Privacy policy

Thank you for visiting our website naoo.com and for your interest in our company.

The protection of your personal data, such as date of birth, name, telephone number, address, etc., is important to us.

The purpose of this privacy policy is to inform you about the processing of your personal data that we collect when you visit our website. Our data protection practices comply with the legal provisions of the Swiss Federal Act on Data Protection (FADP) and the EU General Data Protection Regulation (GDPR). The following privacy policy serves to fulfill the information obligations under the FADP and the GDPR. These can be found, for example, in Art. 19 ff. FADP and Art. 13 ff. of the GDPR.

Owner or responsible person

The controller within the meaning of Art. 5 lit. j DSG and Art. 4 No. 7 GDPR is the person who, alone or jointly with others, decides on the purposes and means of processing personal data. The controller pursuant to Art. 4 No. 7 GDPR is also the recipient of the personal data within the meaning of Art. 4 No. 9 GDPR. Any third-party recipients are identified separately.

With regard to our website, the owner or responsible person is:

naoo AG
Baarerstrasse 21
6300 Zug
Switzerland
Email: hi@naoo.com
Tel.: 044 202 94 94

Provision of the website and creation of log files

Each time our website is accessed, our system automatically collects data and information from the respective retrieving device (e.g. computer, cell phone, tablet, etc.).

What personal data is collected and to what extent is it processed?

(1) Information about the browser type and version used;
(2) The operating system of the accessing device;
(3) Host name of the accessing computer;
(4) The IP address of the accessing device;
(5) Date and time of access;
(6) Websites and resources (images, files, other page content) that were accessed on our website;
(7) Websites from which the user's system accessed our website (referrer tracking);
(8) Notification of whether the retrieval was successful;
(9) Amount of data transferred

This data is stored in our system's log files. This data is not stored together with the personal data of a specific user, meaning that individual site visitors cannot be identified.

Legal basis for the processing of personal data

The processing of personal data is carried out according to the principle of legality (Art. 6 para. 1 DSG) and according to the requirement of good faith (Art. 6 para. 2 DSG or Art. 2 ZGB) as well as Art. 6 para. 1 lit. f DSGVO (legitimate interest).

Purpose of data processing

The temporary (automated) storage of data is necessary for the process of visiting a website in order to enable the website to be delivered. The storage and processing of personal data is also carried out to maintain the compatibility of our website for as many visitors as possible and to combat misuse and eliminate malfunctions. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as quickly as possible to display errors, attacks on our IT systems, and/or errors in the functionality of our website. In addition, the data is used to optimize the website and to generally ensure the security of our information technology systems.

Duration of storage

The deletion of the aforementioned technical data takes place as soon as they are no longer needed to ensure the compatibility of the website for all visitors, but no later than 3 months after accessing our website.

Possibility of restriction, objection, correction and deletion

You may at any time request the restriction of processing in accordance with Art. 18 GDPR or object to processing in accordance with Art. 21 GDPR, as well as request the rectification or erasure of data in accordance with Art. 16 or 17 GDPR. You can find out what rights you have and how to exercise them in the lower section of this privacy policy.

Special functions of the website

Our website offers various functions that require us to collect, process, and store personal data. Below, we explain what happens to this data:

Contact form(s)

• What personal data is collected and to what extent is it processed?

  The data you entered in our contact forms, which you entered in the input mask of the contact form.

• Legal basis for the processing of personal data

  Personal data is processed in accordance with the principle of lawfulness (Art. 6 para. 1 FADP) and the requirement of good faith (Art. 6 para. 2 FADP or Art. 2 CC) as well as Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent by clear affirmative action or conduct or express consent).

• Purpose of data processing

  We will only use the data collected via our contact form(s) to process the specific contact request received via the contact form. Please note that we may also send emails to the address you provide in order to fulfill your contact request. The purpose of this is to enable you to receive confirmation from us that your request has been forwarded to us correctly. However, sending this confirmation email is not mandatory for us and is for your information only.

• Duration of storage

  After processing your request, the collected data will be deleted immediately, unless there are legal retention periods.

• Possibility of restriction, objection, correction and deletion

  You may request the restriction of processing in accordance with Art. 18 GDPR or object to processing in accordance with Art. 21 GDPR at any time, as well as request the correction or deletion of data in accordance with Art. 16 or 17 GDPR. You can find out what rights you have and how to exercise them in the lower section of this privacy policy.

• Necessity of providing personal data

  The use of the contact forms is voluntary. You are not obliged to contact us via the contact form, but can also use the other contact options provided on our website. If you wish to use our contact form, you must fill in the fields marked as mandatory. If you do not fill in the necessary information on the contact form, you will either not be able to send your request or we will not be able to process your request due to a lack of information.

Live chat function

• Scope of the processing of personal data

  The data you enter in our live chat, such as name and content.

• Legal basis for the processing of personal data

  Personal data is processed in accordance with the principle of lawfulness (Art. 6 para. 1 FADP) and the requirement of good faith (Art. 6 para. 2 FADP or Art. 2 CC) as well as Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent by clear affirmative action or conduct or express consent).

• Purpose of data processing

  We will only use the data recorded through our live chat to process requests received through our live chat.

• Duration of storage

  After processing your request, which we received in our live chat, the collected data will be deleted immediately, unless there are legal retention periods.

• Possibility of restriction, objection, correction and deletion

  You may request the restriction of processing in accordance with Art. 18 GDPR or object to processing in accordance with Art. 21 GDPR at any time, as well as request the correction or deletion of data in accordance with Art. 16 or 17 GDPR. You can find out what rights you have and how to exercise them in the lower section of this privacy policy.

• Necessity of providing personal data

  The use of live chat is voluntary. You are not obligated to contact us via live chat. You can also use the other contact options listed on our website. If you do not enter the necessary information, you will not be able to use our live chat.

Newsletter subscription form

• What personal data is collected and to what extent is it processed?

  By registering for the newsletter on our website, we receive the e-mail address entered by you in the registration field and, if applicable, further contact data, provided that you communicate this to us via the newsletter registration form.

• Legal basis for the processing of personal data

  Personal data is processed in accordance with the principle of lawfulness (Art. 6 para. 1 FADP) and the requirement of good faith (Art. 6 para. 2 FADP or Art. 2 CC) as well as Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent by clear affirmative action or conduct or express consent).

• Purpose of data processing

  The data entered in the registration form for our newsletter will be used by us exclusively for sending our newsletter, in which we provide information about all our services and news. After registration, we will send you a confirmation email containing a link that you must click to complete your registration for our newsletter (double opt-in). By doing so, you give your consent to data processing in accordance with Art. 6 (6) DSG.

• Duration of storage

  You can unsubscribe from our newsletter at any time by clicking on the unsubscribe link, which is also included in every newsletter. Your data will be deleted by us immediately after you unsubscribe, provided that there are no legal retention obligations. Similarly, your data will be deleted by us immediately in the event of an incomplete registration. We reserve the right to delete your data without giving reasons and without prior or subsequent notification.

• Possibility of restriction, objection, correction and deletion

  You may request the restriction of processing in accordance with Art. 18 GDPR or object to processing in accordance with Art. 21 GDPR at any time, as well as request the correction or deletion of data in accordance with Art. 16 or 17 GDPR. You can find out what rights you have and how to exercise them in the lower section of this privacy policy.

• Necessity of providing personal data

  If you would like to receive our newsletter, you must fill in the fields marked as mandatory and confirm your email address by clicking on the double opt-in link. The information provided when registering for the newsletter is necessary in order to make use of the newsletter service. The information is used exclusively for sending our newsletter. If you do not fill in the mandatory fields, we will not be able to provide you with our newsletter service.

Disclosure of information to third parties

Personal data is processed in accordance with the principle of legality (Art. 6 Para. 1 DSG) and the principle of good faith (Art. 6 Para. 2 DSG or Art. 2 ZGB).

The disclosure of information to third parties depends on the scope of activities or offers of our website or our business model described below.

As a matter of principle, we only retain your data for as long as necessary and treat it confidentially. Exceptions to this are the transfer of personal data to debt collection service providers, public bodies and authorities, and private individuals who are entitled to it on the basis of legal provisions, court decisions, or official orders, as well as the transfer to authorities for the purpose of initiating legal proceedings or for law enforcement purposes if our legally protected rights are violated.

Statistical analysis of visits to this website - Webtracker

When you visit this website or individual files on the website, we collect, process, and store the following data: IP address, website from which the file was accessed, file name, date and time of access, amount of data transferred, and notification of successful access (known as a web log). We use this access data exclusively in non-personalized form for the continuous improvement of our website and for statistical purposes.

Any personal data is processed in accordance with the principle of lawfulness (Art. 6 para. 1 DSG) and the requirement of good faith (Art. 6 para. 2 DSG and Art. 2 ZGB). We also use the following web trackers to evaluate visits to this website:

• Adform

  We use on our site the service Adform of the company Adform A/S, Silkegade 3B, ST. & 1st, 1113 Copenhagen, Denmark. According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The present service is an analysis tool that allows us to monitor the browsing behavior on our site.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://site.adform.com/privacy-center/overview/ .

• Adition.com

  We use on our site the service Adition.com of the company Virtual Minds GmbH, Ellen-Gottlieb-Straße 16, 79106 Freiburg im Breisgau, Germany, e-mail: info@virtualminds.de , website: https://www.adition.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  An advertising network is controlled via the service. The service thus serves us to display advertising of any kind.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.adition.com/datenschutz/ .

  The provider also offers an opt-out option at https://www.adition.com/datenschutz .

• Adobe Typekit

  We use on our site the service Adobe Typekit of the company Adobe Systems Software Ireland Limited, 4-6 Riverwalk Citywest Business Campus, 24 Dublin, Ireland, e-mail: contact.de@adobe.com , website: http://www.adobe.com/de . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transfer of personal data also takes place to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision regarding the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 DSGVO (hereafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  We use the Adobe Typekit service to include attractive fonts on our site and to provide you with a better-looking version of our website. The service may also be used on our website if other Adobe services are loaded on our website that require Adobe Typekit fonts to run. This is the case, for example, if our website uses Adobe services that require Adobe Typekit to run.

  For processing purposes, the service or we collect the following data: Data on fonts, IP address of the site visitor, statistics on font usage, and other data from Adobe services related to our website.

  If the service is activated on our website, our website establishes a connection to the servers of Adobe Systems Software Ireland Limited and transmits the required data. In the context of order processing, personal data may also be transferred to the servers of Adobe Inc., 345 Park Avenue, San Jose, California 95110-2704, USA. When using the Google service on our website, Adobe may transfer and process information from other Adobe services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be transferred to the Adobe services Document Cloud, Creative Cloud, and Acrobat in accordance with the Adobe privacy policy. You can view the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000TNo9AAG .

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at http://www.adobe.com/de/privacy.html .

  The provider also offers an opt-out option at https://www.adobe.com/de/privacy/opt-out.html .

• Adsrvr

  We use on our site the service Adsrvr of the company The Trade Desk, Inc. , Global Privacy Office 42 N. Chestnut St., 93001 Ventura, United States, e-mail: privacy@thetradedesk.com , website: https://www.thetradedesk.com/us . Your personal data will be transferred to so-called unsafe third countries, which do not guarantee adequate data protection through their legislation. Your data will only be passed on if adequate data protection is guaranteed. This can be guaranteed in particular by:

  • international treaties
  • Data protection clauses in a contract between the controller or processor and its contractual partner that have been communicated in advance to the FDPIC
  • specific guarantees drawn up by the competent federal body and communicated in advance to the FDPIC
  • Standard data protection clauses that the FDPIC has approved, issued or recognized in advance; or
  • Binding corporate data protection rules that have been approved in advance by the FDPIC or by an authority responsible for data protection in a country that ensures adequate protection

  If such guarantees are not in place, your data may only be disclosed if you have given your consent, if the disclosure is directly related to the conclusion or execution of a contract, or if the disclosure is necessary for the enforcement of claims before courts and authorities or for the protection of public interests. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  An advertising network is controlled via the service. The service thus serves us to display advertising of any kind. As part of the delivery of the advertising, the advertising range is also determined in order to be able to determine remuneration.

  You can access the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000TNT1AAO .

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.thetradedesk.com/us/website-privacy-policy .

  The provider also offers an opt-out option at https://www.adsrvr.org/ .

• Amobee

  We use on our site the service Amobee of the company Amobee, Inc, 10201 Wateridge Circle #400, CA 92121 San Diego, United States, e-mail: amobeeprivacy@Amobee.com , website: https://www.amobee.com/ . Your personal data will be transferred to so-called unsafe third countries, which do not guarantee adequate data protection through their legislation. Your data will only be passed on if adequate data protection is guaranteed. This can be guaranteed in particular by:

  • international treaties
  • Data protection clauses in a contract between the controller or processor and its contractual partner that have been communicated in advance to the FDPIC
  • specific guarantees drawn up by the competent federal body and communicated in advance to the FDPIC
  • Standard data protection clauses that the FDPIC has approved, issued or recognized in advance; or
  • Binding corporate data protection rules that have been approved in advance by the FDPIC or by an authority responsible for data protection in a country that ensures adequate protection

  If such guarantees are not in place, your data may only be disclosed if you have given your consent, if the disclosure is directly related to the conclusion or execution of a contract, or if the disclosure is necessary for the enforcement of claims before courts and authorities or for the protection of public interests. From the EU's perspective, data processing takes place in a third country for which no adequacy decision has been made by the EU Commission. Therefore, the level of protection required by the GDPR cannot be guaranteed during transmission, as it cannot be ruled out that authorities in the third country, for example, may have access to the data collected. Your data may only be transferred to these third countries if it is ensured that the personal data is adequately protected by the recipient. This can be achieved through the use of standard contractual clauses, through binding corporate rules for data transfers within a group of companies, through an obligation to comply with rules of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  An advertising network is controlled via the service. The service thus serves us to display advertising of any kind.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.amobee.com/trust/privacy-guidelines .

  The provider also offers an opt-out option at https://www.amobee.com/trust/consumer-opt-out/ .

• Awin / Zanox-Affiliate.com

  We use on our site the service Awin / Zanox-Affiliate.de of the company Awin AG, Landsberger Allee 104 BC, 10249 Berlin, Germany, e-mail: dach-service@awin.com , website: https://www.awin.com/de . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service allows us to collect and analyze data from you on the site in order to show you individualized advertising. In doing so, AWIN collects and uses the data to provide advertisers and publishers with valuable insights about the campaigns you have booked. The collection of the data also helps to increase the relevance and efficiency of the campaigns.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.awin.com/de/datenschutzerklarung .

• Blau mobile operator

  We use on our site the service Blau Mobilfunkanbieter of the company Telefónica Germany GmbH & Co. OHG, Georg-Brauchle-Ring 50, 80992 Munich, Germany, e-mail: impressum@blau.de , website: https://www.blau.de/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service is a plugin that we need to show you all the content of the mobile operator Blau on our website. The plugin makes our website more attractive and better experience for our site visitors.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.blau.de/recht/datenschutz/ .

• Cloudinary

  We use on our site the service Cloudinary of the company Cloudinary Ltd, Fabryczna Office Park, Budynek Alfa, piętro 9 Loftmill, Al. Pokoju 18,, 31-564 Kraków, Poland, e-mail: privacy@cloudinary.com , website: https://cloudinary.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  With the help of the service, we can reload and display media such as videos, sound streams or similar on our website. In addition, tracking activities take place through the use of the service.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://cloudinary.com/privacy .

• Crimtan

  We use on our site the service Crimtan of the company Crimtan Holdings Limited, 192-198 Vauxhall Bridge Road, SW1V 1DX London , United Kingdom, e-mail: dpo@crimtan.com , website: https://www.crimtan.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The processing also takes place in a third country outside the EU. For this third country there is an adequacy decision of the Commission. On the page of the EU Commission (Link: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_de ) you will find an up-to-date list of all adequacy decisions.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service is a plugin that we need to show you all the content on our website. The plugin makes our website more attractive and better experience for our site visitors.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.crimtan.com/privacy-policy .

  The provider also offers an opt-out option at https://www.crimtan.com/cookies/opt-out/ .

• Criteo

  We use on our site the service Criteo of the company Criteo SA, 32 Rue Blanche, 75009 Paris, France, email: dpo@criteo.com , website: https://www.criteo.com/de/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service allows us to collect and analyze data from you on the site in order to show you customized advertising.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.criteo.com/de/privacy/corporate-privacy-policy/ .

  The provider also offers an opt-out option at https://www.criteo.com/de/privacy/ .

• Custom Audiences

  We use on our site the service Custom Audiences of the company Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, 2 Dublin, Ireland, e-mail: impressum-support@support.facebook.com , website: http://facebook.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transfer of personal data also takes place to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision regarding the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 DSGVO (hereafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). Der Betreiber des Dienstes ist im Rahmen des DPF zertifiziert, so dass für die Übermittlung das übliche Schutzniveau der DSGVO gilt.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  Facebook Custom Audience is an advertising tool from Facebook that can be used to target advertising campaigns to page visitors.

  You can view the parent company's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000GnywAAC .

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.facebook.com/about/privacy .

  The provider also offers an opt-out option at https://www.facebook.com/about/privacy .

• Delta Projects

  We use on our site the service Delta Projects of the company Delta Projects AB, Linnégatan 89E, 11523 Stockholm, Sweden, e-mail: se@deltaprojects.com , website: http://deltaprojects.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service is a plugin that we need to show you all the content on our website. With the help of the service, we can include functions on our website that can be used to optimally promote our products. In doing so, we can also determine whether customers are interested in our products.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://deltaprojects.com/privacy-policy/ .

  The provider also offers an opt-out option at https://deltaprojects.com/privacy-policy/ .

• Facebook Connect

  We use on our site the service Facebook Connect of the company Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, 2 Dublin, Ireland, e-mail: impressum-support@support.facebook.com , website: http://www.facebook.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transfer of personal data also takes place to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision regarding the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 DSGVO (hereafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  Through Facebook Connect, users can use their Facebook profile to simplify logging into other web services.

  You can access the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000GnywAAC .

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.facebook.com/about/privacy .

  The provider also offers an opt-out option at https://www.facebook.com/about/privacy .

• Google

  We use on our site the service Google of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com , website: http://www.google.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transfer of personal data also takes place to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision regarding the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 DSGVO (hereafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  We use Google to be able to reload further services from Google on the website. The service is used to provide additional Google services, such as the required data processing in the provision of streams and fonts and relevant content of Google search. It is technically required in order to be able to exchange the site visitor's information already available to Google between the Google services and to be able to provide the site visitor with individual content adapted to his Google account.

  For processing purposes, the service or we collect the following data: Background data stored in the Google user account or other Google services about the site visitor, background data for the provision of Google services such as streaming data or advertising data, data about the site user's interaction with Google Search, information about the device used, the user's IP address and browser, and other data from Google services for the provision of Google services related to our website.

  If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the necessary data. In the context of order processing, personal data may also be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using the Google service on our website, Google may transfer and process information from other Google services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be transferred to the Google services Google Apis, Doubleclick, Google Cloud, Google Ads, and Google Fonts in accordance with Google's privacy policy. You can view the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active .

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy .

  The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de .

• Google AdSense

  We use Google AdSense on our website, a service for integrating advertisements from the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, email: support-deutschland@google.com, Website: https://www.google.com/. According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (DPF: https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). The operator of the service is certified under the DPF, meaning that the usual level of protection under the GDPR applies to the transmission.

  The legal basis for the transfer of personal data is your consent in accordance with Art. 6 (6) DSG or Art. 31 (2) DSG and in accordance with Art. 6 (1) lit. a GDPR or Art. 9 (2) lit. a GDPR, which you have given on our website.

  Google AdSense uses cookies and similar technologies (e.g., web beacons) to deliver advertisements, generate reports on ad performance, and analyze website usage. So-called DoubleClick cookies may also be used to enable the display of relevant advertisements, improve campaign performance, or prevent the same ad from being displayed to you multiple times.

  For processing purposes, the service or we collect the following data in particular: Information about interactions with advertisements (e.g., impressions/clicks), technical information about the end device (e.g., browser type, operating system), IP address, and, if applicable, cookie IDs and usage information derived from them.

  Further information on the handling of transferred data can be found in Google's privacy policy at https://policies.google.com/privacy.

  You can disable personalized advertising in Google's ad settings: https://adssettings.google.com.

• Google Ads

  We use on our site the service Google Ads of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com , website: http://www.google.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transfer of personal data also takes place to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision regarding the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 DSGVO (hereafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  Google Ads is an advertising system that allows us to place advertisements on external websites on the Internet to inform our customers about our services. Google Ads displays advertising tailored to our clientele on external websites according to parameters set by us, which leads to our website. If the site visitor clicks on the Google Ads advertisement, he or she is taken to our website. In order to be able to measure the Google Ads advertisements in terms of their success and remuneration, Google Ads carries out a measurement of the success of the advertising measure when our website is called up. our website processes the data provided by Google Ads in order to be able to analyze and improve our advertising measures and to calculate any remuneration that may be due.

  For processing purposes, the service or we collect the following data: Data on the advertising interests of website visitors, Interactions of site visitors with advertising in relation to our website, Data about visits to our website by site visitors who previously clicked on Google Ads advertising and arrived at our website, Data about the device used, the user's IP address and browser, and other data from Google services for the provision and refinement of Google advertising in relation to our website.

  If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the necessary data. In the context of order processing, personal data may also be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using Google Ads on our website, Google may transfer and process information from other Google services in order to provide background services for the improvement and customization of Google advertising. For this purpose, data may also be processed by other Google services such as Google APIs, Google Cloud, Google Ads, Google Analytics, Google Tag Manager, Google Marketing Platform, and Google Fonts in accordance with Google's privacy policy under Google's own responsibility for data protection. You can view the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active .

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy .

  The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de .

• Google Analytics

  • Scope of the processing of personal data

    On our website, we use the web tracking service provided by Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Ireland, email: support-deutschland@google.com, website: http://www.google.com/ (hereinafter: Google Analytics). Google Analytics uses cookies for web tracking, which are stored on your computer and enable analysis of your use of our website and your surfing behavior (so-called tracking). We carry out this analysis based on the tracking service provided by Google Analytics in order to continuously optimize our website and make it more accessible. When you use our website, data such as your IP address and your user activities are transmitted to servers belonging to Google Ireland Limited. We carry out this analysis on the basis of Google's tracking service in order to continuously optimize our website and make it more accessible. We also require web tracking for security reasons. Web tracking allows us to track whether third parties are attacking our website. The information provided by the web tracker enables us to take effective countermeasures and protect the personal data we process from these cyber attacks. By activating IP anonymization within the Google Analytics tracking code of this website, your IP address is anonymized by Google Analytics before it is transmitted. This website uses a Google Analytics tracking code that has been extended by the operator gat._anonymizeIp(); to enable only anonymous collection of IP addresses (so-called IP masking).

  • Legal basis for the processing of personal data

    The legal basis for the data processing is, according to Art. 13 para. 1 DSG or Art. 6 para. 1 lit. a DSGVO, your consent in our information banner regarding the use of cookies and web tracking (consent through clear confirming action or behavior).

  • Purpose of data processing

    On our behalf, Google will use this information to evaluate your visit to this website, compile reports on website activity, and provide us with other services related to website and internet usage. We also require web tracking for security reasons. Web tracking enables us to track whether third parties are attacking our website. The information provided by the web tracker enables us to take effective countermeasures and protect the personal data we process from these cyber attacks.

  • Duration of storage

    Google will store the data relevant for web tracking for as long as necessary to fulfill the booked web service. Data collection and storage are carried out anonymously. If personal references do exist, the data will be deleted immediately, provided that they are not subject to any legal retention obligations. In any case, deletion will take place after the retention obligation has expired.

  • Possibilities of objection and deletion

    You can prevent the collection and transmission of personal data to Google (in particular your IP address) and the processing of this data by Google by deactivating the execution of script code in your browser or activating the "Do Not Track" setting in your browser. You can also prevent Google from collecting the data generated by the Google cookie and relating to your use of the website (including your IP address) and from processing this data by downloading and installing the browser plug-in available at the following link ( http://tools.google.com/dlpage/gaoptout?hl=de ). Google's security and privacy principles can be found at https://policies.google.com/privacy .

• Google Analytics (Google Signals)

  We use on our site the service Google Analytics (Google Signals) of the company Google Ireland Ltd, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com , website: http://www.google.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transfer of personal data also takes place to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision regarding the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 DSGVO (hereafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  Google Analytics is a web tracker that analyzes the behavior of page visitors and their interactions with our website and provides us with evaluations and forecasts about the content and products of our website and their popularity (so-called tracking). We have integrated Google Analytics so that the service can compile an analysis of page users' browsing behavior. For this purpose, Google collects the page interactions of page visitors with our website and, if applicable, existing information resulting from the reading of cookies or other storage technologies and processes it statistically for us. Google Analytics uses data processing technologies that allow tracking of individual page visitors and their interaction across devices and session-independent with other Google services such as the Google Ads advertising network. Data from other Google services is also used to fill data gaps and generate comprehensive statistics on the content of our website by means of machine learning technologies, modeled statistics and forecasting functions. If Google Analytics is activated on our website, the data determined by Google Analytics is transferred to servers of the company Google Ireland Limited. As part of the order processing, personal data may also be transmitted to the servers of the parent company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. The transfer of personal data also takes place to the USA. We carry out the analysis by Google Analytics in order to constantly optimize our Internet offer and make it more available. This is a so-called range measurement.

  For processing purposes, the service or we collect the following data: Data on the interactions of site visitors with the content of the website, data on the use of the services presented on our website, data from external Google services, provided they interact with our website, such as advertising data or data on behavior in relation to advertising, data on approximate geographical origin, the browser used, operating system, and other information about the device used, across devices and sessions if applicable.

  Google Analytics will store the data relevant for the provision of web tracking for as long as it is necessary to fulfill the booked web service. The data collection and storage is anonymized. Insofar as individual interactions of site visitors make it possible to subsequently establish a personal reference to specific actions, we will delete the collected data when the purpose has been achieved. The data will be deleted at the latest when it is not subject to any statutory retention obligations. As a rule, we will delete this data after 12 months at the latest.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy .

  The provider also offers an opt-out option at https://tools.google.com/dlpage/gaoptout?hl=de .

• Google Tag Manager

  • What personal data is collected and to what extent is it processed?

    On our website, we use the Google Tag Manager service provided by Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Ireland, email: support-deutschland@google.com, website: http://www.google.com/ (hereinafter: Google Tag Manager). Google Tag Manager provides a technical platform for executing other web services and web tracking programs using so-called "tags" and for controlling them in a bundled manner. In this context, Google Tag Manager stores cookies on your computer and, insofar as web tracking tools are executed using Google Tag Manager, analyzes your surfing behavior (so-called "tracking"). The data sent by individual tags integrated into Google Tag Manager is consolidated, stored, and processed by Google Tag Manager under a uniform user interface. All integrated "tags" are listed separately in this privacy policy. For more information on the privacy policy of the tools integrated into Google Tag Manager, please refer to the relevant section of this privacy policy. When you use our website with Google Tag Manager tags enabled, data such as your IP address and user activities are transmitted to servers belonging to Google Ireland Limited. With regard to the web services integrated via Google Tag Manager, the provisions in the respective section of this privacy policy apply. The tracking tools used in Google Tag Manager ensure that the IP address is anonymized by Google Tag Manager before transmission by anonymizing the source code. This allows Google Tag Manager to only collect anonymized IP addresses (known as IP masking).

  • Legal basis for the processing of personal data

    The legal basis for the data processing is, according to Art. 13 para. 1 DSG or Art. 6 para. 1 lit. a DSGVO, your consent in our information banner regarding the use of cookies and web tracking (consent through clear confirming action or behavior).

  • Purpose of data processing

    On our behalf, Google will use the information obtained by means of Google Tag Manager to evaluate your visit to this website, to compile reports on website activity and to provide us with other services related to website activity and internet usage.

  • Duration of storage

    Google will store the data relevant to the function of Google Tag Manager for as long as is necessary to fulfill the booked web service. Data collection and storage is anonymous. If personal data is nevertheless collected, it will be deleted immediately, provided that it is not subject to any legal retention obligations. In any case, the data will be deleted after the retention period has expired.

  • Possibility of objection and deletion

    You can prevent the collection and transmission of personal data to Google (in particular your IP address) and the processing of this data by Google by deactivating the execution of script code in your browser, installing a script blocker in your browser, or activating the "Do Not Track" setting in your browser. You can also prevent Google from collecting the data generated by the Google cookie and relating to your use of the website (including your IP address) and from processing this data by downloading and installing the browser plug-in available at the following link http://tools.google.com/dlpage/gaoptout?hl=de . Google's security and privacy principles can be found at https://policies.google.com/privacy .

• Gstatic

  We use on our site the service Gstatic of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com , website: http://www.google.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transfer of personal data also takes place to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision regarding the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 DSGVO (hereafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  Gstatic is a background service used by Google to retrieve static content in order to reduce bandwidth usage and preload required catalog files. In particular, the service loads background data for Google Fonts and Google Maps.

  In the context of order processing, personal data may also be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. You can view the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active .

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy .

  The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de .

• Lead Alliance

  We use on our site the service Lead Alliance of the company lead alliance GmbH, Karlstraße 9, 90403 Nürnberg, Germany, e-mail: info.de@lead-alliance.net , website: http://www.lead-alliance.net/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service is a plugin that we need to show you all the content on our website. The plugin makes our website more attractive and better experience for our site visitors.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.lead-alliance.net/dataprotection2 .

• LiveRamp

  We use on our site the service LiveRamp of the company LiveRamp Netherlands B.V, Reguliersdwarsstraat 108, 1017 BN Amsterdam, Netherlands, e-mail: privacy.de@liveramp.com , website: https://liveramp.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transfer of personal data also takes place to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision regarding the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 DSGVO (hereafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  We use LiveRamp on our website to optimize our marketing and advertising strategies. LiveRamp is a powerful data onboarding and identity resolution tool that allows us to collect, link, and activate data from multiple sources. By using LiveRamp, we can build a comprehensive picture of our audience and create personalized marketing campaigns based on our customers' individual interests and behaviors. LiveRamp also provides a privacy-friendly environment and the ability to implement privacy-compliant marketing strategies. By using anonymization techniques and privacy best practices, we ensure that the privacy of our website visitors is maintained. Overall, LiveRamp enables us to improve our marketing efforts, increase the effectiveness of our advertising, and better connect with our audience.

  You can view the parent company's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000TNnVAAW .

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://liveramp.com/privacy/ .

  The provider also offers an opt-out option at https://liveramp.com/opt_out/ .

• Quantserve

  We use on our site the service Quantserve of the company Quantcast International Limited, Quantcast International Limited, 2 Dublin, Ireland, e-mail: privacy.qil@quantcast.com , website: https://www.quantcast.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . From the EU's point of view, the data processing takes place in a third country for which there is no adequacy decision by the EU Commission. Therefore, the usual level of protection for the GDPR cannot be guaranteed for the transfer, as it cannot be ruled out that in the third country, e.g. authorities can access the collected data. Your data can only be transferred to these third countries if it is ensured that the personal data is sufficiently protected at the recipient. This can be done through the use of standard contractual clauses, in the case of data transfers within a corporate group through so-called Binding Corporate Rules, through a commitment to comply with codes of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The present service is an analysis tool that allows us to monitor the browsing behavior on our site.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.quantcast.com/privacy/ .

  The provider also offers an opt-out option at https://www.quantcast.com/opt-out/ .

• Roku Advertising

  We use on our site the service Roku Advertising of the company Roku, Inc., 1155 Coleman Avenue, 95110 San Jose, United States, e-mail: privacy@roku.com , website: https://advertising.roku.com/ . Your personal data will be transferred to so-called unsafe third countries, which do not guarantee adequate data protection through their legislation. Your data will only be passed on if adequate data protection is guaranteed. This can be guaranteed in particular by:

  • international treaties
  • Data protection clauses in a contract between the controller or processor and its contractual partner that have been communicated in advance to the FDPIC
  • specific guarantees drawn up by the competent federal body and communicated in advance to the FDPIC
  • Standard data protection clauses that the FDPIC has approved, issued or recognized in advance; or
  • Binding corporate data protection rules that have been approved in advance by the FDPIC or by an authority responsible for data protection in a country that ensures adequate protection

  If such guarantees are not in place, your data may only be disclosed if you have given your consent, if the disclosure is directly related to the conclusion or execution of a contract, or if the disclosure is necessary for the enforcement of claims before courts and authorities or for the protection of public interests. From the EU's perspective, data processing takes place in a third country for which no adequacy decision has been made by the EU Commission. Therefore, the level of protection required by the GDPR cannot be guaranteed during transmission, as it cannot be ruled out that authorities in the third country, for example, may have access to the data collected. Your data may only be transferred to these third countries if it is ensured that the personal data is adequately protected by the recipient. This can be achieved through the use of standard contractual clauses, through binding corporate rules for data transfers within a group of companies, through an obligation to comply with rules of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  Roku's plugin allows users to watch their movies and series on different streaming platforms, receive personalized recommendations and customize their viewing experience to their preferences. The plugin also offers the possibility to avoid commercial breaks and seamlessly switch between different streaming services.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://docs.roku.com/published/userprivacypolicy/en/us .

• fathom

  We use on our site the service fathom of the company Conva Ventures Inc, BOX 37058 Millstream PO, V9B 0E8 Victoria, BC, Canada. According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The processing also takes place in a third country outside the EU. For this third country there is an adequacy decision of the Commission. On the page of the EU Commission (Link: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_de ) you will find an up-to-date list of all adequacy decisions.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service helps us to evaluate the use of our website. This allows us to improve our content and make our website more attractive. We can also reach new target groups through the service.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://usefathom.com/privacy .

• travel audience

  We use on our site the service travel audience of the company travel audience GmbH, Elsenstraße 106, 12435 Berlin, Germany, e-mail: privacy@travelaudience.com , website: https://travelaudience.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The Service is a web service that we need in order to display information about our travel offers on our website. By using the service, we also receive information about whether our customers are interested in our travel offers. We also use the Web Service to place advertisements regarding our travel offers on websites.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://travelaudience.com/website-privacy-policy/ .

  The provider also offers an opt-out option at https://travelaudience.com/website-privacy-policy/ .

Integration of external web services and processing of data outside the EU

On our website, we use active content from external providers, known as web services. By visiting our website, these external providers may receive personal information about your visit to our website. This may involve the processing of data outside Switzerland and the EU. You can prevent this by installing an appropriate browser plugin or deactivating the execution of scripts in your browser. This may result in functional restrictions on the websites you visit.

We use the following external web services:

• Ad4mat

  We use on our site the service Ad4mat of the company advanced store GmbH, Stefan-Heym-Platz 1, 10367 Berlin, Germany, e-mail: privacy@advanced-store.com , website: https://www.ad4mat.com/de . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  An advertising network is controlled via the service. The service thus serves us to display advertising of any kind.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.ad4mat.com/de/datenschutz/ .

  The provider also offers an opt-out option at https://www.ad4mat.com/de/datenschutz .

• AddThis

  We use on our site the service AddThis of the company Oracle America, Inc, 2300 Oracle Way Austin, TX 78741, 78741 Austin, United States, e-mail: info_de@oracle.com , website: https://www.addthis.com/ . Your personal data will be transferred to so-called unsafe third countries, which do not guarantee adequate data protection through their legislation. Your data will only be passed on if adequate data protection is guaranteed. This can be guaranteed in particular by:

  • international treaties
  • Data protection clauses in a contract between the controller or processor and its contractual partner that have been communicated in advance to the FDPIC
  • specific guarantees drawn up by the competent federal body and communicated in advance to the FDPIC
  • Standard data protection clauses that the FDPIC has approved, issued or recognized in advance; or
  • Binding corporate data protection rules that have been approved in advance by the FDPIC or by an authority responsible for data protection in a country that ensures adequate protection

  If such guarantees are not in place, your data may only be disclosed if you have given your consent, if the disclosure is directly related to the conclusion or execution of a contract, or if the disclosure is necessary for the enforcement of claims before courts and authorities or for the protection of public interests. From the EU's perspective, data processing takes place in a third country for which no adequacy decision has been made by the EU Commission. Therefore, the level of protection required by the GDPR cannot be guaranteed during transmission, as it cannot be ruled out that authorities in the third country, for example, may have access to the data collected. Your data may only be transferred to these third countries if it is ensured that the personal data is adequately protected by the recipient. This can be achieved through the use of standard contractual clauses, through binding corporate rules for data transfers within a group of companies, through an obligation to comply with rules of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  AddThis is a service that enables simplified sharing of web pages. This is made possible by buttons that, when hovered over or clicked, display a list of bookmarking and sharing services. The service also allows us to display follow buttons and other marketing tools such as a link promotion banner that we can use to alert website visitors to products, events and other news.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.oracle.com/de/legal/privacy/addthis-privacy-policy.html .

  The provider also offers an opt-out option at http://www.addthis.com/privacy/opt-out .

• Amazon

  We use on our site the service Amazon of the company Amazon Digital Germany GmbH (Domagkstr. 28, 80807 Munich), as well as the following companies: Amazon Europe Core S.à.r.l., Amazon EU S.à.r.l, Amazon Services Europe S.à.r.l. and Amazon Media EU S.à.r.l., all four located at:, 38, avenue John F. Kennedy, L-1855 Luxembourg, Luxembourg, e-mail: privacyshield@amazon.com , website: https://amazon.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The Amazon REST API is used to reload data from our Amazon account on our website.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.amazon.de/gp/help/customer/display.html/ref=footer_privacy?ie=UTF8&nodeId=201909010 .

• Amazon AWS

  We use on our site the service Amazon AWS of the company Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, 1855 Luxembourg, Luxembourg, e-mail: privacyshield@amazon.com , website: http://aws.amazon.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . From the EU's point of view, the data processing takes place in a third country for which there is no adequacy decision by the EU Commission. Therefore, the usual level of protection for the GDPR cannot be guaranteed for the transfer, as it cannot be ruled out that in the third country, e.g. authorities can access the collected data. Your data can only be transferred to these third countries if it is ensured that the personal data is sufficiently protected at the recipient. This can be done through the use of standard contractual clauses, in the case of data transfers within a corporate group through so-called Binding Corporate Rules, through a commitment to comply with codes of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is our legitimate interest in processing pursuant to Art. 6 (1) lit. f DSGVO. Our legitimate interest lies in the achievement of the purpose described below.

  Amazon AWS is a cloud computing offering from Amazon through which our site or individual elements of our site are reloaded. The separate AWS cloud enables us to download our website and its services from faster servers.

  With regard to the processing, you have the right of objection listed in Art. 21 DSGVO. You can find more information at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://aws.amazon.com/de/privacy/?nc1=f_pr .

• Amazon CloudFront (CDN)

  We use on our site the service Amazon CloudFront (CDN) of the company Amazon Web Services EMEA SARL, 38 avenue John F. Kennedy, L-1855 Luxembourg, Luxembourg, e-mail: privacyshield@amazon.com , website: https://aws.amazon.com/de/cloudfront/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . From the EU's point of view, the data processing takes place in a third country for which there is no adequacy decision by the EU Commission. Therefore, the usual level of protection for the GDPR cannot be guaranteed for the transfer, as it cannot be ruled out that in the third country, e.g. authorities can access the collected data. Your data can only be transferred to these third countries if it is ensured that the personal data is sufficiently protected at the recipient. This can be done through the use of standard contractual clauses, in the case of data transfers within a corporate group through so-called Binding Corporate Rules, through a commitment to comply with codes of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is our legitimate interest in processing pursuant to Art. 6 (1) lit. f DSGVO. Our legitimate interest lies in the achievement of the purpose described below.

  Amazon CloudFront CDN is a content delivery network that mirrors our content across multiple servers to ensure optimal accessibility worldwide.

  With regard to the processing, you have the right of objection listed in Art. 21 DSGVO. You can find more information at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://aws.amazon.com/de/privacy/?nc1=f_pr .

• BidSwitch

  We use the BidSwitch service provided by IPONWEB Holding Limited, Bahnhofstrasse 28, 6304 Zug, Switzerland, email: privacy@bidswitch.net, website: https://www.bidswitch.com/, on our website. Processing takes place exclusively in Switzerland in accordance with the data protection legislation applicable there. From the EU's perspective, data processing takes place in a third country for which no adequacy decision has been made by the EU Commission. Therefore, the level of protection required by the GDPR cannot be guaranteed during transmission, as it cannot be ruled out that authorities in the third country, for example, may have access to the collected data. Your data may only be transferred to these third countries if it is ensured that the personal data is adequately protected by the recipient. This can be achieved through the use of standard contractual clauses, through binding corporate rules for data transfers within a group of companies, through an obligation to comply with rules of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service allows us to collect and analyze data from you on the site in order to show you customized advertising.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at http://www.bidswitch.com/privacy-policy/ .

  The provider offers at http://moz-extension//3ec3cda2-9e77-4375-8a81-d62de61b5591/main-blocked.html?details=eyJ1cmwiOiJodHRwczovL3guYmlkc3dpdGNoLm5ldC9vcHQtb3V0IiwiaG4iOiJ4LmJpZHN3aXRjaC5uZXQiLCJ0eXBlIjoiZG9jIiwid2h5IjoiPyJ9 additionally offers an opt-out option.

• CloudFlare

  We use on our site the service CloudFlare of the company Cloudflare, Inc, 101 Townsend St, 94107 San Francisco, United States, e-mail: support@cloudflare.com , website: https://www.cloudflare.com/de-de/ . Your personal data will be transferred to so-called unsafe third countries, which do not guarantee adequate data protection through their legislation. Your data will only be passed on if adequate data protection is guaranteed. This can be guaranteed in particular by:

  • international treaties
  • Data protection clauses in a contract between the controller or processor and its contractual partner that have been communicated in advance to the FDPIC
  • specific guarantees drawn up by the competent federal body and communicated in advance to the FDPIC
  • Standard data protection clauses that the FDPIC has approved, issued or recognized in advance; or
  • Binding corporate data protection rules that have been approved in advance by the FDPIC or by an authority responsible for data protection in a country that ensures adequate protection

  If such guarantees are not in place, your data may only be disclosed if you have given your consent, if the disclosure is directly related to the conclusion or execution of a contract, or if the disclosure is necessary for the enforcement of claims before courts and authorities or for the protection of public interests. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is our legitimate interest in processing pursuant to Art. 6 (1) lit. f DSGVO. Our legitimate interest lies in the achievement of the purpose described below.

  Cloudflare is a so-called Content Delivery Network, which provides security features in addition to splitting the website across multiple servers. In addition, Cloudflare acts as a reverse proxy for our website.

  You can access the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000GnZKAA0 .

  With regard to the processing, you have the right of objection listed in Art. 21 DSGVO. You can find more information at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.cloudflare.com/privacypolicy/ .

• Conrad.com

  We use on our site the service Conrad.de of the company Conrad Electronic SE , Klaus-Conrad-Str. 1, 92240 Hirschau, Germany, e-mail: kundenservice@conrad.de , website: https://www.conrad.de/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service is a plugin that we need to show you all the content on our website. The plugin makes our website more attractive and better experience for our site visitors.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.conrad.de/de/ueber-conrad/rechtliches/datenschutz.html .

• Datadog

  We use on our site the service Datadog of the company Datadog, Inc, 620 8th Avenue, Floor 45, 10018 New York, United States, e-mail: privacy@datadoghq.com , website: https://www.datadoghq.com/ . Your personal data will be transferred to so-called unsafe third countries, which do not guarantee adequate data protection through their legislation. Your data will only be passed on if adequate data protection is guaranteed. This can be guaranteed in particular by:

  • international treaties
  • Data protection clauses in a contract between the controller or processor and its contractual partner that have been communicated in advance to the FDPIC
  • specific guarantees drawn up by the competent federal body and communicated in advance to the FDPIC
  • Standard data protection clauses that the FDPIC has approved, issued or recognized in advance; or
  • Binding corporate data protection rules that have been approved in advance by the FDPIC or by an authority responsible for data protection in a country that ensures adequate protection

  If such guarantees are not in place, your data may only be disclosed if you have given your consent, if the disclosure is directly related to the conclusion or execution of a contract, or if the disclosure is necessary for the enforcement of claims before courts and authorities or for the protection of public interests. From the EU's perspective, data processing takes place in a third country for which no adequacy decision has been made by the EU Commission. Therefore, the level of protection required by the GDPR cannot be guaranteed during transmission, as it cannot be ruled out that authorities in the third country, for example, may have access to the data collected. Your data may only be transferred to these third countries if it is ensured that the personal data is adequately protected by the recipient. This can be achieved through the use of standard contractual clauses, through binding corporate rules for data transfers within a group of companies, through an obligation to comply with rules of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is our legitimate interest in processing pursuant to Art. 6 (1) lit. f DSGVO. Our legitimate interest lies in the achievement of the purpose described below.

  The service is used to monitor important movements and operations in the security and cloud areas of various applications.

  With regard to the processing, you have the right of objection listed in Art. 21 DSGVO. You can find more information at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.datadoghq.com/legal/privacy/ .

• Dotomi

  We use on our site the service Dotomi of the company Conversant Deutschland GmbH, Rosenheimer Straße 145 e-f, 81671 Munich, Germany. According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service is a plugin that we need to show you all the content on our website. The service may also be used for tracking and/or advertising integration.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at http://de.conversantmedia.eu/legal/datenschutzerklaerung .

  The provider also offers an opt-out option at http://de.conversantmedia.eu/legal/datenschutzerklaerung .

• Everresttech

  We use on our site the service Everresttech of the company Everest Technologies, Inc, 740 Lakeview Plaza Blvd, Suite 250, OH 43085 Worthington, United States, e-mail: varya@everesttech.com , website: http://www.everesttech.com/ . Your personal data will be transferred to so-called unsafe third countries, which do not guarantee adequate data protection through their legislation. Your data will only be passed on if adequate data protection is guaranteed. This can be guaranteed in particular by:

  • international treaties
  • Data protection clauses in a contract between the controller or processor and its contractual partner that have been communicated in advance to the FDPIC
  • specific guarantees drawn up by the competent federal body and communicated in advance to the FDPIC
  • Standard data protection clauses that the FDPIC has approved, issued or recognized in advance; or
  • Binding corporate data protection rules that have been approved in advance by the FDPIC or by an authority responsible for data protection in a country that ensures adequate protection

  If such guarantees are not in place, your data may only be disclosed if you have given your consent, if the disclosure is directly related to the conclusion or execution of a contract, or if the disclosure is necessary for the enforcement of claims before courts and authorities or for the protection of public interests. From the EU's perspective, data processing takes place in a third country for which no adequacy decision has been made by the EU Commission. Therefore, the level of protection required by the GDPR cannot be guaranteed during transmission, as it cannot be ruled out that authorities in the third country, for example, may have access to the data collected. Your data may only be transferred to these third countries if it is ensured that the personal data is adequately protected by the recipient. This can be achieved through the use of standard contractual clauses, through binding corporate rules for data transfers within a group of companies, through an obligation to comply with rules of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The present service is an analysis tool that allows us to monitor the browsing behavior on our site.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://everesttech.com/privacy-policy/ .

• Google Cloud APIs

  We use on our site the service Google Cloud APIs of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, email: support-deutschland@google.com , website: http://www.google.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transfer of personal data also takes place to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision regarding the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 DSGVO (hereafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  We use Google APIs to be able to reload additional services from Google on the website. Google Apis is a collection of interfaces for communication between the various Google services used on your website. The service is used in particular to display the Google Fonts fonts and to provide the Google Maps map.

  For processing purposes, the service or we collect the following data: IP address

  If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the necessary data. In the context of order processing, personal data may also be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using the Google service on our website, Google may transfer and process information from other Google services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be transferred to the Google services Google Cloud, Google Maps, Google Ads, and Google Fonts in accordance with Google's privacy policy under Google's responsibility for data protection. You can view the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active .

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy .

  The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de .

• Google Fonts

  We use the Google Fonts service of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail on our site: support-deutschland@google.com , website: http://www.google.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transfer of personal data also takes place to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision regarding the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 DSGVO (hereafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  We use the Google Fonts service to be able to integrate attractive fonts on our website in order to be able to show you our website in a visually better version. The service may also be used on our website if other Google services are reloaded on our website that require Google Fonts fonts to run. This is the case, for example, if our website uses Google services that require Google Fonts to run.

  For processing purposes, the service or we collect the following data: Data on fonts, IP address of the site visitor, statistics on font usage, and other data from Google services related to our website.

  If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the necessary data. In the context of order processing, personal data may also be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using the Google service on our website, Google may transfer and process information from other Google services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be transferred to the Google services Google Apis, Google Cloud, and Google Ads in accordance with the Google Privacy Policy. You can view the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active .

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy .

  The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de .

• Google reCaptcha

  We use on our site the service Google reCaptcha of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com , website: http://www.google.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transfer of personal data also takes place to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision regarding the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 DSGVO (hereafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  If Google reCaptcha is activated on our website, the data determined by Google reCaptcha is transmitted to servers of the company Google Ireland Limited. As part of the order processing, personal data may also be transmitted to the servers of the parent company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. Based on specific characteristics and an analysis of the page behavior, the service recognizes whether the input made is an automated input by means of a program (so-called bot) or a human. The service has three different levels. Either the service automatically recognizes that the input is not automated by a bot or it lets the user select a captcha checkbox. A third option is the display of small image or voice tasks / text tasks that must be solved by the site visitor. Google reCaptcha is a capcha service used on our website for security reasons to exclude bots (robot programs) from interacting on our website. Google reCaptcha verifies on our behalf that only humans and not bots can use our website. In particular, this enables us to protect the special functions of our website (e.g. contact forms or other input options such as the login area) from improper page access.

  For processing purposes, the service or we collect the following data: User behavior (e.g., mouse gestures or input behavior), IP address, browser data, computer information.

  If you wish to use the input options on our website that are protected by Google reCaptcha, you must allow the use of Google reCaptcha and, if necessary, solve the corresponding captchas. If you do not fill in the captcha or do not allow the use of Google reCaptcha, you will not be able to use the form protected by the captcha. Alternatively, you can always use our other contact options (e.g., postal mail or email). You can view the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active .

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy .

  The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de .

• HubSpot Forms by HubSpot

  We use on our site the service HubSpot Forms by HubSpot of the company HubSpot, Inc, 25 First Street, 2141 Cambridge, United States, e-mail: privacy@hubspot.com , website: https://www.hubspot.de/ . Your personal data will be transferred to so-called unsafe third countries, which do not guarantee adequate data protection through their legislation. Your data will only be passed on if adequate data protection is guaranteed. This can be guaranteed in particular by:

  • international treaties
  • Data protection clauses in a contract between the controller or processor and its contractual partner that have been communicated in advance to the FDPIC
  • specific guarantees drawn up by the competent federal body and communicated in advance to the FDPIC
  • Standard data protection clauses that the FDPIC has approved, issued or recognized in advance; or
  • Binding corporate data protection rules that have been approved in advance by the FDPIC or by an authority responsible for data protection in a country that ensures adequate protection

  If such guarantees are not in place, your data may only be disclosed if you have given your consent, if the disclosure is directly related to the conclusion or execution of a contract, or if the disclosure is necessary for the enforcement of claims before courts and authorities or for the protection of public interests. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  With the help of hsforms we can provide you with surveys and forms on our website in an easy way.

  You can access the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000TN8pAAG .

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://legal.hubspot.com/de/privacy-policy .

• Hubspot

  We use on our site the service Hubspot of the company HubSpot, Inc, 25 First Street, 2141 Cambridge, United States, e-mail: hubspotgermany@hubspot.com , website: https://www.hubspot.de/ . Your personal data will be transferred to so-called unsafe third countries, which do not guarantee adequate data protection through their legislation. Your data will only be passed on if adequate data protection is guaranteed. This can be guaranteed in particular by:

  • international treaties
  • Data protection clauses in a contract between the controller or processor and its contractual partner that have been communicated in advance to the FDPIC
  • specific guarantees drawn up by the competent federal body and communicated in advance to the FDPIC
  • Standard data protection clauses that the FDPIC has approved, issued or recognized in advance; or
  • Binding corporate data protection rules that have been approved in advance by the FDPIC or by an authority responsible for data protection in a country that ensures adequate protection

  If such guarantees are not in place, your data may only be disclosed if you have given your consent, if the disclosure is directly related to the conclusion or execution of a contract, or if the disclosure is necessary for the enforcement of claims before courts and authorities or for the protection of public interests. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is our legitimate interest in processing pursuant to Art. 6 (1) lit. f DSGVO. Our legitimate interest lies in the achievement of the purpose described below.

  HubSpot is a CRM platform for marketing, sales and service. The service provides us with tools for social media marketing, content management, web analytics, customer service, and search engine optimization, among others.

  You can access the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000TN8pAAG .

  With regard to the processing, you have the right of objection listed in Art. 21 DSGVO. You can find more information at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://legal.hubspot.com/de/privacy-policy .

• Legally ok legal text snippet and modules

  On our website, we use the Legally ok legal text snippet service and modules provided by Legally ok GmbH, Schochenmühlestrasse 6, 6340 Baar, Switzerland, email: hello@legally-ok.com , website: https://www.legally-ok.com/ . Processing takes place exclusively in Switzerland in accordance with the data protection legislation applicable there. Processing also takes place in a third country outside the EU. An adequacy decision has been issued by the Commission for this third country. You can find a current list of all adequacy decisions on the EU Commission's website (link: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_de ).

  The legal basis for the transmission and processing is Art. 31 para. 1 DSG and Art. 6 para. 1 lit. c DSGVO. The use of the service supports us in meeting our legal obligations.

  With the help of the service, contents of our legal texts are reloaded on our website. The current legal texts are reloaded via the integration on our site. This integration may also be used to reload additional technical modules with regard to the legal texts or legally required elements.

  You can find out what rights you have with regard to processing at the end of this privacy statement.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.legally-ok.com/datenschutz/ .

• LinkedIn

  We use on our site the service LinkedIn of the company LinkedIn Ireland Unlimited Company, Wilton Place, 2 Dublin, Ireland, e-mail: info_impressum@cs.linkedin.com , website: https://www.linkedin.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . From the EU's point of view, the data processing takes place in a third country for which there is no adequacy decision by the EU Commission. Therefore, the usual level of protection for the GDPR cannot be guaranteed for the transfer, as it cannot be ruled out that in the third country, e.g. authorities can access the collected data. Your data can only be transferred to these third countries if it is ensured that the personal data is sufficiently protected at the recipient. This can be done through the use of standard contractual clauses, in the case of data transfers within a corporate group through so-called Binding Corporate Rules, through a commitment to comply with codes of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  When using the Linkedin plugin, we establish a connection to the Linkedin platform in order to give logged-in Linkedin members the opportunity to interact with us.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy .

  The provider also offers an opt-out option at https://www.linkedin.com/help/linkedin/answer/68763?lang=de .

• MediaMath

  We use on our site the service MediaMath of the company MediaMath UK Ltd, 230 Blackfriars Road, SE1 8NW London, United Kingdom, e-mail: privacy@mediamath.com , website: http://www.mediamath.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The processing also takes place in a third country outside the EU. For this third country there is an adequacy decision of the Commission. On the page of the EU Commission (Link: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_de ) you will find an up-to-date list of all adequacy decisions.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  Through the MediaMath service, we may collect and analyze data from you on the Site in order to display customized advertisements to you.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at http://www.mediamath.com/de/datenschutzrichtlinie/ .

  The provider also offers an opt-out option at http://www.mediamath.com/de/ad-choices-opt-out/ .

• O2 customer portal

  We use on our site the service O2 Customer Portal of the company Telefónica Germany GmbH & Co. OHG, Georg-Brauchle-Ring 50, 80992 Munich, Germany, e-mail: impressum@cc.o2online.de , website: https://www.o2online.de/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service is a plugin that we need to show you all the content on our website. The plugin makes our website more attractive and better experience for our site visitors.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.o2online.de/recht/datenschutz/ .

• Onetag

  We use on our site the service Onetag of the company Permutive, Inc, 45 Gee Street, 3rd Floor, EC1V 3RS London, United Kingdom, e-mail: support@permutive.com , website: https://permutive.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The processing also takes place in a third country outside the EU. For this third country there is an adequacy decision of the Commission. On the page of the EU Commission (Link: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_de ) you will find an up-to-date list of all adequacy decisions.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service is a plugin that we need to show you all the content on our website. The plugin makes our website more attractive and better experience for our site visitors.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://permutive.com/privacy .

• Paperform

  We use on our site the service Paperform of the company Paperform Pty. Ltd, 64 Tabrett St, Banksia, 2216 New South Wales 2216, Australia, e-mail: legal@paperform.co , website: https://paperform.co/online-formular-erstellen/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . From the EU's point of view, the data processing takes place in a third country for which there is no adequacy decision by the EU Commission. Therefore, the usual level of protection for the GDPR cannot be guaranteed for the transfer, as it cannot be ruled out that in the third country, e.g. authorities can access the collected data. Your data can only be transferred to these third countries if it is ensured that the personal data is sufficiently protected at the recipient. This can be done through the use of standard contractual clauses, in the case of data transfers within a corporate group through so-called Binding Corporate Rules, through a commitment to comply with codes of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  With the help of the service we can create and deposit forms on our website.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://paperform.co/privacy/ .

• SQUARESPACE

  We use on our site the service SQUARESPACE of the company Squarespace Ireland Ltd, Le Pole House, Ship Street Great, 8 Dublin, Ireland, e-mail: privacy@squarespace.com , website: https://de.squarespace.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transfer of personal data also takes place to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision regarding the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 DSGVO (hereafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

  The legal basis for the transmission of personal data is our legitimate interest in processing pursuant to Art. 6 (1) lit. f DSGVO. Our legitimate interest lies in the achievement of the purpose described below.

  The service is the technical system behind our website to operate our website. We need the integration so that we can display our website to you.

  You can view the parent company's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000GnjcAA .

  With regard to the processing, you have the right of objection listed in Art. 21 DSGVO. You can find more information at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://de.squarespace.com/privacy/ .

• Simplifi

  We use on our site the service Simplifi of the company Simplifi Holdings Inc, 1407 Texas Street, 76102 Fort Worth, United States, e-mail: hi@simpli.fi , website: https://simpli.fi/ . Your personal data will be transferred to so-called unsafe third countries, which do not guarantee adequate data protection through their legislation. Your data will only be passed on if adequate data protection is guaranteed. This can be guaranteed in particular by:

  • international treaties
  • Data protection clauses in a contract between the controller or processor and its contractual partner that have been communicated in advance to the FDPIC
  • specific guarantees drawn up by the competent federal body and communicated in advance to the FDPIC
  • Standard data protection clauses that the FDPIC has approved, issued or recognized in advance; or
  • Binding corporate data protection rules that have been approved in advance by the FDPIC or by an authority responsible for data protection in a country that ensures adequate protection

  If such guarantees are not in place, your data may only be disclosed if you have given your consent, if the disclosure is directly related to the conclusion or execution of a contract, or if the disclosure is necessary for the enforcement of claims before courts and authorities or for the protection of public interests. From the EU's perspective, data processing takes place in a third country for which no adequacy decision has been made by the EU Commission. Therefore, the level of protection required by the GDPR cannot be guaranteed during transmission, as it cannot be ruled out that authorities in the third country, for example, may have access to the data collected. Your data may only be transferred to these third countries if it is ensured that the personal data is adequately protected by the recipient. This can be achieved through the use of standard contractual clauses, through binding corporate rules for data transfers within a group of companies, through an obligation to comply with rules of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service is a plugin that we need to show you all the content on our website. The service may also be used for tracking and/or advertising integration.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.simpli.fi/site-privacy-policy2/ .

• Stripe

  We use on our site the service Stripe of the company Stripe Payments Europe Limited, The One Building, 1, Grand Canal Street Lower , D02 HD59 Dublin, Ireland, e-mail: privacy@stripe.com , website: https://stripe.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . From the EU's point of view, the data processing takes place in a third country for which there is no adequacy decision by the EU Commission. Therefore, the usual level of protection for the GDPR cannot be guaranteed for the transfer, as it cannot be ruled out that in the third country, e.g. authorities can access the collected data. Your data can only be transferred to these third countries if it is ensured that the personal data is sufficiently protected at the recipient. This can be done through the use of standard contractual clauses, in the case of data transfers within a corporate group through so-called Binding Corporate Rules, through a commitment to comply with codes of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is, according to Art. 31 para. 2 let. a DSG and Art. 6 para. 1 lit. b DSGVO, the contract already concluded or to be concluded between you and us.

  The plugin allows us to implement the services of Stripe, an online payment service provider that allows businesses and individuals to accept payments over the Internet, on our website. This simplifies and automates payment processes.

  You can access the certification within the parent company under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000TQOUAA .

  You can find out what rights you have with regard to processing at the end of this privacy statement.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://stripe.com/de/privacy .

• TribalFusion

  We use on our site the service TribalFusion of the company Exponential Interactive, Inc, 5858 Horton Street, 94608 Emeryville, United States, e-mail: tim.sleath@exponential.com , website: http://exponential.com/ . Your personal data will be transferred to so-called unsafe third countries, which do not guarantee adequate data protection through their legislation. Your data will only be passed on if adequate data protection is guaranteed. This can be guaranteed in particular by:

  • international treaties
  • Data protection clauses in a contract between the controller or processor and its contractual partner that have been communicated in advance to the FDPIC
  • specific guarantees drawn up by the competent federal body and communicated in advance to the FDPIC
  • Standard data protection clauses that the FDPIC has approved, issued or recognized in advance; or
  • Binding corporate data protection rules that have been approved in advance by the FDPIC or by an authority responsible for data protection in a country that ensures adequate protection

  If such guarantees are not in place, your data may only be disclosed if you have given your consent, if the disclosure is directly related to the conclusion or execution of a contract, or if the disclosure is necessary for the enforcement of claims before courts and authorities or for the protection of public interests. From the EU's perspective, data processing takes place in a third country for which no adequacy decision has been made by the EU Commission. Therefore, the level of protection required by the GDPR cannot be guaranteed during transmission, as it cannot be ruled out that authorities in the third country, for example, may have access to the data collected. Your data may only be transferred to these third countries if it is ensured that the personal data is adequately protected by the recipient. This can be achieved through the use of standard contractual clauses, through binding corporate rules for data transfers within a group of companies, through an obligation to comply with rules of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  An advertising network is controlled via the service. The service thus serves us to display advertising of any kind.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at http://exponential.com/de/privacy/ .

  The provider also offers an opt-out option at http://exponential.com/de/privacy/ .

• Weglot

  We use on our site the service Weglot of the company Weglot, 7 cité Paradis, 75010 Paris , France, e-mail: privacy@weglot.com , website: https://weglot.com/de/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service is a plugin that we need to make the website available in different languages.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://weglot.com/de/privacy/ .

• Yahoo

  We use on our site the service Yahoo of the company Yahoo EMEA, 5-7 Point Square, North Wall Quay, 1 Dublin, Ireland, e-mail: YahooGDPRrepresentative@mhc.ie , website: https://www.yahooinc.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . From the EU's point of view, the data processing takes place in a third country for which there is no adequacy decision by the EU Commission. Therefore, the usual level of protection for the GDPR cannot be guaranteed for the transfer, as it cannot be ruled out that in the third country, e.g. authorities can access the collected data. Your data can only be transferred to these third countries if it is ensured that the personal data is sufficiently protected at the recipient. This can be done through the use of standard contractual clauses, in the case of data transfers within a corporate group through so-called Binding Corporate Rules, through a commitment to comply with codes of conduct that have been declared generally applicable by the Commission, or through certification of the processing operation.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The plugin allows you to display the services of Yahoo! This allows us to provide services such as email, instant messaging, online shopping, online advertising, search engines and news. Furthermore, the use of this plugin gives us the possibility to create personal web pages through a content management service that allows users to create photos, blogs and other content on their own.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://legal.yahoo.com/us/en/yahoo/privacy/index.html .

• blis

  We use on our site the service blis of the company Blis Media Limited, Aviation House, 125 Kingsway, WC2B 6NH London, United Kingdom, e-mail: privacy@blis.com , website: https://www.blis.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The processing also takes place in a third country outside the EU. For this third country there is an adequacy decision of the Commission. On the page of the EU Commission (Link: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_de ) you will find an up-to-date list of all adequacy decisions.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service is a plugin that we need to show you all the content on our website. The service may also be used for tracking and/or advertising integration.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.blis.com/privacy .

• teads.tv

  We use on our site the service teads.tv of the company Teads Deutschland GmbH, Poststr. 6, 20354 Hamburg, Germany, e-mail: dpo@teads.com , website: https://www.teads.com/ . According to the assessment of the Swiss authorities, processing takes place in safe third countries. The Swiss list of countries and further information can be found at the following link: https://www.edoeb.admin.ch/edoeb/de/home/datenschutz/handel-und-wirtschaft/uebermittlung-ins-ausland.html . The transmission and processing of personal data takes place exclusively on servers in the European Union.

  The legal basis for the transmission of personal data is your consent pursuant to Art. 6 para. 6 DSG or Art. 31 para. 2 DSG and pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO, which you have given on our website.

  The service enables interaction with various social media sites on our site.

  You can revoke your consent at any time. You can find more information about revoking your consent either with the consent itself or at the end of this privacy policy.

  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://teads.tv/privacy-policy/ .

• Social Plug-In - "Facebook by META

  • What personal data is collected and to what extent is it processed?

    We have integrated a social plug-in from the social network "Facebook by META" into our website, which is operated by Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, 2 Dublin, Ireland, email: impressum-support@support.facebook.com , website: http://www.facebook.com/ ("Facebook by META"). When you visit a page that contains such a plug-in, your browser automatically establishes a background connection to the Facebook by META servers. The content of the plug-in is transmitted directly from Facebook by META to your browser and only integrated into our site. Through this integration, Facebook by META receives the information that your browser has loaded a specific page of our website. This also applies if you do not have a Facebook by META profile or are not currently logged in to Facebook by META. This information (including your IP address) is transmitted directly from your browser to a Facebook by META server in Ireland and stored there. If you are logged into Facebook by META, Facebook by META can immediately associate your visit to our website with your Facebook by META profile. If you interact with the plug-ins, for example by clicking the "Like" button or posting a comment, this information is also transmitted directly to a Facebook by META server and stored there. The information is also published on your Facebook by META profile and displayed to your Facebook by META contacts who you have enabled for this purpose.

  • Legal basis for the processing of personal data

    Relevant are Art. 6 ff. DSG and Art. 6 (1) (a) GDPR (if you have registered with "Facebook by META") and Art. 6 (3) DSG and Art. 6 (1) (f) GDPR (if you have not registered with Facebook by META). Insofar as processing is based on Art. 6 (1) (f) GDPR, the legitimate interest of the website operator is to enable users to interact with the website operator's content on Facebook by META.

  • Purpose of data processing

    The primary purpose of data collection is to offer you a social interaction option linked to Facebook by META and thus make our website interactive. The scope of data collection and the further processing and use of the data you provide by Facebook by META, as well as your rights and settings options for protecting your privacy, can be found in the Facebook by META privacy policy: https://www.facebook.com/about/privacy

  • Duration of storage

    Facebook by META will store the data relevant for the provision of the web service for as long as necessary. If the data is subject to statutory retention obligations, it will be deleted after the retention obligation has expired.

  • Possibility of objection and deletion

    If you do not want the social plug-in from Facebook by META to be executed, you can also prevent this by installing a corresponding add-on or script blocker. If you do not want Facebook by META to assign the data collected via our website to your Facebook by META profile, you must log out of Facebook by META before visiting our website. The right to information, correction, and deletion, as well as the right to restrict processing and the right to object, are otherwise governed by the general provisions on the right to object and the right to deletion under data protection law described below in this privacy policy.

• Social Plug-In - "TikTok

  • What personal data is collected and to what extent is it processed?

    We have integrated a social plug-in from the social network "TikTok" on our website, which is operated by TikTok Technology Limited, 10 Earlsfort Terrace, D02 T380 Dublin, Ireland, email: reports@tiktok.com , website: https://www.tiktok.com/ ("TikTok"). When you visit a page that contains such a plug-in, your browser automatically establishes a background connection to the TikTok servers. The content of the plug-in is transmitted directly from TikTok to your browser and only integrated into our site. Through this integration, TikTok receives the information that your browser has loaded a specific page of our website. This also applies if you do not have a TikTok profile or are not currently logged in to TikTok. This information (including your IP address) is transmitted directly from your browser to a TikTok server in Ireland and stored there. If you are logged into TikTok, TikTok can immediately associate your visit to our website with your TikTok profile. If you interact with the plug-ins, for example by clicking the "Like" button or posting a comment, this information is also transmitted directly to a TikTok server and stored there. The information is also published on your TikTok profile and displayed to your TikTok contacts who you have enabled for this purpose.

  • Legal basis for the processing of personal data

    Relevant are Art. 6 ff. DSG and Art. 6 (1) (a) GDPR (if you have registered with "TikTok") and Art. 6 (3) DSG and Art. 6 (1) (f) GDPR (if you have not registered with TikTok). Insofar as processing is based on Art. 6 para. 1 sentence 1 lit. f GDPR, the legitimate interest of the website operator is to enable users to interact with the website operator's content on TikTok.

  • Purpose of data processing

    The primary purpose of data collection is to provide you with a social interaction option linked to TikTok and thus make our website interactive. The scope of data collection and the further processing and use of the data you provide by TikTok, as well as your rights and settings options for protecting your privacy, can be found in TikTok's privacy policy: https://www.tiktok.com/legal/privacy-policy?lang=de-DE

  • Duration of storage

    TikTok will store the data relevant for the provision of the web service for as long as necessary. If the data is subject to statutory retention obligations, it will be deleted after the retention obligation has expired.

  • Possibility of objection and deletion

    If you do not want the TikTok social plug-in to run, you can also prevent it from running by installing an appropriate add-on or script blocker. If you do not want TikTok to associate the data collected via our website with your TikTok profile, you must log out of TikTok before visiting our website. The right to information, correction, and deletion, as well as the right to restrict processing and the right to object, are otherwise governed by the general provisions on the right to object and the right to deletion under data protection law described below in this privacy policy.

Data security and data protection, communication by e-mail

Your personal data is protected by technical and organizational measures during collection, storage, and processing in such a way that it is not accessible to third parties. In the case of unencrypted communication by email, we cannot guarantee complete data security during transmission to our IT systems, so we recommend encrypted communication or postal mail for information that requires a high level of confidentiality.

Duration of data storage and rights of the data subject

Duration of storage

We only store personal data to the extent and for as long as is necessary to fulfill the purposes for which the personal data was collected, we have a legitimate overriding interest in storing it, or we are legally obliged to do so.

Right to information

You have the right to request confirmation as to whether we process your personal data. If this is the case, you have the right to information about the information specified in 25 ff. DSG or Art. 15 para. 1 GDPR, insofar as the information cannot be refused, restricted, or postponed by the owner of the data collection (cf. Art. 26 et seq. DSG or Art. 15 para. 4 GDPR). We will also be happy to provide you with a copy of the data.

Correction claim

In accordance with Art. 32 (1) DSG or Art. 16 GDPR, you have the right to request that incorrectly stored personal data (such as address, name, etc.) be corrected, provided that this claim does not conflict with any legal obligations. You can also request that the data stored by us be completed at any time. Any necessary adjustments will be made immediately.

Right to deletion

Pursuant to Art. 17 (1) DSGVO, you have the right to request that we delete the personal data we have collected about you if

• the data is either no longer needed;
• due to the revocation of your consent, the legal basis for processing has ceased to exist without replacement;
• there are no longer any justified reasons for processing;
• your data is processed unlawfully;
• a legal obligation requires this.

According to Art. 17 (3) of the GDPR, the right does not exist if

• the processing is necessary for the exercise of the right to freedom of expression and information;
• Your data has been collected on the basis of a legal obligation;
• the processing is necessary for reasons of public interest;
• the data is necessary for the assertion, exercise or defense of legal claims.

Right to restrict processing

According to Art. 18 (1) DSGVO, you have the right in individual cases to request the restriction of the processing of your personal data.

This is the case when

• the accuracy of the personal data is disputed by you;
• the processing is unlawful and you do not consent to its deletion;
• the data is no longer required for the processing purpose, but the collected data is used for the assertion, exercise or defense of legal claims;
• an objection to the processing pursuant to Art. 21 (1) DSGVO has been filed and it is still unclear which interests prevail.

Right of revocation

If you have given us your express consent to process your personal data (Art. 6 para. 6 DSG and Art. 31 para. 1 DSG; Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR), you can revoke this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of the consent until revocation. Information that we are legally obliged to retain will be deleted after the expiry of the retention period.

Right to object

Pursuant to Art. 21 GDPR, you have the right to object at any time to the processing of personal data concerning you that has been collected on the basis of Art. 6 (1) (f) GDPR (within the scope of a legitimate interest). If you have given us your express consent to process your personal data (Article 6(6) of the GDPR and Article 31(1) of the GDPR), you can revoke this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of the consent until revocation. You are only entitled to this right if there are special circumstances that argue against the storage and processing of your data. Information that we are legally obliged to store will be deleted after the expiry of the retention period.

How do you exercise your rights?

You can exercise your rights at any time by contacting us using the contact details below:

naoo AG
Baarerstrasse 21
6300 Zug
Switzerland
Email: hi@naoo.com
Tel.: 044 202 94 94

Right to data portability

Pursuant to Art. 20 GDPR, you have the right to receive the personal data concerning you. We will provide the data in a structured, commonly used, and machine-readable format. The data can be sent either to you or to a person designated by you.

We will provide you with the following data upon request:

• Data collected on the basis of consent (Art. 31 para. 1 DSG as well as Art. 6 para. 1 let. a DSGVO);
• Data that we have received from you in the context of existing contracts (Art. 31 para. 2 let. a DSG as well as Art. 6 para. 1 let. b DSGVO and Art. 9 para. 2 let. a DSGVO);
• Data that has been processed as part of an automated procedure.

We will transfer your personal data directly to a controller of your choice, provided this is technically feasible. Please note that we are not permitted to transfer data that interferes with the overriding interests of third parties in accordance with Art. 26 (1) (b) DSG or Art. 20 (4) GDPR, or may only do so to a limited extent.

Notifications to the FDPIC and possibility of legal action

According to Art. 49 DSG, affected persons may file a complaint with the supervisory authority if there are sufficient indications that data processing may violate data protection regulations. The supervisory authority for data protection in Switzerland is the Federal Data Protection and Information Commissioner (FDPIC).

For further information, please refer to the EDÖB contact form: https://www.edoeb.admin.ch/edoeb/de/home/deredoeb/kontakt.html

If you suspect that your data is being processed unlawfully on our website, you can seek legal clarification of the issue in accordance with Art. 32 DSG. As a rule, this requires legal action in accordance with Art. 28 ff. ZGB. If you are affected by the processing of data by federal authorities, the procedure is governed by Art. 41 DSG. In this case, you can also contact the EDÖB (see note on the contact form above).

Right of appeal to the supervisory authority pursuant to Art. 77 (1) DSGVO

If you suspect that your data is being processed unlawfully on our website, you can of course seek legal clarification of the issue at any time. In addition, you have every other legal option available to you. Irrespective of this, you have the option of contacting a supervisory authority in accordance with Art. 77 (1) GDPR. You have the right to lodge a complaint pursuant to Art. 77 GDPR in the EU member state of your place of residence, your place of work, and/or the place of the alleged infringement, i.e., you can choose the supervisory authority to which you wish to lodge your complaint from the above-mentioned locations. The supervisory authority to which the complaint was submitted will then inform you of the status and results of your submission, including the possibility of a judicial remedy in accordance with Art. 78 GDPR.