Impressum - Angaben gemäß § 5 TMG

Sworn Allegiance

Stefan Müller

Am Hansenberg 9

66679 Losheim am See

Germany

Telefon: +49 1525/4252306

E-Mail: SwornAllegiance@gmx.de

Umsatzsteuer-ID: DE366352097

Umsatzsteuer-Identifikationsnummergemäß § 27a Umsatzsteuergesetz

Verantwortlich für den Inhalt nach §55 Abs. 2 RStV:

Stefan Müller

Am Hansenberg 9

66679 Losheim am See

Germany

Haftungsausschluss – Haftung für Inhalte

Die Inhalte unserer Seiten wurden mit größter Sorgfalt erstellt. Für die Richtigkeit, Vollständigkeit und Aktualität der Inhalte können wir jedoch keine Gewähr übernehmen. Als Diensteanbieter sind wir gemäß § 7 Abs.1 TMG für eigene Inhalte auf diesen Seiten nach den allgemeinen Gesetzen verantwortlich. Nach §§ 8 bis 10 TMG sind wir als Diensteanbieter jedoch nicht verpflichtet, übermittelte oder gespeicherte fremde Informationen zu überwachen oder nach Umständen zu forschen, die auf eine rechtswidrige Tätigkeit hinweisen. Verpflichtungen zur Entfernung oder Sperrung der Nutzung von Informationen nach den allgemeinen Gesetzen bleiben hiervon unberührt. Eine diesbezügliche Haftung ist jedoch erst ab dem Zeitpunkt der Kenntnis einer konkreten Rechtsverletzung möglich. Bei Bekanntwerden von entsprechenden Rechtsverletzungen werden wir diese Inhalte umgehend entfernen.

Haftungsausschluss – Haftung für Links

Unser Angebot enthält Links zu externen Webseiten Dritter, auf deren Inhalte wir keinen Einfluss haben. Deshalb können wir für diese fremden Inhalte auch keine Gewähr übernehmen. Für die Inhalte der verlinkten Seiten ist stets der jeweilige Anbieter oder Betreiber der Seiten verantwortlich. Die verlinkten Seiten wurden zum Zeitpunkt der Verlinkung auf mögliche Rechtsverstöße überprüft. Rechtswidrige Inhalte waren zum Zeitpunkt der Verlinkung nicht erkennbar. Eine permanente inhaltliche Kontrolle der verlinkten Seiten ist jedoch ohne konkrete Anhaltspunkte einer Rechtsverletzung nicht zumutbar. Bei Bekanntwerden von Rechtsverletzungen werden wir derartige Links umgehend entfernen.

 

Urheberrecht

Die durch die Seitenbetreiber erstellten Inhalte und Werke auf diesen Seiten unterliegen dem deutschen Urheberrecht. Die Vervielfältigung, Bearbeitung, Verbreitung und jede Art der Verwertung außerhalb der Grenzen des Urheberrechtes bedürfen der schriftlichen Zustimmung des jeweiligen Autors bzw. Erstellers. Downloads und Kopien dieser Seite sind nur für den privaten, nicht kommerziellen Gebrauch gestattet. Soweit die Inhalte auf dieser Seite nicht vom Betreiber erstellt wurden, werden die Urheberrechte Dritter beachtet. Insbesondere werden Inhalte Dritter als solche gekennzeichnet. Sollten Sie trotzdem auf eine Urheberrechtsverletzung aufmerksam werden, bitten wir um einen entsprechenden Hinweis. Bei Bekanntwerden von Rechtsverletzungen werden wir derartige Inhalte umgehend entfernen.

 

Datenschutz

Die Nutzung unserer Webseite ist in der Regel ohne Angabe personenbezogener Daten möglich. Soweit auf unseren Seiten personenbezogene Daten (beispielsweise Name, Anschrift oder eMail-Adressen) erhoben werden, erfolgt dies, soweit möglich, stets auf freiwilliger Basis. Diese Daten werden ohne Ihre ausdrückliche Zustimmung nicht an Dritte weitergegeben.
Wir weisen darauf hin, dass die Datenübertragung im Internet (z.B. bei der Kommunikation per E-Mail) Sicherheitslücken aufweisen kann. Ein lückenloser Schutz der Daten vor dem Zugriff durch Dritte ist nicht möglich.
Der Nutzung von im Rahmen der Impressumspflicht veröffentlichten Kontaktdaten durch Dritte zur Übersendung von nicht ausdrücklich angeforderter Werbung und Informationsmaterialien wird hiermit ausdrücklich widersprochen. Die Betreiber der Seiten behalten sich ausdrücklich rechtliche Schritte im Falle der unverlangten Zusendung von Werbeinformationen, etwa durch Spam-Mails, vor.

We are very delighted that you haveshown interest in our enterprise. Data protection is of aparticularly high priority for the management of the SwornAllegiance. The use of the Internet pages of the Sworn Allegiance ispossible without any indication of personal data; however, if a datasubject wants to use special enterprise services via our website,processing of personal data could become necessary. If the processingof personal data is necessary and there is no statutory basis forsuch processing, we generally obtain consent from the data subject.

The processing of personal data, suchas the name, address, e-mail address, or telephone number of a datasubject shall always be in line with the General Data ProtectionRegulation (GDPR), and in accordance with the country-specific dataprotection regulations applicable to the Sworn Allegiance. By meansof this data protection declaration, our enterprise would like toinform the general public of the nature, scope, and purpose of thepersonal data we collect, use and process. Furthermore, data subjectsare informed, by means of this data protection declaration, of therights to which they are entitled.

As the controller, the Sworn Allegiancehas implemented numerous technical and organizational measures toensure the most complete protection of personal data processedthrough this website. However, Internet-based data transmissions mayin principle have security gaps, so absolute protection may not beguaranteed. For this reason, every data subject is free to transferpersonal data to us via alternative means, e.g. by telephone.

1. Definitions

The data protection declaration of theSworn Allegiance is based on the terms used by the Europeanlegislator for the adoption of the General Data Protection Regulation(GDPR). Our data protection declaration should be legible andunderstandable for the general public, as well as our customers andbusiness partners. To ensure this, we would like to first explain theterminology used.

In this data protection declaration, weuse, inter alia, the following terms:

• a)   Personal data

Personal data means any informationrelating to an identified or identifiable natural person (“datasubject”). An identifiable natural person is one who can beidentified, directly or indirectly, in particular by reference to anidentifier such as a name, an identification number, location data,an online identifier or to one or more factors specific to thephysical, physiological, genetic, mental, economic, cultural orsocial identity of that natural person.

• b) Data subject

Data subject is any identified oridentifiable natural person, whose personal data is processed by thecontroller responsible for the processing.

• c)    Processing

Processing is any operation or set ofoperations which is performed on personal data or on sets of personaldata, whether or not by automated means, such as collection,recording, organisation, structuring, storage, adaptation oralteration, retrieval, consultation, use, disclosure by transmission,dissemination or otherwise making available, alignment orcombination, restriction, erasure or destruction.

• d)    Restrictionof processing

Restriction of processing is themarking of stored personal data with the aim of limiting theirprocessing in the future.

• e)    Profiling

Profiling means any form of automatedprocessing of personal data consisting of the use of personal data toevaluate certain personal aspects relating to a natural person, inparticular to analyse or predict aspects concerning that naturalperson's performance at work, economic situation, health, personalpreferences, interests, reliability, behaviour, location ormovements.

• f)    Pseudonymisation

Pseudonymisation is the processing ofpersonal data in such a manner that the personal data can no longerbe attributed to a specific data subject without the use ofadditional information, provided that such additional information iskept separately and is subject to technical and organisationalmeasures to ensure that the personal data are not attributed to anidentified or identifiable natural person.

• g)    Controller orcontroller responsible for the processing

Controller or controller responsiblefor the processing is the natural or legal person, public authority,agency or other body which, alone or jointly with others, determinesthe purposes and means of the processing of personal data; where thepurposes and means of such processing are determined by Union orMember State law, the controller or the specific criteria for itsnomination may be provided for by Union or Member State law.

• h)    Processor

Processor is a natural or legal person,public authority, agency or other body which processes personal dataon behalf of the controller.

• i)     Recipient

Recipient is a natural or legal person,public authority, agency or another body, to which the personal dataare disclosed, whether a third party or not. However, publicauthorities which may receive personal data in the framework of aparticular inquiry in accordance with Union or Member State law shallnot be regarded as recipients; the processing of those data by thosepublic authorities shall be in compliance with the applicable dataprotection rules according to the purposes of the processing.

• j)     Third party

Third party is a natural or legalperson, public authority, agency or body other than the data subject,controller, processor and persons who, under the direct authority ofthe controller or processor, are authorised to process personal data.

• k)    Consent

Consent of the data subject is anyfreely given, specific, informed and unambiguous indication of thedata subject's wishes by which he or she, by a statement or by aclear affirmative action, signifies agreement to the processing ofpersonal data relating to him or her.

2. Name and Address of the controller

Controller for the purposes of theGeneral Data Protection Regulation (GDPR), other data protection lawsapplicable in Member states of the European Union and otherprovisions related to data protection is:

Sworn Allegiance

Am Hansenberg 9

666709 Losheim am See

Deutschland

Phone: +4915254252306

Email: s.mueller89@gmx.de

Website: www.sworn-allegiance.com

3. Collection of general data andinformation

The website of the Sworn Allegiancecollects a series of general data and information when a data subjector automated system calls up the website. This general data andinformation are stored in the server log files. Collected may be (1)the browser types and versions used, (2) the operating system used bythe accessing system, (3) the website from which an accessing systemreaches our website (so-called referrers), (4) the sub-websites, (5)the date and time of access to the Internet site, (6) an Internetprotocol address (IP address), (7) the Internet service provider ofthe accessing system, and (8) any other similar data and informationthat may be used in the event of attacks on our informationtechnology systems.

When using these general data andinformation, the Sworn Allegiance does not draw any conclusions aboutthe data subject. Rather, this information is needed to (1) deliverthe content of our website correctly, (2) optimize the content of ourwebsite as well as its advertisement, (3) ensure the long-termviability of our information technology systems and websitetechnology, and (4) provide law enforcement authorities with theinformation necessary for criminal prosecution in case of acyber-attack. Therefore, the Sworn Allegiance analyzes anonymouslycollected data and information statistically, with the aim ofincreasing the data protection and data security of our enterprise,and to ensure an optimal level of protection for the personal data weprocess. The anonymous data of the server log files are storedseparately from all personal data provided by a data subject.

4. Routine erasure and blocking ofpersonal data

The data controller shall process andstore the personal data of the data subject only for the periodnecessary to achieve the purpose of storage, or as far as this isgranted by the European legislator or other legislators in laws orregulations to which the controller is subject to.

If the storage purpose is notapplicable, or if a storage period prescribed by the Europeanlegislator or another competent legislator expires, the personal dataare routinely blocked or erased in accordance with legalrequirements.

5. Rights of the data subject

• a) Right of confirmation

Each data subject shall have the rightgranted by the European legislator to obtain from the controller theconfirmation as to whether or not personal data concerning him or herare being processed. If a data subject wishes to avail himself ofthis right of confirmation, he or she may, at any time, contact anyemployee of the controller.

• b) Right of access

Each data subject shall have the rightgranted by the European legislator to obtain from the controller freeinformation about his or her personal data stored at any time and acopy of this information. Furthermore, the European directives andregulations grant the data subject access to the followinginformation:

• the purposes of the processing;

• the categories of personal dataconcerned;

• the recipients or categories ofrecipients to whom the personal data have been or will bedisclosed, in particular recipients in third countries orinternational organisations;

• where possible, the envisagedperiod for which the personal data will be stored, or, if notpossible, the criteria used to determine that period;

• the existence of the right torequest from the controller rectification or erasure of personaldata, or restriction of processing of personal data concerning thedata subject, or to object to such processing;

• the existence of the right tolodge a complaint with a supervisory authority;

• where the personal data are notcollected from the data subject, any available information as totheir source;

• the existence of automateddecision-making, including profiling, referred to in Article 22(1)and (4) of the GDPR and, at least in those cases, meaningfulinformation about the logic involved, as well as the significanceand envisaged consequences of such processing for the data subject.

Furthermore, the data subject shallhave a right to obtain information as to whether personal data aretransferred to a third country or to an international organisation.Where this is the case, the data subject shall have the right to beinformed of the appropriate safeguards relating to the transfer.

If a data subject wishes to availhimself of this right of access, he or she may, at any time, contactany employee of the controller.

• c) Right to rectification

Each data subject shall have the rightgranted by the European legislator to obtain from the controllerwithout undue delay the rectification of inaccurate personal dataconcerning him or her. Taking into account the purposes of theprocessing, the data subject shall have the right to have incompletepersonal data completed, including by means of providing asupplementary statement.

If a data subject wishes to exercisethis right to rectification, he or she may, at any time, contact anyemployee of the controller.

• d) Right to erasure (Right to beforgotten)

Each data subject shall have the rightgranted by the European legislator to obtain from the controller theerasure of personal data concerning him or her without undue delay,and the controller shall have the obligation to erase personal datawithout undue delay where one of the following grounds applies, aslong as the processing is not necessary:

• The personal data are no longernecessary in relation to the purposes for which they were collectedor otherwise processed.

• The data subject withdrawsconsent to which the processing is based according to point (a) ofArticle 6(1) of the GDPR, or point (a) of Article 9(2) of the GDPR,and where there is no other legal ground for the processing.

• The data subject objects to theprocessing pursuant to Article 21(1) of the GDPR and there are nooverriding legitimate grounds for the processing, or the datasubject objects to the processing pursuant to Article 21(2) of theGDPR.

• The personal data have beenunlawfully processed.

• The personal data must be erasedfor compliance with a legal obligation in Union or Member State lawto which the controller is subject.

• The personal data have beencollected in relation to the offer of information society servicesreferred to in Article 8(1) of the GDPR.

If one of the aforementioned reasonsapplies, and a data subject wishes to request the erasure of personaldata stored by the Sworn Allegiance, he or she may, at any time,contact any employee of the controller. An employee of SwornAllegiance shall promptly ensure that the erasure request is compliedwith immediately.

Where the controller has made personaldata public and is obliged pursuant to Article 17(1) to erase thepersonal data, the controller, taking account of available technologyand the cost of implementation, shall take reasonable steps,including technical measures, to inform other controllers processingthe personal data that the data subject has requested erasure by suchcontrollers of any links to, or copy or replication of, thosepersonal data, as far as processing is not required. An employees ofthe Sworn Allegiance will arrange the necessary measures inindividual cases.

• e) Right of restriction ofprocessing

Each data subject shall have the rightgranted by the European legislator to obtain from the controllerrestriction of processing where one of the following applies:

• The accuracy of the personal datais contested by the data subject, for a period enabling thecontroller to verify the accuracy of the personal data.

• The processing is unlawful andthe data subject opposes the erasure of the personal data andrequests instead the restriction of their use instead.

• The controller no longer needsthe personal data for the purposes of the processing, but they arerequired by the data subject for the establishment, exercise ordefence of legal claims.

• The data subject has objected toprocessing pursuant to Article 21(1) of the GDPR pending theverification whether the legitimate grounds of the controlleroverride those of the data subject.

If one of the aforementioned conditionsis met, and a data subject wishes to request the restriction of theprocessing of personal data stored by the Sworn Allegiance, he or shemay at any time contact any employee of the controller. The employeeof the Sworn Allegiance will arrange the restriction of theprocessing.

• f) Right to data portability

Each data subject shall have the rightgranted by the European legislator, to receive the personal dataconcerning him or her, which was provided to a controller, in astructured, commonly used and machine-readable format. He or sheshall have the right to transmit those data to another controllerwithout hindrance from the controller to which the personal data havebeen provided, as long as the processing is based on consent pursuantto point (a) of Article 6(1) of the GDPR or point (a) of Article 9(2)of the GDPR, or on a contract pursuant to point (b) of Article 6(1)of the GDPR, and the processing is carried out by automated means, aslong as the processing is not necessary for the performance of a taskcarried out in the public interest or in the exercise of officialauthority vested in the controller.

Furthermore, in exercising his or herright to data portability pursuant to Article 20(1) of the GDPR, thedata subject shall have the right to have personal data transmitteddirectly from one controller to another, where technically feasibleand when doing so does not adversely affect the rights and freedomsof others.

In order to assert the right to dataportability, the data subject may at any time contact any employee ofthe Sworn Allegiance.

• g) Right to object

Each data subject shall have the rightgranted by the European legislator to object, on grounds relating tohis or her particular situation, at any time, to processing ofpersonal data concerning him or her, which is based on point (e) or(f) of Article 6(1) of the GDPR. This also applies to profiling basedon these provisions.

The Sworn Allegiance shall no longerprocess the personal data in the event of the objection, unless wecan demonstrate compelling legitimate grounds for the processingwhich override the interests, rights and freedoms of the datasubject, or for the establishment, exercise or defence of legalclaims.

If the Sworn Allegiance processespersonal data for direct marketing purposes, the data subject shallhave the right to object at any time to processing of personal dataconcerning him or her for such marketing. This applies to profilingto the extent that it is related to such direct marketing. If thedata subject objects to the Sworn Allegiance to the processing fordirect marketing purposes, the Sworn Allegiance will no longerprocess the personal data for these purposes.

In addition, the data subject has theright, on grounds relating to his or her particular situation, toobject to processing of personal data concerning him or her by theSworn Allegiance for scientific or historical research purposes, orfor statistical purposes pursuant to Article 89(1) of the GDPR,unless the processing is necessary for the performance of a taskcarried out for reasons of public interest.

In order to exercise the right toobject, the data subject may contact any employee of the SwornAllegiance. In addition, the data subject is free in the context ofthe use of information society services, and notwithstandingDirective 2002/58/EC, to use his or her right to object by automatedmeans using technical specifications.

• h) Automated individualdecision-making, including profiling

Each data subject shall have the rightgranted by the European legislator not to be subject to a decisionbased solely on automated processing, including profiling, whichproduces legal effects concerning him or her, or similarlysignificantly affects him or her, as long as the decision (1) is notis necessary for entering into, or the performance of, a contractbetween the data subject and a data controller, or (2) is notauthorised by Union or Member State law to which the controller issubject and which also lays down suitable measures to safeguard thedata subject's rights and freedoms and legitimate interests, or (3)is not based on the data subject's explicit consent.

If the decision (1) is necessary forentering into, or the performance of, a contract between the datasubject and a data controller, or (2) it is based on the datasubject's explicit consent, the Sworn Allegiance shall implementsuitable measures to safeguard the data subject's rights and freedomsand legitimate interests, at least the right to obtain humanintervention on the part of the controller, to express his or herpoint of view and contest the decision.

If the data subject wishes to exercisethe rights concerning automated individual decision-making, he or shemay, at any time, contact any employee of the Sworn Allegiance.

• i) Right to withdraw dataprotection consent

Each data subject shall have the rightgranted by the European legislator to withdraw his or her consent toprocessing of his or her personal data at any time.

If the data subject wishes to exercisethe right to withdraw the consent, he or she may, at any time,contact any employee of the Sworn Allegiance.

6. Data protection for applications andthe application procedures

The data controller shall collect andprocess the personal data of applicants for the purpose of theprocessing of the application procedure. The processing may also becarried out electronically. This is the case, in particular, if anapplicant submits corresponding application documents by e-mail or bymeans of a web form on the website to the controller. If the datacontroller concludes an employment contract with an applicant, thesubmitted data will be stored for the purpose of processing theemployment relationship in compliance with legal requirements. If noemployment contract is concluded with the applicant by thecontroller, the application documents shall be automatically erasedtwo months after notification of the refusal decision, provided thatno other legitimate interests of the controller are opposed to theerasure. Other legitimate interest in this relation is, e.g. a burdenof proof in a procedure under the General Equal Treatment Act (AGG).

7. Data protection provisions about theapplication and use of Facebook

On this website, the controller hasintegrated components of the enterprise Facebook. Facebook is asocial network.

A social network is a place for socialmeetings on the Internet, an online community, which usually allowsusers to communicate with each other and interact in a virtual space.A social network may serve as a platform for the exchange of opinionsand experiences, or enable the Internet community to provide personalor business-related information. Facebook allows social network usersto include the creation of private profiles, upload photos, andnetwork through friend requests.

The operating company of Facebook isFacebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, United States. Ifa person lives outside of the United States or Canada, the controlleris the Facebook Ireland Ltd., 4 Grand Canal Square, Grand CanalHarbour, Dublin 2, Ireland.

With each call-up to one of theindividual pages of this Internet website, which is operated by thecontroller and into which a Facebook component (Facebook plug-ins)was integrated, the web browser on the information technology systemof the data subject is automatically prompted to download display ofthe corresponding Facebook component from Facebook through theFacebook component. An overview of all the Facebook Plug-ins may beaccessed under https://developers.facebook.com/docs/plugins/. Duringthe course of this technical procedure, Facebook is made aware ofwhat specific sub-site of our website was visited by the datasubject.

If the data subject is logged in at thesame time on Facebook, Facebook detects with every call-up to ourwebsite by the data subject—and for the entire duration of theirstay on our Internet site—which specific sub-site of our Internetpage was visited by the data subject. This information is collectedthrough the Facebook component and associated with the respectiveFacebook account of the data subject. If the data subject clicks onone of the Facebook buttons integrated into our website, e.g. the"Like" button, or if the data subject submits a comment,then Facebook matches this information with the personal Facebookuser account of the data subject and stores the personal data.

Facebook always receives, through theFacebook component, information about a visit to our website by thedata subject, whenever the data subject is logged in at the same timeon Facebook during the time of the call-up to our website. Thisoccurs regardless of whether the data subject clicks on the Facebookcomponent or not. If such a transmission of information to Facebookis not desirable for the data subject, then he or she may preventthis by logging off from their Facebook account before a call-up toour website is made.

The data protection guideline publishedby Facebook, which is available athttps://facebook.com/about/privacy/, provides information about thecollection, processing and use of personal data by Facebook. Inaddition, it is explained there what setting options Facebook offersto protect the privacy of the data subject. In addition, differentconfiguration options are made available to allow the elimination ofdata transmission to Facebook. These applications may be used by thedata subject to eliminate a data transmission to Facebook.

8. Data protection provisions about theapplication and use of Instagram

On this website, the controller hasintegrated components of the service Instagram. Instagram is aservice that may be qualified as an audiovisual platform, whichallows users to share photos and videos, as well as disseminate suchdata in other social networks.

The operating company of the servicesoffered by Instagram is Facebook Ireland Ltd., 4 Grand Canal Square,Grand Canal Harbour, Dublin 2 Ireland.

With each call-up to one of theindividual pages of this Internet site, which is operated by thecontroller and on which an Instagram component (Insta button) wasintegrated, the Internet browser on the information technology systemof the data subject is automatically prompted to the download of adisplay of the corresponding Instagram component of Instagram. Duringthe course of this technical procedure, Instagram becomes aware ofwhat specific sub-page of our website was visited by the datasubject.

If the data subject is logged in at thesame time on Instagram, Instagram detects with every call-up to ourwebsite by the data subject—and for the entire duration of theirstay on our Internet site—which specific sub-page of our Internetpage was visited by the data subject. This information is collectedthrough the Instagram component and is associated with the respectiveInstagram account of the data subject. If the data subject clicks onone of the Instagram buttons integrated on our website, thenInstagram matches this information with the personal Instagram useraccount of the data subject and stores the personal data.

Instagram receives information via theInstagram component that the data subject has visited our websiteprovided that the data subject is logged in at Instagram at the timeof the call to our website. This occurs regardless of whether theperson clicks on the Instagram button or not. If such a transmissionof information to Instagram is not desirable for the data subject,then he or she can prevent this by logging off from their Instagramaccount before a call-up to our website is made.

Further information and the applicabledata protection provisions of Instagram may be retrieved underhttps://help.instagram.com/155833707900388 andhttps://www.instagram.com/about/legal/privacy/.

9. Data protection provisions about theapplication and use of YouTube

On this website, the controller hasintegrated components of YouTube. YouTube is an Internet video portalthat enables video publishers to set video clips and other users freeof charge, which also provides free viewing, review and commenting onthem. YouTube allows you to publish all kinds of videos, so you canaccess both full movies and TV broadcasts, as well as music videos,trailers, and videos made by users via the Internet portal.

The operating company of YouTube isGoogle Ireland Limited, Gordon House, Barrow Street, Dublin, D04E5W5, Ireland.

With each call-up to one of theindividual pages of this Internet site, which is operated by thecontroller and on which a YouTube component (YouTube video) wasintegrated, the Internet browser on the information technology systemof the data subject is automatically prompted to download a displayof the corresponding YouTube component. Further information aboutYouTube may be obtained under https://www.youtube.com/yt/about/en/.During the course of this technical procedure, YouTube and Googlegain knowledge of what specific sub-page of our website was visitedby the data subject.

If the data subject is logged in onYouTube, YouTube recognizes with each call-up to a sub-page thatcontains a YouTube video, which specific sub-page of our Internetsite was visited by the data subject. This information is collectedby YouTube and Google and assigned to the respective YouTube accountof the data subject.

YouTube and Google will receiveinformation through the YouTube component that the data subject hasvisited our website, if the data subject at the time of the call toour website is logged in on YouTube; this occurs regardless ofwhether the person clicks on a YouTube video or not. If such atransmission of this information to YouTube and Google is notdesirable for the data subject, the delivery may be prevented if thedata subject logs off from their own YouTube account before a call-upto our website is made.

YouTube's data protection provisions,available at https://www.google.com/intl/en/policies/privacy/,provide information about the collection, processing and use ofpersonal data by YouTube and Google.

10. Legal basis for the processing

Art. 6(1) lit. a GDPR serves as thelegal basis for processing operations for which we obtain consent fora specific processing purpose. If the processing of personal data isnecessary for the performance of a contract to which the data subjectis party, as is the case, for example, when processing operations arenecessary for the supply of goods or to provide any other service,the processing is based on Article 6(1) lit. b GDPR. The same appliesto such processing operations which are necessary for carrying outpre-contractual measures, for example in the case of inquiriesconcerning our products or services. Is our company subject to alegal obligation by which processing of personal data is required,such as for the fulfillment of tax obligations, the processing isbased on Art. 6(1) lit. c GDPR. In rare cases, the processing ofpersonal data may be necessary to protect the vital interests of thedata subject or of another natural person. This would be the case,for example, if a visitor were injured in our company and his name,age, health insurance data or other vital information would have tobe passed on to a doctor, hospital or other third party. Then theprocessing would be based on Art. 6(1) lit. d GDPR. Finally,processing operations could be based on Article 6(1) lit. f GDPR.This legal basis is used for processing operations which are notcovered by any of the abovementioned legal grounds, if processing isnecessary for the purposes of the legitimate interests pursued by ourcompany or by a third party, except where such interests areoverridden by the interests or fundamental rights and freedoms of thedata subject which require protection of personal data. Suchprocessing operations are particularly permissible because they havebeen specifically mentioned by the European legislator. He consideredthat a legitimate interest could be assumed if the data subject is aclient of the controller (Recital 47 Sentence 2 GDPR).

11. The legitimate interests pursued bythe controller or by a third party

Where the processing of personal datais based on Article 6(1) lit. f GDPR our legitimate interest is tocarry out our business in favor of the well-being of all ouremployees and the shareholders.

12. Period for which the personal datawill be stored

The criteria used to determine theperiod of storage of personal data is the respective statutoryretention period. After expiration of that period, the correspondingdata is routinely deleted, as long as it is no longer necessary forthe fulfillment of the contract or the initiation of a contract.

13. Provision of personal data asstatutory or contractual requirement; Requirement necessary to enterinto a contract; Obligation of the data subject to provide thepersonal data; possible consequences of failure to provide such data

We clarify that the provision ofpersonal data is partly required by law (e.g. tax regulations) or canalso result from contractual provisions (e.g. information on thecontractual partner). Sometimes it may be necessary to conclude acontract that the data subject provides us with personal data, whichmust subsequently be processed by us. The data subject is, forexample, obliged to provide us with personal data when our companysigns a contract with him or her. The non-provision of the personaldata would have the consequence that the contract with the datasubject could not be concluded. Before personal data is provided bythe data subject, the data subject must contact any employee. Theemployee clarifies to the data subject whether the provision of thepersonal data is required by law or contract or is necessary for theconclusion of the contract, whether there is an obligation to providethe personal data and the consequences of non-provision of thepersonal data.

14. Existence of automateddecision-making

As a responsible company, we do not useautomatic decision-making or profiling.

Developed by the specialistsfor LegalTech atWilling & Able that also developed the system for gdprlearning. The legal texts contained in our privacy policygenerator have been provided and published by Prof.Dr. h.c. Heiko Jonny Maniero from the German Association forData Protection and ChristianSolmecke from WBS law.