The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to identify you personally. Detailed information on the subject of data protection can be found in our privacy policy listed below this text.
Who is responsible for data collection on this website?
Data processing on this website is carried out by the website operator. You can find the operator's contact details in the legal notice of this website.
How do we collect your data?
On the one hand, your data is collected when you provide it to us. This may, for example, be data that you enter in a contact form.
Other data is collected automatically or with your consent by our IT systems when you visit the website. This is primarily technical data (e.g. internet browser, operating system or time of page view). This data is collected automatically as soon as you enter this website.
What do we use your data for?
Some of the data is collected to ensure that the website is provided without errors. Other data can be used to analyze your user behavior.
What rights do you have with regard to your data?
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request the correction or deletion of this data. If you have given your consent to data processing, you can revoke this consent at any time for the future. You also have the right to request the restriction of the processing of your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
You can contact us at any time at the address given in the legal notice if you have further questions on the subject of data protection.
When you visit this website, your surfing behavior may be statistically evaluated. This is mainly done using cookies and so-called analysis programs.
Detailed information on these analysis programs can be found in the following privacy policy.
We collect information about how you use our products, for example what settings you make in your profile or how often you share your business card, as well as the time and frequency of use of our app. We use the information available to us to develop, test and improve our products. We do not sell your data to third parties.
Creation of digital backgroundsWe do not save the link destination or your name. We only save the following files for evaluation and product improvements:
With our application, you have the option of sharing the data you have entered about yourself with selected people via the Internet. You have the choice of which information you share. There are no mandatory fields when setting up a new digital business card. You are free to choose whether you want to share your e-mail address and/or your telephone number, for example. For your security, we assign an ID with 20 digits to each digital business card. This consists of the English alphabet in upper and lower case and the numbers 0-9, resulting in 62^20 possible combinations. Written out, this corresponds to the following number: 704423425546998022968330264616370176. The probability of guessing your ID or that of another user is close to 0 according to the probability calculation 1/62^20. Nevertheless, random guessing cannot be ruled out. In addition, our software is protected against brute force attacks, for example. Please be aware that by using our service you are making your data accessible to other people via the Internet in accordance with your profile details. When accessing your profile, you do not need to enter a password to view or save your data. As with the physical sharing of business cards, we have no control over whether a person with whom you have already shared your contact details passes on your data to other people. If you link your digital business card on your own website, this link can be indexed by Google, for example, which can result in your digital business card being found via Google. For example, if a search string such as onevcard is used. If you do not want this, please make the appropriate setting (noIndex) within your web hosting or refrain from including the link on your website. Alternatively, you can embed your personal QR code on your website instead to provide a similar service.
This website is hosted by an external service provider (hoster). The personal data collected on this website is stored on the hoster's servers. This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses and other data generated via a website.
The hoster is used for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f GDPR).
Our hoster will only process your data to the extent necessary to fulfill its performance obligations and follow our instructions with regard to this data.
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
When you use this website, various personal data is collected. Personal data is data that can be used to identify you personally. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) may be subject to security vulnerabilities. Complete protection of data against access by third parties is not possible.
The controller responsible for data processing on this website and the oneVcard application is:
oneVcard GmbH
Babenhäuser Street 37
63762 Großostheim
Phone: +49 174 3425745
E-Mail:onevcard
The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).
The data protection officer is Prof. Dr. Eberhard Schott,onevcard
Many data processing operations are only possible with your express consent. You can withdraw your consent at any time. All you need to do is send us an informal email. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
IF THE DATA PROCESSING IS BASED ON ART. 6 ABS. 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA, UNLESS WE CAN PROVE THAT THERE ARE COMPULSORY PROTECTIVE REASONS FOR THE PROCESSING, that outweigh your interests, rights and freedoms or the processing serves the assertion, exercise or defense of legal claims (objection pursuant to art. 21 PARA. 1 GDPR).
if your personal data is processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; THIS ALSO APPLIES TO PROFILING INSOFAR AS IT IS ASSOCIATED WITH SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR THE PURPOSE OF DIRECT ADVERTISING (OBJECTION PURSUANT TO ART. 21(2) GDPR).
In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, place of work or place of the alleged violation. The right to lodge a complaint is without prejudice to any other administrative or judicial remedies.
You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only take place if it is technically feasible.
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from http:// to https:// and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of the data processing and, if necessary, a right to correction or deletion of this data. You can contact us at any time at the address given in the legal notice if you have further questions on the subject of personal data.
You have the right to request the restriction of the processing of your personal data. To do so, you can contact us at any time at the address given in the legal notice. The right to restriction of processing exists in the following cases:
If you have restricted the processing of your personal data, this data may only be processed apart from its storage with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or of a Member State.
We hereby object to the use of contact data published as part of our obligation to provide a legal notice for the purpose of sending unsolicited advertising and information material. The operators of this website expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.
This website uses the translation service Weglot, registered at 138 rue Pierre Joigneaux, 92270 Bois-Colombes, France. Weglot is registered in the Nanterre Trade, company register no. 818 164 964.
Weglot is loaded when the website is called up, so that you can change the language to a language other than German using the language icon on our website. This enables a direct connection to be established between your browser and the Weglot server when you visit this website. Weglot then receives the information that you have visited this website with your IP address.
The data is stored and analyzed on the basis of Art. 6 para. 1 lit. f EU GDPR. The website operator has a legitimate interest in presenting a substantial part of its website in common languages for non-German-speaking visitors. If a corresponding consent has been requested (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a EU GDPR. Your consent can be revoked at any time. Further information on this can be found in Weglot's privacy policy: https://weglot.com/privacy/.
Our Internet pages use so-called cookies. Cookies are small text files and do not cause any damage to your end device. They are stored on your device either temporarily for the duration of a session (session cookies) or permanently (permanent cookies). Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your device until you delete them yourself or they are automatically deleted by your web browser.
In some cases, cookies from third-party companies may also be stored on your device when you visit our website (third-party cookies). These enable us or you to use certain services of the third-party company (e.g. cookies for processing payment services).
Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g. the shopping cart function or the display of videos). Other cookies are used to evaluate user behavior or display advertising.
Cookies that are required to carry out the electronic communication process (necessary cookies) or to provide certain functions that you have requested (functional cookies, e.g. for the shopping cart function) or to optimize the website (e.g. cookies to measure the web audience) are stored on the basis of Art. 6 para. 1 lit. f GDPR, unless another legal basis is specified. The website operator has a legitimate interest in the storage of cookies for the technically error-free and optimized provision of its services. If consent to the storage of cookies has been requested, the cookies in question are stored exclusively on the basis of this consent (Art. 6 para. 1 lit. a GDPR); consent can be revoked at any time.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be restricted.
If cookies are used by third-party companies or for analysis purposes, we will inform you about this separately in this privacy policy and, if necessary, request your consent.
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are
This data is not merged with other data sources.
This data is collected on the basis of Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website, for which purpose the server log files must be recorded.
When you place an order on this website, we automatically create a customer account with oneVcard.app for you so that you can use your digital business card. To do this, we collect personal data to improve our payment process and customer service. This may include the following information:
* Your billing and delivery address(es)
* Details of your orders
* E-mail address
* Name
* Phone number
We share this information with Versoly and ECWID so that they can provide us with website services. We may send you emails with messages about your order or account activity. For example, we may send you an email to let you know that:
* You have created a customer account
* The password for your customer account has been reset, created or updated
* You have made a purchase
* Your order has been shipped
* Guides for the initial setup of your purchased product
It is not possible to unsubscribe from these messages. We share your contact information with Make and Mailjet so that Mailjet can send these emails to you on our behalf.
If you contact us by e-mail, telephone or fax, we will store and process your request, including all personal data (name, request), for the purpose of processing your request. We will not pass on this data without your consent.
This data is processed on the basis of Art. 6 para. 1 lit. b GDPR if your request is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR) if this has been requested.
The data you send to us via contact requests will remain with us until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions, in particular statutory retention periods, remain unaffected.
This site uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.
For this purpose, the browser you are using must connect to Google's servers. This informs Google that this website has been accessed via your IP address. The use of Google WebFonts is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the uniform presentation of the typeface on its website. If a corresponding consent has been requested (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; the consent can be revoked at any time.
If your browser does not support web fonts, a standard font from your computer will be used.
Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google's privacy policy: https://policies.google.com/privacy?hl=de.
We use Google Analytics to analyze website usage. The data obtained from this is used to optimize our website and advertising measures. Google Analytics is a web analysis service operated and provided by Google Inc (1600 Amphitheatre Parkway, Mountain View, CA 94043, United States). Google processes the website usage data on our behalf and is contractually obliged to take measures to ensure the confidentiality of the processed data. The following data is recorded during your visit to the website:
This data is transferred to a Google server in the USA. Google complies with the data protection provisions of the "EU-US Privacy Shield" agreement. Google Analytics stores cookies in your web browser for a period of two years since your last visit. These cookies contain a randomly generated user ID with which you can be recognized on future website visits. The recorded data is stored together with the randomly generated user ID, which makes it possible to analyze pseudonymous user profiles. This user-related data is automatically deleted after 14 months. Other data remains stored in aggregated form indefinitely. If you do not agree with the collection of data, you can prevent this by installing the browser add-on to deactivate Google Analytics.
A web service of the company Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark (hereinafter: cookiebot.com) is loaded on our website. We use this data to ensure the full functionality of our website. In this context, your browser may transmit personal data to cookiebot.com. The legal basis for data processing is Art. 6 para. 1 lit. f GDPR. The legitimate interest lies in the error-free functioning of the website. The data will be deleted as soon as the purpose of its collection has been fulfilled. Further information on the handling of the transferred data can be found in cookiebot.com's privacy policy: https://www.cookiebot.com/de/privacy-policy/ You can prevent the collection and processing of your data by cookiebot.com by deactivating the execution of script code in your browser or by installing a script blocker in your browser.
Within our online offer, the so-called "Facebook pixel" of the social network Facebook, which is operated by Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA, or if you are based in the EU, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook"), is used.
With the help of the Facebook pixel, Facebook is able to determine you as a visitor to our online offer as a target group for the display of advertisements (so-called "Facebook ads"). Accordingly, we use the Facebook pixel to display the Facebook ads placed by us only to those Facebook users who have also shown an interest in our online offering or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited) that we transmit to Facebook (so-called "custom audiences"). With the help of the Facebook pixel, we also want to ensure that our Facebook ads correspond to the potential interest of users and are not annoying. With the help of the Facebook pixel, we can also track the effectiveness of Facebook ads for statistical and market research purposes by seeing whether users were redirected to our website after clicking on a Facebook ad (so-called "conversion").
- Privacy policy of Facebook
The processing of data by Facebook takes place within the framework of Facebook's data usage policy. Accordingly, general information on the display of Facebook ads can be found in Facebook's data usage policy. You can find specific information and details about the Facebook pixel and how it works in the Facebook help section.
- Basis
The use of the Facebook pixel and the storage of "conversion cookies" is based on Art. 6 para. 1 lit. a GDPR.
- Contract data processing agreement
We have concluded a contract data processing agreement with Facebook for the processing of data for which Facebook acts as a contract data processor, in which we oblige Facebook to protect our customers' data and not to pass it on to third parties.
- Objection
You can object to the collection by the Facebook pixel and use of your data to display Facebook ads. To set which types of ads are displayed to you within Facebook, you can go to the page set up by Facebook and follow the instructions on the settings for usage-based advertising. The settings are platform-independent, i.e. they are applied to all devices, such as desktop computers or mobile devices. You can also object to the use of cookies for reach measurement and advertising purposes via the deactivation page of the Network Advertising Initiative and additionally via the US website aboutads.info or the European website youronlinechoices.com.
You can find another opt-out option in our cookie statement.
We offer payment via Chargebee on our website. The provider of this payment service is Chargebee Inc. 340 S Lemon Avenue, #1537 Walnut, California 91789, USA (hereinafter referred to as "ChargeBee"). If you select payment via ChargeBee, the payment data you enter will be transmitted to ChargeBee. The transmission of your data to ChargeBee is based on Art. 6 para. 1 lit. a GDPR (consent) and Art. 6 para. 1 lit. b GDPR (processing for the performance of a contract). You have the option of withdrawing your consent to data processing at any time. A revocation does not affect the effectiveness of data processing operations in the past.
Our website uses the SAAS e-commerce plugins from ECWID to implement the shopping cart and checkout. The operator of the plugin is ECWID Inc, 144 West D Street, Suite 103, Encinitas, CA92024 USA (hereinafter referred to as ECWID). When you place orders or use services via the ECWID shopping cart, the order data and personal data are stored on the servers of our partner ECWID. The data protection provisions of ECWID apply. You can find them here: https://www.ecwid.com/eu-privacy-policy
On our website we offer, among other things, payment via PayPal. The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter referred to as "PayPal"). If you select payment via PayPal, the payment data you enter will be transmitted to PayPal. The transmission of your data to PayPal is based on Art. 6 para. 1 lit. a GDPR (consent) and Art. 6 para. 1 lit. b GDPR (processing for the performance of a contract). You have the option of withdrawing your consent to data processing at any time. A revocation does not affect the effectiveness of data processing operations in the past.
On our website we offer payment via Stripe, among others. The provider of this payment service is Stripe Payments Europe, Ltd., a private limited company organized under the laws of Ireland with company number 513174 and offices at The One Building, 1 Grand Canal Street Lower, Dublin 2, Ireland (hereinafter "Stripe"). If you select payment via Stripe, the payment data you enter will be transmitted to Stripe. The transmission of your data to Stripe is based on Art. 6 para. 1 lit. a GDPR (consent) and Art. 6 para. 1 lit. b GDPR (processing for the performance of a contract). You have the option of withdrawing your consent to data processing at any time. A revocation does not affect the effectiveness of data processing operations in the past.
If you would like to receive the newsletter offered on the website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. No further data is collected, or only on a voluntary basis. We use the newsletter service providers described below to process the newsletter. Mailjet This website uses Mailjet to send newsletters. The provider is Mailjet SAS (Global HQ). Office and postal address Paris: 13-13 bis, rue de l'Aubrac, 75012 Paris, France. Mailjet Ltd. Mailjet is a service with which, among other things, the sending of newsletters can be organized and analyzed. The data you enter for the purpose of subscribing to the newsletter is stored on Mailjet's servers. Data analysis by Mailjet With the help of Mailjet, we are able to analyze our newsletter campaigns. For example, we can see whether a newsletter message has been opened and which links have been clicked on. In this way, we can determine, among other things, which links were clicked on particularly often. We can also see whether certain previously defined actions were carried out after opening/clicking (conversion rate). For example, we can recognize whether you have made a purchase after clicking on the newsletter. Mailjet also enables us to divide newsletter recipients into different categories ("clustering"). The newsletter recipients can be subdivided according to age, gender or place of residence, for example. In this way, the newsletters can be better adapted to the respective target groups. If you do not wish to be analyzed by Mailjet, you must unsubscribe from the newsletter. We provide a link for this purpose in every newsletter message. Detailed information on the functions of Mailjet can be found at the following link: https://www.mailjet.de/funktion/. You can find Mailjet's privacy policy at: https://www.mailjet.de/sicherheit-datenschutz/. Legal basis Data processing is based on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time. Data stored by us for other purposes remains unaffected by this. After you unsubscribe from the newsletter distribution list, your e-mail address may be stored by us or the newsletter service provider in a blacklist if this is necessary to prevent future mailings. The data from the blacklist will only be used for this purpose and will not be merged with other data. This serves both your interest and our interest in complying with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR). Storage in the blacklist is not limited in time. You can object to the storage if your interests outweigh our legitimate interest. Order processing We have concluded an order processing contract (AVV) with the above-mentioned provider. This is a contract prescribed by data protection law, which ensures that the provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.
To integrate various databases and web tools, we use "Make", a service provided by Celonis SE, Theresienstr. 680333, Munich, Germany. We have a contract with Celonis for order processing in accordance with Art. 28 GDPR. Further information on data protection at Make can be found at https://www.make.com/en/privacy-notice.
When contacting us via a contact form on our website, the data you enter in an input mask is transmitted to us and stored. The following data is collected as part of the process of requesting documents
1. first name
2. surname
3. e-mail address
4. request
As soon as the data is no longer required to achieve the purpose for which it was collected, the data is deleted. For the download of reports, the e-mail address is compared with the data of the newsletter subscribers. This information is stored in the cookies for up to 30 days.
We use HubSpot for ticketing and marketing activities on our website. HubSpot is a software company from the USA with a branch office HubSpot Ireland Limited in 2nd Floor 30 North Wall Quay, Dublin 1, Ireland. We use this integrated software solution for our own marketing, lead generation and customer service. This includes email marketing, which regulates the sending of newsletters and automated mailings, social media publishing and reporting, contact management such as user segmentation and CRM, landing pages and contact forms.HubSpot uses cookies, small text files that are stored locally in the cache of your web browser on your end device and enable us to analyze your use of the website. HubSpot evaluates the information collected (e.g. IP address, geographical location, type of browser, duration of the visit and pages accessed) on our behalf so that we can generate reports on the visit and the pages visited.information collected by HubSpot and the content of our website are stored on the servers of HubSpot's service providers. If you have given your consent to this in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, the processing on this website is carried out for the purpose of website analysis and, since personal data is transferred to the USA, further protective mechanisms are required to ensure the level of data protection required by the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 para. 2 lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we will endeavor to obtain additional regulations and assurances from the recipient in the USA.the data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected.you can permanently object to the collection of data by HubSpot and the setting of cookies by preventing the storage of cookies through your browser settings accordingly. You can object to the processing of your personal data at any time with effect for the future.
If you use the messenger service web-based or have downloaded it to your mobile device, the provider of WhatsApp Business is responsible for data processing. However, it is only necessary to access this app if you wish to contact or communicate with us using this service.
We would like to point out that the security of individual services depends on the user's account settings. Communication takes place via end-to-end encryption (peer-to-peer), which prevents WhatsApp or other third parties from gaining access to the communication content. However, WhatsApp receives access to metadata that is created in the course of the communication process (e.g. sender, recipient and time). We would also like to point out that WhatsApp states that it shares personal data of its users with its parent company Facebook, which is based in the USA.
At this point, we would like to clearly point out that in addition to the WhatsApp messenger service, other communication channels such as email, telephone or a contact form on the homepage are also available for you to contact us.
You can access further information on data processing by the messenger service provider WhatsApp via the following link: https://www.whatsapp.com/privacy
Due to the rapidly changing communication channels and opportunities to reach target groups, we have expanded our offering in order to increase our reach and consolidate the flow of communication. This includes an uncomplicated exchange of information with our customers.
For these purposes, we use the WhatsApp Business messenger service, among others. In doing so, we process your personal data.
2.2 Legal basis for the processing of personal dataThe messenger service is used to communicate easily and directly with our customers and the users of our services. This communication ensures faster and easier coordination between the parties and complements the usual communication channels.
The messenger service is used voluntarily by customers/users on the basis of our legitimate interests pursuant to Art. 6 (1) (f) GDPR.
If you contact us via the messenger service, we process your data to the extent necessary to fulfill the purpose of the request. This is done on the basis of your consent in accordance with Art. 6 para. 1 sentence 1 lit. a) GDPR and in the case of contractual or pre-contractual initiation, in accordance with Art. 6 para. 1 lit. b) GDPR.
If personal data of an employee is processed for operational purposes with the help of the measuring service, this is also done on the basis of consent in accordance with Art. 6 para. 1 sentence 1 lit. a) GDPR.
2.3 Categories of personal dataDifferent categories of data are processed when you use the messenger service. The scope of this data depends largely on the information you provide in the message. This may include the following data categories, for example: Name/address data: Surname, first name, address Contact data: E-mail address, telephone number, mobile phone number Content data: Texts, photographs, videos, files In addition, the following data categories are processed or collected directly by the WhatsApp Business messenger service: Usage data (access times, interests) Meta and communication data (device information, IP address) You can find detailed information on this in the WhatsApp Business privacy policy: https://www.whatsapp.com/privacy
2.3.1 Automated decision making and profiling.No automated decision-making processes pursuant to Art. 22 GDPR are used.
Your data will be forwarded within our company to the departments that are necessary to fulfill the above-mentioned purposes. Personal data relating to the processing of your inquiry will not be passed on to third parties unless they are intended to be passed on.
The provider of the WhatsApp Business messenger service necessarily obtains knowledge of the above data.
WhatsApp Business is a service provided by a provider from the USA. The processing of personal data therefore takes place in a third country We have concluded an order processing contract with the provider WhatsApp Business that meets the requirements of Art. 28 GDPR. An adequate level of data protection pursuant to Art. 44 et seq. GDPR is guaranteed by the EU-U.S. Privacy Shield and by the conclusion of the so-called EU standard data protection clauses. You can find details here: https://www.whatsapp.com/legal/business-data-transfer-addendum
Your personal data will be deleted as soon as it is no longer required for the purpose of processing and no statutory retention periods need to be taken into account. There is a requirement for further storage if the data is still required for contractual fulfillment, warranty and guarantee claims.
You have the right to information about your data processed by us at any time. You can contact us at any time with a written request. In the case of requests for information that are not in writing, we require an identification document (identity card, passport) for identification purposes. Furthermore, you have the right to rectification, erasure or restriction of processing, insofar as you are legally entitled to do so. You can exercise your right to object to processing at any time within the scope of the legal requirements. Please address such an objection to the data protection officer atonevcard. The right to data portability also exists within the framework of the data protection regulations. You have the right to lodge a complaint with a supervisory authority. The data protection authority responsible for us is
The Bavarian Commissioner for Data Protection and Freedom of Information