1. Privacy at a glance

General information

The following notes provide a simple overview of what happens to your personal information when you visit this website. Personal information is any data that can be used to identify you personally. For detailed information on the subject of data protection, please refer to our Privacy Policy listed below this text.

Data collection on this website

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. You can find their contact details in the section 'Information on the responsible party' in this privacy policy.

How do we collect your data?

On the one hand, your data is collected when you provide it to us. This could be, for example, data you enter in a contact form.

Other data is collected automatically or after your consent by our IT systems when you visit the website. This is primarily technical data (e.g. internet browser, operating system, or time of page view). This data is collected automatically as soon as you enter our website.

What do we use your data for?

Part of the data is collected to ensure error-free provision of the website. Other data may be used to analyze your user behavior.

What rights do you have regarding your data?

You have the right to receive information about the origin, recipient, and purpose of your stored personal data free of charge at any time. You also have the right to request the correction or deletion of this data. If you have given consent for data processing, you can revoke this consent at any time for the future. You also have the right to request the restriction of the processing of your personal data under certain circumstances.

2. Hosting and Content Delivery Networks (CDN)

External hosting

This website is hosted externally. The personal data collected on this website is stored on the servers of the host. This may include, but is not limited to, IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses, and other data generated through a website.

External hosting is done for the purpose of contract fulfillment with our potential and existing customers (Art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast, and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f GDPR).

Our host will only process your data to the extent necessary to fulfill its performance obligations and will follow our instructions with regard to this data.

We use the following hosting provider:

Vercel Inc.
340 S Lemon Ave #4133
Walnut, CA 91789
Email: privacy@vercel.com
Website: https://www.vercel.com

Content Delivery Network

We use the Content Delivery Network from Vercel, the Vercel Edge Network. The provider is Vercel Inc., 340 S Lemon Ave #4133, Walnut, CA 91789, https://vercel.com.

A Content Delivery Network (CDN) is a network of regionally distributed servers connected via the Internet. It allows for fast delivery of content, even during large load peaks.

The use of the CDN is based on our legitimate interests in a secure and efficient provision as well as the improvement of the stability and functionality of our website (Art. 6 para. 1 lit. f GDPR).

You can find Vercel's privacy policy at:https://vercel.com/legal/privacy-policy

Database hosting with Supabase

For the storage and management of our database, we use the services of Supabase Inc. The database is hosted in a data center in Frankfurt, Germany. This ensures that all database-related data is processed and stored within the European Union and is thus subject to the strict requirements of the GDPR.

Supabase provides us with the following services:

• A PostgreSQL database for storing user data and application data
• Authentication services for secure management of user accounts
• Real-time functions for direct updating of data

The processing of data is based on Art. 6 para. 1 lit. b GDPR (contract fulfillment) and Art. 6 para. 1 lit. f GDPR (legitimate interest in the efficient and secure provision of our services). As the data processing takes place within the EU, an adequate level of data protection according to the GDPR is ensured.

For more information about data protection at Supabase, please visit:https://supabase.com/privacy

3. General information and mandatory information

Data protection

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

Information about the responsible party

The responsible party for data processing on this website is:

Christian Weinbörner
Edelrautenweg 7
44289 Dortmund

Phone: +49 (0) 231 9999 0225
Email: mail@fixthisbug.de

The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g. names, email addresses, etc.).

Storage duration

Unless a more specific storage period has been specified within this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you assert a legitimate request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. retention periods under tax or commercial law); in the latter case, the data will be deleted once these reasons no longer apply.

General information on the legal bases for data processing on this website

If you have consented to data processing, we process your personal data on the basis of Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR if special categories of data according to Art. 9 para. 1 GDPR are processed. In the case of explicit consent to the transfer of personal data to third countries, the data processing is also based on Art. 49 para. 1 lit. a GDPR. If you have consented to the storage of cookies or to the access to information on your device (e.g. via device fingerprinting), the data processing is additionally based on § 25 para. 1 TDDDG. The consent can be revoked at any time. If your data is required for the fulfillment of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Art. 6 para. 1 lit. b GDPR. Furthermore, if your data is required for the fulfillment of a legal obligation, we process it on the basis of Art. 6 para. 1 lit. c GDPR. Furthermore, the data processing may be carried out on the basis of our legitimate interest according to Art. 6 para. 1 lit. f GDPR. Information on the relevant legal bases in each individual case is provided in the following paragraphs of this privacy policy.

Revocation of your consent to data processing

Many data processing operations are only possible with your express consent. You can revoke consent you have already given at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to object to data collection in special cases and to direct advertising (Art. 21 GDPR)

IF THE DATA PROCESSING IS CARRIED OUT ON THE BASIS OF ART. 6 PARA. 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA CONCERNED UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS, OR THE PROCESSING SERVES THE PURPOSE OF ASSERTING, EXERCISING OR DEFENDING LEGAL CLAIMS (OBJECTION UNDER ART. 21 PARA. 1 GDPR).

Right to complain to the competent supervisory authority

In the event of violations of the GDPR, data subjects have a right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged violation. This right of complaint is without prejudice to any other administrative or judicial remedy.

Right to data portability

You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done insofar as it is technically feasible.

SSL or TLS encryption

For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from 'http://' to 'https://' and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

4. Data collection on this website

Cookies

Our websites use so-called 'cookies'. Cookies are small data packages and do not cause any damage to your device. They are stored either temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your device until you delete them yourself or until they are automatically deleted by your web browser.

Cookies can originate from us (first-party cookies) or from third-party companies (so-called third-party cookies). Third-party cookies enable the integration of certain services of third-party companies within websites (e.g. cookies for processing payment services).

Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g. the shopping cart function or the display of videos). Other cookies can be used to analyze user behavior or for advertising purposes.

Cookies that are necessary to carry out the electronic communication process, to provide certain functions you want (e.g. for the shopping cart function) or to optimize the website (e.g. cookies to measure the web audience) are stored on the basis of Art. 6 para. 1 lit. f GDPR, unless another legal basis is stated. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of its services. If consent to the storage of cookies and similar recognition technologies has been requested, processing is carried out exclusively on the basis of this consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG); this consent can be revoked at any time.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. When deactivating cookies, the functionality of this website may be limited.

Server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

• Browser type and browser version
• Operating system used
• Referrer URL
• Hostname of the accessing computer
• Time of the server request
• IP address

This data is not combined with other data sources.

The collection of this data is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of his website – for this purpose, the server log files must be collected.

Inquiry by e-mail, telephone, or fax

If you contact us by e-mail, telephone, or fax, your inquiry including all resulting personal data (name, inquiry) will be stored and processed by us for the purpose of processing your request. We do not pass on this data without your consent.

This data is processed on the basis of Art. 6 para. 1 lit. b GDPR if your request is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR) if this has been requested; the consent can be revoked at any time.

The data you send to us via contact requests remain with us until you request us to delete, revoke your consent to storage, or the purpose for data storage lapses (e.g. after completed processing of your request). Mandatory statutory provisions - in particular statutory retention periods - remain unaffected.

5. Plugins and tools

Google Fonts (local hosting)

This site uses so-called Google Fonts provided by Google for the uniform representation of fonts. The Google Fonts are installed locally. A connection to Google servers does not take place.

For more information about Google Fonts, see https://developers.google.com/fonts/faq and Google's privacy policy: https://policies.google.com/privacy?hl=en.

hCaptcha

We use hCaptcha (hereinafter 'hCaptcha') on this website. The provider is Intuition Machines, Inc., 2211 Selig Drive, Los Angeles, CA 90026, USA (hereinafter 'IMI').

hCaptcha is used to check whether the data entry on this website (e.g. in a contact form) is done by a human or by an automated program. For this purpose, hCaptcha analyzes the behavior of the website visitor based on various characteristics.

This analysis starts automatically as soon as the website visitor enters a website with hCaptcha enabled. For the analysis, hCaptcha evaluates various information (e.g. IP address, time spent by the website visitor on the website, or mouse movements made by the user). The data collected during the analysis is forwarded to IMI.

The data processing is based on standard contractual clauses contained in the data processing addendum to IMI's general terms and conditions or data processing agreements.

The storage and analysis of the data is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its web offerings from abusive automated spying and from SPAM. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user's end device (e.g., device fingerprinting) within the meaning of the TDDDG. The consent can be revoked at any time.

For more information about hCaptcha, please see the privacy policy and terms of use at the following links:

• https://www.hcaptcha.com/privacy
• https://hcaptcha.com/terms

The company is certified under the 'EU-US Data Privacy Framework' (DPF). The DPF is an agreement between the European Union and the USA that is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF commits to comply with these data protection standards. For more information, please visit the provider's website at the following link:

Source: https://www.e-recht24.de