Privacy Policy
EBK Krüger GmbH & Co. KG
As of 08/2024
-
Privacy policy for our website
We are pleased that you have visited our website and would like to inform you as comprehensively as possible about the associated processing of your data.
When you visit our website, personal data is collected from you. This is data that is required so that you can use our website or that enables us to take your settings into account. It may also be information that you provide to us yourself via the contact options offered on these pages.
We use this data to ensure the proper operation and all functionalities of our website and to answer your inquiries.
Below we will inform you about which data is collected on our website and for what purposes it is processed. You will also receive information about your rights and contact details from us and our data protection officer.
2. Person responsible and data protection officer
This privacy policy applies to the website of:
EBK Krüger GmbH & Co. KG
Gross-Berliner Damm 99
12487 Berlin
You can contact our data protection officer as follows:
Data protection 24
Sovestro GmbH
Joerg Hoffmann
On Channel 10
14467 Potsdam
eMail: data protection@ebk-gruppe.com
You have the right to contact our data protection officer at any time, free of charge and, if requested, confidentially, to assist you in enforcing your data protection rights.
3. Purposes and legal bases of data processing, processors, transfer to third parties in third countries. We only use the personal data you provide to us for the purposes for which it is intended.
The legal basis for processing your data can be in particular
• your consent in accordance with Art. 6 Para. 1 lit. a GDPR, for example by agreeing to the use of cookies or web analysis,
• the initiation and processing of contracts in accordance with Art. 6 Para. 1 lit. b GDPR, for example if you contact us via the form,
• our legitimate interest in accordance with Art. 6 Para. 1 lit. f GDPR, for example in the context of public relations work, securing the necessary functionalities of the website, IT and internet security, quality assurance, fraud prevention and prosecution of criminal offenses.
If you have given us consent for a specific purpose, you can revoke it at any time without giving any formalities.
Personal data will only be transferred to state institutions and authorities on the basis of mandatory national legal provisions.
The people we commission to process the data are obliged to maintain confidentiality and to process the data lawfully. If your personal data is further processed for a purpose other than the original one, we will notify you accordingly.
We use the support of external service providers (contract processors) for certain technical processes relating to data analysis, processing and/or storage. Both we and the contract processor are obliged to comply with the technical and organizational measures pursuant to Art. 32 GDPR and the external service provider is also obliged to maintain confidentiality. Processing is carried out exclusively on our behalf and on our instructions. Any processing of your personal data beyond this contract data processing is only carried out with your explicit consent or in cases ordered by law and by the authorities or courts.
Data is only transferred to third countries (countries outside the European Economic Area - EEA) if this is necessary to fulfill the contract, is required by law, you have given your consent to the data processing or is necessary to ensure various functionalities on the website. We will inform you separately of the details if required by law.
4. Duration of data storage
In connection with the purely informational use of our homepage, we store the data that your browser transmits to our server for the period necessary to resolve faults or error messages. Deletion usually takes place within 7 days after the end of the internet connection.
Other deletion periods depend on your use of the website.
If you contact us with a request using our contact options, we store your collected personal data from the time of collection. The data collected in this way is stored by us for the duration of our business relationship, which includes the initiation and processing of a contract. In addition, we are subject to various retention and documentation obligations that arise, among other things, from the German Commercial Code (HGB), the German Fiscal Code (AO) or other tax law. The retention periods prescribed there are up to ten years after the end of the year in which the contractual relationship was terminated. Finally, the storage period is assessed with regard to the possibility of defending against legal claims and proving the fulfillment of data protection obligations, also according to the statutory limitation periods, which according to Sections 195 ff. of the German Civil Code (BGB) are usually 3 years from the end of the year in which the data was created.
In the event of further deletion periods, you will be informed later in the data protection declaration.
5. Further data protection information
Please also note our special data protection information for applicants.
Rights of those affected (information for those affected according to Chapter 3 GDPR)
You have the following rights of those affected:
• the right to information according to Art. 15 GDPR,
• the right to rectification according to Art. 16 GDPR,
• the right to erasure according to Art. 17 GDPR,
• the right to restrict the processing of personal data according to Art. 18 GDPR,
• the right to data portability according to Art. 20 GDPR and
• the right to object to the processing of personal data according to Art. 21 GDPR.
In addition, according to Art. 77 GDPR, you have the right to lodge a complaint with a data protection authority. The complaint can be lodged with the data protection authority of the country in which you are resident or work or in which the alleged violation occurred. If the data protection authority of another member state is responsible for the body you are complaining about, the national data protection authority will coordinate with the other data protection authority. You can find an overview here:
www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
The supervisory authority responsible for us is
Berlin Commissioner for Data Protection and Freedom of Information
Alt-Moabit 59-61
10555 Berlin
6. Functionality and presentation of the website
6.1. Cookies
We use cookies. Cookies are text files that are stored on a computer system via an Internet browser.
Cookies contain a so-called cookie ID. A cookie ID is a unique identifier for the cookie. It consists of a character string that can be used to assign Internet pages and servers to the specific Internet browser in which the cookie was stored. This enables the websites and servers visited to distinguish your individual browser from other internet browsers that contain other cookies. A specific internet browser can be recognized and identified via the unique cookie ID.
By using cookies, we can provide users of this website with more user-friendly services. Information and offers on our website can be optimized for the user, for example by recognizing the user of the website. This means that access data does not have to be entered again every time the website is visited, as this is done by the website and the cookie stored on the user's computer system.
However, a distinction must be made when using cookies with regard to different purposes. Insofar as these small files are absolutely necessary in order to display the website correctly, their use is not voluntary. The legal basis for the integration of cookies in this case is Art. 6 (1) lit.f GDPR.
In addition, cookies are also used on the website for the purpose of analyzing user behavior or for marketing purposes. However, this use only takes place if you have given us your consent in accordance with Art. 6 (1) lit. a GDPR when you first accessed the website. However, you can prevent our website from setting cookies at any time by making the appropriate settings in the Internet browser you are using, thereby permanently objecting to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time using an Internet browser or other software programs. This is possible in all common Internet browsers. If the setting of cookies is deactivated in the Internet browser you are using, not all functions of our website may be fully usable.
Below we have put together links where you can find detailed information on deactivating cookies in common browsers:
• Mozilla Firefox: URL
• Internet Explorer: URL
• Google Chrome: URL
• Safari: URL
6.2. Server log files
The provider of our website automatically collects and stores information in so-called server log files, which are automatically transmitted to us by your browser. The following can be recorded:
• browser types and versions used,
• the operating system used by the accessing system,
• the website from which an accessing system reaches our website (so-called referrers),
• sub-websites that are accessed via an accessing system on our website,
• the date and time of access to the website,
• an Internet protocol address (IP address),
• the Internet service provider of the accessing system and
• other data and information that serve to avert danger in the event of attacks on our information technology systems.
When using this general data and information, we do not draw any conclusions about you. Rather, this information is required in order to
• correctly deliver the contents of our website,
• optimize the contents of our website and the advertising for it,
• ensure the long-term functionality of our information technology systems and the technology of our website and
• to provide law enforcement authorities with the information necessary for criminal prosecution in the event of a cyber attack. We therefore evaluate these data and information statistically and with the aim of increasing data protection and data security in our company in order to ultimately ensure an optimal level of protection for the personal data we process. The processing is carried out within the scope of our legitimate interest in accordance with Art. 6 (1) f GDPR
. The anonymous data in the server log files are stored separately from all of the personal data you provide. This data is not merged with other data sources. However, if there are indications of illegal use of our website, we are able to subsequently review this data.
7. Communication
7. 1. Online application form
We have provided the option of applying online on the website. The applicant can actively enter the data into the integrated application form. There is also the option of uploading documents.
We collect and process the personal data of applicants for the purpose of processing the application process and initiating a contract in accordance with Art. 6 (1) (b) GDPR in conjunction with Section 26 BDSG.
If an employment contract is concluded with an applicant, the transmitted data is stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If we do not conclude an employment contract with the applicant, the application documents will be automatically deleted six months after the rejection decision is announced, provided that there are no other legitimate interests on our part that conflict with deletion.
Another legitimate interest in this sense is, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG). If applicants and employers are interested in being included in an applicant pool and therefore in storing the data for a longer period of time, the applicant's consent is required. In this case, the applicant will be informed of the company's data protection declaration and the company's special provisions for applicant data protection. A written declaration of consent to data processing for the purpose of the application will then be obtained to ensure verifiability and the applicant will be informed of the possibility of revoking consent at any time with effect for the future.
We use an external service provider (contract processor) for this technical process. Both we and the contract processor are obliged to comply with the technical and organizational measures in accordance with Art. 32 GDPR and the external service provider is also obliged to maintain confidentiality. Processing is carried out exclusively on our behalf and on our instructions.
7.2 Data protection information for applicants:
If you are interested in a job in our company, you have the option of applying to us by email, post or via our social media channels and submitting your application documents. You can find corresponding job offers on our website.
During the application process, you may provide us with very personal information about yourself. In this context, the data that you provide to us in your application letter will be processed. We generally collect your personal data in direct contact with you as listed below. In addition, and to the extent that it is necessary for the assessment of your application, we may process data lawfully received from other bodies or from other third parties or publicly accessible sources.
We process your data if this is necessary for the implementation of a pre-contractual measure for the purpose of processing the application process in accordance with Art. 6 (1) b GDPR in conjunction with Section 26 BDSG. This includes checking and assessing your suitability for the position to be filled, assessing performance and behavior to the extent permitted by law, drawing up an employment contract if necessary, and conducting pre-contractual or contract-related communication (including making appointments) with you.
For the purposes mentioned, we regularly process the following personal data: title/gender, address data, personal data (name, date of birth), home address, professional activities/current job, nationality, professional qualifications/professional experience, references, start/end of an employment relationship.
The data is required for the proper conduct of the selection process. If you do not provide us with the information, we may not be able to consider your application. There is no legal obligation to provide the data.
If an employment contract is concluded with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with the legal regulations. If we do not conclude an employment contract with the applicant, the application documents will be automatically deleted six months after notification of the rejection decision, unless deletion is otherwise conflict with our legitimate interests. Other legitimate interests in this sense include, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).
In addition, we process your data if you have given us your consent in accordance with Art. 6 (1) a GDPR or Art. 9 (2) a GDPR. You can give your consent to obtain references from previous employers and to store your application in an applicant pool for later vacancies for a longer period.
If necessary, we will obtain your consent to data processing separately. You can revoke your consent at any time with effect for the future. The revocation of the consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.
If a life-threatening emergency occurs and you require medical assistance, we base the processing of your data on Art. 6 (1) lit. d GDPR in order to protect your vital interests. This includes in particular the passing on of relevant data to paramedics, doctors or other rescue workers.
If necessary, data processing is carried out in our legitimate interest in accordance with Art. 6 (1) (f) GDPR. Our legitimate interest in data processing is fraud prevention; measures to ensure and improve the security of IT systems; measures to protect our company from illegal activities; assertion of claims for damages; internal administrative purposes, in particular exchange within our company; assertion of legal claims and defense in legal disputes - if necessary, forwarding to legal representatives working for us; ensuring uniform applicant management and uniform quality standards within our company
No automatic evaluation systems are used when processing data in our company.
The data we collect is also transmitted to other recipients and third parties in compliance with legal regulations. These are internal recipients such as the management and department heads. These are also external recipients such as external data processors for data protection-compliant document destruction; to ensure IT in terms of functionality, maintenance and security; our own legal representatives in the event of a legal dispute; tax authorities; tax advisors.
8. Contact and contact form
Our website contains information that enables quick electronic contact with our company and direct communication with us, which also includes a general address for so-called electronic mail (email address).
We have also integrated a contact form that you can use to contact us. You have the option of providing your title, first name, last name and telephone number on a voluntary basis. However, in order to communicate with us, it is imperative that you include your email address and your specific request in the message.
If you contact us by email or via the contact form, the personal data you provide will be saved automatically. Such personal data provided on a voluntary basis will be saved for the purposes of processing or contacting you. This personal data will not be passed on to third parties.
The transmission of data via the contact form is voluntary and takes place in accordance with Art. 6 Para. 1 lit. a) GDPR. If processing is necessary for the performance of a contract or in the context of carrying out a pre-contractual measure, data processing takes place in accordance with Art. 6 Paragraph 1 Letter b) GDPR.
We use an external service provider (contract processor) for this technical process. Both we and the contract processor are obliged to comply with the technical and organizational measures in accordance with Art. 32 GDPR and the external service provider is also obliged to maintain confidentiality. Processing takes place exclusively on our behalf and on our instructions
9. Social media (LinkedIn)
9.1. Use of social media plugins
The website also uses the integration of the social media platform LinkedIn LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland. This platform sometimes contains buttons and plugins that transfer data to the operators of the respective network platform when the page is loaded, i.e. without any further activity on the part of the user.
Insight data analysis
The Conference of the Independent Data Protection Authorities of the Federal and State Governments (Data Protection Conference - DSK) has pointed out that LinkedIn is obliged to obtain effective consent to the use of data from all visitors to the LinkedIn page. The operators of a LinkedIn fan page, on the other hand, are obliged to obtain the necessary information about the use of data from LinkedIn.
When you visit our LinkedIn page, LinkedIn collects personal data of users within the scope and extent of its responsibility. Such data collection by LinkedIn can also occur from visitors to this website who are not logged in to LinkedIn or registered as members. Information about the data collection and further processing by LinkedIn as well as information about the implementation of your rights and decision-making options can be found in LinkedIn's privacy policy.
https://de.linkedin.com/legal/privacy-policy
By using the LinkedIn platform, we assume no responsibility for the processing of personal data and its transmission outside the European Union, in particular no responsibility for the implementation of the rights of those affected and the effectiveness of the consent.
We have no influence on the scope and no full access to the data collected or your profile data. You decide which information we receive within the scope of LinkedIn's exclusive responsibility with your LinkedIn settings or your browser settings when visiting a publicly accessible page. In addition, you have the option in your LinkedIn settings to actively hide your "likes" or to stop following the fan page. Then your profile will no longer appear in the list of fans of this fan page.
We receive anonymous statistics from LinkedIn on the use and utilization of the fan page. The following information is provided here, for example (so-called insight data):
• Followers: Number of people who follow our fan page - including growth and development over a defined time frame
• Reach: Number of people who see a specific post on our fan page and number of interactions on a post
• Ad performance: Number of people who have seen an ad
• Demographics: Average age of visitors, gender, place of residence, language
We use these statistics, from which we cannot draw any conclusions about individual users, to constantly improve our online offering on LinkedIn and to better respond to the interests of our users. We cannot link the statistical data with the profile data of our fans. You can use your LinkedIn settings to decide in what form targeted advertising is displayed to you.
We have entered into an agreement with LinkedIn regarding the processing of personal data between joint controllers in accordance with Article 26 GDPR.
Accordingly, LinkedIn is the sole controller for the processing of Insight data. In this regard, LinkedIn is responsible for fulfilling information obligations in accordance with Articles 12 and 13 GDPR, for exercising the rights of data subjects in accordance with Articles 15 to 22 GDPR, for data security and also for the responsibility for reporting data protection violations (Articles 32 to 34 GDPR). LinkedIn remains the sole controller for the processing of other personal data.
We receive personal data via LinkedIn if you actively communicate it to us via a personal message on LinkedIn or if you use a form to transmit the data to us and actively send the data to us by clicking on a button. We use the data you provide (e.g. first name, last name) to answer your request if this is necessary.
10. Analysis tools
Google Tag Manager
We have integrated the Google Tag Manager component on our pages, which allows website tags to be managed via an interface. This ensures that other tags are triggered. We would like to point out that the triggered tags may in turn collect data that is not used by the Tag Manager.
The data processing on our website by Google takes place with your express consent in accordance with Art. 6 Para. 1 lit. a) GDPR via the consent banner we use. The following data is processed by Google based on this component: mouse movement, time, IP address, location, visitor behavior, browser, tracking media, website visited, time zone.
The operating company is Google LLC; 1600 Amphitheatre Parkway; Mountain View, CA 94043; USA, represented in the EU by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland.
According to COMMISSION IMPLEMENTING DECISION (EU) 2021/914 of 4 June 2021 on standard contractual clauses for the transfer of personal data to third countries under Regulation (EU) 2016/679 of the European Parliament and of the Council, data transfer to the USA is based on standard contractual clauses, see here business.safety.google/gdprcontrollerterms/ and here business.safety.google/gdprcontrollerterms/sccs/.
For more information and Google's applicable privacy policy, see policies.google.com/privacy and policies.google.com/terms.
11. Online marketing
Google Ads Conversion Tracking
Our website uses Google Conversion Tracking for advertising measures through Google Ads to promote our offers and attract the attention of potential customers and interested parties. Data processing by Google on our website takes place with your prior consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke your consent at any time.
The operating company is Google LLC; 1600 Amphitheatre Parkway; Mountain View, CA 94043; USA, represented in the EU by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland.
According to COMMISSION IMPLEMENTING DECISION (EU) 2021/914 of 4 June 2021 on standard contractual clauses for the transfer of personal data to third countries under Regulation (EU) 2016/679 of the European Parliament and of the Council, data transfer to the USA is based on standard contractual clauses, see here business.safety.google/gdprcontrollerterms/ and here business.safety.google/gdprcontrollerterms/sccs/.
Google Ads is an internet advertising service that allows advertisers to place ads both in Google's search engine results and in the Google advertising network. Google Ads allows an advertiser to pre-define certain keywords that will only display an ad in Google's search engine results when the user uses the search engine to retrieve a keyword-relevant search result. In the Google advertising network, the ads are distributed on topic-relevant websites using an automatic algorithm and taking into account the previously defined keywords.
If you access our website via a Google ad, Google will store a so-called conversion cookie on your system. A conversion cookie expires after thirty days and is not used to identify you. The conversion cookie is used, provided the cookie has not yet expired, to track whether certain subpages, such as the shopping cart of an online shop system, have been accessed on our website. The conversion cookie enables both us and Google to track whether you accessed our website via an Ads ad and generated sales, i.e. whether you completed or canceled a purchase.
The data and information collected through the use of the conversion cookie are used by Google to create visit statistics for our website. We use these visit statistics to determine the total number of users who were referred to us via Ads ads, i.e. to determine the success or failure of the respective Ads ad and to optimize our Ads ads for the future. Neither our company nor other Google Ads advertisers receive information from Google that could be used to identify you.
The conversion cookie is used to store personal information, such as the websites you visit. Each time you visit our website, personal data, including your IP address, is transferred to Google. This personal data is stored by Google.
You can find more information and Google's applicable data protection regulations at policies.google.com/privacy and policies.google.com/terms.
You can prevent cookies from being set at any time by making the appropriate settings in the Internet browser you are using, thereby permanently objecting to the setting of cookies. To do this, you can generally deactivate the automatic setting of cookies or specifically block cookies from the domain googleleadservices.com.
Furthermore, the data subject has the option of objecting to interest-based advertising by Google. To do so, please use the following link: adssettings.google.com/.
Information on the use of Google services in the so-called Consent Mode v2 (CMv2) from March 6, 2024
Below, we explain how your personal data is processed in connection with Google Consent Mode V2 (CMv2). CMv2 is a tool from Google that enables website operators to manage users' consent to the use of cookies and other tracking technologies.
The data processed as part of CMv2 is used to:
• Manage your consent decisions
• Offer you a personalized user experience
• Improve the performance of CMv2
The following data is processed as part of CMv2:
• Your IP address: This is used to determine your approximate location
ndort and to check the validity of your consent.
• Your browser type and operating system version: This information is used to ensure that CMv2 is compatible with your device.
• The URL of the website you are visiting: This information is used to determine which cookies should be set on the website.
• Your consent decisions: This information is stored to record whether you have consented to the use of cookies and other tracking technologies.
The data processed as part of CMv2 is stored for a period of 13 months.
As a website operator, we are a customer of Google Ireland Limited Gordon House, Barrow Street Dublin 4. Ireland. Google acts as our data processor for Google Analytics. This is set out, among other things, in the data processing conditions for Google Ads
( https://support.google.com/analytics/answer/3379636?hl=de ).
Google Analytics is also considered a data processor within the meaning of the GDPR, as Google Analytics collects and processes personal data on our behalf and in accordance with our instructions. We are data controllers who can exercise all rights relating to the collection, access, storage and deletion of our customer data at any time. The use of data by Google is subject to the terms of the respective contracts between Google Analytics and us as customers, as well as the settings that we make via the product's user interface.
The Google CMv2 is primarily used to control Google tags that are used to display the individual Google services. It makes it possible to adapt these tags depending on whether or not consent has been given for Google cookies/tools via the consent banner (cookie banner). Google provides an overview of the two variants of Consent Mode here and here.
Google tags for the following products have built-in consent checks and adapt functionality based on consent status:
• Google Tag
• Google Analytics
• Google Ads*
• Floodlight
• Conversion Link
* supports conversion tracking and segments with self-collected data; support for call conversions pending.
Basically, there are two integration options:
• Basic Mode:
When consent is given to Google services via the Consent Tool, the Google tags are controlled directly, the Consent Mode APIs are executed and the corresponding cookies are set.
The tags send the consent statuses to Google in the following order:
1. Standard status for consent
2. Updated statuses for consent
If you as a user do not give consent, no data is transferred to Google - not even the consent status. The triggering of Google tags is completely blocked. In this case, the conversion modeling for the consent mode in Google Ads is based on a general model.
If all services are rejected, the Google tags are blocked. However, in Basic Mode, users' IP addresses can be transferred to Google (more information here). The IP addresses are shortened immediately after collection or only transmitted and stored in an anonymized form.
Advanced Mode (extended consent mode):
The advanced implementation enables us to carry out better data modeling compared to the simple implementation.
When using Advanced Mode - even if all Google services are rejected in the consent banner - so-called pings from Google are used to record user activities (information on the device type, user country, browser and conversion data).
Google tags are loaded when a user visits the website or opens the app.
The Consent Mode APIs are loaded via the tags and the following is done:
1. Setting the default status for consent. If no individual settings have been specified, consent is refused by default.
Even if consent is refused, pings without cookies are sent via the Google tags.
2. Wait for a user's consent decision and update the consent status:
The complete measurement data is only transmitted via Google tags if the user gives his consent to the data collection. Further information
As this includes information that is stored in the user's device, the legal basis is Section 25 Paragraph 1 TTDDG and consent is therefore required for access and transmission of this information. This applies regardless of whether it is personal data or not.
The Google CMv2 is, as already mentioned, primarily used for data collection.
creation of Google tags through which the individual Google services are displayed. It enables these tags to be adapted depending on whether consent for Google cookies/tools has been given via the consent banner (cookie banner) or not.
12. Content Management System (CMS)
As a visitor to our website, we inform you about the use of WIX
We use the Wix website builder from the Israeli company Wix.com Ltd., 40 Hanamal Tel Aviv St., Tel Aviv 6350671, Israel for our website. In addition to the headquarters in Tel Aviv, there are other company offices such as in Berlin, Dublin, Vancouver and New York. By using Wix, personal data can also be collected, stored and processed from you. Below we would like to explain to you why we use Wix, which data is stored where and how you can prevent this data storage. Wix is a website builder that makes it very easy to create HTML5 websites and mobile-responsive websites. The WIX online platform is based on the cloud principle.
Why do we use WIX?
With its modular principle, WIX offers an easy-to-use system that makes our work on the website easier. This allows us to focus on the content and simply publish it on the website.
What data does WIX process?
Various data is processed during your visit. Technical user information includes browser activity, clickstream activities, session heatmaps and data about your device, operating system, browser, screen resolution, language and keyboard settings, Internet provider and the date of the page visit.
Personal data is also collected. This is primarily contact information (email address or telephone number, if you provide it), IP address or your geographical location. Tracking systems such as cookies are used to collect data about your behavior on our website. For example, it records which subpages you particularly like, how long you spend on individual pages, when you leave a page again (bounce rate) or which presets you have made (e.g. language selection). Based on this data, Wix.com can also better adapt marketing measures to your interests and user behavior. When you visit again, our website will be displayed to you as you have previously configured it. Wix.com can also pass on personal data to third parties (such as service providers).
Below we show you examples of cookies that are used by Wix:
Name: XSRF-TOKEN
Value: 1591628008|P01ovn-JtsrK
Purpose: This cookie is a security cookie and prevents so-called cross-site request forgery. This is an attack on a computer system.
Expiry date: after end of session
Name: _wixCIDX
Value: b2474394-b64f-4c7a-a598-16b9043a8938133135809-9
Purpose: This cookie enables you to log in to our website with the corresponding data storage in order to shorten the login process the next time.
Expiry date: after 3 months
Name: AWSELB
Value: EB626B5A40C80CEFD0EB26286F9684716FECD023880992D31DEC38133135809-1
Purpose: This cookie is used to distribute the load on the
website across multiple servers. This increases the
loading speed of the page.
Expiry date: after one hour
Name: AWSELBCORS
Value: 85FDC7C91873988D19D2D53305AA8CAB73AF02FCEAEB626B5A40C PURPOSE: We have not yet been able to find out any more information about this cookie. As soon as we know more, you will be informed.
Expiry date: after one hour
Note: Please note that the cookies shown above are examples and this list is not exhaustive.
How long and where is the data stored?
The data can be stored on various servers distributed around the world. For example, the data can be stored in the USA, Ireland, South Korea, Taiwan or Israel. Wix always stores data until it is no longer required for the service provided. We have not yet been able to find out any more information about the duration of data storage.
How can I prevent data from being stored or request deletion?
You have the option to update, correct or delete your personal data at any time. You can also contact the Wix Data Protection Department directly at privacy@wix.com.
To deactivate, delete or manage cookies, all you have to do is select the appropriate settings in your browser. This works a little differently depending on the browser. Under the "Cookies" section you will find the relevant links to the respective instructions for the most popular browsers.
Wix.com Ltd. has its headquarters in Israel. Israel is considered by the European Commission to be a country that offers adequate protection for the personal data of EU citizens.
13. Wix Multilingual
This website includes functions from the translation service Weglot. The provider is Wix.com Ltd.
Yunitsman 5 St, Tel Aviv Israel. Wix is loaded when you visit the website so that you can change the language to a language other than German using the language icon in the header of the website. This allows a direct connection to be established between your browser and the Wix server when you visit this website. Wix therefore receives the information that you have visited this website using your IP address. The data is stored and analyzed on the basis of Art. 6 Para. 1 lit. f GDPR (legitimate interest in a multilingual presentation of the website). You can find more information about this in Wix's privacy policy: https://de.wix.com/about/privacy.
LEGAL BASIS
Our legitimate interest in using Wix is to operate a website and publish the content, as well as to optimize and generally present our online service. The legal basis for this is Art. 6 Para. 1 lit. f GDPR ().
As a further basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway) or for data transfer there, Wix uses standard contractual clauses approved by the EU Commission (Art. 46 Para. 2 and 3 GDPR). These clauses oblige Wix to comply with the EU data protection level when processing relevant data outside the EU. These clauses are based on an implementing decision of the EU Commission. You can find the resolution and the clauses here, among other places:
https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
If you would like to find out more about this, we recommend that you read the company's data protection guidelines at https://de.wix.com/about/privacy
14. Constant updating of our data protection information
With the entry into force of various legal changes, we hereby inform our customers, business partners, employees, applicants, website visitors and other communication partners that when data is transferred to US service providers such as Amazon, Asana, Google, Microsoft, YouTube, etc., an appropriate level of data protection can now be assumed due to the company's individual certification and publication in the Data Privacy Framework List.