Privacy Policy
(as of 24 October 2019)
Introduction
This Privacy Policy (“Policy”) describes the information that Fast Finance24 Holding AG (“FastFinance24”, “FastFinance”, “FF24”, “we”, “us” or “our”) collects, how we use this information and which options you have to view, correct or delete them. The terms used are not gender specific.
Contents
- Introduction
- Responsible
- Overview of the processing
- Relevant legal bases
- Use of cookies
- Contact
- Provision of the online offer and webhosting
- Online marketing
- Deletion of data
- Modification and update of the privacy policy
- Rights of data subjects
- Definitions
Responsible:
Fast Finance24 Holding AG
Uhlandstraße 165/166
10719 Berlin
Germany
E-mail address: [email protected]
Overview of the processing
The following summary summarizes the types of data processed and the purposes of their processing and refers to the individuals concerned.
Types of processed data
- Inventory data (e.g., names, addresses).
- Content data (e.g., text input, photographs, videos).
- Contact information (e.g., e-mail, phone numbers).
- Meta / communication data (e.g., device information, IP addresses).
- Usage data (e.g., websites visited, interest in content, access times).
Categories of affected persons
- Interested persons.
- Communication partner.
- Users (e.g., website visitors).
Purposes of processing
- Visit Action evaluation.
- Interest-based and behavioral marketing.
- Contact requests and communication.
- Conversion measurement (measurement of the effectiveness of marketing measures).
- Profiling (creating user profiles).
- Remarketing.
- Range measurement (e.g., access statistics, recurring visitor detection).
- Tracking (e.g., interest / behavioral profiling, use of cookies).
Relevant legal bases
In the following, we share the legal basis of the General Data Protection Regulation (DSGVO), on the basis of which we process the personal data. Please note that in addition to the provisions of the GDPR, the national data protection regulations may apply in your home or country of residence.
- Consent (Article 6 (1) (1) (a) GDPR) – The data subject has consented to the processing of personal data concerning him or her for a specific or several specific purposes.
- Performance of contract and pre-contractual inquiries (Art. 6 (1) sentence 1 lit. DSGVO) – The processing is necessary for the fulfilment of a contract of which the data subject is a party or for the implementation of pre-contractual measures Person done.
- Legitimate interests (Article 6 (1) sentence 1 lit. DSGVO) – Processing is necessary to safeguard the legitimate interests of the person responsible or a third party, unless the interests or fundamental rights and freedoms of the data subject providing the protection personal data require, outweigh.
National data protection regulations in Germany:
In addition to the data protection regulations of the General Data Protection Regulation, national regulations on data protection in Germany apply. This includes in particular the law on the protection against misuse of personal data in data processing (Bundesdatenschutzgesetz – BDSG). In particular, the BDSG contains special rules on the right of access, the right of cancellation, the right to object, the processing of special categories of personal data, processing for other purposes and for transmission, as well as automated decision-making in individual cases, including profiling. Furthermore, it regulates data processing for the purposes of the employment relationship (§ 26 BDSG), in particular with regard to the establishment, implementation or termination of employment relationships and the consent of employees. Furthermore, state data protection laws of the individual federal states can be applied.
Use of cookies
Cookies are text files that contain data from visited websites or domains and are stored by a browser on the user’s computer. A cookie is primarily used to store the information about a user during or after his visit to an online offer. The stored information may e.g. language settings on a web page, the login status, a shopping cart, or the location where a video was viewed. The term “cookies” also includes other technologies that perform the same functions as cookies (for example, when user information is stored using pseudonymous online identifiers, also referred to as “user IDs”).
The following cookie types and functions are distinguished:
- Temporary cookies (also: session or session cookies): Temporary cookies are deleted at the latest after a user has left an online offer and closed their browser.
- Persistent cookies: Persistent cookies are stored even after closing the browser. For example, the login status can be saved or preferred content displayed directly when the user revisits a website. Likewise, the interests of users used for range measurement or for marketing purposes may be stored in such a cookie.
- First-party cookies: First-party cookies are set by us.
- Third party cookies (also known as third party cookies): Third party cookies are mainly used by advertisers (known as third parties) to process user information.
- Necessary (but essential or strictly necessary) cookies: On the one hand, cookies may be absolutely necessary for the operation of a website (for example, to save logins or other user input or for reasons of security).
- Statistics, marketing and personalization cookies: In addition, cookies are usually also used in the context of range measurement and when the interests of a user or his behavior (eg viewing certain content, benefits of functions, etc.) on individual websites in one User profile will be saved. Such profiles serve to provide users with e.g. View content that matches your potential interests. This method is also referred to as “tracking,” that is, tracking the potential interests of users. As far as we use cookies or “tracking” technologies, we will inform you separately in our privacy policy or in the context of obtaining consent.
Information on legal bases: On which legal basis we process your personal data with the help of cookies, depends on whether we ask you for a consent. If this is the case and you consent to the use of cookies, the legal basis for the processing of your data is the informed consent. Otherwise, the data processed by means of cookies will be processed on the basis of our legitimate interests (for example, in the course of a business operation of our online offer and its improvement) or, if the use of cookies is required, in order to fulfill our contractual obligations.
General information on revocation and opposition (opt-out): Depending on whether the processing is based on a consent or legal permission, you have the option at any time to revoke your consent or to object to the processing of your data by cookie technologies (collectively referred to as “opt-out”). You may initially declare your disagreement through the settings of your browser, for example by disabling the use of cookies (which may also limit the functionality of our online offer). An objection to the use of cookies for online marketing purposes can also be explained by means of a variety of services, especially in the case of tracking, via the websites http://optout.aboutads.info and http://www.youronlinechoices.com/ become. In addition, you may receive further notice of objections in the context of the information on the service providers and cookies used.
Processing of cookie data on the basis of a consent: Before we process or process data within the scope of the use of cookies, we ask the users for an always revocable consent. Before consent has been given, cookies may be used that are necessary for the operation of our online offer. Their use is based on our interest and the interest of the users in the expected functionality of our online offer.
- Processed data types: usage data (e.g., visited web pages, interest in content, access times), meta / communication data (e.g., device information, IP addresses).
- Affected Persons: Users (e.g., website visitors, online service users).
- Legal basis: Consent (Article 6 (1) sentence 1 (a) GDPR), entitled interests (Article 6 (1) (1) (f) of the DSGVO).
Contact
When contacting us (for example via contact form, e-mail, telephone or via social media), the details of the requesting persons are processed to the extent necessary to answer the contact requests and any requested action.
Responding to the contact requests in the context of contractual or pre-contractual relationships is to fulfill our contractual obligations or to answer (pre) contractual requests and otherwise on the basis of legitimate interests in answering the requests.
- Processed data types: inventory data (e.g., names, addresses), contact data (e.g., e-mail, telephone numbers), content data (e.g., text input, photographs, videos).
- Affected persons: communication partners.
- Purposes of processing: contact requests and communication.
- Legal basis: fulfillment of the contract and pre-contractual inquiries (Article 6 (1) sentence 1 (b) GDPR), entitled interests (Article 6 (1) sentence 1 (f) of the DSGVO).
Provision of the online offer and web hosting
To provide our online offer safely and efficiently, we use the services of one or more web hosting providers whose servers (or servers managed by them) can access the online offer. For these purposes, we may use infrastructure and platform services, computing capacity, storage and database services, as well as security and technical maintenance services.
The data processed in the provision of the hosting offer may include all information relating to the use and communication of the users of our online offer. This includes, on a regular basis, the IP address necessary to deliver the content of online content to browsers, and all submissions made within our online offer or web pages.
E-mail delivery and hosting: The webhosting services we use also include the sending, receiving and saving of e-mails. For these purposes the addresses of the recipients as well as sender as well as further information concerning the e-mail dispatch (for example the participating providers) as well as the contents of the respective e-mails are processed. The aforementioned data may also be processed for purposes of SPAM detection. We ask you to note that e-mails on the Internet are generally not encrypted. As a rule, e-mails are encrypted on the transport route, but (if no so-called end-to-end encryption method is used) not on the servers from which they are sent and received. We can therefore take no responsibility for the transmission of emails between the sender and the reception on our server.
- Processed data types: content data (e.g., text input, photographs, videos), usage data (e.g., visited web pages, interest in content, access times), meta / communication data (e.g., device information, IP addresses).
- Affected Persons: Users (e.g., website visitors, online service users).
- Legal basis: legitimate interests (Article 6 (1) sentence 1 (f) of the DSGVO).
Online marketing
We process personal data for online marketing purposes, which may include the marketing of advertising space or the presentation of advertising and other content (collectively referred to as “content”) based on the potential interests of users and the measurement of their effectiveness.
For these purposes, so-called user profiles are created and stored in a file (so-called “cookie”) or similar methods are used by means of which the information relevant to the presentation of the aforementioned contents to the user is stored. To this information can e.g. content viewed, websites visited, online networks used, as well as communication partners and technical information, such as the browser used, the computer system used and information on usage times. If users have consented to the collection of their location data, they can also be processed.
It also stores the IP addresses of the users. However, we use available IP masking techniques (i.e., pseudonymization by truncating the IP address) to protect users. In general, the online marketing process does not store user data (such as e-mail addresses or names) but pseudonyms. That is, we as well as the providers of online marketing methods do not know the actual identity of the users, but only the information stored in their profiles.
The information in the profiles is usually stored in the cookies or similar procedures. These cookies can later generally also on other websites that use the same online marketing method, read and analyzed for purposes of displaying content as well as be supplemented with other data and stored on the server of the online marketing process provider.
By way of exception, clear data can be assigned to the profiles. This is the case when users are e.g. Members of a social network whose online marketing process we use and the network connects the profiles of users in the aforementioned information. We kindly ask you to note that users have additional agreements with the providers, e.g. by consent in the context of registration.
In principle, we only have access to summarized information about the success of our advertisements. However, in the context of so-called conversion measurements, we can examine which of our online marketing methods led to a so-called conversion, for example to a contract with us. The conversion measurement is used solely to analyze the success of our marketing efforts.
Notes on legal bases: If we ask users for their consent to the use of third-party providers, the legal basis for the processing of data is the consent. Otherwise, users’ data will be processed based on our legitimate interests (i.e., interest in efficient, economical and recipient-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this privacy policy.
- Processed data types: usage data (e.g., visited web pages, interest in content, access times), meta / communication data (e.g., device information, IP addresses).
- Affected Persons: Users (e.g., website visitors, online service users), prospects.
- Purposes of processing: tracking (eg interest / behavioral profiling, use of cookies), remarketing, visitor action evaluation, interest and behavioral marketing, profiling (profiling (user profiling), conversion measurement (measurement of marketing effectiveness), reach measurement (eg access statistics, detection returning visitor).
- Security measures: IP masking (pseudonymization of the IP address).
- Legal basis: Consent (Article 6 (1) sentence 1 (a) GDPR), entitled interests (Article 6 (1) (1) (f) of the DSGVO).
- Opposition possibility (opt-out): We refer to the data protection notices of the respective providers and the contradiction possibilities indicated to the offerers (so-called “Opt Out”). Unless an explicit opt-out option has been specified, there is the possibility that you disable cookies in the settings of your browser. However, this can restrict functions of our online offer. We therefore also recommend the following opt-out options, which are offered in summary for specific areas:
a) Europe: https://www.youronlinechoices.eu
b) Canada: https://www.youradchoices.ca/choices
c) USA: https://www.aboutads.info/choices
d) Area cross: http://optout.aboutads.info
Deployed services and service providers:
- Google Analytics: online marketing and web analytics; Service Providers: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, Parent Company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA;
– Website: https://marketingplatform.google.com/intl/en/about/analytics/
– Privacy Policy: https://policies.google.com/privacy
– Privacy Shield (guarantee level of data protection when processing data in the US): https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
– Opposition possibility (opt-out): opt-out plugin: http://tools.google.com/dlpage/gaoptout?hl=de
– Ads display settings: https://adssettings.google.com/authenticated - Google Adsense with personalized advertisements: We use Google Adsense service are displayed with personalized ads, which helps within our reserves ads and we get a reward for their display or other use. ; Service Providers: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA;
– Website: https://marketingplatform.google.com
– Privacy Policy: https://policies.google.com/privacy
– Privacy Shield (guarantee level of data protection when processing data in the US): https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
Deletion of data
The products we will be deleted in accordance with the law, as soon as their allowed for processing of consents to revoke permits or other accounts (for example, if the purpose of the processing of this data is omitted or are not required for the purpose).
Unless the data is deleted because it is necessary for other and legitimate purposes, its processing is limited to these purposes. That is, the data is locked and not processed for other purposes. This applies, for example for data that must be retained for commercial or tax law reasons or that is required to be stored in order to assert, exercise or defend legal claims or to protect the rights of another natural or legal person.
Further information on the deletion of personal data may also be provided in the context of the individual data protection notices of this privacy policy.
Modification and update of the privacy policy
We ask you to regularly inform yourself about the content of our privacy policy. We will adjust the Privacy Policy as soon as the changes to the data processing we make require it. We will notify you as soon as the changes require your participation (eg consent) or other individual notification.
Rights of data subjects
As DSPRO interested parties, you are entitled to various rights, in particular from Articles 15 to 18 and 21 DS-GVO:
- Right to object: You have the right at any time, for reasons arising from your particular situation, against the processing of your personal data relating to you, which pursuant to Art. 6 para. 1 lit. e or f DSGVO takes an objection; this also applies to profiling based on these provisions. If the personal data relating to you are processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct mail.
- Right of Withdrawal: You have the right to revoke granted consent at any time.
- Right to information: You have the right to ask for confirmation as to whether the data in question is being processed and for information about this data as well as for further information and copying of the data in accordance with legal requirements.
- Right to correction: You have the legal right to demand the completion of the data concerning you or the correction of the incorrect data concerning you.
- Right to deletion and limitation of processing: You have the right, in accordance with the statutory provisions, to demand that data relating to you be deleted without delay, or, alternatively, to demand a restriction of the processing of data in accordance with the statutory provisions.
- Right to Data Portability: You have the right to receive data relating to you that you have provided to us in accordance with legal requirements in a structured, common and machine-readable format or to request their transmission to another person in charge.
- Complainant to the supervisory authority: You also have the right, in accordance with legal requirements, to a supervisory authority, in particular in the Member State of your usual place of residence, employment or the place of the alleged infringement, if you believe that the processing of your personal data Data violates the GDPR.
Definitions
This section provides an overview of the terminology used in this Privacy Policy. Many of the terms are taken from the law and defined above all in Art. 4 GDPR. The legal definitions are binding. The following explanations, on the other hand, are intended above all to aid understanding. The terms are sorted alphabetically.
- Visit Action Evaluation: “Conversion Tracking” is a method of determining the effectiveness of marketing activities. As a rule, a cookie is stored on the devices of the users within the websites on which the marketing measures take place, and then retrieved again on the destination website. For example, we can see if the ads we show on other websites have been successful).
- IP Masking: IP masking is a method of erasing the last octet, the last two digits of an IP address, so that the IP address can no longer be used to uniquely identify a person Therefore, IP masking is a means of pseudonymizing processing techniques, especially in online marketing
- Interest-Based and Behavioral Marketing: Interest and / or behavioral marketing is when potential interests of users in ads and other content are defined as accurately as possible. This is done on the basis of information about their pre-behavior (for example, finding and staying with certain websites, buying behavior or interaction with other users), which are stored in a so-called profile. As a rule, cookies are used for these purposes.
- Conversion measurement: The conversion measurement is a method by which the effectiveness of marketing measures can be determined. As a rule, a cookie is stored on the devices of the users within the websites on which the marketing measures take place, and then retrieved again on the destination website. For example, we can see if the ads we show on other websites have been successful.
- Personal data: “Personal data” means any information relating to an identified or identifiable natural person (hereinafter the “data subject”); a natural person is regarded as identifiable, which can be identified directly or indirectly, in particular by means of assignment to an identifier such as a name, to an identification number, to location data, to an online identifier (eg cookie) or to one or more special features, are the expression of the physical, physiological, genetic, mental, economic, cultural or social identity of this natural person.
- Profiling: “profiling” refers to any type of automated processing of personal data that involves the use of such personal information to identify certain personal aspects pertaining to a natural person (depending on the nature of the profiling, this includes information relating to personal information) age, gender, location data and movement data, interaction with websites and their content, shopping habits, social interactions with other people), or to predict them (eg, the interests in certain content or products, the click behavior on a web page) or the location) For purposes of profiling, cookies and web beacons are often used.
- Reach measurement: Reach measurement (also known as web analytics) is used to evaluate the flow of visitors to an online offer and can influence the behavior or interests of visitors to certain information, such as: Content of web pages. With the help of range analysis, website owners can e.g. Recognize at what time visitors visit their website and what content they are interested in. Thereby they can e.g. to better tailor the contents of the website to the needs of its visitors. For purposes of reach analysis, pseudonymous cookies and web beacons are often used to detect returning visitors for more accurate analysis of how to use an online offer.
- Remarketing: Remarketing or retargeting is when, for example, For advertising purposes, it is noted for which products a user has been interested in a web page in order to provide the user on other web pages with these products, e.g. in advertisements, to remember.
- Tracking: “Tracking” is when the behavior of users across multiple online offers can be traced.As a rule, with regard to the used online offers behavior and interest information stored in cookies or on servers of the providers of tracking technologies (so-called profiling) This information can then be used, for example, to show users advertisements that are likely to match their interests.
- Responsible: “Responsible” means the natural or legal person, public authority, body or other body that alone or jointly with others decides on the purposes and means of processing personal data.
- Processing: “Processing” means any process performed with or without the aid of automated procedures or any such process associated with personal data. The term covers a wide range and covers practically every handling of data, be it collection, evaluation, storage, transfer or deletion.
Created with free Datenschutz-Generator.de by Dr. Thomas Schwenke