Schröder+Schömbs
Public Relations GmbH

Torstr. 107, 10119 Berlin

Phone number: +49 30 349 964 – 50, Fax machine: +49 30 349 964 – 79
Email: 

Managing directors: Michael Hetzinger, Herbert Schmitz

Office and Register Court Berlin, commercial register HRB 45 908
tax number 37/470/20471, turnover tax ID number DE 156859089

This imprint also applies to our Facebook profile and pages

Design & realisation: Neue Werte GmbH

Privacy policy following the GDPR

The protection of personal data is important to us. When we receive personal information, we treat it with confidentiality and protect it in accordance with the European General Data Protection Regulation (GDPR) as well as country-specific data protection regulations applicable to Schröder+Schömbs PR GmbH.

I. Notice concerning the party responsible for this website

Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in member states of the European Union and other provisions related to data protection is:
Schröder+Schömbs PR GmbH
Torstraße 107
10119 Berlin
Deutschland
Tel.: +49 30 349 964 0
E-Mail: hallo@schroederschembs.com
Website: www.schroederschoembs.com

II. Notice concerning the data protection officer responsible for this website

Christian Jacob
Sven-Hedin-Str. 68
14163 Berlin
Deutschland
Tel.: 0172 310 38 39
E-Mail: dsb@schroederschoembs.com

III. General information about data processing

1. Extent of processing of personal information

We process personal information of data subjects only when it is necessary to the functioning of our website, including its contents and services. The processing of personal information of our users generally only occurs after their agreement. An exception are cases, in which the prior collection of consent is not possible and the processing of data is permitted through written regulations.

2. Legal grounds for the processing of personal information

If we obtain the consent of data subjects for the processing of personal information, the legal ground is article 6, section 1, lit. a of the European General Data Protection Regulation (GDPR). If the processing of personal information is necessary for the performance of a contract to which the data subject is party, as is the case, for example, when processing operations are necessary for the supply of goods or to provide any other service, the legal ground is article 6, section 1, lit. b of the GDPR. The same applies to such processing operations which are necessary for carrying out pre-contractual measures, for example in the case of inquiries concerning our products or services. If the processing of personal information is necessary for the execution of legal responsibilities to which our company must adhere to, the legal ground is article 6, section 1, lit. c of the GDPR. In rare cases, the processing of personal information may be necessary to protect the vital interests of the data subject or of another natural person. This would be the case, for example, if a visitor were injured in our company and his name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or other third party. Then, the legal ground is article 6, section 1, lit. d of the GDPR. If the processing of personal information occurs in the name of justified interests of our company or that of third parties and has a higher priority than the interests, rights, and basic freedoms of the data subject in question, the legal ground is article 6, section 1, lit. f of the GDPR.

3. Erasure of data and duration of data storage

Personal information of a data subject is deleted or blocked when the purpose of prior retention has been fulfilled. The storage of information may continue if it was explicitly allowed by a European or national law maker in ordinances, laws or other guidelines, to which the responsible has to adhere to. The blocking or deletion of data also occurs when the respective statutory retention period has ended. After expiration of that period, the corresponding data is routinely deleted, as long as it is no longer necessary for the fulfillment of the contract or the initiation of a contract.

IV. Provisioning of the website and creation of log files

1. Description and extent of data processing

The website of the Schröder+Schömbs PR GmbH collects a series of general data when a data subject or automated system accessed our website.
The following data is collected from an accessing entity:
(1) Browser type and browser version
(2) Operating system
(3) Internet service provider
(4) IP address
(5) Date and time of the access
(6) the website from which an accessing system reaches our website (so-called referrers)
(7) websites, which are accessed by the system of the user through our website
Option 1: The log files contain any IP addresses or other data which could enable direct association to a data subject. For example, this could be the case when a link from or to a website contains personal information. This type of data is also saved in log files within our system. A retention of such data together with personal information of a data subject does not occur.
Option 2: The log files do not contain any IP addresses or other data, which could enable direct association to a data subject. The type of data is also saved in log files within our system. Not included in this process are IP addresses or other data, which could enable the identification of a data subject. A retention of such data together with personal information of a data subject does not occur.

2. Legal grounds for data processing

The legal ground for data processing is article 6, section 1, lit. f of the GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.

3. Purpose of data processing

The temporary storage of an IP address through our system is necessary to facilitate a proper delivery of our website to the computer of a data subject. In this instance, the IP address of a data subject has to be saved for as long as the entity is accessing our website.
The retention in log files occurs to ensure functionality of the website. In addition, the data serves to optimize the content of our website and ensures the protection of our informational systems. An evaluation of the data for marketing purposes does not happen. The legal ground for our purposes is article 6, section 1, lit. f of the GDPR.

4. Duration of data retention

Data will be deleted once it has fulfilled its purpose or isn’t needed anymore. Information that is collected while accessing the website will be deleted once a session has concluded. Saved log files are deleted automatically after maximally seven days. The retention of data past that time frame is possible. In this case, the IP address of a data subject is deleted or altered in a way that prevents later identification or association.

5. Possibility to object and remove

The collection of data to correctly display our website and the retention of data in log files is crucial to the functioning of our website. Thus, there does not exist a possibility to object on behalf of the data subject.

V. Cookies

a) Description and extent of data processing

Our website utilizes cookies. Cookies are text files that are stored in a computer system via an Internet browser. When a data subject accesses a website, a cookie can be saved on his or her operating system. Many cookies contain a so-called cookie ID. A cookie ID consists of a character string through which a website can identify the specific type of browser being used. We utilize cookies to improve and enhance our website for users. Some elements of our website require that an accessing browser can be recognized even after changing pages. Within the cookie, the following data is saved and transmitted:

(1) language settings
(2) log-in information
Furthermore, we use cookies that enable an analysis of a data subject’ behavior on our website. This way, the following data may be saved and transmitted:
(1) search terms
(2) frequency of site accesses
(3) utilisation of website-functions.
The subsequently collected personal information of data subjects is then pseudonymized using technical provisions. Thus, the identification of accessing data subjects is no longer possible. Any data collected with this method is not saved with a data subject’s other personal information.

b) Legal grounds for data processing

The legal ground for data processing is article 6, section 1, lit. f of the GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.

c) Purpose of data processing

Through the use of cookies, the Schröder+Schömbs PR GmbH can provide users of this website with more user-friendly services that would not be possible without any cookie settings. In fact, some functions of our website cannot be offered without the utilisation of cookies. In order to use them, it is necessary that a browser can be recognized after changing pages.
Cookies are necessary for the following functions:
(1) Adoption of language preferences
(2) Retention of search terms
Any user data collected through the technically necessary cookies are not used to generate user profiles. The utilisation of analytical cookies serves the purpose of improving our website and our content. The analytical cookies send us information about how our website is being used and enables us to optimize our services (e.g. Google Analytics – see below). The legal ground for our purposes is article 6, section 1, lit. f of the GDPR.

e) Duration of data retention, possibility to object and remove

Preferences about the duration of data retention and the possibility to object or remove cookies is saved on a user’s computer and subsequently transmitted to our website. Thus, users have full control over the utilisation of cookies. By changing one’s settings within an internet browser, one can deactivate or limit the transmission of cookies. Previously saved cookies can be deleted at any time. This can also occur automatically. If cookies are deactivated for our website, not all of our functions can be used in full capacity.

1. Description and extent of data processing

On our website exists the possibility to copy a link of a press release or a blog entry. This link leads to “feedly” and is activated through the active pasting of a data subject. For this purpose the following data is collected:
(1) IP addresses of accessing systems
(2) Date and time

VI. Contact formular and Email contact

1. Description and extent of data processing

The website of the Schröder+Schömbs PR GmbH contains information that enables a quick electronic contact to our enterprise, as well as direct communication with us, also including a general address of the so-called electronic mail (e-mail address). If a data subject contacts the controller by email or via our contact form, personal data transmitted by the data subject is automatically stored. Such information is not shared with third parties – it is only used for processing a conversation.

2. Legal grounds for data processing

The legal ground for data processing is article 6, section 1, lit. f of the GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract. Legal ground for the processing of data transmitted via email is also article 6 section 1 lit. f of the GDPR. Should the purpose of an e-mail contact be the completion of a contract, the legal ground for data processing is article 6 section 1 lit. b of the GDPR.

3. Purpose of data processing

The processing of personal information received through an input screen serves the sole purpose of processing or contacting the data subject in question. Since contact is established through email in these cases, our interest in processing any received data is justified. Other personal information transmitted during the process of sending and delivering emails is utilized to prevent abuse of the contact formular and protect our technical systems.

4. Duration of data retention

Data will be deleted once it has fulfilled its purpose or isn’t needed anymore. Information that is collected from the input mask, the contact formular, or received via email will be deleted once a conversation has concluded. A conversation concludes when circumstances suggest, that the topic of conversation has been discussed and clarified to its fullest extent. Other personal information collected during the sending of emails is deleted automatically after maximally seven days.

5. Possibility to object and remove

At any point in time, a data subject can remove his or her consent for processing previously collected personal information. When a data subject establishes contact with us through email, the individual can object to the retention of personal information. In a case like this, a conversation cannot be continued. The request to withdraw consent for the retention of data has to be submitted in written form – such as via email. All personal information that had been saved during the establishing of contact is subsequently deleted.

VII. Rights of the data subject

The following list includes all rights of the data subject according to the GDPR. Rights which do not pertain to the proprietary website in question are not listed. Thus, the list can be shortened. Data subjects whose personal information is collected, processed, or saved have the following rights:

1. Right of confirmation

Each data subject shall have the right granted by the European legislator to obtain from the controller the confirmation as to whether or not personal data concerning him or her is being processed. Should processing of data take place, the data subject can require the following disclosure:
(1) the purposes of the processing
(2) the categories of personal data concerned
(3) the recipients or categories of recipients to whom the personal data have been or will be disclosed
(4) where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period
(5) the existence of the right to request from the controller rectification or erasure of personal data, or restriction of processing of personal data concerning the data subject, or to object to such processing
(6) the existence of the right to lodge a complaint with a supervisory authority
(7) where the personal data are not collected from the data subject, any available information as to their source
(8) the existence of automated decision-making, including profiling, referred to in article 22 section 1 and 4 of the GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and envisaged consequences of such processing for the data subject.
Furthermore, the data subject shall have a right to obtain information as to whether personal data is transferred to a third country or to an international organisation. If this is the case, the data subject shall have the right to be informed of the appropriate safeguards listed in article 46 of the GDPR relating to the transfer.
The right to confirmation can be limited should it interfere or completely hinder the statistical purposes or should a limitation be necessary for said statistical purposes.

2. Right to rectification

Each data subject shall have the right granted by the European legislator to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. The right to rectification can be limited should it interfere or completely hinder the statistical purposes or should a limitation be necessary for said statistical purposes.

3. Right of restriction of processing

Under the following conditions, a data subject may demand a restriction of processing personal data:
(1) The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data.
(2) The processing is unlawful and the data subject opposes the erasure of the personal data and requests instead the restriction of their use instead.
(3) The controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defence of legal claims.
(4) The data subject has objected to processing pursuant to article 21, section 1 of the GDPR pending the verification whether the legitimate grounds of the controller override those of the data subject.
Once the processing of personal information has been restricted by a data subject, the data in question can only only be processed with explicit consent by the data subject, on legal grounds regarding the execution, exercise, defense, or protection of legal claims on the data subject’s behalf or other judicial parties, or in the name of public interest by the Union or Member states.
If the right of restriction of processing is being infringed upon by one of the previously named reasons, the data subject will be notified about any changes. The right to restriction of processing can be limited should it interfere or completely hinder the statistical purposes or should a limitation be necessary for said statistical purposes.

4. Right to erasure (Right to be forgotten)

a) Obligation to erase

Data subjects can demand that the controller delete all personal information without any delay. The controller is obligated to do so immediately if one of the following occurs:
(1) The personal data is no longer necessary in relation to the purposes for which they were collected or otherwise processed.
(2) The data subject withdraws consent to which the processing is based according to point (a) of article 6, section 1 of the GDPR, or point (a) of article 9, section 2 of the GDPR, and where there is no other legal ground for the processing.
(3) The data subject objects to the processing pursuant to article 21, section 1 of the GDPR and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to article 21, section 2 of the GDPR.
(4) The personal data has been unlawfully processed.
(5) The personal data must be erased for compliance with a legal obligation in Union or Member State law to which the controller must adhere to.
(6) The personal data have been collected in relation to the offer of information society services referred to in article 8, section 1 of the GDPR.

b) Information for third parties

Where the controller has made personal data public and is obliged pursuant to article 17, section 1 to erase the personal data, the controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform other controllers processing the personal data that the data subject has requested erasure by such controllers of any links to, or copy or replication of, those personal data, as far as processing is not required.

c) Exceptions

The right to erasure does not apply if the processing of personal information is required by one of the following:
(1) the exercise of the right to free speech and free information
(2) for the execution of a legal obligation required by a Union or Member State, to which the controller must adhere to or for the fulfillment of a responsibility that lies in the public interest that the controller has been tasked with
(3) public interests that pertain to public health under article 9, section 1 of the GDPR
(4) public interests that pertain to scientific or historical research, statistical purposes, and public archives under article 89, section 1 of the GDPR as long as the previously mentioned right under section a) impedes or prevents the realization of the mentioned goals
(5) the assertion, exercise, or defense of legal claims

5. Right to notification

Once a data subject has enacted their right of rectification, erasure, or restriction of processing and has notified the data protection officer in question, our company is required to notify all recipients of a data subject’s personal information about the requested limitations. This right to notification does not hold true if the notification of data recipients is impossible or causes an unreasonable amount of expenditures. The data subject has the right, however, to be notified about all recipients in question.

6. Right to data portability

Each data subject shall have the right granted by the European legislator, to receive the personal data concerning him or her, which was provided to a controller, in a structured, commonly used and machine-readable format. He or she shall have the right to transmit the data in question to another controller without hindrance from the controller to which the personal data have been provided, as long as the processing is based on consent pursuant to point (a) of article 6, section 1 of the GDPR or point (a) of article 9, section 2 of the GDPR, or on a contract pursuant to point (b) of article 6, section 1 of the GDPR, and the processing is carried out by automated means, as long as the processing is not necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
Furthermore, in exercising his or her right to data portability pursuant to article 20, section 1 of the GDPR, the data subject shall have the right to have personal data transmitted directly from one controller to another, where technically feasible and when doing so does not adversely affect the rights and freedoms of others.
The right to data portability does not apply to the processing of personal information that is necessary for a specific task, is of public interest, or is required by the controller under federal orders.

7. Right to object

Each data subject shall have the right granted by the European legislator to object, on grounds relating to his or her particular situation, at any time, to processing of personal data concerning him or her, which is based on point (e) or (f) of article 6, section 1 of the GDPR. This also applies to profiling based on these provisions. The Schröder+Schömbs PR GmbH shall no longer process the personal data in the event of the objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defence of legal claims.
If the Schröder+Schömbs PR GmbH processes personal data for direct marketing purposes, the data subject shall have the right to object at any time to the processing of personal data concerning him or her. This also applies to profiling to the extent that it is related to such direct marketing. If the data subject voices objections to the Schröder+Schömbs PR GmbH about the processing of personal information for direct marketing purposes, the Schröder+Schömbs PR GmbH will cease such activities.
The data subject is free in the context of the use of information society services, and notwithstanding Directive 2002/58/EC, to use his or her right to object by automated means using technical specifications.
In addition, the data subject has the right, on grounds relating to his or her particular situation, to object to processing of personal data concerning him or her by the Schröder+Schömbs PR GmbH for scientific or historical research purposes, or for statistical purposes pursuant to article 89, section 1 of the GDPR, unless the processing is necessary for the performance of a task carried out for reasons of public interest.

8. Right to withdraw data protection consent

Data subjects shall have the right granted by the European legislator to withdraw their consent to the processing of their personal data at any time.
If a data subject wishes to exercise the right to withdraw the consent, he or she may, at any time, contact any employee of the Schröder+Schömbs PR GmbH.

9. Automated individual decision-making, including profiling

Each data subject shall have the right granted by the European legislator not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her, or similarly significantly affects him or her, as long as the decision (1) is not necessary for entering into, or the performance of, a contract between the data subject and a data controller, or (2) is not authorised by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests, or (3) is not based on the data subject’s explicit consent.
However, these decisions may not be based on special categories of personal information based on article 9, section 1 of the GDPR in the case that article 9, section 2, lit. a or g of the GDPR does not apply and appropriate measures for the protection of the rights and freedoms of the data subject have been taken. With regard to the cases (1) and (3), the controller has to take appropriate measures to protect the rights and freedoms as well as interests of the data subject in question, including the right to intervene with the possibility to present one’s point of view and challenge any decision.

10. Right to submit a complaint with a supervisory board

Regardless of other bureaucratic and legal remedies or actions, a data subject has the right to file a complaint to a supervisory board in the state in which he or she resides and works in or in which an alleged infringement of personal rights according to the GDPR has taken place. The supervisory board to which a data subject may file a complaint is obligated to notify the plaintiff with any updates and the possibility of legal assistance pursuant to article 78 of the GDPR.

Important information about the utilisation of our website and services:

INCORPORATION OF SERVICES AND CONTENTS BY THIRD PARTIES

It is possible that within our website contents and services from third parties (such as videos by Youtube, maps by Google-Maps, RSS-Feeds, or graphics) are incorporated. This always assumes that the so-called third party acquires the IP address of a data subject. Without an IP address, none of the contents can be send to the browser of the data subject in question. Thus, the IP address is necessary for the correct display of content. We try our best to use services that only utilise such personal information for the delivery of contents. However, we have no influence over whether third parties use personal information such as an IP address for statistical purposes. Should that become known, we will notify data subjects immediately.

GETTY IMAGES

On this website, the controller has integrated images by the company Getty Images. Such images can be easily recognized by a frame featuring the caption “Getty Images”. The correct display of images requires the company Getty images to collect the IP address of the internet connection through which a data subject accesses our website. Thus, the IP address is necessary for the display of contents. As far as we are informed, the IP address is only used for this purpose. Nonetheless, we have no influence over whether Getty Images uses personal information such as an IP address for statistical purposes. Should we receive any notice that personal information is used for purposes other than the previously mentioned, any data subject will be notified and images in question removed. More information about the privacy policy of Getty Images can be found here: http://www.gettyimages.de/Corporate/PrivacyPolicy.aspx

GOOGLE ANALYTICS

On this website, the controller has integrated components of Google Analytics (with the anonymizer function). Google Analytics is a web analytics service. Google Analytics utilizes so-called “cookies”- text files that are saved on an accessing system and enable an analysis of the utilisation of a website. Any collected information about a user’s behavior is transmitted to a Google Server located in the United States and stored there on site.
In the event of having activated the IP-anonymization on this website, however, the IP address of a data subject will be abbreviated previously in member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases, the full IP address is transferred to a Google server in the USA and is abbreviated there. The anonymization of IP addresses on this website is activated. On the instruction of the operator of this website, Google will use this information to evaluate a data subject’s use of the website in order to prepare reports on the website activities and to provide other services for the website operator relating to website use and internet use. The IP address transmitted by a data subject’s browser in the context of Google Analytics will not be combined with other data of Google. A data subject can prevent the storing of the cookies by an appropriate setting of their browser software; please note, however, that in this case a data subject might not be able to use the full range of all functions of this website.
Moreover, a data subject can prevent the collection of the data (including IP address) generated by a cookie and relating to a data subject’s use of the website for Google as well as the processing of such data by Google by downloading and installing the browser plugin available at the following:
http://tools.google.com/dlpage/gaoptout?hl=de.

 As an alternative to the Browser-add-on or within the browser on mobile devices, please click the following link to prevent the collection and processing of personal information by Google Analytics within our webpage. During this process, an Opt-Out-Cookie is created within an accessing system. Once cookies are deleted, the link has to be clicked again to ensure preventative measures.

UTILISATION OF FACEBOOK SOCIAL PLUGINS

If a data subject utilizes a function of our online services that is provided through a Facebook plugin, the accessing system in question will connect directly to the servers of Facebook. The content of the plugin will be directly transmitted from Facebook to the accessing browser and subsequently incorporated into the online service. During this process, previously collected and processed data enables the creation of user profiles. Thus, we have no influence to what extent Facebook collects personal data and inform the data subject of our current state of knowledge. Through the incorporation of plugins, Facebook receives the information that a data subject called up the specific website containing components of the online service. If a data subject is logged into their Facebook account simultaneously, Facebook can associate the accessing system to a specific account. If a data subject interacts with plugins, such as utilizing the like button or leaving a comment, the information in question is transmitted from the accessing system to Facebook and is subsequently stored there. Even if a data subject does not have a Facebook account, there is still a possibility that Facebook will acquire the IP address of an accessing system and save it. According to Facebook, only an anonymized version of it is stored in Germany. The purpose and extent of data collection as well as further processing and utilisation by Facebook, including the rights and privacy settings to protect data subjects can be found in the data policy of Facebook: https://www.facebook.com/about/privacy/

If a data subject has a Facebook account, but does not want Facebook to collect data about a certain online service and connect it to a data subject’s account, he or she can log out of Facebook and delete the cookies in question before utilizing our online service. Additional settings and objections regarding the utilisation of data for marketing purposes are possible within the profile settings in Facebook https://www.facebook.com/settings?tab=ads or via the American website http://www.aboutads.info/choices/ or the European website http://www.youronlinechoices.com/. Changes in settings take place independent from a medium, meaning that they will be applied to all accessing systems, such as computers or mobile devices.

CONVERSATION MEASUREMENT WITH THE CONVERSATION PIXEL BY FACEBOOK

With the consent of a data subject, we utilize the so-called “Facebook Pixel” operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). The pixel enables us to follow the actions of users after they have seen or clicked on a Facebook ad. By utilizing the pixel, we can analyze the effectiveness of Facebook ads for statistical and marketing purposes. The data that the pixel collects is anonymous – meaning that we do not see any personal information about users. However, we would like to notify data subjects that such personal information is saved and processed by Facebook. Facebook can associate such data with a specific account and utilize the information for their own marketing purposes, as stated in the data utilisation policy by Facebook https://www.facebook.com/about/privacy/. A data subject can also consent to Facebook and other partners to send ads on Facebook as well as other websites. For this purpose, a cookie can be saved on the accessing system. The decision to consent cannot be made by individuals under the age of 13. If a data subject is below that age, we advise that he or she consult with their parent or legal guardian.
A data subject may change their settings in regards to Facebook ads under the following link:
https://www.facebook.com/ads/website_custom_audiences/.
Source : http://allfacebook.de/policy/rechtliche-voraussetzungen-fur-den-einsatz-des-besucheraktions-pixels-von-facebook-inkl-einwilligungsmuster
(Altered by the website operator.)

INSTAGRAM

On this website, the controller has integrated components of the company Instagram, operated by Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA. If a data subject is logged into their Instagram account while visiting our website, he or she will automatically connect the content of our website to their own account upon clicking on any of the Instagram buttons. This automatic link enables Instagram to associate the accessing system to a specific account. We would also like to emphasize that we do not receive any notification about the content of transferred data or its subsequent utilisation. More information regarding the privacy policy of Instagram can be found here: http://instagram.com/about/legal/privacy/

PINTEREST

On this website, the controller has integrated components of the company Pinterest, operated by Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA („Pinterest“). If a data subject calls up a website containing such a plugin, the browser will establish a direct connection to the servers of Pinterest. During this process, the plugin transmits protocol data to the server of Pinterest in the United States. This protocol data may contain a data subject’s IP address, the address of previously visited websites which also contained Pinterest functions, the type and setting of a browser, the data and time of an accessing request, and a data subject’s utilisation behavior of Pinterests as well as their cookies. The purpose and extent of data collection as well as further processing and utilisation by Pinterest, including the rights and possibilities to protect data subjects can be found in the data policy of Pinterest: https://about.pinterest.com/de/privacy-policy

+1 PUSH BUTTON BY GOOGLE+

On this website, the controller has integrated “+1” push buttons of the social network Google Plus, operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States. The push button is easily recognized through the “+1” symbol on white or colored background. If a data subject calls up a website containing such a push button, the browser will establish a direct connection to the servers of Google. The content of the push button “+1” will be directly transmitted from Google to the accessing Browser and subsequently incorporated into the online service. Thus, we have no influence to what extent Google collects a data subject’s personal data. According to Google, no personal information is collected without the explicit clicking of the push button. Even after clicking the push button in question, Google solely collects and processes the IP address of a data subject who is simultaneously logged into their Google account.
The purpose and extent of data collection as well as further processing and utilisation by Google, including the rights and possibilities to protect data subjects can be found in the data policy of Google regarding the push button “+1”: http://www.google.com/intl/de/+/policy/+1button.html and the Q&A: http://www.google.com/intl/de/+1/button/.

TWITTER

On this website, the controller has integrated components of Tumblr, operated by Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA. Such components are easily recognizable through words such as “Twitter” or “Follow”, as well as a stylized little blue bird. By using the provided buttons, a data subject may share some of our content or follow our account on Twitter. If a data subject calls up a website containing such a button, his or her browser will establish a direct connection to the servers of Twitter. The content of these buttons will be directly transmitted from Twitter to the accessing Browser and subsequently incorporated into the online service. Thus, we have no influence to what extent Twitter collects personal data and inform the data subject of our current state of knowledge. As far as we’re informed, only the IP address of a data subject and the URLs of websites in question are transferred solely for the purpose of displaying the buttons. More information about the privacy policy of Twitter can be found here: http://twitter.com/privacy.

XING

On this website, the controller has integrated components of XING. If a data subject calls up a website containing such a component, his or her browser will establish a direct connection to the servers of XING AG (“XING”) for a short duration of time to enable “XING Share-Buttons” and related functions. XING does not save any personal information of a data subject when accessing the website. In particular, XING does not save any IP addresses. Furthermore, XING does not conduct any analysis of user behavior through the use of cookies when using the “XING Share-Button”. More information about the privacy policy of the “XING Share-Button” and additional information can be found here:
https://www.xing.com/app/share?op=data_protection

TUMBLR

On this website, the controller has integrated components of Tumblr, operated by Tumblr, Inc., 35 East 21st St, 10th Floor, New York, NY 10010, USA, hilfe@tumblr.com. Such components are easily recognized through the term “Tumblr”. By using the provided buttons, a data subject may share some of our content or follow our account on Tumblr. If a data subject calls up a website containing such a button, his or her browser will establish a direct connection to the servers of Tumblr. The content of these buttons will be directly transmitted from Tumblr to the accessing Browser and subsequently incorporated into the online service. Thus, we have no influence to what extent Tumblr collects personal data and inform the data subject of our current state of knowledge. As far as we’re informed, only the IP address of a data subject and the URLs of websites in question are transferred solely for the purpose of displaying the buttons. More information about the privacy policy of Tumblr can be found here: http://www.tumblr.com/policy/de/privacy.

DATA POLICY FOR THE UTILISATION OF A YOUTUBE PLUGIN

On this website, the controller has integrated plugins by the company Youtube, belonging to Google Inc., located in San Bruno/California, United States. If a data subject calls up a website containing such a plugin, his or her browser will establish a direct connection to the servers of Youtube. During this process, the youtube servers receive information about which of our webpages is being accessed. If a data subject is simultaneously logged into their Youtube account, the company can directly associate the accessing system to a specific account. A data subject can prevent this association by logging out of their account before accessing our webpage. More information about the collection and processing of personal information by Youtube can be found within the privacy policy under www.youtube.com.

Source: Flegl Rechtsanwälte GmbH (translated)