Privacy Policy

Preamble

With the following privacy policy, we would like to inform you about the types of your personal data (hereinafter also referred to as "data") that we process, for which purposes, and to what extent, in the context of providing our application.

The terms used are not gender-specific.

As of: June 7, 2025

Table of Contents

1. Preamble

2. Data Controller

3. Overview of Processing Activities

4. Applicable Legal Bases

5. Transmission of Personal Data

6. International Data Transfers

7. General Information on Data Storage and Deletion

8. Rights of Data Subjects

9. Provision of Online Services and Web Hosting

10. Use of Cookies

11. Registration, Login, and User Accounts

12. Community Features

13. Contact and Request Management

14. Web Analytics, Monitoring, and Optimization

15. Social Media Presences

16. Plug-ins and Embedded Functions and Content

17. Use of Google Firebase Services

18. Changes and Updates

19. Definitions

Data Controller

Müller, Gabriel; Ehmann; Müller; Struckmann GbR

Stärkestr. 23

30451 Hannover, Germany

Email Address: support@join-hive.com

Overview of Processing Activities

The following overview summarizes the types of data processed and the purposes for which they are processed, along with the data subjects involved.

Types of Processed Data

• Inventory data

• Contact data

• Content data

• Usage data

• Meta, communication, and procedural data

• Log data

Categories of Data Subjects

• Communication partners

• Users

Purposes of Processing

• Provision of contractual services and fulfillment of contractual obligations

• Communication

• Security measures

• Reach measurement

• Organizational and administrative processes

• Feedback

• Profiles with user-related information

• Provision of our online services and user-friendliness

• IT infrastructure

• Public relations

Applicable Legal Bases

Applicable legal bases under the GDPR: Below is an overview of the legal bases under the GDPR on which we process personal data. Please note that in addition to the GDPR provisions, national data protection regulations may apply in your or our country of residence or business. If, in individual cases, more specific legal bases are relevant, we will inform you in the privacy policy.

• Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR): The data subject has given consent to the processing of their personal data for one or more specific purposes.

• Contract fulfillment and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR): Processing is necessary for the fulfillment of a contract to which the data subject is a party, or for carrying out pre-contractual measures at the request of the data subject.

• Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR): Processing is necessary for the protection of legitimate interests pursued by the data controller or a third party, provided that the interests, fundamental rights, and freedoms of the data subject, which require protection of personal data, do not override such interests.

National Data Protection Regulations in Germany: In addition to the GDPR, national regulations for data protection apply in Germany. This includes, in particular, the Federal Data Protection Act (BDSG), which contains special provisions regarding the right to access, right to deletion, right to object, processing of special categories of personal data, processing for other purposes, transfer, and automated decision-making, including profiling. State-specific data protection laws may also apply.

Transmission of Personal Data

In the course of processing personal data, it may occur that data is transmitted or disclosed to other parties, companies, legally independent organizations, or individuals. Recipients of this data may include, for example, service providers assigned with IT tasks or providers of services and content integrated into a website. In such cases, we adhere to legal requirements and, in particular, conclude appropriate contracts or agreements to protect your data with the recipients.

International Data Transfers

Data processing in third countries: If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)) or if data processing occurs within the scope of using third-party services or disclosure/transmission of data to other persons, entities, or companies, this is done only in accordance with legal requirements. If the data protection level in the third country has been recognized through an adequacy decision (Art. 45 GDPR), this serves as the basis for data transfer. Otherwise, data transfers occur only if the data protection level is secured through other means, in particular by standard contractual clauses (Art. 46 para. 2 lit. c) GDPR), explicit consent, or in the case of contractual or legally required transfers (Art. 49 para. 1 GDPR). We will inform you about the third-country transfer frameworks used by individual service providers.

General Information on Data Storage and Deletion

We delete personal data that we process in accordance with legal requirements as soon as the underlying consents are revoked or no further legal grounds for processing exist. This applies in cases where the original processing purpose is no longer relevant or the data is no longer needed. Exceptions to this rule exist when legal obligations or special interests require longer storage or archiving of the data.

In particular, data that must be retained for commercial or tax law reasons, or whose storage is necessary for legal enforcement or protection of the rights of other natural or legal persons, must be archived accordingly.

Our privacy notices provide additional information on the retention and deletion of data that specifically applies to certain processing activities.

In cases where multiple retention or deletion periods apply to a given data, the longest period shall take precedence.

If a period does not begin on a specific date and is at least one year long, it will automatically begin at the end of the calendar year in which the triggering event occurred. In the case of ongoing contractual relationships in which data is stored, the triggering event is the effective date of termination or other termination of the legal relationship.

Data that is no longer processed for the original purpose, but is retained due to legal requirements or other reasons, is processed solely for the reasons that justify its retention.

Rights of the Data Subject

Rights of data subjects under the GDPR: As data subjects, you have various rights under the GDPR, particularly those set out in Articles 15 to 21 of the GDPR:

• Right to object: You have the right to object, for reasons related to your particular situation, at any time to the processing of personal data concerning you, which is based on Article 6(1)(e) or (f) of the GDPR; this also applies to profiling based on these provisions. If your personal data is being processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing purposes, including profiling related to such direct marketing.

• Right to withdraw consent: You have the right to withdraw any consent previously given at any time.

• Right to access: You have the right to request confirmation as to whether personal data concerning you is being processed, and to request information about such data, as well as further information and a copy of the data in accordance with legal requirements.

• Right to rectification: You have the right, in accordance with legal requirements, to request the completion of personal data concerning you or the correction of incorrect personal data concerning you.

• Right to erasure and restriction of processing: You have the right, in accordance with legal requirements, to request the immediate deletion of personal data concerning you, or alternatively, to request the restriction of the processing of such data in accordance with legal provisions.

• Right to data portability: You have the right to receive personal data concerning you that you have provided to us, in a structured, commonly used, and machine-readable format, or to request the transmission of that data to another controller in accordance with legal requirements.

• Right to lodge a complaint with a supervisory authority: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, particularly in the member state of your habitual residence, place of work, or the location of the alleged infringement, if you believe that the processing of your personal data infringes the provisions of the GDPR.

Provision of Online Services and Web Hosting

We process user data in order to provide them with our online services. For this purpose, we process the user's IP address, which is necessary to transmit the content and functions of our online services to the user's browser or device.

• Processed types of data: Usage data (e.g., page views, duration of visits, click paths, usage intensity and frequency, types of devices and operating systems used, interactions with content and functions); meta-, communication- and process data (e.g., IP addresses, time stamps, identification numbers, persons involved); log data (e.g., logfiles related to logins, data retrieval, or access times); content data (e.g., textual or image messages and posts, as well as related information, such as authorship or creation time).

• Data subjects: Users (e.g., website visitors, users of online services).

• Purpose of processing: Provision of our online offer and user convenience; IT infrastructure (operation and provision of information systems and technical devices (computers, servers, etc.)); security measures.

• Storage and deletion: Deletion in accordance with the information in the section "General Information on Data Storage and Deletion."

• Legal bases: Legitimate interests (Art. 6(1)(f) GDPR).

Further information on processing activities, procedures, and services:

• Provision of online services on rented storage space: For the provision of our online services, we use storage space, computing power, and software that we rent or otherwise acquire from a corresponding server provider (also referred to as "web host"). Legal basis: Legitimate interests (Art. 6(1)(f) GDPR).

• Collection of access data and logfiles: Access to our online services is logged in the form of so-called "server logfiles." Server logfiles may include the address and name of the retrieved webpages and files, the date and time of access, transmitted data volumes, confirmation of successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page), and typically IP addresses and the requesting provider. Server logfiles can be used for security purposes, for example, to avoid server overloads (especially in the case of malicious attacks, so-called DDoS attacks), and to ensure server load and stability. Legal basis: Legitimate interests (Art. 6(1)(f) GDPR). Deletion of data: Logfile information is stored for a maximum of 30 days and then deleted or anonymized. Data that needs to be stored for legal evidence purposes will be excluded from deletion until the respective case is fully resolved.

• Email sending and hosting: The web hosting services we use also include email sending, receiving, and storage. For these purposes, the addresses of recipients and senders, as well as additional information related to email transmission (e.g., the involved providers) and the content of the emails, are processed. The aforementioned data can also be processed for the detection of SPAM. Please note that emails are generally not encrypted during transmission over the internet. While emails are typically encrypted during transit, they are not encrypted on the servers from which they are sent and received, unless end-to-end encryption is used. Therefore, we cannot assume responsibility for the transmission path of emails between the sender and their reception on our server. Legal basis: Legitimate interests (Art. 6(1)(f) GDPR).

Use of Cookies

Cookies are functions that store and retrieve information on users' devices. Cookies can serve various purposes, such as ensuring the functionality, security, and convenience of online services, as well as generating analyses of visitor traffic. We use cookies in accordance with legal provisions, obtaining user consent where necessary. If consent is not required, we rely on our legitimate interests. This applies when storing and retrieving information is essential to provide explicitly requested content and functions, such as saving settings and ensuring the functionality and security of our online services. Consent can be withdrawn at any time. We clearly inform users about the scope and which cookies are used.

Notes on Data Protection Legal Grounds: Whether we process personal data using cookies depends on consent. If consent is given, it serves as the legal basis. Without consent, we rely on our legitimate interests, which are explained above in this section and in the context of the respective services and processes.

Storage duration: Regarding the storage duration, the following types of cookies are distinguished:

• Temporary cookies (also: session cookies): Temporary cookies are deleted as soon as a user leaves an online service and closes their device (e.g., browser or mobile app).

• Permanent cookies: Permanent cookies remain stored even after the device is closed. For example, the login status can be saved, and preferred content can be directly displayed when the user visits the website again. Data collected using cookies may also be used for reach measurement. If we do not provide specific details about the type and storage duration of cookies (e.g., in connection with obtaining consent), users should assume that they are permanent and can be stored for up to two years.

General Notes on Withdrawal and Objection (Opt-out): Users may withdraw their consents at any time and also object to processing in accordance with legal requirements, including via their browser's privacy settings.

• Processed data types: Meta-, communication- and process data (e.g., IP addresses, time stamps, identification numbers, involved parties).

• Data subjects: Users (e.g., website visitors, users of online services).

• Legal bases: Legitimate interests (Art. 6(1)(f) GDPR); consent (Art. 6(1)(a) GDPR).

Further information on processing activities, procedures, and services.

• Processing of Cookie Data Based on Consent: We employ a consent management solution where the consent of users for the use of cookies or the procedures and providers listed within the consent management solution is obtained. This procedure is used to collect, log, manage, and revoke consents, particularly in relation to the use of cookies and similar technologies employed to store, read, and process information on users' devices. In the context of this procedure, the users' consents for the use of cookies and the related processing of information, including specific processes and providers mentioned within the consent management process, are obtained. Users also have the option to manage and withdraw their consents. The consent declarations are stored to avoid re-querying and to be able to prove the consent in accordance with legal requirements. The storage is carried out server-side and/or in a cookie (so-called opt-in cookie) or using similar technologies to associate the consent with a specific user or their device. If no specific information about the providers of consent management services is available, the following general notes apply: The duration of consent storage is up to two years. A pseudonymous user identifier is created, which, along with the consent timestamp, information on the scope of consent (e.g., affected categories of cookies and/or service providers), as well as information about the browser, system, and device used, is stored. Legal basis: Consent (Art. 6 Para. 1 S. 1 lit. a) GDPR).

Registration, Login, and User Account

Users can create a user account. During registration, users are provided with the required mandatory information, and the data is processed for the purpose of providing the user account based on contractual obligations. The processed data includes login information (username, password, and email address). In connection with the use of our registration and login features, as well as the utilization of the user account, we store the IP address and the time of the respective user action. The storage is carried out based on our legitimate interests, as well as those of the users, in protecting against misuse and unauthorized use. These data are generally not shared with third parties unless required for the enforcement of our claims or there is a legal obligation to do so. Users may be informed by email about activities relevant to their user account, such as technical changes.

• Processed Data Types: Master data (e.g., full name, address, contact information, customer number, etc.); contact data (e.g., postal and email addresses or phone numbers); content data (e.g., textual or visual messages and posts, as well as related information such as authorship or creation time); usage data (e.g., page views, dwell time, click paths, usage intensity and frequency, types of devices and operating systems used, interactions with content and functions); log data (e.g., log files concerning logins or data retrievals or access times).

• Affected Individuals: Users (e.g., website visitors, online service users).

• Purpose of Processing: Provision of contractual services and fulfillment of contractual obligations; security measures; organizational and administrative procedures. Provision of our online offering and user-friendliness.

• Retention and Deletion: Deletion in accordance with the section "General Information on Data Storage and Deletion". Deletion upon cancellation.

• Legal Basis: Performance of a contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR). Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR).

Further Notes on Processing Procedures, Processes, and Services:

• Registration with Pseudonyms: Users may use pseudonyms instead of their real names as usernames. Legal Basis: Performance of a contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR).

• Public User Profiles: User profiles are publicly visible and accessible.

Community Features

The community features we provide allow users to engage in conversations or other exchanges with each other. Please note that the use of community features is only permitted in compliance with applicable laws, our terms and conditions, and the rights of other users and third parties.

• Processed Data Types: Master data (e.g., full name, address, contact information, customer number, etc.); usage data (e.g., page views, dwell time, click paths, usage intensity and frequency, types of devices and operating systems used, interactions with content and functions).

• Affected Individuals: Users (e.g., website visitors, online service users).

• Purpose of Processing: Provision of contractual services and fulfillment of contractual obligations; security measures. Provision of our online offering and user-friendliness.

• Retention and Deletion: Deletion in accordance with the section "General Information on Data Storage and Deletion".

• Legal Basis: Performance of a contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR). Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR).

Further Notes on Processing Procedures, Processes, and Services:

• Public User Contributions: Contributions and content created by users are publicly visible and accessible; Legal Basis: Performance of a contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR).

• Limited Deletion of Conversation Contributions: In consideration of other users, conversation contributions from the user remain stored even after cancellation and account deletion to prevent conversations, comments, advice, or similar communication between and among users from losing their meaning or reversing. Usernames will be deleted or pseudonymized, unless they were already pseudonyms. Users can request the complete deletion of conversation contributions at any time; Legal Basis: Performance of a contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR).

• Protection of Own Data: Users decide for themselves which data they disclose about themselves within our online offering. For example, when users provide personal information or participate in conversations. We ask users to protect their data and only disclose personal data thoughtfully and only to the extent necessary. In particular, we ask users to pay attention to safeguarding their access data and using secure passwords (i.e., ideally long and random character combinations); Legal Basis: Performance of a contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR).

Contact and Inquiry Management

When contacting us (e.g., by post, contact form, email, phone, or via social media) as well as in the context of existing user and business relationships, the details of the contacting individuals are processed as necessary for answering contact inquiries and taking any requested actions.

• Processed Data Types: Master data (e.g., full name, address, contact information, customer number, etc.); contact data (e.g., postal and email addresses or phone numbers); content data (e.g., textual or visual messages and posts, as well as related information such as authorship or creation time); usage data (e.g., page views, dwell time, click paths, usage intensity and frequency, types of devices and operating systems used, interactions with content and functions); meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, involved persons).

• Affected Individuals: Communication partners.

• Purpose of Processing: Communication; organizational and administrative procedures; feedback (e.g., collecting feedback via online forms). Provision of our online offering and user-friendliness.

• Retention and Deletion: Deletion in accordance with the section "General Information on Data Storage and Deletion".

• Legal Basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR). Performance of a contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR).

Further Notes on Processing Procedures, Processes, and Services:

• Contact Form: When contacting us via our contact form, email, or other communication methods, we process the personal data provided to us in order to respond to and handle the respective inquiry. This typically includes information such as name, contact details, and any other information provided to us that is necessary for appropriate processing. We use this data exclusively for the specified purpose of contact and communication;

• Legal Basis: Performance of a contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b) GDPR), Legitimate interests (Art. 6 Para. 1 S. 1 lit. f) GDPR).

Web Analytics, Monitoring, and Optimization

Web analytics (also referred to as "reach measurement") is used to evaluate visitor traffic to our online offering. It may include behavior, interests, or demographic information about the visitors, such as age or gender, in pseudonymous values. Through reach analysis, we can, for example, determine when our online offerings or their features and content are used most frequently or invited for reuse. It also allows us to identify areas that require optimization.

In addition to web analytics, we may also use testing methods to evaluate and optimize different versions of our online offerings or their components.

Unless otherwise stated below, profiles—data summarized from a usage session—may be created for these purposes, and information may be stored and later retrieved from a browser or device. The collected data particularly includes visited websites and utilized elements, as well as technical details such as the browser used, the computer system, and usage times. If users have consented to the collection of location data by us or by providers of services we use, the processing of location data may also occur.

Furthermore, the IP addresses of users are stored. However, we use an IP masking procedure (i.e., pseudonymization by shortening the IP address) to protect users. In general, no personally identifiable information (such as email addresses or names) is stored within web analytics, A/B testing, or optimization; instead, pseudonyms are used. This means that both we and the software providers we employ do not know the actual identities of users, but only the data stored in their profiles for the purpose of these procedures.

Legal Basis Notes: If we ask users for their consent for the use of third-party services, the legal basis for data processing is consent. Otherwise, user data is processed based on our legitimate interests (i.e., the interest in efficient, economical, and user-friendly services). In this context, we also refer you to the cookie usage information in this privacy policy.

• Processed Data Types: Usage data (e.g., page views and time spent, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and features). Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, involved individuals).

• Affected Individuals: Users (e.g., website visitors, online service users).

• Purposes of Processing: Reach measurement (e.g., access statistics, identification of returning visitors). Profiles with user-related information (creating user profiles).

• Retention and Deletion: Deletion according to the details in the section "General Information on Data Retention and Deletion." Cookies are stored for up to 2 years (unless otherwise indicated, cookies and similar storage methods may be stored on users' devices for up to two years).

• Security Measures: IP masking (pseudonymization of the IP address).

• Legal Bases: Consent (Art. 6(1) sentence 1 lit. a) GDPR). Legitimate interests (Art. 6(1) sentence 1 lit. f) GDPR).

Social Media Presence

We maintain online presences within social networks and process user data within this context to communicate with users active there or offer information about ourselves.

We note that user data may be processed outside the European Union. This may pose risks for users, as the enforcement of user rights might be more difficult.

Furthermore, user data within social networks is typically processed for market research and advertising purposes. For instance, user behavior and interests derived from this behavior can be used to create user profiles. These profiles may, in turn, be used to serve ads within and outside the networks, tailored to users' interests. Therefore, cookies are typically stored on users' devices to record usage behavior and interests. Additionally, data in user profiles may be stored independently of the devices used by the users (especially if they are members of the respective platforms and logged in).

For a detailed presentation of the respective forms of processing and opt-out possibilities, we refer to the privacy policies and statements of the network providers.

Even in the case of data access requests and the assertion of rights by affected individuals, we note that these are most effectively made with the providers. Only they have access to the user data and can take the corresponding actions and provide information. Should you need assistance, please feel free to contact us.

• Processed Data Types: Contact data (e.g., postal and email addresses or phone numbers); Content data (e.g., text or visual messages and posts, as well as information related to them, such as author information or the creation time); Usage data (e.g., page views and time spent, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and features).

• Affected Individuals: Users (e.g., website visitors, online service users).

• Purposes of Processing: Communication; feedback collection (e.g., collecting feedback via online forms); public relations.

• Retention and Deletion: Deletion according to the details in the section "General Information on Data Retention and Deletion."

• Legal Bases: Legitimate interests (Art. 6(1) sentence 1 lit. f) GDPR).

Plugins and Embedded Features, and Content

We integrate functional and content elements into our online offering, sourced from the servers of their respective providers (hereinafter referred to as "third-party providers"). These may include graphics, videos, or maps (hereinafter referred to uniformly as "content").

Integration always requires that the third-party providers process the users' IP addresses, as they cannot send the content to the users' browsers without the IP address. Thus, the IP address is necessary for displaying these contents or functions. We strive to use only those contents whose respective providers use the IP address solely for delivering the content. Third-party providers may also use so-called pixel tags (invisible graphics, also called "web beacons") for statistical or marketing purposes. These "pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on users' devices, containing technical information about the browser and operating system, referring websites, visit times, and further details about the use of our online offering, and may be connected with information from other sources.

Legal Basis Notes: If we ask users for their consent to use third-party services, the legal basis for data processing is consent. Otherwise, user data is processed based on our legitimate interests (i.e., interest in efficient, economical, and user-friendly services). In this context, we also refer you to the cookie usage information in this privacy policy.

• Processed Data Types: Usage data (e.g., page views and time spent, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and functions). Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, involved individuals).

• Affected Individuals: Users (e.g., website visitors, online service users).

• Purposes of Processing: Provision of our online offering and user-friendliness.

• Retention and Deletion: Deletion according to the details in the section "General Information on Data Retention and Deletion." Cookies stored for up to 2 years (unless otherwise indicated, cookies and similar storage methods may be stored on users' devices for up to two years).

• Legal Bases: Consent (Art. 6(1) sentence 1 lit. a) GDPR). Legitimate interests (Art. 6(1) sentence 1 lit. f) GDPR).

Use of Google Firebase Services

We use services from Google Firebase, provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA), to develop, operate, and improve our application. In this context, personal data may be processed and stored on Google’s servers.

We use the following Firebase services:

• Firebase Authentication: Used to enable registration and login for users of our app. Data processed may include email address, authentication tokens, and metadata (login times, user agent, IP address).
• Firebase Cloud Messaging (FCM): Used to send push notifications to users’ devices. Device tokens and metadata are processed.
• Firebase Analytics: Used to collect statistical information about the use of the app, including events, interactions, device information, operating system, and approximate location. IP addresses are anonymized (IP masking).
• Firebase Storage: Used to store and serve user-generated content (e.g., images, documents) uploaded via the app. Uploaded files are stored on Google servers and may include associated metadata (e.g., filename, upload time, uploader identifier).
• Firebase Cloud Firestore Database: Used to store app data in real-time databases, including user-generated content, preferences, and activity data. Stored data may include personal and pseudonymous information depending on the app’s functionality.

Legal basis: Consent (Art. 6(1)(a) GDPR); Performance of a contract (Art. 6(1)(b) GDPR); Legitimate interests (Art. 6(1)(f) GDPR) in operating and optimizing our app.

International data transfers: Data processed by Google may be transferred to and processed on servers located in the United States or other countries outside the European Union. For such transfers, Google relies on Standard Contractual Clauses approved by the European Commission to ensure an adequate level of data protection.

For further information, please refer to:

• Google Privacy Policy
• Firebase Privacy and Security Information

Changes and Updates

We request that you regularly review the content of our privacy policy. We adjust the privacy policy when changes in our data processing activities require it. We will notify you when changes require your participation (e.g., consent) or when other individual notifications are necessary.

If we provide addresses and contact details of companies and organizations in this privacy policy, please note that these addresses may change over time. We kindly ask you to check the details before contacting.

Definition of Terms

This section provides an overview of the terms used in this privacy policy. Where terms are legally defined, their statutory definitions apply. The following explanations aim primarily to aid understanding.

• Master Data: Master data includes essential information necessary for identifying and managing contractual partners, user accounts, profiles, and similar assignments. These may include personal and demographic data such as names, contact information (addresses, phone numbers, email addresses), birthdates, and specific identifiers (user IDs). Master data forms the basis for any formal interaction between individuals and services, facilities, or systems, enabling unique identification and communication.

• Content Data: Content data includes information generated during the creation, editing, and publication of all types of content. This category can include texts, images, videos, audio files, and other multimedia content published across different platforms and media. Content data is not limited to the actual content but also includes metadata that provides information about the content itself, such as tags, descriptions, author information, and publication dates.

• Contact Data: Contact data are essential details enabling communication with individuals or organizations. These include, among others, phone numbers, postal addresses, and email addresses, as well as communication means such as social media handles and instant messaging identifiers.

• Meta, Communication, and Procedural Data: Meta, communication, and procedural data encompass categories of information regarding how data is processed, transmitted, and managed. Metadata, also known as data about data, includes information describing the context, origin, and structure of other data, such as file size, creation date, author of a document, and change histories. Communication data captures the exchange of information between users across various channels, such as email, call logs, messages on social networks, and chat histories, including involved persons, timestamps, and transmission routes. Procedural data describes processes and workflows within systems or organizations, including workflow documentation, transaction logs, and audit logs used for tracking and verification purposes.

• Usage Data: Usage data refers to information tracking how users interact with digital products, services, or platforms. This data includes a broad range of details about how users use applications, which functions they prefer, how long they stay on specific pages, and how they navigate through an application. Usage data may also include frequency of use, timestamps of activities, IP addresses, device information, and location data. It is particularly valuable for analyzing user behavior, optimizing user experience, personalizing content, and improving products or services. Additionally, usage data plays a crucial role in recognizing trends, preferences, and potential issues within digital offerings.

• Personal Data: "Personal data" means any information related to an identified or identifiable natural person (hereinafter referred to as "data subject"); an identifiable natural person is one who can be directly or indirectly identified, especially by reference to an identifier such as a name, identification number, location data, online identifier (e.g., cookie), or to one or more specific characteristics that express the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

• Profiles with User-related Information: Processing "profiles with user-related information," or simply "profiles," includes any type of automated processing of personal data where such data is used to analyze, evaluate, or predict certain personal aspects related to a natural person (depending on the nature of profiling, this may include various information about demographics, behavior, and interests, such as interactions with websites and their content, etc.). Profiling often involves the use of cookies and web beacons.

• Log Data: Log data refers to information about events or activities logged within a system or network. This data typically includes details such as timestamps, IP addresses, user actions, error messages, and other information regarding the usage or operation of a system. Log data is often used to analyze system issues, monitor security, or create performance reports.

• Reach Measurement: Reach measurement (also known as web analytics) is used to evaluate visitor traffic to an online offering and can include the behavior or interests of visitors regarding specific information, such as website content. Through reach analysis, online offering operators can, for instance, determine when users visit their sites and which content interests them. This enables better tailoring of website content to the needs of visitors. Pseudonymous cookies and web beacons are commonly used for reach analysis to recognize returning visitors and gain more accurate usage insights.

• Data Controller: The "data controller" is the natural or legal person, authority, agency, or other entity that alone or jointly with others determines the purposes and means of processing personal data.

• Processing: "Processing" refers to any operation or set of operations performed on personal data, whether or not by automated means. The term is broad and encompasses virtually every action with data, including collection, evaluation, storage, transmission, or deletion.

Created with free privacy generator by Dr. Thomas Schwenke.