This is an automatic translation. Only the German version of the privacy policy is legally binding.
Privacy declaration of twentyZen GmbH for webZunder
I. Our approach to the topic of data protection
The data protection law is part of our personal rights. Especially in our constantly developing and networked world, the importance of these rights must not be underestimated. For us, the twentyZen GmbH, the data protection right in all its forms and requirements has a high value, therefore we also take the protection of your data very seriously and are always anxious to provide an appropriate level of protection on this website, www.webzunder.com.
You are free to use our website without disclosing your personal data. However, if you wish to make use of one of our webZunder services via our website, it may be necessary to collect and process your data. If this is the case and there is no legal basis for this processing, we will in any case obtain your consent for the respective process.
The processing of your personal data, such as your name, address, e-mail address or telephone number, is always carried out in accordance with the Basic Data Protection Regulation and in accordance with the country-specific data protection regulations applicable to us. We would like to inform you and the public about the type, scope and purpose of the personal data collected, used and processed by us in an understandable manner so that a comprehensive explanation of the subject of data protection is provided.
As the person responsible for processing, we have implemented numerous technical and organisational measures to ensure that the personal data processed via this website is protected as completely as possible. Since, despite all technical precautions, absolute protection cannot be completely guaranteed during data transmission, you are also free to transmit your personal data by other means, for example by telephone.
II. data protection details
1. definitions according to DS-GVO
The privacy policy of this website is based on the terms used by the European Directive and Regulation Maker in the adoption of the Basic Data Protection Regulation (DS-GVO). Our privacy policy should be easy to read and understand for the public as well as for you as a customer and business partner. In order to guarantee this, we would like to explain the terms used in advance.
We use the following terms in this privacy statement, among others:
- personal data
Personal data is any information relating to an identified or identifiable natural person (hereinafter “data subject”). A natural person shall be considered identifiable if he can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or one or more specific characteristics expressing the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person. - person affected
Data subject is any identified or identifiable natural person whose personal data are processed by the controller. In case of doubt you are an affected person. - Processing
Processing means any operation or set of operations which is carried out with or without the aid of automated processes and which relates to personal data, such as collection, recording, organisation, sorting, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or association, qualification, erasure or destruction. - Constraint on processing
Limitation of processing is the marking of stored personal data with the aim of limiting their future processing. - Profiling
Profiling is any automated processing of personal data consisting of the use of such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects relating to the work performance, economic situation, health, personal preferences, interests, reliability, behaviour, whereabouts or movements of that natural person. - Pseudonymization
Pseudonymisation means the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the provision of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures designed to ensure that the personal data are not attributed to an identified or identifiable natural person. - Responsible for processing or person responsible for processing
The controller or data controller is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are laid down by Union law or by the law of the Member States, the controller may be designated in accordance with Union law or with the law of the Member States, or the specific criteria for his designation may be laid down. - Processor of orders
Processor means any natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller. - Receiver
The recipient is a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not that person is a third party. However, authorities which may receive personal data in the context of a specific investigation mandate under Union law or the law of the Member States shall not be considered as recipients. - Third
Third party means any natural or legal person, public authority, agency or body other than the data subject, the controller, the processor and the persons who, under the direct responsibility of the controller or the processor, are authorised to process the personal data. - A Consent
Consent shall mean any voluntary, informed and unambiguous expression by the data subject of his or her will in a particular case, in the form of a statement or other unequivocal affirmative act, indicating that he or she consents to the processing of his or her personal data.
2. Who we are
Responsible for this website in the sense of the data protection basic regulation is:
twentyZen GmbH
Ammonstraße 35
01067 Dresden, Germany
Phone: 0351 / 79 99 – 50 10
Email: contact@twentyZen.com
Website: www.twentyzen.com
twentyZen GmbH is represented by its managing directors Stefan Machleidt and Dirk Spannaus.
3. What data and information we collect
Our website collects a number of general data and information from you each time you visit our website. This general data and information is stored in the log files of the server.
a) General information collection
The following data may be collected when using this website:
- type of browser used and version,
- The operating system used by the accessing system,
- the website from which an accessing system accesses our website (so-called referrer),
- the website from which an accessing system accesses our website (so-called referrer),
- the website from which an accessing system accesses our website.
- the subwebsites which are accessed via an accessing system on our website,
- the date and time of an access to the website,
- one Internet Protocol address (IP address),
- the Internet Service Provider of the accessing system and
- other similar data and information used to avert danger in the event of attacks on our information technology systems.
When using this general data and information, our company does not draw any conclusions about you. Rather, this information is needed in order to
- deliver the content of our website correctly,
- to optimize the content of our website and the advertising for it,
- to ensure the long-term operability of our information technology systems and the technology of our website, and
- to provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack.
to provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack.
This anonymously collected data and information is therefore evaluated by us both statistically and with the aim of increasing data protection and data security in our company in order to ultimately ensure an optimum level of protection for the personal data processed by us. The anonymous data of the server log files are stored separately from all your personal data.
b) Acquisition of information during and during commissioning of webZunder
When setting up webZunder we collect further information. This includes the access data to the Internet services, which are to be administered in your name with the help of webZunder.
Data that you have not yet entered during registration will be requested during operation, e.g. via dialogs that are displayed. This happens, for example, when completing the user information (e.g. with a photo) and when creating profiles within the webZunder platform. Furthermore, we store the contents created by you (e.g. own contributions and comments on contributions of third parties). These are needed, for example, to be able to make changes to articles at a later date and to publish them again.
4. Our handling of cookies
This website is operated by the use of cookies, among other things. Cookies are text files, which are stored on your computer system via your Internet browser.
Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters through which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This enables the visited websites and servers to distinguish your individual browser from other Internet browsers that contain other cookies. A specific Internet browser can be recognized and identified via the unique cookie ID.
The use of cookies can provide you with a user-friendly service that would not be possible without the setting of cookies.
By means of a cookie, the information and offers on the website can be optimised in your sense. Cookies make it possible to recognize you. These are small files that are set when you visit websites. With their help, your Internet browser remembers that you have visited this website before.
The purpose of this recognition is to make it easier for users to use this website. If you use this website, for example, you do not have to re-enter your access data each time you visit the website because this is taken over by the website and the cookie stored on your computer system.
You can prevent the setting of cookies by this website at any time by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via your Internet browser or other software programs. This is possible in all common Internet browsers. If you deactivate the setting of cookies in the Internet browser used, it is possible that not all functions of the website are fully usable.
You have the possibility to choose and change your decision to use cookies on this page.
[borlabs_cookie]
5. Possibility to contact via the website
Due to legal regulations, our website contains information that enables us to contact our company quickly and electronically and to communicate directly with us, which also includes a general address of the so-called electronic mail (e-mail address).
If you contact us by e-mail or via our contact form, the personal data you provide will be stored automatically. Such personal data transmitted to us by you on a voluntary basis will be stored for the purpose of processing or contacting you. This personal data will not be passed on to third parties.
6. Deletion and blocking of personal data
We process and store your personal data only for the period of time necessary to achieve the storage purpose or if provided for by the European Directive and Regulation Body or another legislator in laws or regulations to which the data controller is subject.
If the storage purpose no longer applies or if a storage period prescribed by the European directive and regulation giver or another competent legislator expires, the personal data shall be blocked or deleted routinely and in accordance with the statutory provisions.
7. Which rights do you have?
The European legislator has given you a number of possibilities within the framework of the basic data protection regulation to assert your rights – also vis-à-vis us. In order to comply with our duty to provide such information, your rights are set out below:
Right to acknowledge
You have the right to request confirmation from us as to whether your personal data will be processed. If you would like to make use of this right of confirmation, you can contact our contact person below at any time.
Right to information
You have the right at any time to receive from us free information about your stored personal data (e.g. the purpose of processing or the categories of data to be processed) and a copy of this information. If this is the case, you have a right to information about this personal data.
You also have a right to know whether your personal data has been transferred to a third country or to an international organisation. If this is the case, you are otherwise entitled to receive information about the appropriate guarantees in connection with the transmission.
If you would like to make use of this right to information, you can contact our contact person below at any time.
Right to rectification
You have the right to demand from us immediately the correction of your incorrect personal data concerning you. Taking into account the purposes of the processing, you also have the right to request the completion of incomplete personal data – also by means of a supplementary declaration.
If you would like to make use of this right of correction, you can contact our contact person below at any time.
Right to deletion (so-called “right to be forgotten”)
You have the right to demand that we delete your personal data immediately. We are also obliged to delete personal data immediately if there is a reason which does not justify the processing of the data (e.g. personal data were collected for such purposes or processed in any other way for which they are no longer necessary).
If one of the above-mentioned reasons applies and you wish to have your personal data stored by us deleted, you can contact our contact person below at any time. He will arrange for your request for deletion to be complied with immediately.
If we have made your personal data public and are obliged to delete it, we will take appropriate measures, including technical measures, to inform those responsible for data processing who process the personal data that you have requested us to delete all links to this personal data or to make copies or replications of this personal data, taking into account the available technology and the implementation costs.
Right to restrict processing
You have the right to demand that we restrict processing if one of the following conditions is met:
- You dispute the accuracy of the personal data for a period of time that allows us to verify the accuracy of the personal data.
- The processing is unlawful, you refuse the deletion of personal data and instead demand the restriction of the use of personal data.
- We no longer need the personal data for the purposes of processing, but you do need it for the assertion, exercise or defense of legal claims.
- You have lodged an objection against the processing pursuant to Art. 21 para. 1 DS-GVO and it is not yet clear whether our legitimate reasons outweigh yours.
If one of the above conditions is met and you wish to request the restriction of your personal data stored by us, you can contact our contact person below at any time.
We will notify you of any rectification or deletion of your personal data or any limitation of processing, unless this proves impossible or involves disproportionate effort. We will inform you of these recipients if you so request.
Right to transfer data
You have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format. Furthermore, you have the right to transfer this data to another responsible person without any hindrance on our part, to whom the personal data have been provided.
To assert your right to data transferability, you can contact our contact person below at any time.
Right to appeal
You have the right, for reasons arising from your particular situation, to object at any time to the processing of your personal data concerning you on the basis of Art. 6 para. 1 letters e or f DS-GVO. This also applies to profiling based on these provisions.
We no longer process personal data unless we can prove compelling reasons for processing worthy of protection which outweigh your interests, rights and freedoms, or the processing serves the assertion, exercise or defence of legal claims.
right to revoke a data protection consent
You have the right to revoke your consent to the processing of personal data at any time.
If you wish to revoke your consent, you can contact our contact person Dirk Spannaus at any time. You can reach him via the following contact details:
twentyZen GmbH
Dirk Spannaus
Ammon road 35
01067 Dresden, Germany
Phone: 0351 / 79 99 – 50 10
Email: contact@twentyZen.com
Website: www.twentyzen.com
8. Registration on our website
You can create a user account on our website. Within the scope of registration, the required mandatory data will be communicated to the users and processed on the basis of Art. 6 para. 1 lit. b DSGVO for the purpose of providing the user account. The processed data includes in particular the login information (name, password and an e-mail address). The data entered during registration will be used for the purposes of using the user account and its purpose.
You may be informed by e-mail about information relevant to your user account, such as technical changes. If users have terminated their user account, their data will be deleted with regard to the user account, subject to a statutory retention obligation. It is the responsibility of the users to secure their data before the end of the contract in the event of termination. We are entitled to irretrievably delete all user data stored during the term of the contract.
Within the scope of using our registration and login functions as well as the use of the user account, we store the IP address and the time of the respective user action. The storage takes place on basis of our entitled interests, as well as in your interest to the protection against abuse and other unauthorized use. A passing on of these data to third parties does not take place in principle, unless it is necessary for the pursuit of our claims or there is a legal obligation according to art. 6 para. 1 lit. c. DSGVO. The IP addresses are anonymized or deleted after 7 days at the latest.
If you register on the webZunder website and conclude a contract with us, we will collect further data such as your contact and address data, the company name and the VAT ID of your company, if applicable, in order to fulfil the contract with you.
III. tools and links on our website
1. We use Facebook
We have integrated a link to the company Facebook on our website. Facebook is a social network on which our webZunder service can be found and is available to you at any time.
As a social network, Facebook enables its users to communicate with each other and act in virtual space. It therefore also serves as a platform for the exchange of opinions and reports or enables the Internet community to provide personal or company-related information.
The operating company of Facebook is Facebook, Inc. 1 Hacker Way, Menlo Park, CA 94025, USA. If you live outside the USA or Canada, the person responsible for processing personal data is Facebook Ireland Ltd. 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Each time you access one of the individual pages on this website that is operated by us and on which a Facebook link (Facebook plug-in) has been integrated, the respective Facebook component automatically prompts your Internet browser to download a display of the corresponding Facebook component from Facebook. A complete overview of all Facebook plug-ins can be found at https://developers.facebook.com/docs/plugins/?locale=de_DE. As part of this technical process, Facebook obtains information about which specific subpage of our website is visited by you.
If you are logged in to Facebook at the same time, Facebook recognizes you with each visit to our website and for the entire duration of your stay on our website and which specific page of our website you have visited. This information is collected by the Facebook component and assigned to your Facebook account by Facebook. If you click on one of the Facebook buttons integrated on our website, for example the “Like” button, or if you make a comment, Facebook assigns this information to your personal Facebook user account and stores this personal data.
Facebook receives information via the Facebook component that you have visited our website whenever you are logged in to Facebook at the same time as you visit our website, regardless of whether you click on the Facebook component or not. If you do not want this information to be transmitted to Facebook in this way, you can prevent it from being transmitted by logging out of your Facebook account before accessing our website.
The privacy policy published by Facebook, which is available at https://de-de.facebook.com/about/privacy/, provides information about the collection, processing and use of personal data by Facebook. It also explains what settings Facebook offers to protect your privacy. In addition, various applications are available that make it possible to suppress data transmission to Facebook. Such applications can be used by you to suppress data transmission to Facebook.
Opt-Out: https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com
Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active
[borlabs_cookie_opt_out tracking=”facebook-pixel”]
2. We use Google Analytics (with anonymization function)
We have integrated the Google Analytics component (with anonymization function) on our website. Google Analytics is a web analytics service. Web analysis is the collection, collection and evaluation of data about the behavior of visitors to Internet sites. Among other things, a web analysis service collects data on which website you came from (so-called referrers), which subpages of the website were accessed or how often and for how long a subpage was viewed. A web analysis is mainly used for the optimization of a website and for the cost-benefit analysis of Internet advertising.
The operating company of the Google Analytics component is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
We use the addition “_gat._anonymizeIp” for the web analysis via Google Analytics. With this addition, your IP address of your Internet connection will be shortened and anonymized by Google, if the access to our Internet pages from a member state of the European Union or from another contracting state of the Agreement on the European Economic Area.
The purpose of the Google Analytics component is to analyse the flow of visitors to our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us showing the activities on our website and to provide other services in connection with the use of our website.
Google Analytics places a cookie on your information technology system. We have already explained to you in point 3 what cookies are. By setting the cookie, Google is able to analyse the use of our website. Each time you access one of the individual pages of this website which is operated by us and on which a Google Analytics component has been integrated, the Internet browser on your information technology system is automatically prompted by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. As part of this technical process, Google obtains knowledge of personal data, such as your IP address, which Google uses, among other things, to track the origin of visitors and clicks and subsequently to enable commission settlements.
Through this measure, personal information, such as the access time, the location from which an access originated and the frequency of your visits to our website is stored. Each time you visit our website, your personal data, including the IP address of the Internet connection you use, will be transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may share this personal information collected through the technical process with third parties.
As described under point 3, you can prevent the setting of cookies at any time by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Google from setting a cookie on your information technology system. In addition, a cookie already set by Google Analytics can be deleted at any time via the Internet browser or other software programs.
Furthermore, you may object to and prevent the collection of data generated by Google Analytics and relating to the use of this website and the processing of such data by Google. To do this, you must download and install a browser add-on from the https://tools.google.com/dlpage/gaoptout link. This browser add-on tells Google Analytics via JavaScript that no data and information about visits to Internet pages may be transmitted to Google Analytics. The installation of the browser add-on is considered by Google as a contradiction. If your information technology system is later deleted, formatted or reinstalled, you must reinstall the browser add-on to disable Google Analytics. If the browser add-on is uninstalled or deactivated by you or another person within your sphere of control, there is the possibility of reinstalling or reactivating the browser add-on.
Further information and Google’s applicable privacy policy can be found at https://www.google.de/intl/de/policies/privacy/ and http://www.google.com/analytics/terms/de.html Google Analytics is explained under this link https://www.google.com/intl/de_en/analytics / in more detail.
[borlabs_cookie_opt_out tracking=”google-analytics”]
3. We use mautic
On this website we use mautic – an open source tool for marketing automation. This is an analysis and tracking software for the allocation and storage of usage data (e.g. browser used, last visited page, duration of stay). The software uses this information to personalize our marketing activities and better align them with the interests of each individual user. In addition, the software helps us to better evaluate the success of individual marketing measures.
mautic is hosted by us on specially operated servers. The data will not be passed on to third parties. We collect and process data with mautic only to the extent that it is necessary to achieve the business goals of webZunder with you.
The way mautic works is reflected in the way it works:
a. E-mail marketing and campaigns
With so-called e-mail marketing, personalised e-mails are sent to you. These are partly based on the usage behaviour on the website www.webzunder.com, when reading our e-mails and when interacting with the links contained therein. We also send e-mails as part of campaigns.
b. Landingpages
Landing pages are special websites that have been defined as the target of advertising campaigns. They usually contain interaction options, e.g. for downloading whitepapers or checklists and forms for entering information about you.
The software uses various technical procedures to assign individual activities to anonymous profiles or – with prior consent – to the profiles of individual users:
c. Counting pixel
In order to detect whether, for example, an e-mail has been opened, mautic uses so-called tracking pixels. This loads a small graphic from the provider’s server that was previously assigned to an individual user profile.
d. Personalized Weblinks
In order to recognize whether, for example, a user is calling a link from an e-mail, mautic adds a unique identifier to these links, which was previously assigned to an individual user profile.
e. IP address
The IP address currently used by website visitors is transmitted to us each time our website is accessed. Mautic uses these to recognize users of the website.
The data collected in this process are:
- the activity on our site
- Number of page views and duration of visit of the website visitor
- the click path of the respective visitor
- Downloads of files made available via the website
- Visits from Landingpages
- Opening of e-mails from newsletters and campaigns
In the context of a registration on the website or the download of a whitepaper, the provider collects a fee by the use of mautic
- Contact details (such as name, postal or e-mail address, telephone or fax number).
- business contact details (such as your job title, name of my business, business e-mail address, telephone or fax number).
- the IP address of the terminal from which the website is accessed (a sequence of digits identifying your current computer connection on the Internet)
- the IP address of the terminal from which the website is accessed (a sequence of digits identifying your current computer connection on the Internet)
- the IP address of the terminal from which the website is accessed (a sequence of digits identifying your current computer connection on the Internet)
- the IP address of the terminal from which the website is accessed (a sequence of digits identifying your current computer connection on the Internet)
- the IP address of the terminal from which the website is accessed (a sequence of digits identifying your current computer connection on the Internet)
- The released data is clearly recognizable for the user by filling out a form. This indicates which data is required to send the form.
Mautic will not be used until you have expressly given your consent to the use of “first-party cookies” when using our website for the first time. You can revoke this consent at any time by contacting the contact person named above. In this case, all tracking data collected using mautic will be deleted immediately.
4. We use Twitter
In addition to Facebook, we have integrated Twitter components on our website. Twitter is a multilingual, publicly accessible microblogging service on which users can publish and distribute so-called tweets, i.e. short messages limited to 140 characters. These short messages can be accessed by anyone, including people who are not registered on Twitter. The tweets are also displayed to the so-called followers of the respective user. Followers are other Twitter users who follow a user’s tweets. In addition, Twitter enables a broad audience to be addressed via hashtags, links or retweets.
The operating company of Twitter is Twitter, Inc. 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.
Each time you access our website www.webzunder.com with a Twitter component (Twitter button) integrated, the Internet browser on your information technology system is automatically prompted by the respective Twitter component to download a display of the corresponding Twitter component from Twitter. Further information on the Twitter buttons can be found at https://about.twitter.com/de/resources/buttons . As part of this technical process, Twitter receives information about which specific subpage of our website you are visiting. The purpose of integrating the Twitter component is to enable our users to redistribute the content of this site, to make this site known in the digital world and to increase our traffic.
If you are logged in to Twitter at the same time, Twitter recognizes which specific page of our website you are visiting each time you access our website and for the entire duration of your stay on our website. This information is collected by the Twitter component and assigned to your Twitter account by Twitter. If you use one of the Twitter buttons integrated on our website, the data and information transmitted will be assigned to your personal Twitter user account and stored and processed by Twitter.
Twitter always receives information via the Twitter component that you have visited our website when you are logged in to Twitter at the same time as accessing our website; this takes place regardless of whether you click on the Twitter component or not. If you do not agree with such a transmission of your data, you can prevent this transmission by logging out of your Twitter account before accessing our website.
The current Twitter privacy policy can be found at https://twitter.com/privacy?lang=en.
Opt-Out: https://twitter.com/personalization
Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active
5. We use YouTube
In order to offer you a more interesting surfing experience on our website, we have integrated YouTube videos on our pages. YouTube is an Internet video portal that allows video publishers to post video clips and other users to view, rate and comment on them free of charge. YouTube allows the publication of all types of videos, which is why complete film and television programmes as well as music videos, trailers or videos made by users themselves can be accessed via the Internet portal.
The operating company of YouTube is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
Each time you access one of the individual pages of this website, which is operated by us and on which such a YouTube video has been integrated, your Internet browser automatically prompts the respective YouTube component to download a display of the corresponding YouTube component from YouTube. Further information on YouTube can be found at https://www.youtube.com/yt/about/de/ . As part of this technical process, YouTube and Google receive information about which specific subpage of our website is visited by you.
If you are logged in to YouTube at the same time, YouTube recognizes which specific subpage of our website you are visiting by opening a subpage containing a YouTube video. This information is collected by YouTube and Google and assigned to your YouTube account.
YouTube and Google receive information through the YouTube video that you have visited our website whenever you are logged into YouTube at the same time as accessing our website, regardless of whether you click on a YouTube video or not. If you do not wish this information to be transmitted to YouTube and Google in this way, you can prevent this transmission by logging out of your YouTube account before accessing our website.
The data protection regulations published by YouTube, which are available at https://www.google.de/intl/de/policies/privacy/, provide information about the collection, processing and use of personal data by YouTube and Google.
Opt-Out: https://adssettings.google.com/authenticated
Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.
6. We use Google+
We have integrated the Google+ button as a component on this website. Google+, like Facebook or Instagram, is a social network that serves as a meeting place for an online community, typically enabling users to communicate with each other and interact in virtual space. A social network can serve as a platform for the exchange of opinions and experiences or enables the Internet community to provide personal or company-related information. Google+ enables users of the social network to create private profiles, upload photos and network via friendship requests, among other things.
Google+ is operated by Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
Each time you access one of the individual pages of our website on which a Google+ button has been integrated, the Internet browser on your information technology system automatically prompts the respective Google+ button to download a display of the corresponding Google+ button from Google. As part of this technical process, Google obtains information about which specific subpage of our website is visited by you. More detailed information on Google+ is available at https://developers.google.com/+/.
If you are logged in to Google+ at the same time, Google recognizes which specific page of our website you are visiting with each of your visits to our website and for the entire duration of your stay on our website. This information is collected by the Google+ button and assigned to your Google+ account by Google.
If you click on one of the Google+ buttons integrated on our website and thereby make a Google+1 recommendation, Google assigns this information to your personal Google+ user account and stores this personal data. Google will retain the Google+1 recommendation and make it publicly available in accordance with the terms and conditions you accept in this regard. A Google+1 recommendation made by you on this website will subsequently be stored and processed together with other personal data, such as your name, Google+1 accounts used and the photo stored in it, in other Google services, such as the search engine results of the Google search engine, your Google account or elsewhere, such as on websites or in connection with advertisements. Google is also able to link a visit to this website with other personal data stored by Google. Google also records this personal information for the purpose of improving or optimising Google’s various services.
Google receives information from the Google+ button that you have visited our website whenever you are logged in to Google+ at the same time as you visit our website. This happens regardless of whether you click the Google+ button or not.
If a transmission of personal data to Google is not intended by you, you can prevent such a transmission by logging out of your Google+ account before you access our website.
For more information and to review Google’s current privacy policy, please visit https://www.google.de/intl/de/policies/privacy/ Further Google hints on the Google+1 button can be found at https://developers.google.com/+/web/buttons-policy.
7. We use Instagram
We have integrated a link to the Internet service Instagram on our website. Instagram is a platform that allows users to share photos and videos and also share such data on other social networks.
The operating company of Instagram’s services is Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, USA.
Each time you call one of the individual pages of this website, which is operated by us and on which an Instagram component (Insta button) has been integrated, your Internet browser automatically prompts the respective Instagram component to download a representation of the corresponding Instagram component. As part of this technical process, Instagram will know which specific page on our website you are visiting.
If you are logged in to Instagram at the same time, Instagram will recognize which specific page you are visiting each time you visit our website and for the entire duration of your stay. This information is collected by the Instagram component and mapped to your Instagram account by Instagram. If you click on one of the Instagram buttons integrated on our website, the data and information transmitted will be assigned to your personal Instagram user account and stored and processed by Instagram.
Instagram always receives information from the Instagram component that you have visited our website if you are logged in to Instagram at the same time as you opened our website; this occurs regardless of whether you click on the Instagram component or not. If you do not want this information to be shared with Instagram, you can prevent it from being shared by logging out of your Instagram account before accessing our website.
For more information and to review Instagram’s current privacy practices, please visit https://help.instagram.com/155833707900388 and https://www.instagram.com/about/legal/privacy/
Opt-Out: http://instagram.com/about/legal/privacy/.
8. We use LinkedIn
We have also integrated a link on our website to our website at LinkedIn Corporation. LinkedIn is an Internet-based social network that allows users to connect with existing business contacts and make new business contacts.
LinkedIn is operated by LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA. For privacy matters outside the United States, LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland, is responsible.
Each time you visit our website, which is equipped with a LinkedIn component (LinkedIn plug-in), this component causes the browser you are using to download a corresponding display of the LinkedIn component. Further information on the LinkedIn plug-ins can be found at https://developer.linkedin.com/plugins . As part of this technical process, LinkedIn will know which specific page on our website you are visiting.
If you are logged in to LinkedIn at the same time, LinkedIn recognizes which specific page of our website you are visiting with each of your visits to our website during the entire duration of your stay on our website. This information is collected by the LinkedIn component and assigned to your LinkedIn account by LinkedIn. If you use an integrated LinkedIn button on our website, LinkedIn assigns this information to your personal LinkedIn user account and stores this personal data.
LinkedIn receives information from the LinkedIn component that you have visited our website whenever you are logged in to LinkedIn at the same time as you access our website, regardless of whether or not you click on the link. If you do not wish this information to be transmitted to LinkedIn in this way, you can prevent it from being transmitted by logging out of your LinkedIn account before accessing our website.
LinkedIn at https://www.linkedin.com/psettings/guest-controls offers the ability to unsubscribe from email messages, SMS messages, targeted ads, and manage ad settings. LinkedIn also uses partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame who can set cookies. Such cookies can be rejected at https://www.linkedin.com/legal/cookie-policy . LinkedIn’s current privacy policy can be found at https://www.linkedin.com/legal/privacy-policy . LinkedIn’s cookie policy is available at https://www.linkedin.com/legal/cookie-policy
Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active
9. We use Pinterest
We have also integrated a link to our Pinterest website on our website. Pinterest is also a so-called social network. On its platform, Pinterest enables users to publish image collections, individual images and descriptions on virtual pinboards (so-called pinning), which can then be shared (so-called “repinning”) or commented on by other users.
The operating company of Pinterest is Pinterest Inc. 808 Brannan Street, San Francisco, CA 94103, USA.
By each call of one of the single pages of this internet page, which is operated by us and on which a Pinterest component (Pinterest plug-in) has been integrated, your internet browser automatically causes the respective Pinterest component to download a representation of the corresponding Pinterest component from Pinterest. More information about Pinterest can be found at https://pinterest.com/ As part of this technical process, Pinterest receives information about which specific subpage of our website you are visiting.
If you are logged in to Pinterest at the same time, Pinterest recognizes each time you access our website and for the entire duration of your stay on our website, which specific page of our website you are visiting. This information is collected by the Pinterest component and assigned to your Pinterest account by Pinterest. If you click on the Pinterest link displayed on our website, Pinterest will assign this information to your personal Pinterest user account and store this personal data.
Pinterest receives information via the Pinterest component that you have visited our website whenever you are logged in to Pinterest at the time you access our website; this occurs regardless of whether you click on the Pinterest link or not. If you do not wish this information to be transmitted to Pinterest in this way, you can prevent this transmission by logging out of your Pinterest account before accessing our website.
The privacy policy published by Pinterest, which is available at https://about.pinterest.com/privacy-policy, provides information about the collection, processing and use of personal data by Pinterest.
Opt-Out: https://about.pinterest.com/de/privacy-policy.
10. We use Xing
Furthermore, we have integrated a link to Xing on our website. Xing is also a social network that allows registered users to connect with existing business contacts and make new business contacts. The individual users can create a personal profile of themselves at Xing. Companies can, for example, create company profiles or publish job offers on Xing.
Xing’s operating company is XING SE, Dammtorstraße 30, 20354 Hamburg, Germany.
By calling our website on which the Xing button (Xing plug-in) has been integrated, your Internet browser will automatically be prompted by the respective Xing component to download a representation of the corresponding Xing component from Xing. More information about the Xing plug-ins can be found at https://dev.xing.com/plugins . As part of this technical process, Xing receives information about which specific subpage of our website is visited by you.
If you are logged in to Xing at the same time as visiting our website, Xing will recognize which specific subpage of our website you continue to visit. This information is collected by the Xing component and assigned to your Xing account by Xing.
Xing always receives information via the Xing component that you have visited our website when you are logged in to Xing at the same time as accessing our website. This takes place regardless of whether you click on the Xing component or not. If you do not want personal data to be transmitted to Xing, you can prevent such transmission by logging out of your Xing account before accessing our website.
The data protection regulations published by Xing, which can be accessed at https://www.xing.com/privacy, provide information about the collection, processing and use of personal data by Xing. Xing has also published privacy notices for the XING Share button at https://www.xing.com/app/share?op=data_protection.
Opt-Out: https://privacy.xing.com/de/datenschutzerklaerung
11. Use of Google AdWords and DoubleClick
We use Google AdWords to increase our company’s reach. Provider of Google AdWords is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. By using Google AdWords and the tracking tool DoubleClick, we can better understand your behaviour as a user of our website and target our advertising more specifically to specific groups of users. Through the tools it is possible that after visiting our website, we can specifically advertise our products on other pages that also use GoogleAdwords, or in a search with the search engine of Google can be imported. These data are stored by us.
Google works with small files or invisible graphics (so-called web beacons) as part of the advertising network for this purpose. These web beacons are used to input Google’s cookies, which Google uses to assign individual users to specific target groups and then display certain web content – sometimes in real time – that is likely to match the user’s interests.
In this context, in addition to information about the websites visited, the content viewed and clicked on, visiting times and clicked links, information about your operating system and your IP address is also stored. According to Google, the data is processed pseudonymised and assigned only to a specific cookie and not to a specific person.
You can also find out more about this in Google’s privacy policy (https://policies.google.com/technologies/ads) or in Google’s advertising preferences (https://adssettings.google.com/authenticated).
Google itself is certified according to the Privacy Shield Agreement and guarantees compliance with the German and European data protection standards (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
12. We are using Google WebFonts
This page uses so-called web fonts for the uniform display of fonts. Provider of this service is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. When you open the page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.
For this purpose, the browser you are using must connect to Google’s servers. This gives Google knowledge that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a uniform and appealing presentation of our online offerings. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.
If your browser does not support web fonts, a standard font will be used by your computer.
More information about Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://www.google.com/policies/privacy/.
IV. Our payment methods
1. We use PAYMILL as payment service provider
We have integrated the PAYMILL payment option on our website. PAYMILL is an online payment service provider that enables purchase on account or flexible payment by instalments using different payment methods. PAYMILL also offers other services such as buyer protection and identity and credit checks.
The operating company of PAYMILL is PAYMILL GmbH, St.-Cajetan-Straße 43, 81669 Munich.
By concluding a contract with webZunder, you consent to the transfer of your personal data to PAYMILL, which is necessary for the processing of invoice or instalment payments.
The personal data transmitted to PAYMILL is usually first name, surname, address, email address, IP address, telephone number, mobile phone number as well as other data necessary for processing the payment process, including personal data relating to the respective order.
In particular, there may be mutual exchange of payment information such as bank details, card number, expiry date and CVC code, number of articles, article number, data on goods and services, prices and tax charges, information on previous purchasing behaviour or other information on the financial situation of the person concerned.
The transmission of data is intended in particular for identity verification, payment administration and fraud prevention purposes. We will transfer personal data to PAYMILL in particular if there is a justified interest in the transfer.
You have the opportunity to revoke your consent to PAYMILL’s handling of personal data at any time. A revocation does not affect personal data which must be processed, used or transmitted for (contractual) payment processing.
PAYMILL’s current data protection regulations can be found at https://www.paymill.com/de/datenschutz/ .
2 We use PayPal as payment method
We have also integrated the payment option of PayPal. PayPal is an online payment service provider. Payments are processed via so-called PayPal accounts, which are virtual private or business accounts. In addition, PayPal offers the option of processing virtual payments via credit cards if a user does not have a PayPal account. A PayPal account is managed via an e-mail address, which is why there is no classic account number. PayPal makes it possible to trigger online payments to third parties or to receive payments. PayPal also acts as a trustee and offers buyer protection services.
The European operating company of PayPal is PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg.
If you select “PayPal” as payment option during your order process in our online shop, your data will automatically be transmitted to PayPal. By selecting this payment option, you consent to the transfer of personal data required for payment processing.
The personal data transmitted to PayPal is usually first name, surname, address, email address, IP address, telephone number, mobile phone number or other data necessary for payment processing. Personal data related to the respective order are also necessary for the processing of the purchase contract.
The purpose of data transmission is to process payments and prevent fraud. The person responsible for the processing will transfer personal data to PayPal in particular if there is a justified interest in the transfer. The personal data exchanged between PayPal and us may be transferred by PayPal to credit agencies. The purpose of this transmission is to check identity and creditworthiness.
PayPal may share the personal information with affiliated companies and service providers or subcontractors to the extent necessary to fulfill its contractual obligations or to process the information on behalf of PayPal.
You have the possibility to revoke your consent to the handling of personal data at PayPal at any time. A revocation does not affect personal data which must be processed, used or transmitted for (contractual) payment processing.
PayPal’s current privacy policy can be found at https://www.paypal.com/de/webapps/mpp/ua/privacy-full .
3 We use FastBill as our payment service provider
webZunder uses the online accounting software FastBill for the storage of payment data as well as for the ongoing administration of contracts and the creation of invoices.
FastBill is an offer of FastBill GmbH, Wildunger Str. 6, 60487 Frankfurt am Main.
FastBill’s current data protection regulations can be found at https://www.fastbill.com/datenschutz .
V. Legal principles of processing
1. Legal permission for data processing
The legal basis for the above mentioned processing operations is the twentyZen GmbH of Art. 6 I lit. a DS-GVO, where we obtain your consent for a specific processing purpose. If the processing of personal data is necessary, for example, due to the fulfilment of a contract between you and us, this processing is justified by Art. 6 I lit. b DS-GVO. The same applies to such processing operations that are necessary for the implementation of pre-contractual measures, such as in cases of inquiries about our products or services.
If our company is subject to a legal obligation requiring the processing of personal data, such as for the fulfilment of tax obligations, the processing is based on Art. 6 I lit. c DS-GVO.
It may also happen that the processing of personal data becomes necessary to protect your vital interests or the interests of another natural person.
Ultimately, processing operations could be based on Art. 6 I lit. f DS-GVO. Processing operations that are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary to safeguard a legitimate interest of our company or a third party, provided that your interests, fundamental rights and fundamental freedoms do not prevail. Such processing operations are permitted to us in particular because they have been specifically mentioned by the European legislator. This would be the case, for example, if you were a customer of our company. (Recital 47, second sentence, DS Block Exemption Regulation).
2. Protection of minors
Consent to the processing of personal data can only be given by a person of full age. For information society services, the consent of a child is permissible from the age of sixteen in accordance with Art. 8 DSGVO.
3. Our legitimate interest
If the processing of personal data is based on Article 6 I lit. f DS-GVO, our legitimate interest is the conduct of our business for the benefit of all our employees and shareholders.
4. Duration of storage
The criterion for the duration of the storage of personal data is the respective legal retention period. After expiry of this period, the corresponding data will be routinely deleted unless they are no longer required for the fulfilment or initiation of the contract.
5. Obligation to provide the personal data
We will inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may result from contractual provisions (e.g. information on the contractual partner). In addition, it may be necessary for a contract to be concluded that you provide us with personal data, which must subsequently be processed by us. For example, you are obliged to provide us with personal data when our company concludes a contract with you. Failure to provide personal data would mean that the contract could not be concluded.
Before providing your personal information, you should contact one of our employees. Our employee will inform you on a case-by-case basis as to whether the provision of your personal data is required by law or contract or is necessary for the conclusion of a contract, whether there is an obligation to provide the personal data and what consequences the non-availability of the personal data would have.
6. Do we use profiling?
Finally, we would like to inform you that we do not use automatic decision making or profiling.
7. Supervisory Authority and Complaint
If you wish to contact a public body regarding your queries regarding data protection, you can address your concerns and inquiries to the Saxon data protection officer:
Saxony data protection commissioner
P.O. Box 12 00 16
01001 Dresden
Phone: 0351 / 493 – 5401
Fax: 0351/493 – 5490
Email: saechsdsb@slt.sachsen.de
Website: www.datenschutz.sachsen.de
8. Your contact person in our company
Should you have any questions regarding data protection and the handling of your data on our website and our company, please feel free to contact our contact person at any time:
twentyZen GmbH
Dirk Spannaus
Ammonstraße 35
01067 Dresden, Germany
Phone: 0351 / 79 99 – 50 10
Email: contact@twentyZen.com
Website: www.twentyzen.com
This privacy policy has been prepared by:
Bastanier & Schmelzer
Rechtsanwälte Partnerschaft mbB