The responsible party in accordance with data protection laws, particularly the EU General Data Protection Regulation (GDPR), is:

Phone CH: +41 79 365 2368

Phone DE: +49 172 134 2773

Website: https://www.andre-frett.com/

Based on Article 13 of the Swiss Federal Constitution and the data protection regulations of the federal government (Data Protection Act, DPA), every individual has the right to privacy protection and protection from the misuse of their personal data. The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

In cooperation with our hosting providers, we make every effort to protect the databases from unauthorized access, loss, misuse, or falsification as best as possible.

We would like to point out that data transmission over the internet (e.g., communication via email) may have security gaps. Complete protection of data from access by third parties is not possible.

By using this website, you agree to the collection, processing, and use of data as described below. This website can generally be visited without registration. Data such as pages visited or the names of files retrieved, as well as date and time, are stored on the server for statistical purposes, without directly linking these data to your person. Personal data, especially name, address, or email address, are collected voluntarily whenever possible. Without your consent, no data will be passed on to third parties.

Personal data refers to any information relating to an identified or identifiable person. A data subject is a person whose personal data is being processed. Processing encompasses any handling of personal data, regardless of the means and procedures used, especially the storing, disclosing, acquiring, deleting, storing, modifying, destroying, and using of personal data.

We process personal data in accordance with Swiss data protection law. Additionally, where and to the extent that the EU General Data Protection Regulation (GDPR) applies, we process personal data based on the following legal grounds in connection with Art. 6 Para. 1 of the GDPR:

Consent (Art. 6 Para. 1 S. 1 lit. a GDPR) – The data subject has given their consent to the processing of personal data concerning them for one or more specific purposes.

Contract fulfillment and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b GDPR) – The processing is necessary for the performance of a contract to which the data subject is a party, or for the implementation of pre-contractual measures taken at the request of the data subject.

Legal obligation (Art. 6 Para. 1 S. 1 lit. c GDPR) – The processing is necessary for compliance with a legal obligation to which the data controller is subject.

Protection of vital interests (Art. 6 Para. 1 S. 1 lit. d GDPR) – The processing is necessary to protect the vital interests of the data subject or another natural person.

Legitimate interests (Art. 6 Para. 1 S. 1 lit. f GDPR) – The processing is necessary for the purposes of the legitimate interests pursued by the data controller or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject, which require protection of personal data.

Application procedure as pre-contractual or contractual relationship (Art. 9 Para. 2 lit. b GDPR) – In the context of the application process, where special categories of personal data within the meaning of Art. 9 Para. 1 GDPR (e.g., health data, such as disability status or ethnic origin) are requested from applicants so that the data controller or the data subject can exercise their rights arising from labor law and social security and social protection law, the processing of such data will take place under Art. 9 Para. 2 lit. b GDPR, in the case of protecting vital interests of the applicants or other persons in accordance with Art. 9 Para. 2 lit. c GDPR, or for the purposes of preventive health care or occupational medicine, the assessment of the employee’s work capacity, medical diagnostics, care or treatment in the healthcare or social sector, or for the management of systems and services in the healthcare or social sector under Art. 9 Para. 2 lit. h GDPR. In the case of voluntary consent being provided to share special categories of data, the processing will occur based on Art. 9 Para. 2 lit. a GDPR.

In accordance with Art. 13 of the GDPR, we provide you with the legal grounds for our data processing activities. If the legal grounds are not specified in the privacy policy, the following applies: The legal basis for obtaining consent is Art. 6 Para. 1 lit. a and Art. 7 GDPR; the legal basis for processing in order to fulfill our services, carry out contractual measures, and respond to inquiries is Art. 6 Para. 1 lit. b GDPR; the legal basis for processing in order to fulfill our legal obligations is Art. 6 Para. 1 lit. c GDPR; and the legal basis for processing in order to safeguard our legitimate interests is Art. 6 Para. 1 lit. f GDPR. In the event that processing personal data is necessary to protect the vital interests of the data subject or another natural person, Art. 6 Para. 1 lit. d GDPR serves as the legal basis.

We take appropriate technical and organizational measures, in accordance with legal requirements, considering the state of the art, the implementation costs, and the nature, scope, circumstances, and purposes of the processing, as well as the different probabilities of occurrence and the extent of the threat to the rights and freedoms of natural persons, to ensure a level of protection appropriate to the risk.

These measures include, in particular, ensuring the confidentiality, integrity, and availability of data by controlling physical and electronic access to the data, as well as access, input, disclosure, safeguarding availability, and segregation of the data. Furthermore, we have implemented procedures to ensure the exercise of data subject rights, the deletion of data, and responses to data breaches. Additionally, we take privacy into account at the stage of designing or selecting hardware, software, and procedures, in line with the principle of data protection by design and by default.

As part of our processing of personal data, there are instances where the data is transmitted or disclosed to other entities, companies, legally independent organizational units, or individuals. The recipients of this data may include, for example, service providers assigned with IT tasks or providers of services and content embedded in a website. In such cases, we comply with legal requirements and, in particular, conclude appropriate contracts or agreements with the recipients of your data to ensure the protection of your data.

If we process data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)) or if the processing takes place as part of utilizing third-party services or the disclosure or transmission of data to other individuals, entities, or companies, this is only done in accordance with legal requirements.

Subject to explicit consent or contractually or legally required transmission, we process data only in third countries with an adequate level of data protection, through contractual obligations using so-called standard contractual clauses of the EU Commission, when certifications are in place, or when binding internal data protection rules exist (Art. 44 to 49 GDPR, EU Commission Information Page: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de).

This website uses cookies. Cookies are text files that contain data from visited websites or domains and are stored by a browser on the user's computer. A cookie primarily serves to store information about a user during or after their visit to an online service. Stored information may include, for example, language settings on a website, login status, a shopping cart, or the point where a video was watched. The term "cookies" also refers to other technologies that perform the same functions as cookies (e.g., when user data is stored using pseudonymous online identifiers, also called "user IDs").

The following types of cookies and functions are distinguished:

Temporary Cookies (also: session cookies): Temporary cookies are deleted as soon as a user leaves an online service and closes their browser.

Permanent Cookies: Permanent cookies remain stored even after the browser is closed. For example, the login status can be saved, or preferred content may be displayed directly when the user revisits a website. User interests, which are used for reach measurement or marketing purposes, can also be stored in such a cookie.

First-Party Cookies: First-party cookies are set by us.

Third-Party Cookies (also: third-party cookies): Third-party cookies are primarily used by advertisers (so-called third parties) to process user information.

Necessary (also: essential or absolutely required) Cookies: Some cookies are essential for the operation of a website (e.g., to store logins or other user inputs or for security purposes).

Statistics, Marketing, and Personalization Cookies: Cookies are also commonly used for reach measurement and when user interests or behavior (e.g., viewing specific content, using features, etc.) on individual pages are stored in a user profile. These profiles are used to display content that corresponds to the user’s potential interests. This process is also referred to as "tracking," i.e., tracking the user’s potential interests. If we use cookies or tracking technologies, we will inform you separately in our privacy policy or when obtaining consent.

Legal Grounds: The legal basis for processing your personal data with cookies depends on whether we ask for your consent. If this is the case and you consent to the use of cookies, the legal basis for processing your data is the consent you have given. Otherwise, the data processed with cookies will be processed based on our legitimate interests (e.g., for the operational management of our online service and its improvement) or, if necessary, to fulfill our contractual obligations.

Storage Duration: Unless we provide explicit information regarding the storage duration of permanent cookies (e.g., as part of a cookie opt-in), please assume that the storage duration can be up to two years.

General Information on Withdrawal and Objection (Opt-Out): Depending on whether the processing is based on consent or legal authorization, you have the option to withdraw your consent at any time or object to the processing of your data via cookie technologies (collectively referred to as "opt-out"). You can initially declare your objection by adjusting the settings of your browser, e.g., by disabling cookies (which may also restrict the functionality of our online service). An objection to the use of cookies for online marketing purposes can also be made through various services, especially in the case of tracking, via the websites https://optout.aboutads.info and https://www.youronlinechoices.com/. Additionally, you may receive further objection instructions as part of the details on the service providers and cookies used.

Processing of Cookie Data Based on Consent: We use a cookie consent management process, through which the consent of users to the use of cookies, as well as the processing and providers mentioned in the cookie consent management process, are obtained, managed, and can be withdrawn. The consent declaration is stored to avoid having to ask for it again and to prove the consent according to legal requirements. The storage may be server-side and/or in a cookie (so-called opt-in cookie, or using comparable technologies) to assign the consent to a user or their device. Subject to specific information about the providers of cookie management services, the following applies: The duration of the consent storage can be up to two years. In this case, a pseudonymous user identifier is created and stored with the time of consent, details of the consent scope (e.g., which categories of cookies and/or service providers), as well as the browser, system, and used end device.

Processed Data Types: Usage data (e.g., visited websites, interest in content, access times), meta/communication data (e.g., device information, IP addresses).

Affected Persons: Users (e.g., website visitors, users of online services).

Legal Grounds: Consent (Art. 6 Para. 1 S. 1 lit. a. GDPR), Legitimate Interests (Art. 6 Para. 1 S. 1 lit. f. GDPR).

This website uses SSL/TLS encryption for security purposes and to protect the transmission of confidential content, such as inquiries you send to us as the website operator. An encrypted connection is indicated by the browser's address bar changing from "http://" to "https://" and by the lock symbol in your browser bar.

When SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

This website may use Google Maps for embedding maps, Google Invisible reCAPTCHA for protection against bots and spam, and YouTube for embedding videos.

These services by the American company Google LLC use cookies, and as a result, data is transferred to Google in the USA. We assume that no personal tracking occurs solely by using our website in this context.

Google is committed to ensuring an adequate level of data protection according to the US-European and US-Swiss Privacy Shield frameworks.

For more information, please refer to Google's privacy policy.

When you send us inquiries via the contact form, your details from the inquiry form, including the contact information you provided, will be stored for the purpose of processing the inquiry and in case of follow-up questions. We do not share this data without your consent.

If you would like to subscribe to the newsletter offered on this website, we need your email address and information that allows us to verify that you are the owner of the provided email address and that you agree to receive the newsletter. No further data will be collected. We will use this data solely for sending the requested information and will not share it with third parties.

You can revoke your consent for storing the data, the email address, and its use for sending the newsletter at any time, for example, through the "unsubscribe link" in the newsletter.

Every data subject has the right to request confirmation from the website operator as to whether personal data concerning them is being processed. If you wish to exercise this right to confirmation, you can contact the data protection officer at any time.

Every data subject whose personal data is being processed has the right to receive, at any time, free of charge information about the personal data stored about them and a copy of this information. In addition, information may be provided about the following:

The purposes of processing

The categories of personal data being processed

The recipients to whom the personal data has been disclosed or will be disclosed

If possible, the planned duration for which the personal data will be stored, or, if this is not possible, the criteria used to determine this duration

The existence of a right to rectification or deletion of personal data or to restriction of processing by the controller, or a right to object to such processing

The existence of the right to lodge a complaint with a supervisory authority

If the personal data was not collected from the data subject: All available information about the source of the data

Furthermore, the data subject has the right to be informed about whether personal data has been transferred to a third country or to an international organization. If this is the case, the data subject also has the right to be informed about the appropriate safeguards in relation to the transfer.

If you wish to exercise this right to information, you can contact our data protection officer at any time.

Every data subject whose personal data is being processed has the right to request the immediate correction of inaccurate personal data concerning them. Furthermore, the data subject has the right, taking into account the purposes of the processing, to request the completion of incomplete personal data – including by means of a supplementary statement.

If you wish to exercise this right to rectification, you can contact our data protection officer at any time.

Every data subject whose personal data is being processed has the right to request the immediate deletion of personal data concerning them, provided that one of the following reasons applies and the processing is not necessary:

The personal data were collected for such purposes or processed in any other way, for which they are no longer necessary

The data subject withdraws their consent on which the processing was based, and there is no other legal basis for the processing

The data subject objects to the processing for reasons related to their particular situation, and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing in the case of direct marketing and related profiling

The personal data were processed unlawfully

The deletion of the personal data is required for compliance with a legal obligation under Union law or the law of the Member States to which the controller is subject

The personal data were collected in relation to the services of the information society offered directly to a child

If any of the above reasons apply, and you wish to request the deletion of personal data stored by the operator of this website, you can contact our data protection officer at any time. The data protection officer of this website will ensure that the deletion request is fulfilled without delay.

Every data subject whose personal data is being processed has the right to request the restriction of processing by the controller of this website if one of the following conditions is met:

The data subject disputes the accuracy of the personal data, for a period that allows the controller to verify the accuracy of the personal data

The processing is unlawful, the data subject opposes the deletion of the personal data and instead requests the restriction of its use

The controller no longer needs the personal data for the purposes of processing, but the data subject requires them for the assertion, exercise, or defense of legal claims

The data subject has objected to the processing due to reasons related to their particular situation, and it has not yet been determined whether the legitimate grounds of the controller override those of the data subject

If one of the above conditions applies, and you wish to request the restriction of personal data stored by the operator of this website, you can contact our data protection officer at any time. The data protection officer of this website will initiate the restriction of processing.

Every data subject whose personal data is being processed has the right to receive their personal data in a structured, commonly used, and machine-readable format. Furthermore, the data subject has the right to have these data transmitted to another controller where the legal requirements are met.

Additionally, the data subject has the right to ensure that the personal data is transmitted directly from one controller to another, provided that this is technically feasible and does not infringe upon the rights and freedoms of other individuals.

To exercise the right to data portability, you can contact the data protection officer appointed by the operator of this website at any time.

Every data subject whose personal data is being processed has the right to object at any time, for reasons arising from their particular situation, to the processing of their personal data.

The operator of this website will no longer process the personal data in the event of an objection unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights, and freedoms of the data subject, or if the processing is necessary for the establishment, exercise, or defense of legal claims.

To exercise the right to object, you can directly contact the data protection officer of this website.

Every data subject whose personal data is being processed has the right to withdraw their consent for the processing of personal data at any time.

If you wish to exercise your right to withdraw consent, you can contact our data protection officer at any time.

In order to provide paid services, we ask for additional data, such as payment information, in order to process your order or request. We store this data in our systems until the statutory retention periods have expired.

This website uses features from Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. When you visit our pages with Facebook plug-ins, a connection is established between your browser and the Facebook servers. Data is transmitted to Facebook during this process. If you have a Facebook account, this data may be linked to your account. If you do not want this data to be associated with your Facebook account, please log out of Facebook before visiting our site. Interactions, such as using a comment function or clicking on a "Like" or "Share" button, are also transmitted to Facebook. You can learn more here: https://de-de.facebook.com/about/privacy.

This website uses features from Twitter, Inc., 1355 Market St, Suite 900, San Francisco, CA 94103, USA. When you visit our pages with Twitter plug-ins, a connection is established between your browser and Twitter's servers. Data is transmitted to Twitter during this process. If you have a Twitter account, this data may be linked to your account. If you do not want this data to be associated with your Twitter account, please log out of Twitter before visiting our site. Interactions, such as clicking on a "Re-Tweet" button, are also transmitted to Twitter. You can learn more here: https://twitter.com/privacy.

Our website incorporates features of the Instagram service. These features are provided by Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA. If you are logged into your Instagram account, you can link the content of our pages to your Instagram profile by clicking the Instagram button. This allows Instagram to associate the visit to our pages with your user account. We would like to point out that we, as the provider of the pages, do not have knowledge of the content of the transmitted data or how Instagram uses this data.

For more information, please refer to Instagram's privacy policy: http://instagram.com/about/legal/privacy/.

We use the marketing services of the social network LinkedIn, operated by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland ("LinkedIn") within our online offerings.

These services use cookies, which are text files stored on your computer. This allows us to analyze your usage of the website. For example, we can measure the success of our ads and display products to users that they have shown interest in previously.

The information collected includes data about your operating system, browser, the website you visited prior to ours (referrer URL), which websites the user visited, which offers the user clicked on, and the date and time of your visit to our website.

The information generated by the cookie regarding your use of this website is pseudonymized and transferred to a LinkedIn server in the USA, where it is stored. LinkedIn does not store the name or email address of the respective user. Instead, the data mentioned above is only associated with the person who created the cookie. This does not apply if the user has allowed LinkedIn to process data without pseudonymization or has a LinkedIn account.

You can prevent the storage of cookies by adjusting the settings in your browser software; however, we would like to point out that, in this case, you may not be able to fully use all features of this website. You can also object to the use of your data directly with LinkedIn: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

We use LinkedIn Analytics to analyze the usage of our website and continuously improve it. The statistics obtained help us to improve our services and make them more interesting for you as a user. All LinkedIn companies have adopted the standard contractual clauses to ensure that the necessary data traffic for the development, execution, and maintenance of services is legally carried out in the USA and Singapore. If we ask users for consent, the legal basis for processing is Art. 6 (1) lit. a GDPR. Otherwise, the legal basis for using LinkedIn Analytics is Art. 6 (1) S. 1 lit. f GDPR.

Third-party information: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; User agreement and privacy policy.

This website uses external payment service providers through whose platforms users and we can make payment transactions. For example, via:

PostFinance (https://www.postfinance.ch/de/detail/rechtliches-barrierefreiheit.html)

Visa (https://www.visa.de/nutzungsbedingungen/visa-privacy-center.html)

Mastercard (https://www.mastercard.ch/de-ch/datenschutz.html)

American Express (https://www.americanexpress.com/de/legal/online-datenschutzerklarung.html)

PayPal (https://www.paypal.com/de/webapps/mpp/ua/privacy-full)

Bexio AG (https://www.bexio.com/de-CH/datenschutz)

Payrexx AG (https://www.payrexx.ch/site/assets/files/2592/datenschutzerklaerung.pdf)

Apple Pay (https://support.apple.com/de-ch/ht203027)

Stripe (https://stripe.com/ch/privacy)

Klarna (https://www.klarna.com/de/datenschutz/)

Skrill (https://www.skrill.com/de/fusszeile/datenschutzrichtlinie/)

Giropay (https://www.giropay.de/rechtliches/datenschutzerklaerung) etc.

As part of contract fulfillment, we use payment service providers based on the Swiss Data Protection Regulation and, where necessary, Article 6 (1) lit. b GDPR. Additionally, we use external payment service providers based on our legitimate interests according to the Swiss Data Protection Regulation and, where necessary, Article 6 (1) lit. f GDPR, in order to provide our users with an effective and secure payment option.

The data processed by the payment service providers includes inventory data, such as name and address, bank data, such as account numbers or credit card numbers, passwords, TANs, and checksums, as well as contract, amount, and recipient-specific information. This information is required to carry out the transactions. However, the entered data is only processed and stored by the payment service providers. As operators, we do not receive any information about (bank) accounts or credit cards, but only information regarding the confirmation (acceptance) or rejection of the payment.

In some cases, the payment service providers may transfer data to credit reporting agencies. This transfer serves the purpose of identity and creditworthiness verification. We refer to the terms and conditions and privacy notices of the payment service providers. For payment transactions, the terms and conditions and privacy notices of the respective payment service providers apply, which can be accessed on the respective website or transaction applications. We refer to these for further information and the exercise of cancellation, information, and other rights of the data subjects.

This website uses the services of ActiveCampaign for sending newsletters.

The provider is the US-based company ActiveCampaign, LLC, 150 N. Michigan Ave Suite 1230, Chicago, IL, US, USA.

ActiveCampaign is a service that can be used to organize and analyze the distribution of newsletters, among other things. If you enter data for the purpose of receiving newsletters (e.g., your email address), this data will be stored on ActiveCampaign's servers in the USA.

ActiveCampaign is certified under the "EU-US Privacy Shield." The "Privacy Shield" is an agreement between the European Union (EU) and the USA aimed at ensuring the compliance with European data protection standards in the USA.

Using ActiveCampaign, we can analyze our newsletter campaigns. When you open an email sent via ActiveCampaign, a file (a so-called web beacon) included in the email connects to ActiveCampaign's servers in the USA. This allows us to determine if a newsletter message has been opened and which links, if any, were clicked. Additionally, technical information such as the time of access, IP address, browser type, and operating system is collected. This information cannot be attributed to the individual newsletter recipient. It is solely used for statistical analysis of the newsletter campaigns. The results of these analyses can be used to better tailor future newsletters to the recipients' interests.

If you do not want to participate in ActiveCampaign's analysis, you must unsubscribe from the newsletter. A corresponding link is provided in every newsletter message. Furthermore, you can also unsubscribe directly on our website.

Data processing is based on your consent (Art. 6 Para. 1 lit. a GDPR). You can withdraw this consent at any time by unsubscribing from the newsletter. The legality of the data processing that has already occurred remains unaffected by the withdrawal.

The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and deleted from both our servers and ActiveCampaign's servers after the newsletter is unsubscribed. Data stored for other purposes (e.g., email addresses for the member area) remain unaffected.

For more information, please refer to ActiveCampaign's privacy policy: https://www.activecampaign.com/privacy-policy/.

Link to Privacy Shield certification: https://www.privacyshield.gov.

We have concluded a "Data-Processing Agreement" with ActiveCampaign, in which we commit ActiveCampaign to protect our customers' data and not to disclose it to third parties.

This website integrates features of the "YouTube" service. "YouTube" is owned by Google Ireland Limited, a company incorporated and operated under Irish law, located at Gordon House, Barrow Street, Dublin 4, Ireland, which operates the services within the European Economic Area and Switzerland.

Your legal agreement with "YouTube" is governed by the terms and conditions available at the following link: https://www.youtube.com/static?gl=de&template=terms&hl=de. These terms form a legally binding agreement between you and "YouTube" regarding the use of the services. Google's privacy policy explains how "YouTube" handles and protects your personal data when you use the service.

We process data of our contractual and business partners, such as customers and prospects (collectively referred to as "contract partners") in the context of contractual and similar legal relationships, as well as associated measures and in communication with the contract partners (or pre-contractually), e.g., to respond to inquiries.

We process this data to fulfill our contractual obligations, secure our rights, and for administrative tasks and business organization associated with this data. We share the data of contract partners with third parties only to the extent necessary for the aforementioned purposes or to fulfill legal obligations or with the consent of the individuals concerned (e.g., to involved telecommunications, transportation, and other auxiliary services, subcontractors, banks, tax and legal advisors, payment service providers, or tax authorities). Contract partners will be informed about further forms of processing, e.g., for marketing purposes, within this privacy policy.

The data required for the aforementioned purposes will be communicated to the contract partners before or at the time of data collection, e.g., in online forms, through special markings (e.g., colors) or symbols (e.g., asterisks, etc.), or personally.

We delete the data after the statutory warranty periods and similar obligations have expired, i.e., generally after 4 years, unless the data is stored in a customer account, for example, as long as it must be retained for legal reasons (e.g., for tax purposes, usually 10 years). Data that has been disclosed to us by the contract partner in the course of an assignment will be deleted in accordance with the assignment’s specifications, usually after the assignment ends.

If we use third-party providers or platforms to provide our services, the terms and conditions and privacy notices of the respective third-party providers or platforms apply to the relationship between the users and the providers.

Customer Account: Contract partners may create an account within our online offering (e.g., a customer or user account, referred to as "customer account"). If registration for a customer account is required, contract partners will be informed of this as well as the necessary details for registration. Customer accounts are not public and cannot be indexed by search engines.

In the course of registration as well as subsequent logins and use of the customer account, we store the customers' IP addresses and access times to document the registration and prevent any misuse of the customer account.

If customers cancel their customer account, the data related to the customer account will be deleted, unless its retention is legally required. It is the responsibility of the customers to secure their data upon cancellation of the customer account.

Analysis and Market Research: For business reasons and to recognize market trends and customer needs, we analyze the data available to us regarding business transactions, contracts, inquiries, etc., where the affected persons can include contract partners, prospects, customers, visitors, and users of our online offering.

The analyses are carried out for business evaluations, marketing, and market research (e.g., to determine customer groups with different characteristics). If available, we may consider the profiles of registered users along with their details, such as the services they have used. The analyses are conducted for our internal purposes only and are not shared externally unless they are anonymous analyses with summarized, anonymized values. Additionally, we respect the privacy of users and process the data for analysis purposes as pseudonymized and, where possible, anonymized (e.g., as aggregated data).

Shop and E-Commerce: We process the data of our customers to enable them to select, purchase, or order the chosen products, goods, and related services, as well as to process payment and delivery or execution. If necessary for order execution, we use service providers, particularly postal, shipping, and delivery companies, to carry out the delivery or performance of our services. For payment processing, we use the services of banks and payment service providers. The required details are indicated during the order or similar purchase process and include the information needed for delivery, provision, and billing, as well as contact information for any necessary follow-up communication.

Agency Services: We process the data of our clients within the framework of our contractual services, which may include, for example, conceptual and strategic consulting, campaign planning, software and design development/consulting or maintenance, implementation of campaigns and processes, handling, server administration, data analysis/consulting services, and training services.

We process data in accordance with the data protection regulations of the federal government (Data Protection Act, DSG) and the EU General Data Protection Regulation (GDPR) within the framework of administrative tasks, organizing our business, financial accounting, and compliance with legal obligations, such as archiving. In doing so, we process the same data that we process in the course of providing our contractual services. The legal bases for processing are Article 6(1) lit. c GDPR, Article 6(1) lit. f GDPR. Customers, prospects, business partners, and website visitors are affected by this processing. The purpose and our interest in processing are the administration, financial accounting, office organization, and archiving of data—tasks that serve the maintenance of our business activities, the performance of our duties, and the provision of our services.

The deletion of data related to contractual services and communication complies with the details mentioned in these processing activities.

We disclose or transfer data to tax authorities, consultants such as tax advisors or auditors, as well as other fee authorities and payment service providers.

Furthermore, based on our business interests, we store information about suppliers, organizers, and other business partners, e.g., for later contact. These primarily company-related data are generally stored permanently.

We process the data of our members, supporters, prospects, customers, or other persons in accordance with the data protection regulations of the federal government (Data Protection Act, DSG) and the EU General Data Protection Regulation (GDPR) in accordance with Article 6(1) lit. b GDPR, if we offer contractual services to them or are active within the framework of an existing business relationship, e.g., with members, or if we are recipients of services and donations ourselves. Furthermore, we process the data of the affected persons in accordance with Article 6(1) lit. f GDPR based on our legitimate interests, e.g., if it concerns administrative tasks or public relations work.

The data processed in this context, including the type, scope, purpose, and necessity of their processing, are determined by the underlying contractual relationship. These typically include personal data such as basic and contact details (e.g., name, address, email, phone), contractual data (e.g., services received, provided content and information, names of contact persons), and, if we offer paid services or products, payment data (e.g., bank account, payment history, etc.).

We delete data that is no longer necessary for the statutory purposes. This is determined according to the respective tasks and contractual relationships. In the case of business processing, we retain the data for as long as it is relevant for business processing or for potential warranty or liability obligations. The necessity of retaining the data is checked periodically. In addition, the statutory retention obligations apply.

Our website incorporates tools from companies based in the USA. When these tools are active, your personal data may be transferred to the US servers of the respective companies. We would like to point out that the USA is not considered a secure third country under EU data protection law. US companies are required to release personal data to security authorities without the possibility for you, as the data subject, to take legal action. Therefore, it cannot be ruled out that US authorities (e.g., intelligence services) may process, analyze, and permanently store your data located on US servers for surveillance purposes. We have no influence over these processing activities.

The copyrights and all other rights to content, images, photos, or other files on this website exclusively belong to the operator of this website or the specifically named rights holders. Reproduction of any files requires prior written consent from the copyright holder.

Anyone who commits a copyright infringement without the consent of the respective rights holder may be subject to criminal liability and may be required to pay damages.

All information on our website has been carefully reviewed. We strive to provide our informational content in a current, accurate, and complete manner. However, the occurrence of errors cannot be completely excluded, and therefore we cannot guarantee the completeness, accuracy, and currency of the information, including journalistic or editorial content. Liability claims for damages of a material or immaterial nature caused by the use of the provided information are excluded, unless there is proven intent or gross negligence.

The publisher can, at its discretion and without prior notice, modify or delete texts and is not obliged to update the content of this website. The use or access to this website is at the visitor's own risk. The publisher, its clients, or partners are not responsible for damages such as direct, indirect, incidental, predetermined, or consequential damages that may arise from the visit to this website and, therefore, assume no liability for such damages.

The publisher also assumes no responsibility or liability for the content and availability of third-party websites that are accessible through external links on this website. The content of the linked sites is the sole responsibility of their operators. The publisher expressly distances itself from all third-party content that may be criminally or legally relevant or violates public morals.

We may update this privacy policy at any time without prior notice. The version published on our website at the time of access is the applicable version. If the privacy policy is part of an agreement with you, we will inform you of any updates via email or other suitable means.

If you have any questions regarding data protection, please send us an email or directly contact the person responsible for data protection listed at the beginning of this privacy policy in our organization.

Status: 01.Jan.2023