Privacy statement

Introduction

With the following privacy policy, we would like to explain to you which types of your personal data (hereinafter also referred to as “data”) we process for which purposes and to what extent as part of providing our application.

The terms used are not gender-specific.

As of September 15, 2023

Table of contents

Responsible person

Marco Fausel Next Level Concept GmbH Florian-Geyer-Str. 63 97076 Würzburg Germany



Authorized representatives: Marco Fausel.

Email address: info@nlc21.com

Telephone: +49 931 2707762.

Impressum:   http://nlc21.com/impressum.html

Overview of processing

The following overview summarizes the types of data processed and the purposes of their processing and refers to the persons concerned.

Types of data processed

  • Inventory data (e.g. names, addresses).
  • Content data (e.g. entries in online forms).
  • Contact details (e.g. e-mail, telephone numbers).
  • Meta/communication data (e.g. device information, IP addresses).
  • Usage data (e.g. websites visited, interest in content, access times).
  • Contract data (e.g. subject matter, duration, customer category).
  • Payment details (e.g. bank details, invoices, payment history).
  • ACCESS AND TRANSFER OF DATA FROM YOUR ADDRESS BOOK

Categories of affected persons

  • employees (e.g. employees, applicants, former employees).
  • business and contractual partners.
  • interested parties.
  • communication partner.
  • customers.
  • Users (e.g. website visitors, users of online services).

Purposes of processing

  • Affiliate tracking.
  • Provision of our online offering and user friendliness.
  • Office and organizational procedures.
  • direct marketing (e.g. by e-mail or post).
  • marketing.
  • Contact requests and communication.
  • Profiles with user-related information (creating user profiles).
  • Reach measurement (e.g. access statistics, recognition of returning visitors).
  • safety measures.
  • Provision of contractual services and customer service.
  • Managing and responding to inquiries.

Relevant legal bases

The following is an overview of the legal bases of the GDPR on the basis of which we process personal data. Please note that, in addition to the provisions of the GDPR, national data protection requirements may apply in your or our country of residence or residence. Should more specific legal bases also apply in individual cases, we will inform you of these in
the privacy policy.
  • Consent (Article 6 (1) (a) GDPR)   - The data subject has given consent to the processing of personal data concerning him or her for a specific purpose or several specific purposes.
  • Fulfilment of a contract and pre-contractual inquiries (Article 6 (1) (b) GDPR)   - Processing is necessary for the performance of a contract to which the data subject is a party or to carry out pre-contractual measures, which are carried out at the request of the data subject.
  • Legal obligation (Art. 6 para. 1 sentence 1 lit. c. GDPR)   - Processing is necessary to fulfill a legal obligation to which the controller is subject.
  • Legitimate interests (Article 6 (1) (f) GDPR)   - Processing is necessary to protect the legitimate interests of the person responsible or a third party, unless the interests or fundamental rights and freedoms of the data subject, which require the protection of personal data, prevail.

National data protection regulations in Germany: In addition to the data protection regulations of the General Data Protection Regulation, there are national data protection regulations in Germany. This includes in particular the Act on Protection against Misuse of Personal Data in Data Processing (Federal Data Protection Act — BDSG). In particular, the BDSG contains special regulations on the right to information, the right to delete, the right to object, the processing of special categories of personal data, processing for other purposes and transmission and automated decision-making in individual cases, including profiling. It also regulates data processing for employment purposes (Section 26 BDSG), in particular with regard to the establishment, implementation or termination of employment relationships and the consent of employees. State data protection laws of the individual federal states may also apply.

Safety measures

In accordance with legal requirements, taking into account the state of the art, implementation costs and the type, scope, circumstances and purposes of processing as well as the different chances of occurrence and the extent of the threat to the rights and freedoms of natural persons, we take appropriate technical and organizational measures to ensure a level of protection appropriate to the risk.

These measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as the access, input, transfer, availability and separation of such data. We have also set up procedures that ensure the exercise of data subject rights, the deletion of data and responses to data threats. We also take the protection of personal data into account when developing and selecting hardware, software and procedures in accordance with the principle of data protection, through technology design and through privacy-friendly

default settings.

Shortening the IP address: If IP addresses are processed by us or by the service providers and technologies used and the processing of a full IP address is not required, the IP address is shortened (also known as “IP masking”). In this case, the last two digits or the last part of the IP address are removed after one point or replaced by placeholders. The abbreviation of the IP address is intended to prevent or make it significantly more difficult to identify a person based on their IP address.

SSL encryption (https): We use SSL encryption to protect your data transmitted via our online service. You can recognize such encrypted connections by the prefix https://in the address bar of your browser

.

Transfer of personal data

As part of our processing of personal data, it happens that the data is transmitted to other bodies, companies, legally independent organizational units or persons or is disclosed to them. Recipients of this data may include, for example, service providers commissioned with IT tasks or providers of services and content that are integrated into a website. In this case, we comply with legal requirements and, in particular, conclude appropriate contracts or agreements with the recipients of your data that serve to protect your data

.

Data transfer within the organization: We may transfer personal information to other entities within our organization or give them access to this data. If this transfer is for administrative purposes, the transfer of the data is based on our legitimate business and business interests or is carried out insofar as it is necessary to fulfill our contract-related obligations or if the consent of the person concerned or legal permission is

available.

Deletion of data

The data processed by us will be deleted in accordance with legal requirements as soon as their consent for processing is revoked or other permits cease to apply (e.g. if the purpose of processing this data has ceased to apply or they are not required for the purpose).

Unless the data is deleted because it is required for other and legally permitted purposes, its processing will be limited to these purposes. This means that the data is blocked and not processed for other purposes. This applies, for example, to data that must be stored for commercial or tax reasons or whose storage is necessary to assert, exercise or defend legal claims or to protect the rights of another natural or

legal person.

As part of our privacy policy, we can provide users with further information about the deletion and storage of data that applies specifically to the respective processing processes.

Use of cookies

Cookies are text files that contain data from visited websites or domains and are stored by a browser on the user's computer. A cookie is primarily used to store information about a user during or after a visit to an online service. The stored information can include, for example, the language settings on a website, the login status, a shopping cart or the place where a video was watched. The term cookies also includes other technologies that perform the same functions as cookies (e.g. when user information is stored using pseudonymous online identifiers, also known as

“user IDs”)

The following types of cookies and functions are differentiated:

  • Temporary cookies (also: session or session cookies):   Temporary cookies are deleted at the latest after a user has left an online service and closed their browser.
  • Persistent cookies:   Persistent cookies remain stored even after you close your browser. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. The interests of users, which are used to measure reach or for marketing purposes, can also be stored in such a cookie
  • .
  • First-party cookies:   First-party cookies are set by ourselves.
  • Third party cookies (also: third-party cookies): Third party cookies are mainly used by advertisers (so-called third parties) to process user information.
  • Necessary (also: essential or absolutely necessary) cookies:   Cookies may, on the one hand, be absolutely necessary for the operation of a website (e.g. to save logins or other user inputs or for security reasons).
  • Statistical, marketing and personalization cookies: In addition, cookies are also generally used to measure reach and when a user's interests or behavior (e.g. viewing certain content, using functions, etc.) are stored in a user profile on individual websites. Such profiles are used, for example, to display content to users that corresponds to their potential interests. This process is also known as “tracking,” i.e. tracking the potential interests of users. Insofar as we use cookies or “tracking” technologies, we will inform you separately in our privacy policy or when obtaining consent
  • .

Information on legal bases:   On which legal basis we process your personal data using cookies depends on whether we ask you for your consent. If this is the case and you agree to the use of cookies, the legal basis for processing your data is the declared consent. Otherwise, the data processed using cookies will be processed on the basis of our legitimate interests (e.g. in operating and improving our online service) or if the use of cookies is necessary to fulfill our contractual obligations

.

Storage period:   Unless we provide you with explicit information about the storage period of permanent cookies (e.g. as part of a so-called cookie opt-in), please assume that the storage period can be up to two years.

General information on withdrawal and objection (opt-out):   Depending on whether processing is based on consent or legal permission, you have the option at any time to withdraw your consent or object to the processing of your data using cookie technologies (collectively referred to as “opt-out”). You can first declare your objection using your browser settings, e.g. by deactivating the use of cookies (which may also restrict the functionality of our online service). An objection to the use of cookies for online marketing purposes can also be explained using a variety of services, in particular in the case of tracking, via the websites   https://optout.aboutads.info   and   https://www.youronlinechoices.com/  . You can also receive further opt-out notices as part of the information about the service providers and cookies used

.
  • Types of data processed:   Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
  • Affected persons:   Users (e.g. website visitors, users of online services).
  • Legal bases:   Consent (Article 6 (1) (a) GDPR), Legitimate Interests (Article 6 (1) (f) GDPR).

Business services

We process data from our contractual and business partners, e.g. customers and prospects (collectively referred to as “contractual partners”) within the framework of contractual and comparable legal relationships and associated measures and as part of communication with the contractual partners (or pre-contractual), e.g. to answer inquiries.

We process this data to fulfill our contractual obligations, to secure our rights and for the purposes of administrative tasks associated with this information and business organization. Within the scope of applicable law, we only share the data of the contractual partners with third parties insofar as this is necessary for the above-mentioned purposes or to fulfill legal obligations or is done with the consent of the persons concerned (e.g. to participating telecommunications, transport and other auxiliary services as well as subcontractors, banks, tax and legal advisors, payment service providers or tax authorities). The contractual partners will be informed about other forms of processing, e.g. for marketing purposes, as part of this

privacy policy.

We inform the contractual partners which data is required for the above purposes before or as part of the data collection, e.g. in online forms, through special identification (e.g. colors) or symbols (e.g. asterisks, etc.), or in person.

We delete the data after expiry of legal warranty and comparable obligations, i.e. in principle after 4 years, unless the data is stored in a customer account, e.g. as long as it must be stored for archiving reasons for legal reasons (e.g. for tax purposes, usually 10 years). We delete data that has been disclosed to us by the contractual partner as part of an order in accordance with the specifications of the order, in principle after the end of the order

.

Insofar as we use third-party providers or platforms to provide our services, the terms and conditions and data protection notices of the respective third-party providers or platforms apply to the relationship between users and providers.

Customer account: Contractual partners can create an account within our online offer (e.g. customer or user account, “customer account” for short). If it is necessary to register a customer account, contractual partners will be informed of this as well as the information required for registration. Customer accounts are not public and cannot be indexed by search engines. As part of registration and subsequent registrations and uses of the customer account, we store customers' IP addresses and access times in order to be able to prove registration and prevent possible misuse of the customer account.

If customers have canceled their customer account, the data relating to the customer account will be deleted, subject to the fact that storage is required for legal reasons. It is the responsibility of the customer to secure their data when the customer account is terminated

.
  • Types of data processed:   Inventory data (e.g. names, addresses), payment data (e.g. bank details, invoices, payment history), contact details (e.g. e-mail, telephone numbers), contract data (e.g. subject matter of contract, duration, customer category), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
  • Affected persons:   Interested parties, business and contractual partners, customers.
  • Purposes of processing:   Provision of contractual services and customer service, contact requests and communication, office and organizational procedures, administration and response to inquiries, security measures.
  • Legal bases:   Fulfilment of contract and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b. GDPR), legal obligation (Art. 6 para. 1 sentence 1 lit. c. GDPR), legitimate interests (Art. 6 para. 1 sentence 1 lit. f. GDPR).

Provision of the online offer and web hosting

In order to be able to provide our online service securely and efficiently, we use the services of one or more web hosting providers, from whose servers (or servers managed by them) the online offer can be accessed. For these purposes, we may make use of infrastructure and platform services, computing capacity, storage space and database services, as well as security and technical maintenance services.

The data processed as part of providing the hosting service may include all information relating to users of our online service that is generated in the course of use and communication. This usually includes the IP address, which is necessary to be able to deliver the content of online offers to browsers, and all entries made within our online offer or from websites.

Email delivery and hosting: The web hosting services we use also include sending, receiving and storing emails. For these purposes, the addresses of the recipients and senders as well as other information regarding e-mail delivery (e.g. the providers involved) and the content of the respective emails are processed. The aforementioned data may also be processed for the purpose of detecting SPAM. Please note that e-mails on the Internet are generally not sent in encrypted form. As a rule, emails are encrypted during transport, but (unless a so-called end-to-end encryption method is used) not on the servers from which they are sent and received. We can therefore assume no responsibility for the transmission path of the emails between the sender and the receipt on our server.

Collection of access data and log files: We ourselves (or our web hosting provider) collect data about every access to the server (so-called server log files). The server log files may include the address and name of the websites and files accessed, date and time of retrieval, amounts of data transferred, notification of successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page) and, as a rule, IP addresses and the requesting provider.

The server log files can be used, on the one hand, for security purposes, e.g. to avoid overloading the servers (in particular in the case of abusive attacks, so-called DDoS attacks) and, on the other hand, to ensure the load of the servers and their stability.

  • Types of data processed:   Content data (e.g. entries in online forms), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
  • Affected persons:   Users (e.g. website visitors, users of online services).
  • Purposes of processing:   Provision of our online offering and user-friendliness, provision of contractual services and customer service.
  • Legal bases:   Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. GDPR).
    Services and service providers used:

Services and service providers used:

  • 1 & 1 IONOS:   hosting platform for e-commerce/websites; service provider: 1 & 1 IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany; website:   https://www.ionos.de; privacy policy:   https://www.ionos.de/terms-gtc/terms-privacy.

Special notes on applications (apps)

We process the data of users of our application insofar as this is necessary in order to be able to provide users with the application and its functionalities, monitor its security and further develop it. We may also contact users in compliance with legal requirements, provided that communication is required for the purposes of administration or use of the application. In addition, we refer to the data protection information in this privacy policy with regard to the processing of user data.

Legal bases:   The processing of data required to provide the functionalities of the application serves to fulfill contractual obligations. This also applies if the provision of the functions requires user authorization (e.g. approval of device functions). If the processing of data is not necessary to provide the functionalities of the application, but is for the security of the application or our business interests (e.g. collection of data for the purpose of optimizing the application or for security purposes), it is carried out on the basis of our legitimate interests. If users are expressly asked to consent to the processing of their data, the data covered by the consent is processed on the basis of their consent.

Commercial use: We process the data of users of our application, registered and any test users (hereinafter uniformly referred to as “users”) in order to be able to provide them with our contractual services and on the basis of legitimate interests to ensure the security of our application and to be able to further develop it. The required information is marked as such in the context of the conclusion of use, order or comparable contract and may include the information required to provide services and any billing as well as contact information to be able to hold any consultations.

Storage of a pseudonymous identifier: We use a pseudonymous identifier so that we can provide the application and ensure its functionality. The identification is a mathematical value (i.e. no clear data, such as names, is used) that is assigned to a device and/or the installation of the application installed on it. This identifier is generated when this application is installed, remains stored between the start of the application and its updates and is deleted when users remove the application from the device.

Device permissions for access to functions and data: The use of our application or its functionalities may require user permissions to access certain functions of the devices used or to the data stored on the devices or accessible using the devices. By default, these permissions must be granted by users and can be revoked at any time in the settings of the respective devices. The exact process for controlling app permissions may depend on the user's device and software. Users can contact us if there is a need for clarification. We would like to point out that the refusal or revocation of the respective authorizations may affect the functionality of our application.

  • Types of data processed:   Inventory data (e.g. names, addresses), meta/communication data (e.g. device information, IP addresses), payment data (e.g. bank details, invoices, payment history), contract data (e.g. subject matter, duration, customer category).
  • Affected persons:   Users (e.g. website visitors, users of online services).
  • Purposes of processing:   Provision of contractual services and customer service.
  • Legal bases:   Consent (Art. 6 para. 1 sentence a. GDPR), contract fulfilment and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b. GDPR), legitimate interests (Art. 6 para. 1 sentence 1 lit. f. GDPR).

 

ACCESS AND TRANSFER OF DATA FROM YOUR ADDRESS BOOK

Upon your explicit consent, our app provides the option to send all or selected contacts from your address book to our servers. The data you share may include names, phone numbers, email addresses, and other contact details. We assure you that we collect only the information necessary to provide the sync contacts feature for the namelist in our app.
 

USE OF DATA

Your contact information is transmitted and stored on our servers in a double-encrypted form. We only use this data to give you access to your contacts within the namelist. Here, you can edit, tag, sort, and create a history of notes or reminders for your contacts. Your data remains available for your access, editing, or deletion at any time, upon entering your password.
 
 
Who Has Access to Your Address Book Data
 
Your Address Book data is securely stored and encrypted on our server. Neither we nor any third party can access your uploaded data without the password that you initially selected during account creation. This ensures that your data remains private and entirely under your control.

TRANSFER OF DATA

We guarantee that your contact data is stored only on our servers and is not shared with any third parties. Access to this data is solely yours and requires your password.
 

SECURITY

Your personal information's protection is our priority. We utilize various security measures, including double encryption during transmission and storage, to prevent loss, misuse, and alteration of your information.
 

USER ACCOUNT

To export your contacts, a user account on NLC21.com or CM21.com is required. The creation and use of such an account are subject to the privacy policy of the respective website.
 
 

Data Storage Duration and Deletion Process

Your Address Book data is retained on our servers while your account remains active, with a login required at least once every three months. If there is no activity for more than three months, your Address Book data will be automatically deleted. Please note that we do not maintain backups, thus a restoration of the deleted data is not possible.

If you wish to manually delete data, you can do so by following these steps:

  1. Log into the application
  2. Navigate to 'namelist'
  3. Select the contacts you want to delete
  4. Click on the bin icon to confirm the deletion

Alternatively, you can also request the deletion of your data by sending us an email at service@nlc21.com.

Upon the deletion of your account, please note that all your updated data will be purged from our systems within 24 hours.

YOUR RIGHTS

 
You have the right to request information about the data we hold about you, to correct or delete such data, to restrict or object to the processing of your data, and the right to data portability.

Obtaining applications via app stores

Our application is purchased via special online platforms operated by other service providers (so-called “app stores”). In this context, in addition to our data protection notices, the data protection notices of the respective app stores apply. This applies in particular with regard to the methods used on the platforms for reach measurement and interest-based marketing, as well as any obligation top Pay.

  • Types of data processed:   Inventory data (e.g. names, addresses), payment data (e.g. bank details, invoices, payment history), contact details (e.g. e-mail, telephone numbers), contract data (e.g. subject matter of contract, duration, customer category), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
  • Affected people:   customers.
  • Purposes of processing:   Provision of contractual services and customer service.
  • Legal bases:   Fulfilment of contract and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b. GDPR), legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR).

Services and service providers used:

Registration, login and user account

Users can create a user account. As part of registration, users are provided with the required mandatory information and processed for the purpose of providing the user account on the basis of contractual obligations. The processed data includes in particular login information (username, password and

an e-mail address).

When using our registration and login functions and using the user account, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests as well as those of the users in protecting against misuse and other unauthorized use. In principle, this data will not be passed on to third parties, unless it is necessary to pursue our claims or there is a legal obligation to do so.

Users can be informed by e-mail about processes that are relevant to their user account, such as technical changes.

Registration with pseudonyms: Users may use pseudonyms as user names instead of real names.

Deletion of data after termination: If users have terminated their user account, their data with regard to the user account will be deleted, subject to legal permission, obligation or consent of the users.

It is up to users to save their data before the end of the contract if they cancel. We are entitled to irretrievably delete all user data stored during the contract period

.
  • Types of data processed:   Inventory data (e.g. names, addresses), contact details (e.g. e-mail, telephone numbers), content data (e.g. entries in online forms), meta/communication data (e.g. device information, IP addresses).
  • Affected persons:   Users (e.g. website visitors, users of online services).
  • Purposes of processing:   Provision of contractual services and customer service, security measures, administration and response to inquiries.
  • Legal bases:   Fulfilment of contract and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b. GDPR), legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR).

Contact and request management

When contacting us (e.g. via contact form, e-mail, telephone or via social media) and within the framework of existing user and business relationships, the details of the inquiring persons will be processed as far as this is necessary to answer the contact requests and any measures requested.

We answer contact requests and manage contact and enquiry data as part of contractual or pre-contractual relationships to fulfill our contractual obligations or to answer (pre) contractual inquiries and otherwise on the basis of our legitimate interests in answering inquiries and maintaining user and business relationships.

  • Types of data processed:   Inventory data (e.g. names, addresses), contact details (e.g. e-mail, telephone numbers), content data (e.g. entries in online forms).
  • Affected persons:   Communication partners.
  • Purposes of processing:   Contact requests and communication.
  • Legal bases:   Fulfilment of contract and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b. GDPR), legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR).

Kommunikation via Messenger

We use messengers for communication purposes and therefore ask you to follow the instructions below on the functionality of messengers, encryption, the use of communication metadata and your options to object.

You can also contact us by alternative means, e.g. by phone or email. Please use the contact options provided to you or the contact options provided within our online offer.

In the case of end-to-end encryption of content (i.e. the content of your message and attachments), we would like to point out that the communication content (i.e. the content of the message and attached images) is encrypted from end to end. This means that the content of the messages cannot be viewed, not even by the messenger providers themselves. You should always use the latest version of Messenger with encryption enabled to ensure that message content is encrypted.

However, we would also like to point out to our communication partners that although the messenger providers do not view the content, they can find out that and when communication partners communicate with us, as well as technical information about the device used by the communication partners and, depending on the settings of their device, location information (so-called metadata) is processed.

Information on legal bases:   If we ask communication partners for permission before communicating with them via Messenger, the legal basis for our processing of their data is their consent. In addition, unless we ask for your consent and you, for example, contact us of your own accord, we use Messenger in relation to our contractual partners and as part of contract initiation as a contractual measure and, in the case of other interested parties and communication partners, on the basis of our legitimate interests in fast and efficient communication and meeting the needs of our communication partners for communication via Messenger. We would also like to point out that we will not send the contact details provided to us to Messenger for the first time without your consent.

 

Revocation, objection and deletion:   You can revoke your consent at any time and object to communication with us via Messenger at any time. In the case of communication via Messenger, we delete the messages in accordance with our general deletion guidelines (i.e., for example, as described above, after the end of contractual relationships, in the context of archiving requirements, etc.) and otherwise as soon as we can assume that we have answered any information from the communication partners, if no reference to a previous conversation is to be expected and the deletion is not subject to any legal storage obligations.

Subject to referring to other channels of communication:   Finally, we would like to point out that for security reasons, we reserve the right not to answer inquiries via Messenger. This is the case if, for example, internal contracts require special secrecy or an answer via Messenger does not meet the formal requirements. In such cases, we will refer you to more appropriate communication channels.

  • Types of data processed:   Contact details (e.g. e-mail, telephone numbers), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
  • Affected persons:   Communication partners.
  • Purposes of processing:   Contact requests and communication, direct marketing (e.g. by e-mail or post).
  • Legal bases:   Consent (Article 6 (1) (a) GDPR), Legitimate Interests (Article 6 (1) (f) GDPR).

Services and service providers used:

push messages

With users' consent, we can send users so-called “push notifications.” These are messages that are displayed on users' screens, devices or browsers, even if our online service is not currently being actively used

.

In order to register for push messages, users must confirm their browser or device's request to receive push messages. This approval process is documented and saved. Storage is necessary to identify whether users have agreed to receive push messages and to be able to prove their consent. For these purposes, a pseudonymous browser identifier (so-called “push token”) or the device ID of a device is stored

. On

the one hand, push messages may be required to fulfill contractual obligations (e.g. relevant technical and organizational information for the use of our online service) and are otherwise, unless specifically mentioned below, sent on the basis of user consent. Users can change the receipt of push messages at any time using the notification settings of their respective browsers or devices.

Push messages with promotional content: The push notifications we send may contain advertising information. The promotional push messages are processed based on user consent. If, as part of a consent to receive promotional push messages, their content is specifically described, the descriptions are decisive for users' consent. In addition, our newsletters contain information about our services and us.

  • Purposes of processing:   Provision of contractual services and customer service, direct marketing (e.g. by e-mail or post).
  • Legal bases:   Consent (Art. 6 (1) (a) GDPR), contract fulfilment and pre-contractual inquiries (Article 6 (1) (b) GDPR).

Services and service providers used: