DATENSCHUTZ

PRIVACY POLICY

Thank you for visiting our website and for your interest in our services. We would like you to enjoy your visit to our website and not have to worry about the confidentiality of your data. We are very committed to data protection and consider transparency in the handling of your data to be highly important. Accordingly, we wish to inform you about what data we collect, the purposes for which we do this and how you can exercise control over your data at any time.

1. Data controller

The data controller within the meaning of the law governing the processing of personal data is:

Curaze GmbH
Am Pestalozziring 1-2
91058 Erlangen

2. Categories of data, purpose and legal basis of the processing

You can of course visit our website without providing any personal information. You can access our privacy policy via the link at the bottom of each page.

We only use your personal data when you visit our website to operate and optimise our website. For this purpose, the IP address, various technical data of the end device (e. g. operating system, browser used, etc.) as well as data on the use of our website are collected. We do not store this data beyond the legal retention periods or the fulfilment of the intended purpose. Processing of this data is necessary to ensure the operation of the website. If you do not agree to this processing, we will not be able to provide you with our online services. We evaluate this information statistically in order to make the use of our website even more convenient for all visitors. It is not linked to any personal data already stored by us. The data collected in the course of your use of the website will be deleted after 14 months at the latest. In individual cases the storage of data may be extended in order to enforce legal claims, to defend against any legal claims or due to statutory obligations.

The processing of personal data for the purpose of operating the website as well as network and information security is based on Art. 6 Para. 1 S. 1 lit. f GDPR. There is no legal or contractual obligation on your part to provide data in the context of using our website. However, it is not possible to operate the website or respond to your enquiries without processing your data.

3. Data recipients

Your data will not be disclosed to third parties unless there is a legal obligation to disclose the data. Processing is carried out on the basis of Art. 6 Para. 1 lit. c) GDPR and in connection with the specific order or legal obligation to which we are subject in the individual case. In accordance with Art. 6 Para. 1 lit. c) GDPR, personal data may be processed if the processing is necessary for compliance with a legal obligation to which the controller is subject. Categories of recipients of the data are public bodies in the case of a legal obligation and contract processors who process the data collected online on our behalf, as well as joint controllers with us. The processors involved are:

Amazon Web Services (Frankfurt am Main)

Sendinblue GmbH, Berlin (DE) (Newsletter2Go)

Typeform SL, Barcelona (ES)

The joint data controller with us is:

F10 Female One Zero GmbH, München (DE)

4. Registration form

You have the option of registering on our website in order to receive VIP information. For this purpose, we process the following personal data from you: name and email address.

In order to protect your data, we use a certified encryption method when it is transmitted to us. We will retain your personal data for the period necessary to fulfil the purposes described in this information. Statutory retention periods remain unaffected.

The legal basis for the processing is Art. 6 Para. 1 S. 1 lit. a GDPR. Submitting the form constitutes your consent to the processing of your data.

5. Newsletter

If you would like to receive the newsletter offered on the website, we require an email address, the name of your company, as well as other information that allows us to verify that you are the owner of the email address provided and that you agree to receive the newsletter. Further data is not collected or only collected on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.   

The processing of the data entered in the newsletter registration form is based exclusively on your consent (Art. 6 Para. 1 lit. a GDPR). You can revoke your consent to the storage of the data, the email address and their use for sending the newsletter at any time, for example via the "unsubscribe" link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.   

The data you have provided us with for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be blocked after you unsubscribe. After expiry of the legal retention period of three years (normal statute of limitations), this data will be deleted. Data that has been stored by us for other purposes remains unaffected by this. 

Newsletters are sent by Sendinblue GmbH (formerly Newsletter2Go), Köpenicker Str. 126, 10179 Berlin. Sendinblue is a service with which the distribution of newsletters can be organised and analysed. The data you enter for the purpose of receiving newsletters (e.g. email address) is stored on Sendinblue's servers in Germany. The newsletters we send with Sendinblue enable us to analyse the behaviour of the newsletter recipients. Among other things, we can analyse how many recipients have opened the newsletter message and how often which link in the newsletter was clicked. With the help of so-called conversion tracking it can also be analysed whether a predefined action (e.g. purchase of a product on our website) has taken place after the link in the newsletter has been clicked. 

For more information on Sendinblue's data analysis, please see: https://help.sendinblue.com/hc/de/articles/360006093519-Konfigurieren-von-Konversionen-zur-Messung-Ihres-E-Mail-Marketing-ROIs?rtype=n2go

If you do not wish any analysis by Sendinblue you must object to being sent the newsletter. An informal letter/email to us is sufficient for this purpose. 
The data you provide us with for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from the Sendinblue servers after you unsubscribe from the newsletter. After expiry of the legal retention period of three years (normal statute of limitations), this data will be deleted. Data that has been stored by us for other purposes remains unaffected by this.   
For more details, please refer to the privacy policy of Sendinblue at: https://de.sendinblue.com/legal/privacypolicy/

6. Cookies

On our website we use session cookies. We would like to briefly explain the purpose of these cookies below. Cookies are short texts that we store on your computer. Cookies do not execute any commands on your computer, so they do not pose a security risk.

Session cookies store certain information while you browse our website and are not permanently stored, but deleted again when you leave our website.

Session cookies are used on the basis of Art. 6 Para. 1 f) GDPR. The operation of the website is in the legitimate interest of the data controller.

You can determine the handling of cookies in your browser yourself, you can even reject cookies altogether or configure your browser so that cookies are deleted regularly. You will find sufficient information on this on the Internet.

7. Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). Google Analytics uses "cookies", which are text files placed on your computer to help the website analyse how users use the site. You can find out more about how Google uses this data here: https://policies.google.com/technologies/partner-sites?hl=de

The transfer of data to the USA takes place on the basis of the standard contractual clauses that we have concluded with Google.

Google Analytics is only used if you have given your consent. The legal basis is Art. 6 Para. 1 S. 1 lit. a GDPR.

8. Google Web Fonts

This website uses so-called Web Fonts provided by Google for the uniform display of fonts. When you access a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly. 

For this purpose, the browser you are using needs to connect to Google's servers. This informs Google that our website has been accessed via your IP address. Google Web Fonts are used in the interest of a uniform and appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR. 

If your browser does not support Web Fonts, a standard font from your computer will be used. 

You can find more information on Google Web Fonts at

https://developers.google.com/fonts/faq and in Google's privacy policy:

 https://www.google.com/policies/privacy/

9. Vimeo

We use a Vimeo account provided by the operator Vimeo Inc, 555 West 18th Street New York, New York 10011, USA.

When you visit a page on which a Vimeo video is embedded, your IP address and various technical data of your terminal device such as the operating system and browser used, etc. are stored by Vimeo on servers in the USA.

The legal basis for the processing of your data is your consent according to Art. 6 Para. 1 S. 1 lit. a GDPR.

You can find more information on data processing by Vimeo at:

https://vimeo.com/privacy

10. Your rights in relation to the processing of your personal data

With regard to the processing of personal data, you have various rights, which we would like to inform you about below. You can also find details of your rights in Articles 15 to 21 GDPR and Sections 32 to 37 of the German Federal Data Protection Act ("BDSG").

You have the right to receive information about your personal data. You can also require the correction of incorrect data.

In addition, under certain conditions you have the right to the deletion of your data, the right to restriction of the data processing and the right to data portability. You may objectto processing on the basis of Art. 6 Para. 1 lit f) GDPR, as well as to any profiling in accordance with Art. 21 GDPR. Consents that you have given in the context of website use can be revoked informally and without giving reasons at any time with effect for the future. 

You can assert all of the above rights in accordance with Articles 15 to 21 GDPR informally towards the data controller by email or post.

You also have the right to complain to the competent data protection supervisory authority if you believe that the processing of your data is unlawful. You can find a list of data protection supervisory authorities and their contact details at:

https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html

If you have any questions regarding data protection, please feel free to contact our data protection officer:

David Gabel – david.gabel@dsgvo-support.de

General information on data protection and the processing of personal data in data protection processes is available at: https://www.dsgvo-support.de

Curaze

KEEP ME UPDATED

Want to stay informed on our latest content, upcoming events and opportunities? Subscribe to our newsletter!

Email