1. Purpose and responsible body
2. Basic information on data processing
3. Processing of personal data
4. Collection of access data
5. Use of Cookies
6. Google Analytics
7. Google Re/Marketing Services
8. Facebook Social Plugins
9. Facebook Remarketing
10. Twitter Buttons
11. Newsletters
12. Integration of Third-Party Services and Content
13. Integration of Online Forms
14. Web fonts
15. User Rights and Deletion
16. Changes to the Privacy Policy
1. Purpose and responsible body
This data protection declaration clarifies the type, scope and purpose of the processing (including collection, processing and use as well as obtaining consent) of personal data within our online offer and the websites, functions and content associated with it (hereinafter jointly referred to as “online offer” or “Site”). The data protection declaration applies regardless of the domains, systems, platforms and devices used (e.g. desktop or mobile) on which the online offer is run.
Provider of the online offer and responsible for data protection law is Uptime Engineering GmbH, Schönaugasse 4, A-8010 Graz, represented by Dr. Franz Langmayer, (hereinafter referred to as “provider”, “we” or “us”). For contact options, we refer to our imprint.
The term “user” includes all customers and visitors of our online offer. The terms used, such as “user” are to be understood as gender-neutral.
2. Basic information on data processing
We process personal data of users only in compliance with the relevant data protection regulations in accordance with the requirements of data economy and data avoidance. This means that user data will only be processed if there is legal permission, in particular if the data is required to provide our contractual services and online services, or is required by law, or if consent has been given.
We take organizational, contractual and technical security measures according to the state of the art to ensure that the provisions of the data protection laws are observed and to protect the data processed by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons protection.
If content, tools or other means from other providers (hereinafter jointly referred to as “third-party providers”) are used within the scope of this data protection declaration and their registered office is abroad, it can be assumed that data will be transferred to the countries in which the third-party providers are domiciled . Data is transferred to third countries either on the basis of legal permission, user consent or special contractual clauses that guarantee the legally required security of the data.
3. Processing of personal data
In addition to the use expressly mentioned in this data protection declaration, the personal data is processed for the following purposes on the basis of legal permissions or user consent:
– The provision, execution, maintenance, optimization and security of our services, service and user services
– Contact and allocation for any queries
– Ensuring effective customer service and technical support.
We only transmit user data to third parties if this is necessary for billing purposes (e.g. to a payment service provider) or for other purposes if these are necessary to fulfill our contractual obligations towards users (e.g. address notification to suppliers).
When contacting us (via contact form or e-mail), the information provided by the user is stored for the purpose of processing the request and in the event that follow-up questions arise.
Personal data will be deleted if they have fulfilled their purpose and the deletion does not conflict with any storage requirements.
4. Collection of access data
We collect data about every access to the server on which this service is located (so-called server log files). The access data includes the name of the accessed website, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider .
We only use the log data without assignment to the person of the user or other profiling in accordance with the legal provisions for statistical evaluations for the purpose of operation, security and optimization of our online offer. However, we reserve the right to subsequently check the log data if there is a justified suspicion of illegal use based on specific indications.
5. Use of Cookies
“Cookies” are small files that are stored on users’ devices. Different information can be stored by means of cookies. The information can include, for example, the language settings on a website, the login status, a shopping cart or the place where a video was watched.
As a rule, cookies are also used when the interests of a user or his behavior (e.g. viewing certain content, using functions, etc.) are stored in a user profile on individual websites. Such profiles are used to show users, for example, content that corresponds to their potential interests. This process is also referred to as “tracking”, i.e. tracking the potential interests of users. The term “cookies” also includes other technologies that fulfill the same functions as cookies (e.g. when user information is stored using pseudonymous online identifiers, also known as “user IDs”).
If we use cookies or “tracking” technologies, we will inform you separately in our data protection declaration.
Notes on legal bases: The legal basis on which we process your personal data with the help of cookies depends on whether we ask for your consent. If this is the case and you consent to the use of cookies, the legal basis for the processing of your data is the declared consent. Otherwise, the data processed with the help of cookies will be processed on the basis of our legitimate interests (e.g. in the commercial operation of our online offer and its improvement) or if the use of cookies is necessary to fulfill our contractual obligations.
Revocation and objection (opt-out): Regardless of whether the processing is based on consent or legal permission, you have the option at any time to revoke your consent or to object to the processing of your data by cookie technologies (collectively as ” referred to as “opt-out”).
You can initially declare your objection using the settings in your browser, e.g. by deactivating the use of cookies (which can also limit the functionality of our online offer).
An objection to the use of cookies for online marketing purposes can be raised using a variety of services, especially in the case of tracking, via the US website http://www.aboutads.info/choices/ or the EU website http://www.aboutads.info/choices/ //www.youronlinechoices.com/ or generally at http://optout.aboutads.info.
Processing of cookie data on the basis of consent: Before we process or have data processed as part of the use of cookies, we ask users to give their consent, which can be revoked at any time. Before the consent has not been given, cookies that are required for the operation of our online offer will be used. They are used on the basis of our interest and the interest of the user in the expected functionality of our online offer.
6. Google Analytics
We use Google Analytics, a web analytics service provided by Google Inc. (“Google”). Google uses cookies. The information generated by the cookie about the use of the online offer by the user is usually transmitted to a Google server in the USA and stored there.
Google will use this information on our behalf to evaluate the use of our online offer by users, to compile reports on the activities within this online offer and to provide us with other services related to the use of this online offer and internet usage. Pseudonymous user profiles can be created from the processed data.
We only use Google Analytics with activated IP anonymization. This means that the IP address of the user is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there.
The IP address transmitted by the user’s browser is not merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; In addition, users can prevent the data generated by the cookie and related to their use of the online offer from being collected and processed by Google by downloading and installing the browser plug-in available under the following link: http:// tools.google.com/dlpage/gaoptout?hl=en.
You can find more information on data use by Google for advertising purposes, setting and objection options on the Google website: https://www.google.com/intl/de/policies/privacy/partners (“Data use by Google when using websites or apps of our partners”), http://www.google.com/policies/technologies/ads (“Data use for advertising purposes”), http://www.google.de/settings/ads (“Manage information that Google used to show you ads”) and http://www.google.com/ads/preferences (“Control which ads Google shows you”).
The data collected by this service is transmitted to a third country (USA). Your express consent forms the legal basis for this data transfer in accordance with Art 49 Para 1 lit a in conjunction with Art 6 Para 1 lit a GDPR. Even before you gave your consent, we informed you that the USA currently does not have a level of data protection that corresponds to the standards of the EU. For this reason, the European Court of Justice declared the “Privacy Shield” (adequacy decision pursuant to Art. 45 GDPR) invalid in the Schrems II case.
7. Google Re/Marketing Services
We use the marketing and remarketing services (“Google Marketing Services” for short) of Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, (“Google”).
The Google marketing services allow us to display advertisements for and on our website in a more targeted manner in order to only present users with advertisements that potentially match their interests. For example, if users are shown ads for products they were interested in on other websites, this is referred to as “remarketing”. For these purposes, when our and other websites on which Google marketing services are active are accessed, Google executes a code directly from Google and so-called (re)marketing tags (invisible graphics or code, also referred to as “web beacons”) integrated into the website. With their help, an individual cookie, i.e. a small file, is stored on the user’s device (comparable technologies can also be used instead of cookies). The cookies can be set by various domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. This file notes which websites the user visits, what content he is interested in and which offers he clicked on, as well as technical information on the browser and operating system, referring websites, visiting times and other information on the use of the online offer. The IP address of the user is also recorded, whereby we inform Google Analytics that the IP address is shortened within member states of the European Union or in other contracting states of the Agreement on the European Economic Area and only in exceptional cases completely to a transferred to the Google server in the USA and shortened there. The IP address is not merged with the user’s data within other Google offers. This above information may also be combined with such information from other sources. If the user then visits other websites, the ads tailored to his interests can be displayed to him.
User data is processed pseudonymously as part of Google Marketing Services. This means that Google does not store and process, for example, the name or e-mail address of the user, but processes the relevant data in relation to cookies within pseudonymous user profiles. This means that from Google’s point of view, the ads are not managed and displayed for a specifically identified person, but for the cookie owner, regardless of who this cookie owner is. This does not apply if a user has expressly allowed Google to process the data without this pseudonymization. The information collected by “DoubleClick” about the user is transmitted to Google and stored on Google’s servers in the USA.
The Google marketing services we use include the online advertising program “Google AdWords”. In the case of Google AdWords, each AdWords customer receives a different “conversion cookie”. This means that cookies cannot be tracked via the websites of AdWords customers. The information obtained with the help of the cookie is used to create conversion statistics for AdWords customers who have opted for conversion tracking. AdWords customers find out the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information with which users can be personally identified.
We integrate third-party advertisements on the basis of Google’s “DoubleClick” marketing service. DoubleClick uses cookies that enable Google and its partner websites to serve ads based on users’ visits to this website and other websites on the Internet.
We also include third-party advertisements based on the Google marketing service “AdSense”. AdSense uses cookies to enable Google and its partner websites to serve ads based on users’ visits to this website and other websites on the Internet.
Another Google marketing service we use is the “Google Tag Manager”, with the help of which other Google analysis and marketing services can be integrated into our website (e.g. “AdWords”, “DoubleClick” or “Google Analytics”). .
For more information on how Google uses data for marketing purposes, see the overview page: https://www.google.com/policies/technologies/ads, Google’s privacy policy is at https://www.google.com/policies/privacy available.
If you wish to object to the collection by Google Marketing Services, you can use the setting and opt-out options provided by Google: http://www.google.com/ads/preferences.
The data collected by this service is transmitted to a third country (USA). Your express consent forms the legal basis for this data transfer in accordance with Art 49 Para 1 lit a in conjunction with Art 6 Para 1 lit a GDPR. Even before you gave your consent, we informed you that the USA currently does not have a level of data protection that corresponds to the standards of the EU. For this reason, the European Court of Justice declared the “Privacy Shield” (adequacy decision pursuant to Art. 45 GDPR) invalid in the Schrems II case.
8. Facebook Social Plugins
Our online offer uses social plugins (“plugins”) from the social network facebook.com, which is operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”). The plugins can be recognized by one of the Facebook logos (white “f” on a blue tile, the terms “Like”, “Like” or a “thumbs up” sign) or are marked with the addition “Facebook Social Plugin”. The list and appearance of the Facebook Social Plugins can be viewed here: https://developers.facebook.com/docs/plugins/.
If a user calls up a function of this online offer that contains such a plugin, his device establishes a direct connection with the Facebook servers. The content of the plugin is transmitted directly from Facebook to the user’s device, which integrates it into the online offer. User profiles can be created from the processed data. We therefore have no influence on the amount of data that Facebook collects with the help of this plugin and therefore inform users according to our level of knowledge.
By integrating the plugin, Facebook receives the information that a user has accessed the corresponding page of the online offer. If the user is logged into Facebook, Facebook can assign the visit to his Facebook account. If users interact with the plugins, for example by pressing the Like button or making a comment, the corresponding information is sent directly from your device to Facebook and stored there. If a user is not a member of Facebook, there is still the possibility that Facebook will find out and save their IP address. According to Facebook, only an anonymous IP address is stored in Germany.
The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as the relevant rights and setting options for protecting the privacy of the users can be found in Facebook’s data protection information: https://www.facebook.com/about/privacy/ .
If a user is a Facebook member and does not want Facebook to collect data about him via this online offer and link it to his member data stored on Facebook, he must log out of Facebook before using our online offer and delete his cookies. Further settings and objections to the use of data for advertising purposes are possible within the Facebook profile settings: https://www.facebook.com/settings?tab=ads or via the US site http://www.aboutads.info /choices/ or the EU site http://www.youronlinechoices.com/. The settings are platform-independent, i.e. they are applied to all devices, such as desktop computers or mobile devices.
The data collected by this service is transmitted to a third country (USA). Your express consent forms the legal basis for this data transfer in accordance with Art 49 Para 1 lit a in conjunction with Art 6 Para 1 lit a GDPR. Even before you gave your consent, we informed you that the USA currently does not have a level of data protection that corresponds to the standards of the EU. For this reason, the European Court of Justice declared the “Privacy Shield” (adequacy decision pursuant to Art. 45 GDPR) invalid in the Schrems II case.
9. Facebook Remarketing
Within our online offer, so-called “Facebook pixels” of the social network Facebook, which is operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, or if you are resident in the EU, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”). With the help of the Facebook pixel, Facebook is able to determine the visitors of our offer as a target group for the display of advertisements, so-called “Facebook Ads”. Accordingly, we use the Facebook pixel to only display the Facebook ads we have placed to those Facebook users who have also shown an interest in our website. That means, with the help of the Facebook pixel, we want to ensure that our Facebook ads correspond to the potential interest of the user and are not annoying. With the help of the Facebook pixel, we can also understand the effectiveness of Facebook ads for statistical and market research purposes by seeing whether users were redirected to our website after clicking on a Facebook ad.
The Facebook pixel is integrated directly by Facebook when you visit our website and can save a so-called cookie, i.e. a small file, on your device. If you then log in to Facebook or visit Facebook while logged in, the visit to our website will be noted in your profile. The data collected about you is anonymous to us, so we cannot draw any conclusions about the identity of the user. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible. The processing of the data by Facebook takes place within the framework of Facebook’s data usage guidelines. Accordingly, you will receive further information on how the remarketing pixel works and generally on the display of Facebook ads in Facebook’s data usage guidelines: https://www.facebook.com/policy.php.
You can object to the collection by the Facebook pixel and the use of your data to display Facebook ads. To do this, you can call up the page set up by Facebook and follow the instructions there on the settings for usage-based advertising: https://www.facebook.com/settings?tab=ads or the objection via the US page http://www. explain aboutads.info/choices/ or the EU page http://www.youronlinechoices.com/. The settings are platform-independent, i.e. they are applied to all devices, such as desktop computers or mobile devices.
The data collected by this service is transmitted to a third country (USA). Your express consent forms the legal basis for this data transfer in accordance with Art 49 Para 1 lit a in conjunction with Art 6 Para 1 lit a GDPR. Even before you gave your consent, we informed you that the USA currently does not have a level of data protection that corresponds to the standards of the EU. For this reason, the European Court of Justice declared the “Privacy Shield” (adequacy decision pursuant to Art. 45 GDPR) invalid in the Schrems II case.
10. Twitter Buttons
We use the buttons of the Twitter service. These buttons are offered by Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA. They can be recognized by terms such as “Twitter” or “Follow” or combined with a stylized blue bird. With the help of the buttons it is possible to share a contribution or website of this online offer on Twitter or to follow the provider on Twitter.
If a user calls up a website of this online offer that contains such a button, his browser establishes a direct connection with the Twitter servers. The content of the Twitter button is transmitted directly from Twitter to the user’s browser. We therefore have no influence on the scope of the data that Twitter collects with the help of this plugin and inform users according to our level of knowledge. According to this, only the IP address of the user and the URL of the respective website are transmitted when the button is accessed, but not used for purposes other than displaying the button.
Further information on this can be found in Twitter’s privacy policy at http://twitter.com/privacy.
11. Newsletters
With the following information we will inform you about the contents of our newsletter as well as the registration, dispatch and statistical evaluation procedures as well as your rights of objection. By subscribing to our newsletter, you agree to receive it and the procedures described.
Content of the newsletter: We send newsletters, e-mails and other electronic notifications with advertising information (hereinafter “newsletter”) only with the consent of the recipient or legal permission. If the contents of the newsletter are specifically described when registering for the newsletter, they are decisive for the consent of the user. Our newsletter also contains the following information: “Events, our products, product offers, promotions and our general information about our company”.
Double opt-in and logging: Registration for our newsletter takes place in a so-called double opt-in procedure. This means that after registration you will receive an e-mail in which you will be asked to confirm your registration. This confirmation is necessary so that nobody can register with someone else’s e-mail address. The registrations for the newsletter are logged in order to be able to prove the registration process in accordance with the legal requirements. This includes storing the time of registration and confirmation as well as the IP address. Changes to your data stored by the shipping service provider are also logged.
Dispatch service provider: The newsletter is dispatched by “iubenda s.r.l – Via Torino, 2 – 20123 Milan (Italy)” (hereinafter referred to as “dispatch service provider”). The data protection regulations of our shipping service providers can be found on the website at https://www.thenewsletterplugin.com
The e-mail addresses of our newsletter recipients, as well as their other data described in this notice, are stored on the servers of the shipping service provider. The shipping service provider uses this information to send and evaluate the newsletter on our behalf. Furthermore, the shipping service provider can, according to its own information, use this data to optimize or improve its own services, e.g. for the technical optimization of shipping and the presentation of the newsletter or for economic purposes, in order to determine from which countries the recipients come. However, the shipping service provider does not use the data of our newsletter recipients to write to them themselves or to pass them on to third parties.
Registration data: In order to register for the newsletter, it is sufficient if you enter your e-mail address. Optionally, we ask you to provide the following data: “First and last name and address for the purpose of personalizing the newsletter. date of birth and gender to adapt the content of the newsletter to the interests of our readers”.
Statistical survey and analysis – The newsletters contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved from the server of the shipping service provider when the newsletter is opened. As part of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and time of retrieval, are initially collected. This information is used to technically improve the services based on the technical data or the target groups and their reading behavior based on their retrieval locations (which can be determined using the IP address) or the access times. The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our aim nor that of the shipping service provider to monitor individual users. The evaluations serve us much more to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.
Termination/Revocation – You can terminate the receipt of our newsletter at any time, i.e. revoke your consent. At the same time, your consent to its dispatch by the dispatch service provider and the statistical analyzes expire. Unfortunately, a separate revocation of the dispatch by the dispatch service provider or the statistical evaluation is not possible. You will find a link to cancel the newsletter at the end of each newsletter.
12. Integration of Third-Party Services and Content
It may happen that content or services from third-party providers, such as city maps or fonts from other websites, are integrated within our online offer. The integration of content from third-party providers always requires that the third-party providers perceive the IP address of the user, since without the IP address they would not be able to send the content to the user’s browser. The IP address is therefore required for the display of this content. Furthermore, the providers of the third-party content can set their own cookies and process the data of the users for their own purposes. User profiles can be created from the processed data. We will use this content as data-sparingly and data-avoiding as possible and choose reliable third-party providers with regard to data security.
The following presentation offers an overview of third-party providers and their content, along with links to their data protection declarations, which contain further information on the processing of data and, in some cases already mentioned here, possibilities to object (so-called opt-out):
The data collected by this service is transmitted to a third country (USA). Your express consent forms the legal basis for this data transfer in accordance with Art 49 Para 1 lit a in conjunction with Art 6 Para 1 lit a GDPR. Even before you gave your consent, we informed you that the USA currently does not have a level of data protection that corresponds to the standards of the EU. For this reason, the European Court of Justice declared the “Privacy Shield” (adequacy decision pursuant to Art. 45 GDPR) invalid in the Schrems II case.
13. Integration of Online Forms
Online forms are provided by our service provider DWFormmailer (https://www.dw-formmailer.de). For the purpose of transmission and processing, the data is forwarded to the DWFormmailer servers.
The operator of this internet portal is Wolfgang Dürr (sole proprietorship), In den Kehlen 4, 97342 Marktsteft, Germany. There is an agreement on order data processing with the service provider.
14. Web fonts
Google Fonts
We process connection data and browser data with our processor Google Fonts, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland for the purpose of providing the fonts required by the web browser to display the website. This data is only processed for the duration required to select and transmit the fonts. The legal basis for data processing is the legitimate interest (absolute technical necessity for the provision and delivery of the “website” service you expressly requested when you called it up) in accordance with Article 6 (1) (f) GDPR.
Insofar as further independent processing of the data takes place through Google Fonts, Google is solely responsible for this. Details can be found in the data protection declaration and in the FAQ of Google Fonts.
Font Awesome
We process connection data and browser data with our processor Fontawesome, Fonticons, Inc., 6 Porter Road, Apartment 3R, Cambridge, MA 02140, USA for the purpose of providing the fonts required by the web browser to display the website. This data is only processed for the duration required to select and transmit the fonts.
The legal basis for data processing is the legitimate interest (absolute technical necessity for the provision and delivery of the “website” service you expressly requested when you called it up) in accordance with Article 6 (1) (f) GDPR.
Insofar as Fontawesome carries out further independent processing of the data, Fontawesome is solely responsible for this. See Fontawesome’s Privacy Policy for details.
15. User Rights and Deletion of Data
Users have the right to request information free of charge about the personal data that we have stored about them.
In addition, users have the right to correct incorrect data, revoke consent, block and delete their personal data, and the right to lodge a complaint with the competent supervisory authority if they suspect unlawful data processing.
The data stored by us will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any statutory storage requirements.
16. Changes to the Privacy Policy
We reserve the right to change the data protection declaration in order to adapt it to changed legal situations or to changes in the service and data processing. However, this only applies with regard to declarations on data processing. If user consent is required or parts of the data protection declaration contain provisions of the contractual relationship with the user, the changes will only be made with the consent of the user.
Users are asked to inform themselves regularly about the content of the data protection declaration.
Status: January 21, 2022