Privacy Policy: Your Data Privacy is Important to Us
1. Data Privacy at a Glance General Information
The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data includes all data that can be used to personally identify you. For detailed information on data protection, please refer to our privacy policy listed below this text.
Data Collection on Our Website Who is responsible for data collection on this website?
Data processing on this website is carried out by the website operator. You can find their contact details in the imprint of this website.
How do we collect your data?
Your data is collected when you provide it to us. This may include data that you enter into a contact form, for example.
Other data is automatically collected by our IT systems when you visit the website. This is mainly technical data (e.g., internet browser, operating system, or the time of page access). This data is collected automatically as soon as you enter our website.
What do we use your data for?
Some data is collected to ensure the error-free provision of the website. Other data may be used to analyze your user behavior.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient, and purpose of your stored personal data at any time, free of charge. You also have the right to request the correction, blocking, or deletion of this data. For this purpose, as well as for other questions about data protection, you can always contact us at the address provided in the imprint. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
Additionally, under certain circumstances, you have the right to request the restriction of the processing of your personal data. Details can be found in the privacy policy under “Right to Restrict Processing.”
Analysis Tools and Third-Party Tools
When you visit our website, your browsing behavior can be statistically evaluated. This is primarily done using cookies and so-called analysis programs. The analysis of your browsing behavior is usually anonymous; your browsing behavior cannot be traced back to you. You can opt out of this analysis or prevent it by not using certain tools. Detailed information can be found in the following privacy policy.
You can opt out of this analysis. We will inform you about your options to object to it in this privacy policy.
2. General Information and Mandatory Information Data Protection
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations and this privacy policy.
When you use this website, various personal data is collected. Personal data is data that can be used to personally identify you. This privacy policy explains what data we collect and how we use it, as well as for what purpose.
We would like to point out that data transmission over the Internet (e.g., when communicating by email) may have security vulnerabilities. Complete protection of data against access by third parties is not possible.
Responsible Party
The responsible party for data processing on this website is:
EpoCon GmbH Nordendstr. 32 64546 Mörfelden-Walldorf
Contact: Email: info@epocon-gmbh.de Phone: +49 6105 – 455 17 98 The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).
Revocation of Your Consent to Data Processing
Many data processing operations are only possible with your express consent. You can revoke consent you have already given at any time. To do so, an informal notification via email to us is sufficient. The legality of the data processing carried out before the revocation remains unaffected by the revocation.
Right to Object to Data Collection in Special Cases and to Direct Marketing (Art. 21 GDPR)
If data processing is carried out based on Art. 6 (1) (e) or (f) GDPR, you have the right to object, on grounds relating to your particular situation, at any time, to the processing of your personal data. This also applies to profiling based on these provisions. The respective legal basis on which processing is based can be found in this privacy policy. If you object, we will cease processing your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or the processing serves the purpose of asserting, exercising, or defending legal claims (objection under Art. 21 (1) GDPR).
If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing. If you object, your personal data will subsequently no longer be used for direct marketing purposes (objection under Art. 21 (2) GDPR).
Right to Lodge a Complaint with the Supervisory Authority
In the case of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the member state where they usually reside, work, or at the place of the alleged infringement. The right to lodge a complaint is without prejudice to any other administrative or judicial remedies.
Right to Data Portability
You have the right to have data which we process based on your consent or in fulfillment of a contract automatically delivered to yourself or to a third party in a standard, machine-readable format. If you require the direct transfer of data to another responsible party, this will only be done to the extent technically feasible.
SSL or TLS Encryption
For security reasons and to protect the transmission of confidential content that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar. When SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.
Information, Blocking, Deletion, and Correction
Within the framework of the applicable legal provisions, you have the right to free information about your stored personal data, their origin and recipient and the purpose of the data processing and, if necessary, a right to correction, blocking or deletion of this data. For further information on personal data, you can contact us at any time using the address provided in the imprint.
Please note that this translation is a general representation of the text. For your website’s actual content, you may need to consult with a legal expert to ensure it complies with specific regulations in your jurisdiction.
Right to Restriction of Processing
You have the right to request the restriction of the processing of your personal data. To exercise this right, you can contact us at any time using the address provided in the legal notice. The right to restrict processing applies in the following cases:
- If you dispute the accuracy of your personal data stored with us, we usually need time to verify this. During this verification period, you have the right to request the restriction of the processing of your personal data.
- If the processing of your personal data was/is unlawful, you can request the restriction of data processing instead of deletion.
- If we no longer need your personal data, but you require them for the exercise, defense, or assertion of legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.
- If you have objected pursuant to Art. 21(1) GDPR, a balance must be struck between your interests and ours. As long as it is not yet clear whose interests prevail, you have the right to request the restriction of the processing of your personal data.
- If you have restricted the processing of your personal data, these data – except for their storage – may only be processed with your consent or for the assertion, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a Member State.
Objection to Promotional Emails
We hereby object to the use of contact data published in the legal notice for sending unsolicited advertising and information materials. The operators of the websites expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, for example, through spam emails.
- Data Collection on Our Website
Cookies
Our website uses cookies in some areas. Cookies do not harm your computer and do not contain viruses. Cookies are used to make our website more user-friendly, effective, and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies.” They are automatically deleted after your visit. Other cookies remain in your device’s memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site.
You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser. Disabling cookies may limit the functionality of this website.
Cookies that are required for the electronic communication process or for the provision of certain functions you request (e.g., the shopping cart function) are stored based on Art. 6(1)(f) of the GDPR. The website operator has a legitimate interest in storing cookies to ensure the technically error-free and optimized provision of its services. If other cookies (e.g., cookies for analyzing your browsing behavior) are stored, they will be treated separately in this privacy policy.
Server Log Files
The website provider automatically collects and stores information that your browser automatically transmits to us in “server log files.” These are:
- Browser type and browser version
- Operating system used
- Referrer URL
- Hostname of the accessing computer
- Time of the server request
- IP address
These data will not be combined with data from other sources.
The collection of this data is based on Art. 6(1)(f) of the GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website – for this purpose, the server log files must be collected.
Contact Form
If you send us inquiries via the contact form, your data from the inquiry form, including the contact data you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not pass on this data without your consent.
The processing of the data entered into the contact form is therefore exclusively based on your consent (Art. 6(1)(a) GDPR). You can revoke this consent at any time. To do this, an informal notification by email to us is sufficient. The legality of the data processing processes carried out up to the point of revocation remains unaffected by the revocation.
The data entered by you in the contact form remain with us until you request us to delete, revoke your consent to the storage or the purpose for the data storage is omitted (e.g., after completed processing of your request). Mandatory legal provisions – especially retention periods – remain unaffected.
Inquiries by Email, Telephone or Fax
If you contact us by email, telephone or fax, your request, including all resulting personal data (name, request), will be stored and processed by us for the purpose of processing your request. We do not pass on this data without your consent.
The processing of this data is based on Art. 6(1)(b) GDPR if your request is related to the performance of a contract or is necessary to carry out pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6(1)(a) GDPR) and/or on our legitimate interests (Art. 6(1)(f) GDPR), as we have a legitimate interest in the effective processing of requests addressed to us.
The data sent by you to us via contact requests remain with us until you request us to delete, revoke your consent for storage or the purpose for the data storage lapses (e.g., after completion of your request). Mandatory legal provisions – especially statutory retention periods – remain unaffected.
Data Processing (Customer and Contract Data)
We collect, process, and use personal data only insofar as it is necessary to establish, or modify legal relationships with us (master data). This is done based on Art. 6(1)(b) GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract. We collect, process, and use your personal data when accessing our website (usage data) only to the extent required to enable you to access our service or to bill you for the same.
Data processed before we receive your request may still be legally processed. We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Any mandatory legal provisions, especially those regarding mandatory data retention periods, remain unaffected.
4. Analytical Tools and Advertising
Google Analytics
This website utilizes features of the web analytics service, Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Analytics uses what are known as “cookies.” These are text files that are stored on your computer and enable an analysis of your website usage. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the United States and stored there.
The storage of Google Analytics cookies and the use of this analytical tool are based on Art. 6(1)(f) of the GDPR. The website operator has a legitimate interest in analyzing user behavior to optimize both its web offering and its advertising.
IP Anonymization
On this website, we have activated the IP anonymization feature. This means that your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, compile reports on website activities, and provide further services related to website usage and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
Browser Plugin
You can prevent the storage of cookies by setting your browser software accordingly. However, please note that if you do this, you may not be able to use all the features of this website to their full extent. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.
Objection to Data Collection
You can prevent Google Analytics from collecting your data by clicking on the following link. An opt-out cookie will be set, which will prevent the collection of your data on future visits to this website: https://support.google.com/analytics/answer/6004245?hl=de.
Contract Data Processing
We have concluded a contract with Google for order data processing and fully implement the strict requirements of German data protection authorities when using Google Analytics.
Demographic Features in Google Analytics
This website uses the “demographic features” of Google Analytics. This allows reports to be generated that contain statements about the age, gender, and interests of site visitors. This data comes from Google’s interest-based advertising and visitor data from third-party providers. This data cannot be attributed to any specific individual. You can disable this feature at any time through the ad settings in your Google account or generally prohibit the collection of your data by Google Analytics, as described in the “Objection to Data Collection” section.
Data Retention
Data stored by Google on the user and event level, linked to cookies, user IDs (e.g., User ID), or advertising IDs (e.g., DoubleClick cookies, Android advertising ID) will be anonymized or deleted after 14 months. For details, please see the following link: https://support.google.com/analytics/answer/7667196?hl=de
5. Plugins and Tools
YouTube with Enhanced Privacy
Our website uses plugins from the YouTube website. The operator of these pages is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
We use YouTube in enhanced privacy mode. According to YouTube, this mode ensures that YouTube does not store information about visitors to this website before they watch the video. However, the enhanced privacy mode does not necessarily exclude the sharing of data with YouTube partners. Therefore, irrespective of whether you watch a video, YouTube establishes a connection to the Google DoubleClick network.
When you start a YouTube video on our website, a connection is made to YouTube’s servers. YouTube is informed about which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.
Furthermore, after starting a video, YouTube may store various cookies on your device. These cookies allow YouTube to obtain information about visitors to our website. Among other things, this information is used to collect video statistics, improve user-friendliness, and prevent fraud. The cookies remain on your device until you delete them.
Additional data processing operations may be triggered after starting a YouTube video, over which we have no control.
The use of YouTube is in the interest of presenting our online offers attractively. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR.
For more information on data protection at YouTube, please refer to their privacy policy: https://policies.google.com/privacy?hl=de.
Vimeo
Our website uses plugins from the video portal Vimeo. The provider is Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.
When you visit one of our pages equipped with a Vimeo plugin, a connection to Vimeo’s servers is established. Vimeo is informed about which of our pages you have visited, and Vimeo obtains your IP address. This also happens if you are not logged in to Vimeo or do not have a Vimeo account. The information collected by Vimeo is transferred to the Vimeo server in the United States.
If you are logged into your Vimeo account, you enable Vimeo to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your Vimeo account.
The use of Vimeo is in the interest of presenting our online offers attractively. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR.
For more information on data handling, please refer to Vimeo’s privacy policy: https://vimeo.com/privacy.
Google Web Fonts
Diese Seite nutzt zur einheitlichen Darstellung von Schriftarten so genannte Web Fonts, die von Google bereitgestellt werden. Die Google Fonts sind lokal installiert. Eine Verbindung zu Servern von Google findet dabei nicht statt.
OpenStreetMap
This site uses so-called web fonts provided by Google to uniformly display fonts. Google Fonts are locally installed, and there is no connection to Google’s servers.
OpenStreetMap
We use the mapping service of OpenStreetMap (OSM). The provider is the OpenStreetMap Foundation (OSMF), 132 Maney Hill Road, Sutton Coldfield, West Midlands, B72 1JU, United Kingdom.
When you visit a website that incorporates OpenStreetMap, your IP address and other information about your behavior on this website may be transmitted to OSMF. OpenStreetMap may store cookies on your browser for this purpose. These are text files that are stored on your computer and allow for an analysis of your use of the website. You can prevent the storage of cookies by adjusting your browser software; however, please note that in this case, you may not be able to use all the features of this website to their full extent.
Your location can also be recorded if you have allowed this in your device settings, e.g., on your mobile phone. The provider of this site has no influence on this data transmission. Details can be found in OpenStreetMap’s privacy policy: https://wiki.openstreetmap.org/wiki/Privacy_Policy.
The use of OpenStreetMap is in the interest of providing an attractive presentation of our online offerings and making it easy to locate the places we indicate on the website. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR.
WORDFENCE
This site uses the security plugin WORDFENCE to protect the website from hacker attacks, etc. The provider is DEFIANT, 800 5th Ave Ste 4100, Seattle, WA 98104.
A GDPR-compliant data processing agreement has been concluded.
WORDFENCE currently uses three cookies, and below is an explanation of what each cookie does, who sets the cookie, and why the cookie contributes to site protection:
- wfwaf-authcookie- (Hash): What it does – This cookie is used by the WORDFENCE firewall to perform a capability check of the current user before WordPress has been loaded. Who gets this cookie – This cookie is only set for users who are able to log into WordPress. How this cookie helps – This cookie allows the WORDFENCE firewall to recognize logged-in users and give them increased access. WORDFENCE can also identify users who are not logged in and restrict their access to secure areas. The cookie informs the firewall of the user’s access level to help the firewall make smart decisions about who should be allowed and who should be blocked.
- wf_loginalerted_ (Hash): What it does – This cookie is used to notify the WORDFENCE administrator when an administrator logs in from a new device or location. Who gets this cookie – This cookie is set only for administrators. How this cookie helps – This cookie helps website administrators know if an admin login has occurred from a new device or location.
- wfCBLBypass: What it does – WORDFENCE offers a site visitor the ability to bypass country blocking by accessing a hidden URL. This cookie allows tracking of who can bypass country blocking. Who gets this cookie – If a hidden URL defined by the site administrator is accessed, this cookie checks if the user can access the site from a country that is restricted by country blocking. This is set for anyone who knows the hidden URL to bypass the default country blocking. This cookie is not set for someone who does not know the hidden URL to bypass country blocking.
For more information on how user data is handled, please refer to DEFIANT’s privacy policy: https://www.WORDFENCE.com/privacy-policy/
Google Ads
The website operator uses Google Ads. Google Ads is an online advertising program provided by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Ads allows us to display advertisements in the Google search engine or on third-party websites when users enter specific keywords in Google (keyword targeting). Furthermore, targeted advertisements can be displayed based on user data available at Google (e.g., location data and interests). We, as the website operator, can quantitatively evaluate this data, such as analyzing which search terms led to the display of our advertisements and how many clicks resulted in the corresponding ads.
The use of this service is based on your consent under Art. 6(1)(a) GDPR and § 25(1) TTDSG. Consent can be revoked at any time.
The transfer of data to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://policies.google.com/privacy/frameworks and https://privacy.google.com/businesses/controllerterms/mccs/.
Google Conversion-Tracking
This website uses Google Conversion Tracking. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
With Google Conversion Tracking, Google and we can determine whether users have taken certain actions. For example, we can evaluate which buttons on our website are clicked frequently and which products are viewed or purchased most often. This information is used to create conversion statistics. We find out the total number of users who clicked on our ads and what actions they took. We do not receive any information that personally identifies the user. Google uses cookies or similar recognition technologies for identification.
The use of this service is based on your consent under Art. 6(1)(a) GDPR and § 25(1) TTDSG. Consent can be revoked at any time.
For more information on Google Conversion Tracking, please refer to Google’s privacy policy: https://policies.google.com/privacy?hl=de.
Google Tag Manager
We use the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager is a tool that allows us to integrate tracking or statistics tools and other technologies on our website. However, Google Tag Manager does not create user profiles, store cookies, or conduct independent analyses. It is used only for managing and delivering the tools it integrates.
Google Tag Manager does, however, capture your IP address, which may also be transferred to Google’s parent company in the United States. The use of Google Tag Manager is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in quickly and uncomplicatedly integrating and managing various tools on the website.
If consent has been obtained, processing is based solely on Art. 6(1)(a) GDPR and § 25(1) TTDSG, insofar as consent covers the storage of cookies or access to information on the user’s end device (e.g., device fingerprinting) as defined in TTDSG. Consent can be revoked at any time.
Ströer Campaign Tracking
We use the advertising services of RegioHelden GmbH, a company of Ströer Media Deutschland GmbH. RegioHelden collects certain information related to our interactions with you. RegioHelden provides us with aggregated information that we use in accordance with our privacy policy and applicable data protection laws.
Call Tracking
Every phone number provided on our website may be a so-called call tracking number, where the date, time, call answer, call duration, and the phone number of both participants are recorded, stored, and forwarded to RegioHelden GmbH and us for the purpose of measuring advertising effectiveness. The individual call tracking number displayed in the ad is not tied to the individual user’s usage behavior but is dependent on specific or multiple keywords used in the search.
Contact Form
The processing of data entered into the contact form occurs exclusively based on your consent (Art. 6(1)(a) GDPR). You can revoke this consent at any time. An informal email to us is sufficient for revocation. The legality of the data processing operations carried out up to the time of revocation is not affected by the revocation.
Each individually accessed contact form is not tied to the tracking of the individual user’s usage behavior but depends on specific or multiple keywords used in the search.
Server Log Files
RegioHelden automatically collects and stores information in so-called server log files, which your browser automatically transmits to RegioHelden. These are:
- Browser type and browser version
- Operating system used
- Referrer URL
- Hostname of the accessing computer
- Time of the server request
- IP address A merging of this data with other data sources does not take place.
The collection of this data is based on Art. 6(1)(f) GDPR. RegioHelden has a legitimate interest in the technically error-free presentation and optimization of its website – for this purpose, the server log files must be recorded.
Make sure to provide the necessary links, and ensure that they work correctly on your website.