Data Policy

4 June, 2020

Here, you can find out what data we collect when you visit our website and how we use this data. If you have any questions about our data protection policy or your rights, please contact us at [email protected]. We process all correspondence confidentially and delete it after an appropriate time period.

1. Web server log files

When visiting this website, the following data will be stored automatically in a log file on the web server (computer that provides this website):

  • Address of the website retrieved (URL)
  • Time of the page request
  • Quantity of data sent in bytes
  • Source (link) from which the website was reached
  • Browser type
  • System software
  • IP address (anonymised)
     

The data collected will be stored for 30 days in order to be viewed in case of malfunctions or illegitimate use.
 

2. Cookies

When you access a website, cookies (small text files) are placed locally on your computer’s browser. Every time a page is requested, the information from the cookies is transferred from the browser to the website and back again. As such, settings can be stored for more than one website and your browser can be recognised the next time you visit the website. In addition to cookies, there are lots of other pieces of data stored locally to increase the website’s performance, such as image files in your browser cache. The cookies stored contain information relating to your use or determine whether third-party providers can take measures to allow the collection of information.

2.1 Website cookies

  • CRAFT_CSFR _TOKEN (valid for 1 session)
    Stores a digital key (a “token”) to protect against attacks when transferring forms or calling up pages with AJAX

3. Cloudflare

We use the services of **Cloudflare Inc., 101 Townsend St., San Francisco, CA 94107, USA, to ensure the secure and efficient delivery of our website.

Cloudflare operates a globally distributed Content Delivery Network (CDN) and acts as a reverse proxy. This means that data traffic between your device and our website is routed through Cloudflare’s servers. This allows us to improve loading times and protect our website against attacks (e.g. DDoS attacks).

In this context, personal data such as your IP address and technical connection data may be processed.

The processing is based on our legitimate interest in providing a secure, stable, and efficient online service, in particular protection against attacks and optimization of loading times, in accordance with Art. 6(1)(f) GDPR.

Cloudflare is based in the United States. Therefore, a transfer of personal data to a third country may occur. Cloudflare uses appropriate safeguards in accordance with the GDPR, in particular standard contractual clauses pursuant to Art. 46 GDPR.

For more information, please refer to:

https://www.cloudflare.com/privacypolicy/
https://www.cloudflare.com/de-de/trust-hub/gdpr/