Privacy Policy
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
The purpose of data protection is to ensure that users’ personal rights are not impaired by the handling of their personal data. For this reason, QantexX® uses the content posted and collected on qantexx.com in careful compliance with the applicable legal regulations (in particular the GDPR).
Data protection means that the collection, processing and use of personal data is not permitted in principle. The only exception is if the data subject expressly consents to this. Data such as a user’s telephone number, email address, IP address when surfing or postal address are protected. This contrasts with so-called “anonymous data”, where the person is unknown or cannot be identified.
It is generally possible to use our website without providing personal data. If personal data (e.g. name, address or e-mail addresses) is collected on our website, this is always done on a voluntary basis. This data will not be passed on to third parties without your express consent.
We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) may be subject to security vulnerabilities. Complete protection of data against access by third parties is not possible.
Data subjects
This privacy policy is aimed at all persons who visit this website. All personal designations refer to all genders and the associated language forms, in particular diverse, female, male. Each personal designation is to be understood with the addition “(m/f/d)”.
Contact address “Responsible body”
The controller within the meaning of data protection law is
QantexX®
a brand of Lifepassion GmbH
Managing directors: Amina Meineker, Clemens Mucharski
Responsible for data protection: Clemens Mucharski
Freedom 51
16761 Hennigsdorf
M: home@qantexx.com
T: +49 3302 20 39 59 2
Your rights
(1) Data subjects have the following rights with regard to the personal data stored about them: the right to information, the right to rectification of inaccurate data, the right to erasure of data for which there is no longer a reason for storage, the right to restriction of processing and the right to data portability. They also have the right to lodge a complaint with the supervisory authority responsible for the controller.
2) Insofar as the processing is based on the consent of the data subjects, the data subjects can revoke their consent at any time and with effect for the future; for example, by sending an informal message to one of the above-mentioned contact channels (controller).
(3) Insofar as the processing is based on the fulfillment of a legitimate interest, i.e. on Article 6 paragraph 1 sentence 1 lit. f GDPR, the data subjects can object to the processing at any time; for example by sending an informal message to one of the above-mentioned contact channels (controller). If the objection is justified, processing will be terminated. If the legitimate interest lies in direct marketing, the objection is always justified.
Transfer to countries outside the European Union
(1) If personal data is transferred to bodies outside the European Union, the controller must provide additional safeguards in accordance with Article 44 et seq. GDPR.
(2) If the controller refers to a so-called adequacy decision in the following data protection declaration, this means that the receiving body is located in a country, territory or specific sector for which the EU Commission has decided that it offers an adequate level of data protection. The guarantee then follows from Article 45 GDPR.
(3) If the controller refers to the so-called EU standard contractual clauses in the following data protection declaration, this means that the receiving body has contractually undertaken to respect the EU data protection principles and this on the basis of the so-called EU standard contractual clauses, the guarantee then follows from Article 45 GDPR.
(4) If the controller refers to so-called binding, internal data protection regulations in the following data protection declaration, this means that the competent supervisory authority has authorised the transfer. The guarantee then follows from Article 47 GDPR.
(5) If the controller refers in the following data protection declaration to the fact that the data subjects have expressly consented to the transfer to a country outside the European Union, this means that they nevertheless consent to the transfer in the knowledge of all associated risks. The guarantee then follows from Article 49(1)(a) GDPR. In this context, we would like to point out the following risks: No data protection law comparable to the GDPR has been codified in the USA. The state authorities there have authorised intensive access to data, whereby the principle of proportionality regulated in the EU is not applied. Furthermore, there is no effective legal protection for EU citizens in these countries.
(6) The above information is only provided as a precaution. They only apply if and insofar as reference is made to them in the following data protection declaration.
Further information
(1) Automated decision-making, including profiling, does not take place.
(2) There is only a legal obligation to process data if reference is made below to Article 6(1) sentence 1(c) GDPR.
Data processing in principle
(1) The data subjects initially use the website for information purposes, i.e. they access the website without actively interacting with it. The data controller collects the following data of the data subjects, insofar as this is technically necessary to display the website IP address, date and time of the request, time zone difference to Greenwich Mean Time (GMT), content of the request (specific page), access status/HTTP status code, amount of data transferred in each case, website from which the request originates, browser, operating system and its interface, language and version of the browser software. The purpose is to display the website. The legal basis is Article 6 paragraph 1 sentence 1 lit. f GDPR, whereby the legitimate interest arises from the aforementioned purpose.
(2) The data is deleted after the end of informational use. The purpose is the fulfilment of a legal obligation (Article 5(1)(a), (e) GDPR). The legal basis is Article 6 paragraph 1 sentence 1 lit. c GDPR.
Data processing on the basis of a legitimate interest
(1) In addition to data processing in principle, the controller processes the data of visitors to the website on the basis of a legitimate interest. The legal basis is then Article 6 paragraph 1 sentence 1 lit. f GDPR.
(2) Reference is made to the following processing operations:
Advertising approach of contractual partners
The controller processes the email address and name of the data subjects in order to send them useful information by email at regular or irregular intervals. It also stores the information that a contractual relationship exists or existed between them and the controller in order to be able to provide evidence of a legitimate interest. The legitimate interest here follows from the fact that a contractual relationship exists between the data subjects and the controller, in the context of which the advertising approach by email is part of the normal expectations of the data subjects. This is supported by recital 47, sentence 7, whereby the following data is processed: (1) email address, (2) name and (3) status data relating to the contractual relationship. Special note on the right to object: Data subjects can object to the use of their data for this purpose at any time, for example by sending an informal message to the controller (data subjects can find the contact channels at the beginning of this statement and in the legal notice). In particular, data subjects can object without incurring any costs other than the transmission costs according to the basic tariffs.
Rights management and, if necessary, external legal advice
If the data subjects assert claims of any kind against the controller, the data will be processed as follows:
- The controller receives the request and stores all associated data.
- The controller uses this data to examine the request. If necessary, it will seek external legal advice.
- If the request is justified, the data will be used to fulfil the request. Otherwise, it uses the data to inform the data subjects.
- The controller shall retain the data resulting from the processing referred to in points 1 to 3 for three years, starting on 31 December of the calendar year in which step 3 took place. The legitimate interest in points 1 to 3 arises from the interest of the data subject in having the claims processed and from the interest of the controller in avoiding claims and sanctions. The legitimate interest in point 4 arises from the controller’s need to be able to defend itself later against civil law claims and accusations of fines and criminal offences. This interest in storage under point 4 ends with the expiry of the limitation period in accordance with Sections 193, 195 BGB. The following data is processed: Name, contact details and communication content.
External web hosting
The controller has commissioned third-party providers with the provision of storage space and delivery for the publication of this website. In order for these service providers to fulfil their mandate, they inevitably receive some data of the data subjects. The legitimate interest arises from the right to present oneself publicly. The following data is processed: IP address, date and time of the request, time zone difference to Greenwich Mean Time (GMT), content of the request (specific page), access status/HTTP status code, amount of data transferred in each case, website from which the request originates, browser, operating system and its interface, language and version of the browser software; possibly also communication and interaction data from the behaviour of the data subjects.
Data processing in connection with contracts
(1) In addition to data processing in principle, the controller processes the data of visitors to the website in order to establish, execute and/or terminate contracts. The legal basis is then generally Article 6 (1) sentence 1 lit. b GDPR. Only in the event that the data subjects are employees (including applicants) is the legal basis Article 88 GDPR in conjunction with Section 26 (1) BDSG2018. § Section 26 paragraph 1 BDSG2018.
(2) Reference is made to the following processing operations:
Forms
The controller provides a form tool on the website. This is used for communication between the data subject and the controller, whereby the data subject’s entries are documented and transmitted to the controller. The following data is processed: Data on the content, manner and scope of the entries in the respective form.
Resellers/resellers
If the data subjects wish to purchase access to the products/services of the data controller, they will in some cases be forwarded to a third-party provider. This is because this company, in its function as a reseller, makes the respective product or service available to them, possibly for a fee. In this respect, the reseller itself is the controller. The controller here then processes all data that it receives from the reseller in order to fulfil the contract. The following data is processed: The local controller collects, stores and uses the information with the help of the reseller,
- that the data subjects use the product or service and for how long, and
- when the data subjects terminate the contractual relationship.
The controller receives the information from the reseller.
Making an appointment
If the data subjects wish to arrange an appointment with the local controller, they can view available appointments via an appointment booking portal, which is integrated on this website, and simply select one. The local controller then receives a message from the appointment booking portal. The following data is processed: all data collected when the appointment is made (usually name, e-mail address, appointment).
Recruiting
Data subjects can apply for employment on this website via a recruiting area and/or another contact channel. The controller receives this data and processes it in order to prepare a pre-selection and, if necessary, a job interview and/or trial working day or to communicate for other purposes relevant to the application. In doing so, the controller can
- access an internal area and view the applicant data (including the application documents and the date of receipt of the application).
- It is then possible for him to Make notes associated with the application data,
- communicate internally about your application (if necessary with the relevant departments),
- document the decision on the further processing of the application,
- carry out and document the invitation to one or more job interviews,
- carry out and document the invitation to one or more trial working days,
- submit the employment contract document,
- submit and document a rejection,
- carry out onboarding measures,
- store the data of the data subjects, subject to their consent, in an applicant pool.
The following data is processed: all data from the application and other communication content between the data subjects and the controller here.
Automation in contract-related communication
As part of the establishment, execution and/or termination of contracts, the controller has automated parts of the communication with you. In doing so, it processes all communication data of the data subjects that trigger automatic responses by the controller, such as the delivery of a product or service. In this respect, it controls
- the collection of your personal data at the initiation of the respective contract
- the communication required for the establishment, performance and/or termination of the contract (in particular by email) with the data subjects and
- the delivery of the products and/or services.
The following data is processed: (1) all contact and order data entered by you, (2) payment data if applicable, (3) data on the delivery and (4) data on the assertion of rights of the data subjects and the reaction of the controller here.
Data processing on the basis of consent
(1) In addition to data processing in principle, the controller processes the data of visitors to the website on the basis of consent. The legal basis is then generally Article 6 paragraph 1 sentence 1 lit. a GDPR. Only in the event that the data subjects are employees (including applicants) is the legal basis Article 88 GDPR in conjunction with Section 26 (2) BDSG2018. § Section 26 paragraph 2 BDSG2018.
(2) Reference is made to the following processing operations
Analysis of user behaviour
Cookies are used to analyse the user behaviour of data subjects on this website. These are text files that are stored on the data subject’s computer and enable the use of the website to be analysed. The information on user behaviour is used to generate reports on activities and interactions. The controller uses this data to regularly improve the user experience on the website. He can also use the statistics obtained to improve his offer in order to direct the interest of the data subjects more specifically to products and services that are suitable for them. The following data is processed: cookie-based data on interactions (e.g. order of interactions, length of visit).
External fonts
External font directories are accessed in connection with the website. Here, data is transmitted to external providers who use it to determine the results and success of certain fonts in order to optimise them as their own offer. In concreto, the following happens: As soon as the data subjects visit the website here, their browsers send HTTP requests to the external providers of the fonts. The requested URL identifies the font families for which the user wishes to load fonts. This data is logged so that the external provider can determine how often a particular font family is requested. Furthermore, the font is adapted to the respective browser type, which in turn requires the collection and storage of browser type data. This data is processed to generate aggregated usage statistics to measure the popularity of font families. This also generates statistics that are used to optimise the fonts. Finally, the referral URL is logged so that the data can be used for production maintenance and to generate an aggregated report on the top integrations based on the number of font requests. The duration of storage depends on the respective provider. The following data is processed: cookie-based data about the interactions (ins. order of interactions, dwell time).
Social media / networks
The controller uses social media and social networks. It has no influence on the data collected and data processing operations, nor is it fully aware of the full scope of data collection, the purposes of processing, the storage periods and the circumstances of the deletion of personal data. If the data subjects visit the company and product pages of the controller in the social media or adverts, it is possible that the providers of the social media and networks store the data collected about them as user profiles and use these for the purposes of advertising, market research and/or the needs-based design of their websites. The data subjects have the right to object to the creation of these user profiles, whereby they must contact the respective provider to exercise this right. Insofar as the controller here can influence the type and scope of the associated processing of personal data, its purpose is to present the controller, to analyse the usage behaviour of the data subjects with regard to interaction with the company and/or product page maintained there and to communicate with the data subjects via this social network (possibly for advertising purposes).
If and to the extent that the controller analyses visitor interactions with its company page, both the controller and the respective provider of the social network or medium are jointly responsible in this respect under data protection law; this is in accordance with Article 26 GDPR. In all other cases, the respective provider of the social network or medium is commissioned in accordance with Article 28 GDPR.
In addition to the general information on the legal basis, the following should be noted: If the data subjects themselves maintain a profile on the respective social network or medium, the legal basis is also the consent within the meaning of Article 6 (1) sentence 1 lit. a GDPR, which they have given to the provider of the respective social network.
The following data is processed: Cookie- or pixel-based data on interactions with the website and the company and/or product pages of the controller, possibly the e-mail address, name and communication data.
Playback of videos
A video playback tool is used to present the data subjects with their own and/or third-party videos on this website and, where applicable, on the controller’s channel. When the data subjects start these videos, both the provider of the video playback solution and the controller document this in order to be able to subsequently display information and ads of interest to the data subjects. The following data is processed: Cookie-based data that transports the following information: (1) Information that the data subjects have visited this website (possibly also the specific subpage), (2) Information that a specific video has been clicked on.
Useful information by email
The controller may process the data of data subjects in order to send them useful advertising information by email. This is a regular and irregular electronic newsletter. At the beginning, they provide the data controller with the data requested for registration. Once the double opt-in procedure has been carried out, the data controller uses this data to contact the data subjects for advertising purposes by means of these e-mails. The following data is processed: Cookie-based data that conveys the following information: The controller processes the data that the data subjects voluntarily provide for this purpose (usually e-mail and name) as well as the data required to prove that consent has been granted (opt-in status data) and, if applicable, data for withdrawing consent.
Map display
A map is displayed on this website that shows the data subject directions. As soon as the data subjects reach the corresponding page, the data to be specified immediately are transmitted to the controller here and to the provider of the map service. The map is only displayed if consent has been given in advance. The following data is processed: (1) data about the use of this website, (2) IP address and, if applicable, (2) data about the address entered for route planning.
Data processing to fulfil a legal obligation
(1) In addition to data processing in principle, the controller processes the data of visitors to the website in order to fulfil a legal obligation. The legal basis is then Article 6 paragraph 1 sentence 1 lit. c GDPR.
(2) Reference is made to the following processing operations:
Storage of data in connection with contracts
Insofar as the controller collects data in order to establish, execute and/or terminate contracts, it shall generally retain data relevant to the controller’s taxation for six years. Deviating from this, data is exceptionally stored for ten years if it results from internal documents (books and records, inventories, annual financial statements, management reports, the opening balance sheet and the work instructions and other organisational documents required to understand them, accounting documents). The purpose of this is to fulfil the legal obligation to retain data under Section 147 AO.
Retention of data that proves the granting of consent
If the controller processes data on the basis of consent, it stores the data that proves consent was granted for three years. The period begins when the consent is withdrawn or the processing subject to consent ends, whichever occurs first. The purpose is to fulfil the retention obligation pursuant to Article 7(1) GDPR in conjunction with Article 5(2) GDPR. Article 5(2) GDPR. The period is determined in accordance with the limitation periods under administrative offences law pursuant to Section 31(2)(1) OWiG in conjunction with Article 83 (4) and (5) GDPR.
Double opt-in
The controller uses the so-called double opt-in procedure to obtain consent for advertising by email. This means that after the data subject has registered, the controller sends an email to the email address provided asking them to confirm their consent. If they do not confirm their registration within 14 days, their information is blocked and automatically deleted after one month. In addition, the controller stores the IP addresses used and the times of registration and confirmation. The purpose of the procedure is to be able to prove your registration and, if necessary, to clarify any possible misuse of your personal data. The legal obligation arises from Article 7(1) GDPR and Article 5(1) GDPR. According to these provisions, the controller here is legally obliged to document the obtaining of consent. This is only possible if he collects the data of the data subjects for verification purposes.
Processing to document consent (cookie consent)
As soon as the data subjects open the website here, a banner appears, via which the data subjects can make declarations on the use of data processing tools. Their declarations and any subsequent modifications to these declarations are documented. The following data is usually processed: IP address, date and time of the declaration, time zone difference to Greenwich Mean Time (GMT), content of the declaration. The purpose is the fulfilment of a legal obligation within the meaning of Article 7(1) GDPR.
Processors and third parties who receive data
The following third-party providers receive access to the personal data of visitors to the website as part of the data processing described above:
Third-party providers: The web host ‘23M’ of 23M GmbH (EU – Germany) is used, which has also been commissioned in accordance with Article 28 GDPR. Further details on the type and manner of processing by this third-party provider are described here: https://23m.com/de?gclid=CjwKCAjwjMiiBhA4EiwAZe6jQyJvud0IC36Prf-yq4LWSX4PZZZJNJJwk_ZpsNsQPyF_guRVxnuwhRoC7b0QAvD_BwE.
Third-party provider: The CRM system ‘Pipedrive’ from Pipedrive OÜ (EU – Estonia), which was commissioned in accordance with Article 28 GDPR, is used. Further details on the type and manner of processing by this third-party provider are described here: https://www.pipedrive.com/en/products/what-is-crm. The use of this third-party provider is not precluded by the fact that it may transfer the data to the USA via sub-processors. This is because the provider has obligated these subcontractors in accordance with the EU standard contractual clauses.
Third-party provider: The automation tool ‘ActiveCampaign’ from ActiveCampaign LLC (USA), which was commissioned in accordance with Article 28 GDPR, is used. More information on the type and manner of processing by this third-party provider is described here: https://www.activecampaign.com/email-marketing and https://www.activecampaign.com/marketing-automation. The fact that the provider is based outside the European Union does not prevent processing. This is because the processing of personal data only takes place if the data subjects consent to the associated data transfer to the USA (see Article 49(1)(a) GDPR). In this respect, the above-mentioned risk information (basic information / transfer to countries outside the European Union) is relevant.
WordPress plugin: The WordPress plugin Gravity Forms is used to create and manage forms. Details on data processing by this plugin can be found here: https://wp-gdpr.eu/addons/gravity-forms/.
Third-party provider: The automation tool ‘KlickTipp’ from KLICK-TIPP LIMITED (England), which was commissioned in accordance with Article 28 GDPR, is used. More information on the type and manner of processing by this third-party provider is described here: https://www.klick-tipp.com/handbuch. The fact that the provider is based outside the European Union does not prevent processing. This is because the provider is based in a country for which the EU Commission has decided that it offers an adequate level of protection (see Article 45 GDPR).
Third-party provider: ELOPAGE GmbH (Germany – EU) is used as a reseller. More information on the type and manner of processing by this third-party provider is described here: https://elopage.com/reseller.
Third-party provider: The appointment booking tool ‘eTermin’ from eTermin GmbH (Switzerland), which was commissioned in accordance with Article 28 GDPR, is used. More information on the type and manner of processing by this third-party provider is described here: https://www.etermin.net/online-terminbuchung-funktionen. The fact that the provider is based outside the European Union does not prevent processing. Any transfer that takes place there is justified by Article 45 GDPR in conjunction with the Commission Decision of 26 July 2000 pursuant to Directive 95/46/EC of the European Parliament and of the Council on the adequate protection of personal data in Switzerland (C(2000) 2304).
Third-party provider: The appointment booking tool ‘Calendly’ from Calendly LLC (USA), which was commissioned in accordance with Article 28 GDPR, is used. More information on the type and manner of processing by this third-party provider is described here: https://calendly.com/features. The fact that this third-party provider is based outside the EU does not prevent it from being used. This is because the provider has undertaken to comply with the EU standard contractual clauses.
Third-party provider: The recruiting tool ‘Connector’ of jobEconomy GmbH (Germany – EU) is used, which was commissioned in accordance with Article 28 GDPR. More information on the type and manner of processing by this third-party provider is described here: https://www.connectoor.com/funktionen/.
Third-party provider: In connection with the analysis of user behaviour, the central control tool ‘Google Tag Manager’ of Google Ireland Ltd (Ireland – EU) is used, which was commissioned in accordance with Article 28 GDPR. More information on the type and manner of processing by this third-party provider is described here: https://marketingplatform.google.com/intl/de/about/tag-manager/. Please note: This tool allows the controller to integrate various codes and services on this website in an organised and simplified manner. This tool implements the tags or triggers the integrated tags. When a tag is triggered, the provider may also process personal data. It cannot be ruled out that the provider may also transmit the data to a server in a third country. However, the fact that the data is transmitted to the USA, possibly in cooperation with Google LLC (USA), does not prevent the processing. This is because the processing of personal data only takes place if the data subjects consent to the associated data transfer to the USA (see Article 49(1)(a) GDPR). This is because personal data is only processed if the data subjects consent to the associated data transfer to the USA (see Article 49(1)(a) GDPR).
Third-party providers: In connection with the analysis of user behaviour, the central control tool ‘Google Tag Manager’ of Google Ireland Ltd (Ireland – EU) is used, which was commissioned in accordance with Article 28 GDPR. More information on the type and manner of processing by this third-party provider is described here: https://marketingplatform.google.com/intl/de/about/tag-manager/. Please note: This tool allows the controller to integrate various codes and services on this website in an organised and simplified manner. This tool implements the tags or triggers the integrated tags. When a tag is triggered, the provider may also process personal data. It cannot be ruled out that the provider may also transmit the data to a server in a third country. However, the fact that the data is transferred to the USA, possibly in cooperation with Google LLC (USA), does not prevent it from being processed. This is because Google LLC (USA) has undertaken to comply with the EU standard contractual clauses (see Article 46 GDPR).
Third-party provider: The social network ‘LinkedIn’ of LinkedIn Ireland Unlimited Company (Ireland – EU) is used. However, it cannot be ruled out that data will be transferred to or integrated into the parent company, LinkedIn Corporation (USA). More information on the type and manner of processing by this third-party provider is described here: https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv.. The use of this third-party provider is not precluded by the fact that data transfer to or integration of the parent company based in the USA cannot be ruled out. This is because the LinkedIn Corporation has undertaken to comply with the EU standard contractual clauses (Article 46 GDPR).
The controller also maintains a company or product page with this provider, which is also linked on this website. If data subjects click on this link (i.e. the link to the company or product page), they will be taken to the controller’s profile.
Third-party provider: The video playback tool ‘YouTube’ from Google Ireland Ltd (Ireland – EU), which was commissioned in accordance with Article 28 GDPR, is used. However, it cannot be ruled out that data will be transferred to or integrated into the parent company, Google LLC (USA). The use of this third-party provider is not precluded by the fact that data transfer to or integration of the parent company based in the USA cannot be ruled out. This is because the processing of personal data only takes place if the data subjects consent to the associated data transfer to the USA (see Article 49(1)(a) GDPR).
Specifically, plugins from the YouTube video portal are integrated on this website. Each time a page that offers one or more YouTube video clips is accessed, a direct connection is established between the data subject’s browser and a YouTube server. These videos are all integrated in ‘extended data protection mode’ No data about the data subjects as users is transferred to the provider if the data subjects do not play the videos. Only when they play the videos will the data specified above be transmitted. The controller has no influence on this data transfer. If the data subjects use a Google account and do not wish to be associated with their profile on YouTube, they must log out before activating the button. The provider stores the data of the data subjects as usage profiles and uses them for the purposes of advertising, market research and/or customised design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide customised advertising and to inform other users of the social network about the activities of the data subjects on the website of the controller. Data subjects have the right to object to the creation of these user profiles, whereby they must contact the provider to exercise this right. Further information on the purpose and scope of data collection and its processing by the provider can be found in the privacy policy. There you will also find further information on your rights and setting options to protect your privacy: https://www.google.de/intl/de/policies/privacy.
The controller maintains a company page with this provider and has linked it on this website. If the data subjects click on this link (i.e. the link to the company page), they will be taken to the channel of the local controller.
Third-party provider: The video playback tool ‘Vimeo’ from Vimeo, LLC (USA), which was commissioned in accordance with Article 28 GDPR, is used. The use of this third-party provider is not precluded by the fact that data transmission to the USA cannot be ruled out. This is because the processing of personal data only takes place if the data subjects consent to the associated data transfer to the USA (see Article 49(1)(a) GDPR).
Specifically, plugins from the Vimeo video portal are integrated on this website. Each time a page that offers one or more video clips is accessed, a direct connection is established between the data subject’s browser and a YouTube server. These videos are all integrated in ‘extended data protection mode’. No data about the data subjects as users is transferred to the provider if the data subjects do not play the videos. Only when they play the videos will the data specified above be transmitted. The controller has no influence over this data transfer. The data subjects have the right to object to the creation of these user profiles, whereby they must contact the provider to exercise this right. Further information on the purpose and scope of data collection and its processing by the provider can be found in the privacy policy. There you will also find further information on your rights and setting options to protect your privacy: https://vimeo.com/privacy
The controller maintains a company page with this provider and has linked it on this website. If the data subjects click on this link (i.e. the link to the company page), they will be taken to the channel of the controller here.
Third-party provider: The map service ‘Google Maps’ of Google Ireland Ltd (Ireland – EU) is used, which was commissioned in accordance with Article 28 GDPR. However, it cannot be ruled out that data will be transferred to or integrated into the parent company, Google LLC (USA). More details on the type and manner of processing by this third-party provider are described here: https://support.google.com/maps/answer/7576020?hl=de#null. Which specific data is transferred in detail also depends on whether the data subject uses this website as a logged-in user of a Google account. Details on data transmission and use can be found here: https://policies.google.com/privacy?hl=de. The use of this third-party provider is not precluded by the fact that data transmission to or integration of the parent company based in the USA cannot be ruled out. This is because the processing of personal data only takes place if the data subjects consent to the associated data transfer to the USA (see Article 49(1)(a) GDPR).
Third-party providers: In connection with the provision of the external font, the ‘Google Fonts’ directory of Google Ireland Ltd (Ireland – EU) is used, which was commissioned in accordance with Article 28 GDPR. More information on the type and manner of processing by this third-party provider is described here: https://developers.google.com/fonts/faq/privacy and here: https://developers.google.com/fonts/faq#what_does_using_the_google_fonts_api_mean_for_the_privacy_of_my_users https://marketingplatform.google.com/intl/de/about/tag-manager/. Please note: IP addresses are neither logged nor stored on Google servers and are not analysed. The Google Fonts Web API logs details of HTTP requests (requested URL, user agent and referrer URL). Access to this data is restricted and strictly controlled. Google does not use any of the information collected by Google Fonts to create profiles of end users. Only the fonts (1 year) and the associated CSS files (1 day) are stored on the user’s end device. However, the fact that the data is transferred to the USA, possibly in cooperation with Google LLC (USA), does not prevent it from being processed. This is because the processing of personal data only takes place if the data subjects consent to the associated data transfer to the USA (see Article 49(1)(a) GDPR).
Third-party provider: The WordPress cookie consent plugin Borlabs Cookie from the developer Benjamin A. Bornschein (Germany – EU) is used. More information on the type and manner of processing by this third-party provider is described here: https://de.borlabs.io/borlabs-cookie/.
Third-party provider: In connection with automation, the interface tool ‘Zapier’ from Zapier, Inc. (USA) is used, which was commissioned in accordance with Article 28 GDPR. More information on the type and manner of processing by this third-party provider is described here: https://zapier.com/how-it-works. In short: Zapier allows the controller here to connect applications so that customer and prospect data can be exchanged automatically between the various applications. The fact that the provider is based outside the European Union does not prevent processing. This is because the provider has committed itself in accordance with the EU standard contractual clauses.
QantexX®
A brand of Lifepassion GmbH
Last updated on: 05 May 2023