This page was translated with Google Translator click here to view the original page (in German).
We have written this data protection declaration in order to be able to offer you in accordance with the requirements of the General Data Protection Regulation (EU) 2016/679 to explain what information we collect, how we use data and what choices you have as a visitor to this website.
Unfortunately, it is in the nature of things that these explanations sound very technical, but we have tried to describe the most important things as simply and clearly as possible.
Automatic data storage
When you visit websites these days, certain information is automatically created and stored, including on this website.
If you visit our website as it is now, our web server (computer on which this website is stored) automatically saves data such as
- the address (URL) of the accessed website
- browser and browser version
- the operating system used
- the address (URL) of the previously visited page (referrer URL)
- the host name and the IP address of the device from which access is made
- date and time
in files (web server log files).
As a rule, web server log files are stored for two weeks and then automatically deleted. We do not pass on this data, but we cannot rule out that this data will be viewed in the event of illegal behavior.
Storage of personal data
Personal data that you transmit to us electronically on this website, such as name, email address, address or other personal information in the context of submitting a form or comments in the blog, are stored by us together with the time and the IP Address is only used for the specified purpose, stored securely and not passed on to third parties.
We therefore only use your personal data for communication with those visitors who expressly request contact and for processing the services and products offered on this website. We do not pass on your personal data without your consent, but we cannot rule out that this data will be viewed in the event of illegal behavior.
If you send us personal data by e-mail - outside of this website - we cannot guarantee secure transmission and protection of your data. We recommend that you never send confidential data unencrypted by e-mail.
The legal basis is according to Article 6 Paragraph 1 a GDPR (lawfulness of processing ) in that you give us your consent to process the data you have entered. You can revoke this consent at any time - an informal e-mail is sufficient, you will find our contact details in the imprint.
Rights according to the General Data Protection Regulation
According to the provisions of the GDPR, you have the following rights:
- Right to rectification (Article 16 GDPR)
- Right to cancellation (“right to be forgotten”) (Article 17 GDPR)
- Right to restriction of processing (Article 18 GDPR)
- Right to notification - obligation to notify in connection with the correction or deletion of personal data or the restriction of processing (Article 19 GDPR)
- Right to data portability (Article 20 GDPR)
- Right of objection (Article 21 GDPR)
- Right not to be subject to a decision based solely on automated processing - including profiling (Article 22 GDPR)
If you believe that the processing of your data violates data protection law or your data protection claims have been violated in any other way, you can contact the [Federal Commissioner for Data Protection and Freedom of Information (BfDI)](https: //www.bfdi .bund.de).
Evaluation of visitor behavior
In the following data protection declaration we inform you whether and how we evaluate data from your visit to this website. The data collected is usually evaluated anonymously and we cannot infer your person from your behavior on this website.
You can find out more about how to object to this analysis of the visit data in the following data protection declaration.
TLS encryption with https
We use https to transfer data securely on the Internet (data protection through technology design Article 25 Paragraph 1 GDPR). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data. You can recognize the use of this data transmission protection by the small lock symbol in the top left of the browser and the use of the https (instead of http) scheme as part of our Internet address.
What is Cloudflare?
A content delivery network (CDN), as provided by Cloudflare, is nothing more than a network of servers connected via the Internet. Cloudflare has distributed such servers all over the world to bring websites to your screen faster. Simply put, Cloudflare makes copies of our website and places them on their own servers. When you visit our website now, a load balancing system ensures that most of our website is delivered by the server that can display our website to you the fastest. A CDN significantly shortens the data transmission route to your browser. Thus, the content of our website is delivered to you by Cloudflare not only from our hosting server, but from servers from all over the world. The use of Cloudflare is particularly helpful for users from abroad, as the page can be delivered from a server nearby. In addition to the fast delivery of websites, Cloudflare also offers various security services such as DDoS protection or the web application firewall.
Why do we use Cloudflare on our website?
What data does Cloudflare save?
Cloudflare generally only forwards the data that is controlled by the website operator. The content is not determined by Cloudflare, but always by the website operator himself. In addition, Cloudflare may collect certain information about the use of our website and process data that is sent by us or for which Cloudflare has received instructions. In most cases, Cloudflare receives data such as contact information, IP addresses, security fingerprints, DNS log data and performance data for websites that are derived from browser activity. Log data helps Cloudflare, for example, to identify new threats. In this way, Cloudflare can guarantee a high level of security protection for our website. Cloudflare processes this data as part of the services in compliance with the applicable laws. This of course also includes the General Data Protection Regulation (GDPR).
For security reasons, Cloudflare also uses a cookie. The cookie (__cfduid) is used to identify individual users behind a shared IP address and to apply security settings for each individual user. This cookie is very useful, for example, if you use our website from a location with a number of infected computers. However, if your computer is trustworthy, we can recognize this using the cookie. In this way, you can surf through our website unhindered despite infected PCs in the vicinity. It is also important to know that this cookie does not store any personal data. This cookie is essential for the Cloudflare security functions and cannot be deactivated.
Cookies from Cloudflare
- Expiry time: 1 year
- Use: security settings for each individual visitor
- Exemplary value: d798bf7df9c1ad5b7583eda5cc5e78311203132
Cloudflare also works with third party providers. They may only process personal data under the instruction of Cloudflare and in accordance with the data protection guidelines and other confidentiality and security measures. Cloudflare does not pass on any personal data without our explicit consent.
How long and where is the data stored?
Cloudflare stores your information primarily in the US and the European Economic Area. Cloudflare can transmit and access the information described above from all over the world. In general, Cloudflare stores data at the user level for domains in the versions Free, Pro and Business for less than 24 hours. For enterprise domains that have activated Cloudflare Logs (formerly Enterprise LogShare or ELS), the data can be stored for up to 7 days. However, if IP addresses trigger security warnings on Cloudflare, there may be exceptions to the storage duration listed above.
How can I delete my data or prevent data storage?
Cloudflare only stores data logs for as long as necessary and this data is also deleted in most cases within 24 hours. Cloudflare also does not store any personal data, such as your IP address. However, there is information that Cloudflare stores indefinitely as part of its permanent logs in order to improve the overall performance of Cloudflare Resolver and to identify any security risks. You can find out which permanent protocols are saved at https://www.cloudflare.com/privacypolicy/. All data that Cloudflare collects (temporarily or permanently) is cleaned of all personal data. All permanent logs are also anonymized by Cloudflare.