1 – Name and address of the controller
2 – Name and address of the data protection officer
3 – General information on data processing
4 – Provision of website and creation of log files
8 – Contact form and email contact
9 – Rights of the data subject
11 – Hotjar
12 – External Tracking
13 – Order form
14 – Disclosure of data to payment service providers
15 – Sample texts for vendors & affiliates
The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is:
Digistore24 MSLW Limited
Managing Directors Francis Wolff and Sven Platte
The Black Church
St. Mary’s Place
D07 P4AX Dublin 7
Irlanda
Email: dataprotection@digistore24.com
The data protection officer of the controller is:
Digistore24 MSLW Limited
Attn: Fran Jones
The Black Church, St. Mary’s Place
Dublin 7
Ireland
Email: compliance@digistore24.com
We only collect and use the personal data of our users insofar as this is necessary to provide a functional website as well as our contents and services. The collection and use of the personal data of our users regularly takes place only with the consent of the user. An exception applies in those cases where prior consent cannot be obtained for practical reasons and the processing of the data is permitted by law.
Insofar as we obtain your consent for the processing of personal data, point (a) of Article 6 (1) of the European General Data Protection Regulation (GDPR) serves as the legal basis for the processing of personal data.
Point (b) of Article 6 (1) GDPR serves as the legal basis for the processing of personal data required for the performance of a contract to which you are a party. This also applies to processing operations that are necessary to carry out pre-contractual measures.
Point (c) of Article 6 (1) GDPR serves as the legal basis insofar as the processing of personal data is necessary for compliance with a legal obligation to which we are subject.
If processing is necessary to protect a legitimate interest of our company or a third party, and your interests, fundamental rights and freedoms do not override the former interest, point (f) of Article 6 (1) serves as the legal basis for processing.
Personal data concerning you shall be erased or blocked as soon as the purchase of storage ceases to apply. Furthermore, data may be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which we are subject. The data shall also be blocked or erased if a storage period required by the aforementioned standards expires, unless there is a need for further data storage for the conclusion or performance of a contract.
Every time you visit our web page, our system automatically collects data and information from the computer system of the visiting computer.
The following data is collected here:
Information about the browser type and version used
The operating system of the user
The internet service provider of the user
The IP address of the user
Date and time of access
Websites from which the system of the user reaches our web page
This data is not stored together with other personal data of the user.
The legal basis for the temporary storage of data and log files is point (f) of Article 6 (1) GDPR.
The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the computer of the user. For this to happen, the IP address of the user must remain stored for the duration of the session.
The data is stored in log files to ensure the functionality of the website. In addition, the data serves to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not happen in this context.
Our legitimate interest in data processing pursuant to point (f) of Article 6 (1) GDPR also lies in these purposes.
The data shall be erased as soon as it is no longer necessary to achieve the purchase for which it was collected.
Storage of data in the log files: The IP address and the HTTP user agent are stored in plain text in the web server log files for a maximum of 6 weeks to detect and analyze attacks on our website.
Storage of data in our database: An anonymous storage as hash is carried out in our database for 7 days in order to be able to assign and pay out the sales commission to our affiliates.
The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. You therefore have no possibility of objection.
Our website uses cookies. Cookies are text files stored in the internet browser/by the internet browser on the computer system of the user. If a user visits a website, a cookie may be stored on the operating system of the user. This cookie contains a typical character string that enables a unique identification of the browser when the website is called up again. We use cookies with two durations:
We store cookies until the end of the session to enable a login (a session). This is necessary so that our server recognizes your web browser after you have entered your login data. A session is also started during an order process so that the order can be processed correctly.
We store cookies for up to 185 days:
for affiliate tracking (so that we can provide our service i.e. the sale of a product. This is only possible in combination with the IP address and cookie)
the screen size (for a better display of the website)
for certain authorizations (e.g. for the authorization to make test purchases)
to prevent double orders (the cookie ensures that a warning message appears if you place a double order)
for the language setting
for the “Stay signed in” function
Products that have been placed in the shopping cart
Without cookies we cannot guarantee the correct functioning of our website.
The legal basis for the processing of personal data by using technically necessary cookies is point (f) of Article 6 (1) GDPR.
The main service of Digistore24 is the sale of digital and other similar products over the internet. To this end, the buyer is given information and guidance about the products on the websites of third parties. In order for the providers of this information to be able to maintain their service, Digistore24 often reimburses their advertising costs. This is absolutely necessary for the operation of Digistore24.
The purpose of using technically necessary cookies is to simplify the use of websites for you. Some of the functions on our website cannot be offered without using cookies. In this regard, it is necessary that the browser is recognized even after a page change.
For these purposes, our legitimate interest lies in the processing of personal data pursuant to point (f) of Article 6 (1) GDPR.
Cookies are stored on the user’s computer and transmitted to our page. Therefore, you as a user also have full control over the use of cookies. You can deactivate or limit the transmission of cookies by adjusting the settings in your internet browser. Cookies that have already been stored can be erased at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to fully use of all of the website functions.
If you purchase goods or services from us and provide us with your email address in the process, this may subsequently be used by us to send you a newsletter. In such a case, the newsletter shall only directly advertise your own similar goods or services. No data is passed on to third parties in connection with data processing for sending out newsletters. The data shall be used exclusively for sending the newsletter.
The legal basis for the processing of data after registration for the newsletter by the user is point (b) of Article 6 (1) GDPR and in accordance with Chapter 3 of the Consumer Protection Act 2007, as amended.
The collection of the user’s email address serves the purpose of sending the newsletter.
The data is erased as soon as it is no longer necessary to achieve the purpose for which it was collected. The email address of the user shall therefore be stored as long as the subscription to the newsletter is active.
You can cancel your subscription to the newsletter at any time. For this purpose, there is a corresponding link in every newsletter.
On our website we offer you the opportunity to register by providing personal data concerning you. The data is entered into an input mask and is transferred to us and then stored. The data shall not be passed on to third parties.
The following data is collected during the registration process:
The IP address of the user
Date and time of registration
First name
Last name
Address
Email address
Bank details or PayPal email address
If registration serves the performance of a contract to which the user is a party or the implementation of pre-contractual measures, then the additional legal basis for the processing of the data is point (b) of Article 6 (1) GDPR.
The user must register in order to make the following content and services available on our website: provision of the Digistore24 software and performance of the B2B contract with our business customers.
The data is erased as soon as it is no longer necessary to achieve the purpose for which it was collected.
This is the case for the data collected during the registration process, if the registration on our website is canceled or modified, or for the data collected during the registration process to perform a contract or to carry out pre-contractual measures, if the data is no longer required for the performance of the contract. Even after the conclusion of the contract, it may still be necessary to store personal data of the contractual partner in order to fulfill contractual or legal obligations.
As a user you have the possibility to cancel the registration at any time. You can change the data stored about you at any time. To make a corresponding request, you can contact our data protection team using the email address given in chapter 2.
If the data is required to perform a contract or to carry out pre-contractual measures, premature erasure of the data is only possible insofar as there are no contractual or statutory obligations to the contrary.
On our website there is a contact option which refers you to our general email address. In this case, the personal data transmitted with the email shall be stored.
In this context, the data shall not be passed on to any third parties. The data is used exclusively for processing the conversation.
The legal basis for the processing of the data transmitted in the course of sending an email is point (f) of Article 6 (1) GDPR. If the aim of the email contact is to conclude a contract, then the additional legal basis for the processing is point (b) of Article 6 (1) GDPR.
In the case of contact via email, this also constitutes the necessary legitimate interest in the processing of the data.
The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.
The data is erased as soon as it is no longer necessary to achieve the purpose for which it was collected. For the personal data sent by email, this is the case when the conversation with you has ended. The conversation is ended when it can be inferred from the circumstances that the facts in question have finally been clarified.
The additional personal data collected during the sending process shall be erased after a period of seven days at the latest.
You now have the possibility to revoke your consent to the processing of personal data at any time. If you get in contact with us via email, you can object to the storage of personal data concerning you at any time. In such a case, the conversation cannot be continued. In this case, all personal data stored in the course of contacting us shall be erased.
If personal data is processed by you, you are the data subject as defined by the GDPR and you have the following rights against the controller:
You can ask us to confirm whether personal data concerning you will be processed by us. If such processing has happened, you can request the following information from us:
the purposes for which the personal data is processed;
the categories of personal data concerned;
the recipients or categories of recipient to whom the personal data concerning you has been or is still being disclosed;
the planned storage duration of the personal data concerning you, or, if specific information is not possible, criteria for determining the storage period;
the existence of a right to have personal data concerning you corrected or erased, a right to have processing restricted by the controller or a right to object to such processing;
the existence of the right to lodge a complaint to a supervisory authority;
any available information on the origin of the data if the personal data is not collected from the data subject;
the existence of automated decision-making, including profiling referred to in Article 22 (1) and (4) GDPR and, at least in these cases, meaningful information on the logic involved, as well as the significance and the envisaged consequences for the data subject.
You have the right to request information as to whether the personal data concerning you is transferred to a third country or to an international organisation. In this context, you shall have the right to be informed of the appropriate safeguards pursuant to Article 46 GDPR relating to the transfer.
You have the right to rectification and/or completion of personal data concerning you if it is incorrect or incomplete. We must make the rectification without undue delay.
Under the following conditions you may request that the processing of personal data concerning you be restricted:
if you contest the accuracy of the personal data concerning you for a period that enables us to verify the accuracy of the personal data;
the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead;
we no longer need the personal data for the purposes of the processing, but you do need them for the establishment, exercise or defense of legal claims, or
if you have objected to processing pursuant to Article 21 (1) GDPR pending the verification whether our legitimate grounds override your grounds.
If the processing of personal data concerning you has been restricted, such data shall – with the exception of storage – only be processed with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.
If the restriction of the processing is carried out pursuant to the conditions mentioned above, we shall inform you before the restriction is lifted.
You can ask us to erase the personal data concerning you immediately and we shall have the obligation to erase this data without undue delay where one of the following grounds applies:
The personal data concerning you is no longer necessary in relation to the purposes for which it was collected or otherwise processed;
You withdraw your consent on which the processing is based according to point (a) of Article 6 (1) or point (a) of Article 9 (2), and where there is no other legal ground for the processing.
You object to the processing pursuant to Article 21 (1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21 (2) GDPR.
Personal data concerning you has been unlawfully processed.
the personal data has to be erased for compliance with a legal obligation in Union or Member State law to which we are subject;
Personal data concerning you has been collected in relation to the offer of information society services referred to in Article 8 (1) GDPR.
If we have made personal data concerning you public and are obligated to erase it pursuant to Article 17 (1) GDPR, we shall take appropriate measures, including those of a technical nature, taking into account the available technology and implementation costs, to inform those responsible for the data processing who process the personal data that you as the data subject have requested the erasure of all links to this personal data or of copies or replications of this personal data.
The right to be forgotten does not exist insofar as the processing is necessary
to exercise the freedom of expression and information;
to fulfill a legal obligation required for processing under the law of the Union or of the Member States to which we are subject or to perform a task in the public interest or in the exercise of official authority conferred on us;
for reasons of public interest in the area of public health pursuant to points (h) and (i) of Article 9 (2) and Article 9 (3) GDPR;
for archiving purposes in the public interest, scientific or historical purposes or statistical purposes in accordance with Article 89 (1) GDPR insofar as the law referred to under a) is likely to render impossible or seriously impair the attainment of the objectives of such processing, or
for the establishment, exercise or defense of legal claims.
If you have exercised your right to rectification, erasure or restriction, we are obligated to inform all recipients to whom personal data concerning you has been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or would give rise to disproportionate difficulties.
You have the right to be informed of these recipients.
You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format. You also have the right to transmit this data to another controller without hindrance from the controller to which the personal data has been provided, where:
the processing is based on consent pursuant to point (a) of Article 6 (1) or point (a) of Article 9 (2) GDPR or on a contract pursuant to point (b) of Article 6 (1) GDPR and
the processing is carried out by automated means.
In exercising this right, you shall also have the right to request that the personal data concerning you be transferred directly from one data controller to another data controller, insofar as this is technically feasible. The freedoms and rights of other persons shall not be affected by this.
You shall have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on points (e) or (f) of Article 6 (1), including profiling based on these provisions.
We shall no longer process personal data relating to you unless we can provide compelling grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the establishment, exercise or defense of legal claims.
Where the personal data concerning you is processed for direct marketing purposes, you shall have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.
If you object to processing for direct marketing purposes, the personal data shall no longer be processed for such purposes.
In the context of the use of information society services, and notwithstanding Directive 2002/58/EC, you may exercise your right to object by automated means using technical specifications.
You shall have the right to revoke your data protection declaration at any time. The revocation of consent shall not affect the lawfulness of the processing carried out on the basis of the consent until revocation.
Without prejudice to any other administrative or judicial remedy, you shall have the right of appeal to a supervisory authority, in particular in the Member State where you reside, work or the place of the suspected infringement, if you believe that the processing of personal data concerning you is contrary to the GDPR. The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.
The supervisory authority responsible for us is:
The Data Protection Commission
21 Fitzwilliam Square South
Dublin 2DO2 RD28
Ireland
We use Google Analytics on our website, an analysis service of the US company Google Inc. ("Google"), 1600 Amphitheatre Parkway, Mountain View, CA 94043, U.S.A. Google Analytics uses "cookies", small text files that are stored on your computer. These cookies are used to analyze your use of our website. The corresponding data about your user behavior is forwarded to a Google server in the USA where it is evaluated and stored.
If IP anonymization is activated on this website within the member states of the European Union and the Agreement on the European Economic Area, Google will shorten your IP address for the purposes of anonymization. Only in exceptional cases shall there be an uncut transmission to the USA with shortening of the IP address on a server there.
Google shall use this information at the initiative of the owner of this website to evaluate how you use the website. In addition, Google shall use this information to produce reports on website activity and provide other services in connection with the use of the website and the internet for its operators. Google does not amalgamate the IP address transmitted by your browser through the use of Google Analytics with other Google data.
You can prevent the storage of cookies yourself by adjusting an appropriate setting in your browser. However, in this case you may not be able to fully use all the website functions. You can prevent the collection of data generated by the cookie (including your IP address) about your use of the website and the processing of this data by Google. All you need to do is to download and install an additional browser plugin. You can download this plugin using the following link: http://tools.google.com/dlpage/gaoptout?hl=en .
We use Google Maps (API) provided by the software company Google Inc. The responsible party for the European area is Google Ireland Limited, Gordon House, Barrow Street Dublin 4, Ireland. Google Maps is an interactive map service that visualizes geographical data and identifies and processes location data. We use Google Maps to support our customers with filling in address fields. We use Google Maps based on your consent within the meaning of Article 6 (1) (a) GDPR. When you use Google Maps, your personal data is processed and stored. This includes:
Search terms entered
Location data
Your IP address
Usage/metadata
The integration into our website means that cookies are also set, which are used to collect data relating to your user behavior. Google does not clearly communicate whether, where, and for how long this data is stored by Google. However, since Google operates a large part of its servers in the USA, it is safe to assume that the above-mentioned data is also processed and stored there. A list of Google data centers can be found here https://www.google.com/about/datacenters/inside/locations/?hl=en . We have no influence on the storage location of the above-mentioned data. We would like to point out that the European Court of Justice believes that there is not currently an adequate level of protection for data transfers to the USA. This may be accompanied by various risks to the legality and security of data processing. Google uses standard contractual clauses approved by the EU Commission (Article 46 (2) and (3) of the GDPR) as the basis for data processing for recipients located in third countries (outside the European Union, Iceland, Liechtenstein, and Norway) or for data transfers there. These clauses oblige Google to comply with the EU level of data protection when processing relevant data outside the EU. In turn, these clauses are based on an implementation decision made by the EU Commission. If you do not want cookies in general, you can set up your browser so that it always informs you when a cookie is to be set. You can then decide for each individual cookie whether to allow it or not. You can find further information at https://developers.google.com/fonts/faq/privacy and https://www.google.com/intl/en/policies/privacy/ . To delete data stored by Google, please contact Google support at https://support.google.com/.
We use the Google Marketing Platform (formerly known as “Google DoubleClick”) provided by the software company Google Inc. The responsible party for the European area is Google Ireland Limited, Gordon House, Barrow Street Dublin 4, Ireland. This service sets cookies to display relevant ads and to optimize reports and analysis of campaign performance. Google records which ads have already been displayed in the user's browser, thereby preventing multiple displays. Google can also use the cookies to determine whether a user accesses the advertiser's website and purchases a product after an ad has been displayed. According to Google, the cookies used do not contain any personal data. However, your browser also establishes a direct connection with one or more Google servers. This involves the processing of your personal data. This includes:
The accessed website/the accessed website area
Your IP address
Usage/metadata
Google does not clearly communicate whether, where, and for how long this data is stored by Google. However, since Google operates a large part of its servers in the USA, it is safe to assume that the above-mentioned data is also processed and stored there. A list of Google data centers can be found here https://www.google.com/about/datacenters/inside/locations/?hl=en . We have no influence on the storage location of the above-mentioned data. We would like to point out that the European Court of Justice believes that there is not currently an adequate level of protection for data transfers to the USA. This may be accompanied by various risks to the legality and security of data processing. Google uses standard contractual clauses approved by the EU Commission (Article 46 (2) and (3) of the GDPR) as the basis for data processing for recipients located in third countries (outside the European Union, Iceland, Liechtenstein, and Norway) or for data transfers there. These clauses oblige Google to comply with the EU level of data protection when processing relevant data outside the EU. In turn, these clauses are based on an implementation decision made by the EU Commission. You can find further information at https://marketingplatform.google.com/ and https://www.google.com/intl/de/policies/privacy/ To delete data stored by Google, please contact Google support at https://support.google.com/ . The processing is based on your consent within the meaning of Article 6 (1) (a) GDPR.
We use Hotjar to better understand the needs of our users and to optimize the offer on this website. With the help of Hotjar technology, we get a better understanding of our users' experiences (e.g. how much time users spend on which pages, which links they click on, what they like and what they do not like, etc.) and this helps us to tailor our offer to our users' feedback. Hotjar uses cookies and other technologies to collect information about the behavior of our users and their devices (in particular the IP address of the device (collected and stored in anonymous form only), screen size, device type (unique device identifiers), information about the browser used, location (country only), language preferred for displaying our website). Hotjar stores this information in a pseudonymized user profile. Neither we nor Hotjar use this information to identify individual users and it is not amalgamated with other data about individual users. You can object to the storage of a user profile and information about your visit to our website by Hotjar and the setting of Hotjar tracking cookies on other websites by clicking on this opt-out link: https://www.hotjar.com/legal/compliance/opt-out
The Hotjar privacy policy provides information about the handling of personal data at Hotjar: https://www.hotjar.com/legal/policies/privacy
We allow our vendors to use their own tracking code on our order forms after prior verification by Digistore24. In doing so, personal data such as inventory data (e.g., name, address etc.), usage data (e.g., order ID, order time, etc.) and metadata (e.g., IP address, geodata, etc.) is collected. This data shall be used exclusively on the basis of your consent within the meaning of Article 6 (1) (a) GDPR and Section 5 of S.I. No. 336/2011 – European Communities (Electronic Communications Networks and Services) (Privacy and Electronic Communications) Regulations 2011 Here is a list of approved external tracking providers and their respective privacy policies: https://www.digistore24.com/extern/cms/page/frontend/legal/privacy3rdparty/
The data requested on the order form shall be transmitted to the product manufacturer for the performance of the contract pursuant to point (b) of Article 6 (1) GDPR. In addition, the product manufacturer may operate various tracking tools on the order form at their own responsibility. We have no insight into or control over the data processed in this way. Digistore24 is a pure platform in this context, and is available to the customer for individual design. For further information on tracking, please contact the respective product manufacturer.
As part of contractual relationships, we offer data subjects efficient and secure payment options. In addition to banks and credit institutions, we also use other service providers for this purpose (collectively “payment service providers”) (Art. 6 (1) p.1 lit b GDPR).
The data processed by the payment service providers includes inventory data, e.g. name and address, bank data such as account numbers, credit card numbers, passwords, TANs and checksums as well as contractual, recipient or sum-related data. The data is required in order to carry out the transactions. However, the data entered is only processed by the payment service providers and stored by them. In other words, we don’t receive any account or credit card-related data, but rather only information with confirmation or denial of payment. Under certain circumstances, the payment service providers transmit data to credit agencies for the purpose of verifying identity and creditworthiness. In this regard, we would refer you to the terms and conditions and the privacy notice of the respective payment service providers.
The terms and conditions and privacy notice of the respective payment service providers, which can be accessed on the respective websites or transaction applications, shall apply to the payment transactions.
The types of data processed by payment service providers include inventory data (e.g. names, addresses); payment data (e.g. bank details, invoices, payment history); contractual data (e.g. subject matter of contract, term, customer category); usage data (e.g. websites visited, interest in content, access times) and meta/communication data (e.g. device information, IP addresses)
You will then find explanations of how various Digistore24 tools function. As a vendor or affiliate, you can include these texts in your own privacy policy or place a link to them on this policy.
The WordPress plugin offers the possibility to embed various Digistore24 services on your own website e.g. the Social Proof Bubble, the affiliate advertising material generator or other tools.
Each time you embed something, non-personal data is reloaded from the Digistore24 server (e.g. a JavaScript file).
When reloading, your web browser retrieves a web page from the Digistore24. Our server has no control over the extent to which your web browser transmits data to the Digistore24 server. In this context, our server does not transmit any data to the Digistore24 servers.
The data that Digistore24 stores and processes when you access this website is set out by Digistore24 MSLW Limited as the contractor in its own privacy policy. The Digistore24 privacy policy can be found here: https://www.digistore24.com/page/privacy/3/en
The affiliate advertising material generator allows advertising materials to be created automatically. It provides an input field in which you can enter your Digistore24 ID. This way, you receive advertising material with which you can advertise products and services in a quick and easy manner.
In addition to the above, depending on your entry, the system checks whether an affiliate partnership exists. For more details, please refer to the Digistore24 privacy policy: https://www.digistore24.com/page/privacy/3/en
On our website we use various links to Digistore24 offers. The purpose of the links is to draw your attention to products that may be of interest to you.
Some of these links are links to the domain http://digistore24.com of the company Digistore24 MSLW Limited.
If you click on one of the links, you call up a web page on the Digistore24 server.
Our server does not transmit any data to Digistore24, but rather the data is transferred from your browser to Digistore24, as is the case with any visit to a website. We have no control over the extent to which your web browser transmits data to Digistore24.
For more information about the scope of Digistore24 with data from website visits, please read the Digistore24 privacy policy: https://www.digistore24.com/page/privacy/3/en
Digistore24 offers the possibility to embed different services on your own website via HTML and JavaScript codes e.g. the Social Proof Bubble or the Digistore24 shopping cart.
Each time you embed something, non-personal data is reloaded from the Digistore24 server (e.g. a JavaScript file).
When reloading, your web browser retrieves a web page from the Digistore24. Our server has no control over the extent to which your web browser transmits data to the Digistore24 server. In this context, our server does not transmit any data to the Digistore24 servers.
The data that Digistore24 stores and processes when you access this website is set out by Digistore24 MSLW Limited as the contractor in its own privacy policy. The Digistore24 privacy policy can be found here: https://www.digistore24.com/page/privacy/3/en
The following data is transmitted to Digistore24 when the comment function is used:
First Name
Name
Email address
IP address
In addition, other users of the blog can see the written comments and the corresponding name at the end of each post.
Your consent is obtained for the processing of data within the scope of the sending process and is referenced on this privacy statement. The data shall not be passed on to third parties in this context. The data shall be used exclusively to process the conversation.
If you have granted your consent, the legal basis for processing the data is point (a) of Article 6 (1) GDPR.
You have the possibility to revoke your consent to the processing of personal data at any time. If you contact us via email, you can object to the storage of your personal data at any time. In such a case, the conversation cannot be continued. All personal data stored during the period of contact shall be deleted in this case.