1. General information
Data protection concerns the processing of personal data.
In this privacy statement, we provide information about the scope of data collection, storage and use as well as the purpose of this data processing and the use of cookies in the context of using the website www.slicemedia.de.
To promote a better understanding, we provide a brief overview of the basic concepts and requirements for the processing of personal data and the use of cookies below.
1.1. basic concepts
“Personal data” in accordance with Art. 4 No. 1 GDPR: All information relating to an identifiable person. This includes, for example, data such as names, postal addresses, e-mail addresses or telephone numbers. This also includes usage data such as the IP address and content data from e-mail correspondences that are in exchange with us.
“Process” of data or “data processing” in accordance with Art. 4 No. 2 GDPR: All processes involving the handling of personal data, regardless of whether automated (technology-based) processes are used or not. This includes in particular the collection (procurement), recording, organizing, ordering, saving, adapting or changing, reading, querying, using, disclosing by transmitting, disseminating or otherwise providing, comparing, linking, restricting, deleting or destroying personal data. This also includes a change in a goal or purpose that was originally the basis for data processing.
“Responsible person” in accordance with Article 4 No. 7 GDPR: The natural or legal person, authority, agency or other body which, independently or together with others, decides on the purposes and methods of processing personal data.
“Third party” in accordance with Article 4 No. 10 GDPR: Any natural or legal person, authority, agency or other body that is not subject to the data subject, the controller, the processor or the persons who, under the direct responsibility of the controller or processor, are authorized to process personal data. This also includes other legal entities that belong to the Group.
“Order processor” in accordance with Article 4 No. 8 GDPR: A natural or legal person, authority, agency or other body which processes personal data on behalf of the person responsible, in particular in accordance with the controller's instructions (e.g. IT service provider). In the context of data protection law, an order processor is not considered a third party.
“Consent” the data subject in accordance with Art. 4 No. 11 GDPR: Any voluntary, informed and unequivocal expression of will relating to a specific case. This statement of intent may take the form of a statement or other unequivocal affirmative action. By giving consent, the data subject indicates that they consent to the processing of their personal data.
1.2. Legal basis for data processing
The processing of personal data is only permitted if there is a corresponding legal basis. The potential legal bases result from Article 6 (1) sentence 1 of the General Data Protection Regulation (GDPR). According to this provision, the processing of personal data is lawful only if at least one of the conditions listed in the provision is met.
1.3. Legal basis for the use of cookies
The storage of information in end user devices (for example by setting cookies) or access to information already stored in end user devices is only permitted if it is covered by one of the following justifications:
Section 25 (1) TTDSG: If the end user has consented on the basis of clear and comprehensive information. Consent must be given in accordance with Article 6 (1) (a) GDPR;
Section 25 (2) No. 1 TTDSG: If the sole purpose is to carry out the transmission of a message via a public telecommunications network or
Section 25 (2) No. 2 TTDSG: When storage or access is absolutely necessary so that the provider of a telemedia service can provide a telemedia service expressly requested by the user.
1.4. Note about those responsible
The person responsible for data processing on this website is:
Leonard Landgrebe and Yusuf Arslan GbR
Ludwig-Erhard-Strasse 12, 34131 Kassel, DE
Telephone: +49 151 58124593
email: [email protected]
1.5. contact
If you have any questions about data protection, you can contact us at any time [email protected] turn around.
2. Data processing when using our website.
In order to be able to use our website without any problems, we need some information for a short time, such as your IP address. In the following sections, we will inform you about this need and the storage of usage data in so-called log files.
2.1. Data processing when retrieving the site, log files and hosting service providers
2.1.1. Information when the page is accessed
Without Internet Protocol addresses, or “IP addresses” for short, many things would not work. In computer networks, an IP address functions as an address via which web servers and/or individual devices can be addressed and reached — comparable to a telephone number. Without an IP address, communication between the web server and the end devices is not possible, which means that no display can take place. When you send a request to the server that hosts our website, it needs your IP address to provide you with the requested data. As a result, the server stores your IP address during data retrieval. Overall, the server receives the following information from you:
- IP address
- Page from which the page was requested or referrer URL
- Name and URL of the requested page
- date and time of the call
- GMT time zone difference
- type, language and version of the web browser used
- Amount of data transferred
- Operating system used
- Message as to whether the call was successful (access status/http status code)
The legal basis for this data processing is based on Art. 6 para. 1 lit. f) GDPR, as we have a legitimate interest in this processing: This is to provide you with the website and the information contained therein at your request.
If you believe that, due to your particular situation, there are reasons that outweigh our legitimate interest in the processing mentioned above, you have the right to object in accordance with Article 21 (1) GDPR. Please send your objection to [email protected]. In this case, we will no longer process the personal data unless we can prove overriding reasons worthy of protection. During our review, you have the right to request the restriction of processing in accordance with Article 18 (1) (d) GDPR.
For more information about your rights as a data subject, please see our notes below.
2.1.2. log files
After your visit, the data is stored in so-called log files, where the IP address is abbreviated by the last three bytes, which corresponds to a reduction of three quarters.
The log files are stored for a period of 14 days in order to quickly identify bruteforce attacks and other manipulations and to take appropriate countermeasures.
This data is stored for technical support of our IT security on the basis of Art. 6 para. 1 lit. f) GDPR, as we have a legitimate interest in protecting our website from attacks and manipulation. A predominantly legitimate interest of the person concerned is not discernible, especially since only the IP address abbreviated by three bytes is stored.
If you believe that there are reasons based on your particular situation which outweigh our legitimate interest in the processing mentioned above, you have the right to object to this in accordance with Article 21 (1) GDPR. Please send your objection to [email protected]. In this case, we will no longer process the personal data unless we can prove overriding reasons worthy of protection. During our review, you have the right to request the restriction of processing in accordance with Article 18 (1) (d) GDPR.
For more information about your rights as a data subject, please see our notes below.
2.2. Cookies and links to third-party websites
2.2.1. cookies
In order to make visiting our website attractive and to enable the use of certain functions, we use so-called cookies. These are small text files that are stored on your device. Cookies cannot run programs or transfer viruses to your computer system.
Cookies that are required to carry out the electronic communication process or to provide certain functions you have requested are stored on the basis of Article 6 (1) (f) GDPR. We have a legitimate interest in storing cookies for the technically error-free and optimized provision of our services. Insofar as other cookies (e.g. cookies to analyze your surfing behavior) are stored, these are treated separately in this privacy policy.
Most of the cookies we use are so-called “session cookies.” They are automatically deleted at the end of your visit. Other cookies remain stored on your device until you delete them. These cookies enable us to recognize your browser the next time you visit.
You can set your browser so that you are informed when cookies are set and only allow cookies in individual cases, exclude the acceptance of cookies for specific cases or in general, and activate the automatic deletion of cookies when you close the browser. If cookies are deactivated, the functionality of this website may be limited.
2.2.2. Links to third-party websites
Our website contains links to third-party websites, including our profiles/pages on Instagram and LinkedIn. These links can be identified by highlighting or the icon of the respective platform.
By clicking on the appropriate link, you leave our area of responsibility. We recommend that you only do this if you want to visit the page in question.
3. Advertising analysis tools
3.1. Google Analytics
Our website uses the web analysis service Google Analytics. The provider is Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).
Google Analytics uses so-called “cookies.” These are text files that are stored on your computer and allow an analysis of your use of our website. The information generated by cookies about your use of our website is usually transmitted to a Google server in the USA and stored there.
The legal basis for processing your data is the consent given by you via the cookie consent tool in accordance with Art. 6 para. 1 sentence 1 lit. a) GDPR.
3.1.1. IP anonymization
We have activated the IP anonymization feature on this website. As a result, your IP address is abbreviated by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area before transmission to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and abbreviated there. On our behalf, Google will use this information to evaluate your use of our website, to compile reports on website activity and to provide us with other services related to website activity and Internet usage. The IP address transmitted by your browser as part of Google Analytics is not combined with other data from Google.
3.1.2. Demographics in Google Analytics
Our website uses the “demographic characteristics” feature of Google Analytics. As a result, reports can be created that contain statements about the age, gender and interests of site visitors. This data comes from interest-based advertising from Google and from visitor data from third parties. This data cannot be attributed to a specific person. You can deactivate this function at any time via the ad settings in your Google Account or generally prohibit the collection of your data by Google Analytics - as shown in the section “Objection to data collection”.
3.1.3. Order processing
We have concluded a contract with Google for order data processing and fully implement the strict requirements of the German data protection authorities when using Google Analytics.
3.1.4. Storage period
User and event level data stored by Google, which is linked to cookies, user IDs (e.g. user ID) or advertising IDs (e.g. DoubleClick cookies, Android advertising ID), is anonymized or deleted after 14 months. Details can be found under the following link: https://support.google.com/analytics/answer/7667196?hl=de
3.1.5. Objection to data collection
You can prevent the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all functions of this website in full. You can also prevent Google from collecting the data generated by the cookies and related to your use of the website (including your IP address) and from processing this data by Google by using the browser add-on available at the following link to deactivate Download and install Google Analytics https://tools.google.com/dlpage/gaoptout?hl=de. If you delete the cookies from your computer, you must set the opt-out cookie again.
More information about how Google Analytics handles user data can be found in Google's privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.For more information on data protection, please see Google's privacy policy: https://policies.google.com/privacy?hl=de&gl=de
3.2. Google Tag Manager
Our website uses Google Tag Manager from Google. Google Tag Manager is a solution that allows marketers to manage website tags from one interface. The tool that implements the tags is a cookie-less domain and does not store any personal data. The tool triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, this will persist for all tracking tags that are implemented with Google Tag Manager.
4. Data processing in the request/contact form context
If you send us inquiries via the contact form, your details from the enquiry form, including the contact details you provided there, will be saved.
We use Notion to save form data. The provider is Notion Labs Inc. , San Francisco, 2300 Harrison Street, Floor 2, Verenigde Staten.
Notion enables us, among other things, to manage existing and potential customers as well as customer contacts. This enables us to record, sort and analyze customer interactions via email, social media or telephone across various channels. The personal data collected in this way can be evaluated and used for communication with the potential customer or for marketing measures (e.g. newsletter mailings).
Notion is used on the basis of Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in customer management and customer communication as efficiently as possible. If a corresponding consent has been requested, processing is carried out exclusively on the basis of Article 6 (1) (a) GDPR; consent can be withdrawn at any time.
For details, see Notion's privacy policy: https://www.notion.so/notion/Terms-and-Privacy-28ffdd083dc3473e9c2da6ec011b58ac
If you believe that your particular situation gives rise to reasons which outweigh our legitimate interest in this processing, you can object to this in accordance with Article 21 (1) GDPR. Please send your objection to [email protected]. In this case, we will no longer process the personal data unless we can prove overriding reasons worthy of protection. Until our audit has been completed, you have the right to request the restriction of processing in accordance with Article 18 (1) (d) GDPR.
If the process of fulfilling a contract or carrying out a pre-contractual measure, which is carried out at your request, and is necessary for this purpose, data processing is also carried out on the basis of Article 6 (1) (b) GDPR.
Information on the deletion periods can be found in section 6.2.
5. Other contract processors and third parties
5.1. Webflow hosting service provider
We do not operate the servers on which our website is hosted ourselves. We have commissioned a host provider who works for us as an order processor in accordance with Art. 28 GDPR on the basis of an order processing contract and processes data. This gives the host provider access to all data collected (data when you access the page and log files) as well as to data that you enter in our contact form.
Our hosting service provider is:
Webflow Inc.398 11th Street, 2nd FloorSan Francisco, California, 94103, United States
Webflow operates servers in both the EU and the USA. If there is sufficient capacity, servers in the EU are preferred, but it is also possible that our website is delivered from servers in the USA. In such a case, the mentioned personal data will be transferred to the USA.
The legal basis for this data transfer to the USA is Article 45 (1) GDPR in conjunction with the EU-U.S. Data Privacy Framework, under which Webflow Inc., is certified. This ensures an adequate level of protection for your personal data.
Please also note Webflow's privacy policy: https://webflow.com/legal/eu-privacy-policy.
5.2. Digital Ocean Hosting Service Provider
This website uses a cloud platform for virtual servers from Digital Ocean LLC, based in 106 6th Avenue, New York, USA. The server is located in an ISO/IEC 27001 certified data center in Frankfurt, where Digital Ocean rents parking spaces.
The decision to use Digital Ocean is based on our legitimate interest in providing our website as error-free and secure as possible (Art. 6 para. 1 lit. f DSGVO). Data transmission to the USA is carried out using the new standard contractual clauses of the EU Commission. For more details, see: https://www.digitalocean.com/legal/privacypolicy/.
To protect your data, we have concluded an order data processing agreement with Digital Ocean. This is publicly available at: https://www.digitalocean.com/security/gdpr/dataprocessing-agreement/.
5.3. Make
This website uses the integration service provider Make, a service provided by Celonis, Inc., One World Trade Center, 87th Floor, New York, NY, 10007, USA (hereinafter “Make”). We use Make to integrate various databases and web tools. Make is a web service that connects automated actions between various web tools and synchronizes their applications together to enable the desired processes. Make automates our processing processes and provides various workflows to make the work processes in our processing system efficient. The data processing described is carried out in accordance with Article 6 (1) (f) GDPR on the basis of our legitimate interests in the efficient organization of our work processes. You can find more information about privacy at Make at https://www.make.com/en/privacy-notice.
5.4. Leadinfo
We use the lead generation service from Leadinfo B.V., Rotterdam, the Netherlands. This recognizes visits by companies to our website based on IP addresses and shows us publicly available information, such as company names or addresses. In addition, Leadinfo sets two first-party cookies to evaluate user behavior on our website and processes domains from form inputs (e.g.”leadinfo.com“) to correlate IP addresses with companies and improve services. For more information, see www.leadinfo.com. On this page: www.leadinfo.com/en/opt-out You have an opt-out option. In the event of an opt-out, Leadinfo will no longer collect your data.
5.5. Bugsnag
To fix errors and problems with the functionality of our website, we use the Bugsnag service from SmartBear Software, 450 Artisan Way, Somerville, MA 02145, USA. In the event of an error, the retrieving IP address, data on the user's settings (e.g. the browser used), as well as details of the page where the error occurred and the data entered there are transmitted to Bugsnag in order to evaluate, categorize and analyze the error. The data processing described is carried out in accordance with Article 6 (1) (f) GDPR on the basis of our legitimate interests in an error-free user experience. Further information on data protection at Bugsnag can be found at: https: //smartbear.com/privacy/.
5.6. hCaptcha
We use the hCaptcha security service (hereinafter “hCaptcha”) on our website. This service is provided by Intuition Machines, Inc., a Delaware, USA company (“IMI”). hCaptcha is used to verify that user actions on our online service (such as filling out a registration or contact form) meet our security requirements. For this purpose, hCaptcha analyses the behavior of visitors to the website or mobile app based on various characteristics. This analysis starts automatically as soon as the visitor enters a part of the website or app with hCaptcha activated. For analysis, hCaptcha evaluates various information (e.g. IP address, how long the visitor has been on the website or app, or the user's mouse movements). The data collected during the analysis is forwarded to IMI. An hCAPTCHA analysis in “invisible mode” can be carried out completely in the background. Website or app visitors are not notified that such analysis is taking place if the user is not presented with a challenge. Data processing is based on Art. 6 para. 1 lit. b GDPR: The processing of personal data is necessary for the performance of a contract in which the website visitor is involved (e.g. the website conditions) or to take measures at the request of the website visitor which precede the conclusion of a contract. Our online service (including our website, mobile apps, and other apps we offer or other forms of access) must ensure that it interacts with a human, not a bot, and that the activities carried out by the user are not fraudulent or abusive. In addition, processing may also be based on Article 6 (1) (f) GDPR: Our online service has a legitimate interest in protecting the service from abusive automated crawling, spam and other forms of misuse that may harm our service or other users of our service. IMI acts as a “processor,” defined under the GDPR on behalf of its customers, and as a “service provider” as defined by the California Consumer Privacy Act (CCPA). For more information about hCaptcha's privacy policy and terms of use, please visit the following links: https://www.hcaptcha.com/privacy and https://www.hcaptcha.com/terms.
5.7. Other recipients
We will not share personal information outside of the scope described in this privacy statement without express consent.
We will only transfer data to state institutions and authorities within the framework of legal information requirements or if we are required to provide information by a court decision.
6. Duration of data processing
6.1. Retention periods for log files
The IP address and the data in the log files are only cached to establish a connection. They are kept for 14 days and then immediately deleted to detect attacks and manipulations.
6.2. Retention periods in the context of (service) inquiries
We store the data you provide as part of inquiries until the purpose of data storage/processing has been fulfilled (e.g. after the processing of your request has been completed). Mandatory legal provisions, in particular retention periods, remain unaffected.
The data that you submit to us as part of inquiries may be subject to longer storage periods in individual cases in accordance with Section 257 Paragraph 4 HGB and Section 147 Paragraph 3, 4 AO. In such cases, the data will be restricted after the request has been resolved in accordance with Article 18 GDPR and will only be deleted after the legal retention periods of 6 to 10 years have expired. The period starts at the end of the calendar year in which the relevant data was collected.
This provision does not apply if the contractual relationship lasts longer than 10 years. In this case, data relating to the contractual relationship and which is still necessary for optimal customer service can be processed until the end of the customer relationship.
7. Rights of data subjects
With regard to personal data concerning you, as a data subject, in accordance with legal provisions, you have the following rights vis-à-vis the person responsible:
- Right to information (in accordance with Art. 15 GDPR): You can request information about the processing purposes, categories of data, recipients, storage period, rights to correction, deletion, restriction of processing or objection, right of appeal, origin of your data and the existence of automated decision-making.
- Right to rectification (in accordance with Art. 16 GDPR): You can request the immediate correction of incorrect data or the completion of your stored data.
- Right to deletion (in accordance with Art. 17 GDPR): You can request the deletion of your stored data, unless processing is necessary to exercise the right to freedom of opinion, fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.
- Right to restrict processing (in accordance with Art. 18 GDPR): Under certain circumstances, you can request that the processing of your data be restricted.
- Right to data portability (in accordance with Art. 20 GDPR): You can request that the data you provide be transferred to another person responsible in a structured, common and machine-readable format.
- Right of objection (in accordance with Art. 21 GDPR): You can object to the processing of your data if this is based on Article 6 (1) (e) or (f) GDPR, unless there are compelling reasons worthy of protection.
- Right of withdrawal (in accordance with Article 7 (3) GDPR): You can withdraw your consent to the processing of personal data at any time.
- Right to lodge a complaint in accordance with (Art. 77 GDPR): You have the right to complain to a data protection supervisory authority about the processing of your personal data in our company.
8. Concluding remarks
8.1. Purpose-oriented data processing
Our actions are based on the principle of purpose-based use of data. All of the above data is processed exclusively for the purposes listed here.
8.2. Data protection
In order to protect your data from accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties (e.g. through TLS encryption for our website), we use appropriate technical and organizational security measures. These measures are constantly being improved to meet current technological standards, taking into account implementation costs, nature, scope, context and purpose of processing, and the existing risks of a data breach (including probability and impact) for the data subject. Detailed information is available on request at [email protected].
8.3. No automated decision making (including profiling)
We do not use your collected personal data for automated decision-making processes (including profiling) and do not intend to do so in the future.
8.4. Legal obligation to provide certain data
It could happen that we are subject to a specific legal or legal obligation to provide lawfully processed personal data to third parties, in particular public authorities (Art. 6 (1) (c) GDPR).
8.5. Voluntary provision of data
As a customer, you are generally not required by law or contract to provide us with your personal data. However, it is possible that we may only be able to provide certain offers to a limited extent or not at all if the necessary data is not provided.
For example, it is not possible to access the mappedin website or map without providing your IP address, which indicates where the server should send the requested data.
8.6. Validity and changes to this privacy policy
This privacy policy is effective as of March 11, 2024 and we reserve the right to change this privacy policy at any time in compliance with applicable data protection regulations. This may be necessary, for example, to comply with new legal provisions or to take account of changes to our website or new services on our website. The version available at the time of your visit applies. Should this privacy statement be amended, we intend to post changes to our privacy policy on this page so that you are fully aware of what personal data we collect, how we process it, and under what circumstances it may be shared.