The protection of your data is of particular concern to us. We process the data exclusively on a legally compliant basis and see it as our obligation to protect your data from any misuse. We only use your data for purposes for which you have authorised us.
Table of Contents
1. Objective and responsible body
2. Basic information on data
3. Processing of personal data / contact form
4. Collection of access data
5. Cookies & reach measurement
6. Google Analytics
8. Integration of third-party services and content
9. User rights and deletion
- Objective and responsible body
The provider of the online offer and the body responsible for data protection is TraFinScout GmbH, Solmsstr. 4, 60486 Frankfurt, Germany (hereinafter referred to as "provider", "we" or "us"). For the contact possibilities we refer to our imprint.
The term “user” includes all customers and visitors of our online offer. The terms used, such as “Users” are to be understood gender-neutral.
- Basic information on data
We process personal data of users only in compliance with the relevant data protection regulations according to the principles of data minimization and purpose limitation (see Processing Principles: https://www.datenschutz- grundverordnung.eu/grundverordnung/art-5-ds-gvo/). This means that user data will only be processed if a legal permission or obligation exists, if it is necessary to fulfil contractual obligations (e.g. to provide the services offered) or if you have given your consent.
We take organizational, contractual and technical security measures in accordance with the state of the art to ensure that the provisions of the data protection laws are complied with and in order to protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons.
Insofar as a data transfer to third parties is necessary for the fulfilment of legal requirements, the fulfilment of the services to be provided within the framework of contractual obligations or on the basis of your express consent, we always ensure that this is carried out securely and in accordance with data protection regulations in accordance with EU DSGVO Chapter 5.
- Processing of personal data and contact form
Contact form & e-mail contact
Description and scope of data processing
On our website there is a contact form which can be used for electronic contact. If a user takes this opportunity, the data entered in the input mask will be transmitted to us and stored.
At the time the message is sent, the following data is also processed:
- The IP address of the user
- Date and time
On our website it is possible to contact us via the provided e-mail address. In this case the personal data of the user transmitted with the e-mail will be processed.
In this context, the data will not be passed on to third parties. The data will be used exclusively for processing the conversation.
Legal basis for the data processing
The legal basis for the processing of the data is Art. 6 para. 1 letter a DSGVO if the user has given his consent.
The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 para. 1 letter f DSGVO.
Purpose of the data processing
The processing of personal data when contacting us via contact form or e-mail serves us solely to process the contact and also to ensure the security of our information technology systems.
This is also the necessary legitimate interest in the processing of the data.
Duration of storage
The data will be deleted as soon as they are no longer necessary for the purpose for which they were collected. For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is finished when it can be concluded from the circumstances that the matter in question has been finally clarified.
Possibility of objection and removal
The user has the possibility to revoke his consent to the processing of personal data at any time.
If you contact us by e-mail, you can object to the processing of your personal data at any time. In such a case the conversation cannot be continued.
You can revoke your consent and object to the storage, for example, by e-mail to firstname.lastname@example.org . The personal data processed in the course of the contact will be deleted in this case.
- Collection of access data
We collect data about every access to the server where this service is located (so-called server log files). The access data includes name of the retrieved web page, file, date and time of retrieval, amount of data transferred, message about successful retrieval, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider.
We use the log data without linking it to the specific person of a user or other profiling according to the statutory provisions only for statistical evaluations for the purpose of operation, security and optimization of our online offer. However, we reserve the right to retrospectively check the log data if, on the basis of concrete evidence, the legitimate suspicion of unlawful use exists.
- Cookies & reach measurement
The usage of this online offer is also possible with the exclusion of cookies. If users do not want cookies stored on their computer, they are asked to disable the option in their browser’s system settings. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.
- Google Analytics
Google will use this information on our behalf to evaluate the use of our online offering by users, to compile reports on the activities within this online offering and to provide us with other services related to the use of this online offer and internet usage. In this case, pseudonymous usage profiles of the users can be created from the processed data.
We only use Google Analytics with activated IP anonymization. This means that the IP address of users will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases the full IP address will be sent to a Google server in the US and shortened there.
The IP address transmitted by the user's browser is not merged with other data from Google. Users can prevent the storage of cookies by adjusting their browser software accordingly; users can also prevent the collection of data generated by the cookie and related to their use of the online offer to Google and the processing of this data by Google by downloading and installing the browser plug-in available under the following link:
Further information on the use of data for advertising purposes by Google, setting and contradiction possibilities you will find on the websites of Google: https://www.google.com/intl/de/policies/privacy/partners ("Data use by Google when you use websites or apps of our partners"), http://www.google.com/policies/technologies/ads ("Data use for advertising purposes"), http://www.google.de/settings/ads ("Manage information that Google uses to serve ads to you") and http://www.google.com/ads/preferences ("Determine what ads Google shows you").
For Hotjar Data protection and privacy is of fundamental importance. We never sell personal data and we strictly comply with the provisions of the European Data Protection Regulation ("DS Regulation") (in particular, but not limited to, Article 6(1)(b) to (f) and Article 28) and the laws of Malta, where Hotjar is established, and other applicable international data protection laws, such as the California Consumer Privacy Act ("CCPA") (collectively the "Applicable law“).
For the purposes of this privacy statement, the term "personal data" means any information relating to an identified or identifiable natural person (or, where appropriate, a household); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an on-line identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person The term personal data also includes any relevant definitions in applicable law.
- Integration of services and content of third parties
It may occur that contents or services of third-party providers, such as maps or fonts from other websites, are included in our online offer. The inclusion of content from third-party providers always requires that third-party providers perceive the IP address of the users, since they could not send the content to the users’ browser without the IP address. The IP address is therefore required for the presentation of this content. Furthermore, providers of third-party content can set their own cookies and process users’ data for their own purposes. In the process, user profiles can be created from the processed data. We do our best to use this content in a data-saving and data-avoiding manner as far as possible and select reliable third-party providers with regard to data security.
The following presentation provides an overview of third-party providers as well as their contents and links to their privacy statements, with further details on the processing of data and partly revocation possibilities (so-called opt-out):
- User rights and deletion
Users have the right, upon request, to receive information free of charge about the personal data that we have stored about them.
In addition, users have the right to correct inaccurate data, revoke consent, block the processing and delete their personal information if justifiable and to file a complaint with the responsible regulatory authority in the event of unlawful processing.
The data stored with us are deleted as soon as they are no longer necessary for their purpose and the deletion does not conflict with any statutory storage requirements.