We are very pleased about your interest in our community. Data protection is of particularly high importance to the management of *.grow-metric.com. Using the websites of *.grow-metric.com is generally possible without providing any personal data. However, if a data subject wishes to use special services of our community via our website, processing of personal data may become necessary. If processing of personal data is required and there is no legal basis for such processing, we generally obtain the consent of the data subject.

The processing of personal data, such as the nickname or email address of a data subject, is always carried out in accordance with the General Data Protection Regulation and in compliance with the country-specific data protection provisions applicable to *.grow-metric.com. By means of this privacy policy, we would like to inform the public about the nature, scope, and purpose of the personal data we collect, use, and process. Furthermore, data subjects are informed of their rights through this privacy policy.

As the controller, *.grow-metric.com has implemented numerous technical and organizational measures to ensure the most complete protection possible of personal data processed through this website. However, internet-based data transmissions can in principle have security vulnerabilities, so absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us via alternative means, such as by email.

§1 Address of the Controller

The controller within the meaning of the General Data Protection Regulation, other data protection laws applicable in the Member States of the European Union, and other provisions of a data protection nature is:

§2 Cookies

The websites of *.grow-metric.com use cookies. Cookies are text files that are stored on a computer system via an internet browser.

Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier for the cookie. It consists of a string of characters by which websites and servers can be assigned to the specific internet browser in which the cookie was stored. This allows visited websites and servers to distinguish the individual browser of the data subject from other internet browsers that contain different cookies. A specific internet browser can be recognized and identified via the unique cookie ID.

Through the use of cookies, *.grow-metric.com can provide the users of this website with more user-friendly services that would not be possible without the use of cookies.

By means of a cookie, the information and offers on our website can be optimized for the benefit of the user. As already mentioned, cookies allow us to recognize the users of our website. The purpose of this recognition is to make it easier for users to use our website. For example, the user of a website that uses cookies does not have to re-enter their access data on each visit, because this is handled by the website and the cookie stored on the user's computer system.

The data subject may prevent the setting of cookies by our website at any time by means of a corresponding setting in the internet browser used, and may thus permanently object to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via an internet browser or other software programs. This is possible in all common internet browsers. If the data subject deactivates the setting of cookies in the internet browser used, not all functions of our website may be fully usable.

§3 Collection of General Data and Information

The website of *.grow-metric.com collects a series of general data and information each time the website is accessed by a data subject or an automated system. This general data and information may include (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website (so-called referrers), (4) the sub-pages accessed via an accessing system on our website, (5) the date and time of access to the website, (7) other similar data and information used for threat prevention in the event of attacks on our information technology systems.

When using this general data and information, *.grow-metric.com does not draw any conclusions about the data subject. This information is rather needed to (1) deliver the contents of our website correctly, (2) optimize the contents of our website and the advertising for it, (3) ensure the long-term functionality of our information technology systems and the technology of our website. This anonymously collected data and information is therefore evaluated by *.grow-metric.com statistically and with the aim of increasing data protection and data security, to ultimately ensure an optimal level of protection for the personal data we process. The anonymous data is stored separately from all personal data provided by a data subject.

§4 Registration on Our Website

The data subject has the option of registering on the website of the controller by providing personal data. The personal data transmitted to the controller in the process is determined by the respective input mask used for registration. The personal data entered by the data subject is collected and stored exclusively for internal use by the controller and for its own purposes.

Registration of the data subject with the voluntary provision of personal data enables the controller to offer the data subject content or services that, by their nature, can only be offered to registered users. Registered persons are free to change the personal data provided during registration at any time or to have it completely deleted from the controller's data records.

The controller will at any time provide each data subject with information upon request about what personal data is stored about the data subject. Furthermore, the controller will correct or delete personal data at the request or indication of the data subject, to the extent that there are no statutory retention obligations to the contrary. All employees of the controller are available to the data subject as contact persons in this context.

§5 Subscription to Posts & Other Subscriptions

If you subscribe to posts or similar content on our websites, our system will send you emails, which you can unsubscribe from at any time via the email or your user account settings. To be able to inform you about follow-up posts by email, we process your email address.

The legal basis for this is Art. 6 para. 1 lit. a) GDPR. You may revoke your consent to this subscription at any time with effect for the future in accordance with Art. 7 para. 3 GDPR. To do so, you only need to notify us of your revocation or click the unsubscribe link contained in the respective email.

§6 Contact Options via the Website

The website *.grow-metric.com contains, pursuant to statutory provisions, information that enables quick electronic contact with our community as well as direct communication with us, which also includes a general address for so-called electronic mail (email address). If a data subject contacts the controller by email or via a contact form, the personal data transmitted by the data subject is automatically stored. Such personal data transmitted on a voluntary basis by a data subject to the controller is stored for the purposes of processing or contacting the data subject. There is no transfer of this personal data to third parties.

§7 Routine Deletion and Blocking of Personal Data

The controller processes and stores personal data of the data subject only for the period necessary to achieve the purpose of storage, or as provided for by the European directive and regulation body or another legislator in laws or regulations to which the controller is subject.

If the storage purpose ceases to apply or if a storage period prescribed by the European directive and regulation body or another competent legislator expires, personal data is routinely blocked or deleted in accordance with statutory provisions.

§8 Rights of the Data Subject

a) Right to Confirmation
Every data subject has the right granted by the European directive and regulation body to request from the controller confirmation as to whether personal data concerning him or her is being processed. If a data subject wishes to exercise this right to confirmation, they may contact an employee of the controller at any time.

b) Right to Access
Every person affected by the processing of personal data has the right granted by the European directive and regulation body to obtain, at any time, free information from the controller about the personal data stored about them and a copy of that information. Furthermore, the European directive and regulation body has granted the data subject access to the following information:

- the purposes of the processing
- the categories of personal data being processed
- the recipients or categories of recipients to whom the personal data has been or will be disclosed, in particular recipients in third countries or international organizations
- where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period
- the existence of the right to request rectification or erasure of personal data or restriction of processing by the controller or to object to such processing
- the existence of the right to lodge a complaint with a supervisory authority
- where the personal data is not collected from the data subject: all available information about the source of the data
- the existence of automated decision-making, including profiling, pursuant to Article 22(1) and (4) GDPR and — at least in those cases — meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject

Furthermore, the data subject has the right to obtain information as to whether personal data has been transferred to a third country or to an international organization. If this is the case, the data subject also has the right to obtain information about the appropriate safeguards relating to the transfer.

If a data subject wishes to exercise this right to access, they may contact the controller at any time.

c) Right to Rectification
Every person affected by the processing of personal data has the right granted by the European directive and regulation body to request the immediate rectification of inaccurate personal data concerning them. Furthermore, the data subject has the right to request the completion of incomplete personal data — also by means of a supplementary statement — taking into account the purposes of the processing.

If a data subject wishes to exercise this right to rectification, they may contact the controller at any time.

d) Right to Erasure (Right to be Forgotten)
Every person affected by the processing of personal data has the right granted by the European directive and regulation body to request from the controller the erasure of personal data concerning them without undue delay, where one of the following grounds applies and to the extent that processing is not necessary:

- The personal data was collected or otherwise processed for purposes for which it is no longer necessary.
- The data subject withdraws consent on which the processing is based pursuant to Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR and where there is no other legal ground for the processing.
- The data subject objects to the processing pursuant to Art. 21(1) GDPR and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Art. 21(2) GDPR.
- The personal data has been unlawfully processed.
- The erasure of personal data is necessary for compliance with a legal obligation in Union or Member State law to which the controller is subject.
- The personal data was collected in relation to information society services offered pursuant to Art. 8(1) GDPR.

If any of the above grounds apply and a data subject wishes to request the erasure of personal data stored at *.grow-metric.com, they may contact the controller at any time. *.grow-metric.com will arrange for the erasure request to be complied with without delay.

Where *.grow-metric.com has made personal data public and is obliged, as controller, pursuant to Art. 17(1) GDPR to erase the personal data, *.grow-metric.com shall, taking account of available technology and the cost of implementation, take reasonable steps, including technical measures, to inform other controllers processing the personal data that the data subject has requested erasure of all links to, or copies or replications of, that personal data, to the extent that processing is not required. *.grow-metric.com will arrange the necessary steps in individual cases.

e) Right to Restriction of Processing
Every person affected by the processing of personal data has the right granted by the European directive and regulation body to request from the controller restriction of processing where one of the following conditions applies:

- The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data.
- The processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of its use instead.
- The controller no longer needs the personal data for the purposes of the processing, but the data subject requires it for the establishment, exercise, or defense of legal claims.
- The data subject has objected to processing pursuant to Art. 21(1) GDPR pending the verification whether the legitimate grounds of the controller override those of the data subject.
If any of the above conditions is met and a data subject wishes to request restriction of personal data stored at *.grow-metric.com, they may contact the controller at any time. *.grow-metric.com will arrange for the restriction of processing.

f) Right to Data Portability
Every person affected by the processing of personal data has the right granted by the European directive and regulation body to receive the personal data concerning them, which was provided to a controller, in a structured, commonly used and machine-readable format. They also have the right to transmit that data to another controller without hindrance from the controller to which the personal data was provided, as long as the processing is based on consent pursuant to Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, or on a contract pursuant to Art. 6(1)(b) GDPR, and the processing is carried out by automated means, provided that processing is not necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

Furthermore, when exercising the right to data portability pursuant to Art. 20(1) GDPR, the data subject has the right to have the personal data transmitted directly from one controller to another, where technically feasible and where doing so does not adversely affect the rights and freedoms of others.

To exercise the right to data portability, the data subject may contact *.grow-metric.com at any time.

g) Right to Object
Every person affected by the processing of personal data has the right granted by the European directive and regulation body to object, on grounds relating to their particular situation, at any time to processing of personal data concerning them which is carried out on the basis of Art. 6(1)(e) or (f) GDPR. This also applies to profiling based on these provisions.

*.grow-metric.com shall no longer process the personal data in the event of the objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or the processing serves the establishment, exercise or defense of legal claims.

Where *.grow-metric.com processes personal data for direct marketing purposes, the data subject has the right to object at any time to processing of personal data concerning them for such marketing. This also applies to profiling to the extent that it is related to such direct marketing. If the data subject objects to *.grow-metric.com processing for direct marketing purposes, *.grow-metric.com will no longer process the personal data for those purposes.

In addition, the data subject has the right, on grounds relating to their particular situation, to object to processing of personal data concerning them which is carried out at *.grow-metric.com for scientific or historical research purposes, or for statistical purposes pursuant to Art. 89(1) GDPR, unless the processing is necessary for the performance of a task carried out for reasons of public interest.

To exercise the right to object, the data subject may contact *.grow-metric.com directly. The data subject is also free, in the context of the use of information society services, and notwithstanding Directive 2002/58/EC, to exercise their right to object by automated means using technical specifications.

h) Automated Individual Decision-Making, Including Profiling
Every person affected by the processing of personal data has the right granted by the European directive and regulation body not to be subject to a decision based solely on automated processing — including profiling — which produces legal effects concerning them or similarly significantly affects them, unless the decision (1) is necessary for entering into, or performance of, a contract between the data subject and a controller, or (2) is authorized by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard the data subject's rights and freedoms and legitimate interests, or (3) is based on the data subject's explicit consent.

If the decision (1) is necessary for entering into, or performance of, a contract between the data subject and a controller, or (2) is based on the data subject's explicit consent, *.grow-metric.com shall implement suitable measures to safeguard the data subject's rights and freedoms and legitimate interests, at least the right to obtain human intervention on the part of the controller, to express their point of view, and to contest the decision.

If the data subject wishes to exercise rights with respect to automated decisions, they may contact the controller at any time.

i) Right to Withdraw Data Protection Consent
Every person affected by the processing of personal data has the right granted by the European directive and regulation body to withdraw their consent to the processing of personal data at any time.

If the data subject wishes to exercise their right to withdraw consent, they may contact the controller at any time.

§9 Data Protection for Applications and the Application Process

The controller collects and processes the personal data of applicants for the purpose of handling the application process. Processing may also be carried out electronically. This is particularly the case when an applicant submits relevant application documents to the controller by electronic means, for example via email or through a web form on the website. If the controller concludes an employment contract with an applicant, the transmitted data is stored for the purpose of processing the employment relationship in compliance with statutory provisions. If no employment contract is concluded with the applicant by the controller, the application documents are automatically deleted two months after notification of the rejection decision, provided there are no other legitimate interests of the controller that preclude deletion. Other legitimate interests in this context include, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).

§10 Data Protection Provisions for the Use of AWStats (Server-Side Web Analytics)

As the operator of this website, we use the web analytics tool AWStats. AWStats is a server-side statistics tool for analyzing web server log files. The analysis is carried out exclusively on the basis of access data automatically recorded by the web server we operate.

Web analytics is used for the statistical evaluation of the use of our website and for the optimization of our web offering. Pages accessed, time of access, referrer information, and technical details such as browser type and operating system are analyzed, among other things.

Processing is carried out exclusively on the basis of log files generated by the web server, which are stored on our own systems. No cookies are used or active user tracking for analysis purposes takes place.

The IP address of visitors is captured by the web server in log files and processed for statistical purposes. Depending on the server configuration, the IP address is automatically truncated or anonymized after a certain period, so that it can no longer be linked to an individual.

Data is not shared with third parties. The log files are evaluated exclusively by us on our own servers.

Since no cookies or external tracking technologies are used, separate consent for this type of web analysis is generally not required. Visitors may object to the processing at any time by refraining from using our website.

§11 Data Protection Provisions on the Use of YouTube

The controller has integrated components of YouTube on this website. YouTube is an internet video portal that enables video publishers to post video clips free of charge and allows other users to view, rate, and comment on them free of charge as well. YouTube allows the publication of all types of videos, which is why complete film and television broadcasts, as well as music videos, trailers, or videos produced by users themselves, can be accessed via the internet portal.

The operating company of YouTube is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

Each time one of the individual pages of this website operated by the controller is accessed and a YouTube component (YouTube video) has been integrated, the internet browser on the data subject's information technology system is automatically prompted by the respective YouTube component to download a representation of the corresponding YouTube component from YouTube. Further information about YouTube can be retrieved at https://www.youtube.com/yt/about/de/. As part of this technical process, YouTube and Google gain knowledge of which specific sub-page of our website is visited by the data subject.

If the data subject is simultaneously logged in to YouTube, YouTube recognizes which specific sub-page of our website the data subject is visiting when a sub-page containing a YouTube video is accessed. This information is collected by YouTube and Google and assigned to the respective YouTube account of the data subject.

YouTube and Google will receive information via the YouTube component that the data subject has visited our website whenever the data subject is simultaneously logged in to YouTube at the time of accessing our website; this occurs regardless of whether the data subject clicks on a YouTube video or not. If the data subject does not wish this information to be transmitted to YouTube and Google, they can prevent the transmission by logging out of their YouTube account before accessing our website.

The privacy policy published by YouTube, available at https://www.google.de/intl/de/policies/privacy/, provides information about the collection, processing, and use of personal data by YouTube and Google.

§12 Amazon Partner Program

We use the Amazon Partner Program of Amazon.com, Inc. on our website. The responsible entities within the meaning of the privacy policy are Amazon Europe Core S.à.r.l., Amazon EU S.à.r.l., Amazon Services Europe S.à.r.l. and Amazon Media EU S.à.r.l., all four located at 5, Rue Plaetis, L-2338 Luxembourg, as well as Amazon Instant Video Germany GmbH, Domagkstr. 28, 80807 Munich. Amazon Deutschland Services GmbH, Marcel-Breuer-Str. 12, 80807 Munich acts as the data processor. Through the use of this Amazon Partner Program, data about you may be transmitted to, stored by, and processed by Amazon.

In this privacy policy, we inform you about which data is involved, why we use the program, and how you can manage or prevent the data transfer.

As soon as you interact with Amazon products and services, Amazon collects data about you. Amazon distinguishes between information you actively provide to the company and information that is automatically collected and stored. "Active information" includes, for example, name, email address, phone number, age, payment information, or location information. So-called "automatic information" is primarily stored via cookies. This includes information about user behavior, IP address, device information (browser type, location, operating systems), or the URL. Amazon also stores the clickstream — meaning the path (sequence of pages) you take as a user to reach a product. Amazon also stores cookies in your browser to trace the origin of an order, allowing the company to recognize that you clicked on an Amazon advertisement or a partner link via our website.

Personal data is stored by Amazon for as long as necessary for Amazon's business services or required for legal reasons. Since Amazon's headquarters is in the USA, the collected data is also stored on American servers.

You have the right to access and delete your personal data at any time. If you have an Amazon account, you can manage or delete much of the collected data in your account. Amazon links that benefit from the partner program are labeled with "(Affiliate Link)".

§13 Prize Draws / Contests

We offer you the opportunity to participate in prize draws via our website. If you participate in one of our contests, the data you enter in connection with your participation will be processed without your further consent, but of course exclusively for the purpose of conducting and processing the respective contest, and transmitted to the contest sponsor.

As part of the contest processing, we will pass on the data (email address & nickname) to the contest sponsor, who will then use the stated data for processing purposes.

The legal basis for sharing the data is Art. 6(1)(b) GDPR.

You may revoke your consent to the processing of data for participation in our contests at any time with future effect in accordance with Art. 7(3) GDPR. To do so, you only need to notify us of your revocation.

§14 Hosting and Email Delivery

The hosting services we use serve the provision of the following services: infrastructure and platform services, computing capacity, storage space and database services, email delivery, security services, and technical maintenance services that we use for the purpose of operating this online offering.

In this context, we, or our hosting provider, process inventory data, contact data, content data, contract data, usage data, meta- and communication data of customers, interested parties, and visitors to this online offering on the basis of our legitimate interests in the efficient and secure provision of this online offering pursuant to Art. 6(1)(f) GDPR in conjunction with Art. 28 GDPR (conclusion of a data processing agreement).

§15 Collection of Access Data and Log Files

We, or our hosting provider, collect data about each access to the server on which this service is located (so-called server log files) on the basis of our legitimate interests within the meaning of Art. 6(1)(f) GDPR. Access data includes the name of the retrieved webpage, file, date and time of retrieval, amount of data transferred, notification of successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address, and the requesting provider (note: on our server the IP addresses are anonymized, but we cannot predict or control what may be stored at other network nodes).

Log file information is stored for a short period for security purposes (e.g., to investigate cases of misuse or fraud) and then deleted. Data whose further retention is necessary for evidentiary purposes is exempt from deletion until the respective incident has been fully resolved.

§16 SSL Encryption

To protect the security of your data during transmission, we use state-of-the-art encryption methods (e.g., SSL) via HTTPS.

§17 Use of Cloudflare (DNS Service)

We use the DNS service of Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA, to provide our domain infrastructure. In this context, Cloudflare is used exclusively for resolving our domain names.

No storage or processing of your personal data by Cloudflare takes place through this service, as no proxy functions or content delivery services are used. Traffic occurs directly between your browser and our web server.

Use is based on our legitimate interests in the stable and secure accessibility of our online offering pursuant to Art. 6(1)(f) GDPR.

Further information can be found in Cloudflare's privacy policy: https://www.cloudflare.com/privacypolicy/.

§18 Integration of Third-Party Services and Content

Within our online offering, we use content or service offerings from third-party providers on the basis of our legitimate interests (i.e., interest in the analysis, optimization, and economical operation of our online offering within the meaning of Art. 6(1)(f) GDPR) in order to integrate their content and services, such as videos or fonts (hereinafter uniformly referred to as "content").

This always requires that the third-party providers of this content can see the users' IP address, since without the IP address they would not be able to send the content to their browser. The IP address is therefore required for displaying this content. We endeavor to use only content whose respective providers use the IP address solely for the delivery of the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. The "pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user's device and may include, among other things, technical information about the browser and operating system, referring websites, visit time, and further details about the use of our online offering, as well as being linked to such information from other sources.

§19 Integrated Advertising

All advertising integrated on our site is handled through internal ad placements; no data is shared with external services. The data collected in this context can be found under §3. However, after clicking on an advertising partner's website, you will be redirected there — please refer to their privacy policy for information about the data collected there.

§20 Legal Basis for Processing

Art. 6(1)(a) GDPR serves as the legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is a party — as is the case, for example, for processing operations required for the delivery of goods or the provision of any other service or consideration — processing is based on Art. 6(1)(b) GDPR. The same applies to processing operations that are necessary for carrying out pre-contractual measures, such as in cases of inquiries regarding our products or services. If our company is subject to a legal obligation requiring the processing of personal data, such as for the fulfillment of tax obligations, processing is based on Art. 6(1)(c) GDPR. In rare cases, processing of personal data may be necessary to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor at our premises were to be injured and as a result their name, age, health insurance data, or other vital information had to be passed on to a doctor, hospital, or other third parties. In that case, processing would be based on Art. 6(1)(d) GDPR. Finally, processing operations may be based on Art. 6(1)(f) GDPR. Processing operations not covered by any of the aforementioned legal bases are covered by this legal basis if processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject. Such processing operations are permitted to us in particular because they have been specifically mentioned by the European legislator. In that regard, the legislator took the view that a legitimate interest could be assumed if the data subject is a customer of the controller (Recital 47 sentence 2 GDPR).

§21 Legitimate Interests in Processing Pursued by the Controller or a Third Party

Where the processing of personal data is based on Article 6(1)(f) GDPR, our legitimate interest is the conduct of our business activities for the benefit of the well-being of all our employees and shareholders.

§22 Duration for Which Personal Data Is Stored

The criterion for the duration of storage of personal data is the respective statutory retention period. After the expiry of that period, the corresponding data is routinely deleted.

§23 Statutory or Contractual Requirements for the Provision of Personal Data; Necessity for Contract Conclusion; Obligation of the Data Subject to Provide Personal Data; Possible Consequences of Non-Provision

We inform you that the provision of personal data is partly required by law (e.g., tax regulations) or may also result from contractual provisions (e.g., information about the contractual partner). In some cases, it may be necessary for a data subject to provide us with personal data in order to conclude a contract, which we must then process.

§24 Existence of Automated Decision-Making

As a responsible community, we refrain from automated decision-making or profiling.

§25 Payment Providers

PayPal:
If you choose PayPal as your payment method, payment data will be transmitted to the payment provider PayPal. Further information can be found in PayPal's privacy notices: PayPal Privacy.

Bank Transfer:
For payments via bank transfer, we collect the banking details necessary to carry out the transaction.

§26 Hosting and Server Location

This website is operated on a server provided by Hetzner Online GmbH. The server location currently used is in Ashburn, Virginia, USA. When the website is accessed, technically necessary data is processed (e.g., IP address, date and time of access, browser information, server log files). Processing is carried out for the purpose of providing, securing, and stabilizing the website.

A data processing agreement has been concluded with the provider pursuant to Art. 28 GDPR. To the extent that personal data is transferred to the USA, this is done on the basis of appropriate safeguards pursuant to Art. 46 GDPR, in particular standard contractual clauses, where required.

§27 Changes to Our Privacy Policy

We reserve the right to adapt this privacy policy so that it always complies with current legal requirements, or to implement changes to our services in the privacy policy, e.g., when introducing new services. The new privacy policy will then apply to your next visit.

Last updated: 30 / 05 2026