Privacy Policy
Privacy Statement
Introduction
Being the operator of this website, FAIRSQUARED GmbH (hereinafter “we”) are the data controller in charge of processing personal data of any users of such website. You can find our contact details in the imprint of the website, while the contacts for questions concerning the processing of your personal data are provided directly in this Privacy Statement.
We are strongly committed to protecting your privacy and your private and personal data. We collect, save, and use your personal data strictly in accordance with the provisions of this Privacy Statement and the applicable data protection provisions, including without limitation the European General Data Protection Regulation (GDPR) and national data protection provisions.
With this Privacy Statement, we wish to inform you to what extent and for what purpose your personal data is processed in connection with the use of our website.
Personal data
Personal data is all information about an identified or identifiable individual. This includes information about your identity such as your name, your e-mail address, or your postal address. Any information that cannot be directly linked to your identity (e.g. statistical details such as the number of users of the website) is, however, not considered to be personal data.
You can essentially use our website without disclosing your identity and without providing any personal data. In that case, we will merely collect general information about your visit to our website. However, some of the services offered require you to provide certain personal data. As a rule, we will process such data only for purposes connected with the use of this website, including without limitation for the provision of the desired information. Whenever personal data is collected, you are only required to provide the data that is absolutely essential. Also, you may be asked to provide additional details, which is optional information provided voluntarily. We let you know in each case whether the input fields are for mandatory or optional details. More specific details are provided in the relevant section of this Privacy Statement.
There is no automated decision-making on the basis of your personal data in connection with the use of our website.
Processing personal data
We store the information provided by you on protected dedicated servers located within the European Union. Technical and organisational measures are taken to protect such servers against loss, destruction, access, modification, or dissemination of your data by unauthorized persons.Access to your data will be permitted only to a limited number of persons in charge of the technical, commercial, or editorial support of the servers. Notwithstanding regular controls, full protection against all risks cannot be provided.
Your personal data is transmitted over the Internet in encrypted form. We use SSL (Secure Socket Layer) encryption for transmission of data.
Disclosure of personal data to third parties
We use your personal information exclusively for providing the services that you have requested from us. Insofar as we use external service providers in performing the service requested, such external service providers will also access the data exclusively for the purpose of performing the service. By taking the necessary technical and organisational measures we ensure compliance with data protection policies and we demand the same of our external partners.
Moreover, we will not disclose the data to any third parties, including without limitation for advertising purposes, without your express consent. We will disclose your personal data only if you have given your consent to disclosure of the data or insofar as we are entitled or obligated to do so under legal provisions and/or administrative or judicial orders. This may include, without being limited to, giving information for purposes of criminal prosecution, in order to avert danger, or in order to enforce intellectual property rights.
Insofar as we transfer your personal data ourselves or through service providers to countries outside the European Union, we comply with the special requirements of Article 44 of the GDPR for this purpose and also oblige our service providers to comply with these regulations. We will therefore only transfer your data to countries outside the European Union subject to the level of protection guaranteed by the GDPR. This level of protection is guaranteed in particular by an adequacy decision of the EU Commission or by suitable guarantees in accordance with Article 46 GDPR.
Legal basis of data processing
Insofar as we obtain your consent to processing your personal data, Article 6(1)(a) of the GDPR constitutes the legal basis for such data processing.
Insofar as we process your personal data because processing is necessary for the performance of a contract or is necessary under a quasi-contractual relationship with you, the lawfulness of data processing is based on Article 6(1)(b) of the GDPR.
Insofar as we process your personal data because processing is necessary for compliance with a legal obligation, the lawfulness of data processing is based on Article 6(1)(c) of the GDPR.
Furthermore, Article 6(1)(f) of the GDPR may constitute the legal basis for data processing, if processing of your personal data is necessary for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by your interests or your fundamental rights and freedoms which require protection of personal data.
Throughout this Privacy Statement, we refer to the legal basis on which we process your personal data.
Deletion of data and duration of storage
We invariably delete or block any personal data provided by you as soon as the purpose of storage of such data has ceased to apply. However, we may continue to store your personal data beyond that, if such storage is governed by legal provisions to which we are subject, including without limitation the legal obligation to retain business records and documentation. In such a case, we will delete or block the personal data after the prescribed period of time has expired.
Order processing
If you place an order, we will use your personal information only within our company and our affiliated companies and the enterprise appointed to process purchase orders.
Storage and disclosure of data upon placement of an order
For order processing, we work together with a number of enterprises which are in charge of payment processing and logistics. We make sure that our partners also comply with data protection provisions. For instance, we disclose your address data (name and address) to the relevant carrier who delivers the ordered products to you. In this case, Article 6 (1)(b) of the GDPR constitutes the legal basis for data processing. Processing of your personal data is necessary for performance of the contract made with you.
We store the data for the period required to perform the contract. In addition, we store such data for the legally prescribed period in order to meet any post-contract obligations and insofar as retention periods under commercial and tax law have to be complied with. This retention period normally is ten (10) years until the end of the relevant calendar year.
Use of our website
Information relating to your computer
Every time you access our website, we will collect the following information relating to your computer, regardless of whether or not you have registered: the IP address of your computer, the inquiry of your web browser, and the time stamp of that inquiry. In addition, the status and the amount of data transmitted in the course of the inquiry are collected. We also collect product and version information about the web browser used and the operating system of the computer. Furthermore, we record the website from which our own website has been accessed. The IP address of your computer is stored only for the duration of your use of our website; afterwards, it is deleted or anonymised by truncation. The remaining data is stored for a limited period of time.
We use this data to operate the website, more specifically for troubleshooting, or in order to assess the degree of utilisation of the website, or to carry out adjustments or improvements thereof. Such purposes also constitute our legitimate interest in data processing in accordance with Article 6(1)(f) of the GDPR.
Use of cookies
Like many other websites, our website uses cookies. Cookies are small text files that are stored on your computer and store certain settings and data of your web browser for the exchange with our website. As a rule, a cookie contains the name of the domain from which the cookie file has been sent as well as information about the age of the cookie and an alphanumeric identifier.
The cookies we use are – as far as possible – so-called session cookies, which are automatically deleted after the browser session ends. Occasionally, cookies with a longer storage period may also be used so that your preferences and settings can be taken into account the next time you visit our website.
Most browsers are set to accept cookies automatically. However, you can deactivate the storage of cookies or set your browser to inform you as soon as cookies are sent. It is also possible to manually delete already stored cookies via the browser settings. Please note that if you reject the storage of cookies or delete necessary cookies, you may not be able to use our online services at all or only to a limited extent.
As far as cookies are not required for our online offer, we ask you to agree to the use of cookies when you first access our online offer. With regard to the non-essential cookies of third party providers, you will find a more detailed description of the services of these third party providers that we use below. The legal basis for the associated data processing, including any transfer of data, is your consent within the meaning of Article 6 (1)(a) of the GDPR. Once consent has been granted, it can be revoked at any time with effect for the future, in particular by changing the selected settings.
The legal basis for the use of necessary cookies is our legitimate interest in the proper provision of our online offer within the meaning of Article 6 (1)(f) of the GDPR as well as – insofar as contracts are concluded or fulfilled via our online offer – the fulfilment of the contract within the meaning of Article 6 (1)(b) of the GDPR.
Integration of third-party services
For some functions in our online offer, we use the services of third parties. The corresponding services are mostly optional functions that must be explicitly selected or used by you. We have concluded contractual agreements with the respective providers for the provision or integration of their services and, as far as possible, we make every effort to ensure that the third-party providers also provide transparent information about the extent to which personal data is processed and comply with data protection regulations.
Google Tag Manager
For our online offer we use the Google Tag Manager of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (hereinafter referred to as “Google”). The Google Tag Manager is a tag management system (TMS), with which tags, i.e. tracking codes and associated code fragments, can be managed on our website. Google services can be integrated into a website via the Google Tag Manager.
When using the Google Tag Manager, a connection to the Google servers is established. This means that the IP address of the browser of the Google device used by the visitor to this website is stored. It cannot be ruled out that in this context data may be transferred to Google in the USA and that US security authorities may be able to access the data. However, cookies are not set in connection with the use of the Google Tag Manager.
You can find more information about the Google Tag Manager and data processing by Google here:
Our legal basis for the use of the Google Tag Manager is your consent in accordance with Article 6 (1)(a) of the GDPR. If necessary cookies are set, this is done in our legitimate interest in accordance with Article 6 (1)(f) of the GDPR. Our legitimate interest is the administration of the tracking codes in our online offer, which enable us to analyse the use of our online offer and to improve and personalize our services.
Google Analytics
We use Google Analytics for statistical evaluation. Google Analytics is a web analytics service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).
Google Analytics uses so-called “cookies”, which are text files placed on your computer, to help the website analyse how you use the site. The information generated by the cookie about your use of this website will as a rule be transmitted to and stored by Google on servers in the United States. It cannot be ruled out that data may be transferred to the USA and that government agencies may gain access to this data. If IP anonymisation is activated on this website, Google will first truncate your IP address for Member States of the European Union or other parties to the Agreement on the European Economic Area. Only under exceptional circumstances is the complete IP address transmitted to a server of Google in the United States and truncated there. On behalf of the owner of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity, and providing other services relating to website activity and Internet usage for the website owner. Google will not associate the IP address transmitted by your browser in connection with Google Analytics with any other data held by Google.
You may refuse the use of cookies by selecting the appropriate settings on your browser software; however, please note that if you do this you may not be able to use the full functionality of this website. In addition, you can prevent the data generated by the cookie and based on your usage of this website (including your IP address) being sent to and processed by Google by downloading and installing the browser plug-in available at: http://tools.google.com/dlpage/gaoptout?hl=de.
For further details please visit http://tools.google.com/dlpage/gaoptout?hl=de or http://www.google.com/intl/de/analytics/privacyoverview.html (general information on Google Analytics and data protection). Please be advised that on our web pages, Google Analytics has been extended by the code “anonymizeIp();” in order to anonymise IP addresses by deleting the last octet.
Retargeting and remarketing
Retargeting and remarketing are technologies which allow displaying customised advertising to visitors of a certain website even after they have left that website. For this purpose, a service provider needs to recognise Internet users beyond the scope of its own website, using cookies created by the service provider. In addition, the user’s previous usage behaviour is taken into consideration. For example, if a user looks at certain products, these or similar products may later be displayed as advertisements on other websites. This is personalised advertising which is customised to the requirements of the relevant user. Personalised advertising does not require identification of the user beyond such recognition. Therefore, we do not combine data used for retargeting and/or remarketing with other data.
We use such technologies to place advertisements on the Internet. We use the services of third party service providers for placement of advertisements. Among other things, we use Google services which allow the automatic display of products that may be interesting for Internet users. This function is implemented by cookies. It cannot be ruled out that data may be transferred to the USA and that government agencies may gain access to this data.
Insofar as cookies are set for the integration of the service, your consent is the legal basis for data processing in accordance with Article 6 (1)(a) of the GDPR. Once consent has been given, it can be revoked at any time with effect for the future. If no cookies are set, our legitimate interest in the proper provision of our online service in accordance with Article 6 (1)(f) of the GDPR is the legal basis for the integration.
In concrete terms, we use the following services for this purpose:
DoubleClick from Google: DoubleClick uses cookies to present you with ads that are relevant to you, to improve campaign performance reports or to prevent you from seeing the same ads more than once. This involves assigning a pseudonymous identification number (ID) to your browser in order to check which ads were shown in your browser and which ads were viewed. According to Google, the cookies do not contain any personal information. Please visit http://www.google.de/policies/privacy/ for more information about DoubleClick by Google’s privacy policy.
Google Audiences: “GA Audiences” is another web analytics service provided by Google. This service collects and stores data from which pseudonymous user profiles are created. This technology allows users who have visited our website to receive targeted advertising from us on other external pages of the Google Partner Network. For more information on data protection when using GA Audience, please click on the following link: https://support.google.com/analytics/answer/2700409?hl=en&ref_topic=2611283.
Moat Analytics / Moat Ads: On our website we use a web tracking service provided by Oracle America, Inc. 500 Oracle Parkway, CA 94065 Redwood Shores, USA. We use Moat to analyze the use of our website and your surfing behavior and thus to constantly optimize it and make it better available. An opt-out option is available at the following link: https://www.oracle.com/legal/privacy/privacy-policy.html.
Add This: We also use the service AddThis, which is integrated via plug-ins. AddThis is a service of AddThis LLC, 1595 Spring Hill Road, Sweet 300, Vienna, VA 22182, USA. The integration of the plug-ins allows you to set bookmarks or share content with other users. In this way we offer you the possibility to interact with social networks and other benefits. The plug-in provider stores this data as user profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. Such evaluation is carried out in particular to provide advertising tailored to your needs and to inform other users of the social network about your activities on our website. If you do not wish to participate in this process, you can object to the data collection and storage at any time by setting an opt-out cookie with effect for the future: http://www.addthis.com/privacy/opt-out.
Social Media – Shariff
As far as you can find links to the social networks Facebook, Instagram and the short news service Twitter, these are integrated via the “Shariff” service. You can recognize the links by the respective logos of the providers. “Shariff” was developed by c’t and heise and replaces the usual share buttons of social networks to protect surfing behavior.
The Share-Buttons of the social networks are only integrated as graphics and contain a link to the corresponding social network. By clicking on the corresponding graphic you will be forwarded to the services of the respective network. The Shariff button establishes direct contact between the social network and our visitors only when the visitor actively clicks on the Share button. Only then will your data be transmitted to the respective social network. If the Shariff button is not clicked, however, no exchange between you and the social networks takes place. You can find more information about the c’t project “Shariff” at http://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html.
The embedding of this service is in our legitimate interest according to Article 6 (1)(f) of the GDPR. Our legitimate interest here lies in improving the quality of our Internet presence.
Clicking on the links will open the corresponding social media pages to which this data protection declaration does not apply. For details of the provisions applicable there, please refer to the corresponding data protection declarations of the individual providers; you will find these under:
Facebook: http://www.facebook.com/policy.php
Instagram: https://help.instagram.com/519522125107875
Twitter: https://twitter.com/privacy?lang=de
No personal information is transmitted to the respective providers before the links are called up. Your call of the linked page is also the basis for data processing by the respective providers.
Borlabs
In order to obtain your consent to the storage of certain cookies and to document these in a data protection-compliant manner, we use the Cookie Content Technology from Borlabs. In addition, the service also allows you to activate the services of YouTube and reCAPTCHA individually by opting in. The service is only loaded after activation. This is an offer from Borlabs – Benjamin A. Bornschein, Georg-Wilhelm-Str. 17, 21107 Hamburg.
This tool stores and documents given permissions by means of a randomly generated ID. Borlabs will not store or transmit any personal data.
For more information on data protection at Borlabs, please visit https://borlabs.io/privacy/.
Borlabs Cookie Content technology is used for the technical implementation when obtaining data protection consent on our online offer. The legal basis for the integration of this technology is our legitimate interests, Art 6 (1)(f) of the GDPR. Our legitimate interest is the technical necessity of using such solutions to ensure that cookies are used in accordance with data protection regulations.
Google reCAPTCHA
For the purpose of protection against misuse of our web forms as well as against spam we use – as far as the service is recognizable – on this website the Google reCAPTCHA service of the company Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: Google). By verifying a manual entry, this service prevents automated software (so-called bots) from carrying out abusive activities on the website. Here, you only need to check the text field “I am not a robot”, or with Invisible reCAPTCHA, even this is no longer necessary. The service includes sending the IP address and possibly other data required by Google for the service reCAPTCHA to Google.
Further information about Google reCAPTCHA as well as the privacy policy of Google can be found at: https://www.google.com/intl/de/policies/privacy/.
Use of YouTube
YouTube videos are integrated into our online offering, for whose playback we use a plug-in of the YouTube service operated by Google (hereinafter: “YouTube”). The service is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).
We use the YouTube service in an enhanced privacy mode to protect your privacy as much as possible. If you visit a website of our online service on which a YouTube video is integrated, Google initially only receives the information necessary for the integration and no cookies are set for usage analysis. Only when you play the embedded video does Google receive further information; Google may also set cookies to analyze your user behavior. When playing the video, Google’s YouTube servers are informed, for example, about which page of our online offer you are playing the video from.
If you are logged in to your Google account, you enable Google or YouTube to assign your surfing behavior directly to your personal Google profile. We therefore recommend that you only play integrated YouTube videos if you agree to the associated data processing by Google. You can prevent the assignment of data to your Google profile by logging out of your YouTube account. For more information on how Google treats user data, please see Google’s privacy policy at https://www.google.de/intl/de/policies/privacy/, which also applies to YouTube.
We use YouTube to show you videos so that we can better inform you about us and our services. The legal basis for the integration of the videos is our legitimate interest in the sense of Article 6 (1)(f) of the GDPR; however, the playing of the videos and the associated further data processing will only take place on the basis of your consent in the sense of Article 6 (1)(a) of the GDPR.
Facebook fan page and Instagram
In addition to our own online offer, we also operate a fan page on the social network Facebook and an account on the social network Instagram. Via the Facebook fan page and the Instagram account we inform about our activities and offer a channel for communication. The social networks Facebook and Instagram are operated by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (hereinafter referred to as “Facebook”).
Delimitation of responsibility
Within the scope of the possibilities on Facebook, we try to ensure the protection of your privacy and your private data. If your personal data is processed by us in connection with your visit to the Facebook fan page or Instagram account, the explanations in this privacy statement apply without restriction. Due to the integration of the fan page and the account into the Facebook offer, it should also be noted that at the same time personal data is processed by Facebook. We have no influence on the data processing by Facebook; in particular, Facebook does not act for us under our responsibility as an order processor. For data processing by Facebook – at least according to Facebook – the guidelines of Facebook apply, which can be found at https://www.facebook.com/policy.php.
In terms of data protection law, it can be assumed that Facebook and we are jointly responsible for the operation of the fan page or the evaluation of user data when visiting the fan page. The same applies to the operation of the account with Instagram. In accordance with the data protection regulations, we have reached an agreement with Facebook on the delimitation of responsibility.
Insights
Facebook offers the operators of fan pages and Instagram accounts the possibility to get an overview of the use of the fan page or Instagram account and its users via the Insights function. Using Insights, statistical data in particular can be called up and evaluated. We use the data from Insights to make the fan page and the Instagram account as attractive and efficient as possible. For this purpose, Facebook provides us with data that Facebook has generated itself. For further information on how Insights works and who is responsible for it, please visit https://www.facebook.com/legal/terms/page_controller_addendum.
Messenger
Facebook offers users who are registered with Facebook the opportunity to communicate directly via Facebook Messenger. In the case of Instagram, the “Instagram Direct Messaging” feature also allows you to communicate directly with us. If you contact us via the Messenger, the data transmitted will be stored and used by us exclusively for the purpose of answering your inquiry. The legal basis for the processing of your data is your consent within the meaning of Article 6 (1)(a) of the GDPR as well as our legitimate interest within the meaning of Article (6) (1)(f) of the GDPR. Our legitimate interest lies in the recording and processing of customer inquiries, in the evaluation of customer inquiries and in abuse control.
The data will be deleted as soon as they are no longer required for the purpose of their collection. For your personal data this is the case when the respective conversation is finished. For us, the conversation is finished when it is clear from the circumstances that the matter in question has been finally clarified. You have the possibility to revoke your consent to the processing of your personal data at any time; in this case, the data will be deleted by us immediately if there is no basis for further storage.
Further information about Facebook and Instagram
If you have any questions about our use of personal data in connection with the use of the fan page on Facebook or the account on Instagram, please feel free to contact us and our data protection officer at any time. The contact details and communication channels are explained in our privacy policy. If you have any questions regarding data protection on Facebook, please contact Facebook directly. General information on the safe use of social networks is also provided by the Federal Office for Information Security (Bundesamt für die Sicherheit in der Informationstechnologie – BSI) on its website at https://www.bsi-fuer-buerger.de/BSIFB/DE/DigitaleGesellschaft/SozialeNetze/sozialeNetze_node.html.
Communication with us
There are various ways of contacting us, including the contact form on our website.
Contact form
If you wish to use the contact form of our website, we will collect the personal data that you provide in the contact form, including but not limited to your name and e-mail address. In addition, we record the IP address and the date and time of the enquiry. We process any data transmitted through the contact form exclusively for the purpose of answering your enquiry or reacting to your concern.
It is up to you to decide what information you provide in the contact form. In accordance with Article 6(1)(a) of the GDPR, your consent constitutes the legal basis for processing your data.
After the matter has been dealt with, the data is stored for some time in case you have any further questions. Without prejudice to the relevant legal retention periods, you may request deletion of the data at any time, otherwise the data will be deleted once the matter has been conclusively dealt with.
Your rights; contact
We are strongly committed to explaining how we process personal data and to inform you about your rights as transparently as possible. If you want more detailed information or wish to exercise your rights, you can contact us at any time so that we can take care of your concerns.
Rights of persons concerned
You have extensive rights with respect to the processing of your personal data. First of all, you have an extensive right to information and under certain circumstances may demand correction and/or deletion or blocking of your personal data. You can also demand restriction of processing and you have a right of objection. You also have a right to data portability with a view to personal data that you have transmitted to us.
If you wish to assert any of your rights and/or want more detailed information concerning your rights, please contact our customer service. Alternatively, you may contact our data protection officer.
Revocation of consent and objection
You may at any time revoke your consent with future effect. Revocation of the consent does not affect the legality of any processing performed on the basis of such consent given up until the revocation thereof. In such cases as well, please contact our customer service and/or our data protection officer.
Insofar as the processing of your personal data is not based on consent given by you but on another legal basis, you can object to the data processing. Your objection will lead to a review and, if necessary, to termination of the data processing. You will be informed of the outcome of the review and – if the data processing is to be continued nonetheless – you will receive further information from us on why the data processing is admissible.
Data protection officer; contact
We have appointed an external data protection officer who supports us in data protection issues and who you can contact directly. If you have questions regarding our handling of personal data or if you require other information on data protection issues, please do not hesitate to contact our Data Protection Officer and his team:
RA Dr. Sebastian Meyer, LL.M.
c/o BRANDI Rechtsanwälte
Adenauerplatz 1, 33602 Bielefeld
Phone: 0521 / 96535-812
E-mail: info@fairsquared.com
If you wish to contact our data protection officer personally by e-mail, you may send an e-mail to sebastian.meyer@brandi.net.
Complaints
If you are of the opinion that the processing of your personal data does not comply with this Privacy Statement or the applicable data protection provisions, you have the right to file a complaint with a supervisory authority. You can file a complaint with our data protection officer. Our data protection officer will review the matter and inform you of the outcome of the review.
Further information; amendments
Links to other websites
Our online service may contain links to other websites. Generally, these links are identified as such. We cannot control to what extent linked websites comply with the applicable data protection provisions. We therefore recommend that for other providers’ data protection statements, you refer to the information given on their respective websites.
Amendments of this Privacy Statement
Any revision of this Privacy Statement is identified by the date specified (see below). We reserve the right to amend this Privacy Statement at any time with effect for the future. Amendments will be made, among other things, in case of technical adjustments of the website or changes of the data protection laws. The Privacy Statement as amended from time to time is always made available directly through our website. We recommend obtaining information on any changes of this Privacy Statement on a regular basis.
This Privacy Statement was last revised in: March 2021