DE EN
Sign up
Legal

Privacy Policy

Information on the processing of personal data under the GDPR

The legally binding version is the German original. This English translation is provided for convenience only.

1. Privacy at a glance

General information

The following information gives you a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to identify you personally.

Data collection on this website

Who is responsible for data collection?

Data processing on this website is carried out by the website operator. You can find their contact details in the »Information on the responsible party« section of this privacy policy.

How do we collect your data?

Your data is collected, on the one hand, by you providing it to us — e. g. via a contact form or by email. Other data is collected automatically or with your consent when you visit the website (technical data such as browser, operating system, or time of access).

What do we use your data for?

Some of the data is collected to ensure error-free provision of the website. Other data may be used to analyse your user behaviour.

What rights do you have regarding your data?

You have the right at any time to receive free information about the origin, recipients, and purpose of your stored personal data. You also have the right to request the correction or deletion of this data, and to lodge a complaint with the competent supervisory authority.

2. Hosting and Content Delivery Networks (CDN)

Cloudflare

We use the »Cloudflare« service from Cloudflare Inc., 101 Townsend St., San Francisco, CA 94107, USA (»Cloudflare«). Cloudflare provides a Content Delivery Network with DNS that sits between you and our server. As a result, traffic between your browser and our website is routed through Cloudflare's network.

Cloudflare is used on the basis of our legitimate interest in providing our online presence as reliably and securely as possible (Art. 6 (1) (f) GDPR). Data transfers to the USA are based on the EU Commission's standard contractual clauses.

More information is available here: https://www.cloudflare.com/privacypolicy/

3. General notes and mandatory information

Data protection

The operators of these pages take the protection of your personal data very seriously. We treat your personal data as confidential and in accordance with the statutory data protection regulations and this privacy policy.

Please note that data transmission over the internet (e. g. by email) can have security vulnerabilities. Complete protection of data against third-party access is not possible.

Information on the responsible party

The party responsible for data processing on this website is:

svote UG (haftungsbeschränkt)
Ulmer Straße 34
73728 Esslingen am Neckar

Represented by: Alexander Koruš, Dennis Selig, Sven Feliks, Florian Hahn
Phone: +49 173 3222263
Email: info@svote.io

Data Protection Officer

pagestreet — legal Solutions GmbH
Große Hamburger Str. 32
10115 Berlin
Phone: +49 (0)30 467 240 6-37
Email: datenschutz@svote.io

Note on data transfer to the USA

Our website integrates tools from companies based in the USA. When these tools are active, your personal data may be transferred to the US servers of the respective companies. Please note that the USA is not a safe third country within the meaning of EU data protection law. US companies are obliged to hand over personal data to security authorities without you, as the data subject, being able to take legal action against this.

Withdrawing your consent to data processing

Many data processing operations are only possible with your explicit consent. You can withdraw any consent you have already given at any time. The lawfulness of data processing carried out before the withdrawal remains unaffected by the withdrawal.

Right to object to data collection in special cases and to direct marketing (Art. 21 GDPR)

If data processing is carried out on the basis of Art. 6 (1) (e) or (f) GDPR, you have the right at any time to object to the processing of your personal data for reasons arising from your particular situation. In this case, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims.

Right to lodge a complaint with the competent authority

In the event of breaches of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the member state of their habitual residence, place of work, or the place of the alleged breach. This right exists without prejudice to any other administrative or judicial remedy.

Right to data portability

You have the right to have data that we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a common, machine-readable format. If you request direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.

SSL / TLS encryption

For security reasons and to protect the transmission of confidential content such as orders or enquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognise an encrypted connection by the change in the browser's address bar from »http://« to »https://« and by the lock icon in your browser bar.

Information, deletion and correction

Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipients, and the purpose of data processing, and, where applicable, the right to have this data corrected or deleted.

Right to restriction of processing

You have the right to request the restriction of processing of your personal data. This right exists in particular if:

  • you contest the accuracy of your personal data stored with us;
  • the processing of your data was/is unlawful, but you refuse deletion and instead request restriction of data use;
  • we no longer need your personal data for processing purposes, but you need it to assert, exercise or defend legal claims;
  • you have lodged an objection under Art. 21 (1) GDPR and it is not yet clear whose interests prevail.

Objection to promotional emails

We hereby object to the use of contact data published in the imprint for sending unsolicited advertising and information materials. The site operators expressly reserve the right to take legal action in the event of unsolicited advertising, such as spam emails.

4. Data collection on this website

Cookies

Our website uses so-called »cookies«. Cookies are small text files and do not cause any damage to your device. They are stored on your device either temporarily for the duration of a session (session cookies) or permanently (persistent cookies). Session cookies are automatically deleted at the end of your visit. Persistent cookies remain stored on your device until you delete them yourself or until they are automatically deleted by your web browser.

In some cases, cookies from third-party companies may also be stored on your device when you visit our site (third-party cookies). These enable us or you to use certain services of the third-party company (e. g. cookies for processing payment services).

Cookies have various functions. Many cookies are technically necessary because certain website functions would not work without them. Other cookies are used to analyse your user behaviour or display advertising.

Cookies that are required to carry out the electronic communication process or to provide certain functions you have requested are stored on the basis of Art. 6 (1) (f) GDPR. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 (1) (a) GDPR; the consent can be withdrawn at any time.

You can configure your browser to inform you about the setting of cookies, allow cookies only in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be restricted.

Server log files

The site provider automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • Time of the server request
  • IP address

This data is not merged with other data sources. The collection of this data is based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in the technically error-free display and optimisation of their website — for this purpose, the server log files must be collected.

Contact form

If you send us enquiries via the contact form, the details from the enquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the enquiry and in case of follow-up questions. We do not pass on this data without your consent.

This data is processed on the basis of Art. 6 (1) (b) GDPR, provided that your enquiry is related to the performance of a contract or is necessary to carry out pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of enquiries addressed to us (Art. 6 (1) (f) GDPR) or on your consent (Art. 6 (1) (a) GDPR) if this was requested.

The data you enter in the contact form remains with us until you request its deletion, withdraw your consent to its storage, or the purpose for data storage ceases to apply (e. g. after your enquiry has been processed). Mandatory legal provisions — in particular retention periods — remain unaffected.

Enquiry by email, phone, or fax

If you contact us by email, phone, or fax, your enquiry, including all resulting personal data (name, enquiry), will be stored and processed by us for the purpose of handling your request. We do not pass on this data without your consent.

This data is processed on the basis of Art. 6 (1) (b) GDPR, provided that your enquiry is related to the performance of a contract or is necessary to carry out pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of enquiries addressed to us (Art. 6 (1) (f) GDPR) or on your consent (Art. 6 (1) (a) GDPR).

The data you have sent us via contact requests remains with us until you request its deletion, withdraw your consent to its storage, or the purpose for data storage ceases to apply. Mandatory legal provisions — in particular statutory retention periods — remain unaffected.

Registration on this website

You can register on this website to use additional features on the site. We use the data entered for this purpose only for the use of the respective offer or service for which you have registered. The mandatory information requested during registration must be provided in full. Otherwise, we will reject the registration.

For important changes, such as changes in the scope of the offer or technically necessary changes, we use the email address provided during registration to inform you in this way.

The data entered during registration is processed for the purpose of performing the user relationship established by the registration and, if necessary, for initiating further contracts (Art. 6 (1) (b) GDPR).

The data collected during registration is stored by us as long as you are registered on this website and is deleted afterwards. Statutory retention periods remain unaffected.

5. Plugins and tools

Font Awesome

This site uses Font Awesome for the consistent display of fonts and symbols. The provider is Fonticons, Inc., 6 Porter Road Apartment 3R, Cambridge, Massachusetts, USA.

When you visit a page, your browser loads the required fonts into its browser cache to display texts and symbols correctly. For this purpose, your browser must connect to the Font Awesome servers. This means that Font Awesome becomes aware that this website was accessed via your IP address. Font Awesome is used on the basis of Art. 6 (1) (f) GDPR. We have a legitimate interest in the consistent presentation of the typeface on our website.

More information about Font Awesome can be found at https://fontawesome.com/privacy.

Google Analytics 4

This website uses functions of the Google Analytics web analytics service. The provider is Google Ireland Limited (»Google«), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics allows us to analyse the behaviour of our website visitors. We receive various usage data, such as page views, time spent, operating systems used, and the user's origin. This data is combined into a user ID (client ID) and assigned to the respective devices. With Google Analytics we can also record your mouse and scroll movements and clicks, among other things. Google Analytics also uses various modelling approaches to supplement the collected data sets and uses machine-learning technologies for data analysis.

Google Analytics uses technologies that enable the recognition of the user for the purpose of analysing user behaviour (e. g. cookies or device fingerprinting). The information collected by Google about the use of this website is generally transmitted to a Google server in the USA and stored there.

This service is used on the basis of your consent under Art. 6 (1) (a) GDPR and § 25 (1) TDDDG. Consent can be withdrawn at any time.

Data transfers to the USA are based on the EU Commission's standard contractual clauses. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/. Google is certified under the »EU-US Data Privacy Framework« (DPF).

IP anonymisation

On this website, Google Analytics IP anonymisation is enabled. This means that your IP address is shortened by Google within the EU member states or in other contracting states of the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, compile reports on website activity, and provide other services related to website use and internet use to the website operator.

Storage period

Data stored at Google at user and event level that is linked to cookies, user IDs (e. g. user ID), or advertising IDs (e. g. DoubleClick cookies, Android advertising ID) is anonymised or deleted after 2 months.

Data processing agreement

We have concluded a data processing agreement with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

Further information on the handling of user data at Google Analytics can be found in Google's privacy policy: https://policies.google.com/privacy?hl=de.

jsDelivr

We integrate scripts and libraries via the jsDelivr content delivery network. According to the provider, no transfer of personal data takes place when using jsDelivr. More information at https://www.jsdelivr.com/privacy/.

6. eCommerce and payment providers

Processing of data (customer and contract data)

We collect, process and use personal data only insofar as it is necessary for the establishment, content arrangement, or modification of the legal relationship (master data). This is done on the basis of Art. 6 (1) (b) GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures. We collect, process and use personal data about the use of this website (usage data) only insofar as this is necessary to enable the user to use the service or to invoice them.

The collected customer data will be deleted after completion of the order or termination of the business relationship. Statutory retention periods remain unaffected.

Data transfer when concluding a contract for services and digital content

We transfer personal data to third parties only if this is necessary in the context of contract processing, such as to the bank entrusted with payment processing. No further transfer of data takes place, or only if you have expressly consented to the transfer. Your data will not be passed on to third parties without explicit consent, e. g. for advertising purposes.

The basis for data processing is Art. 6 (1) (b) GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures.

7. General storage period

Unless a more specific storage period has been mentioned within this privacy policy, your personal data will remain with us until the purpose for data processing ceases to apply. If you assert a legitimate request for deletion or revoke consent to data processing, your data will be deleted, provided we have no other legally permissible grounds for storing your personal data (e. g. tax or commercial law retention periods); in the latter case, deletion will take place after these grounds no longer apply.