We are pleased about your visit on our web pages, on which we offer you information about our enterprise, our achievements and also personalized functionalities. Transparency and integrity in the processing of your personal data is an important concern to us. We observe the data protection regulations, in particular the General Data Protection Regulation ("GDPR") and the Federal Data Protection Act ("BDSG").
Our data protection officer can be contacted via the above-mentioned contact channels as well as at email@example.com.
In compliance with data protection regulations, we only process your personal data if we are permitted to do so by law or if you have given your consent. This also applies to the processing of personal data for advertising and marketing purposes.
On these Websites we may also collect information that does not enable us to directly identify you. In certain cases - especially when combined with other data - this information may nevertheless be considered "personal data" in the sense of data protection law. We may also collect information on these Websites that does not enable us to identify you directly or indirectly; for example, aggregate information about all users of these Websites.
You can access our Websites without directly providing personal data (such as your name, postal address or e-mail address). In this case, we must collect and store certain information in order to enable you to access our Websites. We also use certain analysis methods on our Websites. In addition, we offer you some functionalities on our Websites for which we have to collect personal data.
We collect and process personal data to the following extent:
Logfiles: When you visit our Websites, our web server automatically saves data and information of the terminal device and browser you are using. Information on the hardware model used, device ID, browser type (e.g. Firefox, Safari or Internet Explorer) and the operating system version and your IP address / MAC address are recorded.
For example, we automatically receive and store information about your browser in our server logs, including how you accessed and used our Websites, your IP address, device type and unique device identification numbers, device event information (such as crashes, system activity and hardware settings, browser type, browser language, date and time of your request and referral URL), geographic information (country or city) and other technical data collected by cookies that uniquely identify your browser. We may also collect information about how your device interacted with our website, including the pages viewed and links clicked. We may use identifiers to recognize you when you arrive at our Websites through an external link, such as a link that appears on a third party website.
We process this technical information in the log files of our systems and do not combine it with other personal data about you. We process the technical information to enable you to access our Websites, to ensure the functionality of our Websites and the security of our IT systems and to optimise our Websites. The legal basis for the processing is Art. 6 (1) (f) GDPR.
3.1. Contract execution / Registration / Storrito account: On our Websites we offer you the opportunity to register and create a Storrito account. To do this, we first request your email address and a self-chosen password. Once registered, you can use your Storrito account to capture additional content (such as videos) for the Instagram Stories creation, access it, and then share it using the linked Instagram profile. This tells us your Instagram ID and your Instagram password which we only store in encrypted form. In order to access your Storrito account, we may request the entry of data already collected during registration (in particular for your identification). We process the data to your Storrito account, to prepare and execute a contract between you and us, legal basis is Art. 6 (1) b) GDPR.
3.3. Marketing information by email: If you have subscribed to our email newsletter, we will process your email address and any information collected on your Storrito account, based on your consent, to provide you with customized information about our social media activities, offers and promotions, and upgrade services from partner companies such as Paddle.com that cooperate with us in the same areas. In addition, we can evaluate the data generated by the delivery and retrieval of our emails in aggregated form (delivery rate, open rate, click rates, conversion rate, unsubscribe rate, bouncer rate) as well as the data generated by your retrieval and use of these emails (opening time, hyperlinks clicked on, documents downloaded) for the purpose of analysing the success and use of the e-mails, provided that this includes your consent.
Your personal data will not otherwise be passed on to third parties, and we process your data exclusively for the selection of individualised content and for the dispatch of the newsletter within the framework of the consent you have given. The legal basis is Art. 6 (1) (a) GDPR.
3.4. Due diligence, corporate transactions or mergers: We may process any information about your account and the use of our services to the extent necessary in connection with acquisitions, mergers or other corporate transactions or in advance of to such transactions as part of the due diligence and to the extent that we have an overriding legitimate interest in such information (Art. 6 (1) f) GDPR).
The length of time a cookie remains on your browsing device depends on whether it is a "permanent" or a "session" cookie. Session cookies only stay on your device until you stop surfing. Persistent cookies remain on your browsing device until they expire or are deleted (i.e. after you have finished surfing).
You have the right to decide whether you want to accept cookies. You can exercise your preferences regarding the cookies used on our Websites by following the steps below.
Further information on cookies and their use can be found at www.aboutcookies.org or www.allaboutcookies.org.
a. Matomo: On our Websites, data is collected and processed using the web analysis service software Matomo (https://matomo.org), a service of the provider InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand, ("Matomo") on the basis of our legitimate interest in statistical analysis of user behaviour for range measurement in the event of your consent pursuant to Art. 6 (1) a) GDPR. The EU Commission has established an appropriate level of data protection for New Zealand. The data collected with Matomo cookies (including your [anonymized] IP address and email address) is processed on Matomo servers. If you do not agree with the storage and evaluation of this data from your visit, you can object to its storage and use at any time by mouse click. Alternatively, you can activate the opt-out option on [https://matomo.org/privacy-policy/ . In](https://matomo.org/privacy-policy/) the event of your objection, a so-called opt-out cookie is stored in your browser, which means that Matomo does not collect any session data. Please note that the complete deletion of your cookies means that the opt-out cookie will also be deleted and may have to be reactivated by you.
You have the right to revoke your consent at any time with effect for the future. You can also prevent the storage of cookies by setting your browser software accordingly. However, we would like to point out that in this case you may not be able to use all the functions of our website to their full extent. You can also prevent the collection by Google of data generated by the cookie and related to your use of the website (including your IP address) and the processing of such data by Google by downloading and installing a browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de . An opt-out cookie is set to prevent your data from being collected in the future when you visit this website.
You can also prevent Google Analytics from collecting data by clicking on the following link: Deactivate Google Analytics.
You can find further information on data protection at Google Analytics here http://www.google.com/analytics/terms/de.html and here http://www.google.com/intl/de/analytics/privacyoverview.html. ]
c. Affiliate networks: In addition, we accept no responsibility for the content of our website on the basis of our legitimate interests (i.e. interest in the economic operation of our online offering as defined in Art. 6 (1) f) GDPR) in the partner programs of Paddle.com [as well as of cleverbridge AG], whereby through the placement of advertisements and/or links to various providers, a reimbursement of advertising costs can be earned (so-called "Affiliate Systems"). Among other things, the providers of Affiliate Systems can recognize that you have clicked on an affiliate link and then purchased the corresponding product or service.
For more information on Paddle.com's data processing and opposition options, please visit https://paddle.com/privacy and https://paddle.com/gdpr or cleverbridge at [https://www.cleverbridge.com/corporate/privacy-policy].
d. In addition, we offer the possibility to chat with us via the live chat program "Crisp" of Crisp IM SARL, 2 Boulevard de Launay, 44100 Nantes, France (registration number: 833085806).
3.6. Statistical evaluations: If necessary, we can evaluate your personal data to evaluate your preferences for the purposes of interest-oriented marketing, the individual approach and the continuous optimization of our business processes. We do this to gain a better understanding of what our customers expect from us and to be able to provide you with personalized communication. In addition, these evaluations help us to detect fraud, to audit and to guarantee security, which is why we carry out this processing to protect our legitimate interests; the legal basis is Art. 6 (1) f) GDPR.
3.8. Further legitimate interests: If necessary, we process your data beyond the aforementioned purposes also to protect our legitimate interests or the interests of third parties; this takes place on the basis of Art. 6 (1) f) GDPR. Our legitimate interests include
a. the assertion of legal claims and defense in legal disputes;
b. the possibility to provide customer support (also via a chat function);
c. the prevention and investigation of criminal offences;
d. the management and further development of our business activities, including risk management.
The information required for the registration, contract execution or provision of further upgrades, the possible registration for our email information in the corresponding area of the respective website (e.g. an online form) are mandatory information; without the provision of mandatory information, we can not allow you to use the respective functionality.
If, in addition, we collect personal data from you, we will inform you at the time of collection whether the provision of this information is required by law or contract or if is necessary for the conclusion of a contract. As a rule, we identify information that is provided voluntarily and is not based on any of the aforementioned obligations or is not necessary for the conclusion of a contract.
Your personal data will be processed within our company. Depending on the type of personal data, only certain departments / organizational units have access to your personal data. This includes, in particular, the specialist departments involved in providing our services and our IT department. Through a role and authorization concept, access within our company is limited to those functions and the scope required for the respective purpose of processing.
We may also transfer your personal data to third parties outside our company to the extent permitted by law. These external recipients may include in particular
In connection with the operation of our Websites, we do not use any automated decision making (including profiling) within the meaning of Art. 22 GDPR. If we use such procedures in individual cases, we will inform you of this separately to the extent provided by law.
The processing of your personal data takes place within the EU or the European Economic Area.
In certain cases, the information may be transferred to recipients in so-called "third countries". "Third countries" are countries outside the European Union, the Agreement on the European Economic Area, where a level of data protection comparable to that in the European Union cannot be easily assumed. In particular, we store data using "Google Cloud", an offer from Google Ireland Limited, and use the "SendGrid" dispatch service from Twilio UK Limited to send contract or business-related emails. However, we cannot completely exclude the possibility that individual data may also be processed by Google LLC. or Twilio, Inc. or SendGrid, Inc., which are affiliated with these U.S. companies, but which have submitted to the EU-US Privacy Shield and are therefore committed to maintaining an appropriate level of data protection. Further information on how Google processes personal data can be found at https://policies.google.com/privacy or in relation to SendGrid at https://sendgrid.com/policies/privacy/.
We store personal data in principle as long as we have a justified interest in this storage and your interests in the discontinuation of the storage do not outweigh. Even without a legitimate interest, we can continue to store the data if we are legally obliged to do so (for example, to fulfill retention obligations). We also delete personal data without the intervention of the person concerned as soon as their knowledge is no longer necessary to fulfil the purpose of the processing or storage is otherwise legally inadmissible.
The personal data that we have to store in order to fulfil our retention obligations will be stored until the end of the respective storage obligation. Insofar as we store personal data exclusively for the fulfilment of storage obligations, these are generally blocked so that they can only be accessed if this is necessary with regard to the purpose of the retention obligation.
a. Right of objection according to Art. 21 GDPR
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning which is based on Art. 6 (1) (e) or (f) GDPR, including profiling based on those provisions. In the event of your objection, we will no longer process the personal data concerning you unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or for the establishment, exercise or defence of legal claims.**
If we process personal data for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing; which includes profiling to the extent that it is related to such direct marketing. If you object to the processing for direct marketing purposes, the personal data concerning you will no longer be processed for such purposes.
You have the possibility to exercise your right of objection in relation to the use of information society services - notwithstanding Directive 2002/58/EC - by means of automated procedures using technical specifications.
b. Revocation of consent
c. Further rights
You have as a data subject the right in accordance with the following provisions
If you have any questions regarding the processing of your data, you can also contact our data protection officer via the contact channels indicated above.
You are also entitled to lodge a complaint with a competent data protection supervisory authority, Art. 77 GDPR.
Be the first to know when we're adding new features and releasing new updates!