privacy notice

We only process personal data (hereinafter referred to as “data”) to the extent necessary and for the purpose of providing a functional and user-friendly website, including its content and the services offered there.

According to Art. 4 (1) of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation (hereinafter referred to as “GDPR”), “processing” means any operation or set of operations which is performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

With the following privacy policy, we inform you in particular about the type, scope, purpose, duration, and legal basis of the processing of personal data, insofar as we decide on the purposes and means of processing either alone or jointly with others. In addition, we inform you below about the third-party components we use for optimization purposes and to increase the quality of use, insofar as third parties process data on their own responsibility.

Our privacy policy is structured as follows:

I. Information about us as the controller II. Rights of users and data subjects III. Information on data processing

I. Information about us as the controller

The controller of this website in terms of data protection law is:

TrustStory – Thomas Fauser

Stachelbeerweg 9

69469 Weinheim

Germany

Phone: +49 6201 2717 555Email: info@truststory.de

II. Rights of users and data subjects

With regard to the data processing described in more detail below, users and data subjects have the right

to confirmation as to whether data concerning them is being processed, to information about the data being processed, to further information about data processing, and to copies of the data (see also Art. 15 GDPR);
to have inaccurate or incomplete data corrected or completed (see also Art. 16 GDPR);
to the immediate deletion of data concerning them (see also Art. 17 GDPR), or, alternatively, if further processing is necessary in accordance with Art. 17 (3) GDPR, to the restriction of processing in accordance with Art. 18 GDPR;
to receive the data concerning them and provided by them and to transfer this data to other providers/controllers (cf. also Art. 20 GDPR);
to lodge a complaint with the supervisory authority if they believe that the data concerning them is being processed by the provider in violation of data protection regulations (cf. also Art. 77 GDPR).

In addition, the provider is obliged to inform all recipients to whom data has been disclosed by the provider of any correction or deletion of data or restriction of processing that takes place on the basis of Articles 16, 17(1) and 18 GDPR. However, this obligation does not apply if such notification is impossible or involves disproportionate effort. Notwithstanding this, the user has a right to information about these recipients.

Likewise, users and data subjects have the right to object to the future processing of data concerning them pursuant to Art. 21 GDPR, provided that the data is processed by the provider in accordance with Art. 6 para. 1 lit. f) GDPR. In particular, an objection to data processing for the purpose of direct marketing is permissible.

III. Information on data processing

Your data processed when using our website will be deleted or blocked as soon as the purpose of storage no longer applies, there are no legal retention obligations preventing the deletion of the data, and no other information on individual processing procedures is provided below.

Subscription to posts

If you publish posts on our website, we also offer you the option of subscribing to any follow-up posts by third parties. We process your email address in order to be able to inform you about these follow-up posts by email.

The legal basis for this is Art. 6 (1) (a) GDPR.

You can revoke your consent to this subscription at any time with future effect in accordance with Art. 7 (3) GDPR. To do so, simply notify us of your revocation or click on the unsubscribe link contained in the respective email.

The provider uses a cookie manager to obtain consent for the use of technically unnecessary cookies on the website.

When the website is accessed, a cookie containing the settings information is stored on the user's device so that the consent query does not have to be made again on a subsequent visit.

The cookie is necessary to obtain the user's legally compliant consent.

The user can prevent or terminate the installation of cookies by adjusting their browser settings.

Cookies

a) Session cookies

We use cookies on our website. Cookies are small text files or other storage technologies that are stored on your device by the Internet browser you use. These cookies process certain information about you, such as your browser or location data or your IP address, to an individual extent.

This processing makes our website more user-friendly, effective, and secure, as it enables, for example, the display of our website in different languages or the provision of a shopping cart function.

The legal basis for this processing is Art. 6 (1) (b) GDPR, insofar as these cookies process data for the purpose of initiating or executing a contract.

If the processing does not serve the purpose of contract initiation or contract processing, our legitimate interest lies in improving the functionality of our website. The legal basis is then Art. 6 (1) lit. f) GDPR.

These session cookies are deleted when you close your internet browser.

b) Third-party cookies

Our website may also use cookies from partner companies with whom we collaborate for the purposes of advertising, analysis, or the functionality of our website.

For details on this, in particular on the purposes and legal basis for the processing of such third-party cookies, please refer to the following information.

c) Removal option

You can prevent or restrict the installation of cookies by adjusting your Internet browser settings. You can also delete cookies that have already been stored at any time. However, the steps and measures required for this depend on the specific Internet browser you are using. If you have any questions, please use the help function or documentation of your Internet browser or contact its manufacturer or support. However, the processing of so-called Flash cookies cannot be prevented via the browser settings. Instead, you must change the settings of your Flash player. The steps and measures required for this also depend on the specific Flash player you are using. If you have any questions, please use the help function or documentation of your Flash player or contact the manufacturer or user support.

If you prevent or restrict the installation of cookies, however, this may mean that not all functions of our website can be used to their full extent.

Contact requests / contact options

If you contact us via the contact form or email, the data you provide will be used to process your request. The provision of this data is necessary for processing and responding to your request – without it, we cannot respond to your request or can only respond to it to a limited extent.

The legal basis for this processing is Art. 6 (1) (b) GDPR.

Your data will be deleted once your request has been answered and there are no legal retention obligations that prevent deletion, such as in the case of any subsequent contract processing.

If you subscribe to our free newsletter, the data requested from you for this purpose, i.e., your email address and, optionally, your name and address, will be transmitted to us. At the same time, we store the IP address of the Internet connection from which you access our website, as well as the date and time of your registration. As part of the further registration process, we will obtain your consent to send you the newsletter, describe the content in detail, and refer you to this privacy policy. We use the data collected for this purpose exclusively for sending the newsletter—it will therefore not be passed on to third parties.

The legal basis for this is Art. 6 (1) (a) GDPR.

You can revoke your consent to receive the newsletter at any time with future effect in accordance with Art. 7 (3) GDPR. To do so, simply notify us of your revocation or click on the unsubscribe link included in every newsletter.

Server data

For technical reasons, in particular to ensure a secure and stable website, data is transmitted to us or our web space provider by your internet browser. These so-called server log files collect, among other things, the type and version of your Internet browser, the operating system, the website from which you accessed our website (referrer URL), the website(s) of our website that you visit, the date and time of each access, and the IP address of the Internet connection from which our website is accessed.

The data collected in this way is stored temporarily, but not together with other data about you.

This storage is based on the legal basis of Art. 6 (1) lit. f) GDPR. Our legitimate interest lies in the improvement, stability, functionality, and security of our website.

The data is automatically deleted after a certain period of time, unless further storage is necessary for evidentiary purposes. Otherwise, the data is excluded from deletion in whole or in part until an incident has been finally clarified.

Contract processing

The data you provide to use our goods and/or services will be processed by us for the purpose of contract processing and is necessary in this respect. Contract conclusion and contract processing are not possible without the provision of your data.

The legal basis for processing is Art. 6 (1) lit. b) GDPR.

We delete the data once the contract has been fully processed, but must comply with the retention periods under tax and commercial law.

Within the scope of contract processing, we pass on your data to the transport company commissioned with the delivery of goods or to the financial service provider, insofar as the transfer is necessary for the delivery of goods or for payment purposes.

The legal basis for the transfer of data is then Art. 6 (1) lit. b) GDPR.

Facebook

We operate a company presence on the Facebook platform to promote our products and services and to communicate with interested parties or customers.

We are jointly responsible for this social media platform together with Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.

Facebook's data protection officer can be contacted via a contact form:

https://www.facebook.com/help/contact/540977946302970

We have regulated our joint responsibility in an agreement regarding the respective obligations within the meaning of the GDPR. This agreement, which sets out the mutual obligations, is available at the following link:

https://www.facebook.com/legal/terms/page_controller_addendum

The legal basis for the resulting processing of personal data, which is reproduced below, is Art. 6 (1) lit. f GDPR. Our legitimate interest lies in the analysis, communication, sales, and promotion of our products and services.

The legal basis may also be the user's consent to the platform operator in accordance with Art. 6 (1) (a) GDPR. The user may revoke this consent at any time for the future by notifying the platform operator in accordance with Art. 7 (3) GDPR.

When you visit our online presence on the Facebook platform, Facebook Ireland Ltd., as the operator of the platform in the EU, processes user data (e.g., personal information, IP address, etc.).

This user data is used to provide statistical information about the use of our company's presence on Facebook. Facebook Ireland Ltd. uses this data for market research and advertising purposes, as well as to create user profiles. Based on these profiles, Facebook Ireland Ltd. can, for example, advertise to users within and outside of Facebook based on their interests. If the user is logged into their Facebook account at the time of access, Facebook Ireland Ltd. can also link the data to the respective user account.

If the user contacts us via Facebook, the personal data entered by the user on this occasion will be used to process the request. The user's data will be deleted by us once the user's request has been answered and there are no legal retention obligations, such as in the case of subsequent contract processing.

Facebook Ireland Ltd. may also set cookies to process the data.

If the user does not agree to this processing, they can prevent the installation of cookies by adjusting their browser settings accordingly. Cookies that have already been saved can also be deleted at any time. The settings for this depend on the respective browser. In the case of Flash cookies, processing cannot be prevented via the browser settings, but by adjusting the Flash Player settings accordingly. If the user prevents or restricts the installation of cookies, this may mean that not all functions of Facebook can be used to their full extent.

Further information on processing activities, how to prevent them, and how to delete data processed by Facebook can be found in Facebook's data policy:

https://www.facebook.com/privacy/explanation

It cannot be ruled out that Meta Platforms Ireland Limited may also process data via Meta Platforms, Inc., 1601 Willow Road, Menlo Park, California 94025, USA.

Instagram

We maintain a company presence on the Instagram platform to promote our products and services and to communicate with interested parties or customers.

We are jointly responsible for this social media platform together with Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.

Instagram's data protection officer can be contacted via a contact form:

https://www.facebook.com/help/contact/540977946302970

https://www.facebook.com/legal/terms/page_controller_addendum

The legal basis may also be the user's consent to the platform operator in accordance with Art. 6 (1) lit. a GDPR. The user can revoke their consent at any time for the future in accordance with Art. 7 para. 3 GDPR by notifying the platform operator.

When you visit our online presence on the Instagram platform, Facebook Ireland Ltd., as the operator of the platform in the EU, processes user data (e.g., personal information, IP address, etc.).

This user data is used to provide statistical information about the use of our company presence on Instagram. Facebook Ireland Ltd. uses this data for market research and advertising purposes, as well as to create user profiles. Based on these profiles, Facebook Ireland Ltd. can, for example, advertise to users inside and outside of Instagram based on their interests. If the user is logged into their Instagram account at the time of access, Facebook Ireland Ltd. can also link the data to the respective user account.

If the user contacts us via Instagram, the personal data entered by the user on this occasion will be used to process the request. The user's data will be deleted by us once the user's request has been answered and there are no legal retention obligations, such as in the case of subsequent contract processing.

Facebook Ireland Ltd. may also set cookies to process the data.

If the user does not agree to this processing, it is possible to prevent the installation of cookies by adjusting the browser settings accordingly. Cookies that have already been saved can also be deleted at any time. The settings for this depend on the respective browser. In the case of Flash cookies, processing cannot be prevented via the browser settings, but by adjusting the Flash Player settings accordingly. If the user prevents or restricts the installation of cookies, this may mean that not all functions of Facebook can be used to their full extent.

Further information on processing activities, how to prevent them, and how to delete data processed by Instagram can be found in Instagram's data policy:

https://help.instagram.com/519522125107875

It cannot be ruled out that processing by Facebook Ireland Ltd. may also be carried out via Meta Platforms, Inc., 1601 Willow Road, Menlo Park, California 94025 in the USA.

We maintain an online presence on LinkedIn to present our company and our services and to communicate with customers/prospective customers. LinkedIn is a service provided by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland, a subsidiary of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA.

In this regard, we would like to point out that there is a possibility that user data may be processed outside the European Union, in particular in the USA. This may pose increased risks for users in that, for example, subsequent access to user data may be more difficult. We also have no access to this user data. Access is exclusively available to LinkedIn.

LinkedIn's privacy policy can be found at

https://www.linkedin.com/legal/privacy-policy

YouTube

We maintain an online presence on YouTube to present our company and our services and to communicate with customers/interested parties. YouTube is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA.

YouTube's privacy policy can be found at

https://policies.google.com/privacy

General links to third-party profiles

The provider uses links to the social networks listed below on its website.

The legal basis for this is Art. 6 (1) lit. f GDPR. The provider's legitimate interest lies in improving the quality of use of the website.

The plugins are integrated via a linked graphic. Only by clicking on the corresponding graphic is the user redirected to the service of the respective social network.

After the customer is redirected, the respective network collects information about the user. This initially includes data such as IP address, date, time, and page visited. If the user is logged into their user account on the respective network during this time, the network operator may be able to assign the information collected about the user's specific visit to the user's personal account. If the user interacts via a “share” button of the respective network, this information may be stored in the user's personal user account and published if necessary. If the user wants to prevent the collected information from being directly assigned to their user account, they must log out before clicking on the graphic. It is also possible to configure the respective user account accordingly.

The following social networks are linked by the provider:

Facebook

Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.

Instagram

Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.

LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland, a subsidiary of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085 USA.

YouTube

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA

Google Analytics

We use Google Analytics on our website. This is a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as “Google”.

The Google Analytics service is used to analyze the usage behavior of our website. The legal basis is Art. 6 (1) lit. f) GDPR. Our legitimate interest lies in the analysis, optimization, and economic operation of our website.

Usage and user-related information, such as IP address, location, time, or frequency of visits to our website, is transmitted to a Google server in the USA and stored there. However, we use Google Analytics with the so-called anonymization function. This function allows Google to shorten the IP address within the EU or the EEA.

The data collected in this way is used by Google to provide us with an evaluation of visits to our website and the activities that take place there. This data can also be used to provide further services related to the use of our website and the Internet.

Google states that it does not link your IP address with other data. In addition, Google provides

https://www.google.com/intl/de/policies/privacy/partners

with further information on data protection, including options for preventing data use.

Google also offers a deactivation add-on and further information on this at

https://tools.google.com/dlpage/gaoptout?hl=de

. This add-on can be installed with all common Internet browsers and offers you further control over the data that Google collects when you visit our website. The add-on informs the JavaScript (ga.js) of Google Analytics that information about your visit to our website should not be transmitted to Google Analytics. However, this does not prevent information from being transmitted to us or to other web analysis services. You can also find out whether and which other web analysis services we use in this privacy policy.

I. Information about us as the controller

II. Rights of users and data subjects

III. Information on data processing

Subscription to posts

Cookie Manager

Cookies

a) Session cookies

b) Third-party cookies

c) Removal option

Contact requests / contact options

Newsletter

Server data

Contract processing

Facebook

Instagram

LinkedIn

YouTube

General links to third-party profiles

Facebook

Instagram

LinkedIn

YouTube

Google Analytics