Privacy policy

Privacy policy
Data protection

We have drawn up this data protection declaration (version 23.04.2020-311171615) to explain to you, in accordance with the provisions of the basic data protection regulation (EU) 2016/679, what information we collect, how we use data and what decision-making options you have as a visitor to this website.

Unfortunately, it is in the nature of things that these explanations sound very technical, but we have tried to describe the most important things as simply and clearly as possible.
Automatic data storage

When you visit websites today, certain information is automatically created and stored, including on this website.

When you visit our website as you are doing right now, our web server (the computer on which this website is stored) automatically saves data such as

    the address (URL) of the accessed web page
    Browser and browser version
    the operating system used
    the address (URL) of the previously visited page (referrer URL)
    the host name and IP address of the device from which access is made
    Date and time

in files (web server log files).

Usually web server log files are stored for two weeks and then automatically deleted. We do not pass on this data, but cannot exclude the possibility that this data may be viewed in the event of illegal behaviour.
Cookies

Our website uses HTTP cookies to store user-specific data.
In the following we explain what cookies are and why they are used so that you can better understand the following privacy policy.
What exactly are cookies?

Whenever you surf the Internet, you are using a browser. Some popular browsers include Chrome, Safari, Firefox, Internet Explorer, and Microsoft Edge. Most websites store small text files in your browser. These files are called cookies.

One of them cannot be dismissed: Cookies are really useful little helpers. Almost all websites use cookies. More precisely, they are HTTP cookies, as there are other cookies for other applications. HTTP cookies are small files that are stored on your computer by our website. These cookie files are automatically stored in the cookie folder, quasi the "brain" of your browser. A cookie consists of a name and a value. When defining a cookie, one or more attributes must also be specified.

Cookies store certain user data about you, such as language or personal page settings. When you visit our site again, your browser transmits the "user-related" information back to our site. Thanks to the cookies, our website knows who you are and offers you your accustomed standard settings. In some browsers each cookie has its own file, in others, such as Firefox, all cookies are stored in a single file.

There are both first-party cookies and third-party cookies. First-party cookies are created directly by our site, third-party cookies are created by partner sites (e.g. Google Analytics). Each cookie is unique because each cookie stores different data. The expiration time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, trojans or other "pests". Cookies also cannot access information on your PC.

This is how cookie data can look like, for example:

    Name: _ga
    Expiry period: 2 years
    Usage: Differentiation of website visitors
    Example value: GA1.2.1326744211.152311171615

A browser should support the following minimum sizes:

    A cookie should be able to contain at least 4096 bytes
    At least 50 cookies should be able to be stored per domain
    A total of at least 3000 cookies should be able to be stored

What types of cookies are there?

The question which cookies we use in particular depends on the services used and is clarified in the following sections of the privacy policy. At this point we would like to briefly discuss the different types of HTTP cookies.

You can distinguish between 4 types of cookies:

Essential cookies
These cookies are necessary to ensure basic functions of the website. For example, these cookies are needed when a user places a product in the shopping cart, then continues surfing on other pages and only proceeds to checkout later. These cookies do not delete the shopping cart, even if the user closes his browser window.

Functional cookies
These cookies collect information about user behaviour and whether the user receives any error messages. In addition, these cookies also measure the loading time and the behaviour of the website with different browsers.

Target-oriented cookies
These cookies ensure a better user experience. For example, entered locations, font sizes or form data are stored.

Advertising cookies
These cookies are also called targeting cookies. They are used to deliver customized advertising to the user. This can be very practical, but also very annoying.

Usually, the first time you visit a website, you are asked which of these types of cookies you would like to allow. And of course this decision is also stored in a cookie.
How can I delete cookies?

How and if you want to use cookies is up to you. Regardless of the service or website from which the cookies originate, you always have the option to delete cookies, to allow them only partially or to deactivate them. For example, you can block third-party cookies, but allow all other cookies.

If you want to find out which cookies are stored in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:

Chrome: Delete, activate and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

If you do not wish to receive cookies, you can set up your browser so that it always informs you when a cookie is to be set. In this way, you can decide for each individual cookie whether or not you wish to accept it. The procedure varies depending on the browser. The best thing to do is to look for the instructions in Google using the search term "Delete Chrome cookies" or "Disable Chrome cookies" in the case of a Chrome browser, or replace the word "Chrome" with the name of your browser, e.g. Edge, Firefox, Safari. 

What about my privacy?

The so-called "cookie guidelines" have been in place since 2009. This states that the storage of cookies requires the consent of the website visitor (i.e. you). Within the EU countries, however, there are still very different reactions to these guidelines. In Germany, the cookie guidelines have not been implemented as national law. Instead, the implementation of this directive was largely carried out in § 15 para.3 of the Telemediengesetz (TMG).

If you want to know more about cookies and are not afraid of technical documentation, we recommend tools.ietf.org/html/rfc6265, the request for comments of the Internet Engineering Task Force (IETF) called "HTTP State Management Mechanism".
Storage of personal data

Personal information that you submit to us electronically on this website, such as your name, e-mail address, postal address or other personal information when submitting a form or comments on the blog, together with the time and IP address, will only be used by us for the purpose stated in each case, will be kept securely stored and will not be disclosed to third parties.

Thus, we will only use your personal data for communication with those visitors who expressly request contact and for processing the services and products offered on this website. We will not pass on your personal data without your consent, but we cannot exclude the possibility that this data may be viewed in the event of unlawful behaviour.

If you send us personal data by e-mail - thus off this website - we cannot guarantee secure transmission and the protection of your data. We recommend that you never send confidential data by e-mail without encryption.

According to article 6 paragraph 1 a DSGVO (legality of processing), the legal basis is that you give us your consent to process the data you have entered. You can revoke this consent at any time - an informal e-mail is sufficient; you will find our contact details in the imprint.
Rights according to the data protection basic regulation

In accordance with the provisions of the DSGVO, you are basically entitled to the following rights:

    Right of rectification (Article 16 DSGVO)
    Right of cancellation ("right to be forgotten") (Article 17 DPA)
    Right to restrict processing (Article 18 DSGVO)
    Right of notification - Obligation to notify in connection with the correction or deletion of personal data or the restriction of processing (Article 19 DPA)
    Right to data transferability (Article 20 DSGVO)
    Right of objection (Article 21 DSGVO)
    Right not to be subject to a decision based solely on automated processing, including profiling (Article 22 DPA)

If you believe that the processing of your data violates data protection law or your data protection rights have otherwise been violated in any way, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI).
Evaluation of visitor behaviour

In the following data protection declaration we inform you whether and how we evaluate data of your visit to this website. The evaluation of the collected data is usually anonymous and we cannot deduce your identity from your behaviour on this website.

You can find out more about how to object to this evaluation of visit data in the following data protection declaration.
TLS encryption with https

We use https to transmit data tap-proof on the Internet (data protection through technology design article 25 paragraph 1 DSGVO). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data. You can recognize the use of this data transmission security by the small lock symbol in the upper left corner of your browser and the use of the https scheme (instead of http) as part of our Internet address. 

Google Maps Privacy Policy

We use Google Maps from Google Inc. for our website, and Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services in Europe. With Google Maps we can show you locations better and thus adapt our service to your needs. By using Google Maps, data is transferred to Google and stored on Google's servers. Here we will go into more detail about what Google Maps is, why we use this Google service, what data is stored and how you can stop it.
What is Google Maps?

Google Maps is an internet map service of the company Google. With Google Maps, you can search online for exact locations of cities, places of interest, accommodations or businesses using a PC, tablet or app. If companies are represented on Google My Business, additional information about the company is displayed next to the location. To display directions, map sections of a location can be embedded into a website using HTML code. Google Maps shows the surface of the earth as a road map or as an aerial or satellite image. Thanks to the Street View images and the high-quality satellite images, very accurate representations are possible.
Why do we use Google Maps on our website?

All our efforts on this site are aimed at providing you with a useful and meaningful time on our website. By integrating Google Maps, we can provide you with the most important information about various locations. You can see at a glance where we have our headquarters. The route description always shows you the best or fastest way to reach us. You can call up the directions for routes by car, public transport, on foot or by bicycle. For us the provision of Google Maps is part of our customer service.
What data is stored by Google Maps?

In order for Google Maps to provide its full service, the company must collect and store information about you. This includes the search terms you enter, your IP address and also the latitude and longitude coordinates. If you use the route planner function, the start address entered will also be saved. However, this data storage happens on the websites of Google Maps. We can only inform you about it, but we cannot influence it. Since we have integrated Google Maps into our website, Google sets at least one cookie (name: NID) in your browser. This cookie stores data about your user behaviour. Google uses this data primarily to optimise its own services and to provide individual, personalised advertising for you.

The following cookie is set in your browser due to the integration of Google Maps:

Name: NID
Value: 188=h26c1Ktha7fCQTx8rXgLyATyITJ311171615-5
Purpose: NID is used by Google to adapt advertisements to your Google search. Google uses the cookie to "remember" your most frequently entered search queries or your previous interaction with ads. So you always get customized ads. The cookie contains a unique ID that Google uses to collect your personal preferences for advertising purposes.
Expiration date: after 6 months

Note: We cannot guarantee the completeness of the data stored. Especially when using cookies, changes can never be ruled out. In order to identify the cookie NID, a separate test page was created where only Google Maps was integrated. 

How long and where is the data stored?

The Google servers are located in data centers around the world. However, most servers are located in America. For this reason, your data is also increasingly stored in the USA. Here you can find out exactly where the Google data centres are located: www.google.com/about/datacenters/inside/locations/

Google distributes the data on different data carriers. This means that the data can be accessed more quickly and is better protected against any attempts at manipulation. Each data center also has special emergency programs. If, for example, there are problems with the Google hardware or a natural disaster paralyses the servers, the data is still protected.

Some data is stored by Google for a set period of time. For other data, Google only offers the option to delete it manually. The company also anonymizes information (such as advertising data) in server logs by deleting part of the IP address and cookie information after 9 and 18 months respectively.
How can I delete my data or prevent data storage?

With the automatic deletion of location and activity data introduced in 2019, location and web/app activity information is stored for either 3 or 18 months, depending on your decision, and then deleted. You can also manually delete this data from your history at any time using your Google Account. If you want to completely stop your location tracking, you'll need to pause the Web and App activity section of your Google Account. Click 'Data and personalization' and then click the 'Activity setting' option. Here you can turn activity on or off.

You can also disable, delete or manage individual cookies in your browser. Depending on which browser you use, this always works slightly differently. The following instructions show you how to manage cookies in your browser:

Chrome: Delete, activate and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

If you do not wish to receive cookies, you can set up your browser so that it always informs you when a cookie is to be set. In this way, you can decide for each individual cookie whether you want to allow it or not.

Google is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. You can find more information on this at www.privacyshield.gov/participant. If you want to learn more about Google's data processing, we recommend that you read the company's own privacy policy at policies.google.com/privacy.
Google Fonts Privacy Policy

On our website we use Google Fonts. These are the "Google fonts" of the company Google Inc. For the European area the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services.

To use Google fonts, you do not need to sign in or set a password. Furthermore, no cookies are stored in your browser. The files (CSS, fonts) are requested via the Google domains fonts.googleapis.com and fonts.gstatic.com. According to Google, the requests for CSS and fonts are completely separate from all other Google services. If you have a Google Account, you don't need to worry about your Google Account information being submitted to Google while using Google Fonts. Google tracks the use of CSS (Cascading Style Sheets) and the fonts used and stores this information securely. We'll be taking a closer look at what exactly this data storage looks like. 

What are Google Fonts?

Google Fonts (formerly Google Web Fonts) is a directory of over 800 fonts that Google makes available to its users free of charge.

Many of these fonts are published under the SIL Open Font License, while others are published under the Apache License. Both are free software licenses.
Why do we use Google Fonts on our website?

With Google Fonts we can use fonts on our own website, but we don't have to upload them to our own server. Google Fonts is an important component to keep the quality of our website high. All Google fonts are automatically optimized for the web, which saves data volume and is a great advantage especially for use with mobile devices. When you visit our site, the low file size ensures a fast loading time. Furthermore, Google Fonts are secure web fonts. Different image synthesis systems (rendering) in different browsers, operating systems and mobile devices can lead to errors. Such errors can visually distort some texts or entire web pages. Thanks to the fast Content Delivery Network (CDN), there are no cross-platform problems with Google Fonts. Google Fonts supports all major browsers (Google Chrome, Mozilla Firefox, Apple Safari, Opera) and works reliably on most modern mobile operating systems, including Android 2.2+ and iOS 4.2+ (iPhone, iPad, iPod). So we use Google Fonts to make our entire online service as beautiful and consistent as possible.
What information does Google store?

When you visit our website, the fonts are reloaded via a Google server. This external call transfers data to the Google servers. In this way Google also recognises that you or your IP address are visiting our website. The Google Fonts API was developed to reduce the use, storage and collection of end user data to what is necessary for the proper provision of fonts. By the way, API stands for "Application Programming Interface" and serves, among other things, as a data transmitter in the software sector.

Google Fonts stores CSS and font requests securely at Google and is therefore protected. Through the collected usage figures, Google can determine how well the individual fonts are received. Google publishes the results on internal analysis pages, such as Google Analytics. Google also uses data from its own web crawler to determine which websites use Google fonts. This data is published in Google Fonts' BigQuery database. Entrepreneurs and developers use Google's BigQuery web service to examine and move large amounts of data.

However, it should also be noted that each Google Font request automatically sends information such as language settings, IP address, browser version, browser screen resolution and browser name to the Google servers. Whether this data is also stored cannot be clearly determined or is not clearly communicated by Google. 

How long and where is the data stored?

Google stores requests for CSS assets for one day on its servers, which are mainly located outside the EU. This allows us to use fonts using a Google style sheet. A stylesheet is a style template that allows you to easily and quickly change, for example, the design or font of a web page.

The font files are stored at Google for one year. Google's goal is to improve the loading time of web pages. If millions of web pages link to the same fonts, they are cached after the first visit and reappear immediately on all other web pages visited later. Sometimes Google updates font files to reduce file size, increase language coverage and improve design.
How can I delete my data or prevent data storage?

The data that Google stores for a day or a year cannot be easily deleted. The data is automatically sent to Google when you view the page. To delete this data prematurely, you must contact Google support at support.google.com. In this case you only prevent data storage if you do not visit our site.

Unlike other web fonts, Google allows us unlimited access to all fonts. This means that we have unlimited access to a sea of fonts and can thus get the best out of our website. You can find out more about Google Fonts and other questions at developers.google.com/fonts/faq. Although Google addresses privacy issues there, it does not provide really detailed information about data storage. It's relatively difficult to get really detailed information about data storage from Google.

You can also read about what data Google collects and how it is used at www.google.com/intl/de/policies/privacy/.
Google Analytics Privacy Policy

On our website we use the analysis tracking tool Google Analytics (GA) of the American company Google Inc. For the European area the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. Google Analytics collects data about your actions on our website. For example, when you click on a link, this action is stored in a cookie and sent to Google Analytics. The reports we receive from Google Analytics enable us to better tailor our website and services to your needs. In the following we will go into more detail about the tracking tool and inform you above all about what data is stored and how you can prevent this.
What is Google Analytics?

Google Analytics is a tracking tool that serves to analyse the data traffic on our website. To make Google Analytics work, a tracking code is built into the code of our website. When you visit our website, this code records various actions that you perform on our website. As soon as you leave our website, this data is sent to the Google Analytics servers and stored there.

Google processes the data and we receive reports about your user behaviour. These reports may include the following:

    Target group reports: Through target group reports we get to know our users better and know more precisely who is interested in our service.
    Advertising reports: Advertising reports help us to analyse and improve our online advertising.
    Acquisition reports: Acquisition reports provide us with helpful information on how we can get more people interested in our service.
    Behavioral Reports: Here we learn how you interact with our website. We can track which path you take on our site and which links you click on.
    Conversion reports: Conversion is the process by which you perform a desired action based on a marketing message. For example, when you change from a mere website visitor to a buyer or newsletter subscriber. These reports help us to learn more about how our marketing activities are received by you. This is how we want to increase our conversion rate.
    Real-time reports: Here we always know immediately what is happening on our website. For example, we see how many users are reading this text.

Why do we use Google Analytics on our website?

Our goal with this website is clear: We want to offer you the best possible service. The statistics and data from Google Analytics help us to achieve this goal.

The statistically evaluated data give us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimize our site so that it can be found more easily by interested people on Google. On the other hand, the data helps us to understand you as a visitor better. We therefore know exactly what we need to improve on our website in order to offer you the best possible service. The data also helps us to carry out our advertising and marketing measures more individually and cost-effectively. After all, it only makes sense to show our products and services to people who are interested.
Which data is stored by Google Analytics?

Google Analytics uses a tracking code to create a random, unique ID associated with your browser cookie. This enables Google Analytics to recognize you as a new user. The next time you visit our site, you will be recognized as a "returning" user. All collected data is stored together with this user ID. This makes it possible to evaluate pseudonymous user profiles in the first place.

Through identifiers such as cookies and app instance IDs, your interactions on our website are measured. Interactions are all kinds of actions you perform on our website. If you also use other Google systems (such as a Google account), data generated by Google Analytics can be linked to third-party cookies. Google does not pass on any Google Analytics data unless we, as the website operator, give permission to do so. Exceptions may be made if required by law.

 

The following cookies are used by Google Analytics:

Name: _ga
Value:2.1326744211.152311171615-5
Purpose: By default, analytics.js uses the _ga cookie to store the user ID. Basically, it is used to differentiate between website visitors.
Expiration date: after 2 years

Name: _gid
Value:2.1687193234.152311171615-1
Purpose: The cookie is also used to differentiate between website visitors.
Expiration date: after 24 hours

Name: _gat_gtag_UA_<property-id>
Value: 1
Purpose: Used to lower the request rate. If Google Analytics is provided via the Google Tag Manager, this cookie is named _dc_gtm_ <property-id>.
Expiration date: after 1 minute

Name: AMP_TOKEN
Value: not specified
Purpose: The cookie has a token with which a User ID can be retrieved from the AMP Client ID Service. Other possible values indicate a logoff, a request or an error.
Expiration date: after 30 seconds up to one year

Name: __utma
Value:1564498958.1564498958.1564498958.1
Purpose: With this cookie you can track your behaviour on the website and measure performance. The cookie is updated each time information is sent to Google Analytics.
Expiration date: after 2 years

Name: __utmt
Value: 1
Purpose: The cookie is used like _gat_gtag_UA_<property-id> to throttle the request rate.
Expiration date: after 10 minutes

Name: __utmb
Value:3.10.1564498958
Purpose: This cookie is used to determine new sessions. It is updated each time new data or information is sent to Google Analytics.
Expiration date: after 30 minutes

Name: __utmc
Value: 167421564
Purpose: This cookie is used to establish new sessions for returning visitors. This is a session cookie and is only stored until you close the browser.
Expiration date: After closing the browser

Name: __utmz
Value: m|utmccn=(referral)|utmcmd=referral|utmcct=/
Purpose: The cookie is used to identify the source of traffic to our website. This means that the cookie stores where you came to our website from. This may have been another site or an advertising campaign.
Expiry date: after 6 months

Name: __utmv
Value: not specified
Purpose: The cookie is used to store user-defined user data. It is always updated when information is sent to Google Analytics.
Expiration date: after 2 years

Note: This list cannot claim to be complete, as Google constantly changes the choice of its cookies.

Here we show you an overview of the most important data collected with Google Analytics:

heat maps: Google creates so-called heat maps. With Heatmaps you can see exactly those areas that you click on. This way we get information where you are "on the road" on our site.

Session duration: Google defines session duration as the time you spend on our site without leaving the site. If you've been inactive for 20 minutes, the session ends automatically.

Bouncerate: A bouncer is when you view only one page on our site and then leave our site.

Account creation: When you create an account or place an order on our website, Google Analytics collects this data.

IP address: The IP address is only shown in abbreviated form so that no clear assignment is possible.

location: The IP address can be used to determine the country and your approximate location. This process is also known as IP location determination.

Technical Information: Technical information includes your browser type, your Internet provider or your screen resolution.

Source of origin: Google Analytics or us, is of course also interested in which website or which advertisement brought you to our site.

Other data includes contact details, any ratings, media playback (e.g. when you play a video on our site), sharing content via social media or adding to your favourites. This list does not claim to be exhaustive and serves only as a general orientation for data storage by Google Analytics. 

How long and where is the data stored?

Google has distributed your servers around the world. Most servers are located in America and therefore your data is usually stored on American servers. Here you can find out exactly where the Google data centers are located: www.google.com/about/datacenters/inside/locations/

Your data is distributed on different physical media. This has the advantage that the data can be retrieved more quickly and is better protected against manipulation. In every Google data centre there are appropriate emergency programs for your data. If, for example, Google's hardware fails or natural disasters paralyze servers, the risk of a service interruption at Google remains low.

Google Analytics has a standard retention period of 26 months for your user data. Then your user data will be deleted. However, we do have the option of choosing the retention period for user data ourselves. We have five options for this:

    Deletion after 14 months
    Cancellation after 26 months
    Cancellation after 38 months
    Deletion after 50 months
    No automatic deletion

When the specified period has expired, the data is deleted once a month. This retention period applies to your data linked to cookies, user recognition and advertising IDs (e.g. cookies from the DoubleClick domain). Reporting results are based on aggregated data and are stored independently of user data. Aggregated data is a fusion of individual data into a larger unit.
How can I delete my data or prevent data storage?

According to the data protection law of the European Union you have the right to obtain information about your data, to update, delete or restrict it. You can use the browser add-on to disable Google Analytics JavaScript (ga.js, analytics.js, dc.js) to prevent Google Analytics from using your data. You can download and install the browser add-on at tools.google.com/dlpage/gaoptout. Please note that this add-on only disables the data collection by Google Analytics.

If you basically want to deactivate, delete or manage cookies (independent of Google Analytics), there are separate instructions for each browser:

Chrome: Delete, activate and manage cookies in Chrome

Safari: Manage cookies and website data with Safari

Firefox: Delete cookies to remove data that websites have placed on your computer

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete and manage cookies

Google Analytics is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. You can find more information about this at www.privacyshield.gov/participant. We hope we have been able to provide you with the most important information about data processing by Google Analytics. If you want to learn more about the tracking service, we recommend these two links: www.google.com/analytics/terms/de.html and support.google.com/analytics/answer/6004245.

Source: Created with the privacy generator of AdSimple in cooperation with justmed.de 

Translated with www.DeepL.com/Translator (free version)

 

 

 

Prof. Dr. Zuberbier on the web: In the clinic In the foundation In the EU network