Social Media Introduction

Social media privacy policy summary
👥 Data subject: Visitors to the website
🤝 Purpose: Presentation and optimisation of our service, contact with visitors, interested parties, etc., advertising.
📓 Data processed: Data such as telephone numbers, email addresses, contact details, data on user behaviour, information on your device and your IP address.
You can find more details on this with the social media tool used in each case.
📅 Storage duration: depending on the social media platforms used.
Legal basis: Art. 6 para. 1 lit. a DSGVO (consent), Art. 6 para. 1 lit. f DSGVO (legitimate interests).

What is social media?

In addition to our website, we are also active on various social media platforms. In this context, user data may be processed so that we can target users who are interested in us via the social networks. In addition, elements of a social media platform may also be embedded directly in our website. This is the case, for example, when you click on a so-called social button on our website and are directly redirected to our social media presence. So-called social media are websites and apps through which registered members can produce content, share content openly or in specific groups and network with other members.

Why do we use social media?

For years, social media platforms have been the place where people communicate and connect online. Our social media presences allow us to bring our products and services closer to prospective customers. The social media elements integrated on our website help you to be able to switch to our social media content quickly and without complications.
The data that is stored and processed through your use of a social media channel is primarily for the purpose of conducting web analyses. The aim of these analyses is to be able to develop more precise and personalised marketing and advertising strategies. Depending on your behaviour on a social media platform, appropriate conclusions can be drawn about your interests with the help of the evaluated data and so-called user profiles can be created. This also enables the platforms to present you with customised advertisements. Cookies are usually set in your browser for this purpose, which store data on your usage behaviour.
We generally assume that we remain responsible under data protection law, even if we use services of a social media platform. However, the European Court of Justice has ruled that in certain cases the operator of the social media platform may be jointly responsible with us within the meaning of Art. 26 DSGVO. Insofar as this is the case, we point this out separately and work on the basis of an agreement in this regard. The essence of the agreement is then reproduced below for the platform concerned.
Please note that when using the social media platforms or our built-in elements, data may also be processed from you outside the European Union, as many social media channels, for example Facebook or Twitter, are American companies. This may make it less easy for you to claim or enforce your rights in relation to your personal data.

What data is processed?

Exactly what data is stored and processed depends on the provider of the social media platform. But usually it is data such as phone numbers, email addresses, data you enter in a contact form, user data such as which buttons you click, who you like or follow, when you visited which pages, information about your device and your IP address. Most of this data is stored in cookies. Especially if you yourself have a profile on the social media channel you are visiting and are logged in, data can be linked to your profile.
All data collected via a social media platform is also stored on the servers of the providers. This means that only the providers have access to the data and can give you the appropriate information or make changes.
If you want to know exactly what data is stored and processed by the social media providers and how you can object to the data processing, you should carefully read the respective privacy policy of the company. We also recommend that you contact the provider directly if you have questions about data storage and data processing or if you want to assert corresponding rights.

Duration of data processing

We will inform you about the duration of data processing below, provided we have further information on this. For example, the social media platform Facebook stores data until it is no longer needed for its own purpose. However, customer data that is matched with our own user data is deleted within two days. In general, we only process personal data for as long as is absolutely necessary for the provision of our services and products. If it is required by law, for example in the case of accounting, this storage period may be exceeded.

Right to object

You also have the right and the option to revoke your consent to the use of cookies or third-party services such as embedded social media elements at any time. This works either via our cookie management tool or via other opt-out functions. For example, you can also prevent data collection through cookies by managing, deactivating or deleting cookies in your browser.
Since cookies may be used with social media tools, we also recommend that you read our general data protection declaration on cookies. To find out exactly what data is stored and processed by you, you should read the privacy statements of the respective tools.

Legal basis

If you have consented that data from you can be processed and stored by integrated social media elements, this consent is considered the legal basis of the data processing (Art. 6 para. 1 lit. a DSGVO). In principle, if consent is given, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 para. 1 lit. f DSGVO) in fast and good communication with you or other customers and business partners. Nevertheless, we only use the tools if you have given your consent. Most social media platforms also set cookies in your browser to store data. That is why we recommend that you read our privacy text on cookies carefully and look at the privacy policy or cookie policy of the respective service provider.
You can find information on specific social media platforms – if available – in the following sections.
eRecht24 Safe Sharing Tool privacy policy
We use the eRecht24 Safe Sharing Tool for our website. This is a plugin to share content from social networks. The service provider is the German company eRecht24 GmbH & Co. KG, Lietzenburger Str. 94, 10719 Berlin, Germany.
You can find out more about the data processed through the use of eRecht24 in the privacy policy at https://www.e-recht24.de/datenschutzerklaerung.html.

Facebook Privacy Policy

Facebook privacy policy summary
👥 Data subject: Visitors to the website
🤝 Purpose: optimisation of our service performance
📓 Data processed: Data such as customer data, user behaviour data, information about your device and your IP address.
You can find more details on this below in the privacy policy.
📅 Storage period: until the data is no longer useful for Facebook’s purposes.
⚖️ Legal basis: Art. 6 para. 1 lit. a DSGVO (Consent), Art. 6 para. 1 lit. f DSGVO (Legitimate Interests).

What are Facebook tools?

We use selected tools from Facebook on our website. Facebook is a social media network of the company Meta Platforms Inc. or, for the European region, of the company Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. With the help of these tools, we can offer you and people who are interested in our products and services the best possible offer.
If data is collected from you and forwarded via our embedded Facebook elements or via our Facebook page (fan page), both we and Facebook Ireland Ltd. are responsible for this. Facebook is solely responsible for the further processing of this data. Our joint obligations have also been set out in a publicly available agreement at https://www.facebook.com/legal/controller_addendum. This states, for example, that we must clearly inform you about the use of Facebook tools on our site. Furthermore, we are also responsible for ensuring that the tools are securely integrated into our website in accordance with data protection law. Facebook, on the other hand, is responsible for the data security of Facebook products, for example. If you have any questions about data collection and data processing by Facebook, you can contact the company directly. If you direct the question to us, we are obliged to forward it to Facebook.
In the following, we provide an overview of the various Facebook tools, what data is sent to Facebook and how you can delete this data.
Among many other products, Facebook also offers the so-called “Facebook Business Tools”. This is the official name of Facebook. However, since the term is hardly known, we have decided to call them simply Facebook Tools. Among them are:

• Facebook Pixel
• social plug-ins (such as the “Like” or “Share” button)
• Facebook Login
• Account Kit
• APIs (application programming interface)
• SDKs (collection of programming tools)
• Platform integrations
• Plugins
• Codes
• Specifications
• Documentation
• Technologies and Services

Through these tools, Facebook extends services and has the ability to obtain information about user activity outside of Facebook.

Why do we use Facebook tools on our website?

We only want to show our services and products to people who are really interested in them. With the help of Facebook ads we can reach exactly these people. However, Facebook needs information about people’s wishes and needs in order to show them suitable ads. Thus, information about user behaviour (and contact data) on our website is made available to the company. As a result, Facebook collects better user data and is able to show interested people the appropriate advertisements about our products or services. The tools therefore enable tailored advertising campaigns on Facebook.
Facebook calls data about your behaviour on our website “event data”. This is also used for measurement and analysis services. Facebook can thus create “campaign reports” on our behalf about the impact of our advertising campaigns. Furthermore, analytics give us a better insight into how you use our services, website or products. As a result, we use some of these tools to optimise your user experience on our website. For example, social plug-ins allow you to share content on our site directly on Facebook.

What data is stored by Facebook tools?

By using individual Facebook tools, personal data (customer data) may be sent to Facebook. Depending on the tools used, customer data such as name, address, telephone number and IP address may be sent.
Facebook uses this information to match the data with the data it itself has about you (if you are a Facebook member). Before customer data is sent to Facebook, a process called “hashing” takes place. This means that a data record of any size is transformed into a string of characters. This also serves to encrypt data.
In addition to contact data, “event data” is also transmitted. Event data” refers to the information that we receive about you on our website. For example, which sub-pages you visit or which products you buy from us. Facebook does not share the information it receives with third parties (such as advertisers) unless it has explicit permission or is legally required to do so. “Event data” can also be linked to contact details. This allows Facebook to offer better personalised advertising. After the matching process already mentioned, Facebook deletes the contact data again.
In order to deliver ads in an optimised way, Facebook only uses event data if it has been combined with other data (collected by Facebook in other ways). Facebook also uses this event data for security, protection, development and research purposes. Much of this data is transferred to Facebook via cookies. Cookies are small text files used to store data or information in browsers. Depending on the tools you use and whether you are a Facebook member, different numbers of cookies will be placed in your browser. We go into more detail about individual Facebook cookies in the descriptions of each Facebook tool. General information about the use of Facebook cookies can also be found at https://www.facebook.com/policies/cookies.
How long and where is the data stored?
Basically, Facebook stores data until it is no longer needed for its own services and Facebook products. Facebook has servers all over the world where its data is stored. However, customer data is deleted within 48 hours after it has been compared with its own user data.

How can I delete my data or prevent data storage?

In accordance with the Basic Data Protection Regulation, you have the right to information, correction, transferability and deletion of your data.
A complete deletion of the data only takes place if you delete your Facebook account completely. And this is how deleting your Facebook account works:

1. Click on Settings on the right-hand side of Facebook.
2. Then click on “Your Facebook information” in the left-hand column.
3. Now click “Deactivation and deletion”.
4. Now select “Delete account” and then click on “Continue and delete account”.
5. Now enter your password, click “Continue” and then click “Delete account”.

The storage of data that Facebook receives via our site takes place, among other things, via cookies (e.g. for social plugins). In your browser, you can deactivate, delete or manage individual or all cookies. Depending on which browser you use, this works in different ways. Under the section “Cookies” you will find the corresponding links to the respective instructions of the most popular browsers.
If you generally do not want cookies, you can set up your browser so that it always informs you when a cookie is to be set. In this way, you can decide for each individual cookie whether you allow it or not.

Legal basis

If you have consented to your data being processed and stored by integrated Facebook tools, this consent is deemed to be the legal basis for data processing (Art. 6 para. 1 lit. a DSGVO). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 para. 1 lit. f DSGVO) in fast and good communication with you or other customers and business partners. Nevertheless, we only use the tools if you have given your consent. Most social media platforms also set cookies in your browser to store data. That is why we recommend that you read our privacy text about cookies carefully and view Facebook’s privacy policy or cookie policy.
Facebook also processes data from you in the USA, among other places. We would like to point out that according to the opinion of the European Court of Justice, there is currently no adequate level of protection for the transfer of data to the USA. This may be associated with various risks for the lawfulness and security of the data processing.
As a basis for data processing with recipients located in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or a data transfer there, Facebook uses so-called standard contractual clauses (= Art. 46. para. 2 and 3 DSGVO). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data comply with European data protection standards even if they are transferred to third countries (such as the USA) and stored there. Through these clauses, Facebook undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the US. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among other places: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
The Facebook data processing terms and conditions, which correspond to the standard contractual clauses, can be found at https://www.facebook.com/legal/terms/dataprocessing.
We hope we have brought you closer to the most important information about the use and data processing by Facebook tools. If you want to learn more about how Facebook uses your data, we recommend that you read the data policy at https://www.facebook.com/about/privacy/update.
Facebook Social Plug-ins Privacy Policy
So-called social plug-ins from the company Meta Platforms Inc. are installed on our website. You can recognise these buttons by the classic Facebook logo, such as the “Like” button (the hand with raised thumb) or by a clear “Facebook Plug-in” marking. A social plug-in is a small part of Facebook that is integrated into our site. Each plug-in has its own function. The most commonly used functions are the well-known “Like” and “Share” buttons.

The following social plug-ins are offered by Facebook:

• “Save” button
• “Like” button, Share, Send and Quote
• Page plug-in
• Comments
• Messenger plug-in
• Embedded posts and video player
• Groups plug-in

At https://developers.facebook.com/docs/plugins you will find more detailed information on how the individual plug-ins are used. We use the social plug-ins on the one hand to offer you a better user experience on our site, and on the other hand because Facebook can optimise our advertisements through them.
If you have a Facebook account or have visited https://www.facebook.com/ before, Facebook has already set at least one cookie in your browser. In this case, your browser sends information to Facebook via this cookie as soon as you visit our site or interact with social plug-ins (e.g. the “Like” button).
The information received is deleted or anonymised again within 90 days. According to Facebook, this data includes your IP address, which website you visited, the date, time and other information relating to your browser.
To prevent Facebook from collecting a lot of data during your visit to our website and connecting it with Facebook data, you must log out of Facebook while visiting the website.
If you are not logged in to Facebook or do not have a Facebook account, your browser sends less information to Facebook because you have fewer Facebook cookies. Nevertheless, data such as your IP address or which website you are visiting may be transmitted to Facebook. We would like to point out that we do not know the exact content of the data. However, we try to inform you as best as possible about the data processing according to our current state of knowledge. You can also read about how Facebook uses the data in the company’s data policy at https://www.facebook.com/about/privacy/update.
The following cookies are set in your browser as a minimum when you visit a website with social plug-ins from Facebook:
Name: dpr Value: not specified Purpose: This cookie is used to make the social plug-ins on our website work.
Expiry date: after end of session
Name: fr Value: 0jieyh4312057131c2GnlufEJ9..Bde09j…1.0.Bde09j Intended use: This cookie is also needed to make the plug-ins work properly.
Expiry date:: after 3 months
Note: These cookies were set after a test, even if you are not a Facebook member.
If you are logged in to Facebook, you can change your settings for advertisements at https://www.facebook.com/adpreferences/advertisers/ yourself. If you are not a Facebook user, you can basically manage your usage-based online advertising on https://www.youronlinechoices.com/de/praferenzmanagement/?tid=312057131. There you have the option to deactivate or activate providers.
If you want to learn more about Facebook’s data protection, we recommend that you read the company’s own data policies at https://www.facebook.com/policy.php?tip=312057131.

Facebook Fanpage Privacy Policy

We also have a Facebook Fanpage for our website. The service provider is the American company Meta Platforms Inc. Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) is responsible for the European region.
Facebook also processes your data in the USA, among other places. We would like to point out that according to the opinion of the European Court of Justice, there is currently no adequate level of protection for the transfer of data to the USA. This may be associated with various risks for the lawfulness and security of the data processing.
As a basis for data processing with recipients located in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or a data transfer there, Facebook uses so-called standard contractual clauses (= Art. 46. para. 2 and 3 DSGVO). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data comply with European data protection standards even if they are transferred to third countries (such as the USA) and stored there. Through these clauses, Facebook undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the US. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among other places: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
The Facebook data processing condition, which corresponds to the standard contractual clauses, can be found at https://www.facebook.com/legal/terms/dataprocessing.
You can find out more about the data processed through the use of Facebook in the Privacy Policy at https://www.facebook.com/about/privacy.

Instagram Privacy Policy

Instagram privacy policy summary
👥 Data subject: visitors to the website
🤝 Purpose: optimisation of our service performance
📓 Data processed: Data such as user behaviour data, information about your device and your IP address.
You can find more details about this below in the privacy policy.
📅 Storage period: until Instagram no longer needs the data for their purposes.
⚖️ Legal basis: Art. 6 para. 1 lit. a DSGVO (Consent), Art. 6 para. 1 lit. f DSGVO (Legitimate Interests).

What is Instagram?

We have integrated Instagram functions on our website. Instagram is a social media platform of the company Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA. Instagram has been a subsidiary of Meta Platforms Inc. since 2012 and is one of Facebook’s products. Embedding Instagram content on our website is called embedding. This allows us to show you content such as buttons, photos or videos from Instagram directly on our website. When you call up web pages on our website that have an Instagram function integrated, data is transmitted to Instagram, stored and processed. Instagram uses the same systems and technologies as Facebook. Your data is thus processed across all Facebook companies.
In the following, we would like to give you a more detailed insight into why Instagram collects data, what data it is and how you can largely control the data processing. As Instagram belongs to Meta Platforms Inc., we obtain our information on the one hand from the Instagram guidelines, but on the other hand also from the Meta data protection guidelines themselves.
Instagram is one of the most popular social media networks in the world. Instagram combines the advantages of a blog with the advantages of audiovisual platforms such as YouTube or Vimeo. You can upload photos and short videos on “Insta” (as many of the users casually call the platform), edit them with various filters and also distribute them on other social networks. And if you don’t want to be active yourself, you can also just follow other interesting users.

Why do we use Instagram on our website?

Instagram is the social media platform that has really gone through the roof in recent years. And of course we have also reacted to this boom. We want you to feel as comfortable as possible on our website. That’s why a varied presentation of our content is a matter of course for us. Through the embedded Instagram features, we can enrich our content with helpful, funny or exciting content from the Instagram world. Since Instagram is a subsidiary of Facebook, the data collected can also be useful to us for personalised advertising on Facebook. This way, only people who are really interested in our products or services receive our ads.
Instagram also uses the collected data for measurement and analysis purposes. We get aggregated statistics and thus more insight about your desires and interests. It is important to note that these reports do not identify you personally.

What data is stored by Instagram?

When you come across one of our pages that have Instagram features (such as Instagram images or plug-ins) built in, your browser automatically connects to Instagram’s servers. In the process, data is sent to Instagram, stored and processed. And this is regardless of whether you have an Instagram account or not. This includes information about our website, about your computer, about purchases you have made, about advertisements you see and how you use our offer. Furthermore, the date and time of your interaction with Instagram is also stored. If you have an Instagram account or are logged in, Instagram stores significantly more data about you.
Facebook distinguishes between customer data and event data. We assume that this is exactly the case with Instagram. Customer data are, for example, name, address, telephone number and IP address. This customer data will only be transmitted to Instagram if it has been “hashed” beforehand. Hashing means that a data record is transformed into a character string. This makes it possible to encrypt the contact data. In addition, the above-mentioned “event data” is also transmitted. By “event data” Facebook – and consequently also Instagram – understands data about your user behaviour. It may also happen that contact data is combined with event data. The contact data collected is matched with the data that Instagram already has about you.
The collected data is transmitted to Facebook via small text files (cookies), which are usually set in your browser. Depending on the Instagram functions used and whether you have an Instagram account yourself, different amounts of data are stored.
We assume that Instagram processes data in the same way as Facebook. This means: if you have an Instagram account or have visited www.instagram.com, Instagram has at least set a cookie. If this is the case, your browser sends information to Instagram via the cookie as soon as you come into contact with an Instagram function. After 90 days at the latest (after matching), this data is deleted again or anonymised. Although we have intensively studied Instagram’s data processing, we cannot say exactly what data Instagram collects and stores.
In the following, we show you cookies that are set in your browser at least when you click on an Instagram function (such as a button or an Insta picture). In our test, we assume that you do not have an Instagram account. Of course, if you are logged into Instagram, significantly more cookies are set in your browser.
These cookies were used in our test:
Name: csrftoken Value: “” Purpose: This cookie is most likely set for security reasons to prevent falsification of requests. However, we were not able to find out more about this.
Expiry date: after one year
Name: mid Value: “” Intended use: Instagram sets this cookie to optimise its own services and offers on and outside of Instagram. The cookie sets a unique user ID.
Expiry date: after the end of the session
Name: fbsr_312057131124024 Value: not specified
Purpose: This cookie stores the log-in request for users of the Instagram app.
Expiry date: after the end of the session.
Name: rur Value: ATN Intended use: This is an Instagram cookie that ensures functionality on Instagram.
Expiry date: after the end of the session.
Name: urlgen Value: “{“194.96.75.33″: 1901}:1iEtYv:Y833k2_UjKvXgYe312057131” Purpose: This cookie is used for Instagram’s marketing purposes.
Expiry date: after the end of the session.
Note: We cannot make any claim to completeness here. Which cookies are set in individual cases depends on the embedded functions and your use of Instagram.

How long and where is the data stored?

Instagram shares the information it receives between Facebook companies with external partners and with people you connect with around the world. Data is processed in compliance with its own data policy. Your data is distributed on Facebook servers around the world, partly for security reasons. Most of these servers are located in the USA.
How can I delete my data or prevent data storage?
Thanks to the Basic Data Protection Regulation, you have the right to information, portability, correction and deletion of your data. You can manage your data in the Instagram settings. If you want to delete your data on Instagram completely, you have to delete your Instagram account permanently.
And this is how deleting your Instagram account works:
First open the Instagram app. On your profile page, go down and click on “Help area”. Now you will get to the company’s website. On the website, click on “Manage your account” and then on “Delete your account”.
If you delete your account altogether, Instagram will delete posts such as your photos and status updates. Information that other people have shared about you is not part of your account and consequently will not be deleted.
As mentioned above, Instagram stores your data primarily via cookies. You can manage, deactivate or delete these cookies in your browser. Depending on your browser, the management always works a little differently. Under the section “Cookies” you will find the corresponding links to the respective instructions of the most popular browsers.
You can also basically set up your browser so that you are always informed when a cookie is to be set. Then you can always decide individually whether you want to allow the cookie or not.

Legal basis

If you have consented that data from you can be processed and stored through integrated social media elements, this consent is considered the legal basis for data processing (Art. 6 para. 1 lit. a DSGVO). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 para. 1 lit. f DSGVO) in fast and good communication with you or other customers and business partners. Nevertheless, we only use the integrated social media elements if you have given your consent. Most social media platforms also set cookies in your browser to store data. That is why we recommend that you read our privacy text on cookies carefully and look at the privacy policy or cookie policy of the respective service provider.
Instagram or Facebook also processes data in the USA, among other places. We would like to point out that according to the opinion of the European Court of Justice, there is currently no adequate level of protection for the transfer of data to the USA. This may be associated with various risks for the legality and security of data processing.
As a basis for data processing with recipients located in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular the USA) or a data transfer there, Facebook uses standard contractual clauses approved by the EU Commission (= Art. 46. para. 2 and 3 DSGVO). These clauses oblige Facebook to comply with the EU level of data protection when processing relevant data outside the EU. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the clauses here, among other places: https://germany.representation.ec.europa.eu/index_de.
We have tried to provide you with the most important information about data processing by Instagram. You can take a closer look at Instagram’s data policies at https://help.instagram.com/519522125107875.

TikTok privacy policy

We also use TikTok, a social media and video channel. The service provider is the Chinese company Beijing Bytedance Technology Ltd. The company responsible for the European region is the Irish company TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland.
TikTok also processes your data in the USA, among other places. We would like to point out that according to the opinion of the European Court of Justice, there is currently no adequate level of protection for the transfer of data to the USA. This may entail various risks for the lawfulness and security of the data processing.
As a basis for data processing with recipients located in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular the USA) or a data transfer there, TikTok uses so-called standard contractual clauses (= Art. 46. para. 2 and 3 DSGVO). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data comply with European data protection standards even if they are transferred to third countries (such as the USA) and stored there. Through these clauses, TikTok undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the US. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among other places: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
You can find out more about the standard contractual clauses and the data processed through the use of TikTok Pixel in the Privacy Policy at https://www.tiktok.com/legal/privacy-policy-eea?lang=de and https://ads.tiktok.com/i18n/official/policy/controller-to-controller respectively.

Twitter Privacy Policy

Twitter privacy policy summary
👥 Data subject: Visitors to the website
🤝 Purpose: optimisation of our service performance
📓 Data processed: Data such as user behaviour data, information about your device and your IP address.
You can find more details about this below in the privacy policy.
📅 Storage period: Twitter deletes collected data from other websites after 30 days at the latest.
Legal basis: Art. 6 para. 1 lit. a DSGVO (Consent), Art. 6 para. 1 lit. f DSGVO (Legitimate Interests).

What is Twitter?

We have integrated Twitter functions on our website. These are, for example, embedded tweets, timelines, buttons or hashtags. Twitter is a short message service and a social media platform of the company Twitter Inc, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland.
To our knowledge, in the European Economic Area and Switzerland, no personal data or data relating to your web activities are transmitted to Twitter by the mere inclusion of the Twitter function. Only when you interact with the Twitter functions, such as clicking on a button, can data be sent to Twitter, stored and processed there. We have no influence on this data processing and bear no responsibility for it. Within the framework of this privacy policy, we want to give you an overview of what data Twitter stores, what Twitter does with this data and how you can largely protect yourself from the data transfer.
For some, Twitter is a news service, for others a social media platform and still others speak of a microblogging service. All these terms have their justification and mean more or less the same thing.
Both private individuals and companies use Twitter to communicate with interested people via short messages. Twitter only allows 280 characters per message. These messages are called “tweets”. Unlike Facebook, for example, the service does not focus on expanding a network for “friends”, but wants to be understood as a worldwide and open news platform. With Twitter, you can also have an anonymous account and tweets can be deleted by the company on the one hand and by the users themselves on the other.

Why do we use Twitter on our website?

Like many other websites and companies, we try to offer our services and communicate with our customers through different channels. Twitter in particular has grown on us as a useful “little” news service. Time and again we tweet or retweet exciting, funny or interesting content. We realise that you can’t follow every channel separately. After all, you also have something else to do. That’s why we have also integrated Twitter functions on our website. You can follow our Twitter activity “on the spot” or follow a direct link to our Twitter page. Through this integration, we want to strengthen our service and the user-friendliness of our website.

What data is stored by Twitter?

On some of our sub-pages you will find built-in Twitter functions. When you interact with the Twitter content, such as clicking on a button, Twitter may collect and store data. This is the case even if you do not have a Twitter account yourself. Twitter calls this data “log data”. This includes demographic data, browser cookie IDs, your smartphone ID, hashed email addresses, and information about which pages you have visited on Twitter and what actions you have taken. Twitter naturally stores more data if you have a Twitter account and are logged in. Mostly, this storage happens via cookies. Cookies are small text files that are usually set in your browser and transmit different information to Twitter.
We will now show you which cookies are set when you are not logged in to Twitter but visit a website with built-in Twitter functions. Please consider this list as an example. We can by no means guarantee completeness here, as the choice of cookies is always changing and depends on your individual actions with the Twitter content.
These cookies were used in our test:
Name: personalization_id Value: “v1_cSJIsogU51SeE312057131” Intended use: This cookie stores information about how you use the website and through which advertisements you may have come to Twitter.
Expiry date: after 2 years
Name: long Value: en Purpose: This cookie stores your default or preferred language.
Expiry date: after end of session
Name: guest_id Value: 312057131v1%3A157132626 Purpose: This cookie is set to identify you as a guest. 
Expiry date: after 2 years
Name: fm Value: 0 Intended use: Unfortunately, we were unable to find out the intended use of this cookie.
Expiry date: after end of session
Name: external_referer Value: 3120571312beTA0sf5lkMrlGt Intended use: This cookie collects anonymous data, such as how often you visit Twitter and how long you visit Twitter.
Expiry date: After 6 days
Name: eu_cn Value: 1 Purpose: This cookie stores user activity and is used for various advertising purposes by Twitter. 
Expiry date: After one year
Name: ct0 Value: c1179f07163a365d2ed7aad84c99d966 Intended use: Unfortunately, we have not found any information about this cookie.
Expiry date: after 6 hours
Name: _twitter_sess Value: 53D%253D-dd0248312057131- Purpose: This cookie allows you to use functions within the Twitter website.
Expiry date: after end of session
Note: Twitter also works with third-party providers. That is why we also detected the three Google Analytics cookies _ga, _gat, _gid during our test.
Twitter uses the collected data on the one hand to better understand user behaviour and thus improve its own services and advertising offers, on the other hand the data also serve internal security measures.
How long and where is the data stored?
If Twitter collects data from other websites, this is deleted, combined or otherwise obscured after a maximum of 30 days. The Twitter servers are located on various server centres in the United States. Accordingly, it can be assumed that the collected data is collected and stored in America. After our research, we could not clearly determine whether Twitter also has its own servers in Europe. In principle, Twitter can store the collected data until it is no longer useful to the company, you delete the data or there is a legal deletion period.
How can I delete my data or prevent data storage?
Twitter repeatedly emphasises in its data protection guidelines that it does not store any data from external website visits if you or your browser are located in the European Economic Area or in Switzerland. However, if you interact with Twitter directly, Twitter will of course store data about you.
If you have a Twitter account, you can manage your data by clicking on “More” under the “Profile” button. Then click on “Settings and privacy”. Here you can manage the data processing individually.
If you do not have a Twitter account, you can go to twitter.com and then click on “Individualisation”. Under “Individualisation and data” you can manage your collected data.
Most data is stored via cookies, as mentioned above, and you can manage, deactivate or delete these in your browser. Please note that you only “edit” the cookies in the browser you have chosen. This means: if you use a different browser in the future, you will have to manage your cookies there again according to your wishes. Under the section “Cookies” you will find the corresponding links to the respective instructions of the most popular browsers.
You can also manage your browser in such a way that you are informed for each individual cookie. Then you can always decide individually whether to allow a cookie or not.
Twitter also uses the data for personalised advertising inside and outside Twitter. You can switch off personalised advertising in the settings under “Individualisation and data”. If you use Twitter on a browser, you can deactivate the personalised advertising at https://optout.aboutads.info/?c=2&lang=EN.

Legal basis

If you have consented that data from you can be processed and stored through integrated social media elements, this consent is considered the legal basis for data processing (Art. 6 para. 1 lit. a DSGVO). In principle, your data will also be stored and processed on the basis of our legitimate interest (Art. 6 para. 1 lit. f DSGVO) in fast and good communication with you or other customers and business partners. Nevertheless, we only use the integrated social media elements if you have given your consent. Most social media platforms also set cookies in your browser to store data. We therefore recommend that you read our data protection text on cookies carefully and view the data protection declaration or cookie guidelines of the respective service provider.
Twitter also processes data from you in the USA, among other places. We would like to point out that according to the opinion of the European Court of Justice, there is currently no adequate level of protection for the transfer of data to the USA. This may be associated with various risks for the lawfulness and security of the data processing.
Twitter uses so-called standard contractual clauses (= Art. 46. para. 2 and 3 DSGVO) as the basis for data processing with recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or a transfer of data there. Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data comply with European data protection standards even if they are transferred to third countries (such as the USA) and stored there. Through these clauses, Twitter undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the US. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among other places: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
More information on Twitter’s standard contractual clauses can be found at https://gdpr.twitter.com/en/controller-to-controller-transfers.html.
We hope we have given you a basic overview of data processing by Twitter. We do not receive any data from Twitter and are not responsible for what Twitter does with your data. If you have any further questions on this topic, we recommend that you read the Twitter privacy statement at https://twitter.com/de/privacy.