Privacy policy

Triangle Digital Solutions UG 

Schulgasse 12 

94227 Zwiesel

E-Mail: 

hello@3angle.pro

Phone: 

+491708093074

Imprint: 

https://3angle.pro

The following overview summarizes the types of data processed, the purposes of their processing, and refers to the individuals concerned. 

I.  Types of data processed 

• Inventory data.
• Contact data. 
• Content data. 
• Usage data. 
• Meta, communication, and procedural data. 

II.  Categories of affected persons 

• Communication partners.
• Users. 

III.  Purposes of processing 

• Provision of contractual services and fulfillment of contractual obligations. 
• Contact inquiries and communication. 
• Security measures. 
• Audience measurement. 
• Tracking.
• Management and response to inquiries. 
• Feedback.
• Marketing.
• Profiles with user-related information. 
• Provision of our online offer and user-friendliness. 
• Information technology infrastructure. 

Relevant legal bases under the GDPR: 

Below, you will find an overview of the legal bases of the GDPR on which we process personal data. Please note that, in addition to the GDPR regulations, national data protection regulations may apply in your or our country of residence or registered office. If, in specific cases, other more specific legal bases are relevant, we will inform you of these in the privacy policy. 

Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR 

The data subject has given their consent to the processing of their personal data for a specific purpose or for multiple specified purposes. 

Performance of a contract and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR 

Processing is necessary for the performance of a contract to which the data subject is a party, or for the implementation of pre-contractual measures taken at the request of the data subject. 

Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR 

Processing is necessary to protect the legitimate interests of the controller or a third party, provided that these interests are not overridden by the interests or fundamental rights and freedoms of the data subject that require protection of personal data. 

National data protection regulations in Germany: 

In addition to the GDPR regulations, national data protection regulations apply in Germany. This includes, in particular, the Act on Protection against Misuse of Personal Data in Data Processing (Federal Data Protection Act – BDSG). The BDSG contains specific provisions on the right to access, the right to deletion, the right to object, the processing of special categories of personal data, processing for other purposes, transfer, and automated decision-making on a case-by-case basis, including profiling. Additionally, the data protection laws of the individual federal states may apply. 

National data protection regulations in Austria: 

In addition to the GDPR regulations, national data protection regulations apply in Austria. This includes, in particular, the Federal Act on the Protection of Natural Persons in the Processing of Personal Data (Data Protection Act – DSG). The Data Protection Act contains specific provisions on the right to access, the right to rectification or deletion, the processing of special categories of personal data, processing for other purposes, transfer, and automated decision-making on a case-by-case basis. 

Relevant Legal Bases under the Swiss Data Protection Act: 

If you are located in Switzerland, we process your data based on the Swiss Federal Act on Data Protection (abbreviated as the "Swiss DPA"). This also applies if our processing of your data otherwise affects you in Switzerland and you are impacted by the processing. The Swiss DPA generally does not require (unlike the GDPR, for example) that a legal basis for processing personal data be specified. We only process personal data if the processing is lawful, conducted in good faith, and proportionate (Art. 6 Paras. 1 and 2 of the Swiss DPA). Furthermore, we collect personal data only for a specific and discernible purpose for the data subject, and we process it in a manner that is compatible with these purposes (Art. 6 Para. 3 of the Swiss DPA). 

Notice on the Applicability of GDPR and Swiss DPA: 

These data protection notices serve to provide information under both the Swiss Federal Act on Data Protection (Swiss DPA) and the General Data Protection Regulation (GDPR). For this reason, please note that due to the broader geographical applicability and clarity, the terminology of the GDPR is used. Specifically, instead of the terms used in the Swiss DPA such as "processing" of "personal data," "overriding interest," and "particularly sensitive personal data," the terms used in the GDPR—"processing" of "personal data," "legitimate interest," and "special categories of data"—are employed. However, the legal significance of the terms will still be determined according to the Swiss DPA within the scope of its applicability. 

We take appropriate technical and organizational measures in accordance with legal requirements, taking into account the state of the art, implementation costs, and the nature, scope, circumstances, and purposes of the processing, as well as the varying likelihood and severity of risks to the rights and freedoms of natural persons, to ensure a level of protection appropriate to the risk. 

The measures include, in particular, securing the confidentiality, integrity, and availability of data by controlling physical and electronic access to the data, as well as access, input, transfer, ensuring availability, and separation of the data. Additionally, we have established procedures to ensure the exercise of data subject rights, the deletion of data, and responses to data risks. Furthermore, we take data protection into account from the outset in the development or selection of hardware, software, and processes, in accordance with the principle of data protection by design and by default. 

As part of our processing of personal data, it may occur that data is transferred to or disclosed to other entities, companies, legally independent organizational units, or individuals. Recipients of this data may include service providers tasked with IT services or providers of services and content integrated into a website. In such cases, we comply with legal requirements and, in particular, enter into appropriate contracts or agreements with the recipients of your data to protect your data. 

Data Processing in Third Countries: If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)), or if processing occurs in connection with the use of third-party services, or if data is disclosed or transferred to other persons, entities, or companies, this is done only in compliance with legal requirements. If the data protection level in the third country has been recognized by an adequacy decision (Art. 45 GDPR), this serves as the basis for the data transfer. Otherwise, data transfers only occur if the data protection level is secured in another way, particularly through standard contractual clauses (Art. 46 para. 2 lit. c GDPR), explicit consent, or in the case of contractual or legally required transfer (Art. 49 para. 1 GDPR). Furthermore, we will inform you of the basis of third-country transfers for individual providers from third countries, with adequacy decisions serving as the primary basis. Information on third-country transfers and available adequacy decisions can be found in the EU Commission’s information resources: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de.

EU-US Trans-Atlantic Data Privacy Framework: Under the so-called "Data Privacy Framework" (DPF), the EU Commission has also recognized the data protection level as secure for certain companies in the USA as part of the adequacy decision dated 10.07.2023. The list of certified companies, as well as further information on the DPF, can be found on the U.S. Department of Commerce website at https://www.dataprivacyframework.gov/ (in English). We inform you within the scope of our privacy notices which service providers we use are certified under the Data Privacy Framework. 

Disclosure of Personal Data Abroad: In accordance with the Swiss Data Protection Act (DSG), we only disclose personal data abroad if adequate protection for the affected individuals is ensured (Art. 16 Swiss DSG). If the Federal Council has not recognized adequate protection (list: https://www.bj.admin.ch/bj/de/home/staat/datenschutz/internationales/anerkennung-staaten.html), we take alternative security measures. These may include international treaties, specific guarantees, data protection clauses in contracts, standard data protection clauses approved by the Swiss Federal Data Protection and Information Commissioner (FDPIC), or internal data protection regulations that have been pre-approved by the FDPIC or a competent data protection authority of another country. 

According to Art. 16 of the Swiss Data Protection Act (DSG), exceptions for the disclosure of data abroad may be permitted if certain conditions are met, including the consent of the data subject, contract fulfillment, public interest, protection of life or physical integrity, publicly available data, or data from a legally prescribed register. Such disclosures are always made in compliance with legal requirements. 

Rights of Data Subjects under the GDPR: As a data subject, you have various rights under the GDPR, which are set out in particular in Articles 15 to 21 of the GDPR: 

• Right to Object: You have the right, at any time and for reasons arising from your particular situation, to object to the processing of your personal data based on Article 6(1)(e) or (f) of the GDPR; this also applies to profiling based on these provisions. If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing; this also applies to profiling to the extent that it is related to such direct marketing. 
• Right to Withdraw Consent: You have the right to withdraw any consent given at any time. 
• Right of Access: You have the right to request confirmation as to whether the relevant data is being processed and to obtain information about this data, as well as additional details and a copy of the data, in accordance with legal requirements. 
• Right to Rectification: In accordance with legal requirements, you have the right to request the completion of your data or the correction of inaccurate data concerning you. 
• Right to Erasure and Restriction of Processing: In accordance with legal requirements, you have the right to request the immediate deletion of data concerning you, or alternatively, to request a restriction on the processing of your data in accordance with legal requirements. 
• Right to Data Portability: You have the right to receive data concerning you, which you have provided to us, in a structured, commonly used, and machine-readable format, or to request its transfer to another controller, in accordance with legal requirements. 
• Right to Lodge a Complaint with a Supervisory Authority: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or the location of the alleged infringement, if you believe that the processing of your personal data violates the provisions of the GDPR. 

 Rights of Data Subjects under the Swiss DPA: 

 As a data subject, you are entitled to the following rights under the provisions of the Swiss DPA: 

• Right of Access: You have the right to request confirmation as to whether personal data concerning you is being processed and to receive the information necessary to exercise your rights under this law, ensuring transparent data processing. 
• Right to Data Release or Transfer: You have the right to request the release of your personal data, which you have provided to us, in a commonly used electronic format. 
• Right to Rectification: You have the right to request the correction of inaccurate personal data concerning you. 
• Right to Object, Erasure, and Destruction: You have the right to object to the processing of your data and to request that personal data concerning you be deleted or destroyed. 

Cookies are small text files or other storage markers that store information on end devices and read information from these devices. For example, they can save the login status in a user account, the contents of a shopping cart in an online store, accessed content, or functions used in an online offering. Cookies can also be used for various purposes, such as ensuring the functionality, security, and convenience of online offerings, as well as for creating analyses of visitor traffic. 

Notes on Consent:

We use cookies in compliance with legal requirements. Therefore, we obtain prior consent from users, except when this is not legally required. Consent is particularly unnecessary if storing and reading information, including cookies, is strictly necessary to provide users with a telemedia service (i.e., our online offering) explicitly requested by them. Essential cookies typically include those that serve the display and functionality of the online offering, load balancing, security, storing user preferences and choices, or similar purposes related to providing the main and ancillary functions of the online service requested by users. The revocable consent is clearly communicated to users and includes information on the respective cookie usage. 

Notes on Data Protection Legal Bases: 

The data protection legal basis on which we process users' personal data with the help of cookies depends on whether we ask users for consent. If users give their consent, the legal basis for processing their data is the consent provided. Otherwise, the data processed using cookies is based on our legitimate interests (e.g., in the economical operation of our online offering and improving its usability) or, if necessary, in fulfilling our contractual obligations, when the use of cookies is required to meet these obligations. We inform you of the purposes for which cookies are processed as part of this privacy policy or within our consent and processing procedures. 

Storage Duration: 

With regard to storage duration, the following types of cookies are distinguished: 

• Temporary Cookies (also: session cookies): Temporary cookies are deleted at the latest after a user leaves an online offer and closes their device (e.g., browser or mobile application). 
• Permanent Cookies: Permanent cookies remain stored even after the device is closed. For example, the login status can be saved, or preferred content can be displayed directly when the user revisits a website. Likewise, data collected through cookies can be used for audience measurement. Unless we provide users with specific information about the type and duration of cookies (e.g., when obtaining consent), users should assume that cookies are permanent and may have a storage duration of up to two years. 

General Information on Withdrawal and Objection (so-called "Opt-Out"): 

Users can revoke their given consent at any time and object to the processing in accordance with legal requirements. This can include restricting the use of cookies in their browser settings (which may also limit the functionality of our online offering). Objections to the use of cookies for online marketing purposes can also be made through the websites https://optout.aboutads.info and https://www.youronlinechoices.com. 

•  Legal Bases: Legitimate Interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR). 

Additional Information on Processing Activities, Procedures, and Services: 

• Processing of Cookie Data Based on Consent: We use a cookie consent management procedure through which users' consent for the use of cookies, or for the processing and providers listed as part of the cookie consent management process, can be obtained, managed, and revoked. The consent declaration is stored to avoid repeatedly requesting it and to demonstrate compliance with legal obligations. Storage may occur server-side and/or in a cookie (so-called opt-in cookie, or via comparable technologies) to associate the consent with a user or their device. Unless specified otherwise for individual cookie management service providers, the following applies: The storage duration of the consent can be up to two years. A pseudonymous user identifier is created and stored along with the time of consent, information on the scope of consent (e.g., which categories of cookies and/or service providers), and details of the browser, system, and device used; Legal Basis: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR). 

We process users' data in order to provide them with our online services. For this purpose, we process the user's IP address, which is necessary to transmit the content and functions of our online services to the user's browser or device. 

• Types of Data Processed: Usage data (e.g., visited websites, interest in content, access times); Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent status). 
• Data Subjects: Users (e.g., website visitors, users of online services). 
• Purposes of Processing: Provision of our online offering and user-friendliness; information technology infrastructure (operation and provision of information systems and technical devices (computers, servers, etc.)); security measures. 
• Legal Basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). 

 Additional Information on Processing Activities, Procedures, and Services: 

• Collection of Access Data and Log Files: Access to our online offering is logged in the form of "server log files." These server log files may include the address and name of the accessed web pages and files, date and time of access, data volumes transferred, message about successful retrieval, browser type and version, the user’s operating system, referrer URL (the previously visited page), and usually IP addresses and the requesting provider. The server log files can be used for security purposes, for example, to prevent server overload (especially in cases of misuse, such as DDoS attacks) and to ensure the servers' load and stability; Legal Basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). Data Deletion: Log file information is stored for a maximum of 30 days and then deleted or anonymized. Data that needs to be retained for evidentiary purposes is exempted from deletion until the respective incident is finally resolved. 

We use blogs or similar means of online communication and publication (hereinafter "publication medium"). The data of readers is processed only to the extent necessary for the presentation of the publication medium, communication between authors and readers, or for security purposes. For additional information on the processing of visitors' data to our publication medium, please refer to the data processing details provided in this privacy notice. 

• Types of Data Processed: Inventory data (e.g., names, addresses); contact data (e.g., email, phone numbers); content data (e.g., entries in online forms); usage data (e.g., visited websites, interest in content, access times); meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent status). 
• Data Subjects: Users (e.g., website visitors, users of online services). 
• Purposes of Processing: Provision of contractual services and fulfillment of contractual obligations; feedback (e.g., collecting feedback via online form); provision of our online offering and user-friendliness; security measures; management and response to inquiries. 
• Legal Basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). 

Additional Information on Processing Activities, Procedures, and Services: 

• Comments and Contributions: When users leave comments or other contributions, their IP addresses may be stored based on our legitimate interests. This is done for our security, in case someone leaves illegal content (insults, prohibited political propaganda, etc.) in comments or contributions. In such cases, we could be held liable for the comment or contribution, so we have an interest in the identity of the author. Furthermore, we reserve the right to process user information for spam detection based on our legitimate interests. On the same legal basis, we reserve the right to store users' IP addresses during surveys and to use cookies to prevent multiple votes. The information provided within comments and contributions, such as personal details, contact information, website information, and content, will be stored by us permanently until the users object; Legal Basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). 

When contacting us (e.g., by mail, contact form, email, phone, or via social media) and within the scope of existing user and business relationships, the information provided by the inquiring persons is processed to the extent necessary to respond to contact inquiries and any requested measures. 

• Types of Data Processed: Contact data (e.g., email, phone numbers); content data (e.g., entries in online forms); usage data (e.g., visited websites, interest in content, access times); meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent status). 
• Data Subjects: Communication partners. 
• Purposes of Processing: Contact inquiries and communication; management and response to inquiries; feedback (e.g., collecting feedback via online form); provision of our online offering and user-friendliness. 
• Legal Basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); performance of a contract and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR). 

Additional Information on Processing Activities, Procedures, and Services: 

• Contact Form: When users contact us via our contact form, email, or other communication channels, we process the data provided to us in this context to address the matter at hand; Legal Basis: Performance of a contract and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR), legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). 

Web Analysis (also referred to as "audience measurement") is used to evaluate visitor flows to our online offering and may include behaviors, interests, or demographic information about visitors, such as age or gender, as pseudonymous values. Audience measurement helps us understand, for example, when our online offering or its functions or content is most frequently used or encourages repeated use. It also allows us to identify areas that need optimization. 

In addition to web analysis, we may use testing procedures to test and optimize different versions of our online offering or its components. 

Unless otherwise specified below, profiles may be created for these purposes, i.e., data aggregated from a usage session, and information may be stored in or read from a browser or device. Data collected includes, in particular, visited websites and elements used within them, as well as technical information such as the browser used, computer system, and usage times. If users have agreed to the collection of their location data with us or with the providers of the services we use, location data may also be processed. 

IP addresses of users are also stored. However, we use an IP masking procedure (i.e., pseudonymization by shortening the IP address) to protect users. Generally, no clear user data (such as email addresses or names) is stored as part of web analysis, A/B testing, and optimization; only pseudonyms are used. This means that neither we nor the software providers used know the actual identity of users, only the information stored in their profiles for the purposes of each procedure. 

• Types of Data Processed: Usage data (e.g., visited websites, interest in content, access times); meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent status). 
•  Data Subjects: Users (e.g., website visitors, users of online services). 
• Purposes of Processing: Audience measurement (e.g., access statistics, recognition of returning visitors); profiles with user-related information (creating user profiles). 
• Security Measures: IP masking (pseudonymization of IP addresses). 

We process personal data for the purposes of online marketing, which includes, in particular, the marketing of advertising spaces or the display of advertising and other content (collectively referred to as "content") based on potential user interests, as well as measuring their effectiveness. 

For these purposes, user profiles are created and stored in a file (known as a "cookie") or similar methods are used, through which information relevant to the display of the aforementioned content is saved about the user. This information may include viewed content, visited websites, online networks used, as well as communication partners and technical data, such as the browser used, the computer system used, and data on usage times and functions used. If users have consented to the collection of their location data, this data may also be processed. 

User IP addresses are also stored. However, we use available IP masking techniques (i.e., pseudonymization by shortening the IP address) to protect users. In general, no clear user data (such as email addresses or names) is stored within the framework of online marketing; only pseudonyms are used. This means that neither we nor the providers of the online marketing methods know the actual identity of users, only the information stored in their profiles. 

The information in the profiles is usually stored in cookies or through similar methods. These cookies can generally be read on other websites that use the same online marketing method, analyzed for the purpose of content display, and supplemented with additional data, then stored on the server of the online marketing provider. 

Exceptionally, clear data may be assigned to the profiles. This occurs when users, for example, are members of a social network whose online marketing method we use and the network links the users' profiles with the aforementioned information. Please note that users may make additional agreements with providers, for example, by giving consent during registration. 

We generally only have access to aggregated information about the success of our advertisements. However, as part of conversion measurement, we can check which of our online marketing methods have led to a so-called conversion, such as a contract conclusion with us. Conversion measurement is solely used to analyze the success of our marketing efforts. 

Unless otherwise specified, please assume that the cookies used are stored for a period of two years. 

• Types of Data Processed: Usage data (e.g., visited websites, interest in content, access times); meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent status). 
• Data Subjects: Users (e.g., website visitors, users of online services). 
• Purposes of Processing: Audience measurement (e.g., access statistics, recognition of returning visitors); tracking (e.g., interest/behavior-based profiling, use of cookies); marketing; profiles with user-related information (creating user profiles). 
• Security Measures: IP masking (pseudonymization of IP address). 
• Opt-Out Option: Please refer to the privacy notices of the respective providers and the opt-out options provided by each provider. If no explicit opt-out option has been provided, you can disable cookies in your browser settings, though this may limit the functionality of our online offering. We therefore also recommend the following opt-out options, which are provided for specific regions:
  a) Europe: https://www.youronlinechoices.eu, b) Canada: https://www.youradchoices.ca/choices, c) USA: https://www.aboutads.info/choices, d) Cross-regional: https://optout.aboutads.info 

We maintain online presences within social networks and process user data in this context to communicate with active users there or to provide information about us. 

Please note that user data may be processed outside the European Union. This may pose risks for users, as it could, for example, make it more difficult for them to exercise their rights. 

Furthermore, user data within social networks is generally processed for market research and advertising purposes. For example, user profiles can be created based on user behavior and resulting interests. These user profiles may then be used to display advertisements within and outside the networks that are likely to match the users' interests. For these purposes, cookies are usually stored on users' devices, which store user behavior and interests. Additionally, data in user profiles can also be stored independently of the devices used by users (especially if users are members of the respective platforms and are logged in to them). 

For a detailed description of the respective forms of processing and the opt-out options, we refer to the privacy policies and information provided by the operators of each network. 

In the case of information requests and the exercise of data subject rights, we would like to point out that these are most effectively addressed directly to the providers. Only the providers have access to the users' data and can take appropriate actions and provide information. However, if you still need assistance, you may contact us. 

• Types of Data Processed: Contact data (e.g., email, phone numbers); content data (e.g., entries in online forms); usage data (e.g., visited websites, interest in content, access times); meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent status). 
• Data Subjects: Users (e.g., website visitors, users of online services). 
• Purposes of Processing: Contact inquiries and communication; feedback (e.g., collecting feedback via online form); marketing. 
• Legal Basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). 

 Additional Information on Processing Activities, Procedures, and Services: 

• Instagram: Social network; service provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; Legal Basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://www.instagram.com. Privacy Policy: https://instagram.com/about/legal/privacy. 
• Facebook Pages: Profiles within the social network Facebook – We are jointly responsible with Meta Platforms Ireland Limited for the collection (but not the further processing) of data from visitors to our Facebook Page (also known as a "Fan Page"). This data includes information about the types of content users view or interact with, or actions they take (see "Things you and others do and provide" in the Facebook Data Policy: https://www.facebook.com/policy), as well as information about the devices used by users (e.g., IP addresses, operating system, browser type, language settings, cookie data; see "Device information" in the Facebook Data Policy: https://www.facebook.com/policy). As explained in the Facebook Data Policy under "How do we use this information?", Facebook also collects and uses information to provide analytics services, known as "Page Insights," to page operators, enabling them to gain insights into how people interact with their pages and associated content.
  We have entered into a special agreement with Facebook ("Page Insights Controller Addendum", https://www.facebook.com/legal/terms/page_controller_addendum), which specifically defines the security measures Facebook must observe and in which Facebook agrees to fulfill data subject rights (e.g., users can direct requests for information or deletion directly to Facebook). The rights of users (in particular, the rights to access, deletion, objection, and complaints to the competent supervisory authority) are not limited by agreements with Facebook. Further information can be found in the "Information about Page Insights" (https://www.facebook.com/legal/terms/information_about_page_insights_data). Service Provider: Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland; Legal Basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://www.facebook.com; Privacy Policy: https://www.facebook.com/about/privacy;
  Basis for Third-Country Transfer: EU-US Data Privacy Framework (DPF), Standard Contractual Clauses (https://www.facebook.com/legal/EU_data_transfer_addendum).
  Additional Information: Joint responsibility agreement: https://www.facebook.com/legal/terms/information_about_page_insights_data. Joint responsibility is limited to the collection and transmission of data to Meta Platforms Ireland Limited, a company based in the EU. The further processing of the data is solely the responsibility of Meta Platforms Ireland Limited, particularly regarding the transfer of data to the parent company Meta Platforms, Inc. in the USA (based on the Standard Contractual Clauses between Meta Platforms Ireland Limited and Meta Platforms, Inc.). 
• LinkedIn: Social network; Service Provider: LinkedIn Ireland Unlimited Company, Wilton Plaza Wilton Place, Dublin 2, Ireland; Legal Basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR);
  Website: https://www.linkedin.com; Privacy Policy: https://www.linkedin.com/legal/privacy-policy; Data Processing Agreement: https://legal.linkedin.com/dpa; Basis for Third-Country Transfer: Standard Contractual Clauses (https://legal.linkedin.com/dpa); Opt-Out Option: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out. 
• X (formerly Twitter): Social network; Service Provider: Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland; Legal Basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Privacy Policy: https://twitter.com/privacy; Settings: https://twitter.com/personalization. 

We integrate functional and content elements into our online offering that are retrieved from the servers of their respective providers (hereinafter referred to as "third-party providers"). This can include graphics, videos, or maps (collectively referred to as "content"). 

Embedding such content always requires that the third-party providers of these elements process the users' IP addresses, as they would be unable to send the content to their browsers without the IP address. Therefore, the IP address is necessary for displaying this content or functions. We strive to use only content whose providers use the IP address solely for delivering the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. Through "pixel tags," information such as visitor traffic on this website can be analyzed. The pseudonymous information can also be stored in cookies on the user's device and may contain, among other things, technical information about the browser and operating system, referring websites, visit time, and other information about the use of our online offering, as well as be linked to such information from other sources. 

• Types of Data Processed: Usage data (e.g., visited websites, interest in content, access times); meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent status). 
• Data Subjects: Users (e.g., website visitors, users of online services). 
• Purposes of Processing: Provision of our online offering and user-friendliness. 
• Legal Basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). 

Additional Information on Processing Activities, Procedures, and Services: 

•  Google Fonts (retrieval from Google Server): Fonts (and icons) are retrieved for technically secure, maintenance-free, and efficient use of fonts and icons in terms of up-to-date performance, load times, and uniform display while considering possible licensing restrictions. The user's IP address is shared with the font provider to deliver the fonts in the user's browser. Additionally, technical data (language settings, screen resolution, operating system, hardware) necessary for providing the fonts based on the devices and technical environment used are transmitted. This data may be processed on a server of the font provider in the USA. When visiting our online offering, users' browsers send HTTP requests to the Google Fonts Web API (a software interface for retrieving fonts). The Google Fonts Web API provides users with the Cascading Style Sheets (CSS) from Google Fonts and then the fonts specified in the CSS. These HTTP requests include (1) the IP address used by each user to access the internet, (2) the requested URL on the Google server, and (3) HTTP headers, including the user-agent, which describes the browser and operating system versions of website visitors, as well as the referrer URL (the webpage where the Google font is to be displayed). IP addresses are neither logged nor stored on Google servers and are not analyzed. The Google Fonts Web API logs details of HTTP requests (requested URL, user-agent, and referrer URL). Access to this data is limited and strictly controlled. The requested URL identifies the font families for which the user wants to load fonts. This data is logged to determine how often a specific font family is requested. With the Google Fonts Web API, the user-agent must adjust the font generated for each browser type. The user-agent is primarily logged for debugging and used to generate aggregated usage statistics to measure the popularity of font families. These aggregated usage statistics are published on the "Analytics" page of Google Fonts. Finally, the referrer URL is logged to use the data for production maintenance and generate an aggregated report on top integrations based on the number of font requests.
  According to Google, none of the information collected by Google Fonts is used to create profiles of end-users or target advertisements. Service Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Legal Basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://fonts.google.com/; Privacy Policy: https://policies.google.com/privacy; Basis for Third-Country Transfer: EU-US Data Privacy Framework (DPF). Further Information: https://developers.google.com/fonts/faq/privacy?hl=de.