assume that you have an overriding legitimate interest in the non-disclosure of your data,
3. in the event that there is a legal obligation for the disclosure in accordance with Art. 6 (1) point c GDPR, and
4. this is legally permissible and required for the processing of contractual relationships with you in accordance with type 6, paragraph 1 lit. b of the GDPR.

Personal data may be transferred to the United States as part of the processing operations described in this privacy policy. Companies in the United States only have an adequate level of data protection if they have certified themselves under the EU-US Data Privacy Framework and thus the EU Commission's adequacy decision under Art. 45 GDPR applies. We have explicitly stated this in the privacy policy for the service providers concerned. In order to protect your data in all other cases, we have concluded agreements on order processing based on the standard contractual clauses of the European Commission. If the standard contractual clauses are not sufficient to establish an adequate level of security, your consent in accordance with Art. 49 (1) (a) GDPR can serve as the legal basis for the transfer to third countries. This does not apply to data transfers to third countries for which the European Commission has issued an adequacy decision in accordance with type 45 of the GDPR.

a) SSL/TLS encryption

This site uses SSL or TLS encryption to ensure the security of data processing and to protect the transmission of confidential content, such as orders, login data or contact requests that you send to us as the operator. You can recognize an encrypted connection by the fact that the address line of the browser shows “https://” instead of “http://” and by the lock symbol in your browser line. We use this technology to protect your transmitted data.

b) Data collection when you visit the website

If you use our website for informational purposes only, if you do not register or otherwise provide us with information, or if you do not give your consent to processing requiring consent, we only collect data that is technically necessary for the provision of the service. This is data that your browser transmits to our server (“in so-called server log files”). Our website collects a series of general data and information when a page is accessed by you or an automated system. This general data and information is stored in the server's log files. The following may be collected:

• Browser types and versions used,
• the operating system used by the accessing system,
• the website from which an accessing system accesses our website (so-called referrer),
• the sub-pages that are accessed via an accessing system on our website,
• the date and time of access to the website,
• an abbreviated Internet Protocol address (anonymized IP address) and
• the Internet service provider of the accessing system.

We do not draw any conclusions about you as a person when using this general data and information. Rather, this information is required to

• to deliver the content of our website correctly,
• to optimize the content of our website and the advertising for it,
• to ensure the long-term functionality of our IT systems and the technology of our website, and
• to provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack.

We evaluate the collected data and information statistically, on the one hand, and, on the other, with the aim of increasing data protection and data security at our company in order to ultimately ensure an optimal level of protection for the personal data we process. The anonymous data in the server log files are stored separately from all personal data provided by a data subject.
The legal basis for data processing is type 6 exp. 1 lit. f) GDPR. Our legitimate interest follows from the data collection purposes listed above.

c) Hosting 

We host our website ourselves and use the services of our service provider rocket-media GmbH & Co. KG internet & software solutions, Wassertrüdinger Straße 14, 91550 Dinkelsbühl (referred to as rocket-media) for administration and maintenance. When you visit our website, your personal data (e.g. IP addresses in log files) are processed on rocket-media's virtual servers. The use of the service provider is based on Art. 6 para. 1 lit. f) GDPR. We have a legitimate interest in the most reliable presentation and provision of our website possible, as well as its security. We have concluded an order processing contract (AVV) in accordance with Art. 28 GDPR with rocket-media. This is a contract that is required under data protection law and ensures that rocket-media processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR. For more information about rocket-media's privacy policy, please visit: https://www.rocket-media.de/datenschutz.

This section contains information about häwa and our products. We present our products and suitable solutions and offer you a variety of ways to engage in dialog with our häwa experts on your topic of interest. Our download center offers downloads such as technical drawings, guidelines and certificates, and in addition to other services, we also offer various ways for you to contact us.

a) Contact us using the contact form

If you have any type of question, we offer you the opportunity to send messages and get in touch using our contact form. We ask you about your concern in advance so that we can find the right contact person for you right away.
You are required to provide a valid email address and a name so that we know who sent the request and can answer it. The respective contact form itself shows which other data is collected. If you request a call back, a phone number is of course required so that our experts can contact you. If you provide us with your postcode, we may be able to involve a contact person from your region – this makes it easier for us to organize.
The information you provide in the form fields is stored and used solely for the purpose of answering your request or for establishing contact and for the associated technical administration. The legal basis for the processing of the data is our legitimate interest in answering your request in accordance with Art. 6 (1) point f GDPR. If your contact is aimed at concluding a contract, such as advice on purchasing one of our products, the additional legal basis for the processing is Art. 6 (1) point b GDPR.
Your data will be deleted after the final processing of your request; this is the case if it can be inferred from the circumstances that the matter in question has been conclusively clarified and provided that there are no legal storage obligations to the contrary. Alternatively, you can also contact us directly and informally and request that we delete your data.

b) Contact us by email

If you contact us using one of the e-mail addresses provided by us, the personal data you provide will be processed exclusively for the purpose of processing your respective request, for correspondence with you, as well as for any initiation and justification of a contract, for inquiries about products and complaints, etc. with you in accordance with Art. 6 Para. 1 S. 1 lit. b) GDPR. The personal data collected will be automatically deleted after your request has been dealt with; this is the case if it can be inferred from the circumstances that the matter in question has been conclusively clarified and provided that there are no legal storage obligations to the contrary. 

c) Download Center

We provide you with a wide range of information to download on our pages. In addition to current brochures and catalogs, this includes, in particular, assembly and operating instructions, safety data sheets, guidelines, certificates and approvals. You can use our convenient search function for this and search by full text or order no. When downloading, a connection is established between the participating servers and the selected data is loaded onto your end device. In the process, technical data such as IP addresses and system data are transmitted. We provide this to you with a legitimate interest in providing our customers with comprehensive information to assist you and to enable the initiation and conclusion of a contract. The processing is carried out in accordance with Article 6 (1) (b) and (f) GDPR.

d) Wish list for product requests

Once you have viewed our solutions and products, you can save your selection on a digital wish list for your häwa products and then use an inquiry form to request a non-binding, free offer for the items you have selected. The selection made is stored in a cookie in the browser you are using for the duration of the session, just as it would be in an online shopping cart, so that the data does not have to be re-entered. If you have blocked this option on the browser side, this selection cannot be used. After closing the browser session, the cookie is automatically deleted.
The information you provide in the form fields for product inquiries is stored and used solely for the purpose of answering your product inquiry to create an offer and for the associated technical administration.
The legal basis for the processing of the data is Art. 6 para. 1 lit. b GDPR.

We are pleased that you would like to apply to us. For the purpose of conducting the application process, we collect and process the personal data of applicants. The legal basis for this is the fulfillment of the contract or the initiation of pre-contractual measures in accordance with type. 6 para. 1 sentence 1 lit. b GDPR (previously 88 GDPR in conjunction with § 26 para. 1 BDSG), insofar as this is necessary for the decision on the establishment of an employment relationship. If we conclude an employment or service contract with applicants, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with legal requirements. If we do not conclude a contract with the applicant, the application documents will be automatically deleted two months after notification of the rejection decision, provided that no other legitimate interests on our part conflict with such deletion. Another legitimate interest in this sense, for example, is a duty of proof in proceedings under the General Equal Treatment Act (AGG).
In our separate data protection information for the application process, we provide detailed information about the various procedures, the talent pool, purposes, legal bases and other information regarding the specific processing in our external career portal from BITE GmbH. You can also access this information directly from the career portal.

On our website, you are given the opportunity to subscribe to our company newsletter. The personal data transmitted to us when you order the newsletter is determined by the input mask used for this purpose.

We inform our customers and business partners about our offers at regular intervals by means of a newsletter. Our company newsletter can only be received by you if

1. you have a valid e-mail address and
2. you have registered for the newsletter.

For legal reasons, a confirmation email will be sent to the email address you entered for the first time for the newsletter mailing in a double opt-in procedure. This confirmation email is used to check whether you, as the owner of the email address, have authorized the receipt of the newsletter.

When you register for the newsletter, we also store the IP address of the IT system assigned by your Internet Service Provider (ISP) and used by you at the time of registration, as well as the date and time of registration. The collection of this data is necessary in order to be able to trace any (possible) misuse of your e-mail address at a later point in time and therefore serves as our legal safeguard.

The personal data collected during registration for the newsletter are used exclusively for sending our newsletter. Furthermore, subscribers to the newsletter may be informed by e-mail if this is necessary for the operation of the newsletter service or a related registration, as might be the case in the event of changes to the newsletter offer or changes in technical conditions. The personal data collected in the context of the newsletter service will not be passed on to third parties. You can cancel your subscription to our newsletter at any time. The consent to the storage of personal data that you have given us for the newsletter mailing can be revoked at any time. For the purpose of revoking your consent, there is a corresponding link in each newsletter. Furthermore, you can also unsubscribe from the newsletter at any time directly on our website or inform us of this in another way. The legal basis for the purpose of sending the newsletter is voluntary consent in accordance with type. 6 para. 1 lit. a GDPR.

Our newsletters contain so-called tracking pixels. A tracking pixel is a miniature graphic embedded in emails sent in HTML format to enable log file recording and log file analysis. This allows a statistical evaluation of the success or failure of online marketing campaigns. Based on the embedded tracking pixel, the company can recognize whether and when an e-mail was opened by you and which links in the e-mail were accessed by you. Such personal data collected via the tracking pixels contained in the newsletters are stored and evaluated by us in order to optimize the delivery of the newsletter and to better adapt the content of future newsletters to your interests. These personal data will not be passed on to third parties. Affected persons are entitled at any time to revoke the separate declaration of consent given via the double opt-in procedure. After a revocation, these personal data will be deleted by us. We automatically interpret a cancellation of the newsletter as a revocation.
This type of analysis is carried out in particular in accordance with Art. 6 (1) point f GDPR on the basis of our legitimate interests in the display of personalized advertising, market research and/or the design of our website to meet requirements.

CLEVERREACH

This website uses CleverReach to send newsletters. The provider is CleverReach GmbH & Co. KG, (CRASH Building), Schafjückenweg 2, 26180 Rastede. CleverReach is a service that organizes and analyzes the distribution of newsletters. The data you provide (e.g. your e-mail address) to subscribe to our newsletter is stored on CleverReach servers in Germany and Ireland.

Sending our newsletter with CleverReach enables us to analyze the behavior of newsletter recipients. Among other things, we can see how many recipients have opened the newsletter message and how often which link in the newsletter has been clicked. With the help of so-called conversion tracking, we can also analyze whether a predefined action (e.g. the purchase of a product on our website) has taken place after clicking on the link in the newsletter. For more information about data analysis using CleverReach newsletters, please visit: .

The data processing is carried out on the basis of your consent in accordance with type 6, paragraph 1, letter a of the GDPR. You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation. If you do not want CleverReach to analyze your data, you must unsubscribe from the newsletter. We provide a link for you to do this in every newsletter message. You can also unsubscribe from the newsletter directly on the website.

You can revoke the consent you have given at any time. You can also prevent processing at any time by unsubscribing from the newsletter. You can also prevent cookies from being stored by adjusting the settings of your web browser. You can also prevent the storage and transmission of personal data by disabling JavaScript in your web browser or installing a JavaScript blocker (e.g. https://noscript.net or https://www.ghostery.com). We would like to point out that these measures may mean that not all of the functions of our website are available.

The data you provide us with for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the CleverReach servers after you unsubscribe from the newsletter. Data that we have stored for other purposes (e.g. e-mail addresses for the members area) remain unaffected. CleverReach's data protection information: https://www.cleverreach.com/de/datenschutz/.

In particular, such an evaluation is carried out in accordance with Art. 6 Para. 1 lit. f DSGVO on the basis of our legitimate interests in the display of personalized advertising, market research and/or demand-oriented design of our website.

CLEVERREACH

This website uses CleverReach to send newsletters. The provider is CleverReach GmbH & Co. KG, (CRASH Building), Schafjückenweg 2, 26180 Rastede. CleverReach is a service that organizes and analyzes the distribution of newsletters. The data you enter to subscribe to the newsletter (e.g. your e-mail address) is stored on CleverReach servers in Germany and Ireland.
 

Sending our newsletter with CleverReach enables us to analyze the behavior of newsletter recipients. Among other things, we can see how many recipients have opened the newsletter message and how often which link in the newsletter has been clicked. With the help of so-called conversion tracking, we can also analyze whether a predefined action (e.g. the purchase of a product on our website) has taken place after clicking on the link in the newsletter. For more information about data analysis using CleverReach newsletters, please visit: .

The data processing is carried out on the basis of your consent in accordance with type 6, paragraph 1, letter a of the GDPR. You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation. If you do not want CleverReach to analyze your data, you must unsubscribe from the newsletter. We provide a link for you to do this in every newsletter message. You can also unsubscribe from the newsletter directly on the website.

You can revoke the consent you have given at any time. You can also prevent processing at any time by unsubscribing from the newsletter. You can also prevent cookies from being stored by adjusting the settings of your web browser. You can also prevent the storage and transmission of personal data by disabling JavaScript in your web browser or installing a JavaScript blocker (e.g. https://noscript.net or https://www.ghostery.com). We would like to point out that these measures may mean that not all of the functions of our website are available.

The data you provide us with for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the CleverReach servers after you unsubscribe from the newsletter. Data that we have stored for other purposes (e.g. e-mail addresses for the members area) remain unaffected. CleverReach's data protection information:
https://www.cleverreach.com/de/datenschutz/

We have our own pages on social networks so that we can communicate with you on these networks and inform you about our outputs. When you visit one of our social media pages, we are jointly responsible for the processing operations triggered by this with the provider of the respective social media platform in terms of type. 26 GDPR.
We are not the original provider of these pages, but only use them within the scope of the options offered to us by the respective providers.
As a precaution, we would like to point out that your data may also be processed outside the European Union or the European Economic Area, in particular in the United States. Use may therefore involve data protection risks for you, as it may be more difficult to protect your rights, e.g. to information, deletion, objection, etc., and the processing in the social networks often takes place directly for advertising purposes or for analyzing user behavior by the providers, without this being able to be influenced by us. If the provider creates user profiles, cookies are often used and/or the user behavior is assigned to the social network member profile that you have created.
The described processing operations of personal data are carried out in accordance with Art. 6 para. 1 lit. f GDPR based on our legitimate interest and the legitimate interest of the respective provider, in order to communicate with you in a timely manner and to be able to inform you about our services. If you have to give your consent to data processing as a user to the respective providers, the legal basis for this is Art. 6 (1) point a GDPR in conjunction with Art. 7 GDPR.
Since we do not have access to the providers' databases, we would like to point out that you should ideally assert your rights (e.g. to information, correction, deletion, etc.) directly with the respective provider. Further information on the processing of your data in social networks can be found below for each of the social network providers we use:

a) Facebook

(Jointly) responsible for data processing in Europe:
Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland.

Privacy Policy (Data Policy): https://www.facebook.com/about/privacy

b) Instagram

(Jointly) responsible for data processing in Germany:
Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland
Privacy Policy (Data Policy): https://instagram.com/legal/privacy/

c) LinkedIn

(Jointly) responsible for data processing in Europe: 
LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland

Privacy Policy: https://www.linkedin.com/legal/privacy-policy

d) YouTube

(Jointly) responsible for data processing in Europe:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

Privacy Policy: https://policies.google.com/privacy

e) google my business

(Jointly) responsible for data processing in Europe:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

Privacy Policy: https://policies.google.com/privacy

f) XING (New Work SE)

(Jointly) responsible for data processing in Germany:
New Work SE, Am Strandkai 1, 20457 Hamburg, Germany

Privacy Policy: https://privacy.xing.com/de/datenschutzerklaerung
XING member access requests: https://www.xing.com/settings/privacy/data/disclosure

a) LinkedIn Analytics

On this website, we use the retargeting tool and the conversion tracking of LinkedIn Ireland, Wilton Plaza, Wilton Place, Dublin 2, Ireland (LinkedIn). For this purpose, the LinkedIn Insight Tag is integrated on our website, which enables LinkedIn to collect statistical data about your visit and use of our website and to provide us with corresponding aggregated statistics on this basis. The service also allows us to show you offers and recommendations that are relevant and tailored to your interests after you have visited our website to find out more about certain services, information and offers. The information in this regard is stored in a cookie. The following data is usually collected and processed:

• IP address
• Device information
• Browser information
• Referrer URL and
• timestamp

These processing operations are carried out exclusively with the express consent of the data subject in accordance with Art. 6 (1) point a GDPR. Your data will be stored until you withdraw your consent. As part of the processing via LinkedIn, data may be transferred to the USA and Singapore. This US company is certified under the EU-US Data Privacy Framework. This constitutes an adequacy decision in accordance with type 45 of the GDPR, so that personal data may be transmitted without further guarantees or additional measures. In addition, the security of the transmission is regularly secured by means of so-called standard contractual clauses, which ensure that the processing of personal data is subject to a level of security that corresponds to that of the GDPR. If the standard contractual clauses are not sufficient to establish an adequate level of security, your consent will be obtained in accordance with Art. 49 (1) (a) GDPR.

LinkedIn's privacy policy: https://de.linkedin.com/legal/privacy-policy.

b) Meta Pixel (formerly Facebook Pixel)

This website uses the Facebook pixel of Meta Platforms, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA (“Meta”). If express consent has been granted, this allows the behavior of users to be tracked after they have seen or clicked on a Facebook ad. This process is used to evaluate the effectiveness of Facebook ads for statistical and market research purposes and can help optimize future advertising efforts. When you visit the website, the following data, among other things, may be processed by the meta pixel:

• IP address,
• device information,
• browsing history
• interactions on our website (e.g. page views, clicks, conversions).

The data is stored and processed by Meta so that it can be linked to the respective user profile and Meta can use the data for its own advertising purposes, in accordance with the Meta (Facebook) data usage guidelines (https://www.facebook.com/about/privacy/). This enables Meta and its partners to place advertisements on and off Facebook. Furthermore, a cookie may be stored on your computer for these purposes. The collected data is stored by Meta for a period of 180 days and then removed if the website is not visited again by the user.
These processing operations are carried out exclusively with the express consent of the user in accordance with Art. 6 (1) point a GDPR. This US company is certified under the EU-US Data Privacy Framework. This constitutes an adequacy decision in accordance with Art. 45 GDPR, so that personal data may be transferred without further guarantees or additional measures.

c) Google Analytics 4 (GA4)

On our websites, we use Google Analytics 4 (GA4), a web analysis service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). In this context, pseudonymized user profiles are created and cookies (see “Cookies” section) are used. The information generated by the cookie about your use of this website may include, but is not limited to, the following:

• a short-term recording of the IP address without permanent storage
• location data
• browser type/version
• operating system used
• referrer URL (previously visited page)
• time of server request

The pseudonymized data may be transmitted by Google to a server in the United States and stored there. The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services relating to website activity and internet usage for the purposes of market research and tailoring these websites to meet requirements. This information may also be transferred to third parties if this is required by law or if third parties process this data on behalf of third parties. These processing operations are carried out exclusively with the express consent of the data subject in accordance with Art. 6 para. 1 lit. a) GDPR. The default storage period for data set by Google is 14 months. Otherwise, personal data is stored for as long as it is needed to fulfill the purpose of the processing. The data will be deleted as soon as it is no longer needed for the purpose for which it was collected. The parent company Google LLC is certified as a US company under the EU-US Data Privacy Framework. This constitutes an adequacy decision in accordance with type 45 of the GDPR, so that personal data may be transferred without further guarantees or additional measures.

Further information about GA4: https://support.google.com/analytics/answer/12017362?hl=de.

d) Google Analytics 4 (GA4) - Additional information on consent mode, advanced implementation

Under the Digital Markets Act, Google is required to obtain the consent of users before Google processes user data for personalized advertising. Google complies with this requirement with the “Consent Mode”. Users are required to implement this mode and thus prove that they have obtained the consent of website visitors. Google offers two implementation modes, the simple and the advanced implementation.
We use the advanced implementation method of the Google Consent Mode. If you consent to the data processing in connection with the use of GA4 (see above), a connection to Google is established, Google Analytics cookies are set and the corresponding processing is carried out. If you refuse consent, no Google Analytics cookies are set. However, a unique “ping ID” is generated and transmitted to Google. The Google code is executed, whereby only limited user data is transmitted to Google, including information such as IP address, browser details, visited URL. A personalized user ID is not assigned. If you have consented to Google Analytics 4, Consent Mode, advanced implementation, being executed, the legal basis for the processing of personal data is Art. 6 (1) point a GDPR. In addition, it is in our legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO to use Google Analytics 4, Consent Mode, advanced implementation, to obtain data on conversions without creating user profiles and thus increase profitability.

e) Google Analytics Remarketing

We have integrated Google Remarketing services into this website. The company operating the Google Remarketing services is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Remarketing is a feature of Google AdWords that allows a company to display advertising to internet users who have previously visited the company's website. The integration of Google Remarketing therefore allows a company to create user-based advertising and thus to show the Internet user interest-relevant advertisements. The purpose of Google Remarketing is to show interest-relevant advertising. Google Remarketing allows us to display ads on the Google advertising network or on other websites that are tailored to the individual needs and interests of Internet users. Google Remarketing sets a cookie on the IT system of the person concerned. By setting the cookie, Google is able to recognize visitors to our website when they subsequently visit websites that are also members of the Google advertising network. Each time you visit a website that has integrated the Google Remarketing service, your internet browser automatically identifies itself to Google. As part of this technical process, Google receives knowledge of personal data, such as your IP address or surfing behavior, which Google uses, among other things, to display interest-relevant advertising. Personal information, for example the websites you visit, is stored by means of cookies. Accordingly, each time you visit our website, personal data, including your IP address, is transmitted to Google in the United States of America. These personal data are stored by Google in the United States of America. Google may pass these personal data collected through the technical process to third parties. These processing operations are carried out exclusively with the express consent of the data subject in accordance with Art. 6 para. 1 lit. a) GDPR. The parent company Google LLC is certified as a US company under the EU-US Data Privacy Framework. This constitutes an adequacy decision in accordance with type 45 GDPR, so that personal data may be transferred without further guarantees or additional measures.

Privacy Policy: https://www.google.de/intl/de/policies/privacy/.

f) Hotjar

This website uses Hotjar. The provider is Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta. Hotjar is a tool for analyzing your user behavior on this website. With Hotjar, we can, among other things, record your mouse and scroll movements and clicks. Hotjar can also determine how long you remained with the mouse pointer in a particular place. From this information, Hotjar creates so-called heat maps, which can be used to determine which areas of the website are preferred by the website visitor. Furthermore, we can determine how long you have remained on a page and when you left it. We can also determine at which point you interrupted your entries in a contact form (so-called conversion funnels). In addition, direct feedback from website visitors can be obtained with Hotjar. This function serves to improve the website operator's web offers. Hotjar uses cookies. Cookies are small text files that are stored on your computer and saved by your browser. They serve to make our offer more user-friendly, effective and secure. In particular, these cookies can be used to determine whether this website has been visited with a specific device or whether the Hotjar functions have been disabled for the browser in question. Hotjar cookies remain on your device up to the point at which you delete them. You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, accept cookies for certain cases or generally exclude them and activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited. These processing operations are carried out exclusively with the express consent of the data subject in accordance with type 6 paragraph 1 lit. a) GDPR. Further information about Hotjar can be found at:
https://help.hotjar.com/hc/en-us/categories/115001323967-About-Hotjar.

a) Google Ads (AdWords) Remarketing/Retargeting

We have integrated Google Ads into this website. The company operating the Google Ads services is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). We use it to advertise this website in Google search results and on third-party websites. To do this, Google trims a cookie in the browser of your device, which automatically enables interest-based advertising by means of a pseudonymous cookie ID and based on the pages you visit. Any further data processing will only take place if you have given Google permission to link your internet and app browsing history to your Google account and to use information from your Google account to personalize shows that you view on the web. If you are logged into Google while visiting our website, Google will use your data together with Google Analytics data to create and define target group lists for cross-device remarketing. To do this, Google temporarily links your personal data with Google Analytics data to create target groups. These processing operations are carried out exclusively with the express consent of the data subject in accordance with Art. 6 para. 1 lit. a) GDPR.
The parent company Google LLC is certified as a US company under the EU-US Data Privacy Framework. This constitutes an adequacy decision in accordance with type 45 GDPR, so that personal data may be transferred without further guarantees or additional measures. Data protection provisions and further information: https://www.google.com/policies/technologies/ads/. 

b) Google AdSense

We have integrated Google AdSense into this website. The operating company of the Google AdSense component is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google AdSense is an online service that enables the placement of advertising on third-party sites. Google AdSense is based on an algorithm that selects advertisements displayed on third-party sites that are suitable for the content of the respective third-party site. Google AdSense allows an interest-based targeting of the Internet user, which is implemented by means of generating individual user profiles.
The purpose of the Google AdSense component is to integrate advertisements into our website. Google AdSense places a cookie on your IT system. By placing the cookie, Alphabet Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA, is able to analyze the use of our website. Each time you visit one of the individual pages of this website, which is operated by us and on which a Google AdSense component has been integrated, the internet browser on your IT system is automatically prompted by the respective Google AdSense component to transmit data to Alphabet Inc. for the purpose of online advertising and commission settlement. As part of this technical process, Alphabet Inc. obtains knowledge of personal data, such as your IP address, which Alphabet Inc. uses, among other things, to track the origin of visitors and clicks and subsequently enable commission statements.
Google AdSense also uses so-called tracking pixels. A tracking pixel is a miniature graphic embedded in web pages to enable log file recording and log file analysis, which allows a statistical analysis to be carried out. Based on the embedded tracking pixel, Alphabet Inc. can recognize if and when a website was opened by your IT system and which links you clicked on. Among other things, tracking pixels are used to evaluate the flow of visitors to a website.
Personal data and information, which also includes the IP address and is necessary for the collection and billing of the displayed advertisements, is transferred to Alphabet Inc. in the United States of America via Google AdSense. This personal data is stored and processed in the United States. Alphabet Inc. may pass on this personal data collected through the technical process to third parties.
These processing operations are carried out exclusively with the express consent of the data subject in accordance with Article 6(1)(a) GDPR. The parent company Google LLC is certified as a US company under the EU-US Data Privacy Framework. This constitutes an adequacy decision in accordance with Article 45 GDPR, so that personal data may be transferred without further guarantees or additional measures. Further information: https://www.google.de/intl/de/adsense/start/ as well as https://www.google.com/policies/technologies/ads . 

c) Google Ads with conversion tracking

We have integrated Google Ads into this website. The company that operates the Google Ads services is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Ads is an online advertising service that allows advertisers to show ads in both Google's search engine results and the Google advertising network. Google Ads allows an advertiser to pre-define specific keywords that will only display an ad in Google's search engine results when the user uses the search engine to retrieve a keyword-relevant search result. In the Google advertising network, the ads are distributed to topic-relevant websites using an automatic algorithm and taking into account the previously defined keywords. The purpose of Google Ads is to promote our website by displaying interest-relevant advertising on the websites of third-party companies and in the search engine results of the Google search engine and by displaying third-party advertising on our website. If you access our website via a Google ad, a so-called conversion cookie is stored on your IT system by Google. A conversion cookie loses its validity after thirty days and is not used to identify you. If the cookie has not yet expired, the conversion cookie is used to determine whether certain sub-pages, such as the shopping cart from an online shop system, have been accessed on our website. The conversion cookie allows both us and Google to track whether a user who came to our website via an AdWords ad generated sales, i.e. completed or canceled a purchase. The data and information collected through the application of the conversion cookie is used by Google to create visitor statistics for our website. We use these visit statistics to determine the total number of users who have been referred to us via Ads ads, i.e. to determine the success or failure of the respective Ads ad and to optimize our Ads ads for the future. Neither our company nor other Google Ads advertisers receive any information from Google that could be used to identify you.
The conversion cookie is used to store personal information, such as the websites you visit. Each time you visit our website, personal data, including the IP address of the internet connection you are using, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may pass on this personal data collected through the technical process to third parties. These processing operations are carried out exclusively with the express consent of the data subject in accordance with Art. 6 para. 1 lit. a) GDPR. The parent company Google LLC is certified as a US company under the EU-US Data Privacy Framework. This constitutes an adequacy decision in accordance with type 45 GDPR, so that personal data may be transmitted without further guarantees or additional measures. You can view the data protection provisions and further information from Google AdSense at: https://www.google.de/intl/de/policies/privacy/.

d) Google Ads with enhanced conversions

We have integrated Google Ads into this website. The company operating the Google Ads services is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google Ads is an online advertising service that allows advertisers to show ads in both Google's search engine results and the Google advertising network. The purpose of Google Ads is to advertise our website by displaying interest-relevant advertising on the websites of third-party companies and in the search engine results of the Google search engine and by displaying third-party advertising on our website. If you access our website via a Google ad, a so-called conversion cookie is stored on your IT system by Google. A conversion cookie loses its validity after thirty days and is not used to identify you. If the cookie has not yet expired, the conversion cookie is used to track whether certain sub-pages, such as the shopping cart from an online shop system, have been accessed on our website. The conversion cookie enables both us and Google to track whether a user who came to our website via a Google Ads ad generated a sale, i.e. completed or abandoned a purchase. We use the option of enhanced conversions from Google Ads. For this purpose, we transmit personal data collected by us, such as telephone numbers or email addresses, to Google. This data is compared with event data on Google shows in order to capture more conversions. Accordingly, each time you visit our website, personal data, including the IP address of the internet connection you are using, is transmitted to Google in the United States of America. Google may pass on this personal data collected through the technical process to third parties.
These processing operations are carried out exclusively with the express consent of the user in accordance with Art. 6 para. 1 lit. a) GDPR. The parent company Google LLC is certified as a US company under the EU-US Data Privacy Framework. This constitutes an adequacy decision in accordance with type 45 of the GDPR, so that personal data may be transmitted without further guarantees or additional measures. You can view the data protection provisions and further information from Google Ads at: https://www.google.de/intl/de/policies/privacy/ or https://support.google.com/adspolicy/answer/9755941?hl=de&ref_topic=7012636&sjid=9061832235671554201-EU.

e) Google Ads - Additional information on consent mode, advanced implementation

Under the Digital Markets Act, Google is required to obtain the consent of users before Google processes user data for personalized advertising. Google complies with this requirement with the “Consent Mode”. Users are obliged to implement this and thus prove that they have obtained the consent of website visitors.
Google offers two implementation modes, the simple and the advanced implementation.
We use the advanced implementation method of the Google Consent Mode. If you consent to the data processing in connection with the use of Google Ads (see above), a connection to Google is established, Google Analytics cookies are set and the corresponding processing is carried out. If you refuse consent, no Google Ads cookies are set. However, a unique “ping ID” is generated and transmitted to Google. The Google code is executed, whereby only limited user data is transmitted to Google, including information such as IP address, browser details, visited URL. A personalized user ID is not assigned.
If you have consented to Google Ads, Consent Mode, advanced implementation, being executed, the legal basis for the processing of personal data is Art. 6 para. 1 lit. a GDPR. In addition, it is in our legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO to use Google Analytics 4, Consent Mode, advanced implementation, to obtain data on conversions without creating user profiles and thus increase profitability.

f) LinkedIn Ads

We have integrated LinkedIn Ads into this website. The operating company of the service is LinkedIn Ireland, Wilton Plaza, Wilton Place, Dublin 2, Ireland. We use this to advertise our company on the Linkedin social network. For this purpose, LinkedIn places a cookie in the browser of your end device, which automatically enables interest-based advertising based on the pages you visit. These processing operations are carried out exclusively with the express consent of the data subject in accordance with Art. 6 para. 1 lit. a GDPR. Your data will be deleted as soon as it is no longer required for the purpose for which it was collected or you revoke your consent. As part of processing via LinkedIn, data may be transferred to the USA and Singapore. This US company is certified under the EU-US Data Privacy Framework. This constitutes an adequacy decision pursuant to Art. 45 GDPR, so that personal data may be transferred without further guarantees or additional measures. In addition, the security of the transfer is regularly secured by means of so-called standard contractual clauses, which ensure that the processing of personal data is subject to a level of security that corresponds to that of the GDPR. If the standard contractual clauses are not sufficient to provide an adequate level of security, your consent will be obtained in accordance with type 49 (1) (a) of the GDPR.
For more information about LinkedIn's privacy policy, please visit: https://de.linkedin.com/legal/privacy-policy.

a) Friendly Captcha

We use the Friendly Captcha function on this website. The operating company is Friendly Captcha GmbH, Am Anger 3-5, 82237 Wörthsee, Germany. The main purpose of the captcha function is to distinguish whether an input is made by a natural person or abusively by machine and automated processing. Friendly Captcha generates a cryptographic puzzle for this purpose, which is solved by the respective browser completely in the background. Based on the collected technical signals, the difficulty can be adjusted to make it more difficult for possible bots to progress. The data processed by Friendly Captcha exclusively in the EU are: browser type and settings, information about the operating system of the end device, IP addresses. The use of Friendly Captcha is based on our legitimate interest, Art. 6 para. 1 lit. f) GDPR, to effectively prevent activities of spam bots, fake users, click fraud and DDos attacks. Further information about Friendly Captcha can be found at: https://friendlycaptcha.com/privacy/.

b) Google Maps

is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Ireland Limited is part of the Google group of companies headquartered at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Maps is a web service for displaying interactive maps to visually display geographic information. By using this service, for example, our location can be shown to you and it may be easier for you to find your way to us.
When you access the sub-pages in which the Google Maps map is integrated, information about your use of our website (such as your IP address) is transmitted to Google servers in the United States and stored there, provided that you have given your consent to do so in accordance with type. 6 para. 1 lit. a) GDPR. In addition, Google Maps loads the Google Web Fonts and Google Photos as well as Google stats. The service provider is also Google Ireland Limited. When you access a page that integrates Google Maps, your browser loads the web fonts and photos required to display Google Maps into your browser cache. For this purpose, too, the browser you use establishes a connection to Google's servers. This enables Google to know that our website has been accessed via your IP address. This occurs regardless of whether Google provides a user account that you are logged in to, or if there is no user account. If you are logged in to Google, your information will be directly associated with your account. If you do not wish to be associated with your profile on Google, you must log out of your Google Account. Google stores your data (even for users who are not logged in) as user profiles and evaluates them. You have the right to object to the creation of these user profiles, but you must contact Google to exercise this right. If you do not agree to the future transmission of your data to Google when using Google Maps, you also have the option of completely deactivating the Google Maps web service by switching off the JavaScript application in your browser. Google Maps and thus the map display on this website cannot then be used. These processing operations are carried out exclusively with the express consent of the user in accordance with type 6 paragraph 1 letter a) of the GDPR.

You can view Google's terms of use at https://www.google.de/intl/de/policies/terms/regional.html . The additional terms of use for Google Maps can be found here: https://www.google.com/intl/de_US/help/terms_maps.html .

The parent company Google LLC is certified as a US company under the EU-US Data Privacy Framework. This constitutes an adequacy decision in accordance with type 45 GDPR, so that personal data may be transferred without further guarantees or additional measures. You can view the Google Maps data protection provisions at (“Google Privacy Policy”): https://www.google.de/intl/de/policies/privacy/.

c) Google Tag Manager

We use the Google Tag Manager service on this website. Google Tag Manager is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Ireland Limited is part of the Google group of companies headquartered at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. This tool allows website tags (i.e. keywords that are integrated into HTML elements) to be implemented and managed via a surface finish. Through the use of Google Tag Manager, we can automatically track which button, link or personalized image you have actively clicked on and can then determine which content on our website is of particular interest to you. The tool also triggers other tags that may collect data under certain circumstances. Google Tag Manager does not access this data. If you have disabled tracking at the domain or cookie level, it will remain disabled for all tracking tags implemented with Google Tag Manager. These processing operations are carried out only if express consent is granted in accordance with Art. 6 (1) point a GDPR. The parent company Google LLC is certified as a US company under the EU-US Data Privacy Framework. This constitutes an adequacy decision in accordance with Art. 45 GDPR, so that personal data may be transferred without further guarantees or additional measures.
Further information about the Google Tag Manager and Google's privacy policy can be found at: https://www.google.com/intl/de/policies/privacy/.

d) Google WebFonts

Our website uses so-called web fonts for the uniform display of fonts. Google WebFonts are a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Ireland Limited is part of the Google group of companies headquartered at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
We have stored the required web fonts on our web servers to avoid redundant data transfers and integrate them in such a way that these fonts can show texts and fonts correctly without the browser used by you having to structure a connection to the servers of Google for this purpose. You can view further information about Google WebFonts as well as the data protection declaration of Google under: https://developers.google.com/fonts/faq ; https://www.google.com/policies/privacy/.

e) YouTube videos in enhanced privacy mode (Youtube-NoCookies)

Some sub-pages of our website contain links or connections to YouTube or embed videos from häwa that are provided by Google General. In general, we are not responsible for the content of linked websites. However, in the event that you follow a link on YouTube, we would like to point out that YouTube stores the data of its users (e.g. personal information, IP address) in accordance with its own data usage guidelines and uses it for business purposes. YouTube is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. We also embed videos stored on YouTube on some sub-pages of our website. When this is done, content from the YouTube website is displayed in parts of a browser window. When you access a (sub-)page of our website on which YouTube videos are embedded, a connection to the YouTube servers is established and the content is displayed on the website by notifying your browser.
YouTube content is only embedded in “extended data protection mode”. This is provided by YouTube itself and ensures that YouTube does not initially store any cookies on your device. However, when you access the relevant pages, the IP address and possibly other data are transmitted and in particular, information about which of our websites you have visited is shared. However, this information cannot be assigned to you unless you have logged in to YouTube or another Google service before accessing the page or are permanently logged in. As soon as you start playing an embedded video by clicking on it, YouTube's enhanced privacy mode only stores cookies on your device that do not contain any personally identifiable information unless you are currently logged in to a Google service. These cookies can be prevented by appropriate browser settings and extensions. By requesting the video, you consent to the placement of the corresponding cookie (Art. 6 para. 1 sentence 1 lit. a) GDPR).
Notice of this is provided by our Consentmanager in the form of a checkbox marked “Accept” before the video can be clicked on. Personal data will only be processed and cookies will only be set if you activate the content and give your consent.
Google/YouTube is certified under the EU-US Data Privacy Framework. This constitutes an adequacy decision in accordance with type 45 of the GDPR, so that personal data may be transferred without further guarantees or additional measures.
YouTube's privacy policy: https://www.google.de/intl/de/policies/privacy/.

f) Unity Software

We use services from Unity Software Inc., San Francisco, USA on our website for optimal integration and display of information and 3D content via the Customer Data Platform from unity3d.com. This enables us to present our X-frame solutions to you on our website, for example, with various viewing options in 3D.
To provide the information, certain usage data such as the IP address is transmitted to Unity Software, where it is processed and analyzed via the Customer Data Platform. This serves to improve our offer, integrate it efficiently and thus offer you a better user experience. Data will only be transferred to unity3d.com servers with your consent. The legal basis for this is type 6 I lit a) GDPR. In addition, the security of the transmission is regularly secured by standard contractual clauses of Unity Software Inc., which ensure that the processing of personal data is subject to an adequate level of security that corresponds to that of the GDPR.
For more information about data protection at unity3d.com, please visit https://unity.com/de/legal/privacy-policy.

a) General information about cookies

We use cookies for our website. These are data sets that your browser automatically creates and that are stored on your IT system or end device (laptop, tablet, smartphone, etc.) when you visit our site. Information is stored in the cookie that results in each case in connection with the specific end device used. However, this does not mean that we immediately become aware of your identity. On the one hand, the use of cookies serves to make the use of our services more convenient for you. For example, we use so-called session cookies to recognize that you have already visited individual pages on our website. These are automatically deleted after you leave our site.
In addition, we also use temporary cookies to optimize user-friendliness. These are stored on your end device for a specified period of time. If you visit our site again to use our services, it will automatically recognize that you have visited us before and what inputs and settings you have made so that you do not have to re-enter them.
On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you. These cookies enable us to automatically recognize that you have already visited our site when you visit it again. These cookies are automatically deleted after a defined period of time. The respective storage period of the cookies can be found in the consent manager settings.
The data processed by the cookies, which are required for the proper functioning of the website, are thus required to protect our legitimate interests and those of third parties in accordance with type. 6 para. 1 lit. f) GDPR. For all other cookies, you have given your consent to this via our consent management / opt-in cookie banner in accordance with type. 6 para. 1 lit. a) GDPR.

b) Notices on disabling cookies in common browsers

You can delete cookies, only allow selected cookies or completely disable cookies at any time through the settings of the browser you are using. Further information can be found on the support pages of the respective providers: 

Chrome: https://support.google.com/chrome/answer/95647?tid=311178978 .
Safari: https://support.apple.com/de-at/guide/safari/sfri11471/mac?tid=311178978. 
Firefox: https://support.mozilla.org/de/kb/cookies-und-website-daten-in-firefox-loschen?tid=311178978. 
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-l%C3%B6schen-63947406-40ac-c3b8-57b9-2a946a29ae09. 

c) Consent management platform from consentmanager

We use the consent management platform “Consentmanager” from consentmanager AB, Haltegelvägen 1b, 72348 Västeras, Sweden. This service enables us to obtain and manage the consent of website users for data processing.
Consentmanager collects data generated by end users who use our website. When an end user gives consent, Consentmanager automatically logs the following data:

• Browser information.
• Date and time of access.
• Device information.
• The URL of the page visited.
• Banner language.
• Consent ID.
• The end user's consent status, which serves as proof of consent.
• The consent status is also stored in the end user's browser so that the website can automatically read and follow the end user's consent for all subsequent page requests and future end user sessions for up to 12 months. The consent data (consent and revocation of consent) is stored for three years. The retention period corresponds to the regular limitation period according to § 195 BGB. The data is then deleted immediately.
• The functionality of the website cannot be guaranteed without the processing described. There is no right of objection on the part of the user as long as there is a legal obligation to obtain the user's consent for certain data processing operations (type. 7 para. 1, 6 para. 1 p. 1 lit. c) GDPR).
• Consentmanager is the recipient of your personal data and works for us as a processor. The data processing takes place exclusively in the European Union.
• Data protection information from Consentmanager: https://www.consentmanager.de/datenschutz/.

You can change your data protection settings at any time via our data protection page.

Right to confirmation – You have the right to request confirmation from us as to whether personal data concerning you is being processed.

Right to information – Type. 15 GDPR – You have the right to receive information from us at any time and free of charge about the personal data stored about you, as well as a copy of this data in accordance with the statutory provisions.

Right to rectification Art. 16 GDPR - You have the right to request the correction of incorrect personal data concerning you. Furthermore, you have the right to request the completion of incomplete personal data, taking into account the purposes of the processing.

Right to erasure (type. 17 GDPR) – You have the right to demand that we erase personal data concerning you without undue delay where one of the grounds provided by law applies and where processing or storage is not required.

Right to restriction of processing (type. 18 GDPR) – You have the right to demand that we restrict processing if one of the legal requirements is met.

Right to data portability Art. 20 GDPR – You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format. You also have the right to transfer this data to another controller without hindrance from us, to whom the personal data has been provided, provided that the processing is based on the consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR or on a contract in accordance with Art. 6 (1) (b) GDPR and the processing is carried out using automated procedures, unless the processing is necessary for the performance of a task that is in the public interest or in the exercise of official authority, which has been transferred to us.

Furthermore, when exercising your right to data portability in accordance with Art. 20 (1) GDPR, you have the right to have the personal data transmitted directly from one controller to another, where technically feasible and when doing so does not adversely affect the rights and freedoms of others.

Right to objectArt. 21 GDPR – You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Art. 6 (1) lit. e (data processing in the public interest) or f (data processing for the purposes of legitimate interests) GDPR. This also applies to profiling based on these provisions within the meaning of Order No. 4 of the GDPR. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or if the processing is for the purpose of enforcing, pursuing or defending legal claims. In individual cases, we process personal data for direct marketing purposes. You can object to the processing of personal data for the purpose of such advertising at any time. This also applies to profiling insofar as it is associated with such direct marketing. If you object to processing for direct marketing purposes, we will no longer process the personal data for these purposes. In addition, you have the right, on grounds relating to your particular situation, to object to processing of personal data concerning you which is carried out by us for scientific or historical research purposes or for statistical purposes in accordance with Article 89(1) of the GDPR, unless such processing is necessary for the performance of a task carried out in the public interest.

You are free to exercise your right of objection in relation to the application of information society services, notwithstanding Directive 2002/58/EC, by means of automated procedures using technical specifications.

Right to revoke consent under data protection law – You have the right to revoke consent to the processing of personal data at any time with effect for the future.

Right to complain to a regulatory authority – You have the right to complain to a regulatory authority responsible for data protection about our processing of personal data. You can find a summary of the contact details of the data protection officers in the federal states and the regulatory authorities for the non-public sector and in other countries on the website of the Federal Commissioner for Data Protection and Freedom of Information, BfDI, under Addresses and Links.

We do not use profiling in the sense of type 22 DSGVO when using our websites.

We process and store your personal data only for the period of time necessary to achieve the purpose of storage or as required by the legislation to which our company is subject.
If the purpose of storage no longer applies or if a prescribed storage period expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.

The criterion for the duration of the storage of personal data is the respective statutory retention period. After the deadline, the corresponding data is routinely deleted, provided that it is no longer required for contract fulfillment or contract initiation.