Privacy

1. General notes

We highly value your trust as a visitor to our website and in the following we provide you with all necessary information on how, to what extent and for how long general or personal data is collected and processed by us or third parties. For this purpose, we strictly observe the legal provisions of the EU Data Protection Basic Regulation (EU-GDPR) by means of organizational and technical measures.

The following information provides a more precise and simple overview of what happens to your data when you visit this website. In particular, personal data refers to all data with which you can be personally identified. This includes, for example, your name, IP address or e-mail address.

Who is responsible for data collection on this website?

The data processing on this website is carried out by the website operator. The person responsible for data processing on this website is

Appaxy UG (haftungsbeschränkt)
Managing Director: Marvin Biedermann
Großenhainer Str. 98
01127 Dresden
Phone: +4917642762455
e-mail: info@appaxy.de

Responsible party is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g. names, e-mail addresses, etc.).

How do we collect your data?

On the one hand, your data is collected when you provide us with it voluntarily and on your own initiative. This can be, for example, your e-mail address, which you provide for a mailto contact. Personal data that we receive in this way is not stored by us unless it is expressly required for legal reasons (e.g. storage obligations for invoicing purposes). In any case, except for immediate processing (e.g. reply to your e-mail) and legal obligations, the data will not be further processed and will be deleted after these reasons have ceased to exist. Other data is collected automatically or with your consent by our IT systems when you visit the website. These are mainly technical data like:

- times (server request and time of submission of a video)
- server log data

This data is collected automatically as soon as you enter this website. Other technical data such as the Internet browser, the operating system and the host name of the accessing computer are not collected on our website. Conventional IP addresses and dynamic IP addresses (which change daily, for example) can be counted as personal data and are not collected or stored by our site itself. However, we have no influence on other service providers, such as our server host or the company Google.

What do we use your data for?

Part of the data is collected to ensure that the website is provided without errors. Data can also be used to analyze user behavior. However, this is done on our website in an anonymized form by, for example, the average length of stay or the time of access. The collection of this purely technical data is based on Art. 6 para. 1 lit. b GDPR. The operator of the website has a legitimate interest in optimizing the website.
The exact way in which the data is processed and related information is explained in this privacy policy.

What rights do you have regarding your data?

You have the right to receive information free of charge about the origin, recipient and purpose of your stored personal data at any time. You also have the right to demand the correction or deletion of this data. If you have given your consent to data processing, you can revoke this consent for the future at any time. In addition, you have the right to demand, under certain circumstances, the restriction of the processing of your personal data. Furthermore, you have the right of appeal to the responsible supervisory authority. You can contact us at any time at the address given in the imprint for this and other questions on the subject of data protection.

Data security

We pursue technical and organizational measures to protect your data from unauthorized access, loss or misuse. Your data will only be collected by employees who will only use it for the purposes listed in this declaration.

Changes to this privacy policy

Since there may be legal changes in data protection, such as new or expanded guidelines, we reserve the right to amend this data protection declaration within this framework if it becomes necessary. In addition, the privacy policy can be expanded, for example, if a new tool is integrated. If there are any changes, we will announce them on this website and have them re-confirmed in the privacy policy by all visitors. In addition, a chronologically dated history of the content changes is kept at the end of the privacy policy.

Relevant legal basis of the basic data protection regulation (GDPR)

Your data will be processed on this website on the basis of the following legal principles. Please note that in addition to these regulations, national data protection regulations may apply in your country of residence or company.

Consent (Art. 6 para. 1 sentence 1 lit. a GDPR)
The data subject has given his/her consent to the processing of personal data concerning him/her for one or more specified purposes.

Fulfilment of contract or pre-contractual requests (Art. 6 para. 1 sentence 1 lit. b. GDPR)
The processing is necessary for the performance of a contract to which the data subject is party or in order to implement pre-contractual measures taken at the request of the data subject.

Legal obligations (Art. 6 para. 1 sentence 1 lit. b. GDPR)
The processing is necessary to fulfil a legal obligation to which the controller is subject.

Protection of vital interests (Art. 6 para. 1 p. 1 lit. d. GDPR)
The processing is necessary to protect the vital interests of the data subject or of another natural person.

Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. GDPR)
The processing is necessary in order to protect the legitimate interests of the controller or of a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data.

2. Hosting and content delivery networks (CDN)

External Hosting

This website is hosted by an external service provider (Hoster). Data collected on this website is stored on the hoster's servers. The use of the hoster is for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f GDPR). Our hoster will only process your data to the extent necessary to fulfill its performance obligations and will follow our instructions with regard to this data.

We use the following hoster:
STRATO AG
Seat of the stock corporation: Pascalstraße 10
10587 Berlin

3. Notes and mandatory information on data protection

As operators of these pages, we take the protection of all your data very seriously. We treat all your data confidentially and according to the legal data protection regulations as well as this privacy policy. This privacy policy explains what data we collect and what we use it for. It also explains how this is done and for what purpose. We would like to point out that data transmission over the Internet (e.g. communication by e-mail) can have security gaps. It is not possible to completely protect data from access by third parties.

Storage period

Data remains with us until the purpose for which it was collected ceases to apply. If you make a justified request for deletion or revoke your consent to data processing, your data will be deleted immediately, unless we have other legally permissible reasons for storing your personal data (e.g. tax or commercial law retention periods). In the latter case, the data will be deleted after these reasons have ceased to exist.

IPs

IPs are not currently covered by us. However, we have no influence on other providers, as explained in the next paragraph, for example. If we detect increased activity by bots, we will collect IPs as a countermeasure, anonymizing and encrypting them so that they cannot be associated with you. The privacy policy will then be updated and you will be asked to reconfirm it.

Note on data transfer to the USA

Among other things, our website includes tools from companies based in the USA. This concerns YouTube in particular. If these tools are active, your data may be transferred to the US servers of the respective companies. We would like to point out that the USA is not a safe third country in terms of EU data protection law. US companies are obliged to release personal data to security authorities without you as the person concerned being able to take legal action against this. Therefore, it cannot be excluded that US authorities (e.g. secret services) may process, evaluate and permanently store your data on US servers for monitoring purposes. Despite the anonymization and encryption of your IP, we have no influence on these processing activities. If you visit our site, as a regular or occasional YouTube user, you should agree to these circumstances. Otherwise, we advise you not to continue using our site, as we cannot influence the actions of Google (owner of YouTube).

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as site operator. You can recognize an encrypted connection by the fact that the address line of your browser changes from "http://" to "https://" and by the lock symbol in your browser line. If the SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Revocation of your consent to data processing

Many data processing operations are only possible with your expressed consent. You can revoke a previously given consent at any time. The legality of the data processing that took place up to the revocation remains unaffected by the revocation. Information about your rights follows.

Right to object to data collection in special cases and to direct advertising (Art. 21 GDPR)

IF THE DATA PROCESSING IS BASED ON ART. 6 ABS. 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR SPECIFIC SITUATION, INCLUDING PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS DATA PROTECTION DECLARATION. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA UNLESS WE CAN PROVE THAT THERE ARE COMPELLING REASONS FOR PROCESSING WHICH ARE WORTHY OF PROTECTION AND WHICH OUTWEIGH YOUR INTERESTS, RIGHTS AND FREEDOMS OR IF THE PROCESSING SERVES TO ASSERT, EXERCISE OR DEFEND LEGAL CLAIMS (OBJECTION ACCORDING TO ART. 21 PARA. 1 GDPR). IF YOUR PERSONAL DATA ARE PROCESSED FOR THE PURPOSE OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR THE PURPOSE OF SUCH MARKETING, INCLUDING PROFILING, INSOFAR AS IT IS CONNECTED WITH SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR THE PURPOSE OF DIRECT MARKETING (OBJECTION ACCORDING TO ART. 21 PARA. 2 GDPR).

Right of appeal to the competent supervisory authority

In the event of violations of the DPAs, the persons concerned have a right of appeal to a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the suspected violation. This right of appeal is without prejudice to other administrative or judicial remedies.

Information, deletion and correction

Within the framework of the applicable legal provisions, you have the right to obtain information free of charge at any time about your stored personal data, its origin and recipients and the purpose of the data processing and, if applicable, a right to correct or delete this data. The right to deletion does not exist if, for example, legal obligations or public interest (health, science, archive purposes, historical research, etc.) speak against it. For this purpose, as well as for further questions regarding personal data, you can contact us at any time at the address given in the imprint, ask questions or request information.

Right to limitation of processing

You have the right to request that the processing of your personal data be restricted. To do so, you can contact us at any time at the address given in the imprint. The right to restrict processing exists in the following cases:

- If you dispute the correctness of your personal data stored with us, we usually need time to verify this. For the duration of the review, you have the right to demand the restriction of the processing of your personal data.
- If the processing of your personal data was/is unlawful, you may request the restriction of the processing instead of the deletion.
- If we no longer need your personal data, but you do need it for the exercise, defence or assertion of legal claims, you have the right to demand the restriction of the processing of your personal data instead of its deletion.
- If you have lodged an objection in accordance with Art. 21 para. 1 GDPR, a balance must be struck between your interests and ours. As long as it is not yet clear whose interests prevail, you have the right to demand the restriction of the processing of your personal data. If you have restricted the processing of your personal data, this data - apart from its storage - may only be processed with your consent or for the assertion, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the European Union or a member state.

Right to data transferability

You have the right to have data, which we process automatically on the basis of your consent or in fulfilment of a contract, handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done to the extent technically feasible.

Right to information

If you exercise the right to correct, delete or limit the processing of your personal data, we will inform all recipients to whom we have disclosed this data. This is only not the case if it is impossible or involves a disproportionate effort. You also have the right to be informed about the recipients.

4. Data collection on this website

Cookies

Our Internet pages use so-called "cookies". Cookies are small text files and do not cause any damage on your end device. They are either temporarily stored on your device for the duration of a session (session cookies) or permanently (permanent cookies). Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your device until you delete them yourself or until they are automatically deleted by your web browser. In some cases, cookies from third-party companies may also be stored on your terminal device when you enter our site (third-party cookies). These enable us or you to use certain services of the third-party company (e.g. cookies for the processing of payment services). Cookies have various functions. Many cookies are technically necessary because certain website functions would not work without them (e.g. the shopping cart function or the display of videos). Other cookies are used to evaluate user behavior or display advertising. Cookies that are required to carry out the electronic communication process (necessary cookies) or to provide certain functions that you have requested (functional cookies, e.g. for the shopping basket function) or to optimize the website (e.g. cookies for measuring the web audience) are stored on the basis of Art. 6 para. 1 lit. f GDPR, unless another legal basis is given. Website operators have a legitimate interest in the storage of cookies for the technically error-free and optimized provision of their services. If consent to the storage of cookies has been requested, the storage of the relevant cookies will be carried out exclusively on the basis of this consent (Art. 6 para. 1 lit. a GDPR); consent may be revoked at any time. You can set your browser so that you are informed about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for specific cases or in general and activate the automatic deletion of cookies when closing the browser. However, if you deactivate cookies, the functionality of this website will be limited.

Consent Tool

For cookies from third-party companies such as YouTube, we will ask you or have asked for your consent within the framework of the Consent Tool. If necessary, you can call this up again by clicking on the button for the tool at the bottom of the page.

mailto link

If you want to contact us for feedback or other reasons, you can use our mailto link as an alternative to the conventional contact form. We are grateful for criticism and praise and take every message in this regard very seriously. If you wish to receive a prompt reply (on the same working day or early the next working day), your e-mail address will remain in our system until we reply. This information will not be viewed by anyone until it has been processed by one of our employees. Immediately thereafter, your e-mail address will be deleted, unless there are legal regulations to the contrary.

Inquiry by e-mail, telephone or fax

If you would like to contact our company directly beyond the contents of this website, you can do so by e-mail or telephone using the information provided in our imprint. All data voluntarily provided by you on this request can be viewed by us for the purpose of processing your request. We will not pass on this data without your consent and will be deleted after processing on the basis of Art. 6 para. 1 lit. b GDPR, if no mandatory legal provisions exist. If your request is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures, a legitimate interest based on Art. 6 para. 1 lit. b GDPR exists. In all other cases the processing is based on our justified interest in the effective processing of the inquiries addressed to us (Art. 6 para. 1 lit. f GDPR).

5. Plugins and tools

Payment method: PayPal

Payment transactions are processed on our website with the online payment service PayPal. Therefore it is necessary that you have an account there if you want to buy online from us. The European operating company of PayPal is PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg. If you choose PayPal as your payment method, your data necessary for the payment process will be automatically transmitted to PayPal. This serves fraud prevention and the processing of data for payment and contract processing is a legitimate interest of us as a provider. By selecting the payment option, you agree to the transmission of the necessary data. These are usually:

Name
Address
Phone and mobile number
if applicable Company
e-mail address
IP address

The data transmitted to PayPal may be transmitted by PayPal to credit reporting agencies. The purpose of this transmission is to check identity and creditworthiness. PayPal may also pass on your data to third parties if this is necessary for the fulfilment of contractual obligations or if the data is to be processed on behalf of an order. PayPal's current data protection regulations can be viewed at https://www.paypal.com/de/webapps/mpp/ua/privacy-full/

Other payment options

.

Depending on the platform, payment is made via one or more payment methods that are available to you. In addition to Paypal, this can also be, for example, payment by credit card or the app store. When paying via these options, you agree to the respective conditions that are necessary for this. We have no influence on the conditions of the respective payment options.

Paddle

Your payment is expected to go first to Paddle. Paddle will then pass on the remainder to us after a pro-rata payment for organizational services. By confirming the privacy policy, you are stating that you, as the buyer, expressly agree to these terms.

JQuery

For optimal loading speed and user experience, we use the widely used Javascript library jQuery. This is a legitimate interest on the basis of Art. 6 para. 1 lit. f GDPR. It is likely that the necessary data is already available in your cache and therefore does not need to be reloaded. If this is not the case, the data will be loaded locally on the server in order to exclude a connection of your browser with Google in this respect.

Glyphicons from Bootstrap

For the appealing presentation of our website we use icons on the basis of Art. 6 para. 1 lit. f GDPR. These glyphicons of the frontend CSS framework Bootstrap were developed by Twitter. They are loaded locally in order to exclude a connection of your browser with pages of the company Twitter Inc. For large parts of the creation of this privacy policy (originally in german) drafts of the page eRecht24 were used. Furthermore, the declaration has been extensively adapted and supplemented in order to provide you with concrete and complete information regarding data protection on our website.

Date: 03/08/21

Consent Tool