Privacy Policy

Privacy Policy

We are very delighted that you have shown interest in our enterprise.

Data protection is of a particularly high priority for the management of

the Smith and Johnson Consulting LLC. The use of the Internet pages of

the Smith and Johnson Consulting LLC is possible without any indication

of personal data; however, if a data subject wants to use special

enterprise services via our website, processing of personal data could

become necessary. If the processing of personal data is necessary and

there is no statutory basis for such processing, we generally obtain

consent from the data subject.

 

The processing of personal data, such as the name, address, e-mail

address, or telephone number of a data subject shall always be in line

with the General Data Protection Regulation (GDPR), and in accordance

with the country-specific data protection regulations applicable to the

Smith and Johnson Consulting LLC. By means of this data protection

declaration, our enterprise would like to inform the general public of

the nature, scope, and purpose of the personal data we collect, use and

process. Furthermore, data subjects are informed, by means of this data

protection declaration, of the rights to which they are entitled.

 

As the controller, the Smith and Johnson Consulting LLC has implemented

numerous technical and organizational measures to ensure the most

complete protection of personal data processed through this website.

However, Internet-based data transmissions may in principle have

security gaps, so absolute protection may not be guaranteed. For this

reason, every data subject is free to transfer personal data to us via

alternative means, e.g. by telephone.

 

  1. Definitions

The data protection declaration of the Smith and Johnson Consulting LLC

is based on the terms used by the European legislator for the adoption

of the General Data Protection Regulation (GDPR). Our data protection

declaration should be legible and understandable for the general public,

as well as our customers and business partners. To ensure this, we would

like to first explain the terminology used.

 

In this data protection declaration, we use, inter alia, the following

terms:

 

  1. a) Personal data

Personal data means any information relating to an identified or

identifiable natural person (“data subject”). An identifiable natural

person is one who can be identified, directly or indirectly, in

particular by reference to an identifier such as a name, an

identification number, location data, an online identifier or to one or

more factors specific to the physical, physiological, genetic, mental,

economic, cultural or social identity of that natural person.

 

  1. b) Data subject

Data subject is any identified or identifiable natural person, whose

personal data is processed by the controller responsible for the

processing.

 

  1. c) Processing

Processing is any operation or set of operations which is performed on

personal data or on sets of personal data, whether or not by automated

means, such as collection, recording, organisation, structuring,

storage, adaptation or alteration, retrieval, consultation, use,

disclosure by transmission, dissemination or otherwise making available,

alignment or combination, restriction, erasure or destruction.

 

  1. d) Restriction of processing

Restriction of processing is the marking of stored personal data with

the aim of limiting their processing in the future.

 

  1. e) Profiling

Profiling means any form of automated processing of personal data

consisting of the use of personal data to evaluate certain personal

aspects relating to a natural person, in particular to analyse or

predict aspects concerning that natural person’s performance at work,

economic situation, health, personal preferences, interests,

reliability, behaviour, location or movements.

 

  1. f) Pseudonymisation

Pseudonymisation is the processing of personal data in such a manner

that the personal data can no longer be attributed to a specific data

subject without the use of additional information, provided that such

additional information is kept separately and is subject to technical

and organisational measures to ensure that the personal data are not

attributed to an identified or identifiable natural person.

 

  1. g) Controller or controller responsible for the processing

Controller or controller responsible for the processing is the natural

or legal person, public authority, agency or other body which, alone or

jointly with others, determines the purposes and means of the processing

of personal data; where the purposes and means of such processing are

determined by Union or Member State law, the controller or the specific

criteria for its nomination may be provided for by Union or Member State

law.

 

  1. h) Processor

Processor is a natural or legal person, public authority, agency or

other body which processes personal data on behalf of the controller.

 

  1. i) Recipient

Recipient is a natural or legal person, public authority, agency or

another body, to which the personal data are disclosed, whether a third

party or not. However, public authorities which may receive personal

data in the framework of a particular inquiry in accordance with Union

or Member State law shall not be regarded as recipients; the processing

of those data by those public authorities shall be in compliance with

the applicable data protection rules according to the purposes of the

processing.

 

  1. j) Third party

Third party is a natural or legal person, public authority, agency or

body other than the data subject, controller, processor and persons who,

under the direct authority of the controller or processor, are

authorised to process personal data.

 

  1. k) Consent

Consent of the data subject is any freely given, specific, informed and

unambiguous indication of the data subject’s wishes by which he or she,

by a statement or by a clear affirmative action, signifies agreement to

the processing of personal data relating to him or her.

 

  1. Name and Address of the controller

Controller for the purposes of the General Data Protection Regulation

(GDPR), other data protection laws applicable in Member states of the

European Union and other provisions related to data protection is:

 

Smith and Johnson Consulting LLC

113 Barksdale Professional Center

19711-3258 NEWARK

USA

Phone: +1 888 9619 707

Email: privacy@sj-consulting.agency

Website: https://www.sj-consulting.agency

 

  1. Name and Address of the Data Protection Officer

The Data Protection Officer of the controller is:

 

Anthony Johnson

Smith and Johnson Consulting LLC

113 Barksdale Professional Center

19711-3258 NEWARK

 

USA

Phone: +1 888 9619 707

Email: privacy@sj-consulting.agency

Website: https://www.sj-consulting.agency

 

Any data subject may, at any time, contact our Data Protection Officer

directly with all questions and suggestions concerning data protection.

 

  1. Cookies

The Internet pages of the Smith and Johnson Consulting LLC use cookies.

Cookies are text files that are stored in a computer system via an

Internet browser.

 

Many Internet sites and servers use cookies. Many cookies contain a

so-called cookie ID. A cookie ID is a unique identifier of the cookie.

It consists of a character string through which Internet pages and

servers can be assigned to the specific Internet browser in which the

cookie was stored. This allows visited Internet sites and servers to

differentiate the individual browser of the dats subject from other

Internet browsers that contain other cookies. A specific Internet

browser can be recognized and identified using the unique cookie ID.

 

Through the use of cookies, the Smith and Johnson Consulting LLC can

provide the users of this website with more user-friendly services that

would not be possible without the cookie setting.

 

By means of a cookie, the information and offers on our website can be

optimized with the user in mind. Cookies allow us, as previously

mentioned, to recognize our website users. The purpose of this

recognition is to make it easier for users to utilize our website. The

website user that uses cookies, e.g. does not have to enter access data

each time the website is accessed, because this is taken over by the

website, and the cookie is thus stored on the user’s computer system.

Another example is the cookie of a shopping cart in an online shop. The

online store remembers the articles that a customer has placed in the

virtual shopping cart via a cookie.

 

The data subject may, at any time, prevent the setting of cookies

through our website by means of a corresponding setting of the Internet

browser used, and may thus permanently deny the setting of cookies.

Furthermore, already set cookies may be deleted at any time via an

Internet browser or other software programs. This is possible in all

popular Internet browsers. If the data subject deactivates the setting

of cookies in the Internet browser used, not all functions of our

website may be entirely usable.

 

  1. Collection of general data and information

The website of the Smith and Johnson Consulting LLC collects a series of

general data and information when a data subject or automated system

calls up the website. This general data and information are stored in

the server log files. Collected may be (1) the browser types and

versions used, (2) the operating system used by the accessing system,

(3) the website from which an accessing system reaches our website

(so-called referrers), (4) the sub-websites, (5) the date and time of

access to the Internet site, (6) an Internet protocol address (IP

address), (7) the Internet service provider of the accessing system, and

(8) any other similar data and information that may be used in the event

of attacks on our information technology systems.

 

When using these general data and information, the Smith and Johnson

Consulting LLC does not draw any conclusions about the data subject.

Rather, this information is needed to (1) deliver the content of our

website correctly, (2) optimize the content of our website as well as

its advertisement, (3) ensure the long-term viability of our information

technology systems and website technology, and (4) provide law

enforcement authorities with the information necessary for criminal

prosecution in case of a cyber-attack. Therefore, the Smith and Johnson

Consulting LLC analyzes anonymously collected data and information

statistically, with the aim of increasing the data protection and data

security of our enterprise, and to ensure an optimal level of protection

for the personal data we process. The anonymous data of the server log

files are stored separately from all personal data provided by a data

subject.

 

  1. Registration on our website

The data subject has the possibility to register on the website of the

controller with the indication of personal data. Which personal data are

transmitted to the controller is determined by the respective input mask

used for the registration. The personal data entered by the data subject

are collected and stored exclusively for internal use by the controller,

and for his own purposes. The controller may request transfer to one or

more processors (e.g. a parcel service) that also uses personal data for

an internal purpose which is attributable to the controller.

 

By registering on the website of the controller, the IP address—assigned

by the Internet service provider (ISP) and used by the data

subject—date, and time of the registration are also stored. The storage

of this data takes place against the background that this is the only

way to prevent the misuse of our services, and, if necessary, to make it

possible to investigate committed offenses. Insofar, the storage of this

data is necessary to secure the controller. This data is not passed on

to third parties unless there is a statutory obligation to pass on the

data, or if the transfer serves the aim of criminal prosecution.

 

The registration of the data subject, with the voluntary indication of

personal data, is intended to enable the controller to offer the data

subject contents or services that may only be offered to registered

users due to the nature of the matter in question. Registered persons

are free to change the personal data specified during the registration

at any time, or to have them completely deleted from the data stock of

the controller.

 

The data controller shall, at any time, provide information upon request

to each data subject as to what personal data are stored about the data

subject. In addition, the data controller shall correct or erase

personal data at the request or indication of the data subject, insofar

as there are no statutory storage obligations. A Data Protection Officer

particularly designated in this data protection declaration, as well as

the entirety of the controller’s employees are available to the data

subject in this respect as contact persons.

 

  1. Subscription to our newsletters

On the website of the Smith and Johnson Consulting LLC, users are given

the opportunity to subscribe to our enterprise’s newsletter. The input

mask used for this purpose determines what personal data are

transmitted, as well as when the newsletter is ordered from the

controller.

 

The Smith and Johnson Consulting LLC informs its customers and business

partners regularly by means of a newsletter about enterprise offers. The

enterprise’s newsletter may only be received by the data subject if (1)

the data subject has a valid e-mail address and (2) the data subject

registers for the newsletter shipping. A confirmation e-mail will be

sent to the e-mail address registered by a data subject for the first

time for newsletter shipping, for legal reasons, in the double opt-in

procedure. This confirmation e-mail is used to prove whether the owner

of the e-mail address as the data subject is authorized to receive the

newsletter.

 

During the registration for the newsletter, we also store the IP address

of the computer system assigned by the Internet service provider (ISP)

and used by the data subject at the time of the registration, as well as

the date and time of the registration. The collection of this data is

necessary in order to understand the (possible) misuse of the e-mail

address of a data subject at a later date, and it therefore serves the

aim of the legal protection of the controller.

 

The personal data collected as part of a registration for the newsletter

will only be used to send our newsletter. In addition, subscribers to

the newsletter may be informed by e-mail, as long as this is necessary

for the operation of the newsletter service or a registration in

question, as this could be the case in the event of modifications to the

newsletter offer, or in the event of a change in technical

circumstances. There will be no transfer of personal data collected by

the newsletter service to third parties. The subscription to our

newsletter may be terminated by the data subject at any time. The

consent to the storage of personal data, which the data subject has

given for shipping the newsletter, may be revoked at any time. For the

purpose of revocation of consent, a corresponding link is found in each

newsletter. It is also possible to unsubscribe from the newsletter at

any time directly on the website of the controller, or to communicate

this to the controller in a different way.

 

  1. Newsletter-Tracking

The newsletter of the Smith and Johnson Consulting LLC contains

so-called tracking pixels. A tracking pixel is a miniature graphic

embedded in such e-mails, which are sent in HTML format to enable log

file recording and analysis. This allows a statistical analysis of the

success or failure of online marketing campaigns. Based on the embedded

tracking pixel, the Smith and Johnson Consulting LLC may see if and when

an e-mail was opened by a data subject, and which links in the e-mail

were called up by data subjects.

 

Such personal data collected in the tracking pixels contained in the

newsletters are stored and analyzed by the controller in order to

optimize the shipping of the newsletter, as well as to adapt the content

of future newsletters even better to the interests of the data subject.

These personal data will not be passed on to third parties. Data

subjects are at any time entitled to revoke the respective separate

declaration of consent issued by means of the double-opt-in procedure.

After a revocation, these personal data will be deleted by the

controller. The Smith and Johnson Consulting LLC automatically regards a

withdrawal from the receipt of the newsletter as a revocation.

 

  1. Contact possibility via the website

The website of the Smith and Johnson Consulting LLC contains information

that enables a quick electronic contact to our enterprise, as well as

direct communication with us, which also includes a general address of

the so-called electronic mail (e-mail address). If a data subject

contacts the controller by e-mail or via a contact form, the personal

data transmitted by the data subject are automatically stored. Such

personal data transmitted on a voluntary basis by a data subject to the

data controller are stored for the purpose of processing or contacting

the data subject. There is no transfer of this personal data to third

parties.

 

  1. Comments function in the blog on the website

The Smith and Johnson Consulting LLC offers users the possibility to

leave individual comments on individual blog contributions on a blog,

which is on the website of the controller. A blog is a web-based,

publicly-accessible portal, through which one or more people called

bloggers or web-bloggers may post articles or write down thoughts in

so-called blogposts. Blogposts may usually be commented by third

parties.

 

If a data subject leaves a comment on the blog published on this

website, the comments made by the data subject are also stored and

published, as well as information on the date of the commentary and on

the user’s (pseudonym) chosen by the data subject. In addition, the IP

address assigned by the Internet service provider (ISP) to the data

subject is also logged. This storage of the IP address takes place for

security reasons, and in case the data subject violates the rights of

third parties, or posts illegal content through a given comment. The

storage of these personal data is, therefore, in the own interest of the

data controller, so that he can exculpate in the event of an

infringement. This collected personal data will not be passed to third

parties, unless such a transfer is required by law or serves the aim of

the defense of the data controller.

 

  1. Subscription to comments in the blog on the website

The comments made in the blog of the Smith and Johnson Consulting LLC

may be subscribed to by third parties. In particular, there is the

possibility that a commenter subscribes to the comments following his

comments on a particular blog post.

 

If a data subject decides to subscribe to the option, the controller

will send an automatic confirmation e-mail to check the double opt-in

procedure as to whether the owner of the specified e-mail address

decided in favor of this option. The option to subscribe to comments may

be terminated at any time.

 

  1. Routine erasure and blocking of personal data

The data controller shall process and store the personal data of the

data subject only for the period necessary to achieve the purpose of

storage, or as far as this is granted by the European legislator or

other legislators in laws or regulations to which the controller is

subject to.

 

If the storage purpose is not applicable, or if a storage period

prescribed by the European legislator or another competent legislator

expires, the personal data are routinely blocked or erased in accordance

with legal requirements.

 

  1. Rights of the data subject
  2. a) Right of confirmation

Each data subject shall have the right granted by the European

legislator to obtain from the controller the confirmation as to whether

or not personal data concerning him or her are being processed. If a

data subject wishes to avail himself of this right of confirmation, he

or she may, at any time, contact our Data Protection Officer or another

employee of the controller.

 

  1. b) Right of access

Each data subject shall have the right granted by the European

legislator to obtain from the controller free information about his or

her personal data stored at any time and a copy of this information.

Furthermore, the European directives and regulations grant the data

subject access to the following information:

 

the purposes of the processing;

the categories of personal data concerned;

the recipients or categories of recipients to whom the personal data

have been or will be disclosed, in particular recipients in third

countries or international organisations;

where possible, the envisaged period for which the personal data will be

stored, or, if not possible, the criteria used to determine that period;

the existence of the right to request from the controller rectification

or erasure of personal data, or restriction of processing of personal

data concerning the data subject, or to object to such processing;

the existence of the right to lodge a complaint with a supervisory

authority;

where the personal data are not collected from the data subject, any

available information as to their source;

the existence of automated decision-making, including profiling,

referred to in Article 22(1) and (4) of the GDPR and, at least in those

cases, meaningful information about the logic involved, as well as the

significance and envisaged consequences of such processing for the data

subject.

Furthermore, the data subject shall have a right to obtain information

as to whether personal data are transferred to a third country or to an

international organisation. Where this is the case, the data subject

shall have the right to be informed of the appropriate safeguards

relating to the transfer.

 

If a data subject wishes to avail himself of this right of access, he or

she may at any time contact our Data Protection Officer or another

employee of the controller.

 

  1. c) Right to rectification

Each data subject shall have the right granted by the European

legislator to obtain from the controller without undue delay the

rectification of inaccurate personal data concerning him or her. Taking

into account the purposes of the processing, the data subject shall have

the right to have incomplete personal data completed, including by means

of providing a supplementary statement.

 

If a data subject wishes to exercise this right to rectification, he or

she may, at any time, contact our Data Protection Officer or another

employee of the controller.

 

  1. d) Right to erasure (Right to be forgotten)

Each data subject shall have the right granted by the European

legislator to obtain from the controller the erasure of personal data

concerning him or her without undue delay, and the controller shall have

the obligation to erase personal data without undue delay where one of

the following grounds applies, as long as the processing is not

necessary:

 

The personal data are no longer necessary in relation to the purposes

for which they were collected or otherwise processed.

The data subject withdraws consent to which the processing is based

according to point (a) of Article 6(1) of the GDPR, or point (a) of

Article 9(2) of the GDPR, and where there is no other legal ground for

the processing.

The data subject objects to the processing pursuant to Article 21(1) of

the GDPR and there are no overriding legitimate grounds for the

processing, or the data subject objects to the processing pursuant to

Article 21(2) of the GDPR.

The personal data have been unlawfully processed.

The personal data must be erased for compliance with a legal obligation

in Union or Member State law to which the controller is subject.

The personal data have been collected in relation to the offer of

information society services referred to in Article 8(1) of the GDPR.

If one of the aforementioned reasons applies, and a data subject wishes

to request the erasure of personal data stored by the Smith and Johnson

Consulting LLC, he or she may at any time contact our Data Protection

Officer or another employee of the controller. The Data Protection

Officer of the Smith and Johnson Consulting LLC or another employee

shall promptly ensure that the erasure request is complied with

immediately.

 

Where the controller has made personal data public and is obliged

pursuant to Article 17(1) to erase the personal data, the controller,

taking account of available technology and the cost of implementation,

shall take reasonable steps, including technical measures, to inform

other controllers processing the personal data that the data subject has

requested erasure by such controllers of any links to, or copy or

replication of, those personal data, as far as processing is not

required. The Data Protection Officer of the Smith and Johnson

Consulting LLC or another employee will arrange the necessary measures

in individual cases.

 

  1. e) Right of restriction of processing

Each data subject shall have the right granted by the European

legislator to obtain from the controller restriction of processing where

one of the following applies:

 

The accuracy of the personal data is contested by the data subject, for

a period enabling the controller to verify the accuracy of the personal

data.

The processing is unlawful and the data subject opposes the erasure of

the personal data and requests instead the restriction of their use

instead.

The controller no longer needs the personal data for the purposes of the

processing, but they are required by the data subject for the

establishment, exercise or defence of legal claims.

The data subject has objected to processing pursuant to Article 21(1) of

the GDPR pending the verification whether the legitimate grounds of the

controller override those of the data subject.

If one of the aforementioned conditions is met, and a data subject

wishes to request the restriction of the processing of personal data

stored by the Smith and Johnson Consulting LLC, he or she may at any

time contact our Data Protection Officer or another employee of the

controller. The Data Protection Officer of the Smith and Johnson

Consulting LLC or another employee will arrange the restriction of the

processing.

 

  1. f) Right to data portability

Each data subject shall have the right granted by the European

legislator, to receive the personal data concerning him or her, which

was provided to a controller, in a structured, commonly used and

machine-readable format. He or she shall have the right to transmit

those data to another controller without hindrance from the controller

to which the personal data have been provided, as long as the processing

is based on consent pursuant to point (a) of Article 6(1) of the GDPR or

point (a) of Article 9(2) of the GDPR, or on a contract pursuant to

point (b) of Article 6(1) of the GDPR, and the processing is carried out

by automated means, as long as the processing is not necessary for the

performance of a task carried out in the public interest or in the

exercise of official authority vested in the controller.

 

Furthermore, in exercising his or her right to data portability pursuant

to Article 20(1) of the GDPR, the data subject shall have the right to

have personal data transmitted directly from one controller to another,

where technically feasible and when doing so does not adversely affect

the rights and freedoms of others.

 

In order to assert the right to data portability, the data subject may

at any time contact the Data Protection Officer designated by the Smith

and Johnson Consulting LLC or another employee.

 

  1. g) Right to object

Each data subject shall have the right granted by the European

legislator to object, on grounds relating to his or her particular

situation, at any time, to processing of personal data concerning him or

her, which is based on point (e) or (f) of Article 6(1) of the GDPR.

This also applies to profiling based on these provisions.

 

The Smith and Johnson Consulting LLC shall no longer process the

personal data in the event of the objection, unless we can demonstrate

compelling legitimate grounds for the processing which override the

interests, rights and freedoms of the data subject, or for the

establishment, exercise or defence of legal claims.

 

If the Smith and Johnson Consulting LLC processes personal data for

direct marketing purposes, the data subject shall have the right to

object at any time to processing of personal data concerning him or her

for such marketing. This applies to profiling to the extent that it is

related to such direct marketing. If the data subject objects to the

Smith and Johnson Consulting LLC to the processing for direct marketing

purposes, the Smith and Johnson Consulting LLC will no longer process

the personal data for these purposes.

 

In addition, the data subject has the right, on grounds relating to his

or her particular situation, to object to processing of personal data

concerning him or her by the Smith and Johnson Consulting LLC for

scientific or historical research purposes, or for statistical purposes

pursuant to Article 89(1) of the GDPR, unless the processing is

necessary for the performance of a task carried out for reasons of

public interest.

 

In order to exercise the right to object, the data subject may directly

contact the Data Protection Officer of the Smith and Johnson Consulting

LLC or another employee. In addition, the data subject is free in the

context of the use of information society services, and notwithstanding

Directive 2002/58/EC, to use his or her right to object by automated

means using technical specifications.

 

  1. h) Automated individual decision-making, including profiling

Each data subject shall have the right granted by the European

legislator not to be subject to a decision based solely on automated

processing, including profiling, which produces legal effects concerning

him or her, or similarly significantly affects him or her, as long as

the decision (1) is not is necessary for entering into, or the

performance of, a contract between the data subject and a data

controller, or (2) is not authorised by Union or Member State law to

which the controller is subject and which also lays down suitable

measures to safeguard the data subject’s rights and freedoms and

legitimate interests, or (3) is not based on the data subject’s explicit

consent.

 

If the decision (1) is necessary for entering into, or the performance

of, a contract between the data subject and a data controller, or (2) it

is based on the data subject’s explicit consent, the Smith and Johnson

Consulting LLC shall implement suitable measures to safeguard the data

subject’s rights and freedoms and legitimate interests, at least the

right to obtain human intervention on the part of the controller, to

express his or her point of view and contest the decision.

 

If the data subject wishes to exercise the rights concerning automated

individual decision-making, he or she may at any time directly contact

our Data Protection Officer of the Smith and Johnson Consulting LLC or

another employee of the controller.

 

  1. i) Right to withdraw data protection consent

Each data subject shall have the right granted by the European

legislator to withdraw his or her consent to processing of his or her

personal data at any time.

 

f the data subject wishes to exercise the right to withdraw the consent,

he or she may at any time directly contact our Data Protection Officer

of the Smith and Johnson Consulting LLC or another employee of the

controller.

 

  1. Data protection for applications and the application procedures

The data controller shall collect and process the personal data of

applicants for the purpose of the processing of the application

procedure. The processing may also be carried out electronically. This

is the case, in particular, if an applicant submits corresponding

application documents by e-mail or by means of a web form on the website

to the controller. If the data controller concludes an employment

contract with an applicant, the submitted data will be stored for the

purpose of processing the employment relationship in compliance with

legal requirements. If no employment contract is concluded with the

applicant by the controller, the application documents shall be

automatically erased two months after notification of the refusal

decision, provided that no other legitimate interests of the controller

are opposed to the erasure. Other legitimate interest in this relation

is, e.g. a burden of proof in a procedure under the General Equal

Treatment Act (AGG).

 

  1. Data Protection provisions about the application and use of AddThis

On this website, the data controller has integrated components of the

enterprise AddThis. AddThis is a so-called bookmarking provider. The

service allows for simplified bookmarking of Internet pages via buttons.

By clicking on the AddThis component with the mouse, or by clicking on

it, a list of bookmarking and sharing services is displayed. AddThis is

used on over 15 million websites, and the buttons are displayed,

according to the information of the operating enterprise, over 20

billion times a year.

 

The operating company of AddThis is AddThis, Inc. 1595 Spring Hill Road,

Suite 300, Vienna, VA 22182, United States.

 

By calling up one of the individual pages of the website, which is

operated by the controller, and on which an AddThis component has been

integrated, the Internet browser of the data subject is automatically

prompted by the respective AddThis component to download data from the

website www.addthis.com. Within the framework of this technical

procedure, AddThis is informed of the visit and the specific individual

page of this website that was used by the data subject with the help of

information technology. In addition, AddThis is informed about the IP

address of the computer system assigned by the Internet service provider

(ISP) and used by the data subject, the browser type and language, the

web page accessed before our website, the date and the time of the visit

to our website. AddThis uses this data to create anonymous user

profiles. The data and information transmitted to AddThis in this way

will enable the enterprise AddThis, as well as affiliates or their

partner-enterprises, to contact visitors of the web pages of the

controller with personalized and interest-based advertising.

 

AddThis displays personalized and interest-based advertising on the

basis of a cookie set by the enterprise. This cookie analyzes the

individual surfing behavior of the computer system used by the data

subject. The cookie saves the computer-based outgoing visits to Internet

pages.

 

The data subject may, at any time, prevent the setting of cookies

through our website by means of a corresponding setting of the Internet

browser used, and thus permanently deny the setting of cookies. Such a

setting of the Internet browser used would also prevent AddThis from

setting a cookie on the information technology system of the data

subject. Cookies may also be deleted by AddThis at any time via an

Internet browser or other software programs.

 

The data subject also has the possibility of objecting permanently to

the processing of personal data by AddThis. For this purpose, the data

subject must click on the opt-out button under the link

http://www.addthis.com/privacy/opt-out, which sets an opt-out cookie.

The opt-out cookie used for this purpose is placed on the information

technology system used by the data subject. If the data subject deletes

the cookies from his system, then the data subject must call up the link

again and set a new opt-out cookie.

 

With the setting of the opt-out cookie, however, the possibility exists

that the websites of the controller are not fully usable anymore by the

data subject.

 

The applicable data protection provisions of AddThis may be accessed

under http://www.addthis.com/privacy/privacy-policy.

 

  1. Data protection provisions about the application and use of Adobe

Analytics (Omniture) / Adobe marketing cloud

On this website, the controller has integrated components of the

enterprise Adobe. Adobe Analytics (Omniture) and Adobe Marketing Cloud

(hereinafter referred to as “Omniture”) is an instrument that allows for

more efficient online marketing and web analysis. Omniture is part of

Adobe Marketing Cloud. Adobe Marketing Cloud enables real-time analysis

of visitor flows on Internet sites. The real-time analysis includes

project reports and allows an ad-hoc analysis of site visitors. Customer

interactions are presented in such a way as to give the controller a

better overview of users’ online activities of this website by

displaying the data in simple and interactive dashboards and converting

them into reports. This enables the controller to obtain information in

real-time and to identify problems that occur more quickly.

 

The operating company for these services is Adobe Systems Software

Ireland Limited, 4-6 Riverwalk, Citywest Business Campus, Dublin 24,

Republic of Ireland.

 

Omniture sets a cookie on the information technology system of the data

subject (cookies have already been explained in advance, which may be

read above). The controller ensures that the tracking data transferred

to the Adobe data center is anonymized prior to geolocation. The

anonymization is implemented by replacing the last part of the IP

address. The controller has made server-sided settings, which are used

to anonymize the IP address of the data subject prior to processing for

geolocation and range measurement. Adobe will use the data and

information obtained via our website to analyze the user behavior of the

data subject on behalf of the controller. Adobe will also use the data

to create reports on user activity on our behalf, as well as provide

other services to our enterprise related to the use of our website. The

IP address of the data subject is not merged with other personal data by

Adobe.

 

As stated above, the data subject may, at any time, prevent the setting

of cookies through our website by means of a corresponding setting of

the Internet browser used, and thus permanently deny the setting of

cookies. Such a setting of the Internet browser used would also prevent

Omniture from setting a cookie on the information technology system of

the data subject. Cookies may also be deleted by Omniture at any time

via an Internet browser or other software programs.

 

The data subject also has the possibility of objecting to and preventing

the collection of data generated by the Adobe cookie on the use of this

website and the processing of this data by Adobe. For this purpose, the

data subject must click on the opt-out button under the link

http://www.adobe.com/de/privacy/opt-out.html, which sets an opt-out

cookie. The opt-out cookie used for this purpose is placed on the

information technology system used by the data subject. If the data

subject deletes the cookies from his system, then the data subject must

call up the link again and set a new opt-out cookie.

 

With the setting of the opt-out cookie, however, the possibility exists

that the websites of the controller are not fully usable anymore by the

data subject.

 

The applicable data protection provisions of Adobe may be accessed under

http://www.adobe.com/privacy.html.

 

  1. Data protection provisions about the application and use of

Affilinet

On this website, the controller has integrated components of the

enterprise Affilinet. Affilinet is a German affiliate network, which

offers affiliate marketing.

 

Affiliate marketing is a web-based form of distribution, which allows

commercial operators of Internet sites, the so-called merchants or

advertisers, to show advertising, which will be paid mostly through

click or sale commissions, on third-party Internet sites that are also

called affiliates or publishers. The Merchant provides through the

affiliate network an advertising medium, such as an advertising banner

or other suitable means of Internet advertising, which is subsequently

integrated by an affiliate on its own Internet pages or via other

channels such as keyword advertising or e-mail marketing.

 

The operating company of Affilinet is the Affilinet GmbH, Sapporo arc

6-8, 80637 Munich, Germany.

 

Affilinet sets a cookie on the information technology system of the data

subject. The definition of cookies is explained above. The tracking

cookie by Affilinet stores no personal data. Only the identification

number of the affiliate, that is, the partner mediating the potential

customer, as well as the ordinal number of the visitor of a website and

the clicked advertising medium are stored. The purpose of this data

storage is the processing of commission payments between a merchant and

affiliate, which are processed through the affiliate network, that is

Affilinet.

 

The data subject may, as stated above, prevent the setting of cookies

through our website at any time by means of a corresponding adjustment

of the Internet browser used and, thus, permanently deny the setting of

cookies. Such an adjustment to the Internet browser used would also

prevent Affilinet from setting a cookie on the information technology

system of the data subject. In addition, cookies already in use by

Affilinet may be deleted at any time via a web browser or other software

programs.

 

The applicable data protection provisions of Affilinet may be accessed

under https://www.affili.net/uk/footeritem/privacy-policy.

 

  1. Data protection provisions about the application and use of Econda

On this website, the controller has integrated components of the

enterprise Econda. Econda is a web analytics service. Web analytics is

the collection, gathering and analysis of data about the behavior of

visitors of the websites. A web analysis service captures, among other

things, data pertaining to which website a person has arrived on via

another website (the so-called referrer), which sub-site of the website

was visited, or how often and for what duration a sub-site was viewed.

Web analytics are mainly used for the optimization of a website in order

to carry out a cost-benefit analysis of Internet advertising.

 

The operating company of Econda is Econda GmbH, Eisenlohrstr. 43, 76135

Karlsruhe, Germany.

 

Econda sets a cookie on the information technology system of the data

subject. The definition of cookies is explained above. With each call up

to one of the individual pages of this Internet site, which is operated

by the controller and on which an Econda component was integrated, the

Internet browser on the information technology system of the data

subject is automatically prompted to transmit data for marketing and

optimisation purposes to Econda through the Econda component. During the

course of this technical procedure, Econda obtains data that is used to

create pseudonymous user profiles. The user profiles created in such a

way are used to analyze the behavior of the data subject who has

accessed the website of the controller and are evaluated with the aim of

improving and optimizing the website. The data collected via the Econda

component is not used to identify the data subject without first

obtaining separate and explicit consent from the data subject. These

data will not be merged with personal data or with other data that

contain the same pseudonym.

 

The data subject may, as stated above, prevent the setting of cookies

through our website at any time by means of a corresponding adjustment

of the Internet browser used, and thus permanently deny the setting of

cookies. Such an adjustment to the Internet browser used would also

prevent Econda from setting a cookie on the information technology

system of the data subject. In addition, cookies already set by Econda

may be deleted at any time via a web browser or other software programs.

 

In addition, the data subject has the possibility of objecting to a

collection of data relating to a use of this Internet site that are

generated by the Econda cookie as well as the processing of these data

by Econda and the chance to preclude any such. For this purpose, the

data subject must press the ‘submit’ button under the link

http://www.econda.com/econda/enterprise/data-protection/revocation-of-data-storage/,

which sets the opt-out cookie. The opt-out cookie used for this purpose

is placed on the information technology system used by the data subject.

If the cookies are deleted from the system of the data subject, then the

data subject must call up the link again and set a new opt-out cookie.

 

With the setting of the opt-out cookie, however, the possibility exists

that the websites of the controller are not fully usable anymore by the

data subject.

 

The applicable data protection provisions of Econda may be accessed

under

http://www.econda.com/econda/enterprise/data-protection/data-privacy-statement/.

 

  1. Data protection provisions about the application and use of Etracker

On this website, the controller has integrated components of the

enterprise Etracker. Etracker is a Web analytics service. Web analytics

is the collection, gathering and analysis of data about the behavior of

visitors to websites. A web analysis service captures, among other

things, data about from which website a person has arrived on another

website (the so-called referrer), which sub-sites of the website were

visited or how often and for what duration a sub-site was viewed. Web

analytics are mainly used for the optimization of a website and in order

to carry out a cost-benefit analysis of Internet advertising.

 

The operating company of Etracker is Etracker GmbH, Erste Brunnenstraße

1, 20459 Hamburg, Germany.

 

Etracker sets a cookie on the information technology system of the data

subject. The definition of cookies is explained above. With each call-up

to one of the individual pages of this Internet site, which is operated

by the controller and into which an Etracker component was integrated,

the Internet browser on the information technology system of the data

subject is automatically prompted to transmit data for marketing and

optimisation purposes to Etracker through the Etracker component. During

the course of this technical procedure Etracker receives data that is

used to create pseudonymous user profiles. The user profiles created in

such a way are used for the analysis of the behaviour of the data

subject, which has accessed Internet page of the controller and are

evaluated with the aim of improving and optimizing the website. The data

collected through the Etracker component is not used without first

obtaining of a separate and explicit consent of the data subject to

identify the data subject. This data is not merged with personal data or

other data which contain the same pseudonym.

 

The data subject may, as stated above, at any time prevent the setting

of cookies through our website by means of a corresponding adjustment of

the Internet browser used and, permanently deny the setting of cookies.

Such an adjustment to the Internet browser used would also prevent

Etracker from setting a cookie on the information technology system of

the data subject. In addition, cookies already set by Etracker may be

deleted at any time via a Web browser or other software programs.

 

In addition, the data subject has the possibility of objecting to a

collection of data relating to a use of this Internet site that are

generated by the Etracker cookie as well as the processing of these data

by Etracker and the chance to preclude such. For this purpose, the data

subject must press the ‘cookie-set’ button under the link

http://www.etracker.de/privacy?sid=58e31c864e66848984dfc79b8f6b51a9&id=privacy&et=V23Jbb&languageId=2,

which sets an opt-out cookie. The opt-out cookie used for this purpose

is placed on the information technology system used by the data subject.

If the cookies are deleted from the system of the data subject, then the

data subject must call up the link again and set a new opt-out cookie.

 

With the setting of the opt-out cookie, however, the possibility exists

that the websites of the controller are not fully usable anymore by the

data subject.

 

The applicable data protection provisions of Etracker may be accessed

under https://www.etracker.com/de/datenschutz.html.

 

  1. Data protection provisions about the application and use of Facebook

On this website, the controller has integrated components of the

enterprise Facebook. Facebook is a social network.

 

A social network is a place for social meetings on the Internet, an

online community, which usually allows users to communicate with each

other and interact in a virtual space. A social network may serve as a

platform for the exchange of opinions and experiences, or enable the

Internet community to provide personal or business-related information.

Facebook allows social network users to include the creation of private

profiles, upload photos, and network through friend requests.

 

The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo

Park, CA 94025, United States. If a person lives outside of the United

States or Canada, the controller is the Facebook Ireland Ltd., 4 Grand

Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

 

With each call-up to one of the individual pages of this Internet

website, which is operated by the controller and into which a Facebook

component (Facebook plug-ins) was integrated, the web browser on the

information technology system of the data subject is automatically

prompted to download display of the corresponding Facebook component

from Facebook through the Facebook component. An overview of all the

Facebook Plug-ins may be accessed under

https://developers.facebook.com/docs/plugins/. During the course of this

technical procedure, Facebook is made aware of what specific sub-site of

our website was visited by the data subject.

 

If the data subject is logged in at the same time on Facebook, Facebook

detects with every call-up to our website by the data subject—and for

the entire duration of their stay on our Internet site—which specific

sub-site of our Internet page was visited by the data subject. This

information is collected through the Facebook component and associated

with the respective Facebook account of the data subject. If the data

subject clicks on one of the Facebook buttons integrated into our

website, e.g. the “Like” button, or if the data subject submits a

comment, then Facebook matches this information with the personal

Facebook user account of the data subject and stores the personal data.

 

Facebook always receives, through the Facebook component, information

about a visit to our website by the data subject, whenever the data

subject is logged in at the same time on Facebook during the time of the

call-up to our website. This occurs regardless of whether the data

subject clicks on the Facebook component or not. If such a transmission

of information to Facebook is not desirable for the data subject, then

he or she may prevent this by logging off from their Facebook account

before a call-up to our website is made.

 

The data protection guideline published by Facebook, which is available

at https://facebook.com/about/privacy/, provides information about the

collection, processing and use of personal data by Facebook. In

addition, it is explained there what setting options Facebook offers to

protect the privacy of the data subject. In addition, different

configuration options are made available to allow the elimination of

data transmission to Facebook. These applications may be used by the

data subject to eliminate a data transmission to Facebook.

 

  1. Data protection provisions about the application and use of Flattr

On this website, the controller has integrated components of the

enterprise Flattr. Flattr is a social payment service from Sweden, which

allows the user to distribute donations to media providers on the

Internet through deposits on a credit account and by the provision of a

monthly budget. The users of the service may instruct Flattr, by

clicking on a Flattr button that is integrated on the website of a media

provider, to distribute its fixed monthly budget to this media provider.

 

The operating company of Flattr is Flattr AB, Box 4111, 203 12 Malmo,

Sweden.

 

With each call-up to one of the individual pages of this Internet site,

which is operated by the controller and into which a Flattr component

was integrated, the Internet browser on the information technology

system of the data subject is automatically prompted to download a

display of the corresponding Flattr component from Flattr through the

Flattr component. During the course of this technical procedure, Flattr

is made aware of what specific sub-sites of our website are visited by

the data subject.

 

If the data subject is logged in at the same time at Flattr, Flattr

detects with each call-up to our website by the data subject—and for the

entire duration of their stay on our Internet site—what specific

sub-site of our Internet page was visited by the data subject. This

information is co