We do not sell, trade, exchange or otherwise make available any personally identifiable information to any other team or organization. We may update this policy. We will notify you about significant changes in the way we treat personal information by sending a notice to the primary email address specified in your account or by placing a prominent notice on our site.
We generally only process our users’ personal data if we require this data to offer you the full functionality of our website and services, or if the information is required for access to our content and services. Users’ personal data is usually only processed once the user provides their consent. The exception to this rule applies in cases in which it is not possible to obtain prior consent for practical reasons and the processing of this data without permission is permitted by law.
Article 6, section 1, item a) of the EU General Data Processing Regulation (GDPR) serves as the legal basis for processing personal data in cases where the user has provided permission for us to do so. In cases where processing personal data is necessary for the performance of a contract that the user in question has signed, article 6, section 1, item b) of the GDPR applies. This also applies for processing procedures that are required for the performance of pre-contractual measures. If the processing of personal data is required for the fulfilment of legal obligations that our company is subject to, article 6, section 1, item c) of the GDPR applies. For cases in which the vital interests of the person concerned, or those of another natural person, make it necessary to process personal data, article 6, section 1, item d) of the GDPR applies. If the processing of personal data is necessary to safeguard the interests of our company or a third party, and the interest, fundamental rights and freedoms of the data subject do not outweigh these interests, article 6, section 1, item f) of the GDPR applies as the legal basis for processing data.
The personal data of the person concerned is deleted or blocked as soon as the data has served its purpose. Data may be stored beyond this period if provisions are made to this effect by European and national legislators in regulations, laws or other legal texts in accordance with the union law that the data controller is subject to. The data will also be deleted or blocked if the storage period specified in these regulations expires, unless the storage of this data for a longer period is required for the conclusion of a contract or the fulfilment of contractual obligations.
The legal basis for temporary storage of data and log files can be found in article 6, section 1, item f) of the GDPR.
Temporary storage of IP addresses on the system is necessary in order to make the website and services available on the user’s computer. The user’s IP address must be stored for the duration of the session. IP addresses are stored in log files to ensure the functionality of the website and services. This data also helps us to optimise our website and services and ensure the security of our IT systems. Data stored in this way is not evaluated for marketing purposes. These purposes also constitute legitimate interest for processing data within the meaning of article 6, section 1, item f) of the GDPR.
Data is deleted as soon as the purposes it has been collected for have been fulfilled. If the collection of data is necessary for the provision of the website and services, data is deleted as soon as the respective session is complete. If data is stored in log files, data will be deleted no more than 14 days after the website or service is accessed. It is possible that data will be stored for a longer period. In this case, the user’s IP address is deleted or distorted, to ensure that the customer accessing the site can no longer be identified.
The collection of data for the provision of the website and services, and the storage of data in log files is essential to the operation of the website and services. There is therefore no possibility for the user to opt out.