Privacy Policy

1. General information

1.1 What are personal data
Personal data is information that discloses or may disclose the identity of the user. We adhere to the principle of data avoidance. As far as possible, we refrain from collecting personal data.

1.2 Handling of personal data
The processing of your personal data is carried out exclusively to the extent that we have received your consent (Art. 6 I p. 1 a GDPR) or data whose processing is necessary for our legitimate interests and to the extent that the weighing of interests, fundamental rights or fundamental freedoms does not conflict with your consent (Art. 6 I p. 1 f GDPR).

We may use contract processors to process your personal data, but will not pass on your personal data to third parties.

The processing of your personal data may also be carried out outside the EU under observance of special security measures if this is necessary for the fulfillment of the contract.

1.3 Usage data
General technical information is collected when visiting the website. These are the IP address used, time of day, duration of the visit, browser type and, if applicable, the originating page. This usage data is registered in a log file for technical reasons and can be used and stored for the purpose of statistical evaluation of this website. This usage data is not linked to your other personal data.

1.4 Duration of storage
We store your personal data after the end of the purpose for which the data was collected, only as long as this is necessary due to legal (especially tax) regulations.


2. Your rights

2.1 Information
You can request information from us as to whether we process personal data about you and, if this is the case, you have the right to be informed of this personal data and of the other information mentioned in Art. 15 GDPR.

2.2 Right of rectification
You have the right to correct incorrect personal data concerning you and, in accordance with Art. 16 GDPR, you can request the completion of incomplete personal data.

2.3 Right to deletion
You have the right to demand from us that the personal data concerning you be deleted immediately. We are obliged to delete them immediately, especially if one of the following reasons applies:

  • Your personal data is no longer necessary for the purposes for which it was collected or otherwise processed.
  • You revoke your consent on which the processing of your data was based and there is no other legal basis for the processing.
  • Your data have been processed unlawfully.

The right to deletion does not exist insofar as your personal data are necessary for the assertion, exercise or defense of our legal claims.

2.4 Right to limit processing
You have the right to request us to limit the processing of your personal data if

  • you dispute the accuracy of the data and we therefore verify the accuracy,
  • the processing is unlawful and you refuse to delete it and instead request that its use be restricted
  • we no longer need the data, but you need it to assert, exercise or defend legal claims,
  • you have lodged an objection to the processing of your data and it is not yet clear whether our legitimate reasons outweigh your reasons.

2.5 Right to data transferability
You have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format and you have the right to transfer this data to another controller without hindrance from us, provided that the processing is based on consent or a contract and the processing is carried out by us using automated procedures.

2.6 Right of withdrawal
If the processing of your personal data is based on consent, you have the right to revoke this consent at any time.

2.7 General and right of complaint
The exercise of your aforementioned rights is basically free of charge for you. You have the right to contact the supervisory authority responsible for us, the State Data Protection Commissioner, directly in the event of complaints.


3. Data security

3.1 Data security
All data on our website is protected by technical and organizational measures against loss, destruction, access, modification and distribution. 

3.2 Sessions and cookies
For the operation of our website we use cookies or server-side sessions in which data can be stored. We only use cookies or server-side sessions that are technically necessary for the operation of this website (e.g. spam protection for contact forms) and for which it is clear from weighing up that there are no overriding interests on your part that conflict with this (Art. 6 I S. 1 f GDPR)


4. Third-party services

4.1 Use of Google Maps
This website uses Google Maps, a Google map service operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). When using Google Maps, data on the use of the Maps functions by visitors to the website is also collected, processed and used. No user interests are affected here which outweigh this technical necessity of integrating the interactive map material (Art. 6 I p. 1 f GDPR). The data protection information from Google can be viewed at The additional usage information for Google Maps can be viewed at

4.2 Use of Google ReCAPTCHA
This website uses the reCAPTCHA service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). The function is designed to distinguish whether the input is human or abusive through automated, machine processing. The query includes the sending of the IP address and any other data required by Google for the service reCAPTCHA to Google. For this purpose your input will be transmitted to Google and used there. Your IP address will, however, be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area beforehand. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there. The IP address transmitted by your browser in the context of reCaptcha is not merged with other Google data. The processing thus serves to prevent the misuse of this website and is ultimately anonymous, so that the weighing of interests shows that there are no overriding interests on your part that prevent processing (Art. 6 I p. 1 f GDPR). The data protection guidelines of Google apply, which can be found at:

4.3 Google Web Fonts
We use so-called web fonts from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google") to display a uniform font on our website. These are automatically stored in your browser cache when you call up one of our pages to enable the desired display. If your browser does not support the web fonts used, a standard font of your computer may be used. This does not affect any user interests that outweigh this technical necessity (Art. 6 I S. 1 f GDPR). You can view Google's privacy policy here: Further information on Google Web Fonts can be found at

4.4 Stripe
We have appointed the payment service provider Stripe (Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland) to handle our payment process. For this purpose, Stripe will pass on the information provided to us during the ordering process together with the information about your order (name, address, account number, bank code, possibly credit card number, invoice amount, currency and transaction number) in accordance with Art. 6 Para. 1 lit. b GDPR. Your data will be passed on exclusively for the purpose of payment processing with the payment service provider Stripe Payments Europe Ltd. and only to the extent necessary for this purpose. You can find more information about the data protection of Stripe under the URL

4.5 1&1 IONOS SE WebAnalytics
This website uses WebAnalytics, a web analytics service provided by 1&1, operated by 1&1 IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, and collects and stores data via this web analytics service. This tool uses log files or pixels to store the following data for statistical evaluation and technical optimization of the web offer of 1&1: referrer (previously visited website), the requested website or file, the browser type and version, the operating system used, the type of device used, the time of access and the IP address in anonymized form (only used to determine the location of access). No personal data is collected or stored so that no conclusions can be drawn about individual visitors. 1&1's privacy policy can be viewed here:


5. Contacting
To contact us regarding data protection, you are welcome to use the following contact options. Responsible person in terms of the GDPR:


Mrs. Lena-Jasmina Lombardi
Germaniastr. 16
80802 Munich
e-mail: This email address is being protected from spambots. You need JavaScript enabled to view it.
phone: +49 (0)89 215 362 98

No Internet Connection