Data protection declaration

est. 2004

ACAD International Research AG
Norastrasse 7
CH-8004 Zürich

represented by the CEO, Dr Thomas Nemet.
For us, data protection is a highly important concern. In order for you to be aware of which personal data we collect and use, please take note of the following information. It also contains details concerning your rights.

THE MOST IMPORTANT ISSUES FIRST

Data protection

All personal information as well as specifications about your projects are kept completely confidential and are under no circumstances passed to third parties. The information specified in the contact form is transmitted via a secure connection and are, therefore, reliably protected. All data are deleted by us immediately as soon as they are not needed anymore. We guarantee to you that we will never contact you unrequested.

SSL/TSL and HTTPS
We use an encrypted communication protocol to transfer your data tap-proofed.

Anonymity
Your author does not get access to your personal information. You communicate using your first name or an alias of your choice.

Data deletion
We guarantee to you the complete deletion of all order information 30 days after having finished your project. This is part of our deletion routine and carried out automatically. For this reason, please save your partial deliveries and literature references.

Cookies
We use cookies in order to improve the quality of our service. The data transmitted to this end are anonymous and allow no conclusions about your identity.

Non-binding nature
In case you do not accept our offer within the specified period of validity, your entire data will be deleted.

Two-server solution
Data relevant to an order is stored on two servers in fragmented and encrypted form during job processing. This way, third parties do not have the opportunity to read out data by unauthorised invasion.

Youth protection
Our offer is aimed only at users who turned 18 already.

1. CONTROLLER

Responsible for the data processing in accordance with the data protection regulations is
ACAD International Research AG

Dorfstrasse 11
CH-8302 Kloten
+41 43 5085 017
acad@acad-write.com

represented by the CEO, Dr Thomas Nemet, ibidem.

2. DEFINITIONS

Our data protection declaration is based on the principal regulations of the European General Data Protection Regulation (GDPR). In order to make sure the data protection declaration is easily comprehensible, we would like to explain the most important terms as per GDPR (not conclusive):

  • Personal data are all information that refer to an identified or identifiable natural person (“data subject”), whereby a natural person is identifiable if they can be identified, directly or directly, especially by means of an assignment of an identifier like a name, an identification number, location data, an online identifier or one or more particular characteristics that are an expression of the physical, physiological, genetic, psychological, economic, cultural or social identity of a natural person, Art. 4 No. 1 GDPR.
  • Processing is any operation or set of operations performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction, Art. 4 No. 2 GDPR.
  • Restriction of processing is the marking of stored personal data with the aim of limiting their processing in the future, Art. 4 No. 3 GDPR.
  • Profiling is any form of automated processing of personal data consisting of the use of personal data in order to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements, Art. 4 No. 4 GDPR.
  • Pseudonymisation is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person, Art. 4 No. 5 GDPR.
  • Controller is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law, Art. 4 No. 7 GDPR.
  • Processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller, Art. 4 No. 8 GDPR.
  • Recipient is a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing, Art. 4 No. 9 GDPR.
  • Third party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data, Art. 4 No. 10 GDPR.
  • Consent of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of personal data relating to them, Art. 4 No. 11 GDPR.
  • Personal data breach is a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed, Art. 4 No. 12 GDPR.

Data concerning health are personal data related to the physical or mental health of a natural person, including the provision of health care services, which reveal information about their health status, Art. 4 No. 15 GDPR.

3. DATA PROCESSING

Data processing is conducted by us in accordance with the relevant data protection regulations, especially the GDPR, at all times.

It is fundamentally possible to visit our website without having to provide any personal information. However, if and to the extent to which certain offerings are claimed via our website, it may be necessary to process personal data.

Data processing only takes place, though, if either a legal basis for legitimacy is given or if the data subject agreed to the data processing.

As the controller, we introduced a set of technical and organisational measures in order to guarantee a nearly complete protection of data that are processed via our website. Nevertheless, we cannot to 100% preclude that, via Internet-based data transfer, security holes can occur. For this reason, we cannot guarantee an absolute protection. Because of that, we leave it to each data subject to transmit personal data in other ways (phone, post).

4. GENERAL DATA

With every visit of our website that is carried out by a data subject or an automated system, general data and information are collected and saved in the server’s logfile. These, among others, include:

  • Browser type and version
  • Operating system used
  • Website you visit from (referrer URL)
  • Website you visit
  • Date and time of your access
  • Your internet protocol (IP) address
  • Other data and information that are used to defend our IT system in the case of attacks

With the aid of these general data and information, we can not draw inferences pertaining to the data subject. The general data and information are saved separately from personal data that are possibly also provided, and they do not allow conclusions about a specific person. They are analysed for statistical purposes in order to optimise our Internet presence and our offers, display our contents correctly, guarantee for the permanent functioning of our IT systems and our technology and also to be able to provide the necessary information for criminal prosecution to prosecution authorities in the case of an attack on our system. We want to make sure that we can generate statistical information and also increase data protection and data integrity through the kind of analysis explained, so that we can achieve a high level of protection for the personal data processed by us.

5. COOKIES

Our website uses cookies. Cookies do not damage your computer and do not contain viruses. Cookies are small files that are placed on your access device (computer, smartphone, tablet or similar) and saved by your browser. They are used to increase the website’s user friendliness, effectiveness and safety. Also, by means of cookies, statistical data related to website usage can be collected and analysed with the aim of optimising our offering. Cookies can also be so-called “session cookies”, which are deleted automatically right after you finished visiting our website. Other cookies remain on your device until you delete them. With these cookies, your browser can be recognised when you next visit. You can decide to accept cookies on a case-by-case basis or in no case, completely exclude or limit incoming cookies and activate automated deletion of cookies when closing the browser. This may lead to a reduced functionality of our website, though.

6. REGISTRATION FUNCTION (INQUIRY, APPLICATION, CALLBACK REQUEST)

Our homepage offers the opportunity to submit an inquiry about a project and to register or apply as an author by providing personal data. The respective personal data transmitted to us can be found in the self-explanatory input mask. The data entered in the course of this registration will be processed exclusively for the use of our offer or in the application process respectively. When you register, your IP address, as well as the date and time of your registration, will also be saved. This serves to protect you if a third party misuses your data and registers with this data on the homepage without your knowledge. The data will not be passed on to third parties unless there is a legal obligation to do so or the data is used for criminal prosecution. A comparison of these data with data that may be collected by other components of the homepage is also not conducted.

Individuals concerned who have registered with us may at any time change or have completely deleted the personal data provided during registration.

We automatically delete all data of the inquiring person concerned if the offer prepared by us is not accepted within the six-month binding period. Data that reaches us during the application process will be stored in accordance with the legal requirements.

Upon request, we will provide information to any person concerned at any time as to whether and, if so, which personal data we have stored about them. In addition, we will correct or delete personal data upon request of the person concerned, unless this is contrary to statutory storage obligations. In this case, the personal data will be blocked. Our entire team is at your disposal as a contact person in this context.

7. CONTACT OPPORTUNITY

On our website, for legal reasons, we request information (email, contact form) that allow a fast electronic contacting and an immediate communication with us. If and as far as you contact us in this way, the information provided will be saved for the purpose of the processing of your request. A reconciliation of these data with data that might have been generated via other components of the homepage will not be carried through. We as the controller can forward the data to processors (e.g. contract processing, payment handling). The processor or processors, however, also handle the personal data only for internal use that can be attributed to us.

8. DELETION AND BLOCKING/DELETION ROUTINE

The processing of personal data takes places only within the timeframe needed in order to accomplish the object of saving, or as long as relevant legal regulations necessitate it. After the object of saving has been accomplished or after expiry of a legal data retention period, we delete or block personal data in accordance with legal requirements.

Our deletion routine provides that we delete all data as soon as they are not needed anymore. The deletion routine erases data that do not need to be kept within 30 days after job end. This deletion routine is only held up in case of a contacting on your part via our message centre. As soon as your last message has been received, the deletion routine starts again. Please make sure to save all files you received from us or your author.

9. RIGHTS OF DATA SUBJECTS

Data subjects have the following rights in particular:

  • Confirmation
    Data subjects can demand from us as the controller of the processing a confirmation concerning whether we process personal data. To exercise this right, the data subject can contact a member of our staff at any time.
  • Disclosure
    Any data subject at no cost can demand from us as the controller of the processing at all times disclosure concerning whether and, if so, which personal data we have saved about them. They will receive a copy on that matter. Also, the data subject can demand to obtain information about (a) the reasons for processing, (b) the categories of the personal data processed, (c) the recipients or categories of recipients towards whom personal data was or is disclosed, (d) the allocated time the personal data is saved for, or, if this is not possible, the criteria for the determination of this period, (e) the existence of the right to correct or delete or the limitation of processing by the controller or the right to object against this processing, (f) the existence of a right to appeal to a regulatory authority and (g) the existence of an automated decision making, including profiling, and meaningful information about the logic involved as well as the scope and the intended consequences of a suchlike processing for the data subject. In case personal data are not collected directly from the data subject, the information has to contain all available details concerning the origin of the data. Also, the data subject has the right to be informed about whether personal data was passed on to a third country or an international organisation. In case of affirmation, the data subject is to be informed about the appropriate guarantees in the context of the data forwarding. To exercise this right, the data subject can contact a member of our staff at any time.
  • Correction
    Any data subject can at all times demand from us as the controller of the processing to immediately correct the inaccurate personal data that is related to them. In addition, the data subject is entitled to demand the completion of incomplete personal data, in consideration of the purposes of the processing of data. To exercise this right, the data subject can contact a member of our staff at any time.
  • Deletion/right to be forgotten
    Any data subject can demand from us as the controller of the processing to delete the corresponding personal data immediately, if one of the reasons stated in the following applies and as far as the processing is not necessary:

    • The processing of personal data is not necessary anymore for the initial purpose it was collected or otherwise processed for.
    • The consent concerning data processing was revoked by the data subject and there is no legal basis for legitimacy of the data processing.
    • The data subject filed an objection against the data processing in accordance with Art. 21 No. 1 GDPR and primary legitimate reasons for the data processing are not existent.
    • The data subject filed an objection against the data processing in accordance with Art. 21 No. 2 GDPR.
    • The processing of personal data takes place unlawfully.
    • The deletion is necessary due to legal reasons.
    • The data processing took place in the context of information society’s services offered in accordance with Art. 8 No. 1 GDPR.

    If one of the aforesaid reasons applies and if the data subject desires the deletion of their personal data saved from us, they can contact a member of our staff at any time, who will then initiate the deletion. If we as the controller in accordance with Art. 17 No. 1 GDPR are obliged to delete personal data, we will take appropriate (technical) measures resorting to the technologies available to us and considering the costs for an implementation in order to inform other controllers about the data subject’s desire for deletion. Our members of staff will take all measures necessary in the individual case.

  • Limited processing
    Any data subject can demand from us as the controller of the processing to restrict the processing of personal data, if and as far as one of the following conditions is fulfilled:

    • The data subject contests the correctness of the personal data for the period in which it is possible for us as the controller of the processing to check the correctness.
    • The data processing takes place unlawfully and the data subject desires, instead of a deletion, a limited processing of the personal data.
    • We as the controller of the processing require the personal data no longer; in contrast, the data subject requires the personal data for the assertion, conduct and/or defence of their legal claims.
    • The data subject filed an objection against the data processing in accordance with Art. 21 No. 1 GDPR and it is still open whether potential outweighing legitimate reasons for the data processing exist on our part as the controller of the processing.

    If one of the aforesaid conditions is fulfilled and if the data subject desires a limitation of the processing of personal data, they can contact a member of our staff at any time.

  • Right of data portability
    Any data subject can demand from us as the controller of the processing to transfer the personal data related to them in a structured, common/familiar and machine-readable format. The data subject can also demand that the related personal data is passed on to another controller, without us interfering, provided that the data processing is based on a consent in accordance with Art. 6 No. 1 (a) GDPR, Art. 9 No. 2 (a) GDPR or on a contract in accordance with Art. 6 No. 1 (b) GDPR, and takes place by means of an automated procedure, as far as the data processing is not necessary for an execution of tasks that are carried out in the public interest or in the exercise of official authority, which was assigned to us as the controller. Within the scope of exercising the right of data portability, the data subject is entitled to effect an immediate transfer of their personal data from one controller to another controller, provided that this transfer is technically feasible and that no rights or liberties of other parties are harmed by it. To exercise this right, the data subject can contact a member of our staff at any time.
  • Right of objection
    Any data subject can appeal against the processing of personal data, which is conducted by us as the controller of the processing, as far as the data processing takes place in accordance with Art. 6 No. 1 (e) or (f) GDPR. This also applies to a profiling on the basis of this regulation. We no longer process personal data after the objection, unless there are compulsory reasons for the data processing that are worth protecting, which outweigh the interests, rights and liberties of the data subject. This also applies to cases in which the data processing serves the assertion, exertion or defence of claims. To exercise this right, the data subject can contact a member of our staff at any time.
  • Automated decision making/profiling
    Any data subject can demand from us as the controller of the processing to not make decisions that find expression in legal consequences towards the data subject or affect them in a similar way solely on the basis of an automated processing, including profiling, provided that the decision is (a) not necessary for the completion or performance of a contract between the data subject and us or (b) permitted due to relevant legal regulations, and these legal regulations contain appropriate measures concerning the safeguarding of the rights and liberties as well as the rightful interests of the data subject or (c) taking place with explicit approval of the data subject. If the decision is necessary for the completion or performance of a contract between the data subject and us as the controller of the processing, or if the data subject expressed explicit approval, we will take appropriate measures to safeguard the rights and liberties as well as the rightful interests of the data subject. This includes not less than the right to effect an intervention of a person on the part of the controller, to declare their individual point of view and to appeal against the decision. To exercise this right, the data subject can contact a member of our staff at any time.
  • Right of revocation of consent
    Any data subject can revoke the consent to processing personal data at all times. To exercise this right, the data subject can contact a member of our staff at any time.

10. USE OF SHARE COMPONENTS

You can share contents and links on our homepage.

To do so, we use the WebShare API of the software installed on your devices.

If you share things, please note that you also provide information about yourself on the respective target platform. We do not collect or store any data in this context. Accordingly, we have no influence on the data processing by the social media services that you may use.

11. USE OF FACEBOOK COMPONENTS

We use the component of the provider Facebook on our website. Facebook is a service of Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. With every single retrieval of our web pages that are equipped with such a component, this component causes the user’s browser to download the corresponding representation of the component from Facebook. This procedure leads to an information to Facebook about which exact page of our website is being visited. When you access our website and are logged in at Facebook at the same time, Facebook recognises the specific web page you visit and associates these information with the Facebook account. For example, clicking the “Like” button or commenting correspondingly, these information are transferred to your personal account on Facebook and saved there. In addition, the information about your visit of one of our web pages is communicated to Facebook. This happens independently of whether or not you click on the component. If you would like to prevent your personal data and your behaviour to be transmitted to and saved by Facebook, you have to log out from Facebook before visiting our website. Facebook’s privacy policy provides further information, especially about Facebook’s collection and usage of date, about your corresponding rights and the configuration options you have to protect your privacy: https://de-de.facebook.com/about/privacy/.

Also, there are plenty of external tools on the market that allow blocking the Facebook social plugins with add-ons for all common browsers.

An overview of Facebook plugins can be found on https://developers.facebook.com/docs/plugins/.

11. USE OF WORDPRESS PLUGINS

Yoast SEO:

On our website, we use a plugin from Yoast SEO (basic version). This is a product of Yoast BV, Don Emanuelstraat 3, 6602 GX Wijchen, The Netherlands.

It handles the technical optimization of pages for search engines. Further information can be found in Yoast BV’s privacy policy, which can be found at https://yoast.com/privacy-policy/.

You may refuse the use of cookies by selecting the appropriate settings on your browser.

 

Polylang:

We use Polylang software for the multi-language support of our website. Polylang is a product of WP SYNTEX, 28, Rue Jean Sebastien Bach, 38090 Villefontaine, France. We use this software to define languages for different countries. Polylang cookies are only used to recognize and record the language used by the user. These cookies are stored for one year and are then deleted.

Further information on data protection can be found here: https://polylang.pro/doc/is-polylang-compatible-with-the-eu-cookie-law/.

Wordfence Security

We secure our websites with the service “Wordfence Security”, which is operated by Defiant Inc., 800 5th Ave., Suite 4100, Seattle, WA 98104, USA. The usage is based on Art. 6 para. 1 lit. f) DSGVO.

The software is used to ward off attacks by criminals. In order to recognize whether the user is a human being or a machine, the plug-in sets cookies. To protect against brute force and DDoS attacks, IP addresses are stored on the Wordfence servers.

For more information about Wordfence’s use of the data, please see Defiant’s privacy policy: https://www.wordfence.com/privacy-policy/.

13. GOOGLE ANALYTICS

We use Google Analytics, a web analysis service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google Analytics allows an analysis of the clients’ usage of our website by means of text files that are saved to your computer, so-called “cookies”. The generated information are usually transferred to a Google server in the USA and saved there. This homepage, however, uses a method known as IP masking, which assures that your IP address is shortened and, thereby, anonymised by Google prior to transfer to the USA within the EU member states or in other countries that are contracting parties to the Agreement on the European Economic Area. A shortening of the IP address as late as in the USA takes place only in exceptional cases. Google uses these information to analyse the website usage by order of the operator, to prepare reports concerning the website activities and to render other services related to the website usage to the operator. You can prevent the storage of cookies by amending the corresponding settings of your browser. However, you may then not be able to use all functions of the homepage. Through the browser plugin, you can also prevent the collection and processing of the data captured via cookies by Google. On top of that, you can prevent the collection of data related to your use of the website and the processing of these data by Google by downloading and installing the browser plugin you find via this link: https://tools.google.com/dlpage/gaoptout/.

14. DATA PROTECTION FOR THE TRUSTPILOT COMPONENT

We have integrated the component of the evaluation service Trustpilot on our website. Trustpilot is an offer of Trustpilot A/S, Trommesalen 5, 3. sal, 1614 København, Denmark. We highly value our clients’ opinions concerning our performance and service. We are interested in finding out what we do well and what we could and should do better. Evaluations of clients provide for transparency and allow us to learn from them and to optimise our performance. Clients can make use of the opportunity to express their opinion through the implemented evaluation service Trustpilot on our website. The evaluation will be published both on our website and on the Trustpilot website.

After completion of the job, we communicate only the order number and the email address of the client to Trustpilot. Instead of the name, we send the word “client”, which every client may then change. The email address of the client is not published on Trustpilot. The data subject can revoke the consent to the handling of personal data towards Trustpilot at any time. The relevant data protection regulations of Trustpilot can be retrieved from https://de.legal.trustpilot.com/end-user-privacy-terms. In the case that a client does not agree to the transfer of their data to Trustpilot, they can contact a member of our staff at all times.

15. DATA PROTECTION CLAUSE FOR THE USE OF YOUTUBE

We, as the controller of the processing, use the component of the service YouTube on our website. YouTube is an offer of YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. YouTube allows publishers to post videos for free on the Internet-based video portal. YouTube also allows other users to view, rate and comment the posted videos for free. Because YouTube allows for publishing any kind of videos, entire film or TV shows, trailers, music videos or individual content produced by the respective user can be retrieved. In case a user opens a single page of our website, which has an embedded YouTube component, the browser of the data subject is automatically prompted by the YouTube component to download a representation of the corresponding YouTube component. Detailed information about YouTube can be retrieved from youtube.com/yt/about/de. Through this automated technical process, YouTube and Google become aware of which specific web page of our online presence is visited by the user / data subject. If the user is simultaneously logged in at YouTube when visiting our website, YouTube recognises which specific web page of our website that contains a YouTube component is visited. YouTube and Google collect these information and correspondingly assign them to the YouTube account of the user. Via the YouTube component, both YouTube and Google become aware of the user having visited our website, if the user is simultaneously logged in at YouTube during the visit of our website. This happens regardless of whether the user actually clicks on a video or not. If users wish to prevent a suchlike transfer to YouTube and Google, they have to log out of their YouTube account before accessing our website. The data protection regulations of YouTube can be retrieved from google.de/intl/de/policies/privacy. They provide information concerning the collection, processing and use of personal data by YouTube and Google.

16. DATA PROTECTION FOR THE PAYPAL COMPONENT

We implemented the component of the payment service PayPal on our website. PayPal is an online-based payment service provider, through which payments are processed via corresponding PayPal accounts. In case a user does not have a PayPal account, payments can also be made digitally via credit card. In Europe, the operating company responsible for PayPal is PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg. If the payment method “PayPal” is selected for the payment, the data of the data subject are automatically transferred to PayPal. By choosing this payment method, the data subject agrees to the transmission of personal data necessary for the payment processing. The personal data communicated to PayPal are fundamentally name, surname, address, email address, IP address, (mobile) phone number or any other data that are necessary for the payment processing. The purposes of the data transmission are the processing of the payment and the prevention of offences. We will especially transfer personal data to PayPal if a legitimate interest for the transmission exists. The personal data exchanged between us and PayPal might also be communicated to credit agencies. This communication is aimed at verifying both identity and creditworthiness. PayPal might also transfer personal data to affiliated companies and service providers or subcontractors, if and insofar this is necessary for the performance of contractual obligations or if the data are to be processed for the order. The data subject can revoke the consent to processing personal data towards PayPal at any time. The revocation does not have any consequences with regard to personal data that are compulsory for processing the handling of payment (as provided in the contract). The applicable data protection provisions of PayPal can be retrieved from paypal.com/de/webapps/mpp/ua/privacy-full.

17. LEGAL BASIS OF THE DATA PROCESSING

Our legal basis for the processing is Art. 6 No. 1 (a) GDPR, if we seek a data subject’s consent for the processing of data for a certain purpose of processing. In the course of data processing during fulfilment of a contract, the contracting party of which the data subject is, the legal basis for the processing is Art. 6 No. 1 (b) GDPR. This also applies to processing procedures that are necessary for precontractual measures, e.g. requests concerning our products or services. In case we are, e.g. due to legal obligations, bound to process personal data (e.g. tax obligations), the legal basis of the data processing is Art. 6 No. 1 (c) GDPR. The data processing may also be based on Art. 6 No. 1 (f) GDPR, if none of the aforementioned legal grounds is connected to the current subject and the data processing is necessary for the safeguarding of rightful interests of us or a third party, provided that the interests, fundamental rights and fundamental freedoms of the data subjects do not outweigh that. When processing data in accordance with Art. 6 No. 1 (f) GDPR, our rightful interest is the conduct and exertion of our business activity in support of the welfare of all our employees as well as our shareholders.

18. DURATION OF STORAGE

The duration of storage of personal data is substantially based on the legally prescribed retention periods. Following the expiry of the respective period, the corresponding personal data will be routinely deleted when and if they are no longer required for the fulfilment of the contract or the contract initiation.

19. PROVISION OF PERSONAL DATA

We hereby inform you that there partly are legal regulations that prescribe the provision of personal data (e.g. tax law) and that such an obligation may also result from contractual regulations. It may happen that, for the conclusion of a contract, it is necessary that the data subject provides certain personal data that we have to process as part of the order, for example, as is the case when a contract is concluded. If the necessary personal data were absent in these cases, we could not conclude the contract with the data subject. Prior to providing personal data, the data subject must contact us in order for us to explain to them whether, in this particular case, a provision of personal data is legally or contractually prescribed or necessary for the conclusion of the contract, whether there is an obligation to provide these personal information and what the implications of not providing these data would be.

20. AUTOMATED DECISION MAKING/PROFILING

We waive automated decision making and profiling.

21. OBJECTION TO ADVERTISING EMAILS

Any use of the contact information made public in the imprint and on the website for unrequested advertising purposes is strictly prohibited. In the case of using these information for the unsolicited forwarding of advertising information, e.g. spam mails, legal steps are expressly reserved.